Make password reset logic more generic
Add user profile information to admin page
API: Trim SSH key before splitting into parts
Blacklist 1secmail.{com,org,net}

Yet another temporary mail provider

God, there are a shitload of these
Add redis connection URL for webhooks

The webhooks worker always uses the default redis URL, which breaks if
the infrastructure runs a non-default redis setup.
Expand email domain blacklist

These fucking disposable mailbox services just keep on popping up
Fix mailto: on TOTP recovery page
Fix support link on TOTP challenge page
Require completion of 2FA challenge to disable 2FA

Ref: ~sircmpwn/meta.sr.ht#158
Improve UX for unconfirmed & suspended users
Improve UI for personal access keys

More updates to conform to modern sourcehut design practices
Email user when security-sensitive actions occur
Reorganize & retheme to match modern sr.ht design
Prompt for 2FA to reset password

Previously this would just tell the user to contact support instead.
Add support for TOTP recovery codes
Allow adding notes to personal access tokens

Ref: ~sircmpwn/meta.sr.ht#49
.builds/alpine.yml: increase specificity of sed
billing: source_id is not an integer

Fixing an earlier, too-general patch
billing: add parameter types to routes