add admin account recovery via setup secret

When email isn't configured, the login page now hides the magic link
form and shows a recovery link. The /recover page logs the setup secret
to server logs and lets the admin reset their password with it.

Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com>

lib/berrypod_web/router.ex

@@ -146,12 +146,14 @@ defmodule BerrypodWeb.Router do
   scope "/", BerrypodWeb do
     pipe_through [:browser]
 
-    # Token-based auto-login after setup account creation
+    # Token-based auto-login after setup/recovery
     get "/setup/login/:token", SetupController, :login
+    get "/recover/login/:token", SetupController, :recover_login
 
     live_session :setup,
       on_mount: [{BerrypodWeb.UserAuth, :mount_current_scope}] do
       live "/setup", Setup.Onboarding, :index
+      live "/recover", Setup.Recover, :index
     end
   end