improved security key management interface, also updated locales

2026-03-01 08:16:44 +00:00 · 2025-07-05 18:27:04 +08:00
parent d5e67835aa
commit 5130071a60
17 changed files with 712 additions and 505 deletions
--- a/server/routers/auth/login.ts
+++ b/server/routers/auth/login.ts
@@ -4,7 +4,7 @@ import {
    serializeSessionCookie
 } from "@server/auth/sessions/app";
 import { db } from "@server/db";
-import { users } from "@server/db";
+import { users, passkeys } from "@server/db";
 import HttpCode from "@server/types/HttpCode";
 import response from "@server/lib/response";
 import { eq, and } from "drizzle-orm";
@@ -91,6 +91,22 @@ export async function login(

        const existingUser = existingUserRes[0];

+        // Check if user has passkeys registered
+        const userPasskeys = await db
+            .select()
+            .from(passkeys)
+            .where(eq(passkeys.userId, existingUser.userId));
+
+        if (userPasskeys.length > 0) {
+            return response<{ usePasskey: boolean }>(res, {
+                data: { usePasskey: true },
+                success: true,
+                error: false,
+                message: "Please use your security key to sign in",
+                status: HttpCode.UNAUTHORIZED
+            });
+        }
+
        const validPassword = await verifyPassword(
            password,
            existingUser.passwordHash!