Update security key error handling and user feedback. Improve user guidance for security key interactions and Implement proper error handling for permission denials and timing issues.

2026-02-22 04:46:40 +00:00 · 2025-07-05 18:56:32 +08:00
parent 3994b25a71
commit 6ccc05b183
4 changed files with 127 additions and 31 deletions
--- a/server/routers/auth/passkey.ts
+++ b/server/routers/auth/passkey.ts
@@ -32,7 +32,15 @@ import { verifyPassword } from "@server/auth/password";
 import { unauthorized } from "@server/auth/unauthorizedResponse";

 // The RP ID is the domain name of your application
-const rpID = new URL(config.getRawConfig().app.dashboard_url).hostname;
+const rpID = (() => {
+    const url = new URL(config.getRawConfig().app.dashboard_url);
+    // For localhost, we must use 'localhost' without port
+    if (url.hostname === 'localhost') {
+        return 'localhost';
+    }
+    return url.hostname;
+})();
+
 const rpName = "Pangolin";
 const origin = config.getRawConfig().app.dashboard_url;