jeffemmett
/
rspace-online
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

Merge branch 'dev'
CI/CD / deploy (push) Has been cancelled Details

This commit is contained in:
Jeff Emmett 2026-04-17 10:14:57 -04:00
parent 837ecf4ba0 93a63cd42b
commit 03d2a6594d
1 changed files with 15 additions and 1 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

16
src/encryptid/server.ts
View File

@ -569,6 +569,13 @@ app.post('/api/register/start', async (c) => {
return c.json({ error: 'Username required' }, 400);
}
// Reject duplicates up front so the user isn't prompted to create a passkey
// that the /complete step would then reject with a unique-constraint crash.
const existing = await getUserByUsername(username);
if (existing) {
return c.json({ error: `Username "${username}" is already taken — pick a different one.` }, 409);
}
// Generate challenge
const challenge = Buffer.from(crypto.getRandomValues(new Uint8Array(32))).toString('base64url');
@ -658,7 +665,14 @@ app.post('/api/register/complete', async (c) => {
const did = (clientDid && typeof clientDid === 'string' && clientDid.startsWith('did:key:z'))
? clientDid
: `did:key:${userId.slice(0, 32)}`;
await createUser(userId, username, username, did);
try {
await createUser(userId, username, username, did);
} catch (err: any) {
if (err?.code === '23505' || /unique constraint/i.test(err?.message || '')) {
return c.json({ error: `Username "${username}" is already taken — pick a different one.` }, 409);
}
throw err;
}
// Set recovery email if provided during registration
if (email && /^[^\s@]+@[^\s@]+\.[^\s@]+$/.test(email)) {