Jeff Emmett
88118cd157
The guardian page and auth.rspace.online login page were using the client-side authenticatePasskey()/registerPasskey() SDK functions which generate their own challenge and return AuthenticationResult — but then tried to send result.challenge and result.credential (both undefined) to the server. This caused postgres to throw "UNDEFINED_VALUE" resulting in a 500 "Internal Server Error" that the client couldn't parse as JSON. Fix: use the proper server-initiated flow matching rstack-identity.ts: 1. POST /api/auth/start (or /register/start) to get server challenge 2. navigator.credentials.get/create with that challenge 3. POST /api/auth/complete (or /register/complete) with challenge + credential Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com> |
||
|---|---|---|
| .. | ||
| encryptid | ||
| lib | ||