rspace-online

History

Jeff Emmett 5bb46afe6d fix(invite-claim): send publicKey + JSON error responses The /join and OIDC accept pages were calling /api/register/complete without the public key extracted from the WebAuthn attestation. storeCredential writes a credentials row with a NOT NULL public_key column, so the request crashed with an unhandled exception and Hono replied "Internal Server Error" as plain text — the client JSON.parse choked on it. - Extract credential.response.getPublicKey() on the client and include it in the completion payload (both /join and /oidc/accept flows). - Add app.onError to return JSON 500s on /api/* routes so any future crashes produce parseable error bodies instead of cascading into confusing "Unexpected token 'I'" errors in the browser.	2026-04-17 10:09:52 -04:00
..
encryptid	fix(invite-claim): send publicKey + JSON error responses	2026-04-17 10:09:52 -04:00
lib	feat: add JSON WebSocket mode, demo seed data, and useDemoSync hook	2026-02-15 09:38:59 -07:00

Jeff Emmett 5bb46afe6d fix(invite-claim): send publicKey + JSON error responses

The /join and OIDC accept pages were calling /api/register/complete without
the public key extracted from the WebAuthn attestation. storeCredential writes
a credentials row with a NOT NULL public_key column, so the request crashed
with an unhandled exception and Hono replied "Internal Server Error" as plain
text — the client JSON.parse choked on it.

- Extract credential.response.getPublicKey() on the client and include it in
  the completion payload (both /join and /oidc/accept flows).
- Add app.onError to return JSON 500s on /api/* routes so any future crashes
  produce parseable error bodies instead of cascading into confusing "Unexpected
  token 'I'" errors in the browser.

2026-04-17 10:09:52 -04:00

encryptid

fix(invite-claim): send publicKey + JSON error responses

2026-04-17 10:09:52 -04:00

lib

feat: add JSON WebSocket mode, demo seed data, and useDemoSync hook

2026-02-15 09:38:59 -07:00