Skip to content

Dev#45

Merged
Bccorb merged 10 commits into
mainfrom
dev
Jun 29, 2026
Merged

Dev#45
Bccorb merged 10 commits into
mainfrom
dev

Conversation

@Bccorb

@Bccorb Bccorb commented Jun 29, 2026

Copy link
Copy Markdown
Contributor

No description provided.

Bccorb added 10 commits May 30, 2026 20:04
Registration now starts with just an email; verifying the registration email OTP
completes sign-up and returns a session. Add verifyRegistrationOtpHandler (core)
and verifyRegistrationOtp (express) so /otp/verify-email-otp and
/otp/verify-phone-otp set the session cookies — they previously proxied without
cookies, leaving browser users unauthenticated after registering. The shared
verify helper tolerates a phone-first step that returns no session yet.
authFetch now parses response bodies defensively: a plain-text error (e.g. a
rate-limited 429) or an empty body (204) no longer throws in handlers that read
the body before checking status, which previously crashed the adapter process.
Non-JSON -> { message: text }, empty -> undefined. Adds authFetch regression tests.
@Bccorb Bccorb self-assigned this Jun 29, 2026
@Bccorb Bccorb merged commit ca0f52e into main Jun 29, 2026
3 checks passed
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Labels

None yet

Projects

None yet

Development

Successfully merging this pull request may close these issues.

1 participant