cameleer/cameleer-saas
2
0
Fork 0
Code Issues 24 Pull Requests Actions Packages Projects Releases Wiki Activity
Files
fcb25778e1f880f08eb5b961461b9234d8760ffe
cameleer-saas/ui/sign-in/package.json
hsiegeln fcb25778e1
Some checks failed
CI / build (push) Successful in 3m6s
Details
CI / docker (push) Failing after 10s
Details
fix(sign-in): TOTP enrollment QR branding and verification failure 
Two bugs in the sign-in UI's TOTP MFA enrollment flow:

1. Auth app displayed the PC hostname and "Platform Owner" instead of
   "Cameleer" and the user's email. The sign-in UI was rendering Logto's
   pre-generated QR code which uses the ENDPOINT hostname as issuer.
   Now generates our own otpauth:// URI with proper branding, rendered
   client-side via qrcode.react.

2. TOTP code verification returned 400 "Invalid TOTP code". The
   verifyTotpSetup() call was missing the required verificationId
   parameter — Logto's Experience API needs it to locate the pending
   secret during enrollment.

Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com>
2026-04-28 18:34:52 +02:00

571 B
Raw Blame History

View Raw
Reference in New Issue View Git Blame Copy Permalink