| Age | Commit message (Collapse) | Author | |
|---|---|---|---|
| 12 days | fix: validate VAPID public key on load, regenerate if swapped | Claudomator Agent | |
| The DB may contain keys generated before the swap fix, with the private key stored as the public key. Add ValidateVAPIDPublicKey() and use it in serve.go to detect and regenerate invalid stored keys on startup. Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com> | |||
| 12 days | fix: swap VAPID key return order in GenerateVAPIDKeys wrapper | Claudomator Agent | |
| webpush.GenerateVAPIDKeys() returns (privateKey, publicKey) but the claudomator wrapper declared (publicKey, privateKey), causing the 32-byte private key to be sent to browsers as the applicationServerKey. Browsers require a 65-byte uncompressed P256 point, so they rejected it with "The provided applicationServerKey is not valid." Adds a regression test that asserts public key is 87 chars/65 bytes with 0x04 prefix and private key is 43 chars/32 bytes. Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com> | |||
 |
index : claudomator.git | |
| claudomator — task automation server | www-data |
| summaryrefslogtreecommitdiff |