starred/pocket-id
1
0
Fork 0
mirror of https://github.com/pocket-id/pocket-id.git synced 2026-02-05 00:39:38 +03:00
Code Issues 61 Packages Projects Releases 10 Wiki Activity

🐛 Bug Report: First passkey login attempt fails on Android, works after "Retry" #441

New Issue
Closed
opened 2026-02-04 19:52:20 +03:00 by OVERLORD · 9 comments
OVERLORD commented 2026-02-04 19:52:20 +03:00
Owner
Copy Link

Originally created by @rmb82 on GitHub (Aug 24, 2025).

Reproduction steps

When I try to log in using a passkey (WebAuthn) on my Android phone (Pixel 9 Pro XL, Android 16, Chrome):

  1. I open the Pocket ID login page (self-hosted)
  2. I click "Sign in"
  3. My fingerprint is requested and I authenticate successfully
  4. An error is shown: "Something went wrong. Please try again."
  5. I click "Retry"
  6. My fingerprint is requested and I authenticate successfully
  7. The login completes successfully without asking for fingerprint again

Expected behavior

Authentication should succeed on the first attempt, right after passkey validation.

There should be no need to click "Retry" or restart the flow if the passkey is valid and the authentication completes normally.

Actual Behavior

The first authentication attempt fails with an error ("Something went wrong").
After clicking Retry, the login succeeds immediately — even without repeating the biometric step.

From the user's point of view:

  • First login attempt fails
  • Retry works instantly

📋 Relevant log from Pocket ID (v1.8.1):

... /api/webauthn/login/start → 200 OK
... /api/webauthn/login/finish → 500 ERROR
↪ Failed to lookup Client-side Discoverable Credential: record not found
... /api/webauthn/login/start → 200 OK
... /api/webauthn/login/finish → 200 OK ✅

Device info:

  • Pixel 9 Pro XL
  • Android 16
  • Chrome (latest stable)

Image

Pocket ID Version

v1.8.1 ( same on previously version)

Database

SQLite

OS and Environment

Debian12 / Docker (OMV Compose)

compose :

services:
  pocket-id:
    image: ghcr.io/pocket-id/pocket-id:v1
    container_name: pocket-id
    restart: unless-stopped
    env_file:
      - pocket-id.env
    ports:
      - 1411:1411
    volumes:
      - /etc/localtime:/etc/localtime:ro
      - "${PATH_TO_DATA}/pocket-id/data:/app/data"
    # Optional healthcheck
    healthcheck:
      test: [ "CMD", "/app/pocket-id", "healthcheck" ]
      interval: 1m30s
      timeout: 5s
      retries: 2
      start_period: 10s

# See the documentation for more information: https://pocket-id.org/docs/configuration/environment-variables
APP_URL=https://myprivate.pocket-id.com
TRUST_PROXY=true
MAXMIND_LICENSE_KEY=my_licence_key
PUID=1018
PGID=1018
ENCRYPTATION_KEY=my_encryptation_key=

Log Output

time=2025-08-24T18:18:55.487+02:00 level=INFO msg="Incoming request" app=pocket-id version=1.8.1 request.time=2025-08-24T16:18:55.487Z request.method=GET request.host=myprivate.pocket-id.com request.path=/api/application-configuration request.query="" request.params=map[] request.route=/api/application-configuration request.ip=192.168.1.254 request.referer=https://myprivate.pocket-id.com/ request.length=0 response.time=2025-08-24T16:18:55.487Z response.latency=167.591µs response.status=200 response.length=531
time=2025-08-24T18:18:55.489+02:00 level=INFO msg="Error #01: You are not signed in" app=pocket-id version=1.8.1 request.time=2025-08-24T16:18:55.489Z request.method=GET request.host=myprivate.pocket-id.com request.path=/api/users/me request.query="" request.params=map[] request.route=/api/users/me request.ip=192.168.1.254 request.referer=https://myprivate.pocket-id.com/ request.length=0 response.time=2025-08-24T16:18:55.489Z response.latency=62.817µs response.status=401 response.length=33
time=2025-08-24T18:18:55.510+02:00 level=INFO msg="Error #01: You are not signed in" app=pocket-id version=1.8.1 request.time=2025-08-24T16:18:55.510Z request.method=GET request.host=myprivate.pocket-id.com request.path=/api/users/me request.query="" request.params=map[] request.route=/api/users/me request.ip=192.168.1.254 request.referer=https://myprivate.pocket-id.com/ request.length=0 response.time=2025-08-24T16:18:55.510Z response.latency=47.02µs response.status=401 response.length=33
time=2025-08-24T18:18:55.533+02:00 level=INFO msg="Incoming request" app=pocket-id version=1.8.1 request.time=2025-08-24T16:18:55.533Z request.method=GET request.host=myprivate.pocket-id.com request.path=/api/application-configuration request.query="" request.params=map[] request.route=/api/application-configuration request.ip=192.168.1.254 request.referer=https://myprivate.pocket-id.com/ request.length=0 response.time=2025-08-24T16:18:55.533Z response.latency=178.78µs response.status=200 response.length=531
time=2025-08-24T18:18:55.614+02:00 level=INFO msg="Incoming request" app=pocket-id version=1.8.1 request.time=2025-08-24T16:18:55.614Z request.method=GET request.host=myprivate.pocket-id.com request.path=/api/application-configuration/logo request.query="light=false" request.params=map[] request.route=/api/application-configuration/logo request.ip=192.168.1.254 request.referer=https://myprivate.pocket-id.com/login request.length=0 response.time=2025-08-24T16:18:55.614Z response.latency=154.215µs response.status=304 response.length=0
time=2025-08-24T18:18:55.825+02:00 level=INFO msg="Incoming request" app=pocket-id version=1.8.1 request.time=2025-08-24T16:18:55.825Z request.method=GET request.host=myprivate.pocket-id.com request.path=/api/application-configuration/background-image request.query="" request.params=map[] request.route=/api/application-configuration/background-image request.ip=192.168.1.254 request.referer=https://myprivate.pocket-id.com/login request.length=0 response.time=2025-08-24T16:18:55.825Z response.latency=134.904µs response.status=304 response.length=0
time=2025-08-24T18:19:03.506+02:00 level=INFO msg="Incoming request" app=pocket-id version=1.8.1 request.time=2025-08-24T16:19:03.498Z request.method=GET request.host=myprivate.pocket-id.com request.path=/api/webauthn/login/start request.query="" request.params=map[] request.route=/api/webauthn/login/start request.ip=192.168.1.254 request.referer=https://myprivate.pocket-id.com/login request.length=0 response.time=2025-08-24T16:19:03.506Z response.latency=7.515872ms response.status=200 response.length=129
time=2025-08-24T18:19:06.255+02:00 level=INFO msg="Error #01: Failed to lookup Client-side Discoverable Credential: record not found" app=pocket-id version=1.8.1 request.time=2025-08-24T16:19:06.254Z request.method=POST request.host=myprivate.pocket-id.com request.path=/api/webauthn/login/finish request.query="" request.params=map[] request.route=/api/webauthn/login/finish request.ip=192.168.1.254 request.referer=https://myprivate.pocket-id.com/login request.length=609 response.time=2025-08-24T16:19:06.255Z response.latency=926.169µs response.status=500 response.length=32
time=2025-08-24T18:19:09.286+02:00 level=INFO msg="Incoming request" app=pocket-id version=1.8.1 request.time=2025-08-24T16:19:09.281Z request.method=GET request.host=myprivate.pocket-id.com request.path=/api/webauthn/login/start request.query="" request.params=map[] request.route=/api/webauthn/login/start request.ip=192.168.1.254 request.referer=https://myprivate.pocket-id.com/login request.length=0 response.time=2025-08-24T16:19:09.286Z response.latency=4.47192ms response.status=200 response.length=129
time=2025-08-24T18:19:11.487+02:00 level=INFO msg="Incoming request" app=pocket-id version=1.8.1 request.time=2025-08-24T16:19:11.474Z request.method=POST request.host=myprivate.pocket-id.com request.path=/api/webauthn/login/finish request.query="" request.params=map[] request.route=/api/webauthn/login/finish request.ip=192.168.1.254 request.referer=https://myprivate.pocket-id.com/login request.length=608 response.time=2025-08-24T16:19:11.487Z response.latency=12.612566ms response.status=200 response.length=233
time=2025-08-24T18:19:11.527+02:00 level=INFO msg="Incoming request" app=pocket-id version=1.8.1 request.time=2025-08-24T16:19:11.525Z request.method=GET request.host=myprivate.pocket-id.com request.path=/api/users/48685f2b-e625-4775-963d-de7c00be2d18/profile-picture.png request.query="" request.params=map[id:48685f2b-e625-4775-963d-de7c00be2d18] request.route=/api/users/:id/profile-picture.png request.ip=192.168.1.254 request.referer=https://myprivate.pocket-id.com/login request.length=0 response.time=2025-08-24T16:19:11.527Z response.latency=1.165431ms response.status=200 response.length=110985
time=2025-08-24T18:19:11.965+02:00 level=INFO msg="Incoming request" app=pocket-id version=1.8.1 request.time=2025-08-24T16:19:11.961Z request.method=GET request.host=myprivate.pocket-id.com request.path=/api/users/me request.query="" request.params=map[] request.route=/api/users/me request.ip=192.168.1.254 request.referer=https://myprivate.pocket-id.com/login request.length=0 response.time=2025-08-24T16:19:11.965Z response.latency=3.859162ms response.status=200 response.length=392
time=2025-08-24T18:19:12.018+02:00 level=INFO msg="Incoming request" app=pocket-id version=1.8.1 request.time=2025-08-24T16:19:12.016Z request.method=GET request.host=myprivate.pocket-id.com request.path=/api/webauthn/credentials request.query="" request.params=map[] request.route=/api/webauthn/credentials request.ip=192.168.1.254 request.referer=https://myprivate.pocket-id.com/login request.length=0 response.time=2025-08-24T16:19:12.018Z response.latency=1.492363ms response.status=200 response.length=322
Originally created by @rmb82 on GitHub (Aug 24, 2025). ### Reproduction steps When I try to log in using a passkey (WebAuthn) on my Android phone (Pixel 9 Pro XL, Android 16, Chrome): 1. I open the Pocket ID login page (self-hosted) 2. I click "Sign in" 3. My fingerprint is requested and I authenticate successfully 4. An error is shown: **"Something went wrong. Please try again."** 5. I click **"Retry"** 6. My fingerprint is requested and I authenticate successfully 7. The login completes successfully without asking for fingerprint again ### Expected behavior Authentication should succeed **on the first attempt**, right after passkey validation. There should be no need to click "Retry" or restart the flow if the passkey is valid and the authentication completes normally. ### Actual Behavior The first authentication attempt **fails** with an error ("Something went wrong"). After clicking **Retry**, the login succeeds immediately — even without repeating the biometric step. From the user's point of view: - First login attempt fails - Retry works instantly 📋 Relevant log from Pocket ID (v1.8.1): ``` ... /api/webauthn/login/start → 200 OK ... /api/webauthn/login/finish → 500 ERROR ↪ Failed to lookup Client-side Discoverable Credential: record not found ... /api/webauthn/login/start → 200 OK ... /api/webauthn/login/finish → 200 OK ✅ ``` **Device info:** - Pixel 9 Pro XL - Android 16 - Chrome (latest stable) ![Image](https://github.com/user-attachments/assets/33f9296e-8cc0-42e5-96ce-1d21f8f25343) ### Pocket ID Version v1.8.1 ( same on previously version) ### Database SQLite ### OS and Environment **Debian12 / Docker (OMV Compose)** compose : ```yaml services: pocket-id: image: ghcr.io/pocket-id/pocket-id:v1 container_name: pocket-id restart: unless-stopped env_file: - pocket-id.env ports: - 1411:1411 volumes: - /etc/localtime:/etc/localtime:ro - "${PATH_TO_DATA}/pocket-id/data:/app/data" # Optional healthcheck healthcheck: test: [ "CMD", "/app/pocket-id", "healthcheck" ] interval: 1m30s timeout: 5s retries: 2 start_period: 10s ``` ``` # See the documentation for more information: https://pocket-id.org/docs/configuration/environment-variables APP_URL=https://myprivate.pocket-id.com TRUST_PROXY=true MAXMIND_LICENSE_KEY=my_licence_key PUID=1018 PGID=1018 ENCRYPTATION_KEY=my_encryptation_key= ``` ### Log Output ```log time=2025-08-24T18:18:55.487+02:00 level=INFO msg="Incoming request" app=pocket-id version=1.8.1 request.time=2025-08-24T16:18:55.487Z request.method=GET request.host=myprivate.pocket-id.com request.path=/api/application-configuration request.query="" request.params=map[] request.route=/api/application-configuration request.ip=192.168.1.254 request.referer=https://myprivate.pocket-id.com/ request.length=0 response.time=2025-08-24T16:18:55.487Z response.latency=167.591µs response.status=200 response.length=531 time=2025-08-24T18:18:55.489+02:00 level=INFO msg="Error #01: You are not signed in" app=pocket-id version=1.8.1 request.time=2025-08-24T16:18:55.489Z request.method=GET request.host=myprivate.pocket-id.com request.path=/api/users/me request.query="" request.params=map[] request.route=/api/users/me request.ip=192.168.1.254 request.referer=https://myprivate.pocket-id.com/ request.length=0 response.time=2025-08-24T16:18:55.489Z response.latency=62.817µs response.status=401 response.length=33 time=2025-08-24T18:18:55.510+02:00 level=INFO msg="Error #01: You are not signed in" app=pocket-id version=1.8.1 request.time=2025-08-24T16:18:55.510Z request.method=GET request.host=myprivate.pocket-id.com request.path=/api/users/me request.query="" request.params=map[] request.route=/api/users/me request.ip=192.168.1.254 request.referer=https://myprivate.pocket-id.com/ request.length=0 response.time=2025-08-24T16:18:55.510Z response.latency=47.02µs response.status=401 response.length=33 time=2025-08-24T18:18:55.533+02:00 level=INFO msg="Incoming request" app=pocket-id version=1.8.1 request.time=2025-08-24T16:18:55.533Z request.method=GET request.host=myprivate.pocket-id.com request.path=/api/application-configuration request.query="" request.params=map[] request.route=/api/application-configuration request.ip=192.168.1.254 request.referer=https://myprivate.pocket-id.com/ request.length=0 response.time=2025-08-24T16:18:55.533Z response.latency=178.78µs response.status=200 response.length=531 time=2025-08-24T18:18:55.614+02:00 level=INFO msg="Incoming request" app=pocket-id version=1.8.1 request.time=2025-08-24T16:18:55.614Z request.method=GET request.host=myprivate.pocket-id.com request.path=/api/application-configuration/logo request.query="light=false" request.params=map[] request.route=/api/application-configuration/logo request.ip=192.168.1.254 request.referer=https://myprivate.pocket-id.com/login request.length=0 response.time=2025-08-24T16:18:55.614Z response.latency=154.215µs response.status=304 response.length=0 time=2025-08-24T18:18:55.825+02:00 level=INFO msg="Incoming request" app=pocket-id version=1.8.1 request.time=2025-08-24T16:18:55.825Z request.method=GET request.host=myprivate.pocket-id.com request.path=/api/application-configuration/background-image request.query="" request.params=map[] request.route=/api/application-configuration/background-image request.ip=192.168.1.254 request.referer=https://myprivate.pocket-id.com/login request.length=0 response.time=2025-08-24T16:18:55.825Z response.latency=134.904µs response.status=304 response.length=0 time=2025-08-24T18:19:03.506+02:00 level=INFO msg="Incoming request" app=pocket-id version=1.8.1 request.time=2025-08-24T16:19:03.498Z request.method=GET request.host=myprivate.pocket-id.com request.path=/api/webauthn/login/start request.query="" request.params=map[] request.route=/api/webauthn/login/start request.ip=192.168.1.254 request.referer=https://myprivate.pocket-id.com/login request.length=0 response.time=2025-08-24T16:19:03.506Z response.latency=7.515872ms response.status=200 response.length=129 time=2025-08-24T18:19:06.255+02:00 level=INFO msg="Error #01: Failed to lookup Client-side Discoverable Credential: record not found" app=pocket-id version=1.8.1 request.time=2025-08-24T16:19:06.254Z request.method=POST request.host=myprivate.pocket-id.com request.path=/api/webauthn/login/finish request.query="" request.params=map[] request.route=/api/webauthn/login/finish request.ip=192.168.1.254 request.referer=https://myprivate.pocket-id.com/login request.length=609 response.time=2025-08-24T16:19:06.255Z response.latency=926.169µs response.status=500 response.length=32 time=2025-08-24T18:19:09.286+02:00 level=INFO msg="Incoming request" app=pocket-id version=1.8.1 request.time=2025-08-24T16:19:09.281Z request.method=GET request.host=myprivate.pocket-id.com request.path=/api/webauthn/login/start request.query="" request.params=map[] request.route=/api/webauthn/login/start request.ip=192.168.1.254 request.referer=https://myprivate.pocket-id.com/login request.length=0 response.time=2025-08-24T16:19:09.286Z response.latency=4.47192ms response.status=200 response.length=129 time=2025-08-24T18:19:11.487+02:00 level=INFO msg="Incoming request" app=pocket-id version=1.8.1 request.time=2025-08-24T16:19:11.474Z request.method=POST request.host=myprivate.pocket-id.com request.path=/api/webauthn/login/finish request.query="" request.params=map[] request.route=/api/webauthn/login/finish request.ip=192.168.1.254 request.referer=https://myprivate.pocket-id.com/login request.length=608 response.time=2025-08-24T16:19:11.487Z response.latency=12.612566ms response.status=200 response.length=233 time=2025-08-24T18:19:11.527+02:00 level=INFO msg="Incoming request" app=pocket-id version=1.8.1 request.time=2025-08-24T16:19:11.525Z request.method=GET request.host=myprivate.pocket-id.com request.path=/api/users/48685f2b-e625-4775-963d-de7c00be2d18/profile-picture.png request.query="" request.params=map[id:48685f2b-e625-4775-963d-de7c00be2d18] request.route=/api/users/:id/profile-picture.png request.ip=192.168.1.254 request.referer=https://myprivate.pocket-id.com/login request.length=0 response.time=2025-08-24T16:19:11.527Z response.latency=1.165431ms response.status=200 response.length=110985 time=2025-08-24T18:19:11.965+02:00 level=INFO msg="Incoming request" app=pocket-id version=1.8.1 request.time=2025-08-24T16:19:11.961Z request.method=GET request.host=myprivate.pocket-id.com request.path=/api/users/me request.query="" request.params=map[] request.route=/api/users/me request.ip=192.168.1.254 request.referer=https://myprivate.pocket-id.com/login request.length=0 response.time=2025-08-24T16:19:11.965Z response.latency=3.859162ms response.status=200 response.length=392 time=2025-08-24T18:19:12.018+02:00 level=INFO msg="Incoming request" app=pocket-id version=1.8.1 request.time=2025-08-24T16:19:12.016Z request.method=GET request.host=myprivate.pocket-id.com request.path=/api/webauthn/credentials request.query="" request.params=map[] request.route=/api/webauthn/credentials request.ip=192.168.1.254 request.referer=https://myprivate.pocket-id.com/login request.length=0 response.time=2025-08-24T16:19:12.018Z response.latency=1.492363ms response.status=200 response.length=322 ```
OVERLORD commented 2026-02-04 19:52:36 +03:00
Author
Owner
Copy Link

@stonith404 commented on GitHub (Aug 24, 2025):

This seems like a bug of Android or Chrome because "Failed to lookup Client-side Discoverable Credential: record not found" means that Pocket ID can't find the provided passkey.

Does this happen every time your try to sign in? Can you try passkey authentication on another website to check if this really only happens with Pocket ID? Can you try it in another browser and device?

@stonith404 commented on GitHub (Aug 24, 2025): This seems like a bug of Android or Chrome because "Failed to lookup Client-side Discoverable Credential: record not found" means that Pocket ID can't find the provided passkey. Does this happen every time your try to sign in? Can you try passkey authentication on another website to check if this really only happens with Pocket ID? Can you try it in another browser and device?
OVERLORD commented 2026-02-04 19:52:48 +03:00
Author
Owner
Copy Link

@rmb82 commented on GitHub (Aug 24, 2025):

This seems like a bug of Android or Chrome because "Failed to lookup Client-side Discoverable Credential: record not found" means that Pocket ID can't find the provided passkey.

Does this happen every time your try to sign in? Can you try passkey authentication on another website to check if this really only happens with Pocket ID? Can you try it in another browser and device?

I just tested on https://demo.pocket-id.org/start-demo and I didn’t experience any issue there.

@rmb82 commented on GitHub (Aug 24, 2025): > This seems like a bug of Android or Chrome because "Failed to lookup Client-side Discoverable Credential: record not found" means that Pocket ID can't find the provided passkey. > > Does this happen every time your try to sign in? Can you try passkey authentication on another website to check if this really only happens with Pocket ID? Can you try it in another browser and device? I just tested on https://demo.pocket-id.org/start-demo and I didn’t experience any issue there.
OVERLORD commented 2026-02-04 19:52:56 +03:00
Author
Owner
Copy Link

@chuegel commented on GitHub (Aug 30, 2025):

Having the se issue on a Pixel 8 Pro. Although I'm running GrapheneOS and the browser is Vanadium. Other webauthn sites like Amazon, PayPal work
Edit: webauthn.io works as well

Demo shows the same issue

Screenshot_20250830-125252.png

@chuegel commented on GitHub (Aug 30, 2025): Having the se issue on a Pixel 8 Pro. Although I'm running GrapheneOS and the browser is Vanadium. Other webauthn sites like Amazon, PayPal work Edit: webauthn.io works as well Demo shows the same issue ![Screenshot_20250830-125252.png](https://github.com/user-attachments/assets/5b41060b-2aa7-40e4-8316-d6f36360e555)
OVERLORD commented 2026-02-04 19:53:02 +03:00
Author
Owner
Copy Link

@rmb82 commented on GitHub (Sep 3, 2025):

Additional tests

  • On my own phone (Pixel 9 Pro XL, Android 16) with Brave: authentication works on the first try, no error shown.

  • On my wife’s Samsung S23 FE (Android, Chrome/Brave): authentication does not work at all.

    • The biometric prompt never appears.
    • The UI keeps spinning until it shows “Authentication expired”.
    • Clicking Retry has no effect in this case.
    • No error appears in the Pocket ID container logs.
    • Nothing shows up in the Audit section of Pocket ID either (the failed attempt is not even recorded).

➡️ Can you please confirm if Pocket ID is expected to work correctly with Android browsers and passkeys/biometric authentication?

Image
@rmb82 commented on GitHub (Sep 3, 2025): ### Additional tests * On **my own phone (Pixel 9 Pro XL, Android 16) with Brave**: authentication works on the **first try**, no error shown. * On **my wife’s Samsung S23 FE (Android, Chrome/Brave)**: authentication **does not work at all**. * The biometric prompt never appears. * The UI keeps spinning until it shows *“Authentication expired”*. * Clicking **Retry** has no effect in this case. * No error appears in the Pocket ID container logs. * Nothing shows up in the **Audit** section of Pocket ID either (the failed attempt is not even recorded). ➡️ Can you please confirm if Pocket ID is expected to work correctly with Android browsers and passkeys/biometric authentication? <img width="589" height="747" alt="Image" src="https://github.com/user-attachments/assets/aaea65c5-034a-4aa3-a23b-594b6f0fd1f0" />
OVERLORD commented 2026-02-04 19:53:12 +03:00
Author
Owner
Copy Link

@stonith404 commented on GitHub (Sep 9, 2025):

Does webauthn.io work as well if you set "User Verification" and "Discoverable Credential" to required? Please make sure to test it exactly the same way as in Pocket ID. E.g if you have created the passkey on a different device, register your account on webauthn.io on the other device as well.

@stonith404 commented on GitHub (Sep 9, 2025): Does webauthn.io work as well if you set "User Verification" and "Discoverable Credential" to required? Please make sure to test it exactly the same way as in Pocket ID. E.g if you have created the passkey on a different device, register your account on webauthn.io on the other device as well.
OVERLORD commented 2026-02-04 19:53:20 +03:00
Author
Owner
Copy Link

@stonith404 commented on GitHub (Sep 22, 2025):

I’ll close this issue for now since there hasn’t been any recent activity. If you gather more details or try the experiment I shared earlier with webauthn.io, feel free to comment here and we can reopen the issue.

@stonith404 commented on GitHub (Sep 22, 2025): I’ll close this issue for now since there hasn’t been any recent activity. If you gather more details or try the experiment I shared earlier with [webauthn.io](https://webauthn.io/), feel free to comment here and we can reopen the issue.
OVERLORD commented 2026-02-04 19:53:30 +03:00
Author
Owner
Copy Link

@mvantschip commented on GitHub (Oct 4, 2025):

Hi all,

Experiencing the exact same problem: on my phone/web browser, no issues at all, but my partner is unable to login. I checked webauthnio and it shows the following error on their (phone) Firefox browser when I click register:
"Type error for parameter updateProperties (Property "highlighted" is unsupported by Firefox) for tabs.update."
On my Firefox, there is no error. I also do not see any particular problems in pocketid logs.

We have the same phone and the same Firefox build, we both use Bitwarden for our passkeys.

Any other tests I could run to investigate the problem?

Thanks,

@mvantschip commented on GitHub (Oct 4, 2025): Hi all, Experiencing the exact same problem: on my phone/web browser, no issues at all, but my partner is unable to login. I checked webauthnio and it shows the following error on their (phone) Firefox browser when I click register: "Type error for parameter updateProperties (Property "highlighted" is unsupported by Firefox) for tabs.update." On my Firefox, there is no error. I also do not see any particular problems in pocketid logs. We have the same phone and the same Firefox build, we both use Bitwarden for our passkeys. Any other tests I could run to investigate the problem? Thanks,
OVERLORD commented 2026-02-04 19:53:37 +03:00
Author
Owner
Copy Link

@stonith404 commented on GitHub (Oct 5, 2025):

@mvantschip Thanks for testing. If the issue happens on webauthn.io as well, it's not a bug that we can solve on our side. A quick search suggests that this issues is caused by Bitwarden (https://github.com/bitwarden/clients/issues/13798). Maybe your partner has an older version of Bitwarden installed?

@stonith404 commented on GitHub (Oct 5, 2025): @mvantschip Thanks for testing. If the issue happens on webauthn.io as well, it's not a bug that we can solve on our side. A quick search suggests that this issues is caused by Bitwarden (https://github.com/bitwarden/clients/issues/13798). Maybe your partner has an older version of Bitwarden installed?
OVERLORD commented 2026-02-04 19:53:48 +03:00
Author
Owner
Copy Link

@mvantschip commented on GitHub (Oct 6, 2025):

@mvantschip Thanks for testing. If the issue happens on webauthn.io as well, it's not a bug that we can solve on our side. A quick search suggests that this issues is caused by Bitwarden (bitwarden/clients#13798). Maybe your partner has an older version of Bitwarden installed?

Thank you for the swift response. I also saw the Bitwarden issue. The weird thing is that my partner was on a newer version of Bitwarden than I was... Either way, will continue troubleshooting on their end then. Thanks again!

@mvantschip commented on GitHub (Oct 6, 2025): > [@mvantschip](https://github.com/mvantschip) Thanks for testing. If the issue happens on webauthn.io as well, it's not a bug that we can solve on our side. A quick search suggests that this issues is caused by Bitwarden ([bitwarden/clients#13798](https://github.com/bitwarden/clients/issues/13798)). Maybe your partner has an older version of Bitwarden installed? Thank you for the swift response. I also saw the Bitwarden issue. The weird thing is that my partner was on a newer version of Bitwarden than I was... Either way, will continue troubleshooting on their end then. Thanks again!
Sign in to join this conversation.
No Branch/Tag Specified
Branches Tags
Labels
Clear labels
breaking
bug
bug
bug
documentation
feature
needs more upvotes
open to pull requests
pull-request
Mirrored from GitHub Pull Request
No Label
Milestone
No items
No Milestone
Projects
Clear projects
No project
Assignees
Clear assignees
OVERLORD
No Assignees
1 Participants
Notifications
Due Date
No due date set.
Dependencies

No dependencies set.

Reference: starred/pocket-id#441
Delete Branch "%!s()"

Deleting a branch is permanent. Although the deleted branch may continue to exist for a short time before it actually gets removed, it CANNOT be undone in most cases. Continue?