github rhoopr/kei v0.9.1
on GitHub

2 hours ago

Fixed

  • Apple IDs with FIDO/WebAuthn security keys fail fast with a clear error. Accounts with a YubiKey or other hardware security key registered could sign in through SRP + 2FA, then hit an opaque CloudKit HTTP 401 AUTHENTICATION_FAILED "no auth method found" on the first API call and loop through re-auth until AUTH_ERROR_THRESHOLD stopped the sync. SRP now inspects the /signin/complete 409 body for fsaChallenge / keyNames and bails with AuthError::FidoNotSupported { key_names } before prompting for a 2FA code. The message names the registered keys and points to Settings > Apple ID & iCloud > Sign-In & Security > Security Keys. As a defense-in-depth, HttpStatusError now preserves a truncated copy of the CloudKit error body, and a 401 carrying "no auth method found" logs a WARN with the security-key hint and a link to the tracking issue. (#221)

Full changelog: CHANGELOG.md

Check out latest releases or
releases around rhoopr/kei v0.9.1

Don't miss a new kei release

NewReleases is sending notifications on new releases.

Get notifications