try to fix passkey failure

Author: jp8-isep

backend/config.py

@@ -59,6 +59,7 @@ class Config:
     # TOTP/Auth Config
     TOTP_ISSUER = os.getenv('TOTP_ISSUER', 'TopicsFlow')
     TOTP_VALIDITY_WINDOW = int(os.getenv('TOTP_VALIDITY_WINDOW', '1'))
+    PASSKEY_RP_ID = os.getenv('PASSKEY_RP_ID')  # Optional: Will auto-derive from FRONTEND_URL if not set
 
     # External Services
     SMS_SERVICE_API_KEY = os.getenv('SMS_SERVICE_API_KEY')

backend/services/passkey_service.py

@@ -46,12 +46,27 @@ def __init__(self, rp_id: str = None, rp_name: str = "TopicsFlow"):
             rp_name: Relying Party name (your app name)
         """
         # Use environment variable or default
-        self.rp_id = rp_id or os.getenv('PASSKEY_RP_ID', 'localhost')
-        self.rp_name = rp_name or os.getenv('APP_NAME', 'TopicsFlow')
-
         # Origin for WebAuthn (e.g., 'http://localhost:3000' or 'https://topicsflow.me')
         self.origin = os.getenv('FRONTEND_URL', 'http://localhost:3000')
 
+        # Determine RP ID
+        if rp_id:
+            self.rp_id = rp_id
+        elif os.getenv('PASSKEY_RP_ID'):
+            self.rp_id = os.getenv('PASSKEY_RP_ID')
+        else:
+            # Derive from FRONTEND_URL if not explicitly set
+            # This handles 'https://topicsflow.me' -> 'topicsflow.me'
+            from urllib.parse import urlparse
+            try:
+                parsed_url = urlparse(self.origin)
+                self.rp_id = parsed_url.hostname or 'localhost'
+            except Exception as e:
+                logger.warning(f"Failed to parse FRONTEND_URL for RP ID: {e}")
+                self.rp_id = 'localhost'
+
+        self.rp_name = rp_name or os.getenv('APP_NAME', 'TopicsFlow')
+
         logger.info(f"PasskeyService initialized: RP ID={self.rp_id}, Origin={self.origin}")
 
     def generate_registration_options(self, user_id: str, username: str, display_name: str = None) -> Dict[str, Any]: