Skip to content

Fix: password-protected easls returning 500 on publish#52

Merged
AdirAmsalem merged 1 commit into
mainfrom
debug-publish-password-500
Jul 6, 2026
Merged

Fix: password-protected easls returning 500 on publish#52
AdirAmsalem merged 1 commit into
mainfrom
debug-publish-password-500

Conversation

@AdirAmsalem

Copy link
Copy Markdown
Owner

What

Publishing a password-protected easl — via --password or --generate-password (and the equivalent API/MCP fields) — was failing with a 500 for every user. This restores the feature so password gating works end to end.

Why

Password hashing was configured above Cloudflare Workers' hard cap on PBKDF2 iterations, so the hash step threw at runtime and the publish request errored out. The gap wasn't caught because the local test runtime doesn't enforce that cap, so it passed CI while every real publish failed in production. This lowers the iteration count to the platform limit and adds a regression test that pins it, so a future bump can't silently reintroduce the outage. No data migration is needed — no password site was ever successfully stored.

@github-actions

github-actions Bot commented Jul 6, 2026

Copy link
Copy Markdown

Deploy Preview

https://preview-pr-52.easl.dev

Updated at 2026-07-06T12:35:58.732Z

@AdirAmsalem AdirAmsalem merged commit 27a7833 into main Jul 6, 2026
5 checks passed
@AdirAmsalem AdirAmsalem deleted the debug-publish-password-500 branch July 6, 2026 12:38
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Labels

None yet

Projects

None yet

Development

Successfully merging this pull request may close these issues.

1 participant