yyh 573e099f6c fix(web): preserve current URL on 401 redirect and harden token refresh lock ...

- Build signin URL with redirect param so users return to their
  original page after re-authentication
- Replace naive refresh lock with token-based ownership to prevent
  cross-tab lock release conflicts
- Add stale lock detection with max age to avoid deadlocks from
  crashed tabs
- Add timeout to waitUntilTokenRefreshed to prevent infinite polling
- Add tests for signin redirect URL building and refresh token logic

2026-02-10 14:57:26 +08:00

4.0 KiB

Raw Blame History

View Raw