mirror of
https://github.com/fosrl/pangolin.git
synced 2026-07-16 06:08:33 -05:00
[GH-ISSUE #2903] Android login hangs on "generating sign in code..." when browser is Firefox #9029
Reference in New Issue
Block a user
Delete Branch "%!s()"
Deleting a branch is permanent. Although the deleted branch may continue to exist for a short time before it actually gets removed, it CANNOT be undone in most cases. Continue?
Originally created by @Plecebo on GitHub (Apr 26, 2026).
Original GitHub issue: https://github.com/fosrl/pangolin/issues/2903
Describe the Bug
After completing OIDC authorization in the browser, the app stays on "generating sign in code..." indefinitely. The success page fires an Android deep link via window.location.href = "intent://auth-success#Intent;scheme=pangolin;package=net.pangolin.Pangolin;end" — but Firefox on Android silently ignores intent:// URIs (this scheme is Chrome-only). The app never receives the callback and never polls for the session token.
Server side completes correctly: deviceWebAuthCodes shows verified=1 with the correct userId populated. Zero network traffic from the device after the OIDC redirect — the app is simply never signaled.
Environment
To Reproduce
Expected Behavior
App receives the deep link callback, polls /api/v1/auth/device-web-auth/poll/
, and completes login.@qroac commented on GitHub (Apr 30, 2026):
Same for me.
Tested with OIDC authentication (keycloak) and local admin user
Smartphone: Samsung S21
Worked after switching default browser from firefox to chrome.