Closed donl closed 1 year ago
Thanks @donl I'll take a look
@donl it appears the issue is caused by a client sending a request with an invalid user token. The function parsing the token doesn't throw on unexpected input at https://github.com/appy-one/acebase-server/blob/master/src/shared/tokens.ts#L35
I'll fix this tomorrow!
I published the fix in v1.16.2, thanks for reporting @donl!
I don't think I was doing anything special code-wise... Just poking around on the client while not being signed in. Doesn't seem to happen 100% repeatably.