c5987b1b6b
CRITICAL: Passkey authentication was hardcoded to always grant admin role, completely bypassing RBAC and allowing any passkey user to gain full admin access. Changes: - Store username and role in passkey credential during registration - Retrieve and use stored role during authentication (not hardcoded admin) - Fallback to admin for legacy credentials without role field Security Impact: - Prevents privilege escalation via passkey authentication - Enforces proper RBAC for passkey users - Maintains backward compatibility with existing passkeys Tests: 214 passing
Dashboard
CI deploy test after fixing duplicate network issue