ivpn · MaciejTe · Apr 1, 2026 · Apr 1, 2026 · Apr 1, 2026 · Apr 1, 2026
diff --git a/app/nginx.conf b/app/nginx.conf
@@ -22,7 +22,7 @@ http {
         # CSP: the sha256 hash whitelists the inline theme bootstrap script in index.html.
         # If that script changes, regenerate with:
         # python3 -c "import hashlib,base64,re;h=re.search(r'<script>(.*?)</script>',open('index.html').read(),re.DOTALL).group(1);print(base64.b64encode(hashlib.sha256(h.encode()).digest()).decode())"
-        add_header Content-Security-Policy "default-src 'self'; script-src 'self' 'sha256-cdVSBJUTkdt+/1Hv5fQ1ypvOVNP5cRMEKnfA9q6dHo4=' https://browser.sentry-cdn.com; style-src 'self' 'unsafe-inline'; img-src 'self' data:; font-src 'self'; connect-src 'self' ${VITE_API_URL} https://*.${VITE_DNS_CHECK_DOMAIN} https://browser.sentry-cdn.com https://*.ingest.sentry.io ; frame-ancestors 'none'; base-uri 'self'; form-action 'self'" always;
+        add_header Content-Security-Policy "default-src 'self'; script-src 'self' 'sha256-cdVSBJUTkdt+/1Hv5fQ1ypvOVNP5cRMEKnfA9q6dHo4='; style-src 'self' 'unsafe-inline'; img-src 'self' data:; font-src 'self'; connect-src 'self' ${VITE_API_URL} https://*.${VITE_DNS_CHECK_DOMAIN} ; frame-ancestors 'none'; base-uri 'self'; form-action 'self'" always;
         add_header Permissions-Policy "camera=(), microphone=(), geolocation=()" always;
 
         # Access Control

diff --git a/app/src/lib/webauthn.ts b/app/src/lib/webauthn.ts
@@ -67,7 +67,6 @@ export async function registerPasskey(email: string, subid: string): Promise<voi
       throw new Error("Failed to complete passkey registration");
     }
   } catch (err: unknown) {
-    console.error('Passkey registration error:', err);
     const webauthnErr = err as WebAuthnError;
 
     // Handle 429 rate limiting errors
@@ -145,7 +144,6 @@ export async function authenticateWithPasskey(
 
     // Authentication successful - this is where the success toast should be shown
   } catch (err: unknown) {
-    console.error('Passkey authentication error:', err);
     const webauthnErr = err as WebAuthnError;
 
     // Handle 429 rate limiting and session limit errors
@@ -233,7 +231,6 @@ export async function addPasskeyToAccount(): Promise<void> {
       throw new Error("Failed to complete passkey addition");
     }
   } catch (err: unknown) {
-    console.error('Add passkey error:', err);
     const webauthnErr = err as WebAuthnError;
 
     // Handle 429 rate limiting errors

diff --git a/app/src/sentry.ts b/app/src/sentry.ts
@@ -11,7 +11,7 @@ Sentry.init({
 
     integrations: [
         Sentry.browserTracingIntegration(),
-        // Sentry.reactRouterV5BrowserTracingIntegration(history),
+        Sentry.replayIntegration(),
     ],
     replaysSessionSampleRate: 0.1,
     tracesSampleRate: 1.0,
@@ -25,8 +25,3 @@ Sentry.init({
         return event;
     },
 });
-
-// Lazy-load the replay integration to reduce initial bundle size
-Sentry.lazyLoadIntegration('replayIntegration').then((replay) => {
-    Sentry.addIntegration(replay());
-});