Production Hardening

What This Is

A release checklist for production Sign in with Lovelace deployments.

Who This Is For

Engineers and operators responsible for release readiness.

What You Will Finish With

• A verified configuration and verification pipeline.
• Predictable fallback behavior.
• Safer operational defaults.

Configuration Checklist

1. Set NEXT_PUBLIC_LOVELACE_OAUTH_CLIENT_ID.
2. Register exact production origins in client configuration.
3. Set explicit Accounts URL overrides only when needed.
4. Use HTTPS in production environments.

Verification Checklist

1. Verify route validates issuer and audience.
2. Verify route creates app session only on successful token validation.
3. User-facing UI messages remain generic and actionable.
4. Server logs include structured diagnostic context.

Browser Behavior Checklist

1. FedCM path works in supported Chromium browsers.
2. Unsupported browsers redirect immediately.
3. No polling loops in auth initiation path.

Related

• Quick Start
• Troubleshooting