UMInk-Lab
diff --git a/‎backend/app.py‎
Lines changed: 7 additions & 4 deletions b/‎backend/app.py‎
Lines changed: 7 additions & 4 deletions
diff --git a/‎backend/static/icons/icon-192x192.png‎
895 Bytes b/‎backend/static/icons/icon-192x192.png‎
895 Bytes
diff --git a/‎backend/static/icons/icon-512x512.png‎
3.23 KB b/‎backend/static/icons/icon-512x512.png‎
3.23 KB
diff --git a/‎backend/static/icons/maskable-icon-192x192.png‎
895 Bytes b/‎backend/static/icons/maskable-icon-192x192.png‎
895 Bytes
diff --git a/‎backend/static/icons/maskable-icon-512x512.png‎
3.23 KB b/‎backend/static/icons/maskable-icon-512x512.png‎
3.23 KB
diff --git a/‎backend/static/manifest.webmanifest‎
Lines changed: 24 additions & 4 deletions b/‎backend/static/manifest.webmanifest‎
Lines changed: 24 additions & 4 deletions
diff --git a/‎backend/templates/index.html‎
Lines changed: 2 additions & 0 deletions b/‎backend/templates/index.html‎
Lines changed: 2 additions & 0 deletions
diff --git a/‎backend/templates/login.html‎
Lines changed: 2 additions & 0 deletions b/‎backend/templates/login.html‎
Lines changed: 2 additions & 0 deletions
@@ -60,7 +60,8 @@ def create_app():
     # Auth cookie flags
     app.config['AUTH_COOKIE_NAME'] = os.environ.get('AUTH_COOKIE_NAME', 'access_token')
     app.config['AUTH_COOKIE_SECURE'] = os.environ.get('AUTH_COOKIE_SECURE', 'false').lower() == 'true' or app.config['SESSION_COOKIE_SECURE']
-    app.config['AUTH_COOKIE_SAMESITE'] = os.environ.get('AUTH_COOKIE_SAMESITE', 'Strict')
+    # Default to Lax for broader compatibility (iOS PWA standalone quirks)
+    app.config['AUTH_COOKIE_SAMESITE'] = os.environ.get('AUTH_COOKIE_SAMESITE', 'Lax')
     app.config['AUTH_COOKIE_DOMAIN'] = os.environ.get('AUTH_COOKIE_DOMAIN')  # optional
 
     init_db()
@@ -177,6 +178,8 @@ def _set_auth_cookie(resp, token: str):
             secure=bool(app.config['AUTH_COOKIE_SECURE']),
             samesite=app.config['AUTH_COOKIE_SAMESITE'],
             max_age=int(app.config['JWT_TTL_SECONDS']),
+            # Also set expires to improve persistence on some mobile PWAs
+            expires=datetime.now(timezone.utc) + timedelta(seconds=int(app.config['JWT_TTL_SECONDS'])),
             path='/',
             domain=app.config['AUTH_COOKIE_DOMAIN'] or None,
         )
@@ -372,10 +375,10 @@ def login():
             # Then try temp password if present and not expired
             if tmp_hash and tmp_exp:
                 try:
-                    exp_dt = datetime.strptime(tmp_exp, '%Y-%m-%dT%H:%M:%fZ')
+                    exp_dt = datetime.strptime(tmp_exp, '%Y-%m-%dT%H:%M:%fZ').replace(tzinfo=timezone.utc)
                 except Exception:
                     exp_dt = None
-                now = datetime.utcnow()
+                now = datetime.now(timezone.utc)
                 valid = bool(exp_dt and exp_dt >= now)
                 if valid and check_password_hash(tmp_hash, password):
                     authed_with_temp = True
@@ -789,7 +792,7 @@ def forgot_confirm():
             return jsonify(error=err or 'smtp_send_failed'), 500
         # Store temp password hash and expiry (1 day)
         try:
-            expires = (datetime.utcnow() + timedelta(days=1)).strftime('%Y-%m-%dT%H:%M:%fZ')
+            expires = (datetime.now(timezone.utc) + timedelta(days=1)).strftime('%Y-%m-%dT%H:%M:%fZ')
             cur.execute(
                 "UPDATE users SET temp_password_hash=?, temp_password_expires=? WHERE id=?",
                 (generate_password_hash(new_pw), expires, user_id),
 
@@ -2,17 +2,37 @@
   "name": "EasyTodo",
   "short_name": "EasyTodo",
   "description": "轻量、简洁的待办事项应用",
+  "id": "/",
   "start_url": "/",
   "scope": "/",
   "display": "standalone",
+  "orientation": "any",
   "background_color": "#0b0b0c",
   "theme_color": "#f7f8fa",
   "icons": [
     {
-      "src": "/static/favicon.svg",
-      "sizes": "any",
-      "type": "image/svg+xml",
-      "purpose": "any maskable"
+      "src": "/static/icons/icon-192x192.png",
+      "sizes": "192x192",
+      "type": "image/png",
+      "purpose": "any"
+    },
+    {
+      "src": "/static/icons/icon-512x512.png",
+      "sizes": "512x512",
+      "type": "image/png",
+      "purpose": "any"
+    },
+    {
+      "src": "/static/icons/maskable-icon-192x192.png",
+      "sizes": "192x192",
+      "type": "image/png",
+      "purpose": "maskable"
+    },
+    {
+      "src": "/static/icons/maskable-icon-512x512.png",
+      "sizes": "512x512",
+      "type": "image/png",
+      "purpose": "maskable"
     }
   ]
 }
@@ -3,6 +3,8 @@
   <head>
     <meta charset="utf-8" />
     <meta name="viewport" content="width=device-width, initial-scale=1" />
+    <meta name="apple-mobile-web-app-capable" content="yes" />
+    <meta name="apple-mobile-web-app-status-bar-style" content="default" />
     <title>{{ title or 'EasyTodo 待办' }}</title>
     <meta name="theme-color" content="#f7f8fa" id="theme-color" />
     <meta name="csrf-token" content="{{ csrf_token }}" />
 
@@ -3,6 +3,8 @@
   <head>
     <meta charset="utf-8" />
     <meta name="viewport" content="width=device-width, initial-scale=1" />
+    <meta name="apple-mobile-web-app-capable" content="yes" />
+    <meta name="apple-mobile-web-app-status-bar-style" content="default" />
     <title>{{ title or '登录 / 注册 - EasyTodo' }}</title>
     <meta name="theme-color" content="#f7f8fa" id="theme-color" />
     <link rel="icon" href="/static/favicon.svg" />