Hmm this is not a bug. You store public key if device already have public key and provide it for desktop? I don't understand whole auth system :(