npm - @elizaos/plugin-elizacloud - Versions diffs - 2.0.0-beta.1 → 2.0.11-beta.7 - Mend

@elizaos/plugin-elizacloud 2.0.0-beta.1 → 2.0.11-beta.7

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (285) hide show

package/README.md +20 -44
package/auto-enable.ts +10 -5
package/dist/browser/index.browser.js +2 -2
package/dist/browser/index.browser.js.map +4 -4
package/dist/cjs/index.node.cjs +2874 -5915
package/dist/cjs/index.node.js.map +47 -116
package/dist/cloud/auth-service-types.d.ts +8 -0
package/dist/cloud/auth-service-types.d.ts.map +1 -0
package/dist/cloud/auth-service-types.js +36 -0
package/dist/cloud/auth-service-types.js.map +10 -0
package/dist/cloud/auth.js +4 -51
package/dist/cloud/auth.js.map +4 -4
package/dist/cloud/base-url.d.ts +6 -2
package/dist/cloud/base-url.d.ts.map +1 -1
package/dist/cloud/base-url.js +3 -51
package/dist/cloud/base-url.js.map +3 -3
package/dist/cloud/bridge-client.d.ts +3 -3
package/dist/cloud/bridge-client.d.ts.map +1 -1
package/dist/cloud/bridge-client.js +3 -51
package/dist/cloud/bridge-client.js.map +3 -3
package/dist/cloud/clack-observer.d.ts +35 -0
package/dist/cloud/clack-observer.d.ts.map +1 -0
package/dist/cloud/clack-observer.js +143 -0
package/dist/cloud/clack-observer.js.map +10 -0
package/dist/cloud/cloud-manager.js +45 -92
package/dist/cloud/cloud-manager.js.map +6 -6
package/dist/cloud/cloud-wallet.js +2 -4835
package/dist/cloud/cloud-wallet.js.map +3 -82
package/dist/cloud/duffel-client.d.ts +181 -0
package/dist/cloud/duffel-client.d.ts.map +1 -0
package/dist/cloud/duffel-client.js +506 -0
package/dist/cloud/duffel-client.js.map +11 -0
package/dist/cloud/index.d.ts +6 -0
package/dist/cloud/index.d.ts.map +1 -1
package/dist/cloud/index.js +1782 -1
package/dist/cloud/index.js.map +18 -3
package/dist/cloud/lifeops-schedule-sync-client.d.ts +43 -0
package/dist/cloud/lifeops-schedule-sync-client.d.ts.map +1 -0
package/dist/cloud/lifeops-schedule-sync-client.js +180 -0
package/dist/cloud/lifeops-schedule-sync-client.js.map +11 -0
package/dist/cloud/lifeops-schedule-sync-contracts.d.ts +89 -0
package/dist/cloud/lifeops-schedule-sync-contracts.d.ts.map +1 -0
package/dist/cloud/lifeops-schedule-sync-contracts.js +39 -0
package/dist/cloud/lifeops-schedule-sync-contracts.js.map +10 -0
package/dist/cloud/managed-payment-clients.d.ts +166 -0
package/dist/cloud/managed-payment-clients.d.ts.map +1 -0
package/dist/cloud/managed-payment-clients.js +238 -0
package/dist/cloud/managed-payment-clients.js.map +11 -0
package/dist/cloud/null-observer.d.ts +35 -0
package/dist/cloud/null-observer.d.ts.map +1 -0
package/dist/cloud/null-observer.js +45 -0
package/dist/cloud/null-observer.js.map +10 -0
package/dist/cloud/setup-observer.d.ts +98 -0
package/dist/cloud/setup-observer.d.ts.map +1 -0
package/dist/cloud/setup-observer.js +2 -0
package/dist/cloud/setup-observer.js.map +9 -0
package/dist/cloud/validate-url.d.ts.map +1 -1
package/dist/cloud/validate-url.js +2 -1
package/dist/cloud/validate-url.js.map +3 -3
package/dist/cloud/x402-payment-handler.d.ts +85 -0
package/dist/cloud/x402-payment-handler.d.ts.map +1 -0
package/dist/cloud/x402-payment-handler.js +119 -0
package/dist/cloud/x402-payment-handler.js.map +10 -0
package/dist/cloud-setup.d.ts +36 -0
package/dist/cloud-setup.d.ts.map +1 -0
package/dist/{onboarding.js → cloud-setup.js} +139 -139
package/dist/cloud-setup.js.map +14 -0
package/dist/cloud-voice-catalog.d.ts +65 -0
package/dist/cloud-voice-catalog.d.ts.map +1 -0
package/dist/cloud-voice-catalog.js +278 -0
package/dist/cloud-voice-catalog.js.map +12 -0
package/dist/index.browser.d.ts +11 -0
package/dist/index.browser.d.ts.map +1 -1
package/dist/index.d.ts +7 -1
package/dist/index.d.ts.map +1 -1
package/dist/index.js +5416 -8405
package/dist/index.js.map +48 -116
package/dist/index.node.d.ts +8 -1
package/dist/index.node.d.ts.map +1 -1
package/dist/init.js +17 -4
package/dist/init.js.map +4 -4
package/dist/lib/cloud-connection.d.ts +0 -1
package/dist/lib/cloud-connection.d.ts.map +1 -1
package/dist/lib/cloud-connection.js +14 -91
package/dist/lib/cloud-connection.js.map +7 -7
package/dist/lib/cloud-secrets.d.ts +5 -18
package/dist/lib/cloud-secrets.d.ts.map +1 -1
package/dist/lib/cloud-secrets.js +8 -36
package/dist/lib/cloud-secrets.js.map +3 -3
package/dist/lib/config-like.d.ts +1 -1
package/dist/lib/config-like.d.ts.map +1 -1
package/dist/lib/config-like.js +3 -3
package/dist/lib/config-like.js.map +3 -3
package/dist/lib/credential-type-map.d.ts +1 -1
package/dist/lib/credential-type-map.js.map +1 -1
package/dist/lib/http.d.ts +0 -11
package/dist/lib/http.d.ts.map +1 -1
package/dist/lib/http.js.map +2 -2
package/dist/lib/server-cloud-tts.d.ts +12 -25
package/dist/lib/server-cloud-tts.d.ts.map +1 -1
package/dist/lib/server-cloud-tts.js +31 -329
package/dist/lib/server-cloud-tts.js.map +4 -7
package/dist/lib/tts-debug.d.ts +5 -3
package/dist/lib/tts-debug.d.ts.map +1 -1
package/dist/lib/tts-debug.js +1 -34
package/dist/lib/tts-debug.js.map +3 -4
package/dist/models/embeddings.d.ts.map +1 -1
package/dist/models/embeddings.js +79 -69
package/dist/models/embeddings.js.map +6 -6
package/dist/models/image.d.ts.map +1 -1
package/dist/models/image.js +42 -15
package/dist/models/image.js.map +6 -6
package/dist/models/index.js +676 -166
package/dist/models/index.js.map +11 -12
package/dist/models/research.d.ts.map +1 -1
package/dist/models/research.js +24 -7
package/dist/models/research.js.map +6 -6
package/dist/models/speech.d.ts +61 -3
package/dist/models/speech.d.ts.map +1 -1
package/dist/models/speech.js +173 -17
package/dist/models/speech.js.map +5 -5
package/dist/models/text.d.ts +106 -1
package/dist/models/text.d.ts.map +1 -1
package/dist/models/text.js +452 -82
package/dist/models/text.js.map +7 -8
package/dist/models/tokenization.d.ts.map +1 -1
package/dist/models/tokenization.js.map +2 -2
package/dist/models/transcription.d.ts.map +1 -1
package/dist/models/transcription.js +20 -6
package/dist/models/transcription.js.map +5 -5
package/dist/node/index.node.js +2828 -5838
package/dist/node/index.node.js.map +47 -116
package/dist/plugin.d.ts.map +1 -1
package/dist/plugin.js +376 -5050
package/dist/plugin.js.map +16 -92
package/dist/providers/openai.js +11 -2
package/dist/providers/openai.js.map +3 -3
package/dist/register-routes.js +376 -5050
package/dist/register-routes.js.map +16 -92
package/dist/routes/cloud-billing-routes.d.ts.map +1 -1
package/dist/routes/cloud-billing-routes.js +17 -60
package/dist/routes/cloud-billing-routes.js.map +8 -7
package/dist/routes/cloud-coding-container-routes.d.ts +8 -0
package/dist/routes/cloud-coding-container-routes.d.ts.map +1 -0
package/dist/routes/cloud-coding-container-routes.js +214 -0
package/dist/routes/cloud-coding-container-routes.js.map +11 -0
package/dist/routes/cloud-compat-routes.d.ts.map +1 -1
package/dist/routes/cloud-compat-routes.js +17 -60
package/dist/routes/cloud-compat-routes.js.map +8 -7
package/dist/routes/cloud-features-routes.js +2 -2
package/dist/routes/cloud-features-routes.js.map +4 -4
package/dist/routes/cloud-relay-routes.d.ts +2 -1
package/dist/routes/cloud-relay-routes.d.ts.map +1 -1
package/dist/routes/cloud-relay-routes.js +84 -2
package/dist/routes/cloud-relay-routes.js.map +5 -4
package/dist/routes/cloud-routes-autonomous.d.ts +3 -4
package/dist/routes/cloud-routes-autonomous.d.ts.map +1 -1
package/dist/routes/cloud-routes-autonomous.js +11 -4893
package/dist/routes/cloud-routes-autonomous.js.map +8 -87
package/dist/routes/cloud-routes.d.ts +2 -2
package/dist/routes/cloud-routes.d.ts.map +1 -1
package/dist/routes/cloud-routes.js +343 -5058
package/dist/routes/cloud-routes.js.map +13 -90
package/dist/routes/cloud-status-routes-autonomous.d.ts +1 -2
package/dist/routes/cloud-status-routes-autonomous.d.ts.map +1 -1
package/dist/routes/cloud-status-routes-autonomous.js +4 -51
package/dist/routes/cloud-status-routes-autonomous.js.map +5 -5
package/dist/routes/cloud-status-routes.js +14 -90
package/dist/routes/cloud-status-routes.js.map +7 -7
package/dist/routes/home-remote-runner-access-url.d.ts +16 -0
package/dist/routes/home-remote-runner-access-url.d.ts.map +1 -0
package/dist/routes/home-remote-runner-access-url.js +91 -0
package/dist/routes/home-remote-runner-access-url.js.map +10 -0
package/dist/routes/travel-provider-relay-routes.d.ts +9 -0
package/dist/routes/travel-provider-relay-routes.d.ts.map +1 -0
package/dist/routes/travel-provider-relay-routes.js +358 -0
package/dist/routes/travel-provider-relay-routes.js.map +14 -0
package/dist/services/cloud-auth.d.ts +1 -1
package/dist/services/cloud-auth.d.ts.map +1 -1
package/dist/services/cloud-auth.js +7 -2
package/dist/services/cloud-auth.js.map +4 -4
package/dist/services/cloud-backup.js.map +2 -2
package/dist/services/cloud-bootstrap.d.ts.map +1 -1
package/dist/services/cloud-bootstrap.js.map +2 -2
package/dist/services/cloud-bridge.js.map +3 -3
package/dist/services/cloud-container.d.ts +5 -1
package/dist/services/cloud-container.d.ts.map +1 -1
package/dist/services/cloud-container.js +52 -1
package/dist/services/cloud-container.js.map +4 -4
package/dist/services/cloud-credential-provider.js.map +2 -2
package/dist/services/cloud-model-registry.js.map +2 -2
package/dist/types/cloud.d.ts +1 -0
package/dist/types/cloud.d.ts.map +1 -1
package/dist/types/cloud.js.map +2 -2
package/dist/types/index.d.ts +1 -1
package/dist/types/index.d.ts.map +1 -1
package/dist/utils/cloud-sdk/client.d.ts.map +1 -1
package/dist/utils/cloud-sdk/client.js +136 -4
package/dist/utils/cloud-sdk/client.js.map +5 -5
package/dist/utils/cloud-sdk/http.js.map +1 -1
package/dist/utils/cloud-sdk/public-routes.d.ts +186 -0
package/dist/utils/cloud-sdk/public-routes.d.ts.map +1 -1
package/dist/utils/cloud-sdk/public-routes.js +99 -1
package/dist/utils/cloud-sdk/public-routes.js.map +3 -3
package/dist/utils/cloud-sdk/types.d.ts +0 -2
package/dist/utils/cloud-sdk/types.d.ts.map +1 -1
package/dist/utils/cloud-sdk/types.js.map +1 -1
package/dist/utils/config.d.ts +10 -1
package/dist/utils/config.d.ts.map +1 -1
package/dist/utils/config.js +12 -2
package/dist/utils/config.js.map +3 -3
package/dist/utils/events.d.ts +23 -2
package/dist/utils/events.d.ts.map +1 -1
package/dist/utils/events.js +5 -3
package/dist/utils/events.js.map +3 -3
package/dist/utils/sdk-client.d.ts.map +1 -1
package/dist/utils/sdk-client.js +17 -4
package/dist/utils/sdk-client.js.map +4 -4
package/dist/utils/waifu-metering.d.ts +108 -0
package/dist/utils/waifu-metering.d.ts.map +1 -0
package/dist/utils/waifu-metering.js +166 -0
package/dist/utils/waifu-metering.js.map +10 -0
package/package.json +51 -22
package/src/cloud/auth-service-types.ts +24 -0
package/src/cloud/base-url.ts +6 -62
package/src/cloud/clack-observer.ts +189 -0
package/src/cloud/duffel-client.ts +847 -0
package/src/cloud/index.ts +10 -0
package/src/cloud/lifeops-schedule-sync-client.ts +245 -0
package/src/cloud/lifeops-schedule-sync-contracts.ts +124 -0
package/src/cloud/managed-payment-clients.ts +374 -0
package/src/cloud/null-observer.ts +45 -0
package/src/cloud/setup-observer.ts +125 -0
package/src/cloud/validate-url.ts +7 -1
package/src/cloud/x402-payment-handler.ts +215 -0
package/src/cloud-setup.ts +531 -0
package/src/cloud-voice-catalog.test.ts +254 -0
package/src/cloud-voice-catalog.ts +246 -0
package/src/index.browser.ts +29 -0
package/src/index.node.ts +31 -1
package/src/index.ts +76 -4
package/src/lib/cloud-connection.ts +2 -4
package/src/lib/cloud-secrets.ts +10 -54
package/src/lib/config-like.ts +1 -1
package/src/lib/credential-type-map.ts +2 -2
package/src/lib/http.ts +0 -17
package/src/lib/server-cloud-tts.ts +33 -341
package/src/lib/tts-debug.ts +5 -34
package/src/models/embeddings.ts +140 -76
package/src/models/image.ts +29 -14
package/src/models/research.ts +11 -1
package/src/models/speech.ts +269 -23
package/src/models/text.ts +704 -110
package/src/models/tokenization.ts +2 -2
package/src/models/transcription.ts +7 -3
package/src/plugin.ts +38 -0
package/src/routes/cloud-billing-routes.ts +4 -14
package/src/routes/cloud-coding-container-routes.ts +198 -0
package/src/routes/cloud-compat-routes.ts +4 -14
package/src/routes/cloud-features-routes.ts +1 -1
package/src/routes/cloud-relay-routes.ts +47 -1
package/src/routes/cloud-routes-autonomous.ts +7 -10
package/src/routes/cloud-routes.ts +68 -7
package/src/routes/cloud-status-routes-autonomous.ts +6 -2
package/src/routes/home-remote-runner-access-url.ts +83 -0
package/src/routes/travel-provider-relay-routes.ts +193 -0
package/src/services/cloud-auth.ts +9 -2
package/src/services/cloud-bootstrap.ts +1 -3
package/src/services/cloud-bridge.ts +1 -1
package/src/services/cloud-container.ts +93 -0
package/src/services/cloud-credential-provider.ts +1 -1
package/src/services/cloud-model-registry.ts +1 -1
package/src/types/cloud.ts +22 -0
package/src/types/index.ts +19 -0
package/src/utils/cloud-sdk/client.ts +42 -3
package/src/utils/cloud-sdk/public-routes.ts +168 -0
package/src/utils/cloud-sdk/types.ts +0 -2
package/src/utils/config.ts +20 -1
package/src/utils/events.ts +30 -2
package/src/utils/sdk-client.ts +5 -1
package/src/utils/waifu-metering.ts +302 -0
package/dist/onboarding.d.ts +0 -35
package/dist/onboarding.d.ts.map +0 -1
package/dist/onboarding.js.map +0 -14
package/src/onboarding.ts +0 -396

package/src/cloud-setup.ts ADDED Viewed

@@ -0,0 +1,531 @@
+/**
+ * Cloud setup flow for Eliza Cloud integration.
+ *
+ * Handles availability check → browser-based auth → agent provisioning
+ * during `runFirstTimeSetup()`. Transport-agnostic: every user-visible
+ * event and every interactive prompt is funneled through a
+ * `CloudSetupObserver`. CLI callers wrap their clack instance in
+ * `ClackObserver`; web/desktop callers provide an event-bridge observer.
+ *
+ * @module cloud-setup
+ */
+import { logger } from "@elizaos/core";
+import type { StylePreset } from "@elizaos/core";
+import { type CloudLoginResult, cloudLogin } from "./cloud/auth.js";
+import { normalizeCloudSiteUrl } from "./cloud/base-url.js";
+import {
+  type CloudAgentCreateParams,
+  ElizaCloudClient,
+} from "./cloud/bridge-client.js";
+import type { CloudSetupObserver } from "./cloud/setup-observer.js";
+// ---------------------------------------------------------------------------
+// Types
+// ---------------------------------------------------------------------------
+/** Result of a successful cloud setup flow. */
+export interface CloudSetupResult {
+  apiKey: string;
+  agentId: string | undefined;
+  baseUrl: string;
+  bridgeUrl?: string;
+}
+/**
+ * Outcome of the agent-provisioning step. Distinguishes a fully-running
+ * agent from one that timed out mid-provisioning so callers do not treat
+ * the timeout path as a success.
+ */
+type ProvisionOutcome =
+  | { kind: "running"; agentId: string; bridgeUrl?: string }
+  | { kind: "pending-after-timeout"; agentId: string }
+  | null;
+// ---------------------------------------------------------------------------
+// Constants
+// ---------------------------------------------------------------------------
+const DEFAULT_CLOUD_BASE_URL = "https://www.elizacloud.ai";
+const PROVISION_TIMEOUT_MS = 120_000; // 2 minutes
+const PROVISION_POLL_INTERVAL_MS = 3_000;
+// ---------------------------------------------------------------------------
+// Availability check
+// ---------------------------------------------------------------------------
+/**
+ * Quick pre-flight check: is Eliza Cloud accepting new agents?
+ * Returns null if available, or an error message string if not.
+ */
+export async function checkCloudAvailability(
+  baseUrl: string,
+): Promise<string | null> {
+  try {
+    const url = `${normalizeCloudSiteUrl(baseUrl)}/api/compat/availability`;
+    const res = await fetch(url, {
+      method: "GET",
+      headers: { Accept: "application/json" },
+      signal: AbortSignal.timeout(10_000),
+    });
+    if (!res.ok) {
+      return `Cloud returned HTTP ${res.status}. It may be temporarily unavailable.`;
+    }
+    const body = (await res.json()) as {
+      success?: boolean;
+      data?: { acceptingNewAgents?: boolean; availableSlots?: number };
+    };
+    if (!body.success || !body.data?.acceptingNewAgents) {
+      return "Eliza Cloud is currently at capacity. Try again later or run locally.";
+    }
+    return null; // Available!
+  } catch (err) {
+    const msg = String(err);
+    if (msg.includes("timed out") || msg.includes("timeout")) {
+      return "Could not reach Eliza Cloud (request timed out). Check your internet connection.";
+    }
+    return `Could not reach Eliza Cloud: ${msg}`;
+  }
+}
+// ---------------------------------------------------------------------------
+// Cloud auth wrapper
+// ---------------------------------------------------------------------------
+/**
+ * Run the Eliza Cloud browser-based login, surfacing every transition
+ * through the observer. Returns the API key/result or null on failure.
+ */
+async function runCloudAuth(
+  observer: CloudSetupObserver,
+  baseUrl: string,
+): Promise<CloudLoginResult | null> {
+  try {
+    const result = await cloudLogin({
+      baseUrl,
+      timeoutMs: 300_000, // 5 minutes
+      onBrowserUrl: (url: string) => {
+        observer.onAuthStart(url);
+        // Try to open the browser. Failure is surfaced through the
+        // observer instead of being swallowed at debug-level — desktop /
+        // web setup wrappers need to render an inline "couldn't open
+        // browser" affordance.
+        openBrowser(url).catch((err) => {
+          const error = err instanceof Error ? err : new Error(String(err));
+          observer.onAuthBrowserOpenFailed(url, error);
+        });
+      },
+      onPollStatus: (status: string) => {
+        observer.onAuthPollStatus(status);
+      },
+    });
+    observer.onAuthSuccess();
+    return result;
+  } catch (err) {
+    observer.onAuthFailure(describeCloudAuthError(err));
+    return null;
+  }
+}
+/**
+ * Translate the various error categories `cloudLogin` can throw into a
+ * single user-facing line. The categories are derived from the strings
+ * `cloud/auth.ts` and `cloud/validate-url.ts` already produce — we don't
+ * invent new error types, we just steer them into the right bucket.
+ */
+function describeCloudAuthError(err: unknown): string {
+  const raw = err instanceof Error ? err.message : String(err);
+  const msg = raw.toLowerCase();
+  // Overall 5-minute browser timeout from cloudLogin.
+  if (
+    msg.includes("login timed out") ||
+    msg.includes("not completed within")
+  ) {
+    return "Cloud sign-in timed out after 5 minutes. Try again or run locally.";
+  }
+  // validateCloudBaseUrl rejections (HTTPS-only, blocked host, DNS, …).
+  if (
+    msg.includes("invalid cloud base url") ||
+    msg.includes("cloud base url") ||
+    msg.includes("could not be resolved via dns")
+  ) {
+    return `Cloud sign-in failed: ${raw}`;
+  }
+  // Per-request timeouts (session create / polling) and any fetch network
+  // failure from `cloudLogin`.
+  if (
+    msg.includes("timed out") ||
+    msg.includes("failed to create auth session") ||
+    msg.includes("polling failed") ||
+    msg.includes("polling request timed out")
+  ) {
+    return "Couldn't reach Eliza Cloud. Check your connection or run locally.";
+  }
+  // Fallback: surface the underlying message verbatim.
+  return `Cloud sign-in failed: ${raw}`;
+}
+// ---------------------------------------------------------------------------
+// Agent provisioning
+// ---------------------------------------------------------------------------
+/**
+ * Create and provision a cloud agent, polling until it's running.
+ *
+ * Returns a discriminated outcome:
+ *   - `{ kind: "running", agentId, bridgeUrl? }` — agent reached a
+ *      terminal "up" state.
+ *   - `{ kind: "pending-after-timeout", agentId }` — agent was created
+ *      but never reached a running/failed terminal status before
+ *      `PROVISION_TIMEOUT_MS`. The caller is expected to surface the
+ *      timeout to the user; we don't pretend it succeeded.
+ *   - `null` — agent creation failed outright, or provisioning failed
+ *      with an `error`/`failed` status, or the polling loop hit a
+ *      terminal auth error (401/403). The caller falls back.
+ */
+async function provisionCloudAgent(
+  observer: CloudSetupObserver,
+  client: ElizaCloudClient,
+  agentName: string,
+  preset?: StylePreset,
+): Promise<ProvisionOutcome> {
+  observer.onProvisionStart(agentName);
+  let agentId: string;
+  let initialStatus: string;
+  try {
+    const agentConfig: Record<string, unknown> = {};
+    if (preset) {
+      agentConfig.bio = preset.bio;
+      agentConfig.system = preset.system;
+      agentConfig.style = preset.style;
+      agentConfig.adjectives = preset.adjectives;
+      agentConfig.topics = preset.topics;
+      agentConfig.postExamples = preset.postExamples;
+      agentConfig.messageExamples = preset.messageExamples;
+    }
+    const params: CloudAgentCreateParams = {
+      agentName,
+      agentConfig,
+    };
+    const agent = await client.createAgent(params);
+    agentId = agent.id;
+    initialStatus = agent.status;
+  } catch (err) {
+    observer.onProvisionFailure(`Failed to create cloud agent: ${String(err)}`);
+    return null;
+  }
+  observer.onProvisionStatus("created");
+  // Poll for terminal status. Order: poll first (terminal-on-first-read
+  // skips the wasted sleep), then sleep at the END of each iteration if
+  // the loop has time remaining.
+  const deadline = Date.now() + PROVISION_TIMEOUT_MS;
+  let lastStatus = initialStatus;
+  while (Date.now() < deadline) {
+    let current: Awaited<ReturnType<ElizaCloudClient["getAgent"]>> | null;
+    try {
+      current = await client.getAgent(agentId);
+    } catch (pollErr) {
+      const classification = classifyPollError(pollErr);
+      if (classification === "auth") {
+        observer.onProvisionFailure(
+          `Cloud rejected the API key (last status: ${lastStatus}). Please sign in again.`,
+        );
+        return null;
+      }
+      if (classification === "transient") {
+        // 5xx / network: keep trying, but at warn level so a sustained
+        // outage is visible in logs (not silently buried at debug).
+        logger.warn(
+          `[cloud-setup] Transient poll error, will retry: ${String(pollErr)}`,
+        );
+        current = null;
+      } else {
+        // Terminal but not auth — propagate and stop the flow.
+        observer.onProvisionFailure(`Provisioning poll failed: ${String(pollErr)}`);
+        return null;
+      }
+    }
+    if (current) {
+      lastStatus = current.status;
+      switch (lastStatus) {
+        case "running":
+        case "completed":
+          observer.onProvisionSuccess({
+            agentId,
+            bridgeUrl: current.bridgeUrl,
+          });
+          return {
+            kind: "running",
+            agentId,
+            bridgeUrl: current.bridgeUrl,
+          };
+        case "failed":
+        case "error":
+          observer.onProvisionFailure(
+            `Provisioning failed: ${current.errorMessage ?? "unknown error"}`,
+          );
+          return null;
+        default:
+          observer.onProvisionStatus(lastStatus, current);
+      }
+    }
+    // Sleep AFTER the read. If the previous read was terminal we would
+    // have returned above; if it pushed us past the deadline the loop
+    // condition will exit on the next iteration without another sleep.
+    if (Date.now() + PROVISION_POLL_INTERVAL_MS < deadline) {
+      await sleep(PROVISION_POLL_INTERVAL_MS);
+    } else {
+      break;
+    }
+  }
+  // Reached the deadline without a terminal status. Surface that
+  // explicitly — callers must not treat this as a success.
+  observer.onProvisionTimeout(agentId, lastStatus);
+  return { kind: "pending-after-timeout", agentId };
+}
+/**
+ * Classify a `getAgent` poll error. The bridge client's `request<T>`
+ * surfaces non-2xx responses as plain `Error("HTTP <status>: ...")` from
+ * `getAgent` (see `cloud/bridge-client.ts`), so the message-prefix match
+ * is the canonical signal.
+ *
+ *   "auth"      — 401/403: stop polling immediately.
+ *   "transient" — 5xx or network/fetch error: keep retrying.
+ *   "terminal"  — anything else (404, malformed body, etc.): stop.
+ */
+function classifyPollError(err: unknown): "auth" | "transient" | "terminal" {
+  const raw = err instanceof Error ? err.message : String(err);
+  if (/\bHTTP\s+40[13]\b/i.test(raw)) {
+    return "auth";
+  }
+  if (/\bHTTP\s+5\d{2}\b/i.test(raw)) {
+    return "transient";
+  }
+  // AbortError / TimeoutError / fetch failures from the request layer.
+  if (
+    err instanceof Error &&
+    (err.name === "AbortError" ||
+      err.name === "TimeoutError" ||
+      /fetch failed|network|timed out|timeout/i.test(raw))
+  ) {
+    return "transient";
+  }
+  return "terminal";
+}
+// ---------------------------------------------------------------------------
+// Main orchestrator
+// ---------------------------------------------------------------------------
+/**
+ * Run the full cloud setup flow:
+ * 1. Check availability
+ * 2. Authenticate via browser
+ * 3. Create + provision agent
+ *
+ * Returns the result or null if the user cancels / an error occurs.
+ * On failure, the caller should fall back to local mode.
+ */
+export async function runCloudSetup(
+  observer: CloudSetupObserver,
+  agentName: string,
+  preset?: StylePreset,
+  baseUrl?: string,
+): Promise<CloudSetupResult | null> {
+  const resolvedBaseUrl = normalizeCloudSiteUrl(
+    baseUrl ?? DEFAULT_CLOUD_BASE_URL,
+  );
+  // ── Step 1: Availability check ──────────────────────────────────────
+  const unavailableReason = await checkCloudAvailability(resolvedBaseUrl);
+  observer.onAvailabilityChecked({
+    ok: unavailableReason === null,
+    ...(unavailableReason ? { reason: unavailableReason } : {}),
+  });
+  if (unavailableReason) {
+    const fallback = await observer.confirm({
+      message: "Run locally instead?",
+      defaultValue: true,
+    });
+    // Cancel (null) and explicit "yes, run locally" both bail to local.
+    if (fallback === null || fallback === true) {
+      return null;
+    }
+    // User said "no" to fallback — try auth anyway (maybe availability is
+    // temporarily wrong).
+  }
+  // ── Step 2: Browser-based auth ──────────────────────────────────────
+  const authResult = await runCloudAuth(observer, resolvedBaseUrl);
+  if (!authResult) {
+    observer.onNotice("Cloud login was not completed.");
+    const retry = await observer.confirm({
+      message: "Try again, or run locally?",
+      activeLabel: "Try again",
+      inactiveLabel: "Run locally",
+      defaultValue: false,
+    });
+    // Cancel or "run locally" both bail.
+    if (retry === null || retry === false) {
+      return null;
+    }
+    // Retry auth once
+    const retryResult = await runCloudAuth(observer, resolvedBaseUrl);
+    if (!retryResult) {
+      observer.onNotice("Login was not completed. Falling back to local mode.");
+      return null;
+    }
+    return await finishProvisioning(
+      observer,
+      resolvedBaseUrl,
+      retryResult,
+      agentName,
+      preset,
+    );
+  }
+  return await finishProvisioning(
+    observer,
+    resolvedBaseUrl,
+    authResult,
+    agentName,
+    preset,
+  );
+}
+/**
+ * Complete provisioning after successful auth.
+ *
+ * Branches on the explicit `ProvisionOutcome` kind: a "pending-after-
+ * timeout" outcome is NOT treated as success — the caller is prompted
+ * to fall back to local, the same as for outright failure, but the
+ * agent id is preserved on the result so the user can reconnect later
+ * with `eliza cloud connect`.
+ */
+async function finishProvisioning(
+  observer: CloudSetupObserver,
+  baseUrl: string,
+  authResult: CloudLoginResult,
+  agentName: string,
+  preset?: StylePreset,
+): Promise<CloudSetupResult | null> {
+  // ── Step 3: Create + provision agent ──────────────────────────────
+  const client = new ElizaCloudClient(baseUrl, authResult.apiKey);
+  const provisionResult = await provisionCloudAgent(
+    observer,
+    client,
+    agentName,
+    preset,
+  );
+  if (provisionResult && provisionResult.kind === "running") {
+    return {
+      apiKey: authResult.apiKey,
+      agentId: provisionResult.agentId,
+      baseUrl,
+      bridgeUrl: provisionResult.bridgeUrl,
+    };
+  }
+  // Either provisioning errored (`null`) or timed out mid-flight.
+  // Prompt the user to fall back. We preserve any agentId we got so
+  // a later `eliza cloud connect` can resume.
+  const pendingAgentId =
+    provisionResult?.kind === "pending-after-timeout"
+      ? provisionResult.agentId
+      : undefined;
+  observer.onNotice(
+    pendingAgentId
+      ? "Cloud agent is still starting up. You can try `eliza cloud connect` once it's ready."
+      : "Cloud provisioning did not complete. You can try `eliza cloud connect` later.",
+  );
+  const runLocal = await observer.confirm({
+    message: "Continue with local setup instead?",
+    defaultValue: true,
+  });
+  if (runLocal === null || runLocal === true) {
+    return null;
+  }
+  // User doesn't want local either — save the auth result (and the
+  // pending agent id, if we have one) so they can reconnect later.
+  return {
+    apiKey: authResult.apiKey,
+    agentId: pendingAgentId,
+    baseUrl,
+  };
+}
+// ---------------------------------------------------------------------------
+// Helpers
+// ---------------------------------------------------------------------------
+function sleep(ms: number): Promise<void> {
+  return new Promise((resolve) => setTimeout(resolve, ms));
+}
+/**
+ * Try to open a URL in the user's default browser.
+ *
+ * Rejects with a real Error when the underlying OS command fails (binary
+ * not on PATH, etc.). The caller is responsible for surfacing the failure
+ * — `runCloudAuth` routes it through `observer.onAuthBrowserOpenFailed`.
+ *
+ * Uses execFile with an args array (not exec with string interpolation)
+ * to avoid shell injection via crafted URLs.
+ */
+async function openBrowser(url: string): Promise<void> {
+  const { execFile } = await import("node:child_process");
+  const { platform } = await import("node:os");
+  const p = platform();
+  return new Promise((resolve, reject) => {
+    const onError = (err: Error | null) => {
+      if (err) {
+        reject(err);
+        return;
+      }
+      resolve();
+    };
+    if (p === "darwin") {
+      execFile("open", [url], onError);
+    } else if (p === "win32") {
+      execFile("cmd.exe", ["/c", "start", "", url], onError);
+    } else {
+      execFile("xdg-open", [url], onError);
+    }
+  });
+}