@inetafrica/open-claudia 1.19.2 → 1.19.3

package/CHANGELOG.md

@@ -1,5 +1,8 @@
 # Changelog
 
+## v1.19.3
+- Owner-only auth commands now recognize chats marked as `isOwner: true` in `auth.json`, not only the first `TELEGRAM_CHAT_ID`. This fixes owner-authenticated Telegram chats being blocked from `/codex_login` and `/codex_setup_token`.
+
 ## v1.19.2
 - Docker images now bake in the OpenAI Codex CLI (`@openai/codex`), so `/codex` and Codex auth commands are available in container/Kubernetes deployments after rollout.
 - Documented that direct npm installs still need optional backend CLIs installed on the host, while Docker images include the Codex CLI.

package/bot-agent.js

@@ -328,7 +328,13 @@ function isAuthorized(msg) {
 }
 
 function isOwner(msg) {
-  return String(msg.chat.id) === CHAT_ID;
+  const chatId = String(msg.chat.id);
+  if (chatId === CHAT_ID) return true;
+  try {
+    const auth = JSON.parse(fs.readFileSync(AUTH_FILE, "utf-8"));
+    return Array.isArray(auth.authorized) && auth.authorized.some((a) => String(a.chatId) === chatId && a.isOwner === true);
+  } catch (e) {}
+  return false;
 }
 
 function loadAuth() {

package/bot.js

@@ -659,7 +659,13 @@ function isAuthorized(msg) {
 }
 
 function isOwner(msg) {
-  return String(msg.chat.id) === CHAT_ID;
+  const chatId = String(msg.chat.id);
+  if (chatId === CHAT_ID) return true;
+  try {
+    const auth = JSON.parse(fs.readFileSync(AUTH_FILE, "utf-8"));
+    return Array.isArray(auth.authorized) && auth.authorized.some((a) => String(a.chatId) === chatId && a.isOwner === true);
+  } catch (e) {}
+  return false;
 }
 
 function loadAuth() {

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "@inetafrica/open-claudia",
-  "version": "1.19.2",
+  "version": "1.19.3",
   "description": "Your always-on AI coding assistant — Claude Code, Cursor Agent, and OpenAI Codex via Telegram",
   "main": "bot.js",
   "bin": {