@pixelbyte-software/pixcode 1.30.2 → 1.31.1

package/dist-server/server/services/provider-credentials.js

@@ -0,0 +1,154 @@
+import { promises as fs } from 'node:fs';
+import os from 'node:os';
+import path from 'node:path';
+/**
+ * Central credentials store for CLI providers.
+ *
+ * File: `~/.pixcode/provider-credentials.json`. Lets the UI save an API key
+ * (and optional base URL for OpenAI-compatible providers) once and have it
+ * picked up by:
+ *   - the spawn adapters (claude-sdk.js, cursor-cli.js, openai-codex.js,
+ *     gemini-cli.js, qwen-code-cli.js) when they launch the CLI subprocess
+ *   - the provider-auth modules as an additional "authenticated" signal
+ *
+ * Keeping credentials in one file instead of per-CLI config files means we
+ * don't have to learn each CLI's settings schema just to set an API key,
+ * and users see one "Logout" button that actually clears everything.
+ */
+const CONFIG_FILE = path.join(os.homedir(), '.pixcode', 'provider-credentials.json');
+/**
+ * Map provider id → {apiKeyEnv, baseUrlEnv} so we know which env vars to
+ * inject into the spawn env. Cursor is OAuth-only; it has no api-key entry.
+ */
+export const PROVIDER_ENV_VARS = Object.freeze({
+    claude: { apiKeyEnv: 'ANTHROPIC_API_KEY', baseUrlEnv: 'ANTHROPIC_BASE_URL' },
+    codex: { apiKeyEnv: 'OPENAI_API_KEY', baseUrlEnv: 'OPENAI_BASE_URL' },
+    gemini: { apiKeyEnv: 'GEMINI_API_KEY', baseUrlEnv: null },
+    qwen: { apiKeyEnv: 'OPENAI_API_KEY', baseUrlEnv: 'OPENAI_BASE_URL' },
+});
+async function readStore() {
+    try {
+        const raw = await fs.readFile(CONFIG_FILE, 'utf8');
+        const parsed = JSON.parse(raw);
+        return parsed && typeof parsed === 'object' ? parsed : {};
+    }
+    catch {
+        return {};
+    }
+}
+async function writeStore(next) {
+    await fs.mkdir(path.dirname(CONFIG_FILE), { recursive: true });
+    await fs.writeFile(CONFIG_FILE, JSON.stringify(next, null, 2), { mode: 0o600 });
+}
+/**
+ * Returns `{ apiKey, baseUrl }` for the given provider, or `null` if no key
+ * is stored. Safe to call on any provider id — unknown ids yield null.
+ */
+export async function getProviderCredentials(provider) {
+    const store = await readStore();
+    const entry = store[provider];
+    if (!entry || typeof entry !== 'object')
+        return null;
+    const apiKey = typeof entry.apiKey === 'string' && entry.apiKey.trim() ? entry.apiKey.trim() : null;
+    if (!apiKey)
+        return null;
+    const baseUrl = typeof entry.baseUrl === 'string' && entry.baseUrl.trim() ? entry.baseUrl.trim() : null;
+    return { apiKey, baseUrl };
+}
+/** Persist credentials; empty string apiKey deletes the entry. */
+export async function setProviderCredentials(provider, { apiKey, baseUrl }) {
+    const store = await readStore();
+    const trimmedKey = typeof apiKey === 'string' ? apiKey.trim() : '';
+    if (!trimmedKey) {
+        delete store[provider];
+    }
+    else {
+        store[provider] = {
+            apiKey: trimmedKey,
+            baseUrl: typeof baseUrl === 'string' && baseUrl.trim() ? baseUrl.trim() : null,
+            updatedAt: new Date().toISOString(),
+        };
+    }
+    await writeStore(store);
+}
+export async function clearProviderCredentials(provider) {
+    await setProviderCredentials(provider, { apiKey: '', baseUrl: null });
+}
+/**
+ * Builds an env object that inherits from the server process env and
+ * overlays stored credentials for the given provider. Use when spawning
+ * a CLI subprocess so the user's Pixcode-configured key is available
+ * without leaking unrelated provider keys into the child.
+ */
+export async function buildSpawnEnv(provider, baseEnv = process.env) {
+    const envVars = PROVIDER_ENV_VARS[provider];
+    const env = { ...baseEnv };
+    if (!envVars)
+        return env;
+    const creds = await getProviderCredentials(provider);
+    if (!creds)
+        return env;
+    if (envVars.apiKeyEnv)
+        env[envVars.apiKeyEnv] = creds.apiKey;
+    if (envVars.baseUrlEnv && creds.baseUrl)
+        env[envVars.baseUrlEnv] = creds.baseUrl;
+    return env;
+}
+/**
+ * Apply stored credentials onto `process.env` for every known provider.
+ * Called on server boot so SDK-based integrations (Claude, Codex) see the
+ * API keys without reading our credentials file directly. Subprocess spawns
+ * go through `buildSpawnEnv` which layers on top of this.
+ */
+export async function applyAllStoredCredentialsToEnv() {
+    const store = await readStore();
+    for (const [provider, envVars] of Object.entries(PROVIDER_ENV_VARS)) {
+        const entry = store[provider];
+        if (!entry || typeof entry !== 'object')
+            continue;
+        const apiKey = typeof entry.apiKey === 'string' ? entry.apiKey.trim() : '';
+        const baseUrl = typeof entry.baseUrl === 'string' ? entry.baseUrl.trim() : '';
+        if (envVars.apiKeyEnv && apiKey)
+            process.env[envVars.apiKeyEnv] = apiKey;
+        if (envVars.baseUrlEnv && baseUrl)
+            process.env[envVars.baseUrlEnv] = baseUrl;
+    }
+}
+/**
+ * Sync a single provider's credentials into `process.env` (or clear them
+ * when no key is set). Call after mutating the store via the API so the
+ * effect is immediate instead of needing a restart.
+ */
+export async function applyProviderCredentialsToEnv(provider) {
+    const envVars = PROVIDER_ENV_VARS[provider];
+    if (!envVars)
+        return;
+    const creds = await getProviderCredentials(provider);
+    if (envVars.apiKeyEnv) {
+        if (creds?.apiKey)
+            process.env[envVars.apiKeyEnv] = creds.apiKey;
+        else
+            delete process.env[envVars.apiKeyEnv];
+    }
+    if (envVars.baseUrlEnv) {
+        if (creds?.baseUrl)
+            process.env[envVars.baseUrlEnv] = creds.baseUrl;
+        else
+            delete process.env[envVars.baseUrlEnv];
+    }
+}
+/** Listing + logout helpers for the UI. */
+export async function listProviderCredentialSummaries() {
+    const store = await readStore();
+    const out = {};
+    for (const key of Object.keys(PROVIDER_ENV_VARS)) {
+        const entry = store[key];
+        out[key] = {
+            hasKey: Boolean(entry && typeof entry.apiKey === 'string' && entry.apiKey.trim()),
+            baseUrl: entry && typeof entry.baseUrl === 'string' && entry.baseUrl.trim() ? entry.baseUrl.trim() : null,
+            updatedAt: entry && typeof entry.updatedAt === 'string' ? entry.updatedAt : null,
+        };
+    }
+    return out;
+}
+//# sourceMappingURL=provider-credentials.js.map

package/dist-server/server/services/provider-credentials.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"provider-credentials.js","sourceRoot":"","sources":["../../../server/services/provider-credentials.js"],"names":[],"mappings":"AAAA,OAAO,EAAE,QAAQ,IAAI,EAAE,EAAE,MAAM,SAAS,CAAC;AACzC,OAAO,EAAE,MAAM,SAAS,CAAC;AACzB,OAAO,IAAI,MAAM,WAAW,CAAC;AAE7B;;;;;;;;;;;;;GAaG;AAEH,MAAM,WAAW,GAAG,IAAI,CAAC,IAAI,CAAC,EAAE,CAAC,OAAO,EAAE,EAAE,UAAU,EAAE,2BAA2B,CAAC,CAAC;AAErF;;;GAGG;AACH,MAAM,CAAC,MAAM,iBAAiB,GAAG,MAAM,CAAC,MAAM,CAAC;IAC3C,MAAM,EAAE,EAAE,SAAS,EAAE,mBAAmB,EAAE,UAAU,EAAE,oBAAoB,EAAE;IAC5E,KAAK,EAAG,EAAE,SAAS,EAAE,gBAAgB,EAAK,UAAU,EAAE,iBAAiB,EAAE;IACzE,MAAM,EAAE,EAAE,SAAS,EAAE,gBAAgB,EAAK,UAAU,EAAE,IAAI,EAAE;IAC5D,IAAI,EAAI,EAAE,SAAS,EAAE,gBAAgB,EAAK,UAAU,EAAE,iBAAiB,EAAE;CAC5E,CAAC,CAAC;AAEH,KAAK,UAAU,SAAS;IACpB,IAAI,CAAC;QACD,MAAM,GAAG,GAAG,MAAM,EAAE,CAAC,QAAQ,CAAC,WAAW,EAAE,MAAM,CAAC,CAAC;QACnD,MAAM,MAAM,GAAG,IAAI,CAAC,KAAK,CAAC,GAAG,CAAC,CAAC;QAC/B,OAAO,MAAM,IAAI,OAAO,MAAM,KAAK,QAAQ,CAAC,CAAC,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,CAAC;IAC9D,CAAC;IAAC,MAAM,CAAC;QACL,OAAO,EAAE,CAAC;IACd,CAAC;AACL,CAAC;AAED,KAAK,UAAU,UAAU,CAAC,IAAI;IAC1B,MAAM,EAAE,CAAC,KAAK,CAAC,IAAI,CAAC,OAAO,CAAC,WAAW,CAAC,EAAE,EAAE,SAAS,EAAE,IAAI,EAAE,CAAC,CAAC;IAC/D,MAAM,EAAE,CAAC,SAAS,CAAC,WAAW,EAAE,IAAI,CAAC,SAAS,CAAC,IAAI,EAAE,IAAI,EAAE,CAAC,CAAC,EAAE,EAAE,IAAI,EAAE,KAAK,EAAE,CAAC,CAAC;AACpF,CAAC;AAED;;;GAGG;AACH,MAAM,CAAC,KAAK,UAAU,sBAAsB,CAAC,QAAQ;IACjD,MAAM,KAAK,GAAG,MAAM,SAAS,EAAE,CAAC;IAChC,MAAM,KAAK,GAAG,KAAK,CAAC,QAAQ,CAAC,CAAC;IAC9B,IAAI,CAAC,KAAK,IAAI,OAAO,KAAK,KAAK,QAAQ;QAAE,OAAO,IAAI,CAAC;IACrD,MAAM,MAAM,GAAG,OAAO,KAAK,CAAC,MAAM,KAAK,QAAQ,IAAI,KAAK,CAAC,MAAM,CAAC,IAAI,EAAE,CAAC,CAAC,CAAC,KAAK,CAAC,MAAM,CAAC,IAAI,EAAE,CAAC,CAAC,CAAC,IAAI,CAAC;IACpG,IAAI,CAAC,MAAM;QAAE,OAAO,IAAI,CAAC;IACzB,MAAM,OAAO,GAAG,OAAO,KAAK,CAAC,OAAO,KAAK,QAAQ,IAAI,KAAK,CAAC,OAAO,CAAC,IAAI,EAAE,CAAC,CAAC,CAAC,KAAK,CAAC,OAAO,CAAC,IAAI,EAAE,CAAC,CAAC,CAAC,IAAI,CAAC;IACxG,OAAO,EAAE,MAAM,EAAE,OAAO,EAAE,CAAC;AAC/B,CAAC;AAED,kEAAkE;AAClE,MAAM,CAAC,KAAK,UAAU,sBAAsB,CAAC,QAAQ,EAAE,EAAE,MAAM,EAAE,OAAO,EAAE;IACtE,MAAM,KAAK,GAAG,MAAM,SAAS,EAAE,CAAC;IAChC,MAAM,UAAU,GAAG,OAAO,MAAM,KAAK,QAAQ,CAAC,CAAC,CAAC,MAAM,CAAC,IAAI,EAAE,CAAC,CAAC,CAAC,EAAE,CAAC;IACnE,IAAI,CAAC,UAAU,EAAE,CAAC;QACd,OAAO,KAAK,CAAC,QAAQ,CAAC,CAAC;IAC3B,CAAC;SAAM,CAAC;QACJ,KAAK,CAAC,QAAQ,CAAC,GAAG;YACd,MAAM,EAAE,UAAU;YAClB,OAAO,EAAE,OAAO,OAAO,KAAK,QAAQ,IAAI,OAAO,CAAC,IAAI,EAAE,CAAC,CAAC,CAAC,OAAO,CAAC,IAAI,EAAE,CAAC,CAAC,CAAC,IAAI;YAC9E,SAAS,EAAE,IAAI,IAAI,EAAE,CAAC,WAAW,EAAE;SACtC,CAAC;IACN,CAAC;IACD,MAAM,UAAU,CAAC,KAAK,CAAC,CAAC;AAC5B,CAAC;AAED,MAAM,CAAC,KAAK,UAAU,wBAAwB,CAAC,QAAQ;IACnD,MAAM,sBAAsB,CAAC,QAAQ,EAAE,EAAE,MAAM,EAAE,EAAE,EAAE,OAAO,EAAE,IAAI,EAAE,CAAC,CAAC;AAC1E,CAAC;AAED;;;;;GAKG;AACH,MAAM,CAAC,KAAK,UAAU,aAAa,CAAC,QAAQ,EAAE,OAAO,GAAG,OAAO,CAAC,GAAG;IAC/D,MAAM,OAAO,GAAG,iBAAiB,CAAC,QAAQ,CAAC,CAAC;IAC5C,MAAM,GAAG,GAAG,EAAE,GAAG,OAAO,EAAE,CAAC;IAC3B,IAAI,CAAC,OAAO;QAAE,OAAO,GAAG,CAAC;IAEzB,MAAM,KAAK,GAAG,MAAM,sBAAsB,CAAC,QAAQ,CAAC,CAAC;IACrD,IAAI,CAAC,KAAK;QAAE,OAAO,GAAG,CAAC;IAEvB,IAAI,OAAO,CAAC,SAAS;QAAE,GAAG,CAAC,OAAO,CAAC,SAAS,CAAC,GAAG,KAAK,CAAC,MAAM,CAAC;IAC7D,IAAI,OAAO,CAAC,UAAU,IAAI,KAAK,CAAC,OAAO;QAAE,GAAG,CAAC,OAAO,CAAC,UAAU,CAAC,GAAG,KAAK,CAAC,OAAO,CAAC;IACjF,OAAO,GAAG,CAAC;AACf,CAAC;AAED;;;;;GAKG;AACH,MAAM,CAAC,KAAK,UAAU,8BAA8B;IAChD,MAAM,KAAK,GAAG,MAAM,SAAS,EAAE,CAAC;IAChC,KAAK,MAAM,CAAC,QAAQ,EAAE,OAAO,CAAC,IAAI,MAAM,CAAC,OAAO,CAAC,iBAAiB,CAAC,EAAE,CAAC;QAClE,MAAM,KAAK,GAAG,KAAK,CAAC,QAAQ,CAAC,CAAC;QAC9B,IAAI,CAAC,KAAK,IAAI,OAAO,KAAK,KAAK,QAAQ;YAAE,SAAS;QAClD,MAAM,MAAM,GAAG,OAAO,KAAK,CAAC,MAAM,KAAK,QAAQ,CAAC,CAAC,CAAC,KAAK,CAAC,MAAM,CAAC,IAAI,EAAE,CAAC,CAAC,CAAC,EAAE,CAAC;QAC3E,MAAM,OAAO,GAAG,OAAO,KAAK,CAAC,OAAO,KAAK,QAAQ,CAAC,CAAC,CAAC,KAAK,CAAC,OAAO,CAAC,IAAI,EAAE,CAAC,CAAC,CAAC,EAAE,CAAC;QAC9E,IAAI,OAAO,CAAC,SAAS,IAAI,MAAM;YAAE,OAAO,CAAC,GAAG,CAAC,OAAO,CAAC,SAAS,CAAC,GAAG,MAAM,CAAC;QACzE,IAAI,OAAO,CAAC,UAAU,IAAI,OAAO;YAAE,OAAO,CAAC,GAAG,CAAC,OAAO,CAAC,UAAU,CAAC,GAAG,OAAO,CAAC;IACjF,CAAC;AACL,CAAC;AAED;;;;GAIG;AACH,MAAM,CAAC,KAAK,UAAU,6BAA6B,CAAC,QAAQ;IACxD,MAAM,OAAO,GAAG,iBAAiB,CAAC,QAAQ,CAAC,CAAC;IAC5C,IAAI,CAAC,OAAO;QAAE,OAAO;IACrB,MAAM,KAAK,GAAG,MAAM,sBAAsB,CAAC,QAAQ,CAAC,CAAC;IACrD,IAAI,OAAO,CAAC,SAAS,EAAE,CAAC;QACpB,IAAI,KAAK,EAAE,MAAM;YAAE,OAAO,CAAC,GAAG,CAAC,OAAO,CAAC,SAAS,CAAC,GAAG,KAAK,CAAC,MAAM,CAAC;;YAC5D,OAAO,OAAO,CAAC,GAAG,CAAC,OAAO,CAAC,SAAS,CAAC,CAAC;IAC/C,CAAC;IACD,IAAI,OAAO,CAAC,UAAU,EAAE,CAAC;QACrB,IAAI,KAAK,EAAE,OAAO;YAAE,OAAO,CAAC,GAAG,CAAC,OAAO,CAAC,UAAU,CAAC,GAAG,KAAK,CAAC,OAAO,CAAC;;YAC/D,OAAO,OAAO,CAAC,GAAG,CAAC,OAAO,CAAC,UAAU,CAAC,CAAC;IAChD,CAAC;AACL,CAAC;AAED,2CAA2C;AAC3C,MAAM,CAAC,KAAK,UAAU,+BAA+B;IACjD,MAAM,KAAK,GAAG,MAAM,SAAS,EAAE,CAAC;IAChC,MAAM,GAAG,GAAG,EAAE,CAAC;IACf,KAAK,MAAM,GAAG,IAAI,MAAM,CAAC,IAAI,CAAC,iBAAiB,CAAC,EAAE,CAAC;QAC/C,MAAM,KAAK,GAAG,KAAK,CAAC,GAAG,CAAC,CAAC;QACzB,GAAG,CAAC,GAAG,CAAC,GAAG;YACP,MAAM,EAAE,OAAO,CAAC,KAAK,IAAI,OAAO,KAAK,CAAC,MAAM,KAAK,QAAQ,IAAI,KAAK,CAAC,MAAM,CAAC,IAAI,EAAE,CAAC;YACjF,OAAO,EAAE,KAAK,IAAI,OAAO,KAAK,CAAC,OAAO,KAAK,QAAQ,IAAI,KAAK,CAAC,OAAO,CAAC,IAAI,EAAE,CAAC,CAAC,CAAC,KAAK,CAAC,OAAO,CAAC,IAAI,EAAE,CAAC,CAAC,CAAC,IAAI;YACzG,SAAS,EAAE,KAAK,IAAI,OAAO,KAAK,CAAC,SAAS,KAAK,QAAQ,CAAC,CAAC,CAAC,KAAK,CAAC,SAAS,CAAC,CAAC,CAAC,IAAI;SACnF,CAAC;IACN,CAAC;IACD,OAAO,GAAG,CAAC;AACf,CAAC"}

package/dist-server/server/services/provider-models.js

@@ -0,0 +1,218 @@
+/**
+ * Provider model catalog — dynamic discovery + persistent cache.
+ *
+ * Each CLI provider offers a different way to list the models it can run:
+ *
+ *   - Anthropic: https://api.anthropic.com/v1/models (API key required)
+ *   - OpenAI   : https://api.openai.com/v1/models (or a custom baseUrl when
+ *                the user points Codex at an OpenAI-compatible proxy)
+ *   - Google   : https://generativelanguage.googleapis.com/v1beta/models
+ *   - Qwen     : same OpenAI-compat shape when users BYOK through
+ *                ModelStudio / ModelScope / OpenRouter etc.
+ *
+ * The UI still keeps a hardcoded "known good" catalog as a baseline so
+ * brand-new installs don't show an empty dropdown; discovery merges the
+ * server-reported list on top, dedupes, and persists to
+ * `~/.pixcode/provider-models.json` with a 6-hour freshness window.
+ */
+import { promises as fs } from 'node:fs';
+import os from 'node:os';
+import path from 'node:path';
+import { getProviderCredentials } from './provider-credentials.js';
+const CACHE_FILE = path.join(os.homedir(), '.pixcode', 'provider-models.json');
+const CACHE_TTL_MS = 6 * 60 * 60 * 1000; // 6 hours
+async function readCache() {
+    try {
+        const raw = await fs.readFile(CACHE_FILE, 'utf8');
+        const parsed = JSON.parse(raw);
+        return parsed && typeof parsed === 'object' ? parsed : {};
+    }
+    catch {
+        return {};
+    }
+}
+async function writeCache(next) {
+    await fs.mkdir(path.dirname(CACHE_FILE), { recursive: true });
+    await fs.writeFile(CACHE_FILE, JSON.stringify(next, null, 2), { mode: 0o600 });
+}
+/**
+ * Cache entry shape:
+ *   { models: [{ value, label, source: 'static' | 'api' }],
+ *     fetchedAt: '<iso date>',
+ *     error?: '...' }
+ *
+ * `source` tells the UI which entries came from the live API so a
+ * refresh can prune stale ones without losing the hand-maintained
+ * defaults.
+ */
+async function loadCachedEntry(provider) {
+    const cache = await readCache();
+    return cache[provider] || null;
+}
+async function saveCacheEntry(provider, entry) {
+    const cache = await readCache();
+    cache[provider] = { ...entry, fetchedAt: new Date().toISOString() };
+    await writeCache(cache);
+}
+function normalizeList(list) {
+    if (!Array.isArray(list))
+        return [];
+    const seen = new Set();
+    const out = [];
+    for (const item of list) {
+        if (!item || typeof item !== 'object')
+            continue;
+        const value = typeof item.value === 'string' ? item.value.trim() : '';
+        if (!value || seen.has(value))
+            continue;
+        seen.add(value);
+        const label = typeof item.label === 'string' && item.label.trim() ? item.label.trim() : value;
+        const source = item.source === 'api' ? 'api' : 'static';
+        out.push({ value, label, source });
+    }
+    return out;
+}
+function mergeCatalogs(primary, secondary) {
+    const seen = new Map();
+    for (const item of [...primary, ...secondary]) {
+        if (!seen.has(item.value))
+            seen.set(item.value, item);
+    }
+    return Array.from(seen.values());
+}
+// ---------------- Per-provider live discovery ----------------
+async function discoverAnthropic(apiKey, baseUrl) {
+    const endpoint = (baseUrl?.replace(/\/+$/, '') || 'https://api.anthropic.com') + '/v1/models';
+    const response = await fetch(endpoint, {
+        headers: {
+            'x-api-key': apiKey,
+            'anthropic-version': '2023-06-01',
+        },
+    });
+    if (!response.ok)
+        throw new Error(`Anthropic /v1/models returned ${response.status}`);
+    const data = await response.json();
+    const rows = Array.isArray(data?.data) ? data.data : [];
+    return rows
+        .filter((m) => typeof m?.id === 'string')
+        .map((m) => ({
+        value: m.id,
+        label: typeof m.display_name === 'string' && m.display_name.trim() ? m.display_name : m.id,
+        source: 'api',
+    }));
+}
+async function discoverOpenAiCompat(apiKey, baseUrl, fallbackBase) {
+    const endpoint = (baseUrl?.replace(/\/+$/, '') || fallbackBase) + '/models';
+    const response = await fetch(endpoint, {
+        headers: { Authorization: `Bearer ${apiKey}` },
+    });
+    if (!response.ok)
+        throw new Error(`${endpoint} returned ${response.status}`);
+    const data = await response.json();
+    const rows = Array.isArray(data?.data) ? data.data : [];
+    return rows
+        .filter((m) => typeof m?.id === 'string')
+        .map((m) => ({
+        value: m.id,
+        label: m.id,
+        source: 'api',
+    }));
+}
+async function discoverGoogle(apiKey) {
+    // Google Generative Language API — public models list, API key as query.
+    const endpoint = `https://generativelanguage.googleapis.com/v1beta/models?key=${encodeURIComponent(apiKey)}`;
+    const response = await fetch(endpoint);
+    if (!response.ok)
+        throw new Error(`Google /v1beta/models returned ${response.status}`);
+    const data = await response.json();
+    const rows = Array.isArray(data?.models) ? data.models : [];
+    return rows
+        .filter((m) => typeof m?.name === 'string' && m.name.includes('models/'))
+        .map((m) => {
+        const id = m.name.replace(/^models\//, '');
+        return {
+            value: id,
+            label: typeof m.displayName === 'string' && m.displayName.trim() ? m.displayName : id,
+            source: 'api',
+        };
+    });
+}
+/**
+ * Returns the merged catalog for a provider.
+ *   opts.forceRefresh: ignore cache and hit the upstream API
+ *   opts.staticList: hardcoded fallback from shared/modelConstants.js
+ */
+export async function getProviderModels(provider, opts = {}) {
+    const { forceRefresh = false, staticList = [] } = opts;
+    const staticCatalog = normalizeList(staticList.map((m) => ({ ...m, source: 'static' })));
+    const cached = await loadCachedEntry(provider);
+    const cacheFresh = cached?.fetchedAt
+        ? Date.now() - Date.parse(cached.fetchedAt) < CACHE_TTL_MS
+        : false;
+    if (!forceRefresh && cacheFresh && Array.isArray(cached?.models)) {
+        return {
+            models: mergeCatalogs(normalizeList(cached.models), staticCatalog),
+            fetchedAt: cached.fetchedAt,
+            error: cached.error,
+            fromCache: true,
+        };
+    }
+    // Pick up credentials from Pixcode's UI store first, then fall back to
+    // the native env vars so a user who already exported ANTHROPIC_API_KEY
+    // (or authenticated Claude Code via OAuth — the SDK writes the key into
+    // process.env on boot) gets live models without re-entering anything.
+    const creds = await getProviderCredentials(provider);
+    const envKey = {
+        claude: process.env.ANTHROPIC_API_KEY,
+        codex: process.env.OPENAI_API_KEY,
+        qwen: process.env.OPENAI_API_KEY || process.env.QWEN_API_KEY,
+        gemini: process.env.GEMINI_API_KEY,
+    }[provider];
+    const envBase = {
+        claude: process.env.ANTHROPIC_BASE_URL,
+        codex: process.env.OPENAI_BASE_URL,
+        qwen: process.env.OPENAI_BASE_URL,
+        gemini: undefined,
+    }[provider];
+    const apiKey = creds?.apiKey || envKey;
+    const baseUrl = creds?.baseUrl || envBase || undefined;
+    let liveModels = [];
+    let error;
+    if (!apiKey) {
+        // Be explicit so the UI can surface a useful hint rather than just
+        // showing the static baseline with no reason given.
+        error = `No ${provider} API key configured. Save one in Settings > Agents > API Key to enable live discovery.`;
+    }
+    else {
+        try {
+            if (provider === 'claude') {
+                liveModels = await discoverAnthropic(apiKey, baseUrl);
+            }
+            else if (provider === 'codex') {
+                liveModels = await discoverOpenAiCompat(apiKey, baseUrl, 'https://api.openai.com/v1');
+            }
+            else if (provider === 'qwen') {
+                liveModels = await discoverOpenAiCompat(apiKey, baseUrl, 'https://dashscope-intl.aliyuncs.com/compatible-mode/v1');
+            }
+            else if (provider === 'gemini') {
+                liveModels = await discoverGoogle(apiKey);
+            }
+        }
+        catch (err) {
+            error = err?.message || String(err);
+        }
+    }
+    const merged = mergeCatalogs(normalizeList(liveModels), staticCatalog);
+    const entry = { models: merged, error };
+    await saveCacheEntry(provider, entry).catch(() => { });
+    return { models: merged, fetchedAt: new Date().toISOString(), error, fromCache: false };
+}
+export async function clearProviderModelCache(provider) {
+    const cache = await readCache();
+    if (provider)
+        delete cache[provider];
+    else
+        Object.keys(cache).forEach((k) => delete cache[k]);
+    await writeCache(cache);
+}
+//# sourceMappingURL=provider-models.js.map

package/dist-server/server/services/provider-models.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"provider-models.js","sourceRoot":"","sources":["../../../server/services/provider-models.js"],"names":[],"mappings":"AAAA;;;;;;;;;;;;;;;;GAgBG;AACH,OAAO,EAAE,QAAQ,IAAI,EAAE,EAAE,MAAM,SAAS,CAAC;AACzC,OAAO,EAAE,MAAM,SAAS,CAAC;AACzB,OAAO,IAAI,MAAM,WAAW,CAAC;AAE7B,OAAO,EAAE,sBAAsB,EAAE,MAAM,2BAA2B,CAAC;AAEnE,MAAM,UAAU,GAAG,IAAI,CAAC,IAAI,CAAC,EAAE,CAAC,OAAO,EAAE,EAAE,UAAU,EAAE,sBAAsB,CAAC,CAAC;AAC/E,MAAM,YAAY,GAAG,CAAC,GAAG,EAAE,GAAG,EAAE,GAAG,IAAI,CAAC,CAAC,UAAU;AAEnD,KAAK,UAAU,SAAS;IACpB,IAAI,CAAC;QACD,MAAM,GAAG,GAAG,MAAM,EAAE,CAAC,QAAQ,CAAC,UAAU,EAAE,MAAM,CAAC,CAAC;QAClD,MAAM,MAAM,GAAG,IAAI,CAAC,KAAK,CAAC,GAAG,CAAC,CAAC;QAC/B,OAAO,MAAM,IAAI,OAAO,MAAM,KAAK,QAAQ,CAAC,CAAC,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,CAAC;IAC9D,CAAC;IAAC,MAAM,CAAC;QACL,OAAO,EAAE,CAAC;IACd,CAAC;AACL,CAAC;AAED,KAAK,UAAU,UAAU,CAAC,IAAI;IAC1B,MAAM,EAAE,CAAC,KAAK,CAAC,IAAI,CAAC,OAAO,CAAC,UAAU,CAAC,EAAE,EAAE,SAAS,EAAE,IAAI,EAAE,CAAC,CAAC;IAC9D,MAAM,EAAE,CAAC,SAAS,CAAC,UAAU,EAAE,IAAI,CAAC,SAAS,CAAC,IAAI,EAAE,IAAI,EAAE,CAAC,CAAC,EAAE,EAAE,IAAI,EAAE,KAAK,EAAE,CAAC,CAAC;AACnF,CAAC;AAED;;;;;;;;;GASG;AACH,KAAK,UAAU,eAAe,CAAC,QAAQ;IACnC,MAAM,KAAK,GAAG,MAAM,SAAS,EAAE,CAAC;IAChC,OAAO,KAAK,CAAC,QAAQ,CAAC,IAAI,IAAI,CAAC;AACnC,CAAC;AAED,KAAK,UAAU,cAAc,CAAC,QAAQ,EAAE,KAAK;IACzC,MAAM,KAAK,GAAG,MAAM,SAAS,EAAE,CAAC;IAChC,KAAK,CAAC,QAAQ,CAAC,GAAG,EAAE,GAAG,KAAK,EAAE,SAAS,EAAE,IAAI,IAAI,EAAE,CAAC,WAAW,EAAE,EAAE,CAAC;IACpE,MAAM,UAAU,CAAC,KAAK,CAAC,CAAC;AAC5B,CAAC;AAED,SAAS,aAAa,CAAC,IAAI;IACvB,IAAI,CAAC,KAAK,CAAC,OAAO,CAAC,IAAI,CAAC;QAAE,OAAO,EAAE,CAAC;IACpC,MAAM,IAAI,GAAG,IAAI,GAAG,EAAE,CAAC;IACvB,MAAM,GAAG,GAAG,EAAE,CAAC;IACf,KAAK,MAAM,IAAI,IAAI,IAAI,EAAE,CAAC;QACtB,IAAI,CAAC,IAAI,IAAI,OAAO,IAAI,KAAK,QAAQ;YAAE,SAAS;QAChD,MAAM,KAAK,GAAG,OAAO,IAAI,CAAC,KAAK,KAAK,QAAQ,CAAC,CAAC,CAAC,IAAI,CAAC,KAAK,CAAC,IAAI,EAAE,CAAC,CAAC,CAAC,EAAE,CAAC;QACtE,IAAI,CAAC,KAAK,IAAI,IAAI,CAAC,GAAG,CAAC,KAAK,CAAC;YAAE,SAAS;QACxC,IAAI,CAAC,GAAG,CAAC,KAAK,CAAC,CAAC;QAChB,MAAM,KAAK,GAAG,OAAO,IAAI,CAAC,KAAK,KAAK,QAAQ,IAAI,IAAI,CAAC,KAAK,CAAC,IAAI,EAAE,CAAC,CAAC,CAAC,IAAI,CAAC,KAAK,CAAC,IAAI,EAAE,CAAC,CAAC,CAAC,KAAK,CAAC;QAC9F,MAAM,MAAM,GAAG,IAAI,CAAC,MAAM,KAAK,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,CAAC,CAAC,QAAQ,CAAC;QACxD,GAAG,CAAC,IAAI,CAAC,EAAE,KAAK,EAAE,KAAK,EAAE,MAAM,EAAE,CAAC,CAAC;IACvC,CAAC;IACD,OAAO,GAAG,CAAC;AACf,CAAC;AAED,SAAS,aAAa,CAAC,OAAO,EAAE,SAAS;IACrC,MAAM,IAAI,GAAG,IAAI,GAAG,EAAE,CAAC;IACvB,KAAK,MAAM,IAAI,IAAI,CAAC,GAAG,OAAO,EAAE,GAAG,SAAS,CAAC,EAAE,CAAC;QAC5C,IAAI,CAAC,IAAI,CAAC,GAAG,CAAC,IAAI,CAAC,KAAK,CAAC;YAAE,IAAI,CAAC,GAAG,CAAC,IAAI,CAAC,KAAK,EAAE,IAAI,CAAC,CAAC;IAC1D,CAAC;IACD,OAAO,KAAK,CAAC,IAAI,CAAC,IAAI,CAAC,MAAM,EAAE,CAAC,CAAC;AACrC,CAAC;AAED,gEAAgE;AAEhE,KAAK,UAAU,iBAAiB,CAAC,MAAM,EAAE,OAAO;IAC5C,MAAM,QAAQ,GAAG,CAAC,OAAO,EAAE,OAAO,CAAC,MAAM,EAAE,EAAE,CAAC,IAAI,2BAA2B,CAAC,GAAG,YAAY,CAAC;IAC9F,MAAM,QAAQ,GAAG,MAAM,KAAK,CAAC,QAAQ,EAAE;QACnC,OAAO,EAAE;YACL,WAAW,EAAE,MAAM;YACnB,mBAAmB,EAAE,YAAY;SACpC;KACJ,CAAC,CAAC;IACH,IAAI,CAAC,QAAQ,CAAC,EAAE;QAAE,MAAM,IAAI,KAAK,CAAC,iCAAiC,QAAQ,CAAC,MAAM,EAAE,CAAC,CAAC;IACtF,MAAM,IAAI,GAAG,MAAM,QAAQ,CAAC,IAAI,EAAE,CAAC;IACnC,MAAM,IAAI,GAAG,KAAK,CAAC,OAAO,CAAC,IAAI,EAAE,IAAI,CAAC,CAAC,CAAC,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC,CAAC,EAAE,CAAC;IACxD,OAAO,IAAI;SACN,MAAM,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,OAAO,CAAC,EAAE,EAAE,KAAK,QAAQ,CAAC;SACxC,GAAG,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC;QACT,KAAK,EAAE,CAAC,CAAC,EAAE;QACX,KAAK,EAAE,OAAO,CAAC,CAAC,YAAY,KAAK,QAAQ,IAAI,CAAC,CAAC,YAAY,CAAC,IAAI,EAAE,CAAC,CAAC,CAAC,CAAC,CAAC,YAAY,CAAC,CAAC,CAAC,CAAC,CAAC,EAAE;QAC1F,MAAM,EAAE,KAAK;KAChB,CAAC,CAAC,CAAC;AACZ,CAAC;AAED,KAAK,UAAU,oBAAoB,CAAC,MAAM,EAAE,OAAO,EAAE,YAAY;IAC7D,MAAM,QAAQ,GAAG,CAAC,OAAO,EAAE,OAAO,CAAC,MAAM,EAAE,EAAE,CAAC,IAAI,YAAY,CAAC,GAAG,SAAS,CAAC;IAC5E,MAAM,QAAQ,GAAG,MAAM,KAAK,CAAC,QAAQ,EAAE;QACnC,OAAO,EAAE,EAAE,aAAa,EAAE,UAAU,MAAM,EAAE,EAAE;KACjD,CAAC,CAAC;IACH,IAAI,CAAC,QAAQ,CAAC,EAAE;QAAE,MAAM,IAAI,KAAK,CAAC,GAAG,QAAQ,aAAa,QAAQ,CAAC,MAAM,EAAE,CAAC,CAAC;IAC7E,MAAM,IAAI,GAAG,MAAM,QAAQ,CAAC,IAAI,EAAE,CAAC;IACnC,MAAM,IAAI,GAAG,KAAK,CAAC,OAAO,CAAC,IAAI,EAAE,IAAI,CAAC,CAAC,CAAC,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC,CAAC,EAAE,CAAC;IACxD,OAAO,IAAI;SACN,MAAM,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,OAAO,CAAC,EAAE,EAAE,KAAK,QAAQ,CAAC;SACxC,GAAG,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC;QACT,KAAK,EAAE,CAAC,CAAC,EAAE;QACX,KAAK,EAAE,CAAC,CAAC,EAAE;QACX,MAAM,EAAE,KAAK;KAChB,CAAC,CAAC,CAAC;AACZ,CAAC;AAED,KAAK,UAAU,cAAc,CAAC,MAAM;IAChC,yEAAyE;IACzE,MAAM,QAAQ,GAAG,+DAA+D,kBAAkB,CAAC,MAAM,CAAC,EAAE,CAAC;IAC7G,MAAM,QAAQ,GAAG,MAAM,KAAK,CAAC,QAAQ,CAAC,CAAC;IACvC,IAAI,CAAC,QAAQ,CAAC,EAAE;QAAE,MAAM,IAAI,KAAK,CAAC,kCAAkC,QAAQ,CAAC,MAAM,EAAE,CAAC,CAAC;IACvF,MAAM,IAAI,GAAG,MAAM,QAAQ,CAAC,IAAI,EAAE,CAAC;IACnC,MAAM,IAAI,GAAG,KAAK,CAAC,OAAO,CAAC,IAAI,EAAE,MAAM,CAAC,CAAC,CAAC,CAAC,IAAI,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,CAAC;IAC5D,OAAO,IAAI;SACN,MAAM,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,OAAO,CAAC,EAAE,IAAI,KAAK,QAAQ,IAAI,CAAC,CAAC,IAAI,CAAC,QAAQ,CAAC,SAAS,CAAC,CAAC;SACxE,GAAG,CAAC,CAAC,CAAC,EAAE,EAAE;QACP,MAAM,EAAE,GAAG,CAAC,CAAC,IAAI,CAAC,OAAO,CAAC,WAAW,EAAE,EAAE,CAAC,CAAC;QAC3C,OAAO;YACH,KAAK,EAAE,EAAE;YACT,KAAK,EAAE,OAAO,CAAC,CAAC,WAAW,KAAK,QAAQ,IAAI,CAAC,CAAC,WAAW,CAAC,IAAI,EAAE,CAAC,CAAC,CAAC,CAAC,CAAC,WAAW,CAAC,CAAC,CAAC,EAAE;YACrF,MAAM,EAAE,KAAK;SAChB,CAAC;IACN,CAAC,CAAC,CAAC;AACX,CAAC;AAED;;;;GAIG;AACH,MAAM,CAAC,KAAK,UAAU,iBAAiB,CAAC,QAAQ,EAAE,IAAI,GAAG,EAAE;IACvD,MAAM,EAAE,YAAY,GAAG,KAAK,EAAE,UAAU,GAAG,EAAE,EAAE,GAAG,IAAI,CAAC;IACvD,MAAM,aAAa,GAAG,aAAa,CAAC,UAAU,CAAC,GAAG,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,EAAE,GAAG,CAAC,EAAE,MAAM,EAAE,QAAQ,EAAE,CAAC,CAAC,CAAC,CAAC;IAEzF,MAAM,MAAM,GAAG,MAAM,eAAe,CAAC,QAAQ,CAAC,CAAC;IAC/C,MAAM,UAAU,GAAG,MAAM,EAAE,SAAS;QAChC,CAAC,CAAC,IAAI,CAAC,GAAG,EAAE,GAAG,IAAI,CAAC,KAAK,CAAC,MAAM,CAAC,SAAS,CAAC,GAAG,YAAY;QAC1D,CAAC,CAAC,KAAK,CAAC;IAEZ,IAAI,CAAC,YAAY,IAAI,UAAU,IAAI,KAAK,CAAC,OAAO,CAAC,MAAM,EAAE,MAAM,CAAC,EAAE,CAAC;QAC/D,OAAO;YACH,MAAM,EAAE,aAAa,CAAC,aAAa,CAAC,MAAM,CAAC,MAAM,CAAC,EAAE,aAAa,CAAC;YAClE,SAAS,EAAE,MAAM,CAAC,SAAS;YAC3B,KAAK,EAAE,MAAM,CAAC,KAAK;YACnB,SAAS,EAAE,IAAI;SAClB,CAAC;IACN,CAAC;IAED,uEAAuE;IACvE,uEAAuE;IACvE,wEAAwE;IACxE,sEAAsE;IACtE,MAAM,KAAK,GAAG,MAAM,sBAAsB,CAAC,QAAQ,CAAC,CAAC;IACrD,MAAM,MAAM,GAAG;QACX,MAAM,EAAE,OAAO,CAAC,GAAG,CAAC,iBAAiB;QACrC,KAAK,EAAE,OAAO,CAAC,GAAG,CAAC,cAAc;QACjC,IAAI,EAAE,OAAO,CAAC,GAAG,CAAC,cAAc,IAAI,OAAO,CAAC,GAAG,CAAC,YAAY;QAC5D,MAAM,EAAE,OAAO,CAAC,GAAG,CAAC,cAAc;KACrC,CAAC,QAAQ,CAAC,CAAC;IACZ,MAAM,OAAO,GAAG;QACZ,MAAM,EAAE,OAAO,CAAC,GAAG,CAAC,kBAAkB;QACtC,KAAK,EAAE,OAAO,CAAC,GAAG,CAAC,eAAe;QAClC,IAAI,EAAE,OAAO,CAAC,GAAG,CAAC,eAAe;QACjC,MAAM,EAAE,SAAS;KACpB,CAAC,QAAQ,CAAC,CAAC;IACZ,MAAM,MAAM,GAAG,KAAK,EAAE,MAAM,IAAI,MAAM,CAAC;IACvC,MAAM,OAAO,GAAG,KAAK,EAAE,OAAO,IAAI,OAAO,IAAI,SAAS,CAAC;IAEvD,IAAI,UAAU,GAAG,EAAE,CAAC;IACpB,IAAI,KAAK,CAAC;IACV,IAAI,CAAC,MAAM,EAAE,CAAC;QACV,mEAAmE;QACnE,oDAAoD;QACpD,KAAK,GAAG,MAAM,QAAQ,wFAAwF,CAAC;IACnH,CAAC;SAAM,CAAC;QACJ,IAAI,CAAC;YACD,IAAI,QAAQ,KAAK,QAAQ,EAAE,CAAC;gBACxB,UAAU,GAAG,MAAM,iBAAiB,CAAC,MAAM,EAAE,OAAO,CAAC,CAAC;YAC1D,CAAC;iBAAM,IAAI,QAAQ,KAAK,OAAO,EAAE,CAAC;gBAC9B,UAAU,GAAG,MAAM,oBAAoB,CAAC,MAAM,EAAE,OAAO,EAAE,2BAA2B,CAAC,CAAC;YAC1F,CAAC;iBAAM,IAAI,QAAQ,KAAK,MAAM,EAAE,CAAC;gBAC7B,UAAU,GAAG,MAAM,oBAAoB,CACnC,MAAM,EACN,OAAO,EACP,wDAAwD,CAC3D,CAAC;YACN,CAAC;iBAAM,IAAI,QAAQ,KAAK,QAAQ,EAAE,CAAC;gBAC/B,UAAU,GAAG,MAAM,cAAc,CAAC,MAAM,CAAC,CAAC;YAC9C,CAAC;QACL,CAAC;QAAC,OAAO,GAAG,EAAE,CAAC;YACX,KAAK,GAAG,GAAG,EAAE,OAAO,IAAI,MAAM,CAAC,GAAG,CAAC,CAAC;QACxC,CAAC;IACL,CAAC;IAED,MAAM,MAAM,GAAG,aAAa,CAAC,aAAa,CAAC,UAAU,CAAC,EAAE,aAAa,CAAC,CAAC;IACvE,MAAM,KAAK,GAAG,EAAE,MAAM,EAAE,MAAM,EAAE,KAAK,EAAE,CAAC;IACxC,MAAM,cAAc,CAAC,QAAQ,EAAE,KAAK,CAAC,CAAC,KAAK,CAAC,GAAG,EAAE,GAAmB,CAAC,CAAC,CAAC;IACvE,OAAO,EAAE,MAAM,EAAE,MAAM,EAAE,SAAS,EAAE,IAAI,IAAI,EAAE,CAAC,WAAW,EAAE,EAAE,KAAK,EAAE,SAAS,EAAE,KAAK,EAAE,CAAC;AAC5F,CAAC;AAED,MAAM,CAAC,KAAK,UAAU,uBAAuB,CAAC,QAAQ;IAClD,MAAM,KAAK,GAAG,MAAM,SAAS,EAAE,CAAC;IAChC,IAAI,QAAQ;QAAE,OAAO,KAAK,CAAC,QAAQ,CAAC,CAAC;;QAChC,MAAM,CAAC,IAAI,CAAC,KAAK,CAAC,CAAC,OAAO,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,OAAO,KAAK,CAAC,CAAC,CAAC,CAAC,CAAC;IACxD,MAAM,UAAU,CAAC,KAAK,CAAC,CAAC;AAC5B,CAAC"}

package/dist-server/server/services/telegram/bot.js

@@ -0,0 +1,259 @@
+import { EventEmitter } from 'node:events';
+import { createRequire } from 'node:module';
+import { telegramConfigDb, telegramLinksDb } from '../../database/db.js';
+import { t } from './translations.js';
+// node-telegram-bot-api is a CommonJS module. Using createRequire keeps the
+// default-export interop clean across ESM/CJS boundaries.
+const requireCjs = createRequire(import.meta.url);
+const TelegramBot = requireCjs('node-telegram-bot-api');
+// Pairing code TTL. Ten minutes gives a user enough time to switch apps and
+// type the code without leaving a long-lived code sitting around if they
+// abandon the flow.
+const PAIRING_TTL_MS = 10 * 60 * 1000;
+// Singleton bot state. We intentionally host one bot per Pixcode instance —
+// running multiple bots from the same token would cause Telegram to trip
+// polling conflicts, and per-user bots are overkill.
+let bot = null;
+let botInfo = null; // { id, username, first_name }
+let lastError = null;
+// Subscribers (notification-orchestrator, future session bridge) use this to
+// react to events without importing the bot module directly.
+export const telegramEvents = new EventEmitter();
+const now = () => Date.now();
+const generate6DigitCode = () => {
+    // Zero-padded random 6-digit code. Using rand instead of crypto is fine
+    // here: the code is short-lived (10min), single-use, and verified against
+    // a per-user row — brute-force requires both the code AND a live pairing.
+    const n = Math.floor(Math.random() * 1_000_000);
+    return n.toString().padStart(6, '0');
+};
+export const createPairingCode = (userId, language = 'en') => {
+    const code = generate6DigitCode();
+    const expiresAtIso = new Date(now() + PAIRING_TTL_MS).toISOString();
+    telegramLinksDb.setPairingCode(userId, code, expiresAtIso, language);
+    return { code, expiresAt: expiresAtIso };
+};
+export const getBotState = () => ({
+    running: Boolean(bot),
+    username: botInfo?.username || null,
+    error: lastError,
+});
+export const getPublicConfig = () => {
+    const config = telegramConfigDb.get();
+    return {
+        configured: Boolean(config?.bot_token),
+        username: config?.bot_username || null,
+    };
+};
+const parseMaybeCode = (text) => {
+    const trimmed = text.trim();
+    // Only treat the message as a pairing attempt when it's *exactly* 6 digits,
+    // otherwise a paired user typing "123456" as part of a prompt would get
+    // rejected with "invalid code" instead of being forwarded.
+    return /^\d{6}$/.test(trimmed) ? trimmed : null;
+};
+const safeSend = async (chatId, text) => {
+    if (!bot)
+        return;
+    try {
+        await bot.sendMessage(chatId, text, { parse_mode: 'Markdown' });
+    }
+    catch (err) {
+        // Markdown parse errors from user input are common; retry plaintext.
+        try {
+            await bot.sendMessage(chatId, text);
+        }
+        catch (fallbackErr) {
+            console.warn('[telegram] sendMessage failed:', fallbackErr?.message || fallbackErr);
+        }
+    }
+};
+const handlePairing = async (msg, code) => {
+    const link = telegramLinksDb.findByPairingCode(code);
+    const language = link?.language || 'en';
+    if (!link) {
+        await safeSend(msg.chat.id, t(language, 'pairing.notFound'));
+        return;
+    }
+    const expiresAt = link.pairing_code_expires_at ? Date.parse(link.pairing_code_expires_at) : 0;
+    if (!expiresAt || expiresAt < now()) {
+        await safeSend(msg.chat.id, t(language, 'pairing.expired'));
+        return;
+    }
+    const telegramUsername = msg.from?.username || null;
+    telegramLinksDb.verify(link.user_id, String(msg.chat.id), telegramUsername);
+    telegramEvents.emit('paired', { userId: link.user_id, chatId: String(msg.chat.id), username: telegramUsername });
+    await safeSend(msg.chat.id, t(language, 'pairing.success'));
+};
+const handleBridgeMessage = async (msg, existing) => {
+    const language = existing.language || 'en';
+    if (!existing.bridge_enabled) {
+        await safeSend(msg.chat.id, t(language, 'bridge.disabled'));
+        return;
+    }
+    // Fan out to subscribers (future: session-prompt bridge). We don't do the
+    // actual agent dispatch here to keep the bot service narrowly focused on
+    // Telegram I/O and let the rest of the server opt in.
+    telegramEvents.emit('prompt', {
+        userId: existing.user_id,
+        chatId: String(msg.chat.id),
+        text: msg.text || '',
+        language,
+        messageId: msg.message_id,
+    });
+    await safeSend(msg.chat.id, t(language, 'bridge.queued'));
+};
+const handleMessage = async (msg) => {
+    if (!msg?.chat?.id || !msg?.text)
+        return;
+    const existing = telegramLinksDb.getByChatId(String(msg.chat.id));
+    if (existing) {
+        // Paired user path: a 6-digit-only message is treated as noise (we keep
+        // the already-paired binding); anything else is bridge traffic.
+        const maybeCode = parseMaybeCode(msg.text);
+        if (maybeCode) {
+            await safeSend(msg.chat.id, t(existing.language || 'en', 'welcome.alreadyPaired'));
+            return;
+        }
+        await handleBridgeMessage(msg, existing);
+        return;
+    }
+    // Unpaired user path: only thing we accept is a 6-digit code. Anything else
+    // is gently redirected to "please send your code" in a best-effort language
+    // (we don't know their app language yet, so fall back to English).
+    const maybeCode = parseMaybeCode(msg.text);
+    if (maybeCode) {
+        await handlePairing(msg, maybeCode);
+        return;
+    }
+    if (/^\/start\b/i.test(msg.text)) {
+        await safeSend(msg.chat.id, t('en', 'welcome.needsCode'));
+        return;
+    }
+    // Anything else: keep nudging for the code (per user's "hep lütfen kodu
+    // giriniz desin" requirement).
+    await safeSend(msg.chat.id, t('en', 'pairing.stillNeeded'));
+};
+const wirePollingErrors = () => {
+    if (!bot)
+        return;
+    bot.on('polling_error', (err) => {
+        // 401 = bad token. 409 = another polling instance exists. Both mean we
+        // should stop and surface the error rather than thrash.
+        const code = err?.response?.statusCode || err?.code;
+        lastError = { code: code || 'polling_error', message: err?.message || String(err) };
+        if (code === 401 || code === 409) {
+            console.error('[telegram] fatal polling error, stopping:', lastError);
+            stopBot().catch(() => { });
+        }
+        else {
+            console.warn('[telegram] polling error:', lastError);
+        }
+    });
+};
+export const startBot = async ({ token, persist = true } = {}) => {
+    if (!token) {
+        const config = telegramConfigDb.get();
+        token = config?.bot_token;
+    }
+    if (!token) {
+        throw new Error('No Telegram bot token available');
+    }
+    // Stop any previously-running instance before creating a new one — otherwise
+    // node-telegram-bot-api will keep two pollers alive and Telegram will throw
+    // 409 conflicts on every long-poll.
+    if (bot)
+        await stopBot();
+    const instance = new TelegramBot(token, { polling: true });
+    // Validate the token first — if getMe fails we never want to persist a
+    // broken token or leave the poller running.
+    let me;
+    try {
+        me = await instance.getMe();
+    }
+    catch (err) {
+        try {
+            await instance.stopPolling();
+        }
+        catch { /* ignore */ }
+        const reason = err?.response?.body?.description || err?.message || String(err);
+        lastError = { code: 'auth', message: reason };
+        const error = new Error(`Invalid bot token: ${reason}`);
+        error.code = 'INVALID_TOKEN';
+        throw error;
+    }
+    bot = instance;
+    botInfo = { id: me.id, username: me.username, first_name: me.first_name };
+    lastError = null;
+    if (persist)
+        telegramConfigDb.set(token, me.username);
+    bot.on('message', (msg) => {
+        handleMessage(msg).catch((err) => {
+            console.error('[telegram] handleMessage crashed:', err);
+        });
+    });
+    wirePollingErrors();
+    console.log(`[telegram] bot started as @${me.username}`);
+    telegramEvents.emit('started', { username: me.username });
+    return botInfo;
+};
+export const stopBot = async () => {
+    if (!bot)
+        return;
+    try {
+        await bot.stopPolling({ cancel: true });
+    }
+    catch (err) {
+        console.warn('[telegram] stopPolling failed:', err?.message || err);
+    }
+    bot = null;
+    botInfo = null;
+    telegramEvents.emit('stopped');
+};
+export const removeBotConfig = async () => {
+    await stopBot();
+    telegramConfigDb.clear();
+};
+export const sendToUser = async (userId, text) => {
+    const link = telegramLinksDb.getByUserId(userId);
+    if (!link?.chat_id || !bot)
+        return false;
+    try {
+        await bot.sendMessage(link.chat_id, text);
+        return true;
+    }
+    catch (err) {
+        console.warn('[telegram] sendToUser failed:', err?.message || err);
+        return false;
+    }
+};
+// Convenience helper for notification-orchestrator: pick a translation key
+// based on notification kind, fill vars, and dispatch if the user has
+// notifications enabled.
+export const notifyUser = async ({ userId, kind, title, error }) => {
+    const link = telegramLinksDb.getByUserId(userId);
+    if (!link?.chat_id || !link.notifications_enabled)
+        return false;
+    const lang = link.language || 'en';
+    const key = kind === 'error'
+        ? 'notification.taskFailed'
+        : kind === 'action_required'
+            ? 'notification.actionRequired'
+            : 'notification.taskDone';
+    const text = t(lang, key, { title: title || 'Session', error: error || '' });
+    return sendToUser(userId, text);
+};
+// Boot the bot automatically if a token was previously persisted. This runs
+// once during server startup so a restart doesn't silently un-pair everyone.
+export const restoreBotFromConfig = async () => {
+    const config = telegramConfigDb.get();
+    if (!config?.bot_token)
+        return;
+    try {
+        await startBot({ token: config.bot_token, persist: false });
+    }
+    catch (err) {
+        console.warn('[telegram] Failed to restore bot:', err?.message || err);
+    }
+};
+//# sourceMappingURL=bot.js.map