@robbiesrobotics/alice-agents 1.3.0 → 1.3.2

package/lib/doctor.mjs

@@ -1,6 +1,6 @@
-import { readFileSync, existsSync } from 'node:fs';
+import { readFileSync, existsSync, accessSync, constants } from 'node:fs';
 import { join, dirname } from 'node:path';
-import { homedir } from 'node:os';
+import { homedir, platform } from 'node:os';
 import { execSync } from 'node:child_process';
 import { fileURLToPath } from 'node:url';
 
@@ -42,6 +42,72 @@ function loadConfig() {
   }
 }
 
+/**
+ * Check Docker socket accessibility.
+ * On Linux, Docker often requires sudo unless the user is in the docker group.
+ * Returns { present, accessible, needsSudo, hint }
+ */
+function checkDockerEnvironment() {
+  const isLinux = platform() === 'linux';
+
+  // Check if docker binary exists at all
+  let dockerInstalled = false;
+  try {
+    execSync('which docker', { stdio: 'pipe' });
+    dockerInstalled = true;
+  } catch {
+    // Docker not installed — not a blocker unless openclaw needs it
+    return { present: false, accessible: false, needsSudo: false, hint: null };
+  }
+
+  // Try docker ps without sudo
+  try {
+    execSync('docker ps', { stdio: 'pipe' });
+    return { present: true, accessible: true, needsSudo: false, hint: null };
+  } catch (err) {
+    const msg = err.stderr?.toString() || '';
+
+    // Permission denied / cannot connect to daemon — classic sudo-required scenario
+    const isPermissionIssue =
+      msg.includes('permission denied') ||
+      msg.includes('Got permission denied') ||
+      msg.includes('Cannot connect to the Docker daemon') ||
+      msg.includes('dial unix') ||
+      msg.includes('connect: permission denied');
+
+    if (isLinux && isPermissionIssue) {
+      // Try sudo docker ps to confirm it works with elevated perms
+      let sudoWorks = false;
+      try {
+        execSync('sudo docker ps', { stdio: 'pipe', timeout: 5000 });
+        sudoWorks = true;
+      } catch {}
+
+      return {
+        present: true,
+        accessible: false,
+        needsSudo: true,
+        sudoWorks,
+        hint: sudoWorks
+          ? `Docker requires sudo on this machine. Fix with:\n     sudo usermod -aG docker $USER && newgrp docker\n     Then log out and back in. Or run OpenClaw with sudo (not recommended for production).`
+          : `Docker found but not accessible. Check that the Docker daemon is running:\n     sudo systemctl start docker\n     Then add your user to the docker group:\n     sudo usermod -aG docker $USER && newgrp docker`,
+      };
+    }
+
+    // Docker is installed but daemon isn't running
+    if (msg.includes('Is the docker daemon running') || msg.includes('Cannot connect')) {
+      return {
+        present: true,
+        accessible: false,
+        needsSudo: false,
+        hint: 'Docker daemon is not running. Start it:\n     sudo systemctl start docker   (Linux)\n     open -a Docker                  (macOS)',
+      };
+    }
+
+    return { present: true, accessible: false, needsSudo: false, hint: `docker ps failed: ${msg.slice(0, 100)}` };
+  }
+}
+
 export async function runDoctor() {
   console.log('\n  🩺 A.L.I.C.E. Doctor — Diagnostic Report\n');
   let allOk = true;
@@ -157,6 +223,59 @@ export async function runDoctor() {
   );
   allOk = allOk && modelOk;
 
+  // 6. Docker environment check (Linux-aware)
+  const docker = checkDockerEnvironment();
+  if (docker.present) {
+    if (docker.accessible) {
+      check('Docker accessible', true);
+    } else if (docker.needsSudo) {
+      check(
+        'Docker requires sudo — user not in docker group',
+        false,
+        docker.hint
+      );
+      // Docker permission issue is a warning, not a hard failure for A.L.I.C.E. itself
+      // but it will break OpenClaw's own Docker features
+      console.log('  ℹ️  Note: This will affect OpenClaw features that use Docker.\n');
+    } else {
+      check('Docker daemon not running or not accessible', false, docker.hint);
+    }
+  }
+  // If docker not present at all, skip silently — not required for all setups
+
+  // 7. License check
+  const { checkProLicense } = await import('./license.mjs');
+  const manifest = (() => {
+    try {
+      const mPath = join(OPENCLAW_DIR, '.alice-manifest.json');
+      if (!existsSync(mPath)) return null;
+      return JSON.parse(readFileSync(mPath, 'utf8'));
+    } catch {
+      return null;
+    }
+  })();
+
+  const licenseResult = await checkProLicense();
+  if (manifest?.tier === 'pro' || licenseResult.licensed) {
+    if (licenseResult.licensed) {
+      const maskedKey = licenseResult.key.slice(0, 13) + '****';
+      check(
+        `Pro license: ${maskedKey} (stored at ~/.alice/license)`,
+        true
+      );
+    } else {
+      check(
+        'Pro license: not found (running Starter tier)',
+        false,
+        'Purchase a Pro license at: https://getalice.av3.ai/pricing'
+      );
+      allOk = false;
+    }
+  } else {
+    // Starter tier — just note no license needed
+    check('License: Starter tier (no license required)', true);
+  }
+
   // Summary
   console.log();
   if (allOk) {

package/lib/installer.mjs

@@ -11,6 +11,7 @@ import {
   promptModelPreset,
   promptCustomModel,
   promptTier,
+  promptLicenseKey,
   confirm,
   choose,
   input,
@@ -28,6 +29,44 @@ function isOpenClawInstalled() {
   }
 }
 
+/**
+ * On Linux, Docker requires the user to be in the docker group.
+ * Detect this early and warn before OpenClaw's own preflight fails cryptically.
+ */
+function checkLinuxDockerPermissions() {
+  if (process.platform !== 'linux') return;
+
+  try {
+    execSync('which docker', { stdio: 'pipe' });
+  } catch {
+    return; // Docker not installed — not our problem
+  }
+
+  try {
+    execSync('docker ps', { stdio: 'pipe' });
+    return; // Works fine — user is in docker group
+  } catch (err) {
+    const msg = err.stderr?.toString() || '';
+    const isPermissionIssue =
+      msg.includes('permission denied') ||
+      msg.includes('Got permission denied') ||
+      msg.includes('Cannot connect to the Docker daemon') ||
+      msg.includes('connect: permission denied');
+
+    if (isPermissionIssue) {
+      console.log('  ⚠️  Docker permission issue detected.\n');
+      console.log('  Your user is not in the docker group. This will cause');
+      console.log('  OpenClaw to fail when it tries to access Docker.\n');
+      console.log('  Fix this now (recommended):');
+      console.log('    sudo usermod -aG docker $USER');
+      console.log('    newgrp docker\n');
+      console.log('  Or log out and back in after running the usermod command.');
+      console.log('  You can also run: npx @robbiesrobotics/alice-agents --doctor');
+      console.log('  after fixing to verify the issue is resolved.\n');
+    }
+  }
+}
+
 async function detectRuntime() {
   // Check for NemoClaw binary
   try {
@@ -214,6 +253,9 @@ export async function runInstall(options = {}) {
 
   printBanner();
 
+  // 0. Linux Docker permission check — warn early before OpenClaw preflight fails
+  checkLinuxDockerPermissions();
+
   // 1. Detect OpenClaw — offer to install if missing
   if (!isOpenClawInstalled() || !configExists()) {
     await installRuntime(auto);
@@ -311,22 +353,58 @@ export async function runInstall(options = {}) {
   }
 
   if (tier === 'pro') {
-    console.log();
-    console.log('  \ud83d\udd12 Pro Tier \u2014 Authentication Required');
-    console.log();
-    console.log('  Pro unlocks 18 additional specialist agents:');
-    console.log('  \ud83d\udc65 Hannah (HR)  \ud83d\udcc8 Aiden (Analytics)  \u270d\ufe0f Clara (Communication)');
-    console.log('  \u2699\ufe0f Avery (Automation)  \ud83d\udd27 Owen (Operations)  \ud83d\udd0c Isaac (Integration)');
-    console.log('  \u2708\ufe0f Tommy (Travel)  \ud83d\udcbc Sloane (Sales)  \ud83c\udfa8 Nadia (UI/UX)');
-    console.log('  \ud83d\udce3 Morgan (Marketing)  \ud83d\udd77\ufe0f Alex (API Crawling)  \ud83e\uddea Uma (UX Research)');
-    console.log('  \ud83d\uddc2\ufe0f Caleb (CRM)  \ud83d\udccb Elena (Estimation)  \ud83d\udcb0 Audrey (Accounting)');
-    console.log('  \u2696\ufe0f Logan (Legal)  \ud83d\udccc Eva (Executive Assistant)  \ud83d\udcc5 Parker (Project Mgmt)');
-    console.log();
-    console.log('  To unlock Pro, sign up at: getalice.av3.ai/signup?plan=pro');
-    console.log('  Then run: npx @robbiesrobotics/alice-agents');
-    console.log();
-    closePrompt();
-    return;
+    const { checkProLicense, validateLicenseRemote, storeLicense, isValidFormat } = await import('./license.mjs');
+
+    const existing = await checkProLicense();
+
+    if (existing.licensed) {
+      console.log(`  ✅ Pro license found (${existing.key.slice(0, 12)}...)`);
+    } else if (auto) {
+      // --yes flag: skip interactive prompt, fallback to Starter if no stored license
+      console.log('');
+      console.log('  ℹ️  Pro tier requires a license key.');
+      console.log('  Run without --yes to enter your license key.');
+      console.log('  Falling back to Starter tier.');
+      console.log('  Purchase a license at: https://getalice.av3.ai/pricing');
+      tier = 'starter';
+    } else {
+      // No stored license — prompt for key
+      let key = '';
+      let attempts = 0;
+
+      while (attempts < 3) {
+        key = await promptLicenseKey();
+
+        if (!isValidFormat(key)) {
+          console.log('  ❌ Invalid format. Key must be ALICE-XXXX-XXXX-XXXX');
+          attempts++;
+          continue;
+        }
+
+        console.log('  Validating key...');
+        const result = await validateLicenseRemote(key);
+
+        if (result.valid) {
+          storeLicense(key);
+          if (result.message === 'offline') {
+            console.log('  ✅ Key stored (offline — will validate on next run)');
+          } else {
+            console.log('  ✅ License verified! Welcome to A.L.I.C.E. Pro.');
+          }
+          break;
+        } else {
+          console.log(`  ❌ Invalid key: ${result.message ?? 'Not recognized'}`);
+          attempts++;
+
+          if (attempts >= 3) {
+            console.log('');
+            console.log('  Too many invalid attempts. Falling back to Starter tier.');
+            console.log('  Purchase a license at: https://getalice.av3.ai/pricing');
+            tier = 'starter'; // fallback gracefully
+          }
+        }
+      }
+    }
   }
 
   const agents = allAgents;

package/lib/license.mjs

@@ -0,0 +1,50 @@
+// lib/license.mjs
+import { readFileSync, writeFileSync, mkdirSync, existsSync } from 'node:fs';
+import { join } from 'node:path';
+import { homedir } from 'node:os';
+
+const LICENSE_DIR = join(homedir(), '.alice');
+const LICENSE_FILE = join(LICENSE_DIR, 'license');
+const VALIDATE_URL = 'https://getalice.av3.ai/api/license/validate';
+const KEY_REGEX = /^ALICE-[A-Z0-9]{4}-[A-Z0-9]{4}-[A-Z0-9]{4}$/;
+
+export function readStoredLicense() {
+  try {
+    if (!existsSync(LICENSE_FILE)) return null;
+    return readFileSync(LICENSE_FILE, 'utf8').trim();
+  } catch {
+    return null;
+  }
+}
+
+export function storeLicense(key) {
+  mkdirSync(LICENSE_DIR, { recursive: true });
+  writeFileSync(LICENSE_FILE, key.trim(), 'utf8');
+}
+
+export function isValidFormat(key) {
+  return KEY_REGEX.test(key?.trim()?.toUpperCase());
+}
+
+export async function validateLicenseRemote(key) {
+  // Returns { valid: boolean, plan: string, message?: string }
+  try {
+    const res = await fetch(`${VALIDATE_URL}?key=${encodeURIComponent(key)}`, {
+      signal: AbortSignal.timeout(5000),
+    });
+    if (!res.ok) return { valid: false, message: 'Validation service unavailable' };
+    return await res.json();
+  } catch {
+    // Network error — fail open (allow install, validate next time)
+    return { valid: true, plan: 'pro', message: 'offline' };
+  }
+}
+
+export async function checkProLicense() {
+  // Returns: { licensed: boolean, key: string|null, source: 'stored'|'none' }
+  const stored = readStoredLicense();
+  if (stored && isValidFormat(stored)) {
+    return { licensed: true, key: stored, source: 'stored' };
+  }
+  return { licensed: false, key: null, source: 'none' };
+}

package/lib/prompter.mjs

@@ -110,3 +110,18 @@ export async function promptTier() {
     { label: 'Pro (18 more agents) — sign up at getalice.av3.ai/signup?plan=pro', value: 'pro' },
   ]);
 }
+
+export async function promptLicenseKey() {
+  // Show instructions, prompt for key, validate format
+  console.log('');
+  console.log('  A.L.I.C.E. Pro requires a license key.');
+  console.log('  Purchase at: https://getalice.av3.ai/pricing');
+  console.log('  Already have a key? Enter it below.');
+  console.log('');
+
+  return new Promise((resolve) => {
+    getRL().question('  License key (ALICE-XXXX-XXXX-XXXX): ', (answer) => {
+      resolve(answer.trim().toUpperCase());
+    });
+  });
+}

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "@robbiesrobotics/alice-agents",
-  "version": "1.3.0",
+  "version": "1.3.2",
   "description": "A.L.I.C.E. — 28 AI agents for OpenClaw. One conversation, one team.",
   "bin": {
     "alice-agents": "bin/alice-install.mjs"

package/templates/workspaces/_shared/AGENTS.md

@@ -48,3 +48,12 @@ Skip this for trivial lookups or single-command tasks. Write it for anything inv
 - Don't exceed your domain without flagging it
 - Don't run destructive commands without explicit risk callout
 - `trash` > `rm`
+
+## Tier Note
+
+{{#if isPro}}
+You are a **Pro tier** agent. Pro tier requires a valid A.L.I.C.E. Pro license key stored at `~/.alice/license`.
+If you were installed without a license key, run the installer interactively to enter your key:
+`npx @robbiesrobotics/alice-agents`
+Purchase or manage your license at: https://getalice.av3.ai/pricing
+{{/if}}