@rubytech/create-maxy 0.4.1 → 0.4.3

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "@rubytech/create-maxy",
-  "version": "0.4.1",
+  "version": "0.4.3",
   "description": "Install Maxy — your personal AI assistant",
   "bin": {
     "create-maxy": "./dist/index.js"

package/payload/maxy/app/api/onboarding/claude-auth/route.ts

@@ -1,7 +1,7 @@
 import { NextResponse } from 'next/server'
 import { spawn, execFileSync, type ChildProcess } from 'node:child_process'
 
-// Keep the login process alive between requests
+// Keep the login process alive — it polls Anthropic for completion
 let loginProcess: ChildProcess | null = null
 
 /**
@@ -26,51 +26,24 @@ export async function GET() {
 
 /**
  * POST /api/onboarding/claude-auth
- * Body: {} — starts the login flow, returns auth URL
- * Body: { code: "..." } — feeds the auth code to the running login process
+ * Start the Claude Code OAuth login flow.
+ * Returns the auth URL. The user visits it in their browser,
+ * authenticates with Anthropic, and the process completes automatically
+ * via PKCE polling. No code pasting needed.
  */
-export async function POST(req: Request) {
-  let body: { code?: string } = {}
-  try {
-    body = await req.json()
-  } catch { /* empty body = start flow */ }
-
-  // If code is provided, feed it to the running login process
-  if (body.code && loginProcess && loginProcess.stdin) {
-    loginProcess.stdin.write(body.code + '\n')
-    loginProcess.stdin.end()
-
-    // Wait a moment for the process to complete
-    await new Promise((r) => setTimeout(r, 3000))
-
-    // Check if auth succeeded
-    try {
-      const output = execFileSync('claude', ['auth', 'status', '--json'], {
-        encoding: 'utf-8',
-        timeout: 5000,
-      })
-      const status = JSON.parse(output)
-      loginProcess = null
-      return NextResponse.json({
-        authenticated: status.loggedIn === true,
-        email: status.email ?? null,
-      })
-    } catch {
-      loginProcess = null
-      return NextResponse.json({ authenticated: false, error: 'Authentication failed. Check the code and try again.' })
-    }
-  }
-
-  // Start a new login flow
+export async function POST() {
+  // Kill any existing login process
   if (loginProcess) {
     loginProcess.kill()
     loginProcess = null
   }
 
   return new Promise<Response>((resolve) => {
+    // Don't suppress the browser — but on a headless Pi it won't open.
+    // We capture the auth URL from the output and present it in the web UI.
     const child = spawn('claude', ['auth', 'login'], {
       stdio: ['pipe', 'pipe', 'pipe'],
-      env: { ...process.env, BROWSER: 'echo' },
+      env: { ...process.env, BROWSER: '' },
     })
 
     loginProcess = child
@@ -97,16 +70,21 @@ export async function POST(req: Request) {
       tryResolve()
     })
 
+    // The process stays alive — it polls Anthropic for auth completion.
+    // Don't kill it. It will exit on its own when auth succeeds.
+    child.on('exit', () => {
+      loginProcess = null
+    })
+
+    // Only timeout if we can't even get the URL
     setTimeout(() => {
       if (!resolved) {
         resolved = true
-        child.kill()
-        loginProcess = null
         resolve(NextResponse.json(
-          { error: 'Timed out waiting for auth URL.' },
+          { error: 'Could not start auth flow. Is Claude Code installed?' },
           { status: 500 },
         ))
       }
-    }, 10000)
+    }, 15000)
   })
 }

package/payload/maxy/app/globals.css

@@ -1415,6 +1415,18 @@ a:hover {
   border-color: var(--sage);
 }
 
+.auth-retry-link {
+  font-family: var(--font-body);
+  font-size: 13px;
+  color: var(--text-tertiary);
+  text-decoration: none;
+  margin-top: 12px;
+}
+
+.auth-retry-link:hover {
+  color: var(--sage);
+}
+
 .admin-pin-error {
   color: #c44;
   font-size: 14px;

package/payload/maxy/app/page.tsx

@@ -19,7 +19,6 @@ export default function AdminPage() {
   const [pinError, setPinError] = useState('')
   const [showPin, setShowPin] = useState(false)
   const [authUrl, setAuthUrl] = useState<string | null>(null)
-  const [authCode, setAuthCode] = useState('')
   const [authLoading, setAuthLoading] = useState(false)
   const [sessionKey, setSessionKey] = useState<string | null>(null)
   const [messages, setMessages] = useState<Message[]>([])
@@ -275,6 +274,8 @@ export default function AdminPage() {
         if (data.authUrl) {
           setAuthUrl(data.authUrl)
           window.open(data.authUrl, '_blank')
+          // Start polling for auth completion
+          pollForAuth()
         } else if (data.error) {
           setPinError(data.error)
         }
@@ -284,27 +285,18 @@ export default function AdminPage() {
       setAuthLoading(false)
     }
 
-    async function submitCode(e: FormEvent) {
-      e.preventDefault()
-      if (!authCode.trim()) return
-      setAuthLoading(true)
-      setPinError('')
-      try {
-        const res = await fetch('/api/onboarding/claude-auth', {
-          method: 'POST',
-          headers: { 'Content-Type': 'application/json' },
-          body: JSON.stringify({ code: authCode.trim() }),
-        })
-        const data = await res.json()
-        if (data.authenticated) {
-          setAppState('enter-pin')
-        } else {
-          setPinError(data.error || 'Authentication failed. Check the code and try again.')
-        }
-      } catch {
-        setPinError('Could not verify code.')
+    async function pollForAuth() {
+      for (let i = 0; i < 60; i++) { // Poll for up to 2 minutes
+        await new Promise(r => setTimeout(r, 2000))
+        try {
+          const res = await fetch('/api/onboarding/claude-auth')
+          const data = await res.json()
+          if (data.authenticated) {
+            setAppState('enter-pin')
+            return
+          }
+        } catch { /* keep polling */ }
       }
-      setAuthLoading(false)
     }
 
     return (
@@ -326,27 +318,14 @@ export default function AdminPage() {
           ) : (
             <>
               <p className="chat-intro" style={{ fontSize: '14px', marginTop: 0 }}>
-                Sign in on the Anthropic page, then paste the code here.
+                Complete sign-in on the Anthropic page. This screen will update automatically.
               </p>
-              <form onSubmit={submitCode}>
-                <div className="pin-input-row">
-                  <input
-                    type="text"
-                    value={authCode}
-                    onChange={e => setAuthCode(e.target.value)}
-                    placeholder="Paste auth code"
-                    className="chat-input"
-                    autoFocus
-                  />
-                  <button type="submit" className="chat-send" disabled={!authCode.trim() || authLoading}>
-                    <svg viewBox="0 0 24 24" fill="none" stroke="currentColor" strokeWidth="2" strokeLinecap="round" strokeLinejoin="round">
-                      <line x1="5" y1="12" x2="19" y2="12" />
-                      <polyline points="12 5 19 12 12 19" />
-                    </svg>
-                  </button>
-                </div>
-              </form>
-              <a href={authUrl} target="_blank" rel="noopener noreferrer" className="btn-secondary" style={{ marginTop: '8px' }}>
+              <span className="typing-indicator" style={{ margin: '16px auto' }}>
+                <span className="typing-dot" />
+                <span className="typing-dot" />
+                <span className="typing-dot" />
+              </span>
+              <a href={authUrl} target="_blank" rel="noopener noreferrer" className="auth-retry-link">
                 Open sign-in page again
               </a>
             </>