npm - @rubytech/create-maxy - Versions diffs - 0.4.4 → 0.4.5 - Mend

@rubytech/create-maxy 0.4.4 → 0.4.5

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (3) hide show

package/package.json +1 -1
package/payload/maxy/app/api/onboarding/claude-auth/route.ts +65 -21
package/payload/maxy/app/page.tsx +42 -20

package/package.json CHANGED Viewed

@@ -1,6 +1,6 @@
 {
   "name": "@rubytech/create-maxy",
-  "version": "0.4.4",
+  "version": "0.4.5",
   "description": "Install Maxy — your personal AI assistant",
   "bin": {
     "create-maxy": "./dist/index.js"

package/payload/maxy/app/api/onboarding/claude-auth/route.ts CHANGED Viewed

@@ -1,7 +1,7 @@
 import { NextResponse } from 'next/server'
 import { spawn, execFileSync, type ChildProcess } from 'node:child_process'
-// Keep the login process alive — it polls Anthropic for completion
+// Keep the login process alive between requests so we can feed it the code
 let loginProcess: ChildProcess | null = null
 /**
@@ -26,25 +26,68 @@ export async function GET() {
 /**
  * POST /api/onboarding/claude-auth
- * Start the Claude Code OAuth login flow.
- * Returns the auth URL. The user visits it in their browser,
- * authenticates with Anthropic, and the process completes automatically
- * via PKCE polling. No code pasting needed.
+ * Body: {} — starts the login flow, returns the auth URL (with code=true for headless)
+ * Body: { code: "..." } — feeds the auth code to the waiting login process
  */
-export async function POST() {
-  // Kill any existing login process
+export async function POST(req: Request) {
+  let body: { code?: string } = {}
+  try {
+    body = await req.json()
+  } catch { /* empty body = start flow */ }
+  // --- Submit code to running process ---
+  if (body.code && loginProcess) {
+    loginProcess.stdin?.write(body.code + '\n')
+    // Wait for process to handle the code
+    await new Promise<void>((resolve) => {
+      const timeout = setTimeout(() => resolve(), 8000)
+      loginProcess?.on('exit', () => {
+        clearTimeout(timeout)
+        resolve()
+      })
+    })
+    loginProcess = null
+    // Check result
+    try {
+      const output = execFileSync('claude', ['auth', 'status', '--json'], {
+        encoding: 'utf-8',
+        timeout: 5000,
+      })
+      const status = JSON.parse(output)
+      if (status.loggedIn) {
+        return NextResponse.json({ authenticated: true, email: status.email })
+      }
+    } catch { /* */ }
+    return NextResponse.json({
+      authenticated: false,
+      error: 'Authentication failed. Check the code and try again.',
+    })
+  }
+  // --- Start new login flow ---
   if (loginProcess) {
     loginProcess.kill()
     loginProcess = null
   }
   return new Promise<Response>((resolve) => {
-    // Don't suppress the browser — but on a headless Pi it won't open.
-    // We capture the auth URL from the output and present it in the web UI.
-    const child = spawn('claude', ['auth', 'login'], {
-      stdio: ['pipe', 'pipe', 'pipe'],
-      env: { ...process.env, BROWSER: '' },
-    })
+    // Use `script` to provide a PTY so claude auth login gets its interactive prompt.
+    // On Linux (Pi): script -qc "command" /dev/null
+    // On macOS: script -q /dev/null command args
+    const isLinux = process.platform === 'linux'
+    const child = isLinux
+      ? spawn('script', ['-qc', 'claude auth login', '/dev/null'], {
+          stdio: ['pipe', 'pipe', 'pipe'],
+          env: { ...process.env, BROWSER: 'echo', TERM: 'dumb' },
+        })
+      : spawn('script', ['-q', '/dev/null', 'claude', 'auth', 'login'], {
+          stdio: ['pipe', 'pipe', 'pipe'],
+          env: { ...process.env, BROWSER: 'echo', TERM: 'dumb' },
+        })
     loginProcess = child
@@ -56,10 +99,7 @@ export async function POST() {
       const match = output.match(/(https:\/\/claude\.ai\/oauth\/authorize[^\s]+)/)
       if (match) {
         resolved = true
-        // Remove code=true& from the URL — that triggers the fallback flow
-        // which shows an auth code. Without it, the flow completes automatically.
-        const autoUrl = match[1].replace(/code=true&?/, '').replace(/\?&/, '?')
-        resolve(NextResponse.json({ authUrl: autoUrl }))
+        resolve(NextResponse.json({ authUrl: match[1] }))
       }
     }
@@ -73,13 +113,17 @@ export async function POST() {
       tryResolve()
     })
-    // The process stays alive — it polls Anthropic for auth completion.
-    // Don't kill it. It will exit on its own when auth succeeds.
     child.on('exit', () => {
-      loginProcess = null
+      if (!resolved) {
+        resolved = true
+        loginProcess = null
+        resolve(NextResponse.json(
+          { error: 'Login process exited unexpectedly.' },
+          { status: 500 },
+        ))
+      }
     })
-    // Only timeout if we can't even get the URL
     setTimeout(() => {
       if (!resolved) {
         resolved = true

package/payload/maxy/app/page.tsx CHANGED Viewed

@@ -19,6 +19,7 @@ export default function AdminPage() {
   const [pinError, setPinError] = useState('')
   const [showPin, setShowPin] = useState(false)
   const [authUrl, setAuthUrl] = useState<string | null>(null)
+  const [authCode, setAuthCode] = useState('')
   const [authLoading, setAuthLoading] = useState(false)
   const [sessionKey, setSessionKey] = useState<string | null>(null)
   const [messages, setMessages] = useState<Message[]>([])
@@ -274,8 +275,6 @@ export default function AdminPage() {
         if (data.authUrl) {
           setAuthUrl(data.authUrl)
           window.open(data.authUrl, '_blank')
-          // Start polling for auth completion
-          pollForAuth()
         } else if (data.error) {
           setPinError(data.error)
         }
@@ -285,18 +284,27 @@ export default function AdminPage() {
       setAuthLoading(false)
     }
-    async function pollForAuth() {
-      for (let i = 0; i < 60; i++) { // Poll for up to 2 minutes
-        await new Promise(r => setTimeout(r, 2000))
-        try {
-          const res = await fetch('/api/onboarding/claude-auth')
-          const data = await res.json()
-          if (data.authenticated) {
-            setAppState('enter-pin')
-            return
-          }
-        } catch { /* keep polling */ }
+    async function submitCode(e: FormEvent) {
+      e.preventDefault()
+      if (!authCode.trim()) return
+      setAuthLoading(true)
+      setPinError('')
+      try {
+        const res = await fetch('/api/onboarding/claude-auth', {
+          method: 'POST',
+          headers: { 'Content-Type': 'application/json' },
+          body: JSON.stringify({ code: authCode.trim() }),
+        })
+        const data = await res.json()
+        if (data.authenticated) {
+          setAppState('enter-pin')
+        } else {
+          setPinError(data.error || 'Authentication failed. Check the code and try again.')
+        }
+      } catch {
+        setPinError('Could not verify code.')
       }
+      setAuthLoading(false)
     }
     return (
@@ -318,15 +326,29 @@ export default function AdminPage() {
           ) : (
             <>
               <p className="chat-intro" style={{ fontSize: '14px', marginTop: 0 }}>
-                Complete sign-in on the Anthropic page. This screen will update automatically.
+                Sign in on the Anthropic page, then paste the code here.
               </p>
-              <span className="typing-indicator" style={{ margin: '16px auto' }}>
-                <span className="typing-dot" />
-                <span className="typing-dot" />
-                <span className="typing-dot" />
-              </span>
+              <form onSubmit={submitCode}>
+                <div className="pin-input-row">
+                  <input
+                    type="text"
+                    value={authCode}
+                    onChange={e => setAuthCode(e.target.value)}
+                    placeholder="Paste authentication code"
+                    className="chat-input"
+                    autoFocus
+                    autoComplete="off"
+                  />
+                  <button type="submit" className="chat-send" disabled={!authCode.trim() || authLoading}>
+                    <svg viewBox="0 0 24 24" fill="none" stroke="currentColor" strokeWidth="2" strokeLinecap="round" strokeLinejoin="round">
+                      <line x1="5" y1="12" x2="19" y2="12" />
+                      <polyline points="12 5 19 12 12 19" />
+                    </svg>
+                  </button>
+                </div>
+              </form>
               <a href={authUrl} target="_blank" rel="noopener noreferrer" className="auth-retry-link">
-                Open sign-in page again
+                Try again
               </a>
             </>
           )}