agentlife 1.1.6 → 1.1.8

package/dist/index.js

@@ -1265,6 +1265,10 @@ Do NOT call agentlife.createAgent. Do NOT write workspace files. Do NOT spawn su
 
 When you receive \`[system:dismiss-requested] surfaceId=vision-{slug}\` — this is vision-specific dismiss handling. It is a third mode, distinct from agent creation and from dashboard bootstrap, and it OVERRIDES the general dismiss-alt protocol described elsewhere.
 
+**CRITICAL — session scope:** this section applies ONLY on your DIRECT session (where the user is live and can see widgets). The platform also notifies your INTERNAL session with the same \`[system:dismiss-requested]\` message as a cleanup hook AFTER the widget is already deleted. If you see this message on an internal session, do NOT push a dismiss-alt, do NOT run the steps below — the widget is gone and pushing a questionnaire creates a ghost surface that nobody can interact with. On internal sessions, output "done" and stop.
+
+Direct session vs internal session: internal sessions receive the "Internal Session — Self-Improvement Protocol" preamble at the top of their system prompt. If you see that preamble in your context, you are on an internal session; this Vision Dismiss section does NOT apply to you, output "done".
+
 The general dismiss-alt rule says "craft 2-3 contextual alternatives from the widget's goal." For vision posters that rule does NOT apply. Vision posters are aspirational content with a closed ontology of failure modes — the user is rejecting either the dream itself, its framing, its timing, or its dashboard placement. Improvising alternatives per dismiss would produce inconsistent wording across dismissals, which reads as broken UX. Use the fixed wording below verbatim.
 
 ### Step 1 — Push the dismiss-alt input surface
@@ -4726,16 +4730,24 @@ function ensureDirs() {
   if (!fs6.existsSync(BIN_DIR))
     fs6.mkdirSync(BIN_DIR, { recursive: true, mode: 448 });
 }
-function loadOrCreateDeviceIdentity() {
-  if (fs6.existsSync(DEVICE_FILE)) {
-    try {
-      const raw = fs6.readFileSync(DEVICE_FILE, "utf-8");
-      const parsed = JSON.parse(raw);
-      if (typeof parsed.deviceId === "string" && typeof parsed.deviceSecret === "string") {
-        return { deviceId: parsed.deviceId, deviceSecret: parsed.deviceSecret };
-      }
-    } catch {}
+function loadDeviceIdentity() {
+  if (!fs6.existsSync(DEVICE_FILE))
+    return null;
+  try {
+    const raw = fs6.readFileSync(DEVICE_FILE, "utf-8");
+    const parsed = JSON.parse(raw);
+    if (typeof parsed.deviceId === "string" && typeof parsed.deviceSecret === "string") {
+      return { deviceId: parsed.deviceId, deviceSecret: parsed.deviceSecret };
+    }
+    return null;
+  } catch {
+    return null;
   }
+}
+function loadOrCreateDeviceIdentity() {
+  const existing = loadDeviceIdentity();
+  if (existing)
+    return existing;
   const identity = {
     deviceId: crypto2.randomUUID(),
     deviceSecret: crypto2.randomBytes(32).toString("base64url")
@@ -4747,6 +4759,7 @@ function loadOrCreateDeviceIdentity() {
   console.log(`[cloudflared-supervisor] generated new device identity (deviceId=${identity.deviceId})`);
   return identity;
 }
+var AGENTLIFE_API_BASE = API_BASE;
 function loadCachedTunnel() {
   if (!fs6.existsSync(TUNNEL_FILE))
     return null;
@@ -5124,57 +5137,22 @@ function registerWebApp(api) {
 
 // services/pairing.ts
 var TUNNEL_READY_TIMEOUT_MS = 90000;
-async function detectTunnelUrl(port) {
-  try {
-    const cfgPath = path10.join(os6.homedir(), ".cloudflared", "config.yml");
-    if (!fsSync3.existsSync(cfgPath))
-      return null;
-    const cfg = fsSync3.readFileSync(cfgPath, "utf-8");
-    const lines = cfg.split(`
-`);
-    for (let i = 0;i < lines.length; i++) {
-      const hostMatch = lines[i].match(/hostname:\s*(.+)/);
-      if (hostMatch) {
-        const nextLine = lines[i + 1] || "";
-        const svcMatch = nextLine.match(/service:\s*http:\/\/localhost:(\d+)/);
-        if (svcMatch && parseInt(svcMatch[1]) === port) {
-          return `wss://${hostMatch[1].trim()}`;
-        }
-      }
-    }
-    return null;
-  } catch {
-    return null;
-  }
-}
 function registerPairingServices(api) {
   api.registerService({
     id: "agentlife-pairing-qr",
     start: async (_ctx) => {
       try {
         const cfg = api.runtime.config.loadConfig();
-        const bind = cfg.gateway?.bind ?? "loopback";
         const port = cfg.gateway?.port ?? 18789;
         const token = cfg.gateway?.auth?.token;
         if (!token)
           return;
         const supervisorTunnel = await awaitTunnelReady(TUNNEL_READY_TIMEOUT_MS) ?? getTunnelInfo();
-        let url;
-        if (supervisorTunnel?.tunnelUrl) {
-          url = supervisorTunnel.tunnelUrl;
-        } else {
-          console.warn("[agentlife] Tunnel not ready after " + TUNNEL_READY_TIMEOUT_MS / 1000 + "s — falling back to LAN URL. Phone pairing will only work on the same Wi-Fi.");
-          const userTunnel = await detectTunnelUrl(port);
-          if (userTunnel) {
-            url = userTunnel;
-          } else if (bind === "lan" || bind === "auto" || bind === "custom") {
-            const nets = os6.networkInterfaces();
-            const lanIp = Object.values(nets).flat().find((n) => n && !n.internal && n.family === "IPv4")?.address;
-            url = `ws://${lanIp ?? "127.0.0.1"}:${port}`;
-          } else {
-            url = `ws://127.0.0.1:${port}`;
-          }
+        if (!supervisorTunnel?.tunnelUrl) {
+          console.warn(`[agentlife] Cloudflared tunnel did not come up within ${TUNNEL_READY_TIMEOUT_MS / 1000}s — ` + `pairing QR will not be emitted. Check cloudflared-supervisor logs in the gateway output.`);
+          return;
         }
+        const url = supervisorTunnel.tunnelUrl;
         const bootstrapToken = mintBootstrapToken();
         const payload = JSON.stringify({ url, bootstrapToken });
         const setupCode = Buffer.from(payload).toString("base64url");
@@ -6709,6 +6687,33 @@ function registerAdminGateway(api, state2) {
     try {
       const cleaned = [];
       const baseDir = state2.agentlifeStateDir ?? path12.join(os7.homedir(), ".openclaw", "agentlife");
+      const identity = loadDeviceIdentity();
+      if (!identity) {
+        cleaned.push("server deprovision skipped (no device identity)");
+      } else {
+        try {
+          const res = await fetch(`${AGENTLIFE_API_BASE}/api/v1/devices/deprovision`, {
+            method: "POST",
+            headers: { "Content-Type": "application/json" },
+            body: JSON.stringify({
+              deviceId: identity.deviceId,
+              deviceSecret: identity.deviceSecret
+            }),
+            signal: AbortSignal.timeout(1e4)
+          });
+          if (res.ok) {
+            cleaned.push("deprovisioned tunnel on server");
+          } else if (res.status === 404) {
+            cleaned.push("server had no record of this device (already gone)");
+          } else {
+            cleaned.push(`server deprovision returned HTTP ${res.status} (continuing)`);
+            console.warn(`[agentlife] uninstall: deprovision HTTP ${res.status}, continuing with local cleanup`);
+          }
+        } catch (err) {
+          cleaned.push(`server deprovision failed (continuing): ${err?.message ?? "unknown error"}`);
+          console.warn(`[agentlife] uninstall: deprovision failed (${err?.message ?? err}), continuing with local cleanup`);
+        }
+      }
       if (state2.runCommand) {
         try {
           const result = await state2.runCommand(["openclaw", "cron", "list", "--json"], { timeoutMs: 1e4 });

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "agentlife",
-  "version": "1.1.6",
+  "version": "1.1.8",
   "type": "module",
   "scripts": {
     "build": "bun build index.ts --outfile dist/index.js --target node --external openclaw/plugin-sdk",