arisa 3.0.12 → 3.1.2

package/src/runtime/bootstrap.js

@@ -15,6 +15,79 @@ async function exists(file) {
   }
 }
 
+function normalizeString(value) {
+  if (typeof value !== "string") return "";
+  return value.trim();
+}
+
+function parseMaxChatIds(value, fallback = 1) {
+  const parsed = Number(value);
+  if (!Number.isFinite(parsed) || parsed <= 0) return fallback;
+  return parsed;
+}
+
+function buildConfig({ telegramApiKey, telegramMaxChatIds, provider, model, piApiKey }) {
+  return {
+    telegram: {
+      token: telegramApiKey,
+      maxChatIds: telegramMaxChatIds,
+      authorizedChatIds: [],
+      chatMeta: {}
+    },
+    pi: {
+      provider,
+      model,
+      apiKey: piApiKey
+    },
+    createdAt: new Date().toISOString()
+  };
+}
+
+function resolvePiDefaults(runtime, { provider: preferredProvider = "", model: preferredModel = "" } = {}) {
+  const providers = sortBootstrapProviders(listPiProviders(runtime));
+  if (!providers.length) {
+    throw new Error("No Pi providers are available for bootstrap.");
+  }
+
+  const preferredProviderValue = normalizeString(preferredProvider);
+  const providerExists = providers.some((item) => item.provider === preferredProviderValue);
+  if (preferredProviderValue && !providerExists) {
+    console.log(`Ignoring unknown Pi provider override: ${preferredProviderValue}`);
+  }
+
+  const selectedProvider = providerExists
+    ? preferredProviderValue
+    : providers[0].provider;
+
+  const models = sortBootstrapModels(selectedProvider, listProviderModels(selectedProvider, runtime));
+  if (!models.length) {
+    throw new Error(`No Pi models are available for provider ${selectedProvider}.`);
+  }
+
+  const preferredModelValue = normalizeString(preferredModel);
+  const modelExists = models.some((item) => item.id === preferredModelValue);
+  if (preferredModelValue && !modelExists) {
+    console.log(`Ignoring unknown Pi model override for ${selectedProvider}: ${preferredModelValue}`);
+  }
+
+  const selectedModel = modelExists ? preferredModelValue : models[0].id;
+  return { provider: selectedProvider, model: selectedModel };
+}
+
+function sortBootstrapProviders(providers) {
+  const preferredOrder = ["openai-codex"];
+  const positions = new Map(providers.map((provider, index) => [provider.provider, index]));
+
+  return [...providers].sort((a, b) => {
+    const aPref = preferredOrder.indexOf(a.provider);
+    const bPref = preferredOrder.indexOf(b.provider);
+    const aRank = aPref === -1 ? Number.MAX_SAFE_INTEGER : aPref;
+    const bRank = bPref === -1 ? Number.MAX_SAFE_INTEGER : bPref;
+    if (aRank !== bRank) return aRank - bRank;
+    return (positions.get(a.provider) || 0) - (positions.get(b.provider) || 0);
+  });
+}
+
 function sortBootstrapModels(provider, models) {
   const preferred = {
     "openai-codex": ["gpt-5.4"]
@@ -49,7 +122,78 @@ async function maybeOpenExternal(url) {
   });
 }
 
-async function runInternalPiLogin(provider, rl) {
+function installAuthRelay(httpPort, setHttpRequestHandler) {
+  let authUrl = "";
+  let resolveRedirectUrl;
+  const redirectUrlPromise = new Promise((resolve) => {
+    resolveRedirectUrl = resolve;
+  });
+
+  const page = (body) => [
+    "<!DOCTYPE html><html><head><meta charset='utf-8'><meta name='viewport' content='width=device-width'>",
+    "<title>Arisa Auth</title>",
+    "<style>body{font-family:system-ui,sans-serif;max-width:600px;margin:40px auto;padding:0 20px;line-height:1.6}",
+    "input[type=text]{width:100%;padding:8px;box-sizing:border-box;margin:8px 0}",
+    "button{padding:8px 24px;cursor:pointer}code{background:#f0f0f0;padding:2px 6px;border-radius:3px}</style>",
+    "</head><body>",
+    body,
+    "</body></html>"
+  ].join("");
+
+  setHttpRequestHandler((req, res) => {
+    const parsed = new URL(req.url, `http://localhost:${httpPort}`);
+
+    if (req.method === "GET" && parsed.pathname === "/auth/callback" && parsed.searchParams.has("code")) {
+      const callbackUrl = `http://localhost:1455${parsed.pathname}${parsed.search}`;
+      resolveRedirectUrl(callbackUrl);
+      res.writeHead(200, { "Content-Type": "text/html; charset=utf-8" });
+      res.end(page("<h2>Authentication received</h2><p>You can close this page. Arisa is starting&hellip;</p>"));
+      return;
+    }
+
+    if (req.method === "GET" && parsed.pathname === "/") {
+      res.writeHead(200, { "Content-Type": "text/html; charset=utf-8" });
+      res.end(page([
+        "<h2>Arisa &mdash; Pi Authentication</h2>",
+        authUrl
+          ? `<p><strong>1.</strong> <a href="${authUrl}" target="_blank">Click here to log in with Pi</a></p>`
+          : "<p>Waiting for authentication URL&hellip;</p>",
+        "<p><strong>2.</strong> After login your browser will redirect to a <code>localhost</code> URL that won't load. That's expected.</p>",
+        "<p><strong>3.</strong> In your browser's address bar, replace <code>localhost:1455</code> with your server's domain and press Enter.</p>",
+        "<hr>",
+        "<p><em>Or paste the full redirect URL here:</em></p>",
+        '<form method="POST" action="/auth/relay">',
+        '<input type="text" name="url" placeholder="Paste the localhost redirect URL here&hellip;" required />',
+        "<button type='submit'>Submit</button>",
+        "</form>"
+      ].join("\n")));
+      return;
+    }
+
+    if (req.method === "POST" && parsed.pathname === "/auth/relay") {
+      let body = "";
+      req.on("data", (chunk) => { body += chunk; });
+      req.on("end", () => {
+        const url = (new URLSearchParams(body).get("url") || "").trim();
+        if (url) resolveRedirectUrl(url);
+        res.writeHead(200, { "Content-Type": "text/html; charset=utf-8" });
+        res.end(page("<h2>Authentication received</h2><p>You can close this page. Arisa is starting&hellip;</p>"));
+      });
+      return;
+    }
+
+    res.writeHead(200, { "Content-Type": "text/plain" });
+    res.end("ok");
+  });
+
+  return {
+    setAuthUrl(url) { authUrl = url; },
+    waitForRedirectUrl() { return redirectUrlPromise; },
+    uninstall() { setHttpRequestHandler(null); }
+  };
+}
+
+async function runInternalPiLogin(provider, { rl = null, authRelay = null } = {}) {
   const authStorage = AuthStorage.create();
   const selected = authStorage.getOAuthProviders().find((item) => item.id === provider);
   if (!selected) {
@@ -67,7 +211,15 @@ async function runInternalPiLogin(provider, rl) {
     onAuth: async ({ url, instructions }) => {
       console.log(`${instructions || "Open this URL to continue authentication:"}\n${url}\n`);
       await maybeOpenExternal(url);
-      if (selected.usesCallbackServer) {
+      if (authRelay) {
+        authRelay.setAuthUrl(url);
+        console.log("Waiting for authentication via the web relay...");
+        const redirectUrl = await authRelay.waitForRedirectUrl();
+        if (redirectUrl && manualCodeResolve) {
+          manualCodeResolve(redirectUrl);
+          manualCodeResolve = undefined;
+        }
+      } else if (selected.usesCallbackServer && rl) {
         const pasted = (await rl.question("Paste the redirect URL here if the browser does not return automatically, or press Enter to keep waiting: ")).trim();
         if (pasted && manualCodeResolve) {
           manualCodeResolve(pasted);
@@ -81,6 +233,9 @@ async function runInternalPiLogin(provider, rl) {
       await maybeOpenExternal(verificationUri);
     },
     onPrompt: async ({ message }) => {
+      if (!rl) {
+        throw new Error(`Pi login for ${provider} requires interactive input: ${message}`);
+      }
       return (await rl.question(`${message} `)).trim();
     },
     onProgress: (message) => {
@@ -96,10 +251,54 @@ async function runInternalPiLogin(provider, rl) {
   });
 }
 
-export async function bootstrapIfNeeded({ force = false } = {}) {
+export async function bootstrapIfNeeded({ force = false, cliConfigOverrides = {}, httpPort = 0, setHttpRequestHandler } = {}) {
   await ensureArisaHome();
   if (!force && await exists(configFile)) return;
 
+  const telegramApiKeyFromCli = normalizeString(cliConfigOverrides?.telegram?.token);
+  if (telegramApiKeyFromCli) {
+    const runtime = createPiRuntime();
+    const resolvedPi = resolvePiDefaults(runtime, cliConfigOverrides?.pi || {});
+    const telegramMaxChatIds = parseMaxChatIds(cliConfigOverrides?.telegram?.maxChatIds, 1);
+    const piApiKey = normalizeString(cliConfigOverrides?.pi?.apiKey);
+    if (!piApiKey && !hasProviderAuth(resolvedPi.provider, runtime)) {
+      if (!supportsProviderOAuth(resolvedPi.provider, runtime)) {
+        throw new Error(
+          `No auth found for ${resolvedPi.provider}. Provide --pi.apiKey for non-interactive bootstrap, or use a provider that supports OAuth.`
+        );
+      }
+      if (!httpPort || !setHttpRequestHandler) {
+        throw new Error(
+          `No auth found for ${resolvedPi.provider}. Auth relay requires an HTTP server on PORT. Provide --pi.apiKey or set the PORT environment variable.`
+        );
+      }
+      const authRelay = installAuthRelay(httpPort, setHttpRequestHandler);
+      console.log(`No existing Pi auth found for ${resolvedPi.provider}. Auth relay active on port ${httpPort}.`);
+      console.log(`Open your server URL in a browser to complete Pi authentication.\n`);
+      try {
+        await runInternalPiLogin(resolvedPi.provider, { authRelay });
+      } finally {
+        authRelay.uninstall();
+      }
+      if (!hasProviderAuth(resolvedPi.provider, createPiRuntime())) {
+        throw new Error(
+          `Pi login did not complete for ${resolvedPi.provider}. Retry or provide --pi.apiKey.`
+        );
+      }
+      console.log(`Detected Pi auth for ${resolvedPi.provider}. Continuing bootstrap.`);
+    }
+    const config = buildConfig({
+      telegramApiKey: telegramApiKeyFromCli,
+      telegramMaxChatIds,
+      provider: resolvedPi.provider,
+      model: resolvedPi.model,
+      piApiKey
+    });
+    await writeFile(configFile, `${JSON.stringify(config, null, 2)}\n`, "utf8");
+    console.log(`\nConfig saved to ${configFile} (non-interactive bootstrap)\n`);
+    return;
+  }
+
   const rl = readline.createInterface({ input, output });
   const ask = async (label, fallback = "") => {
     const suffix = fallback ? ` (${fallback})` : "";
@@ -113,7 +312,7 @@ export async function bootstrapIfNeeded({ force = false } = {}) {
   const telegramMaxChatIds = Number(await ask("Maximum authorized chat IDs", "1"));
 
   const runtime = createPiRuntime();
-  const providers = listPiProviders(runtime);
+  const providers = sortBootstrapProviders(listPiProviders(runtime));
   console.log("\nAvailable Pi providers:");
   providers.forEach((item, index) => {
     const authLabel = item.authConfigured ? "auth: configured" : item.supportsOAuth ? "auth: login or API key" : "auth: API key";
@@ -153,7 +352,7 @@ export async function bootstrapIfNeeded({ force = false } = {}) {
 
     console.log(`No existing Pi auth found for ${selectedProvider.provider}. Starting internal Pi login...`);
     try {
-      await runInternalPiLogin(selectedProvider.provider, rl);
+      await runInternalPiLogin(selectedProvider.provider, { rl });
     } catch (error) {
       console.log(`Internal Pi login failed: ${error instanceof Error ? error.message : String(error)}`);
     }
@@ -166,20 +365,13 @@ export async function bootstrapIfNeeded({ force = false } = {}) {
     console.log(`Pi auth for ${selectedProvider.provider} is still missing after login.`);
   }
 
-  const config = {
-    telegram: {
-      apiKey: telegramApiKey,
-      maxChatIds: telegramMaxChatIds,
-      authorizedChatIds: [],
-      chatMeta: {}
-    },
-    pi: {
-      provider: selectedProvider.provider,
-      model: selectedModel.id,
-      apiKey: piApiKey
-    },
-    createdAt: new Date().toISOString()
-  };
+  const config = buildConfig({
+    telegramApiKey,
+    telegramMaxChatIds,
+    provider: selectedProvider.provider,
+    model: selectedModel.id,
+    piApiKey
+  });
 
   await writeFile(configFile, `${JSON.stringify(config, null, 2)}\n`, "utf8");
   rl.close();

package/src/runtime/create-app.js

@@ -1,19 +1,63 @@
 import { loadConfig, saveConfig, updateConfig } from "../core/config/config-store.js";
 import { ArtifactStore } from "../core/artifacts/artifact-store.js";
 import { ToolRegistry } from "../core/tools/tool-registry.js";
+import { TaskStore } from "../core/tasks/task-store.js";
 import { AgentManager } from "../core/agent/agent-manager.js";
 import { createTelegramBot } from "../transport/telegram/bot.js";
 
-export async function createApp({ logger } = {}) {
+function normalizeString(value) {
+  const text = String(value ?? "").trim();
+  return text ? text : "";
+}
+
+function splitModelOverride(modelOverride) {
+  const separatorIndex = modelOverride.indexOf("/");
+  if (separatorIndex <= 0 || separatorIndex === modelOverride.length - 1) {
+    return null;
+  }
+  return {
+    provider: modelOverride.slice(0, separatorIndex),
+    model: modelOverride.slice(separatorIndex + 1)
+  };
+}
+
+function applyRuntimeOverrides(config, runtimeOverrides) {
+  const providerOverride = normalizeString(runtimeOverrides?.pi?.provider);
+  const modelOverride = normalizeString(runtimeOverrides?.pi?.model);
+  if (!providerOverride && !modelOverride) return config;
+
+  const splitOverride = modelOverride ? splitModelOverride(modelOverride) : null;
+  const provider = providerOverride || splitOverride?.provider || config.pi.provider;
+  const model = splitOverride && (!providerOverride || providerOverride === splitOverride.provider)
+    ? splitOverride.model
+    : (modelOverride || config.pi.model);
+
+  return {
+    ...config,
+    pi: {
+      ...config.pi,
+      provider,
+      model
+    }
+  };
+}
+
+export async function createApp({ logger, runtimeOverrides, webhookUrl, setHttpRequestHandler } = {}) {
   logger?.log("app", "loading config");
-  const config = await loadConfig();
+  const persistedConfig = await loadConfig();
+  const config = applyRuntimeOverrides(persistedConfig, runtimeOverrides);
+  if (config.pi.provider !== persistedConfig.pi.provider || config.pi.model !== persistedConfig.pi.model) {
+    logger?.log("app", `applying runtime model override: ${persistedConfig.pi.provider}/${persistedConfig.pi.model} -> ${config.pi.provider}/${config.pi.model}`);
+  }
+
   const artifactStore = new ArtifactStore();
   const toolRegistry = new ToolRegistry({ logger });
+  const taskStore = new TaskStore();
   await toolRegistry.load();
   logger?.log("app", `loaded ${toolRegistry.list().length} tools`);
 
-  const agentManager = new AgentManager({ config, artifactStore, toolRegistry, logger });
-  const bot = await createTelegramBot({ config, artifactStore, toolRegistry, agentManager, saveConfig, updateConfig, logger });
+  const agentManager = new AgentManager({ config, artifactStore, toolRegistry, taskStore, logger });
+  const bot = await createTelegramBot({ config, artifactStore, toolRegistry, taskStore, agentManager, saveConfig, updateConfig, logger, webhookUrl, setHttpRequestHandler });
 
   return {
     async start() {

package/src/runtime/paths.js

@@ -7,9 +7,25 @@ export const stateDir = path.join(arisaHomeDir, "state");
 export const configFile = path.join(stateDir, "config.json");
 export const servicePidFile = path.join(stateDir, "arisa.pid");
 export const serviceLogFile = path.join(stateDir, "arisa.log");
-export const artifactsDir = path.join(arisaHomeDir, "artifacts");
-export const artifactsIndexFile = path.join(stateDir, "artifacts.json");
+export const tasksFile = path.join(stateDir, "tasks.json");
 export const toolsDir = path.join(arisaHomeDir, "tools");
+export const chatsDir = path.join(arisaHomeDir, "chats");
+
+export function getChatDir(chatId) {
+  return path.join(chatsDir, String(chatId));
+}
+
+export function getChatArtifactsDir(chatId) {
+  return path.join(getChatDir(chatId), "artifacts");
+}
+
+export function getChatArtifactsIndexFile(chatId) {
+  return path.join(getChatDir(chatId), "state", "artifacts.json");
+}
+
+export function getChatPiSessionsDir(chatId) {
+  return path.join(getChatDir(chatId), "state", "pi-sessions");
+}
 
 export function getToolDir(toolName) {
   return path.join(toolsDir, toolName);
@@ -19,6 +35,10 @@ export function getToolConfigPath(toolName) {
   return path.join(getToolDir(toolName), "config.js");
 }
 
+export function getChatToolConfigPath(chatId, toolName) {
+  return path.join(getChatDir(chatId), "tools", toolName, "config.js");
+}
+
 export function getToolRuntimeDir(toolName) {
   return getToolDir(toolName);
 }
@@ -31,9 +51,13 @@ export function getToolTmpDir(toolName) {
   return path.join(getToolRuntimeDir(toolName), "tmp");
 }
 
+export function getChatToolTmpDir(chatId, toolName) {
+  return path.join(getChatDir(chatId), "tools", toolName, "tmp");
+}
+
 export async function ensureArisaHome() {
   await mkdir(stateDir, { recursive: true });
-  await mkdir(artifactsDir, { recursive: true });
   await mkdir(toolsDir, { recursive: true });
+  await mkdir(chatsDir, { recursive: true });
 }
 

package/src/runtime/service-manager.js

@@ -36,7 +36,7 @@ export async function getServiceStatus() {
   return { running: true, pid };
 }
 
-export async function startService({ verbose = false } = {}) {
+export async function startService({ verbose = false, cliArgs = [] } = {}) {
   await ensureArisaHome();
   const status = await getServiceStatus();
   if (status.running) {
@@ -44,7 +44,7 @@ export async function startService({ verbose = false } = {}) {
   }
 
   const logHandle = await open(serviceLogFile, "a");
-  const args = [entryFile, "--service-runner"];
+  const args = [entryFile, "--service-runner", ...cliArgs];
   if (verbose) args.push("--verbose");
 
   const child = spawn(process.execPath, args, {