clay-server 2.33.0 → 2.33.1

package/lib/public/modules/stt.js

@@ -31,15 +31,6 @@ var LANGUAGES = [
   { code: 'de-DE', name: 'German' },
 ];
 
-// --- Persist language choice ---
-function saveLang(code) {
-  try { localStorage.setItem('stt-lang', code); } catch (e) { /* ignore */ }
-}
-
-function loadLang() {
-  try { return localStorage.getItem('stt-lang'); } catch (e) { return null; }
-}
-
 // --- Check browser support ---
 function getSpeechRecognition() {
   return window.SpeechRecognition || window.webkitSpeechRecognition || null;
@@ -58,9 +49,6 @@ export function initSTT(_ctx) {
     return;
   }
 
-  // Restore saved language
-  selectedLang = loadLang();
-
   sttBtn.addEventListener('click', function(e) {
     e.stopPropagation();
 
@@ -135,7 +123,6 @@ function hideLangPopover() {
 
 function onLangSelected(code) {
   selectedLang = code;
-  saveLang(code);
   hideLangPopover();
   startRecording();
 }
@@ -263,7 +250,6 @@ function stopRecording() {
 // --- External lang setter (used by profile module) ---
 export function setSTTLang(code) {
   selectedLang = code;
-  saveLang(code);
 }
 
 export function getSTTLang() {

package/lib/public/modules/theme.js

@@ -1,3 +1,4 @@
+import { iconHtml, refreshIcons } from './icons.js';
 import { setTerminalTheme } from './terminal.js';
 import { updateMermaidTheme } from './markdown.js';
 
@@ -537,6 +538,16 @@ function updateToggleIcon() {
   // User settings toggle
   var usToggle = document.getElementById("us-theme-toggle");
   if (usToggle) usToggle.checked = isLight;
+  // User island toggle
+  var islandToggle = document.getElementById("user-theme-toggle-btn");
+  if (islandToggle) {
+    islandToggle.classList.remove("theme-toggle-light", "theme-toggle-dark");
+    islandToggle.classList.add(isLight ? "theme-toggle-light" : "theme-toggle-dark");
+    islandToggle.innerHTML = iconHtml(isLight ? "moon" : "sun");
+    islandToggle.title = isLight ? "Switch to dark mode" : "Switch to light mode";
+    islandToggle.setAttribute("aria-label", islandToggle.title);
+  }
+  refreshIcons();
 }
 
 // --- Theme picker UI ---
@@ -734,6 +745,14 @@ export function initTheme() {
 
   // Set initial toggle icon
   updateToggleIcon();
+
+  var islandToggle = document.getElementById("user-theme-toggle-btn");
+  if (islandToggle && !islandToggle._clayThemeBound) {
+    islandToggle._clayThemeBound = true;
+    islandToggle.addEventListener("click", function () {
+      toggleDarkMode();
+    });
+  }
 }
 
 // --- Settings picker (for appearance section in server settings) ---

package/lib/public/modules/user-settings.js

@@ -5,6 +5,8 @@ import { refreshIcons } from './icons.js';
 import { showToast } from './utils.js';
 import { toggleDarkMode, getCurrentTheme, getChatLayout, setChatLayout } from './theme.js';
 import { showEmailSetupModal, getEmailAccountListCache } from './context-sources.js';
+import { setSTTLang } from './stt.js';
+import { userAvatarUrl } from './avatar.js';
 
 var ctx = null;
 var settingsEl = null;
@@ -13,6 +15,11 @@ var closeBtn = null;
 var backdrop = null;
 var navItems = null;
 var sections = null;
+var pinForm = null;
+var pinSetBtn = null;
+var pinCancelBtn = null;
+var pinEnabled = false;
+var currentProfile = null;
 
 
 export function initUserSettings(appCtx) {
@@ -26,6 +33,7 @@ export function initUserSettings(appCtx) {
 
   navItems = settingsEl.querySelectorAll('.us-nav-item');
   sections = settingsEl.querySelectorAll('.us-section');
+  pinForm = document.getElementById('us-pin-form');
 
   openBtn.addEventListener('click', function () {
     openUserSettings();
@@ -66,19 +74,83 @@ export function initUserSettings(appCtx) {
 
   // PIN save button
   var pinInput = document.getElementById('us-pin-input');
+  var pinConfirmInput = document.getElementById('us-pin-confirm-input');
+  var pinCurrentInput = document.getElementById('us-pin-current-input');
   var pinSave = document.getElementById('us-pin-save');
-  if (pinInput && pinSave) {
+  pinSetBtn = document.getElementById('us-pin-set-btn');
+  pinCancelBtn = document.getElementById('us-pin-cancel');
+  if (pinInput && pinConfirmInput && pinSave) {
     function validatePin() {
-      pinSave.disabled = !/^\d{6}$/.test(pinInput.value);
+      var validNew = /^\d{6}$/.test(pinInput.value);
+      var validConfirm = /^\d{6}$/.test(pinConfirmInput.value);
+      var validCurrent = !pinEnabled || (pinCurrentInput && /^\d{6}$/.test(pinCurrentInput.value));
+      pinSave.disabled = !(validNew && validConfirm && validCurrent && pinInput.value === pinConfirmInput.value);
     }
     pinInput.addEventListener('input', validatePin);
+    pinConfirmInput.addEventListener('input', validatePin);
+    if (pinCurrentInput) pinCurrentInput.addEventListener('input', validatePin);
     pinInput.addEventListener('keyup', function (e) { e.stopPropagation(); validatePin(); });
-    pinInput.addEventListener('keydown', stopProp);
+    pinConfirmInput.addEventListener('keyup', function (e) { e.stopPropagation(); validatePin(); });
+    if (pinCurrentInput) pinCurrentInput.addEventListener('keyup', function (e) { e.stopPropagation(); validatePin(); });
+    pinInput.addEventListener('keydown', function (e) {
+      e.stopPropagation();
+      if (e.key === 'Enter') {
+        e.preventDefault();
+        savePin(pinInput.value);
+      }
+      if (e.key === 'Escape') {
+        e.preventDefault();
+        hidePinForm();
+      }
+    });
+    pinConfirmInput.addEventListener('keydown', function (e) {
+      e.stopPropagation();
+      if (e.key === 'Enter') {
+        e.preventDefault();
+        savePin(pinInput.value);
+      }
+      if (e.key === 'Escape') {
+        e.preventDefault();
+        hidePinForm();
+      }
+    });
+    if (pinCurrentInput) {
+      pinCurrentInput.addEventListener('keydown', function (e) {
+        e.stopPropagation();
+        if (e.key === 'Enter') {
+          e.preventDefault();
+          savePin(pinInput.value);
+        }
+        if (e.key === 'Escape') {
+          e.preventDefault();
+          hidePinForm();
+        }
+      });
+    }
     pinInput.addEventListener('keypress', stopProp);
+    pinConfirmInput.addEventListener('keypress', stopProp);
+    if (pinCurrentInput) pinCurrentInput.addEventListener('keypress', stopProp);
     pinSave.addEventListener('click', function () {
       savePin(pinInput.value);
     });
   }
+  if (pinSetBtn) {
+    pinSetBtn.addEventListener('click', function () {
+      showPinForm();
+    });
+  }
+  if (pinCancelBtn) {
+    pinCancelBtn.addEventListener('click', function () {
+      hidePinForm();
+    });
+  }
+
+  var langSelect = document.getElementById('us-lang-select');
+  if (langSelect) {
+    langSelect.addEventListener('change', function () {
+      saveProfileChange({ lang: this.value });
+    });
+  }
 
   // Auto-continue toggle
   var autoContinueToggle = document.getElementById('us-auto-continue');
@@ -158,6 +230,7 @@ function openUserSettings() {
   openBtn.classList.add('active');
   refreshIcons(settingsEl);
   populateAccount();
+  hidePinForm();
   switchSection('us-account');
 }
 
@@ -186,6 +259,63 @@ function stopProp(e) {
   e.stopPropagation();
 }
 
+function showPinForm() {
+  if (!pinForm) return;
+  pinForm.classList.remove('hidden');
+  var pinCurrentRow = document.getElementById('us-pin-current-row');
+  var pinInput = document.getElementById('us-pin-input');
+  var pinConfirmInput = document.getElementById('us-pin-confirm-input');
+  var pinCurrentInput = document.getElementById('us-pin-current-input');
+  var pinSave = document.getElementById('us-pin-save');
+  var pinMsg = document.getElementById('us-pin-msg');
+  var pinFormTitle = document.getElementById('us-pin-form-title');
+  if (pinFormTitle) {
+    pinFormTitle.textContent = pinEnabled ? 'Change PIN' : 'Set PIN';
+  }
+  if (pinCurrentRow) {
+    pinCurrentRow.classList.toggle('hidden', !pinEnabled);
+  }
+  if (pinInput) {
+    pinInput.value = '';
+  }
+  if (pinConfirmInput) pinConfirmInput.value = '';
+  if (pinCurrentInput) pinCurrentInput.value = '';
+  if (pinSave) pinSave.disabled = true;
+  if (pinSave) pinSave.textContent = 'Save';
+  if (pinMsg) {
+    pinMsg.textContent = '';
+    pinMsg.className = 'settings-hint settings-pin-error hidden';
+  }
+  if (pinEnabled && pinCurrentInput) {
+    pinCurrentInput.focus();
+  } else if (pinInput) {
+    pinInput.focus();
+  }
+}
+
+function hidePinForm() {
+  if (!pinForm) return;
+  pinForm.classList.add('hidden');
+  var pinCurrentRow = document.getElementById('us-pin-current-row');
+  var pinInput = document.getElementById('us-pin-input');
+  var pinConfirmInput = document.getElementById('us-pin-confirm-input');
+  var pinCurrentInput = document.getElementById('us-pin-current-input');
+  var pinSave = document.getElementById('us-pin-save');
+  var pinMsg = document.getElementById('us-pin-msg');
+  if (pinCurrentRow) {
+    pinCurrentRow.classList.remove('hidden');
+  }
+  if (pinInput) pinInput.value = '';
+  if (pinConfirmInput) pinConfirmInput.value = '';
+  if (pinCurrentInput) pinCurrentInput.value = '';
+  if (pinSave) pinSave.disabled = true;
+  if (pinSave) pinSave.textContent = 'Save';
+  if (pinMsg) {
+    pinMsg.textContent = '';
+    pinMsg.className = 'settings-hint settings-pin-error hidden';
+  }
+}
+
 // --- Account population ---
 
 function populateAccount() {
@@ -194,15 +324,57 @@ function populateAccount() {
     return r.json();
   }).then(function (data) {
     if (!data) return;
-    var usernameEl = document.getElementById('us-username');
-    if (usernameEl && data.username) {
-      usernameEl.textContent = data.username;
+    currentProfile = data;
+    var displayName = data.name || data.displayName || data.username || 'Clay User';
+    var avatarImg = document.getElementById('us-account-avatar-img');
+    var avatarFallback = document.getElementById('us-account-avatar-fallback');
+    var accountName = document.getElementById('us-account-name');
+    var accountSubline = document.getElementById('us-account-subline');
+    var langSelect = document.getElementById('us-lang-select');
+    var pinSetBtnEl = document.getElementById('us-pin-set-btn');
+    var pinFormTitle = document.getElementById('us-pin-form-title');
+    if (accountName) {
+      accountName.textContent = displayName;
+    }
+    if (accountSubline) {
+      var parts = [];
+      if (data.username) parts.push('@' + data.username);
+      if (data.role) parts.push(data.role.charAt(0).toUpperCase() + data.role.slice(1));
+      accountSubline.textContent = parts.length ? parts.join(' · ') : 'Local profile';
+    }
+    pinEnabled = !!data.pinEnabled;
+    if (pinSetBtnEl) {
+      pinSetBtnEl.textContent = pinEnabled ? 'Change PIN' : 'Set PIN';
+    }
+    if (pinFormTitle) {
+      pinFormTitle.textContent = pinEnabled ? 'Change PIN' : 'Set PIN';
+    }
+    if (langSelect) {
+      langSelect.value = data.lang || 'en-US';
+    }
+    if (data.lang) {
+      setSTTLang(data.lang);
+    }
+    if (avatarImg && avatarFallback) {
+      var avatarUrl = getCurrentUserAvatarSrc(data);
+      avatarImg.alt = displayName;
+      avatarImg.classList.remove('hidden');
+      avatarFallback.classList.remove('hidden');
+      avatarFallback.textContent = avatarInitials(displayName);
+      avatarImg.onload = function () {
+        avatarFallback.classList.add('hidden');
+      };
+      avatarImg.onerror = function () {
+        avatarFallback.classList.remove('hidden');
+      };
+      avatarImg.src = avatarUrl;
+      if (avatarImg.complete && avatarImg.naturalWidth > 0) {
+        avatarFallback.classList.add('hidden');
+      }
     }
     // Hide account section in single-user mode (no username)
     var accountNav = settingsEl.querySelector('[data-section="us-account"]');
-    if (accountNav && !data.username) {
-      accountNav.style.display = 'none';
-    }
+    if (accountNav) accountNav.style.display = data.username ? '' : 'none';
     // Auto-continue toggle
     var acToggle = document.getElementById('us-auto-continue');
     if (acToggle) acToggle.checked = !!data.autoContinueOnRateLimit;
@@ -234,10 +406,89 @@ function populateAccount() {
   }).catch(function () {});
 }
 
+function saveProfileChange(updates) {
+  if (!currentProfile) return;
+  var nextProfile = {};
+  var payload = {};
+  var key;
+  for (key in currentProfile) {
+    if (Object.prototype.hasOwnProperty.call(currentProfile, key)) {
+      nextProfile[key] = currentProfile[key];
+    }
+  }
+  for (key in updates) {
+    if (Object.prototype.hasOwnProperty.call(updates, key)) {
+      nextProfile[key] = updates[key];
+    }
+  }
+  currentProfile = nextProfile;
+  if (updates.lang) {
+    setSTTLang(updates.lang);
+  }
+  payload.name = nextProfile.name;
+  payload.lang = nextProfile.lang;
+  payload.avatarColor = nextProfile.avatarColor;
+  payload.avatarStyle = nextProfile.avatarStyle;
+  payload.avatarSeed = nextProfile.avatarSeed;
+  payload.avatarCustom = nextProfile.avatarCustom;
+  fetch('/api/profile', {
+    method: 'PUT',
+    headers: { 'Content-Type': 'application/json' },
+    body: JSON.stringify(payload),
+  }).catch(function () {});
+}
+
+function avatarInitials(value) {
+  var text = (value || '').trim();
+  if (!text) return '?';
+  var parts = text.split(/\s+/);
+  var first = parts[0].charAt(0);
+  var second = parts.length > 1 ? parts[1].charAt(0) : parts[0].charAt(1);
+  var out = first + (second || '');
+  return out.toUpperCase();
+}
+
+function getCurrentUserAvatarSrc(data) {
+  var islandAvatar = document.querySelector('.user-island-avatar img');
+  if (islandAvatar && islandAvatar.src) return islandAvatar.src;
+  if (data && data.avatarCustom) return data.avatarCustom;
+  return userAvatarUrl(data, 96);
+}
+
 function savePin(pin) {
   var pinInput = document.getElementById('us-pin-input');
+  var pinConfirmInput = document.getElementById('us-pin-confirm-input');
+  var pinCurrentInput = document.getElementById('us-pin-current-input');
   var pinSave = document.getElementById('us-pin-save');
   var pinMsg = document.getElementById('us-pin-msg');
+  var currentPin = pinCurrentInput ? pinCurrentInput.value.trim() : '';
+  var confirmPin = pinConfirmInput ? pinConfirmInput.value.trim() : '';
+  var newPin = pinInput ? pinInput.value.trim() : '';
+
+  if (!/^\d{6}$/.test(newPin)) {
+    if (pinMsg) {
+      pinMsg.textContent = 'PIN must be exactly 6 digits.';
+      pinMsg.className = 'settings-hint settings-pin-error us-pin-msg-err';
+      pinMsg.classList.remove('hidden');
+    }
+    return;
+  }
+  if (confirmPin !== newPin) {
+    if (pinMsg) {
+      pinMsg.textContent = 'PINs do not match.';
+      pinMsg.className = 'settings-hint settings-pin-error us-pin-msg-err';
+      pinMsg.classList.remove('hidden');
+    }
+    return;
+  }
+  if (pinEnabled && !/^\d{6}$/.test(currentPin)) {
+    if (pinMsg) {
+      pinMsg.textContent = 'Current PIN is required.';
+      pinMsg.className = 'settings-hint settings-pin-error us-pin-msg-err';
+      pinMsg.classList.remove('hidden');
+    }
+    return;
+  }
 
   pinSave.disabled = true;
   pinSave.textContent = 'Saving\u2026';
@@ -245,32 +496,26 @@ function savePin(pin) {
   fetch('/api/user/pin', {
     method: 'PUT',
     headers: { 'Content-Type': 'application/json' },
-    body: JSON.stringify({ newPin: pin }),
+    body: JSON.stringify({ currentPin: currentPin, newPin: newPin }),
   }).then(function (r) { return r.json(); }).then(function (data) {
     if (data.ok) {
-      pinInput.value = '';
-      pinSave.textContent = 'Change PIN';
-      if (pinMsg) {
-        pinMsg.textContent = 'Your PIN has been changed.';
-        pinMsg.className = 'us-pin-msg us-pin-msg-ok';
-        pinMsg.classList.remove('hidden');
-      }
       showToast('PIN changed');
+      hidePinForm();
     } else {
       pinSave.disabled = false;
-      pinSave.textContent = 'Change PIN';
+      pinSave.textContent = 'Save';
       if (pinMsg) {
         pinMsg.textContent = data.error || 'Could not change your PIN. Please try again.';
-        pinMsg.className = 'us-pin-msg us-pin-msg-err';
+        pinMsg.className = 'settings-hint settings-pin-error us-pin-msg-err';
         pinMsg.classList.remove('hidden');
       }
     }
   }).catch(function () {
     pinSave.disabled = false;
-    pinSave.textContent = 'Change PIN';
+    pinSave.textContent = 'Save';
     if (pinMsg) {
       pinMsg.textContent = 'Connection lost. Check your network and try again.';
-      pinMsg.className = 'us-pin-msg us-pin-msg-err';
+      pinMsg.className = 'settings-hint settings-pin-error us-pin-msg-err';
       pinMsg.classList.remove('hidden');
     }
   });

package/lib/sdk-bridge.js

@@ -120,6 +120,61 @@ function createSDKBridge(opts) {
   var clayTls = opts.clayTls || false;
   var clayAuthToken = opts.clayAuthToken || null;
   var onProcessingChanged = opts.onProcessingChanged || function () {};
+  var _cachedFreshAuthState = null;
+  var _cachedFreshAuthAt = 0;
+
+  function getFreshAuthState(force) {
+    var yoke = require("./yoke");
+    var now = Date.now();
+    if (!force && _cachedFreshAuthState && now - _cachedFreshAuthAt < 15000) {
+      return _cachedFreshAuthState;
+    }
+    if (force) yoke.invalidateAuthCache();
+    _cachedFreshAuthState = yoke.checkAuth();
+    _cachedFreshAuthAt = now;
+    return _cachedFreshAuthState;
+  }
+
+  function isAuthErrorMessage(errDetail) {
+    if (!errDetail) return false;
+    var errLower = String(errDetail).toLowerCase();
+    return errLower.indexOf("not logged in") !== -1
+      || errLower.indexOf("unauthenticated") !== -1
+      || errLower.indexOf("authentication") !== -1
+      || errLower.indexOf("sign in") !== -1
+      || errLower.indexOf("log in") !== -1
+      || errLower.indexOf("please login") !== -1;
+  }
+
+  function getLoginCommand(vendor) {
+    if (vendor === "codex") return "codex login --device-auth";
+    if (vendor === "claude") return "claude login";
+    return (vendor || "claude") + " login";
+  }
+
+  function notifyAuthRequired(session, title, body, authLinuxUser, canAutoLogin, loginCommand) {
+    var _nm = getNotificationsModule();
+    if (!_nm) return false;
+    _nm.notify("auth_required", {
+      title: title,
+      body: body,
+      slug: slug,
+      sessionId: session.localId,
+      ownerId: session.ownerId || null,
+      vendor: session.vendor || (adapter && adapter.vendor) || "claude",
+      loginCommand: loginCommand,
+      linuxUser: authLinuxUser,
+      canAutoLogin: canAutoLogin,
+    });
+    return true;
+  }
+
+  function logAuthDecision(stage, session, errDetail, authState) {
+    var vendor = session && session.vendor ? session.vendor : "(none)";
+    var errSnippet = errDetail ? String(errDetail).replace(/\s+/g, " ").slice(0, 180) : "";
+    var authSummary = authState ? JSON.stringify(authState) : "(none)";
+    console.warn("[sdk-bridge] auth decision [" + stage + "] vendor=" + vendor + " auth=" + authSummary + (errSnippet ? " err=" + errSnippet : ""));
+  }
 
   function getModelsForVendor(vendor) {
     if (vendor && sm.modelsByVendor && sm.modelsByVendor[vendor]) return sm.modelsByVendor[vendor];
@@ -737,29 +792,49 @@ function createSDKBridge(opts) {
             var isContextOverflow = errLower.indexOf("prompt is too long") !== -1
               || errLower.indexOf("context_length") !== -1
               || errLower.indexOf("maximum context length") !== -1;
-            var isAuthError = errLower.indexOf("not logged in") !== -1
-              || errLower.indexOf("unauthenticated") !== -1
-              || errLower.indexOf("authentication") !== -1
-              || errLower.indexOf("sign in") !== -1
-              || errLower.indexOf("log in") !== -1
-              || errLower.indexOf("please login") !== -1;
+            var isAuthError = isAuthErrorMessage(errDetail);
             if (isContextOverflow) {
               sendAndRecord(session, {
                 type: "context_overflow",
                 text: "Conversation too long to continue.",
               });
             } else if (isAuthError) {
+              var freshAuth = getFreshAuthState();
+              logAuthDecision("catch-auth-error", session, errDetail, freshAuth);
+              if (freshAuth[session.vendor]) {
+                sendAndRecord(session, {
+                  type: "error",
+                  text: "Authentication looked fine, but " + (session.vendor || "the vendor") + " returned an auth-like error.",
+                });
+                sendAndRecord(session, { type: "done", code: 1 });
+                sm.broadcastSessionList();
+                return;
+              }
               var authUser = session.ownerId ? usersModule.findUserById(session.ownerId) : null;
               var authLinuxUser = authUser && authUser.linuxUser ? authUser.linuxUser : null;
               var canAutoLogin = !usersModule.isMultiUser()
                 || !!authLinuxUser
                 || (authUser && authUser.role === "admin");
-              sendAndRecord(session, {
+              var authTitle = (session.vendor === "codex" ? "Codex" : "Claude Code") + " is not logged in.";
+              var authMsg = {
                 type: "auth_required",
-                text: "Claude Code is not logged in.",
+                text: authTitle,
+                vendor: session.vendor || (adapter && adapter.vendor) || "claude",
+                loginCommand: getLoginCommand(session.vendor || (adapter && adapter.vendor) || "claude"),
                 linuxUser: authLinuxUser,
                 canAutoLogin: canAutoLogin,
-              });
+              };
+              sendAndRecord(session, authMsg);
+              if (!notifyAuthRequired(
+                session,
+                authTitle,
+                "Open a terminal, then click the URL and follow the instructions.",
+                authLinuxUser,
+                canAutoLogin,
+                getLoginCommand(session.vendor || (adapter && adapter.vendor) || "claude")
+              )) {
+                // chat message already sent above
+              }
             } else {
               sendAndRecord(session, { type: "error", text: "Claude process error: " + err.message });
             }
@@ -968,6 +1043,16 @@ function createSDKBridge(opts) {
     } else if (session.vendor) {
       await ensureVendorReady(session.vendor);
     }
+    if (session.vendor && !adapters[session.vendor]) {
+      var freshAuth = getFreshAuthState();
+      logAuthDecision("pre-auth-required", session, null, freshAuth);
+      if (freshAuth[session.vendor]) {
+        var recoveredAdapter = await ensureVendorReady(session.vendor);
+        if (recoveredAdapter) {
+          console.log("[sdk-bridge] Auth recheck recovered adapter for " + session.vendor);
+        }
+      }
+    }
     // If still not available after lazy check, send auth_required
     if (session.vendor && !adapters[session.vendor]) {
       var vendorName = session.vendor.charAt(0).toUpperCase() + session.vendor.slice(1);
@@ -976,14 +1061,35 @@ function createSDKBridge(opts) {
       var canAutoLogin = !usersModule.isMultiUser()
         || !!authLinuxUser
         || (authUser && authUser.role === "admin");
-      sendAndRecord(session, {
+      var authState = getFreshAuthState();
+      logAuthDecision("emit-auth-required", session, "missing adapter", authState);
+      if (authState[session.vendor]) {
+        sendAndRecord(session, {
+          type: "error",
+          text: vendorName + " auth is available, but the adapter could not be initialized.",
+        });
+        sendAndRecord(session, { type: "done", code: 1 });
+        return;
+      }
+      var authMsg2 = {
         type: "auth_required",
         text: vendorName + " is not logged in.",
         vendor: session.vendor,
-        loginCommand: session.vendor === "codex" ? "codex login --device-auth" : session.vendor + " login",
+        loginCommand: getLoginCommand(session.vendor),
         linuxUser: authLinuxUser,
         canAutoLogin: canAutoLogin,
-      });
+      };
+      sendAndRecord(session, authMsg2);
+      if (!notifyAuthRequired(
+        session,
+        vendorName + " is not logged in.",
+        "Open a terminal, then click the URL and follow the instructions.",
+        authLinuxUser,
+        canAutoLogin,
+        getLoginCommand(session.vendor)
+      )) {
+        // chat message already sent above
+      }
       sendAndRecord(session, { type: "done", code: 1 });
       return;
     }

package/lib/sdk-message-processor.js

@@ -18,7 +18,7 @@ function attachMessageProcessor(ctx) {
   var discoverSkillDirs = ctx.discoverSkillDirs;
   var mergeSkills = ctx.mergeSkills;
 
-  var AUTO_TITLE_TURN_THRESHOLD = 3;
+  var AUTO_TITLE_TURN_THRESHOLD = 2;
 
   function getMateIdForNotification() {
     if (!isMate) return null;
@@ -435,12 +435,33 @@ function attachMessageProcessor(ctx) {
         var canAutoLogin = !usersModule.isMultiUser()
           || !!authLinuxUser
           || (authUser && authUser.role === "admin");
-        sendAndRecord(session, {
+        var authTitle = session.vendor === "codex" ? "Codex is not logged in." : "Claude Code is not logged in.";
+        var loginCommand = session.vendor === "codex"
+          ? "codex login --device-auth"
+          : "claude login";
+        var _nmLogin = getNotificationsModule();
+        var authMsg = {
           type: "auth_required",
-          text: "Claude Code is not logged in.",
+          text: authTitle,
+          vendor: session.vendor || "claude",
+          loginCommand: loginCommand,
           linuxUser: authLinuxUser,
           canAutoLogin: canAutoLogin,
-        });
+        };
+        sendAndRecord(session, authMsg);
+        if (_nmLogin) {
+          _nmLogin.notify("auth_required", {
+            title: authTitle,
+            body: "Open a terminal, then click the URL and follow the instructions.",
+            slug: slug,
+            sessionId: session.localId,
+            ownerId: session.ownerId || null,
+            vendor: session.vendor || "claude",
+            loginCommand: loginCommand,
+            linuxUser: authLinuxUser,
+            canAutoLogin: canAutoLogin,
+          });
+        }
         // Reset CLI session so next query starts fresh with new auth
         session.cliSessionId = null;
       }