clay-server 2.33.0 → 2.33.1

package/lib/server-settings.js

@@ -25,6 +25,7 @@ function attachSettings(ctx) {
         profile.username = mu.username;
         profile.userId = mu.id;
         profile.role = mu.role;
+        profile.pinEnabled = !!mu.pinHash;
         profile.autoContinueOnRateLimit = !!mu.autoContinueOnRateLimit;
         profile.chatLayout = mu.chatLayout || "channel";
         profile.mateOnboardingShown = !!mu.mateOnboardingShown;
@@ -329,6 +330,18 @@ function attachSettings(ctx) {
             res.end('{"error":"PIN must be exactly 6 digits"}');
             return;
           }
+          if (mu.pinHash) {
+            if (!data.currentPin || typeof data.currentPin !== "string" || !/^\d{6}$/.test(data.currentPin)) {
+              res.writeHead(400, { "Content-Type": "application/json" });
+              res.end('{"error":"Current PIN is required"}');
+              return;
+            }
+            if (mu.pinHash !== users.hashPin(data.currentPin)) {
+              res.writeHead(400, { "Content-Type": "application/json" });
+              res.end('{"error":"Current PIN is incorrect"}');
+              return;
+            }
+          }
           var result = users.updateUserPin(mu.id, data.newPin);
           if (result.error) {
             res.writeHead(400, { "Content-Type": "application/json" });

package/lib/yoke/codex-app-server.js

@@ -15,8 +15,8 @@ var { createRequire } = require("module");
 var PLATFORM_PACKAGE_BY_TARGET = {
   "aarch64-apple-darwin": "@openai/codex-darwin-arm64",
   "x86_64-apple-darwin": "@openai/codex-darwin-x64",
-  "aarch64-unknown-linux-gnu": "@openai/codex-linux-arm64",
-  "x86_64-unknown-linux-gnu": "@openai/codex-linux-x64",
+  "aarch64-unknown-linux-musl": "@openai/codex-linux-arm64",
+  "x86_64-unknown-linux-musl": "@openai/codex-linux-x64",
   "x86_64-pc-windows-msvc": "@openai/codex-win32-x64",
 };
 
@@ -27,7 +27,7 @@ function getTargetTriple() {
     return arch === "arm64" ? "aarch64-apple-darwin" : "x86_64-apple-darwin";
   }
   if (platform === "linux") {
-    return arch === "arm64" ? "aarch64-unknown-linux-gnu" : "x86_64-unknown-linux-gnu";
+    return arch === "arm64" ? "aarch64-unknown-linux-musl" : "x86_64-unknown-linux-musl";
   }
   if (platform === "win32") {
     return "x86_64-pc-windows-msvc";

package/lib/yoke/index.js

@@ -66,27 +66,88 @@ function createAdapter(opts) {
  * Call invalidateAuthCache() to force re-check (e.g. after login).
  */
 var _authCache = null;
+var _lastAuthLogKey = null;
+var _lastAuthLogAt = 0;
+
+function logAuthCheck(auth) {
+  var key = JSON.stringify(auth || {});
+  var now = Date.now();
+  if (_lastAuthLogKey === key && now - _lastAuthLogAt < 30000) return;
+  _lastAuthLogKey = key;
+  _lastAuthLogAt = now;
+  console.log("[yoke] Auth check: claude=" + auth.claude + " codex=" + auth.codex);
+}
 
 function checkAuth() {
   if (_authCache) return _authCache;
 
   var execSync = require("child_process").execSync;
 
+  function parseClaudeAuthStatusJson(out) {
+    if (!out) return null;
+    try {
+      return JSON.parse(out);
+    } catch (e) {
+      return null;
+    }
+  }
+
+  function isClaudeLoggedInText(out) {
+    if (!out) return false;
+    var text = String(out).toLowerCase();
+    if (text.indexOf("not logged in") !== -1) return false;
+    if (text.indexOf("login method:") !== -1) return true;
+    if (text.indexOf("logged in") !== -1) return true;
+    return false;
+  }
+
   function checkClaude() {
     try {
-      var out = execSync("claude auth status", { timeout: 5000, encoding: "utf8", stdio: ["pipe", "pipe", "pipe"] });
-      var parsed = JSON.parse(out);
-      return !!(parsed && parsed.loggedIn);
+      var out = execSync("claude auth status --json", { timeout: 5000, encoding: "utf8", stdio: ["pipe", "pipe", "pipe"] });
+      var parsed = parseClaudeAuthStatusJson(out);
+      if (parsed) return !!parsed.loggedIn;
+      console.warn("[yoke] Claude auth status JSON parse failed; falling back to text output");
+    } catch (e) {
+      var stdout = e && e.stdout ? String(e.stdout) : "";
+      if (stdout) {
+        var parsedFallback = parseClaudeAuthStatusJson(stdout);
+        if (parsedFallback) return !!parsedFallback.loggedIn;
+      }
+      console.warn("[yoke] Claude auth status JSON check failed; falling back to text output:", e.message);
+    }
+
+    try {
+      var textOut = execSync("claude auth status --text", { timeout: 5000, encoding: "utf8", stdio: ["pipe", "pipe", "pipe"] });
+      return isClaudeLoggedInText(textOut);
     } catch (e) {
       return false;
     }
   }
 
-  function checkCodex() {
+  function resolveCodexBinary() {
+    var fs = require("fs");
+    var findCodexPath = require("./codex-app-server").findCodexPath;
+    var pathProbeCmd = process.platform === "win32" ? "where codex" : "which codex";
+
     try {
-      var findCodexPath = require("./codex-app-server").findCodexPath;
       var codexBin = findCodexPath();
-      execSync(codexBin + " login status", { timeout: 5000, encoding: "utf8", stdio: ["pipe", "pipe", "pipe"] });
+      if (codexBin && fs.existsSync(codexBin)) return codexBin;
+    } catch (e) {}
+
+    try {
+      var whichOut = execSync(pathProbeCmd, { timeout: 3000, encoding: "utf8", stdio: ["pipe", "pipe", "pipe"] });
+      var codexPath = whichOut.trim().split(/\r?\n/)[0];
+      if (codexPath) return codexPath;
+    } catch (e) {}
+
+    return null;
+  }
+
+  function checkCodex() {
+    try {
+      var codexBin = resolveCodexBinary();
+      if (!codexBin) return false;
+      execSync('"' + codexBin + '" login status', { timeout: 5000, encoding: "utf8", stdio: ["pipe", "pipe", "pipe"] });
       return true;
     } catch (e) {
       return false;
@@ -94,7 +155,7 @@ function checkAuth() {
   }
 
   _authCache = { claude: checkClaude(), codex: checkCodex(), gemini: false };
-  console.log("[yoke] Auth check: claude=" + _authCache.claude + " codex=" + _authCache.codex);
+  logAuthCheck(_authCache);
   return _authCache;
 }
 
@@ -103,7 +164,6 @@ function checkAuth() {
  */
 function checkInstalled() {
   var fs = require("fs");
-  var path = require("path");
   var execSync = require("child_process").execSync;
   var result = { claude: false, codex: false };
   try {
@@ -111,9 +171,19 @@ function checkInstalled() {
     result.claude = true;
   } catch (e) {}
   try {
-    var findCodexPath = require("./codex-app-server").findCodexPath;
-    var codexBin = findCodexPath();
-    if (fs.existsSync(codexBin)) result.codex = true;
+    var codexBin = null;
+    try {
+      var findCodexPath = require("./codex-app-server").findCodexPath;
+      codexBin = findCodexPath();
+      if (codexBin && fs.existsSync(codexBin)) {
+        result.codex = true;
+        return result;
+      }
+    } catch (e) {}
+
+    var pathProbeCmd = process.platform === "win32" ? "where codex" : "which codex";
+    var whichOut = execSync(pathProbeCmd, { timeout: 3000, encoding: "utf8", stdio: ["pipe", "pipe", "pipe"] });
+    if (whichOut.trim()) result.codex = true;
   } catch (e) {}
   return result;
 }

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "clay-server",
-  "version": "2.33.0",
+  "version": "2.33.1",
   "description": "Self-hosted Claude Code in your browser. Multi-session, multi-user, push notifications.",
   "bin": {
     "clay-server": "./bin/cli.js",