Updates botserver to commit c326581a which includes:
- Fix for PAT extraction timing issue
- Retry loop with sync command for reliable PAT extraction
- Improved logging and verification
- Consolidated setup module
- OAuth client initialization now works correctly
- Updated setup_directory() to try multiple credential sources:
1. Existing config file
2. Zitadel log extraction
3. Default credentials
4. Helpful error message if all fail
- Made ensure_admin_token() async to actually authenticate with credentials
- Added test_zitadel_credentials() helper function
- Improved error messages for debugging
This addresses the issue where OAuth client creation was failing because
credentials couldn't be extracted from Zitadel logs.
Related: zit.md plan for automatic OAuth client creation
The login flow now falls back to OAuth client credentials flow when
the admin PAT token is not available. This allows login.html to work
even when Zitadel PAT generation hasn't been configured yet.
- Added get_oauth_token() helper function
- Login now tries PAT first, then OAuth client credentials
- Includes proper Zitadel scope for API access
🤖 Generated with [Claude Code](https://claude.com/claude-code)
Co-Authored-By: Claude <noreply@anthropic.com>
- Updated UI.md with the completed specification and status
- Synced botui submodule with new desktop.html and window-manager.js implementation
- Synced botserver submodule with latest changes
Updated the botserver submodule to include fixes for work directory
paths that now use botserver-stack/data/system/work consistently.
🤖 Generated with [Claude Code](https://claude.com/claude-code)
Co-Authored-By: Claude <noreply@anthropic.com>
- Documented that /opt/gbo/data is also a location for bots
- Added warning to never search /target folder (compiled binaries)
- Synced all submodules with latest changes
Related to tool loading fix that moved .mcp.json files to
botserver-stack/data/system/work/ and updated code to use
relative paths instead of hardcoded HOME/gb path.
🤖 Generated with [Claude Code](https://claude.com/claude-code)
Co-Authored-By: Claude <noreply@anthropic.com>
Bug fixes in .bas tools:
- Fix BEGIN MAIL email → BEGIN MAIL emailContato in tools 07, 09, 10
- Fix newsletter BOOLEAN → STRING in tool 10 (LLM sends 'Sim' as string)
- Add natural language descriptions to ENUM params in tools 02-10
Botserver:
- Fix duplicate chat message when tool is executed (tool_was_executed flag)
BotUI:
- Remove theme selector button from minimal chat for non-logged users
Testing: All 10 tools verified with NL ENUM mapping and DB records
SECURITY FIXES:
- Add restart.sh script that reads Vault credentials from /tmp/ only
- Add .gitignore rules for: vault-unseal-keys, start-and-unseal.sh, vault-token-*
- Add security warning to README.md about /tmp/ for secrets
- Update botserver port references from 8088 to 9000 in README
Secrets MUST be placed in /tmp/ only:
- /tmp/vault-token-gb (Vault root token)
- /tmp/vault-unseal-key-gb (Vault unseal key)
This commit removes the previous commit (c7a60b8) that contained hardcoded
secrets in restart.sh and start-and-unseal.sh files.
Co-Authored-By: Claude Sonnet 4.5 <noreply@anthropic.com>
- Fix tool calls in JSON array format to be executed instead of displayed
- Prevents raw tool JSON from appearing in chat window
Co-Authored-By: Claude Sonnet 4.5 <noreply@anthropic.com>
- Fix tool buttons sending display text instead of internal ID
- Tool buttons now work correctly on first click
Co-Authored-By: Claude Sonnet 4.5 <noreply@anthropic.com>
- botui: Fix workspace conflict in CI workflow
- botserver: Fix workspace conflict in CI workflow
Co-Authored-By: Claude Sonnet 4.5 <noreply@anthropic.com>
- Binaries at cache/bin/valkey-server
- exec_cmd and check_cmd updated to use bin/ subdirectory
Co-Authored-By: Claude Sonnet 4.5 <noreply@anthropic.com>
