Add !votes command, fix vote tally timing, and improve Kosmi stability

- Add !votes command (IRC + Kosmi) showing per-session and all-time vote breakdowns for the current game via new Jackbox API endpoints (GET sessions/{id}/games, sessions/{id}/votes, games/{id}) - Fix vote tally broadcasting: remove debounce timer, announce tallies only at game transitions or session end instead of after every vote - Add !kreconnect IRC command to manually trigger Kosmi reconnection - Add WebSocket ping/pong keepalive and write mutex to Kosmi client for connection stability - Add watchConnection() auto-reconnect on unexpected Kosmi disconnects - Remove old 2025-10-31 chat summaries; add votes command design doc Made-with: Cursor
Remove compiled binaries from tracking
2026-03-16 20:56:18 -04:00 · 2026-02-07 13:53:08 -05:00 · 2026-02-07 13:46:40 -05:00 · 2026-02-07 13:45:54 -05:00 · 2026-02-07 13:40:46 -05:00 · 2026-02-07 13:35:51 -05:00
77 changed files with 1621 additions and 2022 deletions
--- a/.gitignore
+++ b/.gitignore
@@ -1,6 +1,18 @@
 # Binaries
 matterbridge
 test-kosmi
 capture-auth
 monitor-ws
 test-image-upload
 test-long-title
 test-proper-roomcodes
 test-roomcode-image
 test-session
 test-upload
 test-websocket
 test-websocket-direct
 cmd/kosmi-client/kosmi-clien
 cmd/kosmi-client/kosmi-client
 *.exe
 *.dll
 *.so
@@ -33,9 +45,29 @@ Thumbs.db
 # Config files with secrets
 matterbridge.toml.local
 matterbridge.toml
 test-token-config.toml
 *.har
 *.har.txt
 *.har.gz
 auth-data.json
 definitely_logged_*.json
 loggedin_maybe.json
 loggedout_maybe.json
 # Debug/capture files with JWT tokens
 QUICK_START_TOKEN.md
 loggedout_websocket_messages.md
 logging_IN_attempt_but_loggedout_websocket_messages.md
 logging_IN_attempt_but_now_logged_IN_websocket_messages.md
 *.secret.toml
 .env
 # Test/sample generated files
 har_operations_full.txt
 roomcode_*.gif
 test_upload.gif
 # Logs
 *.log
 logs/
@@ -48,3 +80,6 @@ build/
 .examples/
 chat-summaries/
 bin/
 # Persistent data directory (contains cached tokens)
 data/
--- a/16
+++ b/16
@@ -3,8 +3,20 @@ FROM golang:1.23-alpine
 WORKDIR /app
-# Install only essential dependencies
+# Install essential dependencies and Chromium for authentication
-RUN apk add --no-cache ca-certificates
+# Chromium is needed for email/password authentication via browser automation
 RUN apk add --no-cache \
    ca-certificates \
    chromium \
    chromium-chromedriver \
    nss \
    freetype \
    harfbuzz \
    ttf-freefont
 # Set environment variables for Chromium
 ENV CHROME_BIN=/usr/bin/chromium-browser \
    CHROME_PATH=/usr/lib/chromium/
 # Copy go mod files
 COPY go.mod go.sum ./
--- a/TOKEN_PERSISTENCE.md
+++ b/TOKEN_PERSISTENCE.md
@@ -0,0 +1,181 @@
 # Token Persistence Guide
 ## Overview
 The Kosmi bridge now caches JWT authentication tokens to avoid repeated browser automation on every startup. The token is stored in a local directory that persists across Docker container rebuilds and restarts.
 ## How It Works
 ### Token Cache Location
 The token cache is stored in a file called `kosmi_token_cache.json` in the following locations:
 - **Docker (Production)**: `./data/kosmi_token_cache.json` (mounted from your host machine)
 - **Local Development**: `~/.matterbridge/kosmi_token_cache.json`
 ### Token Cache Structure
 The cache file contains:
 ```json
 {
  "token": "eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9...",
  "email": "your-email@example.com",
  "expires_at": "2026-11-02T15:56:23Z",
  "saved_at": "2025-11-02T15:56:23Z"
 }
 ```
 ### Token Lifecycle
 1. **On Startup**: The bridge checks for a cached token
   - If found and valid, it uses the cached token (no browser automation needed)
   - If expired or expiring within 7 days, it performs fresh authentication
   - If not found, it performs fresh authentication
 2. **Token Expiry**: Kosmi JWT tokens expire after 1 year
   - The bridge automatically refreshes tokens that expire within 7 days
   - You'll see a log message indicating how long until the token expires
 3. **Token Storage**: After successful authentication, the token is saved to the cache file
   - File permissions are set to `0600` (read/write for owner only)
   - The cache directory is created automatically if it doesn't exist
 ## Docker Configuration
 ### Volume Mount
 The `docker-compose.yml` includes a volume mount for persistent storage:
 ```yaml
 volumes:
  - ./data:/app/data:z
 ```
 This mounts the `./data` directory from your host machine into the container at `/app/data`.
 ### Environment Variable
 The container sets the `MATTERBRIDGE_DATA_DIR` environment variable:
 ```yaml
 environment:
  - MATTERBRIDGE_DATA_DIR=/app/data
 ```
 This tells the bridge where to store persistent data like the token cache.
 ## Usage
 ### First Run
 On the first run with email/password configured:
 1. The bridge will launch a headless browser
 2. Authenticate with Kosmi using your credentials
 3. Extract and cache the JWT token
 4. Save it to `./data/kosmi_token_cache.json`
 You'll see logs like:
 ```
 level=info msg="No cached token found, performing authentication..."
 level=info msg="Starting browser automation for authentication..."
 level=info msg="💾 Token cached (expires in 8760h)"
 ```
 ### Subsequent Runs
 On subsequent runs (container restarts, rebuilds, etc.):
 1. The bridge checks the cached token
 2. If valid, uses it immediately (no browser needed)
 3. Connects to Kosmi in seconds
 You'll see logs like:
 ```
 level=info msg="✅ Using cached token (expires in 8736h)"
 ```
 ### Token Refresh
 When the token is close to expiring (within 7 days):
 1. The bridge automatically performs fresh authentication
 2. Updates the cached token
 3. Continues normal operation
 You'll see logs like:
 ```
 level=info msg="Cached token expires soon (2025-11-09T15:56:23Z), will refresh"
 level=info msg="Starting browser automation for authentication..."
 level=info msg="💾 Token cached (expires in 8760h)"
 ```
 ## File Structure
 After running with authentication, your directory structure will look like:
 ```
 irc-kosmi-relay/
 ├── data/                              # Persistent data directory
 │   └── kosmi_token_cache.json        # Cached JWT token
 ├── docker-compose.yml
 ├── matterbridge.toml
 └── ...
 ```
 ## Troubleshooting
 ### Token Cache Not Persisting
 If the token cache doesn't persist across container restarts:
 1. Check that the `./data` directory exists and is writable
 2. Verify the volume mount in `docker-compose.yml` is correct
 3. Check container logs for permission errors
 ### Force Token Refresh
 To force a fresh authentication (e.g., if credentials changed):
 ```bash
 # Stop the container
 docker-compose down
 # Remove the cached token
 rm ./data/kosmi_token_cache.json
 # Start the container
 docker-compose up -d
 ```
 ### Check Token Status
 To view the current cached token:
 ```bash
 cat ./data/kosmi_token_cache.json | jq .
 ```
 This will show you:
 - When the token was saved
 - When it expires
 - Which email it's associated with
 ## Security Notes
 - The token cache file has restricted permissions (`0600`) for security
 - The token is a JWT that expires after 1 year
 - The cache file is stored locally and never transmitted
 - If you commit your code to version control, add `data/` to `.gitignore`
 ## Benefits
 1. **Faster Startup**: No browser automation on every restart (saves 10-15 seconds)
 2. **Reduced Resource Usage**: No need to launch Chromium on every startup
 3. **Persistence**: Token survives container rebuilds, restarts, and host reboots
 4. **Automatic Refresh**: Token is automatically refreshed before expiry
 5. **Local Storage**: Token is stored on your host machine, not in the container
--- a/bridge/config/config.go
+++ b/bridge/config/config.go
@@ -28,6 +28,8 @@ const (
 	EventUserTyping        = "user_typing"
 	EventGetChannelMembers = "get_channel_members"
 	EventNoticeIRC         = "notice_irc"
 	EventReconnectKosmi    = "reconnect_kosmi"
 	EventVotesQuery        = "votes_query"
 )
 const ParentIDNotFound = "msg-parent-not-found"
--- a/bridge/irc/handlers.go
+++ b/bridge/irc/handlers.go
@@ -269,6 +269,32 @@ func (b *Birc) handlePrivMsg(client *girc.Client, event girc.Event) {
 		}
 	}
 	// Handle !kreconnect command: trigger Kosmi bridge reconnection
 	if strings.TrimSpace(rmsg.Text) == "!kreconnect" {
 		b.Log.Infof("!kreconnect command from %s on %s", event.Source.Name, rmsg.Channel)
 		b.Remote <- config.Message{
 			Username: "system",
 			Text:     "kreconnect",
 			Channel:  rmsg.Channel,
 			Account:  b.Account,
 			Event:    config.EventReconnectKosmi,
 		}
 		return
 	}
 	// Handle !votes command: query current game vote tally
 	if strings.TrimSpace(rmsg.Text) == "!votes" {
 		b.Log.Infof("!votes command from %s on %s", event.Source.Name, rmsg.Channel)
 		b.Remote <- config.Message{
 			Username: "system",
 			Text:     "votes",
 			Channel:  rmsg.Channel,
 			Account:  b.Account,
 			Event:    config.EventVotesQuery,
 		}
 		return
 	}
 	b.Log.Debugf("<= Sending message from %s on %s to gateway", event.Params[0], b.Account)
 	b.Remote <- rmsg
 }
--- a/bridge/jackbox/client.go
+++ b/bridge/jackbox/client.go
@@ -26,8 +26,6 @@ type Client struct {
 	// Vote tracking
 	activeSessionID  int
 	lastVoteResponse *VoteResponse
 	voteDebounceTimer *time.Timer
 	voteDebounceDelay time.Duration
 }
 // AuthResponse represents the authentication response from the API
@@ -67,6 +65,44 @@ type SessionResponse struct {
 	Session *Session `json:"session"`
 }
 // SessionGame represents a game within a session
 type SessionGame struct {
 	ID       int    `json:"id"`
 	GameID   int    `json:"game_id"`
 	Title    string `json:"title"`
 	PackName string `json:"pack_name"`
 	Status   string `json:"status"`
 	RoomCode string `json:"room_code"`
 }
 // SessionVotesResponse represents the per-game vote breakdown for a session
 type SessionVotesResponse struct {
 	SessionID int               `json:"session_id"`
 	Votes     []GameVoteSummary `json:"votes"`
 }
 // GameVoteSummary represents aggregated vote data for a single game in a session
 type GameVoteSummary struct {
 	GameID     int    `json:"game_id"`
 	Title      string `json:"title"`
 	PackName   string `json:"pack_name"`
 	Upvotes    int    `json:"upvotes"`
 	Downvotes  int    `json:"downvotes"`
 	NetScore   int    `json:"net_score"`
 	TotalVotes int    `json:"total_votes"`
 }
 // Game represents a game from the catalog
 type Game struct {
 	ID              int    `json:"id"`
 	Title           string `json:"title"`
 	PackName        string `json:"pack_name"`
 	PopularityScore int    `json:"popularity_score"`
 	Upvotes         int    `json:"upvotes"`
 	Downvotes       int    `json:"downvotes"`
 	PlayCount       int    `json:"play_count"`
 }
 // NewClient creates a new Jackbox API client
 func NewClient(apiURL, adminPassword string, log *logrus.Entry) *Client {
 	return &Client{
@@ -76,7 +112,6 @@ func NewClient(apiURL, adminPassword string, log *logrus.Entry) *Client {
 		httpClient: &http.Client{
 			Timeout: 10 * time.Second,
 		},
 		voteDebounceDelay: 3 * time.Second, // Wait 3 seconds after last vote before broadcasting
 	}
 }
@@ -102,13 +137,6 @@ func (c *Client) GetAndClearLastVoteResponse() *VoteResponse {
 	resp := c.lastVoteResponse
 	c.lastVoteResponse = nil
 	// Stop any pending debounce timer
 	if c.voteDebounceTimer != nil {
 		c.voteDebounceTimer.Stop()
 		c.voteDebounceTimer = nil
 	}
 	return resp
 }
@@ -267,8 +295,21 @@ func (c *Client) SendVote(username, voteType string, timestamp time.Time) error
 	c.log.Debugf("Vote recorded for %s: %s - %d👍 %d👎",
 		voteResp.Game.Title, username, voteResp.Game.Upvotes, voteResp.Game.Downvotes)
-	// Debounce vote broadcasts - wait for activity to settle
+	// Accumulate vote; tally announced at game change or session end
-	c.debouncedVoteBroadcast(&voteResp)
+	c.storeVoteResponse(&voteResp)
 	// If local session tracking is stale, sync from the API.
 	// A successful vote means the API has an active session.
 	c.mu.RLock()
 	sessionID := c.activeSessionID
 	c.mu.RUnlock()
 	if sessionID == 0 {
 		go func() {
 			if session, err := c.GetActiveSession(); err == nil && session != nil {
 				c.SetActiveSession(session.ID)
 			}
 		}()
 	}
 	return nil
 }
@@ -351,49 +392,168 @@ func (c *Client) GetActiveSession() (*Session, error) {
 	return &session, nil
 }
-// debouncedVoteBroadcast implements debouncing for vote broadcasts
+// storeVoteResponse accumulates the latest vote response silently.
-// When there's an active session, it stores votes to be announced with the next game
+// The tally is announced later by handleGameAdded or AnnounceSessionEnd
-// When there's no active session, it uses time-based debouncing (3 seconds)
+// via GetAndClearLastVoteResponse.
-func (c *Client) debouncedVoteBroadcast(voteResp *VoteResponse) {
+func (c *Client) storeVoteResponse(voteResp *VoteResponse) {
 	c.mu.Lock()
 	defer c.mu.Unlock()
 	// Store the latest vote response
 	c.lastVoteResponse = voteResp
-
+	c.log.Debugf("Vote accumulated for %s (will announce at game change or session end)", voteResp.Game.Title)
-	// If there's an active session, just accumulate votes silently
+}
-	// They'll be announced when the next game is picked
+
-	if c.activeSessionID > 0 {
+// GetSessionGames retrieves the list of games in a session
-		c.log.Debugf("Vote accumulated for %s (session active, will announce with next game)", voteResp.Game.Title)
+func (c *Client) GetSessionGames(sessionID int) ([]SessionGame, error) {
-		// Cancel any existing timer since we're in session mode
+	if err := c.ensureAuthenticated(); err != nil {
-		if c.voteDebounceTimer != nil {
+		return nil, fmt.Errorf("authentication failed: %w", err)
-			c.voteDebounceTimer.Stop()
+	}
-			c.voteDebounceTimer = nil
+
-		}
+	c.mu.RLock()
-		return
+	token := c.token
-	}
+	c.mu.RUnlock()
-
+
-	// No active session - use time-based debouncing
+	url := fmt.Sprintf("%s/api/sessions/%d/games", c.apiURL, sessionID)
-	// If there's an existing timer, stop it
+	req, err := http.NewRequest("GET", url, nil)
-	if c.voteDebounceTimer != nil {
+	if err != nil {
-		c.voteDebounceTimer.Stop()
+		return nil, fmt.Errorf("failed to create request: %w", err)
-	}
+	}
-
+	req.Header.Set("Authorization", "Bearer "+token)
-	// Create a new timer that will fire after the debounce delay
+
-	c.voteDebounceTimer = time.AfterFunc(c.voteDebounceDelay, func() {
+	resp, err := c.httpClient.Do(req)
-		c.mu.Lock()
+	if err != nil {
-		lastResp := c.lastVoteResponse
+		return nil, fmt.Errorf("failed to send request: %w", err)
-		c.lastVoteResponse = nil
+	}
-		c.mu.Unlock()
+	defer resp.Body.Close()
-
+
-		if lastResp != nil {
+	body, err := io.ReadAll(resp.Body)
-			// Broadcast the final vote result
+	if err != nil {
-			message := fmt.Sprintf("🗳️ Voting complete for %s • %d👍 %d👎 (Score: %d)",
+		return nil, fmt.Errorf("failed to read response body: %w", err)
-				lastResp.Game.Title,
+	}
-				lastResp.Game.Upvotes, lastResp.Game.Downvotes, lastResp.Game.PopularityScore)
+
-			c.broadcastMessage(message)
+	if resp.StatusCode == http.StatusUnauthorized {
-			c.log.Infof("Broadcast final vote result: %s - %d👍 %d👎",
+		c.log.Warn("Token expired, re-authenticating...")
-				lastResp.Game.Title, lastResp.Game.Upvotes, lastResp.Game.Downvotes)
+		if err := c.Authenticate(); err != nil {
-		}
+			return nil, fmt.Errorf("re-authentication failed: %w", err)
-	})
+		}
 		return c.GetSessionGames(sessionID)
 	}
 	if resp.StatusCode == http.StatusNotFound {
 		return nil, nil
 	}
 	if resp.StatusCode != http.StatusOK {
 		return nil, fmt.Errorf("unexpected status %d: %s", resp.StatusCode, string(body))
 	}
 	var games []SessionGame
 	if err := json.Unmarshal(body, &games); err != nil {
 		return nil, fmt.Errorf("failed to parse response: %w", err)
 	}
 	return games, nil
 }
 // GetSessionVotes retrieves the per-game vote breakdown for a session
 func (c *Client) GetSessionVotes(sessionID int) (*SessionVotesResponse, error) {
 	if err := c.ensureAuthenticated(); err != nil {
 		return nil, fmt.Errorf("authentication failed: %w", err)
 	}
 	c.mu.RLock()
 	token := c.token
 	c.mu.RUnlock()
 	url := fmt.Sprintf("%s/api/sessions/%d/votes", c.apiURL, sessionID)
 	req, err := http.NewRequest("GET", url, nil)
 	if err != nil {
 		return nil, fmt.Errorf("failed to create request: %w", err)
 	}
 	req.Header.Set("Authorization", "Bearer "+token)
 	resp, err := c.httpClient.Do(req)
 	if err != nil {
 		return nil, fmt.Errorf("failed to send request: %w", err)
 	}
 	defer resp.Body.Close()
 	body, err := io.ReadAll(resp.Body)
 	if err != nil {
 		return nil, fmt.Errorf("failed to read response body: %w", err)
 	}
 	if resp.StatusCode == http.StatusUnauthorized {
 		c.log.Warn("Token expired, re-authenticating...")
 		if err := c.Authenticate(); err != nil {
 			return nil, fmt.Errorf("re-authentication failed: %w", err)
 		}
 		return c.GetSessionVotes(sessionID)
 	}
 	if resp.StatusCode == http.StatusNotFound {
 		return nil, nil
 	}
 	if resp.StatusCode != http.StatusOK {
 		return nil, fmt.Errorf("unexpected status %d: %s", resp.StatusCode, string(body))
 	}
 	var votesResp SessionVotesResponse
 	if err := json.Unmarshal(body, &votesResp); err != nil {
 		return nil, fmt.Errorf("failed to parse response: %w", err)
 	}
 	return &votesResp, nil
 }
 // GetGame retrieves a single game from the catalog by ID
 func (c *Client) GetGame(gameID int) (*Game, error) {
 	if err := c.ensureAuthenticated(); err != nil {
 		return nil, fmt.Errorf("authentication failed: %w", err)
 	}
 	c.mu.RLock()
 	token := c.token
 	c.mu.RUnlock()
 	url := fmt.Sprintf("%s/api/games/%d", c.apiURL, gameID)
 	req, err := http.NewRequest("GET", url, nil)
 	if err != nil {
 		return nil, fmt.Errorf("failed to create request: %w", err)
 	}
 	req.Header.Set("Authorization", "Bearer "+token)
 	resp, err := c.httpClient.Do(req)
 	if err != nil {
 		return nil, fmt.Errorf("failed to send request: %w", err)
 	}
 	defer resp.Body.Close()
 	body, err := io.ReadAll(resp.Body)
 	if err != nil {
 		return nil, fmt.Errorf("failed to read response body: %w", err)
 	}
 	if resp.StatusCode == http.StatusUnauthorized {
 		c.log.Warn("Token expired, re-authenticating...")
 		if err := c.Authenticate(); err != nil {
 			return nil, fmt.Errorf("re-authentication failed: %w", err)
 		}
 		return c.GetGame(gameID)
 	}
 	if resp.StatusCode == http.StatusNotFound {
 		return nil, nil
 	}
 	if resp.StatusCode != http.StatusOK {
 		return nil, fmt.Errorf("unexpected status %d: %s", resp.StatusCode, string(body))
 	}
 	var game Game
 	if err := json.Unmarshal(body, &game); err != nil {
 		return nil, fmt.Errorf("failed to parse response: %w", err)
 	}
 	return &game, nil
 }
--- a/bridge/jackbox/manager.go
+++ b/bridge/jackbox/manager.go
@@ -129,8 +129,19 @@ func (m *Manager) startWebSocketClient(messageCallback func(string)) error {
 	// Get EnableRoomCodeImage setting from config (defaults to false)
 	enableRoomCodeImage := m.config.Viper().GetBool("jackbox.EnableRoomCodeImage")
 	// Get configurable delays for room code broadcast
 	imageDelay := time.Duration(m.config.Viper().GetInt("jackbox.RoomCodeImageDelay")) * time.Second
 	plaintextDelay := time.Duration(m.config.Viper().GetInt("jackbox.RoomCodePlaintextDelay")) * time.Second
 	if plaintextDelay == 0 {
 		plaintextDelay = 29 * time.Second // default
 	}
 	m.log.Infof("Room code delays: imageDelay=%v, plaintextDelay=%v (raw config: image=%d, plaintext=%d)",
 		imageDelay, plaintextDelay,
 		m.config.Viper().GetInt("jackbox.RoomCodeImageDelay"),
 		m.config.Viper().GetInt("jackbox.RoomCodePlaintextDelay"))
 	// Create WebSocket client (pass the API client for vote tracking)
-	m.wsClient = NewWebSocketClient(apiURL, token, wrappedCallback, m.client, enableRoomCodeImage, m.log)
+	m.wsClient = NewWebSocketClient(apiURL, token, wrappedCallback, m.client, enableRoomCodeImage, imageDelay, plaintextDelay, m.log)
 	// Connect to WebSocket
 	if err := m.wsClient.Connect(); err != nil {
--- a/bridge/jackbox/roomcode_image.go
+++ b/bridge/jackbox/roomcode_image.go
@@ -305,7 +305,7 @@ func GenerateRoomCodeImage(roomCode, gameTitle string) ([]byte, error) {
 	}
 	// Animation parameters
-	initialPauseFrames := 25 // Initial pause before animation starts (2.5 seconds at 10fps)
+	initialPauseFrames := 1 // Initial pause before animation starts (2.5 seconds at 10fps)
 	fadeFrames := 10        // Number of frames for fade-in (1 second at 10fps)
 	pauseFrames := 30       // Frames to pause between characters (3 seconds at 10fps)
 	frameDelay := 10        // 10/100 second = 0.1s per frame (10 fps)
--- a/bridge/jackbox/websocket_client.go
+++ b/bridge/jackbox/websocket_client.go
@@ -26,6 +26,8 @@ type WebSocketClient struct {
 	authenticated       bool
 	subscribedSession      int
 	enableRoomCodeImage    bool          // Whether to upload room code images to Kosmi
 	roomCodeImageDelay     time.Duration // Delay before sending image announcement
 	roomCodePlaintextDelay time.Duration // Delay before sending plaintext room code
 }
 // WebSocket message types
@@ -67,13 +69,15 @@ type GameAddedData struct {
 }
 // NewWebSocketClient creates a new WebSocket client
-func NewWebSocketClient(apiURL, token string, messageCallback func(string), apiClient *Client, enableRoomCodeImage bool, log *logrus.Entry) *WebSocketClient {
+func NewWebSocketClient(apiURL, token string, messageCallback func(string), apiClient *Client, enableRoomCodeImage bool, roomCodeImageDelay, roomCodePlaintextDelay time.Duration, log *logrus.Entry) *WebSocketClient {
 	return &WebSocketClient{
 		apiURL:                 apiURL,
 		token:                  token,
 		messageCallback:        messageCallback,
 		apiClient:              apiClient,
 		enableRoomCodeImage:    enableRoomCodeImage,
 		roomCodeImageDelay:     roomCodeImageDelay,
 		roomCodePlaintextDelay: roomCodePlaintextDelay,
 		log:                    log,
 		reconnectDelay:         1 * time.Second,
 		maxReconnect:           30 * time.Second,
@@ -306,7 +310,7 @@ func (c *WebSocketClient) handleGameAdded(data json.RawMessage) {
 	if gameData.Game.RoomCode != "" {
 		if c.enableRoomCodeImage {
 			// Try to upload room code image (for Kosmi) - image contains all info
-			c.broadcastWithRoomCodeImage(gameData.Game.Title, gameData.Game.RoomCode)
+			c.broadcastWithRoomCodeImage(message, gameData.Game.Title, gameData.Game.RoomCode)
 		} else {
 			// Use IRC text formatting (fallback)
 			roomCodeText := fmt.Sprintf(" - Room Code \x02\x11%s\x0F", gameData.Game.RoomCode)
@@ -324,7 +328,8 @@ func (c *WebSocketClient) handleGameAdded(data json.RawMessage) {
 // broadcastWithRoomCodeImage generates, uploads, and broadcasts a room code image
 // The image contains all the information (game title, room code, etc.)
-func (c *WebSocketClient) broadcastWithRoomCodeImage(gameTitle, roomCode string) {
+// The message parameter should contain the full game announcement including any vote results
 func (c *WebSocketClient) broadcastWithRoomCodeImage(message, gameTitle, roomCode string) {
 	c.log.Infof("🎨 Starting room code image generation and upload for: %s - %s", gameTitle, roomCode)
 	// Generate room code image (animated GIF) with game title embedded
@@ -333,7 +338,7 @@ func (c *WebSocketClient) broadcastWithRoomCodeImage(gameTitle, roomCode string)
 	if err != nil {
 		c.log.Errorf("❌ Failed to generate room code image: %v", err)
 		// Fallback to plain text (no IRC formatting codes for Kosmi)
-		fallbackMessage := fmt.Sprintf("🎮 Coming up next: %s - Room Code %s", gameTitle, roomCode)
+		fallbackMessage := fmt.Sprintf("%s - Room Code %s", message, roomCode)
 		if c.messageCallback != nil {
 			c.messageCallback(fallbackMessage)
 		}
@@ -349,7 +354,7 @@ func (c *WebSocketClient) broadcastWithRoomCodeImage(gameTitle, roomCode string)
 	if err != nil {
 		c.log.Errorf("❌ Failed to upload room code image: %v", err)
 		// Fallback to plain text (no IRC formatting codes for Kosmi)
-		fallbackMessage := fmt.Sprintf("🎮 Coming up next: %s - Room Code %s", gameTitle, roomCode)
+		fallbackMessage := fmt.Sprintf("%s - Room Code %s", message, roomCode)
 		if c.messageCallback != nil {
 			c.messageCallback(fallbackMessage)
 		}
@@ -358,9 +363,13 @@ func (c *WebSocketClient) broadcastWithRoomCodeImage(gameTitle, roomCode string)
 	c.log.Infof("✅ Step 2 complete: Uploaded to %s", imageURL)
-	// Now that upload succeeded, send the full announcement with game title and URL
+	// Now that upload succeeded, send the full announcement with the message and URL
 	if c.roomCodeImageDelay > 0 {
 		c.log.Infof("⏳ Step 3: Waiting %v before broadcasting game announcement...", c.roomCodeImageDelay)
 		time.Sleep(c.roomCodeImageDelay)
 	}
 	c.log.Infof("📢 Step 3: Broadcasting game announcement with URL...")
-	fullMessage := fmt.Sprintf("🎮 Coming up next: %s %s", gameTitle, imageURL)
+	fullMessage := fmt.Sprintf("%s %s", message, imageURL)
 	if c.messageCallback != nil {
 		c.messageCallback(fullMessage)
 		c.log.Infof("✅ Step 3 complete: Game announcement sent with URL")
@@ -368,17 +377,18 @@ func (c *WebSocketClient) broadcastWithRoomCodeImage(gameTitle, roomCode string)
 		c.log.Error("❌ Step 3 failed: messageCallback is nil")
 	}
-	// Send the plaintext room code after 19 seconds (to sync with animation completion)
+	// Send the plaintext room code after configured delay (to sync with animation completion)
 	// Capture callback and logger in closure
 	callback := c.messageCallback
 	logger := c.log
 	plainRoomCode := roomCode // Capture room code for plain text message
 	plaintextDelay := c.roomCodePlaintextDelay
-	c.log.Infof("⏰ Step 4: Starting 19-second timer goroutine for plaintext room code...")
+	c.log.Infof("⏰ Step 4: Starting %v timer goroutine for plaintext room code...", plaintextDelay)
 	go func() {
-		logger.Infof("⏰ [Goroutine started] Waiting 19 seconds before sending plaintext room code: %s", plainRoomCode)
+		logger.Infof("⏰ [Goroutine started] Waiting %v before sending plaintext room code: %s", plaintextDelay, plainRoomCode)
-		time.Sleep(19 * time.Second)
+		time.Sleep(plaintextDelay)
-		logger.Infof("⏰ [19 seconds elapsed] Now sending plaintext room code...")
+		logger.Infof("⏰ [%v elapsed] Now sending plaintext room code...", plaintextDelay)
 		if callback != nil {
 			// Send just the room code in plaintext (for easy copy/paste)
@@ -391,7 +401,7 @@ func (c *WebSocketClient) broadcastWithRoomCodeImage(gameTitle, roomCode string)
 		}
 	}()
-	c.log.Infof("✅ Step 4 complete: Goroutine launched, will fire in 19 seconds")
+	c.log.Infof("✅ Step 4 complete: Goroutine launched, will fire in %v", plaintextDelay)
 }
 // handleSessionEnded processes session.ended events
@@ -544,4 +554,3 @@ func (c *WebSocketClient) IsSubscribed() bool {
 	defer c.mu.Unlock()
 	return c.subscribedSession > 0
 }
--- a/bridge/kosmi/browser_auth.go
+++ b/bridge/kosmi/browser_auth.go
@@ -2,129 +2,55 @@ package bkosmi
 import (
 	"context"
 	"encoding/base64"
 	"encoding/json"
 	"fmt"
 	"strings"
 	"time"
 	"github.com/chromedp/chromedp"
 	"github.com/sirupsen/logrus"
 )
-const (
+// loginWithChromedp uses browser automation to log in and extract the JWT token.
-	// Check token expiry 7 days before it expires
+// This is the proven implementation that successfully authenticates users.
-	tokenExpiryCheckBuffer = 7 * 24 * time.Hour
+func loginWithChromedp(email, password string, log *logrus.Entry) (string, error) {
-)
+	log.Info("Starting browser automation for authentication...")
 // BrowserAuthManager handles automated browser-based authentication
 type BrowserAuthManager struct {
 	email          string
 	password       string
 	token          string
 	tokenExpiry    time.Time
 	log            *logrus.Entry
 	lastCheckTime  time.Time
 	checkInterval  time.Duration
 }
 // NewBrowserAuthManager creates a new browser-based authentication manager
 func NewBrowserAuthManager(email, password string, log *logrus.Entry) *BrowserAuthManager {
 	return &BrowserAuthManager{
 		email:         email,
 		password:      password,
 		log:           log,
 		checkInterval: 24 * time.Hour, // Check daily for token expiry
 	}
 }
 // GetToken returns a valid token, obtaining a new one via browser if needed
 func (b *BrowserAuthManager) GetToken() (string, error) {
 	// Check if we need to obtain or refresh the token
 	if b.token == "" || b.shouldRefreshToken() {
 		b.log.Info("Obtaining authentication token via browser automation...")
 		if err := b.loginViaBrowser(); err != nil {
 			return "", &AuthError{
 				Op:     "browser_login",
 				Reason: "failed to obtain token via browser",
 				Err:    err,
 			}
 		}
 	}
 	return b.token, nil
 }
 // shouldRefreshToken checks if the token needs to be refreshed
 func (b *BrowserAuthManager) shouldRefreshToken() bool {
 	// No token yet
 	if b.token == "" {
 		return true
 	}
 	// Token expired or about to expire
 	if time.Now().After(b.tokenExpiry.Add(-tokenExpiryCheckBuffer)) {
 		b.log.Info("Token expired or expiring soon, will refresh")
 		return true
 	}
 	// Periodic check (daily) to verify token is still valid
 	if time.Since(b.lastCheckTime) > b.checkInterval {
 		b.log.Debug("Performing periodic token validity check")
 		b.lastCheckTime = time.Now()
 		// For now, we trust the expiry time. Could add a validation check here.
 	}
 	return false
 }
 // loginViaBrowser uses chromedp to automate login and extract token
 func (b *BrowserAuthManager) loginViaBrowser() error {
 	// Set up Chrome options
 	opts := append(chromedp.DefaultExecAllocatorOptions[:],
 		chromedp.Flag("headless", true),
 		chromedp.Flag("disable-gpu", true),
 		chromedp.Flag("no-sandbox", true),
 		chromedp.Flag("disable-dev-shm-usage", true),
 	)
 	// Create allocator context
 	allocCtx, cancel := chromedp.NewExecAllocator(context.Background(), opts...)
 	defer cancel()
 	// Create context with timeout
-	ctx, cancel := chromedp.NewContext(allocCtx)
+	ctx, cancel := context.WithTimeout(context.Background(), 90*time.Second)
 	defer cancel()
-	// Set a reasonable timeout for the entire login process
+	// Set up chromedp options (headless mode)
-	ctx, cancel = context.WithTimeout(ctx, 90*time.Second)
+	opts := []chromedp.ExecAllocatorOption{
 		chromedp.NoFirstRun,
 		chromedp.NoDefaultBrowserCheck,
 		chromedp.DisableGPU,
 		chromedp.NoSandbox,
 		chromedp.Headless,
 	}
 	// Create allocator context
 	allocCtx, cancel := chromedp.NewExecAllocator(ctx, opts...)
 	defer cancel()
 	// Create browser context with no logging to suppress cookie errors
 	ctx, cancel = chromedp.NewContext(allocCtx, chromedp.WithLogf(func(string, ...interface{}) {}))
 	defer cancel()
 	var token string
-	// Run the browser automation tasks
+	// Run the automation tasks
 	err := chromedp.Run(ctx,
 		// Navigate to Kosmi
 		chromedp.Navigate("https://app.kosmi.io"),
 		// Wait for page to load completely
 		chromedp.WaitReady("body"),
-		chromedp.Sleep(2*time.Second),
+		chromedp.Sleep(3*time.Second),
-		// Click Login button (find by text content using JS with error handling)
+		// Find and click Login button
 		chromedp.ActionFunc(func(ctx context.Context) error {
-			// First, log what buttons we can see
+			log.Debug("Looking for Login button...")
 			var buttonTexts []string
 			chromedp.Evaluate(`
 				Array.from(document.querySelectorAll('button')).map(el => el.textContent.trim())
 			`, &buttonTexts).Do(ctx)
 			b.log.Debugf("Found buttons: %v", buttonTexts)
 			var found bool
 			if err := chromedp.Evaluate(`
 				(() => {
 					const buttons = Array.from(document.querySelectorAll('button'));
 					// Try both "Login" and "Log in"
 					const btn = buttons.find(el => {
 						const text = el.textContent.trim();
 						return text === 'Login' || text === 'Log in';
@@ -139,27 +65,22 @@ func (b *BrowserAuthManager) loginViaBrowser() error {
 				return err
 			}
 			if !found {
-				return fmt.Errorf("Login button not found (found buttons: %v)", buttonTexts)
+				return fmt.Errorf("Login button not found")
 			}
 			log.Debug("✓ Clicked Login button")
 			return nil
 		}),
-		// Wait for login modal
+		// Wait and click "Login with Email"
 		chromedp.Sleep(3*time.Second),
 		// Click "Login with Email" button
 		chromedp.ActionFunc(func(ctx context.Context) error {
-			// Log what buttons we can see now
+			log.Debug("Looking for 'Login with Email' button...")
 			var buttonTexts []string
 			chromedp.Evaluate(`
 				Array.from(document.querySelectorAll('button')).map(el => el.textContent.trim())
 			`, &buttonTexts).Do(ctx)
 			b.log.Debugf("After clicking Log in, found buttons: %v", buttonTexts)
 			var found bool
 			if err := chromedp.Evaluate(`
 				(() => {
-					const btn = Array.from(document.querySelectorAll('button')).find(el => el.textContent.includes('Email'));
+					const btn = Array.from(document.querySelectorAll('button')).find(el => 
 						el.textContent.includes('Email')
 					);
 					if (btn) {
 						btn.click();
 						return true;
@@ -170,293 +91,85 @@ func (b *BrowserAuthManager) loginViaBrowser() error {
 				return err
 			}
 			if !found {
-				return fmt.Errorf("Login with Email button not found (found buttons: %v)", buttonTexts)
+				return fmt.Errorf("'Login with Email' button not found")
 			}
 			log.Debug("✓ Clicked 'Login with Email' button")
 			return nil
 		}),
-		// Wait for email form
+		// Wait for form and fill credentials
 		chromedp.Sleep(3*time.Second),
 		chromedp.ActionFunc(func(ctx context.Context) error {
 			b.log.Debug("Waiting for password input...")
 			return nil
 		}),
 		chromedp.WaitVisible(`input[type="password"]`, chromedp.ByQuery),
 		chromedp.ActionFunc(func(ctx context.Context) error {
 			b.log.Debug("Password input found, preparing to fill form...")
 			return nil
 		}),
 		// Click on the email input to focus it
 		chromedp.Click(`input[placeholder*="Email"], input[placeholder*="Username"]`, chromedp.ByQuery),
 		chromedp.Sleep(200*time.Millisecond),
-		
+		chromedp.SendKeys(`input[placeholder*="Email"], input[placeholder*="Username"]`, email, chromedp.ByQuery),
 		// Type email character by character
 		chromedp.ActionFunc(func(ctx context.Context) error {
 			b.log.Debugf("Typing email: %s", b.email)
 			return chromedp.SendKeys(`input[placeholder*="Email"], input[placeholder*="Username"]`, b.email, chromedp.ByQuery).Do(ctx)
 		}),
 		chromedp.Sleep(500*time.Millisecond),
 		// Click on the password input to focus it
 		chromedp.Click(`input[type="password"]`, chromedp.ByQuery),
 		chromedp.Sleep(200*time.Millisecond),
-		
+		chromedp.SendKeys(`input[type="password"]`, password+"\n", chromedp.ByQuery),
 		// Type password character by character
 		chromedp.ActionFunc(func(ctx context.Context) error {
 			b.log.Debugf("Typing password (length: %d)", len(b.password))
 			return chromedp.SendKeys(`input[type="password"]`, b.password, chromedp.ByQuery).Do(ctx)
 		}),
 		// Verify password was filled correctly
 		chromedp.ActionFunc(func(ctx context.Context) error {
 			var actualLength int
 			chromedp.Evaluate(`
 				(() => {
 					const passwordInput = document.querySelector('input[type="password"]');
 					return passwordInput ? passwordInput.value.length : 0;
 				})()
 			`, &actualLength).Do(ctx)
 			b.log.Debugf("Password filled (actual length: %d, expected: %d)", actualLength, len(b.password))
 			if actualLength != len(b.password) {
 				return fmt.Errorf("password length mismatch: got %d, expected %d", actualLength, len(b.password))
 			}
 			return nil
 		}),
 		chromedp.Sleep(500*time.Millisecond),
-		// Wait a moment for form validation
+		// Wait for login to complete - check for modal to close
 		chromedp.Sleep(1*time.Second),
 		// Click the login submit button (be very specific)
 		chromedp.ActionFunc(func(ctx context.Context) error {
-			b.log.Debug("Attempting to click submit button...")
+			log.Debug("Waiting for login to complete...")
-			var result string
+			// Wait for the login modal to disappear (indicates successful login)
-			if err := chromedp.Evaluate(`
+			maxAttempts := 30 // 15 seconds total
 			for i := 0; i < maxAttempts; i++ {
 				time.Sleep(500 * time.Millisecond)
 				// Check if login modal is gone (successful login)
 				var modalGone bool
 				chromedp.Evaluate(`
 					(() => {
-					const buttons = Array.from(document.querySelectorAll('button'));
+						// Check if the email/password form is still visible
-					
+						const emailInput = document.querySelector('input[placeholder*="Email"], input[placeholder*="Username"]');
-					// Find the submit button in the login form
+						const passwordInput = document.querySelector('input[type="password"]');
-					// It should be visible, enabled, and contain "Login" but not be the main nav button
+						return !emailInput && !passwordInput;
 					const submitBtn = buttons.find(el => {
 						const text = el.textContent.trim();
 						const isLoginBtn = text === 'Login' || text.startsWith('Login');
 						const isEnabled = !el.disabled;
 						const isVisible = el.offsetParent !== null;
 						const isInForm = el.closest('form') !== null || el.closest('[role="dialog"]') !== null;
 						return isLoginBtn && isEnabled && isVisible && isInForm;
 					});
 					if (submitBtn) {
 						submitBtn.click();
 						return 'CLICKED: ' + submitBtn.textContent.trim();
 					}
 					return 'NOT_FOUND';
 					})()
-			`, &result).Do(ctx); err != nil {
+				`, &modalGone).Do(ctx)
 				return err
 			}
-			b.log.Debugf("Submit button result: %s", result)
+				if modalGone {
-			
+					log.Debug("✓ Login modal closed")
-			if result == "NOT_FOUND" {
+					// Modal is gone, wait a bit more for token to be set
-				return fmt.Errorf("Login submit button not found or not clickable")
+					time.Sleep(2 * time.Second)
-			}
+					chromedp.Evaluate(`localStorage.getItem('token')`, &token).Do(ctx)
-			
+					if token != "" {
-			b.log.Debug("Submit button clicked")
+						log.Info("✅ Authentication successful")
 						return nil
-		}),
+					}
 				}
-		// Wait for login to complete (page will reload/redirect)
+				// Check for error messages
 		chromedp.Sleep(5*time.Second),
 		// Check if login succeeded by looking for error messages
 		chromedp.ActionFunc(func(ctx context.Context) error {
 				var errorText string
 				chromedp.Evaluate(`
 					(() => {
-					const errorEl = document.querySelector('[role="alert"], .error, .alert-error');
+						const errorEl = document.querySelector('[role="alert"], .error, .error-message');
-					return errorEl ? errorEl.textContent : '';
+						return errorEl ? errorEl.textContent.trim() : '';
 					})()
 				`, &errorText).Do(ctx)
-			if errorText != "" {
+				if errorText != "" && errorText != "null" {
-				return fmt.Errorf("login failed with error: %s", errorText)
+					return fmt.Errorf("login failed: %s", errorText)
 				}
 			}
-			b.log.Debug("No error messages found, checking token...")
+			// Timeout - get whatever token is there
-			return nil
+			chromedp.Evaluate(`localStorage.getItem('token')`, &token).Do(ctx)
-		}),
+			if token == "" {
-		
+				return fmt.Errorf("login timeout: no token found")
 		// Extract token from localStorage
 		chromedp.Evaluate(`localStorage.getItem('token')`, &token),
 		// Verify the token is not anonymous by checking if user info exists
 		chromedp.ActionFunc(func(ctx context.Context) error {
 			var userInfo string
 			chromedp.Evaluate(`
 				(() => {
 					try {
 						const token = localStorage.getItem('token');
 						if (!token) return 'NO_TOKEN';
 						// Decode JWT payload (middle part)
 						const parts = token.split('.');
 						if (parts.length !== 3) return 'INVALID_TOKEN';
 						const payload = JSON.parse(atob(parts[1]));
 						return JSON.stringify({
 							sub: payload.sub,
 							typ: payload.typ,
 							isAnon: payload.sub ? false : true
 						});
 					} catch (e) {
 						return 'ERROR: ' + e.message;
 			}
-				})()
+			log.Warn("⚠ Login timeout but token was found")
 			`, &userInfo).Do(ctx)
 			b.log.Debugf("Token info from browser: %s", userInfo)
 			return nil
 		}),
 	)
 	if err != nil {
-		return fmt.Errorf("browser automation failed: %w", err)
+		return "", fmt.Errorf("browser automation failed: %w", err)
 	}
 	if token == "" {
-		return fmt.Errorf("no token found in localStorage after login")
+		return "", fmt.Errorf("failed to extract token from localStorage")
 	}
-	b.token = token
+	return token, nil
 	b.log.Infof("✅ Successfully obtained token via browser automation")
 	b.log.Infof("   Email used: %s", b.email)
 	b.log.Infof("   Token (first 50 chars): %s...", token[:min(50, len(token))])
 	b.log.Infof("   Token (last 50 chars): ...%s", token[max(0, len(token)-50):])
 	// Parse token to get expiry
 	if err := b.parseTokenExpiry(); err != nil {
 		b.log.Warnf("Failed to parse token expiry: %v", err)
 		// Default to 1 year if we can't parse
 		b.tokenExpiry = time.Now().Add(365 * 24 * time.Hour)
 	}
 	b.lastCheckTime = time.Now()
 	expiresIn := time.Until(b.tokenExpiry)
 	b.log.Infof("Token expires in: %v", expiresIn.Round(24*time.Hour))
 	return nil
 }
 // parseTokenExpiry extracts the expiry time from the JWT token
 func (b *BrowserAuthManager) parseTokenExpiry() error {
 	// JWT format: header.payload.signature
 	parts := strings.Split(b.token, ".")
 	if len(parts) != 3 {
 		return fmt.Errorf("invalid JWT format")
 	}
 	// Decode the payload (base64url without padding)
 	payload := parts[1]
 	// Add padding if needed
 	switch len(payload) % 4 {
 	case 2:
 		payload += "=="
 	case 3:
 		payload += "="
 	}
 	// Replace URL-safe characters
 	payload = strings.ReplaceAll(payload, "-", "+")
 	payload = strings.ReplaceAll(payload, "_", "/")
 	decoded, err := base64.StdEncoding.DecodeString(payload)
 	if err != nil {
 		return fmt.Errorf("failed to decode JWT payload: %w", err)
 	}
 	// Parse JSON
 	var claims struct {
 		Exp int64  `json:"exp"`
 		Sub string `json:"sub"`
 		Typ string `json:"typ"`
 	}
 	if err := json.Unmarshal(decoded, &claims); err != nil {
 		return fmt.Errorf("failed to parse JWT claims: %w", err)
 	}
 	if claims.Exp == 0 {
 		return fmt.Errorf("no expiry in token")
 	}
 	b.tokenExpiry = time.Unix(claims.Exp, 0)
 	b.log.Infof("   Token user ID (sub): %s", claims.Sub)
 	b.log.Infof("   Token type (typ): %s", claims.Typ)
 	return nil
 }
 func min(a, b int) int {
 	if a < b {
 		return a
 	}
 	return b
 }
 func max(a, b int) int {
 	if a > b {
 		return a
 	}
 	return b
 }
 // IsAuthenticated checks if we have a valid token
 func (b *BrowserAuthManager) IsAuthenticated() bool {
 	return b.token != "" && time.Now().Before(b.tokenExpiry)
 }
 // GetUserID returns the user ID from the token (if available)
 func (b *BrowserAuthManager) GetUserID() string {
 	if b.token == "" {
 		return ""
 	}
 	parts := strings.Split(b.token, ".")
 	if len(parts) != 3 {
 		return ""
 	}
 	payload := parts[1]
 	switch len(payload) % 4 {
 	case 2:
 		payload += "=="
 	case 3:
 		payload += "="
 	}
 	payload = strings.ReplaceAll(payload, "-", "+")
 	payload = strings.ReplaceAll(payload, "_", "/")
 	decoded, err := base64.StdEncoding.DecodeString(payload)
 	if err != nil {
 		return ""
 	}
 	var claims struct {
 		Sub string `json:"sub"`
 	}
 	if err := json.Unmarshal(decoded, &claims); err != nil {
 		return ""
 	}
 	return claims.Sub
 }
--- a/bridge/kosmi/graphql_ws_client.go
+++ b/bridge/kosmi/graphql_ws_client.go
@@ -18,6 +18,10 @@ const (
 	kosmiHTTPURL = "https://engine.kosmi.io/"
 	userAgent    = "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36"
 	appVersion   = "4364"
 	pingInterval = 30 * time.Second
 	pongTimeout  = 90 * time.Second
 	writeWait    = 10 * time.Second
 )
 // GraphQL-WS Protocol message types
@@ -34,11 +38,13 @@ const (
 type GraphQLWSClient struct {
 	roomURL         string
 	roomID          string
 	token           string // JWT token (can be empty for anonymous)
 	log             *logrus.Entry
 	conn            *websocket.Conn
 	messageCallback func(*NewMessagePayload)
 	connected       bool
 	mu              sync.RWMutex
 	writeMu         sync.Mutex
 	done            chan struct{}
 }
@@ -50,10 +56,11 @@ type WSMessage struct {
 }
 // NewGraphQLWSClient creates a new native WebSocket client
-func NewGraphQLWSClient(roomURL, roomID string, log *logrus.Entry) *GraphQLWSClient {
+func NewGraphQLWSClient(roomURL, roomID, token string, log *logrus.Entry) *GraphQLWSClient {
 	return &GraphQLWSClient{
 		roomURL: roomURL,
 		roomID:  roomID,
 		token:   token,
 		log:     log,
 		done:    make(chan struct{}),
 	}
@@ -63,12 +70,19 @@ func NewGraphQLWSClient(roomURL, roomID string, log *logrus.Entry) *GraphQLWSCli
 func (c *GraphQLWSClient) Connect() error {
 	c.log.Info("Connecting to Kosmi via native WebSocket")
-	// Step 1: Get anonymous token
+	// Step 1: Get token (use provided or get anonymous)
 	var token string
 	if c.token != "" {
 		c.log.Debug("Using provided authentication token")
 		token = c.token
 	} else {
 		c.log.Debug("Getting anonymous token...")
-	token, err := c.getAnonymousToken()
+		var err error
 		token, err = c.getAnonymousToken()
 		if err != nil {
 			return fmt.Errorf("failed to get token: %w", err)
 		}
 	}
 	// Step 2: Connect to WebSocket
 	c.log.Debug("Establishing WebSocket connection...")
@@ -199,9 +213,17 @@ func (c *GraphQLWSClient) Connect() error {
 	c.connected = true
 	c.mu.Unlock()
 	// Set up ping/pong keepalive
 	conn.SetReadDeadline(time.Now().Add(pongTimeout))
 	conn.SetPongHandler(func(string) error {
 		conn.SetReadDeadline(time.Now().Add(pongTimeout))
 		return nil
 	})
 	c.log.Info("Native WebSocket client connected and ready")
-	// Start message listener
+	// Start keepalive pinger and message listener
 	go c.startPing()
 	go c.listenForMessages()
 	return nil
@@ -350,7 +372,10 @@ func (c *GraphQLWSClient) SendMessage(text string) error {
 		},
 	}
-	if err := c.conn.WriteJSON(msg); err != nil {
+	c.writeMu.Lock()
 	err := c.conn.WriteJSON(msg)
 	c.writeMu.Unlock()
 	if err != nil {
 		return fmt.Errorf("failed to send message: %w", err)
 	}
@@ -387,3 +412,33 @@ func (c *GraphQLWSClient) IsConnected() bool {
 	return c.connected
 }
 // Done returns a channel that is closed when the client disconnects
 func (c *GraphQLWSClient) Done() <-chan struct{} {
 	return c.done
 }
 // startPing sends WebSocket ping frames at a regular interval to keep the
 // connection alive and detect stale connections early.
 func (c *GraphQLWSClient) startPing() {
 	ticker := time.NewTicker(pingInterval)
 	defer ticker.Stop()
 	for {
 		select {
 		case <-ticker.C:
 			c.writeMu.Lock()
 			err := c.conn.WriteControl(
 				websocket.PingMessage, nil, time.Now().Add(writeWait),
 			)
 			c.writeMu.Unlock()
 			if err != nil {
 				c.log.Warnf("Ping failed, connection likely dead: %v", err)
 				c.conn.Close()
 				return
 			}
 		case <-c.done:
 			return
 		}
 	}
 }
--- a/bridge/kosmi/kosmi.go
+++ b/bridge/kosmi/kosmi.go
@@ -22,6 +22,7 @@ type KosmiClient interface {
 	SendMessage(text string) error
 	OnMessage(callback func(*NewMessagePayload))
 	IsConnected() bool
 	Done() <-chan struct{}
 }
 // Bkosmi represents the Kosmi bridge
@@ -31,7 +32,8 @@ type Bkosmi struct {
 	roomID                 string
 	roomURL                string
 	connected              bool
-	msgChannel    chan config.Message
+	intentionalDisconnect  bool
 	authDone               bool // Signals that authentication is complete (like IRC bridge)
 	jackboxClient          *jackbox.Client
 }
@@ -39,7 +41,6 @@ type Bkosmi struct {
 func New(cfg *bridge.Config) bridge.Bridger {
 	b := &Bkosmi{
 		Config: cfg,
 		msgChannel: make(chan config.Message, 100),
 	}
 	return b
@@ -63,8 +64,42 @@ func (b *Bkosmi) Connect() error {
 	b.roomID = roomID
 	b.Log.Infof("Extracted room ID: %s", b.roomID)
-	// Create GraphQL WebSocket client (pure Go, no Playwright!)
+	// Check if we need authentication
-	b.client = NewGraphQLWSClient(b.roomURL, b.roomID, b.Log)
+	email := b.GetString("Email")
 	password := b.GetString("Password")
 	var token string
 	if email != "" && password != "" {
 		// Try to load cached token first
 		cachedToken, err := loadTokenCache(email, b.Log)
 		if err != nil {
 			b.Log.Warnf("Failed to load token cache: %v", err)
 		}
 		if cachedToken != nil {
 			// Use cached token
 			token = cachedToken.Token
 		} else {
 			// No valid cache, authenticate with browser
 			b.Log.Info("Authenticating with email/password...")
 			token, err = loginWithChromedp(email, password, b.Log)
 			if err != nil {
 				return fmt.Errorf("authentication failed: %w", err)
 			}
 			b.Log.Info("✅ Authentication successful")
 			// Save token to cache
 			if err := saveTokenCache(token, email, b.Log); err != nil {
 				b.Log.Warnf("Failed to cache token: %v", err)
 			}
 		}
 	} else {
 		b.Log.Info("No credentials provided, using anonymous access")
 		// token will be empty, client will get anonymous token
 	}
 	// Create GraphQL WebSocket client with token
 	b.client = NewGraphQLWSClient(b.roomURL, b.roomID, token, b.Log)
 	// Register message handler
 	b.client.OnMessage(b.handleIncomingMessage)
@@ -75,8 +110,12 @@ func (b *Bkosmi) Connect() error {
 	}
 	b.connected = true
 	b.intentionalDisconnect = false
 	b.authDone = true // Signal that authentication is complete
 	b.Log.Info("Successfully connected to Kosmi")
 	go b.watchConnection()
 	return nil
 }
@@ -84,23 +123,32 @@ func (b *Bkosmi) Connect() error {
 func (b *Bkosmi) Disconnect() error {
 	b.Log.Info("Disconnecting from Kosmi")
 	b.intentionalDisconnect = true
 	b.connected = false
 	if b.client != nil {
 		if err := b.client.Disconnect(); err != nil {
 			b.Log.Errorf("Error closing Kosmi client: %v", err)
 		}
 	}
 	close(b.msgChannel)
 	b.connected = false
 	return nil
 }
 // JoinChannel joins a Kosmi room (no-op as we connect to a specific room)
 func (b *Bkosmi) JoinChannel(channel config.ChannelInfo) error {
 	// Wait for authentication to complete before proceeding
 	// This ensures the WebSocket connection is fully established (like IRC bridge)
 	for {
 		if b.authDone {
 			break
 		}
 		time.Sleep(time.Second)
 	}
 	// Kosmi doesn't have a concept of joining channels after connection
 	// The room is specified in the configuration and joined on Connect()
-	b.Log.Infof("Channel %s is already connected via room URL", channel.Name)
+	b.Log.Debugf("Channel ready: %s (connected via room URL)", channel.Name)
 	return nil
 }
@@ -171,6 +219,19 @@ func (b *Bkosmi) handleIncomingMessage(payload *NewMessagePayload) {
 		}
 	}
 	// Handle !votes command: query current game vote tally
 	if strings.TrimSpace(body) == "!votes" {
 		b.Log.Infof("!votes command from %s", username)
 		b.Remote <- config.Message{
 			Username: "system",
 			Text:     "votes",
 			Channel:  "main",
 			Account:  b.Account,
 			Event:    config.EventVotesQuery,
 		}
 		return
 	}
 	// Create Matterbridge message
 	// Use "main" as the channel name for gateway matching
 	// Don't add prefix here - let the gateway's RemoteNickFormat handle it
@@ -195,6 +256,30 @@ func (b *Bkosmi) handleIncomingMessage(payload *NewMessagePayload) {
 	b.Remote <- rmsg
 }
 // watchConnection monitors the WebSocket client and sends EventFailure
 // to the gateway when an unexpected disconnect occurs, triggering automatic
 // reconnection via the gateway's reconnectBridge() mechanism.
 func (b *Bkosmi) watchConnection() {
 	<-b.client.Done()
 	if b.intentionalDisconnect {
 		return
 	}
 	b.Log.Warn("Kosmi connection lost unexpectedly, requesting reconnection")
 	b.connected = false
 	if b.Remote != nil {
 		b.Remote <- config.Message{
 			Username: "system",
 			Text:     "reconnect",
 			Channel:  "",
 			Account:  b.Account,
 			Event:    config.EventFailure,
 		}
 	}
 }
 // extractRoomID extracts the room ID from a Kosmi room URL
 // Supports formats:
 //   - https://app.kosmi.io/room/@roomname
--- a/bridge/kosmi/token_cache.go
+++ b/bridge/kosmi/token_cache.go
@@ -0,0 +1,197 @@
 package bkosmi
 import (
 	"encoding/base64"
 	"encoding/json"
 	"fmt"
 	"os"
 	"path/filepath"
 	"strings"
 	"time"
 	"github.com/sirupsen/logrus"
 )
 // TokenCache represents a cached JWT token with metadata
 type TokenCache struct {
 	Token     string    `json:"token"`
 	Email     string    `json:"email"`      // To verify it's for the right account
 	ExpiresAt time.Time `json:"expires_at"` // When the token expires
 	SavedAt   time.Time `json:"saved_at"`   // When we cached it
 }
 const (
 	tokenCacheFile = "kosmi_token_cache.json"
 	// Refresh token if it expires within this window
 	tokenRefreshBuffer = 7 * 24 * time.Hour // 1 week before expiry
 )
 // getTokenCachePath returns the path to the token cache file
 // Prioritizes MATTERBRIDGE_DATA_DIR env var, falls back to ~/.matterbridge
 func getTokenCachePath() (string, error) {
 	var cacheDir string
 	// Check for environment variable (for Docker volumes)
 	if dataDir := os.Getenv("MATTERBRIDGE_DATA_DIR"); dataDir != "" {
 		cacheDir = dataDir
 	} else {
 		// Fall back to home directory for local development
 		homeDir, err := os.UserHomeDir()
 		if err != nil {
 			return "", fmt.Errorf("failed to get home directory: %w", err)
 		}
 		cacheDir = filepath.Join(homeDir, ".matterbridge")
 	}
 	// Create cache directory if it doesn't exist
 	if err := os.MkdirAll(cacheDir, 0700); err != nil {
 		return "", fmt.Errorf("failed to create cache directory: %w", err)
 	}
 	return filepath.Join(cacheDir, tokenCacheFile), nil
 }
 // parseJWTExpiry extracts the expiry time from a JWT token
 func parseJWTExpiry(token string) (time.Time, error) {
 	// JWT format: header.payload.signature
 	parts := strings.Split(token, ".")
 	if len(parts) != 3 {
 		return time.Time{}, fmt.Errorf("invalid JWT format")
 	}
 	// Decode the payload (second part)
 	payload := parts[1]
 	// JWT uses base64url encoding, which may not have padding
 	// Add padding if needed
 	if len(payload)%4 != 0 {
 		payload += strings.Repeat("=", 4-len(payload)%4)
 	}
 	decoded, err := base64.URLEncoding.DecodeString(payload)
 	if err != nil {
 		// Try standard base64 if URL encoding fails
 		decoded, err = base64.StdEncoding.DecodeString(payload)
 		if err != nil {
 			return time.Time{}, fmt.Errorf("failed to decode JWT payload: %w", err)
 		}
 	}
 	// Parse the JSON payload
 	var claims struct {
 		Exp int64 `json:"exp"` // Expiry time as Unix timestamp
 	}
 	if err := json.Unmarshal(decoded, &claims); err != nil {
 		return time.Time{}, fmt.Errorf("failed to parse JWT claims: %w", err)
 	}
 	if claims.Exp == 0 {
 		return time.Time{}, fmt.Errorf("no expiry time in JWT")
 	}
 	return time.Unix(claims.Exp, 0), nil
 }
 // loadTokenCache loads a cached token from disk
 func loadTokenCache(email string, log *logrus.Entry) (*TokenCache, error) {
 	cachePath, err := getTokenCachePath()
 	if err != nil {
 		return nil, fmt.Errorf("failed to get cache path: %w", err)
 	}
 	// Check if cache file exists
 	if _, err := os.Stat(cachePath); os.IsNotExist(err) {
 		return nil, nil // No cache file, not an error
 	}
 	// Read cache file
 	data, err := os.ReadFile(cachePath)
 	if err != nil {
 		return nil, fmt.Errorf("failed to read cache file: %w", err)
 	}
 	// Parse cache
 	var cache TokenCache
 	if err := json.Unmarshal(data, &cache); err != nil {
 		return nil, fmt.Errorf("failed to parse cache file: %w", err)
 	}
 	// Verify it's for the correct email
 	if cache.Email != email {
 		log.Debugf("Cached token is for different email (%s vs %s), ignoring", cache.Email, email)
 		return nil, nil
 	}
 	// Check if token is expired or close to expiring
 	now := time.Now()
 	if now.After(cache.ExpiresAt) {
 		log.Info("Cached token has expired")
 		return nil, nil
 	}
 	if now.After(cache.ExpiresAt.Add(-tokenRefreshBuffer)) {
 		log.Infof("Cached token expires soon (%s), will refresh", cache.ExpiresAt.Format(time.RFC3339))
 		return nil, nil
 	}
 	timeUntilExpiry := cache.ExpiresAt.Sub(now)
 	log.Infof("✅ Using cached token (expires in %s)", timeUntilExpiry.Round(24*time.Hour))
 	return &cache, nil
 }
 // saveTokenCache saves a token to disk
 func saveTokenCache(token, email string, log *logrus.Entry) error {
 	cachePath, err := getTokenCachePath()
 	if err != nil {
 		return fmt.Errorf("failed to get cache path: %w", err)
 	}
 	// Parse token expiry
 	expiresAt, err := parseJWTExpiry(token)
 	if err != nil {
 		log.Warnf("Failed to parse token expiry, will not cache: %v", err)
 		return nil // Don't fail the connection, just skip caching
 	}
 	// Create cache structure
 	cache := TokenCache{
 		Token:     token,
 		Email:     email,
 		ExpiresAt: expiresAt,
 		SavedAt:   time.Now(),
 	}
 	// Marshal to JSON
 	data, err := json.MarshalIndent(cache, "", "  ")
 	if err != nil {
 		return fmt.Errorf("failed to marshal cache: %w", err)
 	}
 	// Write to file with restricted permissions
 	if err := os.WriteFile(cachePath, data, 0600); err != nil {
 		return fmt.Errorf("failed to write cache file: %w", err)
 	}
 	timeUntilExpiry := expiresAt.Sub(time.Now())
 	log.Infof("💾 Token cached (expires in %s)", timeUntilExpiry.Round(24*time.Hour))
 	return nil
 }
 // clearTokenCache removes the cached token
 func clearTokenCache(log *logrus.Entry) error {
 	cachePath, err := getTokenCachePath()
 	if err != nil {
 		return fmt.Errorf("failed to get cache path: %w", err)
 	}
 	if err := os.Remove(cachePath); err != nil && !os.IsNotExist(err) {
 		return fmt.Errorf("failed to remove cache file: %w", err)
 	}
 	log.Debug("Token cache cleared")
 	return nil
 }
--- a/BIN
+++ b/BIN
--- a/chat-summaries/2025-10-31_00-06-47_websocket-hook-fix.md
+++ b/chat-summaries/2025-10-31_00-06-47_websocket-hook-fix.md
@@ -1,218 +0,0 @@
 # Chat Summary: WebSocket Hook Fix - 2025-10-31 00:06:47
 ## Session Overview
 **Date**: October 31, 2025, 00:06:47  
 **Task**: Fix message interception in the Kosmi bridge to ensure messages are captured correctly  
 **Status**: ✅ **COMPLETED AND VERIFIED**
 ## Problem Statement
 The Kosmi bridge was successfully connecting to the room via headless Chrome, but messages sent in the Kosmi chat were not appearing in the bridge output. The logs showed:
 ```
 INFO ✓ WebSocket hook confirmed installed
 INFO Status: No WebSocket connection detected yet
 ```
 This indicated that while the WebSocket interception script was being injected, it was not capturing the WebSocket connection that Kosmi was creating.
 ## Root Cause
 The WebSocket hook was being injected **after** the page loaded, which meant:
 1. Kosmi's JavaScript had already created the WebSocket connection
 2. Our hook script ran too late to intercept the `window.WebSocket` constructor
 3. Messages were flowing through the WebSocket but our interceptor never saw them
 ## Solution
 ### Key Insight from Chrome Extension
 Examining `.examples/chrome-extension/inject.js` revealed the correct approach:
 1. **Hook the raw `window.WebSocket` constructor** (not Apollo Client or other abstractions)
 2. **Wrap both `addEventListener` and `onmessage`** to capture messages regardless of how Kosmi's code listens
 3. **Inject the hook BEFORE any page scripts run**
 ### Critical Implementation Change
 Changed from post-load injection:
 ```go
 // ❌ WRONG - Too late!
 chromedp.Run(ctx,
    chromedp.Navigate(roomURL),
    chromedp.WaitReady("body"),
    chromedp.Evaluate(hookScript, nil), // WebSocket already created!
 )
 ```
 To pre-load injection using Chrome DevTools Protocol:
 ```go
 // ✅ CORRECT - Runs before page scripts!
 chromedp.Run(ctx, chromedp.ActionFunc(func(ctx context.Context) error {
    _, err := page.AddScriptToEvaluateOnNewDocument(hookScript).Do(ctx)
    return err
 }))
 chromedp.Run(ctx,
    chromedp.Navigate(roomURL),
    chromedp.WaitReady("body"),
 )
 ```
 ### Updated Method in chromedp_client.go
 ```go
 func (c *ChromeDPClient) injectWebSocketHookBeforeLoad() error {
    script := c.getWebSocketHookScript()
    return chromedp.Run(c.ctx, chromedp.ActionFunc(func(ctx context.Context) error {
        // Use Page.addScriptToEvaluateOnNewDocument to inject before page load
        // This is the proper way to inject scripts that run before page JavaScript
        _, err := page.AddScriptToEvaluateOnNewDocument(script).Do(ctx)
        return err
    }))
 }
 ```
 ## Verification
 After applying the fix, the test program showed:
 ```
 INFO[2025-10-31T00:02:39-04:00] Injecting WebSocket interceptor (runs before page load)...
 INFO[2025-10-31T00:02:40-04:00] Navigating to Kosmi room: https://app.kosmi.io/room/@hyperspaceout
 INFO[2025-10-31T00:02:41-04:00] ✓ WebSocket hook confirmed installed
 INFO[2025-10-31T00:02:44-04:00] Status: WebSocket connection intercepted  ← SUCCESS!
 INFO[2025-10-31T00:02:44-04:00] Successfully connected to Kosmi via Chrome
 INFO[2025-10-31T00:02:45-04:00] Processing 43 messages from queue
 INFO[2025-10-31T00:02:51-04:00] Received message: [00:02:51] cottongin: [Kosmi] <cottongin> okay
 INFO[2025-10-31T00:02:55-04:00] Received message: [00:02:55] cottongin: [Kosmi] <cottongin> it works
 ```
 ✅ Messages now appear in real-time!
 ## Files Modified
 ### 1. bridge/kosmi/chromedp_client.go
 **Change**: Updated `injectWebSocketHookBeforeLoad()` to use `page.AddScriptToEvaluateOnNewDocument`
 ```go
 func (c *ChromeDPClient) injectWebSocketHookBeforeLoad() error {
    script := c.getWebSocketHookScript()
    return chromedp.Run(c.ctx, chromedp.ActionFunc(func(ctx context.Context) error {
        _, err := page.AddScriptToEvaluateOnNewDocument(script).Do(ctx)
        return err
    }))
 }
 ```
 **Impact**: This is the core fix that ensures the WebSocket hook runs before any page JavaScript.
 ### 2. QUICKSTART.md
 **Changes**:
 - Added Chrome/Chromium as a prerequisite
 - Updated expected output to show ChromeDP-specific messages
 - Updated troubleshooting section with Chrome-specific checks
 - Added new troubleshooting section for message interception issues
 - Updated dependency installation to use `chromedp` instead of `gorilla/websocket`
 ### 3. README.md
 **Changes**:
 - Added "Headless Chrome automation" and "WebSocket interception using Chrome DevTools Protocol" to features
 - Updated architecture section to explain the ChromeDP approach
 - Added "Why Headless Chrome?" section explaining the rationale
 - Added Chrome/Chromium to prerequisites
 - Updated "How It Works" section to describe the ChromeDP flow
 - Added "Critical Implementation Detail" section about pre-load injection
 - Updated message flow diagram
 - Updated file structure to include `chromedp_client.go`
 - Updated troubleshooting to include Chrome-specific checks
 ### 4. LESSONS_LEARNED.md (NEW)
 **Purpose**: Comprehensive documentation of the WebSocket interception problem and solution
 **Contents**:
 - Problem description and evolution of approaches
 - Detailed explanation of why post-load injection fails
 - Complete code examples of wrong vs. correct approaches
 - Implementation details in chromedp_client.go
 - Verification steps
 - Key takeaways
 - How to apply this pattern to other projects
 ## Key Takeaways
 1. **Timing is Critical**: WebSocket interception must happen before the WebSocket is created
 2. **Use the Right CDP Method**: `Page.addScriptToEvaluateOnNewDocument` is specifically designed for pre-page-load injection
 3. **Hook at the Lowest Level**: Hook `window.WebSocket` constructor, not higher-level abstractions
 4. **Reference Working Code**: The Chrome extension's `inject.js` was the key to understanding the correct approach
 5. **Verify with Diagnostics**: Status checks like "WebSocket connection intercepted" are essential for debugging
 ## Impact on Full Matterbridge Integration
 ✅ **No additional changes needed!**
 The fix in `chromedp_client.go` automatically applies to:
 - The test program (`cmd/test-kosmi/main.go`)
 - The full Matterbridge integration (`bridge/kosmi/kosmi.go`)
 Both use the same `ChromeDPClient` implementation, so the fix works everywhere.
 ## Testing Recommendations
 To verify the bridge is working correctly:
 1. **Check connection status**:
   ```
   ✓ WebSocket hook confirmed installed
   Status: WebSocket connection intercepted
   ```
 2. **Send a test message** in the Kosmi room from a browser
 3. **Verify message appears** in the bridge output:
   ```
   INFO Received message: [HH:MM:SS] username: [Kosmi] <username> message
   ```
 ## References
 - Chrome DevTools Protocol: https://chromedevtools.github.io/devtools-protocol/
 - `Page.addScriptToEvaluateOnNewDocument`: https://chromedevtools.github.io/devtools-protocol/tot/Page/#method-addScriptToEvaluateOnNewDocument
 - chromedp documentation: https://pkg.go.dev/github.com/chromedp/chromedp
 - Original Chrome extension: `.examples/chrome-extension/inject.js`
 ## Next Steps
 With message reception now working, the bridge is ready for:
 1. ✅ **Testing message relay**: Kosmi → IRC (receiving works)
 2. 🔄 **Testing message sending**: IRC → Kosmi (needs testing)
 3. 🔄 **Full integration**: Setting up with real IRC server
 4. 🔄 **Production deployment**: Running as a service
 ## Conclusion
 The fix was a single-line change to use the correct Chrome DevTools Protocol method, but it required deep understanding of:
 - Browser execution order
 - WebSocket lifecycle
 - Chrome DevTools Protocol capabilities
 - The difference between post-load and pre-load script injection
 This lesson learned is now documented in `LESSONS_LEARNED.md` for future reference and can be applied to any project requiring browser API interception in headless automation.
 ---
 **Session Duration**: ~30 minutes  
 **Messages Exchanged**: 1 user message requesting the fix be applied to the full relay  
 **Outcome**: ✅ Complete success - messages now flow correctly through the bridge
--- a/chat-summaries/2025-10-31_09-43-00_native-websocket-investigation.md
+++ b/chat-summaries/2025-10-31_09-43-00_native-websocket-investigation.md
@@ -1,267 +0,0 @@
 # Chat Summary: Native WebSocket Investigation - 2025-10-31 09:43:00
 ## Session Overview
 **Date**: October 31, 2025, 09:43:00  
 **Task**: Reverse engineer Kosmi WebSocket API to replace ChromeDP with native Go client  
 **Status**: ⚠️ **BLOCKED - WebSocket server requires browser context**
 ## Problem Statement
 The goal was to replace the resource-heavy ChromeDP implementation (~100-200MB RAM, 3-5s startup) with a lightweight native Go WebSocket client (~10-20MB RAM, <1s startup).
 ## Investigation Summary
 ### Phase 1: Authentication Data Capture ✅
 Created `cmd/capture-auth/main.go` to intercept and log all authentication data from a working ChromeDP session.
 **Key Findings**:
 1. **JWT Token Discovery**: WebSocket uses JWT token in `connection_init` payload
 2. **Token Structure**:
   ```json
   {
     "aud": "kosmi",
     "exp": 1793367309,  // 1 YEAR expiration!
     "sub": "a067ec32-ad5c-4831-95cc-0f88bdb33587",  // Anonymous user ID
     "typ": "access"
   }
   ```
 3. **Connection Init Format**:
   ```json
   {
     "type": "connection_init",
     "payload": {
       "token": "eyJhbGc...",  // JWT token
       "ua": "TW96aWxs...",     // Base64-encoded User-Agent
       "v": "4364",              // App version
       "r": ""                   // Room (empty for anonymous)
     }
   }
   ```
 4. **No Cookies Required**: The `g_state` cookie is not needed for WebSocket auth
 **Output**: `auth-data.json` with 104 WebSocket frames captured, 77 network requests logged
 ### Phase 2: Direct Connection Tests ❌
 Created three test programs to attempt native WebSocket connections:
 **Test 1**: `cmd/test-websocket/main.go`
 - Mode 1: With JWT token
 - Mode 2: No authentication  
 - Mode 3: Origin header only
 **Test 2**: `cmd/test-websocket-direct/main.go`
 - Direct WebSocket with captured JWT token
 - All required headers (Origin, User-Agent, etc.)
 **Test 3**: `cmd/test-session/main.go`
 - Visit room page first to establish session
 - Use cookies from session
 - Connect WebSocket with token
 **Results**: ALL tests returned `403 Forbidden` during WebSocket handshake
 ### Phase 3: Root Cause Analysis 🔍
 **The Problem**:
 - 403 occurs during WebSocket **handshake**, BEFORE `connection_init`
 - This means the server rejects the connection based on the CLIENT, not the authentication
 - ChromeDP works because it's a real browser
 - Native Go client is detected and blocked
 **Likely Causes**:
 1. **TLS Fingerprinting**: Go's TLS implementation has a different fingerprint than Chrome
 2. **Cloudflare Protection**: Server uses bot detection (Captcha/challenge)
 3. **WebSocket Extensions**: Browser sends specific extensions we're not replicating
 4. **CDN Security**: Via header shows "1.1 Caddy" - reverse proxy with security rules
 **Evidence**:
 ```
 Response headers from 403:
  Cache-Control: [max-age=0, private, must-revalidate]
  Server: [Cowboy]
  Via: [1.1 Caddy]
  Alt-Svc: [h3=":443"; ma=2592000]
 ```
 ## Files Created
 1. `cmd/capture-auth/main.go` - Authentication data capture tool
 2. `cmd/test-websocket/main.go` - Multi-mode WebSocket test tool
 3. `cmd/test-websocket-direct/main.go` - Direct token-based test
 4. `cmd/test-session/main.go` - Session-based connection test
 5. `AUTH_FINDINGS.md` - Detailed authentication documentation
 6. `WEBSOCKET_403_ANALYSIS.md` - Comprehensive 403 error analysis
 7. `auth-data.json` - Captured authentication data (104 WS frames)
 ## Key Insights
 ### What We Learned
 1. **Kosmi uses standard JWT authentication** - Well-documented format
 2. **Tokens are long-lived** - 1 year expiration means minimal refresh needs
 3. **Anonymous access works** - No login credentials needed
 4. **GraphQL-WS protocol** - Standard protocol, not proprietary
 5. **The blocker is NOT authentication** - It's client detection/fingerprinting
 ### Why ChromeDP Works
 ChromeDP bypasses all protection because it:
 - ✅ Is literally Chrome (correct TLS fingerprint)
 - ✅ Executes JavaScript (passes challenges)
 - ✅ Has complete browser context
 - ✅ Sends all expected headers/extensions
 - ✅ Looks like a real user to security systems
 ## Recommendations
 ### Option A: Optimize ChromeDP (RECOMMENDED ⭐)
 **Rationale**:
 - It's the ONLY approach that works 100%
 - Security bypass is likely impossible without reverse engineering Cloudflare
 - 100-200MB RAM is acceptable for a bridge service
 - Startup time is one-time cost
 **Optimizations**:
 ```go
 // Use headless-shell instead of full Chrome (~50MB savings)
 FROM chromedp/headless-shell:latest
 // Reduce memory footprint
 chromedp.Flag("single-process", true),
 chromedp.Flag("disable-dev-shm-usage", true),
 chromedp.Flag("disable-gpu", true),
 // Keep instance alive (avoid restart cost)
 type ChromeDPPool struct {
    instance *ChromeDPClient
    mu       sync.Mutex
 }
 ```
 **Expected Results**:
 - Memory: ~100MB (vs ~200MB currently)
 - Startup: 3-5s (one-time, then instant)
 - Reliability: 100%
 ### Option B: Hybrid Token Caching
 **IF** we could bypass 403 (which we can't):
 ```go
 // Get token via ChromeDP once per year
 token := getTokenViaChromeDPOnce()
 cacheToken(token, 11*months)
 // Use native WebSocket with cached token
 conn := nativeWebSocketConnect(token)
 ```
 **Problem**: Still returns 403, so this doesn't help
 ### Option C: HTTP POST Polling (FALLBACK)
 From `FINDINGS.md` - HTTP POST works without authentication:
 ```bash
 curl -X POST https://engine.kosmi.io/ \
  -H "Content-Type: application/json" \
  -d '{"query": "{ messages { id body } }"}'
 ```
 **Pros**:
 - ✅ No browser needed
 - ✅ Lightweight
 - ✅ No 403 errors
 **Cons**:
 - ❌ Not real-time (need to poll)
 - ❌ Higher latency (1-2s minimum)
 - ❌ More bandwidth
 - ❌ Might still be rate-limited
 ## Decision Point
 **Question for User**: Which approach do you prefer?
 1. **Keep and optimize ChromeDP** (reliable, heavier)
   - Stick with what works
   - Optimize for memory/startup
   - Accept ~100MB overhead
 2. **Try HTTP POST polling** (lighter, but not real-time)
   - Abandon WebSocket
   - Poll every 1-2 seconds
   - Accept latency trade-off
 3. **Continue native WebSocket investigation** (might be futile)
   - Attempt TLS fingerprint spoofing
   - Try different Go TLS libraries
   - Reverse engineer Cloudflare protection
   - **Warning**: May never succeed
 ## Current Status
 ### Completed ✅
 - [x] Capture authentication data from ChromeDP
 - [x] Create test programs for direct WebSocket
 - [x] Test all authentication combinations
 - [x] Document findings and analysis
 ### Blocked ⚠️
 - [ ] Implement native WebSocket client (403 Forbidden)
 - [ ] Test message flow with native client (can't connect)
 - [ ] Replace ChromeDP (no working alternative)
 ### Pending User Decision 🤔
 - Which approach to pursue?
 - Accept ChromeDP optimization?
 - Try HTTP polling instead?
 - Invest more time in security bypass?
 ## Files for Review
 1. **AUTH_FINDINGS.md** - Complete authentication documentation
 2. **WEBSOCKET_403_ANALYSIS.md** - Why native WebSocket fails
 3. **auth-data.json** - Raw captured data
 4. **cmd/capture-auth/** - Authentication capture tool
 5. **cmd/test-*/** - Various test programs
 ## Next Steps (Pending Decision)
 **If Option A (Optimize ChromeDP)**:
 1. Research chromedp/headless-shell
 2. Implement memory optimizations
 3. Add Chrome instance pooling
 4. Benchmark improvements
 5. Update documentation
 **If Option B (HTTP Polling)**:
 1. Test HTTP POST queries
 2. Implement polling loop
 3. Handle rate limiting
 4. Test latency impact
 5. Document trade-offs
 **If Option C (Continue Investigation)**:
 1. Set up Wireshark to analyze browser traffic
 2. Research TLS fingerprinting bypass
 3. Test with different TLS libraries
 4. Attempt Cloudflare bypass techniques
 5. **Warning**: Success not guaranteed
 ## Conclusion
 After extensive testing, **native Go WebSocket connections are blocked by Kosmi's infrastructure** (likely Cloudflare or similar). The ChromeDP approach, while heavier, is currently the **ONLY** working solution for real-time WebSocket communication.
 **Recommendation**: Optimize ChromeDP rather than trying to bypass security measures.
 ---
 **Time Spent**: ~2 hours  
 **Tests Performed**: 7 different connection methods  
 **Lines of Code**: ~800 (test tools + analysis)  
 **Outcome**: ChromeDP remains necessary for WebSocket access
--- a/chat-summaries/2025-10-31_10-29-00_docker-deployment-success.md
+++ b/chat-summaries/2025-10-31_10-29-00_docker-deployment-success.md
@@ -1,245 +0,0 @@
 # Docker Deployment Success - Playwright Native Client
 **Date**: October 31, 2025, 10:29 AM  
 **Status**: ✅ **FULLY OPERATIONAL**
 ## Summary
 Successfully deployed the Kosmi/IRC relay bridge using Docker with the Playwright-assisted native client. The bridge is now running and connected to both platforms, ready to relay messages bidirectionally.
 ## Connection Status
 ```
 ✅ Kosmi WebSocket - CONNECTED
 ✅ IRC (zeronode.net:6697) - CONNECTED  
 ✅ Bridge Gateway - ACTIVE
 ```
 ### Kosmi Connection
 - Room ID: hyperspaceout
 - Room URL: https://app.kosmi.io/room/@hyperspaceout
 - WebSocket established successfully
 - Subscribed to room messages
 - Ready to send and receive
 ### IRC Connection
 - Server: irc.zeronode.net:6697
 - Channel: #cottongin
 - Nickname: [from config]
 - Connection successful
 ## Docker Configuration
 ### Final Dockerfile Solution
 The key to success was using a **single-stage build** with the full Go environment:
 ```dockerfile
 FROM golang:1.23-bookworm
 # System dependencies for Playwright Chromium
 RUN apt-get update && apt-get install -y \
    ca-certificates chromium \
    libnss3 libnspr4 libatk1.0-0 libatk-bridge2.0-0 \
    libcups2 libdrm2 libdbus-1-3 libxkbcommon0 \
    libxcomposite1 libxdamage1 libxfixes3 libxrandr2 \
    libgbm1 libasound2 libatspi2.0-0
 # Build matterbridge
 COPY . /app
 WORKDIR /app
 RUN go build -o matterbridge .
 # Install playwright-go CLI and drivers  
 RUN go install github.com/playwright-community/playwright-go/cmd/playwright@latest && \
    $(go env GOPATH)/bin/playwright install --with-deps chromium
 ENTRYPOINT ["/app/matterbridge"]
 CMD ["-conf", "/app/matterbridge.toml"]
 ```
 ### Why This Works
 1. **Go Environment Preserved**: Playwright-go requires the full Go module cache and environment
 2. **Driver Installation**: `playwright install` properly sets up the driver metadata
 3. **System Dependencies**: All Chromium dependencies installed via apt
 4. **Single Context**: No need to copy complex directory structures between build stages
 ### What Didn't Work
 ❌ Multi-stage builds with static binaries - Playwright-go needs its module cache  
 ❌ Copying `/go/pkg/mod` manually - Missing driver metadata files  
 ❌ Using Playwright Node.js Docker images - Different runtime environment  
 ❌ Manual driver file copying - Complex embedded structure
 ## Testing the Relay
 ### How to Test
 1. **Send a message in Kosmi** (https://app.kosmi.io/room/@hyperspaceout)
   - Should appear in IRC channel #cottongin
 2. **Send a message in IRC** (#cottongin)
   - Should appear in Kosmi room
 3. **Monitor logs:**
   ```bash
   docker-compose logs -f
   ```
 ### Expected Log Output
 ```
 level=info msg="Received message: [timestamp] username: message text"
 level=info msg="Relaying message from kosmi to irc"
 level=info msg="Sent message to IRC: message text"
 ```
 ## Architecture
 ```
 ┌─────────────────────┐
 │   Kosmi Chat Room   │
 │ (@hyperspaceout)    │
 └──────────┬──────────┘
           │ WebSocket
           │ (GraphQL)
           ▼
 ┌─────────────────────┐
 │  Playwright Native  │
 │      Client         │
 │                     │
 │ • Browser Context   │
 │ • WS Interception   │
 │ • Direct WS Control │
 └──────────┬──────────┘
           │
           ▼
 ┌─────────────────────┐
 │   Matterbridge      │
 │    Core Gateway     │
 └──────────┬──────────┘
           │
           ▼
 ┌─────────────────────┐
 │     IRC Bridge      │
 │  (zeronode.net)     │
 └──────────┬──────────┘
           │
           ▼
 ┌─────────────────────┐
 │   IRC Channel       │
 │    #cottongin       │
 └─────────────────────┘
 ```
 ## Key Features
 ### Playwright Native Client
 ✅ **Browser-based WebSocket Setup**: Bypasses bot detection  
 ✅ **Direct WebSocket Control**: No DOM manipulation needed  
 ✅ **GraphQL Message Handling**: Native protocol support  
 ✅ **Automatic Reconnection**: Built into Matterbridge  
 ✅ **Message Queuing**: JavaScript-based message buffer  
 ### Advantages Over ChromeDP
 | Feature | ChromeDP | Playwright Native |
 |---------|----------|-------------------|
 | WebSocket Setup | ✓ | ✓ |
 | Message Sending | DOM manipulation | Direct `ws.send()` |
 | UI Dependency | High | None |
 | Code Complexity | Medium | Low |
 | Reliability | Good | Excellent |
 | Docker Size | ~200MB | ~800MB¹ |
 ¹ Larger due to full Go environment, but more reliable
 ## Next Steps
 ### For Production Use
 1. **Monitor Performance**:
   ```bash
   docker stats kosmi-irc-relay
   ```
 2. **Check for Memory Leaks**:
   - Watch memory usage over 24+ hours
   - Playwright keeps one browser instance open
 3. **Configure Restart Policy**:
   ```yaml
   restart: unless-stopped  # ← Already configured
   ```
 4. **Set Resource Limits** (optional):
   ```yaml
   mem_limit: 1g
   mem_reservation: 512m
   ```
 5. **Backup Configuration**:
   - `matterbridge.toml` contains all settings
   - Room URL, IRC credentials, etc.
 ### For Testing
 **Test sending messages NOW** while the bridge is running:
 1. Open Kosmi room: https://app.kosmi.io/room/@hyperspaceout
 2. Send a test message
 3. Check IRC channel #cottongin
 4. Send a message in IRC
 5. Check Kosmi room
 Watch the Docker logs to see messages being relayed:
 ```bash
 docker-compose logs -f | grep -E "(Received|Sent|Relaying)"
 ```
 ## Troubleshooting
 ### If Bridge Disconnects
 ```bash
 # View logs
 docker-compose logs --tail=100
 # Restart
 docker-compose restart
 # Full rebuild
 docker-compose down
 docker-compose up --build -d
 ```
 ### Common Issues
 1. **WebSocket not connecting**: Check room URL in `matterbridge.toml`
 2. **IRC auth failure**: Verify credentials in config
 3. **High memory usage**: Normal for Playwright (100-200MB)
 4. **Container keeps restarting**: Check logs for errors
 ## Files Modified
 - `Dockerfile` - Single-stage build with Go environment
 - `docker-compose.yml` - Already configured correctly
 - `bridge/kosmi/native_client.go` - Playwright native implementation
 - `bridge/kosmi/kosmi.go` - Uses `NewNativeClient`
 ## Success Metrics
 ✅ Kosmi WebSocket connected in ~7 seconds  
 ✅ IRC connection successful  
 ✅ Both channels joined  
 ✅ Gateway started successfully  
 ✅ Ready to relay messages bidirectionally  
 ## Conclusion
 The Playwright-assisted native client is now fully operational in Docker. The relay is ready to forward messages between Kosmi and IRC in real-time.
 **The next step is to send actual test messages and verify bidirectional relay.**
--- a/chat-summaries/2025-10-31_11-53-00_websocket-mutation-issue-http-solution.md
+++ b/chat-summaries/2025-10-31_11-53-00_websocket-mutation-issue-http-solution.md
@@ -1,66 +0,0 @@
 # WebSocket Mutation Issue - HTTP POST Solution
 **Date**: October 31, 2025, 11:53 AM  
 **Issue**: IRC→Kosmi messages not appearing despite successful WebSocket send  
 ## Problem Discovery
 Messages from IRC were being sent to Kosmi's WebSocket successfully (we could see them in logs), but they were NOT appearing in the Kosmi chat interface.
 ### Root Cause
 Through comprehensive logging of browser console messages, we discovered:
 1. **WebSocket closes immediately after sending mutation**:
   ```
   [Browser Console] >>> Sending mutation...
   [Browser Console] >>> Sent successfully
   [Browser Console] error: CloseEvent  ← WebSocket closes!
   ```
 2. **The WebSocket reopens** - indicating Kosmi is detecting an invalid message and resetting the connection
 ### Why WebSocket Mutations Fail
 We're piggy-backing on Kosmi's native WebSocket connection (established by the web page). When we inject our own GraphQL mutations:
 - We don't have proper authentication in the WebSocket frame
 - We're interfering with Kosmi's protocol state machine  
 - The server detects this and closes the connection
 ## Solution: HTTP POST for Mutations
 From FINDINGS.md (which was created earlier but we forgot about):
 **Kosmi supports HTTP POST for GraphQL mutations!**
 ```
 POST https://engine.kosmi.io/
 Content-Type: application/json
 {
  "query": "mutation SendMessage($body: String!, $roomID: ID!) { sendMessage(body: $body, roomID: $roomID) { id } }",
  "variables": {
    "body": "message text",
    "roomID": "room-id"
  }
 }
 ```
 ### Architecture
 - **Receiving (Subscriptions)**: Use WebSocket ✅ (working)
 - **Sending (Mutations)**: Use HTTP POST ✅ (to be implemented)
 This is the same approach we initially documented but forgot to use!
 ## Implementation Plan
 1. Replace `SendMessage` in `native_client.go` to use HTTP POST
 2. Extract cookies from Playwright page context for authentication
 3. Use Go's `http.Client` to send the POST request
 4. Keep WebSocket for receiving messages (already working)
 ## Next Steps
 Implement HTTP POST sending in the next iteration.
--- a/chat-summaries/2025-10-31_12-00-00_http-post-implementation.md
+++ b/chat-summaries/2025-10-31_12-00-00_http-post-implementation.md
@@ -1,142 +0,0 @@
 # HTTP POST Implementation for IRC → Kosmi Messages
 **Date**: October 31, 2025, 12:00 PM  
 **Status**: ✅ Implemented
 ## Summary
 Successfully implemented HTTP POST for sending messages from IRC to Kosmi, replacing the problematic WebSocket mutation approach. Also cleaned up debug logging from troubleshooting sessions.
 ## Problem
 The WebSocket-based approach for sending mutations was failing because:
 1. The WebSocket connection was closing immediately after sending mutations
 2. Protocol initialization and authentication complexities made WebSocket mutations unreliable
 3. Even with correct GraphQL mutation format (`type: "start"`), the connection would close
 ## Solution
 Switched to using **HTTP POST** for sending messages (GraphQL mutations) to Kosmi:
 - Uses the browser's cookies for authentication (extracted via Playwright)
 - Sends GraphQL mutations to `https://engine.kosmi.io/`
 - Works reliably without WebSocket complexities
 - WebSocket still used for receiving messages (subscriptions)
 ## Changes Made
 ### 1. Modified `bridge/kosmi/native_client.go`
 **Replaced WebSocket-based SendMessage with HTTP POST:**
 ```go
 func (c *NativeClient) SendMessage(text string) error {
    // Get cookies from browser for authentication
    cookies, err := c.page.Context().Cookies()
    // Build GraphQL mutation
    mutation := map[string]interface{}{
        "query": "mutation SendMessage($body: String!, $roomID: ID!) { sendMessage(body: $body, roomID: $roomID) { id } }",
        "variables": map[string]interface{}{
            "body":   text,
            "roomID": c.roomID,
        },
    }
    // Create HTTP POST request to https://engine.kosmi.io/
    req, err := http.NewRequest("POST", "https://engine.kosmi.io/", bytes.NewBuffer(payload))
    req.Header.Set("Content-Type", "application/json")
    req.Header.Set("User-Agent", "Mozilla/5.0...")
    // Add cookies for authentication
    for _, cookie := range cookies {
        req.AddCookie(&http.Cookie{Name: cookie.Name, Value: cookie.Value})
    }
    // Send request
    client := &http.Client{Timeout: 10 * time.Second}
    resp, err := client.Do(req)
    // Check response
    if resp.StatusCode != http.StatusOK {
        return fmt.Errorf("HTTP %d: %s", resp.StatusCode, string(body))
    }
    return nil
 }
 ```
 **Added required imports:**
 - `bytes`
 - `io`
 - `net/http`
 ### 2. Cleaned Up Debug Logging
 **Removed from `bridge/kosmi/native_client.go`:**
 - Browser console message listener
 - JavaScript console.log statements in WebSocket interceptor
 - Verbose emoji-based logging in SendMessage
 **Removed from `bridge/kosmi/kosmi.go`:**
 - Emoji-based debug logging (🔔, 📨, 🔍, ✅, ⏭️)
 - Reduced verbosity of log messages
 - Changed Info logs to Debug for routine operations
 **Removed from `bridge/irc/handlers.go`:**
 - Emoji-based debug logging (🔔, 📨, ⏭️, 🔌)
 - Verbose PRIVMSG logging
 **Removed from `matterbridge.toml`:**
 - `Debug=true` from Kosmi section
 - `DebugLevel=1` from IRC section
 ## Architecture
 ```
 IRC → Matterbridge → Kosmi Bridge → HTTP POST → https://engine.kosmi.io/
                                                  (GraphQL mutation)
 Kosmi → WebSocket → Browser (Playwright) → Kosmi Bridge → Matterbridge → IRC
        (subscription)
 ```
 **Key Points:**
 - **Receiving**: WebSocket subscription (via Playwright-intercepted connection)
 - **Sending**: HTTP POST with GraphQL mutation (using browser cookies)
 - **Authentication**: Browser cookies obtained from Playwright page context
 ## Benefits
 1. **Reliability**: HTTP POST is proven to work (from FINDINGS.md)
 2. **Simplicity**: No WebSocket mutation complexity
 3. **Authentication**: Leverages existing browser session cookies
 4. **Clean Separation**: WebSocket for receiving, HTTP for sending
 ## Testing
 Ready for user to test:
 - ✅ IRC → Kosmi (HTTP POST implementation)
 - ✅ Kosmi → IRC (WebSocket subscription, already working)
 ## Files Modified
 1. `/Users/erikfredericks/dev-ai/HSO/irc-kosmi-relay/bridge/kosmi/native_client.go`
   - Replaced SendMessage with HTTP POST implementation
   - Added HTTP-related imports
   - Removed debug logging
 2. `/Users/erikfredericks/dev-ai/HSO/irc-kosmi-relay/bridge/kosmi/kosmi.go`
   - Cleaned up debug logging
 3. `/Users/erikfredericks/dev-ai/HSO/irc-kosmi-relay/bridge/irc/handlers.go`
   - Cleaned up debug logging
 4. `/Users/erikfredericks/dev-ai/HSO/irc-kosmi-relay/matterbridge.toml`
   - Removed Debug and DebugLevel settings
 ## Next Steps
 1. User to test IRC → Kosmi message relay
 2. User to test Kosmi → IRC message relay
 3. Verify bidirectional relay is working correctly
--- a/chat-summaries/2025-10-31_13-10-00_final-working-solution.md
+++ b/chat-summaries/2025-10-31_13-10-00_final-working-solution.md
@@ -1,201 +0,0 @@
 # ✅ Final Working Solution: Kosmi ↔ IRC Relay
 **Date**: October 31, 2025, 1:10 PM  
 **Status**: ✅ **FULLY FUNCTIONAL - BIDIRECTIONAL RELAY WORKING**
 ## Summary
 Successfully implemented a fully working bidirectional message relay between Kosmi and IRC using a **Playwright-based UI automation approach**.
 ## Test Results
 ✅ **IRC → Kosmi**: Working  
 ✅ **Kosmi → IRC**: Working  
 ✅ **Username formatting**: Consistent with `RemoteNickFormat`  
 ✅ **Message echo prevention**: Working (messages with `[irc]` prefix filtered out)  
 ✅ **Clean logging**: Debug code removed, production-ready
 ## Final Architecture
 ```
 ┌─────────────────────────────────────────────────────────────────┐
 │                    Matterbridge Gateway                         │
 │                                                                 │
 │  ┌──────────────────────┐         ┌──────────────────────┐    │
 │  │   IRC Bridge         │◄───────►│   Kosmi Bridge       │    │
 │  │  (irc.zeronode)      │         │  (kosmi.hyperspaceout)│    │
 │  └──────────────────────┘         └──────────┬───────────┘    │
 │                                               │                 │
 └───────────────────────────────────────────────┼─────────────────┘
                                                │
                                    ┌───────────▼───────────┐
                                    │  Playwright Native     │
                                    │      Client            │
                                    │                        │
                                    │  • Browser automation  │
                                    │  • WebSocket (receive) │
                                    │  • UI automation (send)│
                                    └───────────┬────────────┘
                                                │
                                    ┌───────────▼───────────┐
                                    │   Kosmi Web UI        │
                                    │  (app.kosmi.io)       │
                                    └───────────────────────┘
 ```
 ## Implementation Details
 ### Message Receiving (Kosmi → IRC)
 - **Method**: WebSocket subscription via Playwright-intercepted connection
 - **Mechanism**: JavaScript injection captures WebSocket messages in the browser
 - **Subscription**: `subscription { newMessage(roomId: "...") { body time user { displayName username } } }`
 - **Processing**: Messages polled from JavaScript queue every 500ms
 ### Message Sending (IRC → Kosmi)
 - **Method**: UI automation via Playwright
 - **Mechanism**: JavaScript evaluation to interact with DOM
 - **Process**:
  1. Find visible chat input element (textarea, contenteditable, or text input)
  2. Set input value to message text
  3. Dispatch input/change events
  4. Trigger send via button click or Enter key press
 ### Why This Approach?
 After extensive investigation, we discovered:
 1. ❌ **Direct WebSocket Connection**: Fails with 403 Forbidden (authentication/bot detection)
 2. ❌ **HTTP POST GraphQL Mutation**: API only supports auth mutations (`anonLogin`, `slackLogin`), not `sendMessage`
 3. ❌ **WebSocket Mutation via Playwright**: Connection closes immediately after sending mutation (protocol/auth issues)
 4. ✅ **UI Automation**: Works reliably because it mimics real user interaction
 ## Key Files
 ### 1. `bridge/kosmi/native_client.go`
 The Playwright-based client implementation:
 - Launches headless Chromium browser
 - Injects WebSocket access layer
 - Navigates to Kosmi room
 - Subscribes to messages via WebSocket
 - Sends messages via UI automation
 ### 2. `bridge/kosmi/kosmi.go`
 The Matterbridge bridge implementation:
 - Implements `bridge.Bridger` interface
 - Manages `NativeClient` lifecycle
 - Handles message routing
 - Filters echo messages (prevents loops)
 ### 3. `matterbridge.toml`
 Configuration file:
 ```toml
 [kosmi.hyperspaceout]
 RoomURL="https://app.kosmi.io/room/@hyperspaceout"
 RemoteNickFormat="[{PROTOCOL}] <{NICK}> "
 [irc.zeronode]
 Server="irc.zeronode.net:6697"
 Nick="kosmi-relay"
 RemoteNickFormat="[{PROTOCOL}] <{NICK}> "
 UseTLS=true
 ```
 ## Message Flow
 ### IRC → Kosmi
 1. User sends message in IRC: `Testing from IRC`
 2. IRC bridge receives PRIVMSG
 3. Matterbridge formats with `RemoteNickFormat`: `[irc] <username> Testing from IRC`
 4. Kosmi bridge receives message
 5. `NativeClient.SendMessage()` uses UI automation
 6. JavaScript finds chat input, sets value, triggers send
 7. Message appears in Kosmi chat
 ### Kosmi → IRC
 1. User sends message in Kosmi: `Testing from Kosmi`
 2. WebSocket subscription receives `newMessage` event
 3. JavaScript queue captures the message
 4. `pollMessages()` retrieves from queue
 5. Kosmi bridge filters echo messages (checks for `[irc]` prefix)
 6. Matterbridge formats with `RemoteNickFormat`: `[kosmi] <username> Testing from Kosmi`
 7. IRC bridge sends to channel
 8. Message appears in IRC
 ## Echo Prevention
 Messages are tagged with protocol prefixes via `RemoteNickFormat`:
 - IRC messages sent to Kosmi: `[irc] <username> message`
 - Kosmi messages sent to IRC: `[kosmi] <username> message`
 The Kosmi bridge filters out messages starting with `[irc]` to prevent echoing our own messages back.
 ## Deployment
 ### Docker Compose
 ```yaml
 services:
  matterbridge:
    build: .
    container_name: kosmi-irc-relay
    volumes:
      - ./matterbridge.toml:/app/matterbridge.toml:ro
    restart: unless-stopped
 ```
 ### Running
 ```bash
 docker-compose up -d --build
 docker-compose logs -f
 ```
 ## Performance Characteristics
 - **Startup Time**: ~10 seconds (Playwright browser launch + page load)
 - **Message Latency**: 
  - IRC → Kosmi: ~100-500ms (UI automation)
  - Kosmi → IRC: ~500-1000ms (polling interval)
 - **Resource Usage**: 
  - Memory: ~300-400 MB (Chromium browser)
  - CPU: Low after initialization
 ## Future Improvements
 ### Potential Optimizations
 1. **Reduce Polling Interval**: Could decrease from 500ms to 250ms for lower latency
 2. **WebSocket Send**: If Kosmi's auth/protocol can be reverse-engineered properly
 3. **Direct GraphQL API**: If Kosmi exposes a `sendMessage` mutation in the future
 ### Known Limitations
 1. **Browser Required**: Must run full Chromium browser (can be headless)
 2. **Polling Latency**: 500ms delay for incoming messages
 3. **UI Dependency**: Breaks if Kosmi changes their UI structure (input selectors)
 ## Troubleshooting
 ### Common Issues
 **Problem**: "Could not find chat input element"  
 **Solution**: Kosmi may have changed their UI. Update selectors in `SendMessage()` method.
 **Problem**: Messages not appearing in Kosmi  
 **Solution**: Check browser console logs, verify UI automation script is working.
 **Problem**: WebSocket not connecting  
 **Solution**: Check network connectivity, verify Kosmi URL is correct.
 **Problem**: Echo loop (messages keep bouncing)  
 **Solution**: Verify `RemoteNickFormat` is set correctly and echo filter is working.
 ## Conclusion
 After extensive troubleshooting and multiple implementation attempts (direct WebSocket, HTTP POST, WebSocket mutations), we successfully achieved bidirectional message relay using **Playwright UI automation**. This approach is reliable, maintainable, and production-ready.
 The relay now successfully:
 ✅ Sends messages from IRC to Kosmi  
 ✅ Receives messages from Kosmi to IRC  
 ✅ Prevents message echo loops  
 ✅ Formats usernames consistently  
 ✅ Runs in Docker with minimal configuration
 **Status**: Production-ready ✅
--- a/chat-summaries/2025-10-31_13-48-00_performance-optimizations.md
+++ b/chat-summaries/2025-10-31_13-48-00_performance-optimizations.md
@@ -1,186 +0,0 @@
 # Performance Optimizations: CPU and Memory Reduction
 **Date**: October 31, 2025, 1:48 PM  
 **Status**: ✅ Successfully Implemented
 ## Overview
 Successfully implemented three phases of conservative performance optimizations to reduce CPU and memory usage while maintaining full relay functionality and reliability.
 ## Optimizations Implemented
 ### Phase 1: Browser Launch Optimizations (High Impact)
 **File**: `bridge/kosmi/native_client.go` (lines 46-71)
 Added 17 resource-saving Chromium flags to disable unnecessary browser features:
 ```go
 Args: []string{
    "--no-sandbox",
    "--disable-dev-shm-usage",
    "--disable-blink-features=AutomationControlled",
    // Resource optimizations for reduced CPU/memory usage
    "--disable-gpu",                    // No GPU needed for chat
    "--disable-software-rasterizer",    // No rendering needed
    "--disable-extensions",             // No extensions needed
    "--disable-background-networking",  // No background requests
    "--disable-background-timer-throttling",
    "--disable-backgrounding-occluded-windows",
    "--disable-breakpad",               // No crash reporting
    "--disable-component-extensions-with-background-pages",
    "--disable-features=TranslateUI",   // No translation UI
    "--disable-ipc-flooding-protection",
    "--disable-renderer-backgrounding",
    "--force-color-profile=srgb",
    "--metrics-recording-only",
    "--no-first-run",                   // Skip first-run tasks
    "--mute-audio",                     // No audio needed
 },
 ```
 **Results**:
 - Faster browser startup
 - Reduced memory footprint
 - Lower idle CPU usage
 ### Phase 2: Smart Polling Optimization (Medium Impact)
 **File**: `bridge/kosmi/native_client.go` (lines 293-332)
 Optimized the message polling loop to skip expensive operations when message queue is empty:
 ```go
 func (c *NativeClient) pollMessages() error {
    result, err := c.page.Evaluate(`
        (function() {
            if (!window.__KOSMI_MESSAGE_QUEUE__) return null;
            if (window.__KOSMI_MESSAGE_QUEUE__.length === 0) return null;  // Early exit
            const messages = window.__KOSMI_MESSAGE_QUEUE__.slice();
            window.__KOSMI_MESSAGE_QUEUE__ = [];
            return messages;
        })();
    `)
    if err != nil {
        return err
    }
    // Early return if no messages (reduces CPU during idle)
    if result == nil {
        return nil
    }
    // Only perform expensive marshal/unmarshal when there are messages
    // ...
 }
 ```
 **Results**:
 - Reduced CPU usage during idle periods (when no messages are flowing)
 - Eliminated unnecessary JSON marshal/unmarshal cycles
 - Maintains same 500ms polling interval (no latency impact)
 ### Phase 3: Page Load Optimization (Low Impact)
 **File**: `bridge/kosmi/native_client.go` (lines 104-111)
 Changed page load strategy to wait only for DOM, not all network resources:
 ```go
 if _, err := page.Goto(c.roomURL, playwright.PageGotoOptions{
    WaitUntil: playwright.WaitUntilStateDomcontentloaded, // Changed from networkidle
 }); err != nil {
    c.Disconnect()
    return fmt.Errorf("failed to navigate: %w", err)
 }
 ```
 **Results**:
 - Faster startup (doesn't wait for images, fonts, external resources)
 - Still waits for DOM (maintains reliability)
 - Reduced initial page load time by ~2-3 seconds
 ## Performance Improvements
 ### Before Optimizations
 - **Startup Time**: ~15 seconds
 - **Memory Usage**: ~300-400 MB (estimated)
 - **CPU Usage**: Higher during idle (constant polling overhead)
 ### After Optimizations
 - **Startup Time**: ~12 seconds (20% improvement)
 - **Memory Usage**: Expected 25-40% reduction
 - **CPU Usage**: Expected 20-35% reduction during idle
 ## Testing Results
 All three phases tested successfully:
 ✅ **Phase 1 Testing**: Browser flags applied, relay connected successfully  
 ✅ **Phase 2 Testing**: Smart polling active, messages flowing normally  
 ✅ **Phase 3 Testing**: Fast page load, bidirectional relay confirmed working  
 **Test Messages**:
 - IRC → Kosmi: ✅ Working
 - Kosmi → IRC: ✅ Working
 - Message formatting: ✅ Correct
 - No errors in logs: ✅ Clean
 ## Implementation Strategy
 Followed conservative, phased approach:
 1. **Phase 1** → Test → Verify
 2. **Phase 2** → Test → Verify
 3. **Phase 3** → Test → Final Verification
 Each phase was tested independently before proceeding to ensure no breakage occurred.
 ## Key Design Decisions
 ### Conservative Over Aggressive
 - Maintained 500ms polling interval (didn't reduce to avoid potential issues)
 - Used proven Chromium flags (well-documented, widely used)
 - Tested each change independently
 ### Reliability First
 - All optimizations preserve existing functionality
 - No changes to message handling logic
 - No caching of DOM selectors (could break if UI changes)
 ### No Breaking Changes
 - Same message latency
 - Same connection reliability
 - Same error handling
 ## Future Optimization Opportunities
 If more performance improvement is needed in the future:
 1. **Reduce Polling Interval**: Could decrease from 500ms to 250ms for lower latency (trade-off: higher CPU)
 2. **Selector Caching**: Cache found input element after first send (trade-off: breaks if UI changes)
 3. **Connection Pooling**: Reuse browser instances across restarts (complex)
 4. **WebSocket Direct Send**: If authentication protocol can be solved (requires more research)
 ## Monitoring Recommendations
 To measure actual resource usage improvements:
 ```bash
 # Monitor container resource usage
 docker stats kosmi-irc-relay
 # Check memory usage over time
 docker stats kosmi-irc-relay --no-stream --format "table {{.Container}}\t{{.CPUPerc}}\t{{.MemUsage}}"
 # View logs to ensure no errors
 docker-compose logs -f --tail=50
 ```
 ## Conclusion
 Successfully reduced CPU and memory usage through three conservative optimization phases while maintaining 100% functionality and reliability. The relay continues to work bidirectionally with no errors or performance degradation.
 **Status**: Production-ready with optimizations ✅
--- a/cmd/get-kosmi-token/go.mod
+++ b/cmd/get-kosmi-token/go.mod
@@ -0,0 +1,16 @@
 module github.com/erikfredericks/get-kosmi-token
 go 1.21
 require github.com/chromedp/chromedp v0.9.2
 require (
 	github.com/chromedp/cdproto v0.0.0-20230802225258-3cf4e6d46a89 // indirect
 	github.com/chromedp/sysutil v1.0.0 // indirect
 	github.com/gobwas/httphead v0.1.0 // indirect
 	github.com/gobwas/pool v0.2.1 // indirect
 	github.com/gobwas/ws v1.2.1 // indirect
 	github.com/josharian/intern v1.0.0 // indirect
 	github.com/mailru/easyjson v0.7.7 // indirect
 	golang.org/x/sys v0.11.0 // indirect
 )
--- a/cmd/get-kosmi-token/go.sum
+++ b/cmd/get-kosmi-token/go.sum
@@ -0,0 +1,23 @@
 github.com/chromedp/cdproto v0.0.0-20230802225258-3cf4e6d46a89 h1:aPflPkRFkVwbW6dmcVqfgwp1i+UWGFH6VgR1Jim5Ygc=
 github.com/chromedp/cdproto v0.0.0-20230802225258-3cf4e6d46a89/go.mod h1:GKljq0VrfU4D5yc+2qA6OVr8pmO/MBbPEWqWQ/oqGEs=
 github.com/chromedp/chromedp v0.9.2 h1:dKtNz4kApb06KuSXoTQIyUC2TrA0fhGDwNZf3bcgfKw=
 github.com/chromedp/chromedp v0.9.2/go.mod h1:LkSXJKONWTCHAfQasKFUZI+mxqS4tZqhmtGzzhLsnLs=
 github.com/chromedp/sysutil v1.0.0 h1:+ZxhTpfpZlmchB58ih/LBHX52ky7w2VhQVKQMucy3Ic=
 github.com/chromedp/sysutil v1.0.0/go.mod h1:kgWmDdq8fTzXYcKIBqIYvRRTnYb9aNS9moAV0xufSww=
 github.com/gobwas/httphead v0.1.0 h1:exrUm0f4YX0L7EBwZHuCF4GDp8aJfVeBrlLQrs6NqWU=
 github.com/gobwas/httphead v0.1.0/go.mod h1:O/RXo79gxV8G+RqlR/otEwx4Q36zl9rqC5u12GKvMCM=
 github.com/gobwas/pool v0.2.1 h1:xfeeEhW7pwmX8nuLVlqbzVc7udMDrwetjEv+TZIz1og=
 github.com/gobwas/pool v0.2.1/go.mod h1:q8bcK0KcYlCgd9e7WYLm9LpyS+YeLd8JVDW6WezmKEw=
 github.com/gobwas/ws v1.2.1 h1:F2aeBZrm2NDsc7vbovKrWSogd4wvfAxg0FQ89/iqOTk=
 github.com/gobwas/ws v1.2.1/go.mod h1:hRKAFb8wOxFROYNsT1bqfWnhX+b5MFeJM9r2ZSwg/KY=
 github.com/josharian/intern v1.0.0 h1:vlS4z54oSdjm0bgjRigI+G1HpF+tI+9rE5LLzOg8HmY=
 github.com/josharian/intern v1.0.0/go.mod h1:5DoeVV0s6jJacbCEi61lwdGj/aVlrQvzHFFd8Hwg//Y=
 github.com/ledongthuc/pdf v0.0.0-20220302134840-0c2507a12d80 h1:6Yzfa6GP0rIo/kULo2bwGEkFvCePZ3qHDDTC3/J9Swo=
 github.com/ledongthuc/pdf v0.0.0-20220302134840-0c2507a12d80/go.mod h1:imJHygn/1yfhB7XSJJKlFZKl/J+dCPAknuiaGOshXAs=
 github.com/mailru/easyjson v0.7.7 h1:UGYAvKxe3sBsEDzO8ZeWOSlIQfWFlxbzLZe7hwFURr0=
 github.com/mailru/easyjson v0.7.7/go.mod h1:xzfreul335JAWq5oZzymOObrkdz5UnU4kGfJJLY9Nlc=
 github.com/orisano/pixelmatch v0.0.0-20220722002657-fb0b55479cde h1:x0TT0RDC7UhAVbbWWBzr41ElhJx5tXPWkIHA2HWPRuw=
 github.com/orisano/pixelmatch v0.0.0-20220722002657-fb0b55479cde/go.mod h1:nZgzbfBr3hhjoZnS66nKrHmduYNpc34ny7RK4z5/HM0=
 golang.org/x/sys v0.6.0/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
 golang.org/x/sys v0.11.0 h1:eG7RXZHdqOJ1i+0lgLgCpSXAp6M3LYlAo6osgSi0xOM=
 golang.org/x/sys v0.11.0/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
--- a/cmd/get-kosmi-token/main.go
+++ b/cmd/get-kosmi-token/main.go
@@ -0,0 +1,276 @@
 package main
 import (
 	"context"
 	"flag"
 	"fmt"
 	"log"
 	"os"
 	"time"
 	"github.com/chromedp/chromedp"
 )
 // Standalone script to extract JWT token from Kosmi using browser automation
 // Usage: go run get-token.go --email "email@email.com" --password "password"
 var (
 	emailFlag    = flag.String("email", "", "Email for Kosmi login")
 	passwordFlag = flag.String("password", "", "Password for Kosmi login")
 	headlessFlag = flag.Bool("headless", true, "Run browser in headless mode")
 	verboseFlag  = flag.Bool("verbose", false, "Enable verbose logging")
 )
 func main() {
 	flag.Parse()
 	if *emailFlag == "" || *passwordFlag == "" {
 		log.Fatal("Error: --email and --password are required")
 	}
 	// Set up logging
 	if !*verboseFlag {
 		log.SetOutput(os.Stderr)
 	}
 	log.Println("Starting browser automation to extract JWT token...")
 	log.Printf("Email: %s", *emailFlag)
 	log.Printf("Headless mode: %v", *headlessFlag)
 	token, err := extractToken(*emailFlag, *passwordFlag, *headlessFlag)
 	if err != nil {
 		log.Fatalf("Failed to extract token: %v", err)
 	}
 	// Output token to stdout (so it can be captured)
 	fmt.Println(token)
 	if *verboseFlag {
 		log.Printf("✓ Successfully extracted token (length: %d)", len(token))
 	}
 }
 func extractToken(email, password string, headless bool) (string, error) {
 	// Create context with timeout
 	ctx, cancel := context.WithTimeout(context.Background(), 90*time.Second)
 	defer cancel()
 	// Set up chromedp options
 	opts := []chromedp.ExecAllocatorOption{
 		chromedp.NoFirstRun,
 		chromedp.NoDefaultBrowserCheck,
 		chromedp.DisableGPU,
 		chromedp.NoSandbox,
 	}
 	if headless {
 		opts = append(opts, chromedp.Headless)
 	}
 	// Create allocator context
 	allocCtx, cancel := chromedp.NewExecAllocator(ctx, opts...)
 	defer cancel()
 	// Create browser context - suppress cookie errors unless verbose
 	logFunc := func(string, ...interface{}) {}
 	if *verboseFlag {
 		logFunc = log.Printf
 	}
 	ctx, cancel = chromedp.NewContext(allocCtx, chromedp.WithLogf(logFunc))
 	defer cancel()
 	var token string
 	// Run the automation tasks
 	err := chromedp.Run(ctx,
 		// Step 1: Navigate to Kosmi
 		chromedp.ActionFunc(func(ctx context.Context) error {
 			log.Println("→ Navigating to https://app.kosmi.io")
 			return chromedp.Navigate("https://app.kosmi.io").Do(ctx)
 		}),
 		// Step 2: Wait for page to load
 		chromedp.WaitReady("body"),
 		chromedp.Sleep(3*time.Second),
 		// Step 3: Find and click Login button
 		chromedp.ActionFunc(func(ctx context.Context) error {
 			log.Println("→ Looking for Login button...")
 			// Log all buttons we can see
 			if *verboseFlag {
 				var buttonTexts []string
 				chromedp.Evaluate(`
 					Array.from(document.querySelectorAll('button')).map(el => el.textContent.trim())
 				`, &buttonTexts).Do(ctx)
 				log.Printf("  Found buttons: %v", buttonTexts)
 			}
 			var found bool
 			if err := chromedp.Evaluate(`
 				(() => {
 					const buttons = Array.from(document.querySelectorAll('button'));
 					const btn = buttons.find(el => {
 						const text = el.textContent.trim();
 						return text === 'Login' || text === 'Log in';
 					});
 					if (btn) {
 						btn.click();
 						return true;
 					}
 					return false;
 				})()
 			`, &found).Do(ctx); err != nil {
 				return err
 			}
 			if !found {
 				return fmt.Errorf("Login button not found")
 			}
 			log.Println("✓ Clicked Login button")
 			return nil
 		}),
 		// Step 4: Wait for login modal
 		chromedp.Sleep(3*time.Second),
 		// Step 5: Click "Login with Email" button
 		chromedp.ActionFunc(func(ctx context.Context) error {
 			log.Println("→ Looking for 'Login with Email' button...")
 			if *verboseFlag {
 				var buttonTexts []string
 				chromedp.Evaluate(`
 					Array.from(document.querySelectorAll('button')).map(el => el.textContent.trim())
 				`, &buttonTexts).Do(ctx)
 				log.Printf("  Found buttons: %v", buttonTexts)
 			}
 			var found bool
 			if err := chromedp.Evaluate(`
 				(() => {
 					const btn = Array.from(document.querySelectorAll('button')).find(el => 
 						el.textContent.includes('Email')
 					);
 					if (btn) {
 						btn.click();
 						return true;
 					}
 					return false;
 				})()
 			`, &found).Do(ctx); err != nil {
 				return err
 			}
 			if !found {
 				return fmt.Errorf("'Login with Email' button not found")
 			}
 			log.Println("✓ Clicked 'Login with Email' button")
 			return nil
 		}),
 		// Step 6: Wait for email form
 		chromedp.Sleep(3*time.Second),
 		chromedp.WaitVisible(`input[type="password"]`, chromedp.ByQuery),
 		// Step 7: Fill in email
 		chromedp.ActionFunc(func(ctx context.Context) error {
 			log.Println("→ Filling email field...")
 			return nil
 		}),
 		chromedp.Click(`input[placeholder*="Email"], input[placeholder*="Username"]`, chromedp.ByQuery),
 		chromedp.Sleep(200*time.Millisecond),
 		chromedp.SendKeys(`input[placeholder*="Email"], input[placeholder*="Username"]`, email, chromedp.ByQuery),
 		chromedp.ActionFunc(func(ctx context.Context) error {
 			log.Println("✓ Email entered")
 			return nil
 		}),
 		chromedp.Sleep(500*time.Millisecond),
 		// Step 8: Fill in password
 		chromedp.ActionFunc(func(ctx context.Context) error {
 			log.Println("→ Filling password field...")
 			return nil
 		}),
 		chromedp.Click(`input[type="password"]`, chromedp.ByQuery),
 		chromedp.Sleep(200*time.Millisecond),
 		chromedp.SendKeys(`input[type="password"]`, password+"\n", chromedp.ByQuery),
 		chromedp.ActionFunc(func(ctx context.Context) error {
 			log.Println("✓ Password entered and form submitted")
 			return nil
 		}),
 		chromedp.Sleep(500*time.Millisecond),
 		// Step 10: Wait for login to complete - check for modal to close
 		chromedp.ActionFunc(func(ctx context.Context) error {
 			log.Println("→ Waiting for login to complete...")
 			// Wait for the login modal to disappear (indicates successful login)
 			maxAttempts := 30 // 15 seconds total
 			for i := 0; i < maxAttempts; i++ {
 				time.Sleep(500 * time.Millisecond)
 				// Check if login modal is gone (successful login)
 				var modalGone bool
 				chromedp.Evaluate(`
 					(() => {
 						// Check if the email/password form is still visible
 						const emailInput = document.querySelector('input[placeholder*="Email"], input[placeholder*="Username"]');
 						const passwordInput = document.querySelector('input[type="password"]');
 						return !emailInput && !passwordInput;
 					})()
 				`, &modalGone).Do(ctx)
 				if modalGone {
 					log.Println("✓ Login modal closed - login successful")
 					// Modal is gone, wait a bit more for token to be set
 					time.Sleep(2 * time.Second)
 					chromedp.Evaluate(`localStorage.getItem('token')`, &token).Do(ctx)
 					if token != "" {
 						log.Println("✓ Authenticated token received")
 						return nil
 					}
 				}
 				// Check for error messages
 				var errorText string
 				chromedp.Evaluate(`
 					(() => {
 						const errorEl = document.querySelector('[role="alert"], .error, .error-message');
 						return errorEl ? errorEl.textContent.trim() : '';
 					})()
 				`, &errorText).Do(ctx)
 				if errorText != "" && errorText != "null" {
 					return fmt.Errorf("login failed: %s", errorText)
 				}
 			}
 			// Timeout - get whatever token is there
 			log.Println("⚠ Login timeout - extracting current token")
 			chromedp.Evaluate(`localStorage.getItem('token')`, &token).Do(ctx)
 			if token == "" {
 				return fmt.Errorf("login timeout: no token found")
 			}
 			log.Println("✓ Token extracted (may be anonymous)")
 			return nil
 		}),
 	)
 	if err != nil {
 		return "", fmt.Errorf("browser automation failed: %w", err)
 	}
 	if token == "" {
 		return "", fmt.Errorf("failed to extract token from localStorage")
 	}
 	return token, nil
 }
--- a/cmd/kosmi-client/kosmi-clien
+++ b/cmd/kosmi-client/kosmi-clien
--- a/cmd/kosmi-client/kosmi-client
+++ b/cmd/kosmi-client/kosmi-client
--- a/docker-compose.yml
+++ b/docker-compose.yml
@@ -14,12 +14,16 @@ services:
      - ./matterbridge.toml:/app/matterbridge.toml:ro,z
      # Optional: Mount a directory for logs
      - ./logs:/app/logs:z
      # Mount data directory for persistent token cache
      - ./data:/app/data:z
    # If you need to expose any ports (e.g., for API or webhooks)
    # ports:
    #   - "4242:4242"
    environment:
      # Optional: Set timezone
      - TZ=America/New_York
      # Data directory for persistent storage (token cache, etc.)
      - MATTERBRIDGE_DATA_DIR=/app/data
    # Optional: Set memory limits (much lower now without browser!)
    # mem_limit: 128m
    # mem_reservation: 64m
--- a/docs/ASYNC_FIX.md
+++ b/docs/ASYNC_FIX.md
--- a/docs/AUTHENTICATION_ISSUE.md
+++ b/docs/AUTHENTICATION_ISSUE.md
--- a/docs/AUTHENTICATION_STATUS.md
+++ b/docs/AUTHENTICATION_STATUS.md
--- a/docs/AUTH_DISCOVERY.md
+++ b/docs/AUTH_DISCOVERY.md
--- a/docs/AUTH_FINDINGS.md
+++ b/docs/AUTH_FINDINGS.md
--- a/docs/CAPTURE_UPLOAD_MANUALLY.md
+++ b/docs/CAPTURE_UPLOAD_MANUALLY.md
--- a/docs/CHROMEDP_IMPLEMENTATION.md
+++ b/docs/CHROMEDP_IMPLEMENTATION.md
--- a/docs/CRITICAL_FIX_OPERATION_ORDER.md
+++ b/docs/CRITICAL_FIX_OPERATION_ORDER.md
--- a/docs/DOCKER_SETUP_COMPLETE.md
+++ b/docs/DOCKER_SETUP_COMPLETE.md
--- a/docs/FINDINGS.md
+++ b/docs/FINDINGS.md
--- a/docs/GATEWAY_TIMING_FIX.md
+++ b/docs/GATEWAY_TIMING_FIX.md
--- a/docs/GRAPHQL_OPERATIONS_AUDIT.md
+++ b/docs/GRAPHQL_OPERATIONS_AUDIT.md
--- a/docs/IMPLEMENTATION_SUMMARY.md
+++ b/docs/IMPLEMENTATION_SUMMARY.md
--- a/docs/INTEGRATION.md
+++ b/docs/INTEGRATION.md
--- a/docs/IRC_TROUBLESHOOTING.md
+++ b/docs/IRC_TROUBLESHOOTING.md
--- a/docs/JACKBOX_TESTING.md
+++ b/docs/JACKBOX_TESTING.md
--- a/docs/KOSMI_IMAGE_UPLOAD.md
+++ b/docs/KOSMI_IMAGE_UPLOAD.md
--- a/docs/LESSONS_LEARNED.md
+++ b/docs/LESSONS_LEARNED.md
--- a/docs/MESSAGE_QUEUE_FIX.md
+++ b/docs/MESSAGE_QUEUE_FIX.md
--- a/docs/MISSING_OPERATIONS.md
+++ b/docs/MISSING_OPERATIONS.md
--- a/docs/NATIVE_WEBSOCKET_IMPLEMENTATION.md
+++ b/docs/NATIVE_WEBSOCKET_IMPLEMENTATION.md
--- a/docs/PLAYWRIGHT_NATIVE_CLIENT.md
+++ b/docs/PLAYWRIGHT_NATIVE_CLIENT.md
--- a/docs/PROJECT_STATUS.txt
+++ b/docs/PROJECT_STATUS.txt
--- a/docs/ROOM_CODE_IMAGE_STATUS.md
+++ b/docs/ROOM_CODE_IMAGE_STATUS.md
--- a/docs/ROOM_CODE_IMPLEMENTATION_SUMMARY.md
+++ b/docs/ROOM_CODE_IMPLEMENTATION_SUMMARY.md
--- a/docs/TESTING_NOTES.md
+++ b/docs/TESTING_NOTES.md
--- a/docs/TESTING_STATUS.md
+++ b/docs/TESTING_STATUS.md
--- a/docs/TYPING_INDICATORS.md
+++ b/docs/TYPING_INDICATORS.md
--- a/docs/WEBSOCKET_403_ANALYSIS.md
+++ b/docs/WEBSOCKET_403_ANALYSIS.md
--- a/docs/WEBSOCKET_EVENT_FLOW.md
+++ b/docs/WEBSOCKET_EVENT_FLOW.md
--- a/docs/WEBSOCKET_FINDINGS.md
+++ b/docs/WEBSOCKET_FINDINGS.md
--- a/docs/plans/2026-03-16-votes-command-design.md
+++ b/docs/plans/2026-03-16-votes-command-design.md
@@ -0,0 +1,57 @@
 # !votes Command Design
 ## Summary
 Add a `!votes` IRC/Kosmi command that displays session and all-time vote data for the currently playing game. The response is broadcast to all connected chats via the gateway. If there is no active session, no playing game, or any API call fails, the command logs the reason and silently does nothing.
 ## Output Format
 Matches the existing vote tally style:
 ```
 🗳️ Split the Room • 14👍 3👎 (Score: +11) | All-time: 127
 ```
 - Left side: session votes for the current game (upvotes, downvotes, net score)
 - Right side: all-time `popularity_score` from the game catalog
 ## Architecture
 Uses the gateway-level event routing pattern (same as `!kreconnect`).
 ### Flow
 1. User types `!votes` in IRC or Kosmi
 2. Bridge detects the command, sends `EventVotesQuery` on `b.Remote`, returns without relaying
 3. Gateway router catches the event in `handleReceive`
 4. `handleEventVotesQuery` fetches data from the Jackbox API:
   - `GetActiveSession()` to get session ID
   - `GetSessionGames(sessionID)` to find the game with status "playing"
   - `GetSessionVotes(sessionID)` to get per-game vote breakdown
   - `GetGame(gameID)` to get all-time `popularity_score`
 5. Formats the message and broadcasts via `broadcastJackboxMessage`
 ### Failure handling
 All failures are logged at warn level and produce no chat output:
 - No Jackbox client configured
 - No active session
 - No game currently playing
 - API errors on any of the fetch calls
 - No vote data found for the current game
 ## Files Changed
 - `bridge/config/config.go` -- add `EventVotesQuery` constant
 - `bridge/jackbox/client.go` -- add `GetSessionGames`, `GetSessionVotes`, `GetGame` methods and response structs
 - `bridge/irc/handlers.go` -- detect `!votes` command, emit event
 - `bridge/kosmi/kosmi.go` -- detect `!votes` command, emit event
 - `gateway/router.go` -- call `handleEventVotesQuery` in `handleReceive`
 - `gateway/handlers.go` -- implement `handleEventVotesQuery`
 ## API Endpoints Used
 - `GET /api/sessions/active` (existing)
 - `GET /api/sessions/{id}/games` (new client method)
 - `GET /api/sessions/{id}/votes` (new client method)
 - `GET /api/games/{id}` (new client method)
--- a/gateway/handlers.go
+++ b/gateway/handlers.go
@@ -14,6 +14,7 @@ import (
 	"github.com/42wim/matterbridge/bridge"
 	"github.com/42wim/matterbridge/bridge/config"
 	"github.com/42wim/matterbridge/bridge/jackbox"
 	"github.com/42wim/matterbridge/gateway/bridgemap"
 )
@@ -49,6 +50,131 @@ func (r *Router) handleEventGetChannelMembers(msg *config.Message) {
 	}
 }
 // handleEventReconnectKosmi handles a manual Kosmi reconnect request (e.g. from !kreconnect).
 // Returns true if the event was consumed and should not be routed further.
 func (r *Router) handleEventReconnectKosmi(msg *config.Message) bool {
 	if msg.Event != config.EventReconnectKosmi {
 		return false
 	}
 	originChannel := msg.Channel
 	originAccount := msg.Account
 	for _, gw := range r.Gateways {
 		for _, br := range gw.Bridges {
 			if br.Protocol == "kosmi" {
 				r.logger.Infof("Reconnecting Kosmi bridge %s (requested via !kreconnect)", br.Account)
 				// Send confirmation to the IRC channel that requested it
 				if originAccount != "" && originChannel != "" {
 					if ircBr, ok := gw.Bridges[originAccount]; ok {
 						ircBr.Send(config.Message{
 							Text:     "Reconnecting Kosmi...",
 							Channel:  originChannel,
 							Username: "system",
 							Account:  originAccount,
 						})
 					}
 				}
 				go gw.reconnectBridge(br)
 				return true
 			}
 		}
 	}
 	r.logger.Warn("!kreconnect: no Kosmi bridge found")
 	return true
 }
 // handleEventVotesQuery handles a !votes command by fetching vote data for the
 // currently playing game and broadcasting the result to all bridges.
 // Returns true if the event was consumed.
 func (r *Router) handleEventVotesQuery(msg *config.Message) bool {
 	if msg.Event != config.EventVotesQuery {
 		return false
 	}
 	client := r.JackboxManager.GetClient()
 	if client == nil {
 		r.logger.Warn("!votes: Jackbox client not available")
 		return true
 	}
 	session, err := client.GetActiveSession()
 	if err != nil {
 		r.logger.Warnf("!votes: failed to get active session: %v", err)
 		return true
 	}
 	if session == nil {
 		r.logger.Warn("!votes: no active session")
 		return true
 	}
 	games, err := client.GetSessionGames(session.ID)
 	if err != nil {
 		r.logger.Warnf("!votes: failed to get session games: %v", err)
 		return true
 	}
 	var playingGame *jackbox.SessionGame
 	for i := range games {
 		if games[i].Status == "playing" {
 			playingGame = &games[i]
 			break
 		}
 	}
 	if playingGame == nil {
 		r.logger.Warn("!votes: no game currently playing in session")
 		return true
 	}
 	r.logger.Infof("!votes: session=%d, playing game ID=%d (session_games.id=%d) title=%q",
 		session.ID, playingGame.GameID, playingGame.ID, playingGame.Title)
 	votesResp, err := client.GetSessionVotes(session.ID)
 	if err != nil {
 		r.logger.Warnf("!votes: failed to get session votes: %v", err)
 		return true
 	}
 	var sessionUp, sessionDown, sessionNet int
 	if votesResp != nil {
 		r.logger.Infof("!votes: session votes response has %d entries", len(votesResp.Votes))
 		for _, v := range votesResp.Votes {
 			r.logger.Infof("!votes:   vote entry game_id=%d title=%q up=%d down=%d net=%d",
 				v.GameID, v.Title, v.Upvotes, v.Downvotes, v.NetScore)
 			if v.GameID == playingGame.GameID {
 				sessionUp = v.Upvotes
 				sessionDown = v.Downvotes
 				sessionNet = v.NetScore
 				break
 			}
 		}
 	} else {
 		r.logger.Info("!votes: session votes response is nil")
 	}
 	game, err := client.GetGame(playingGame.GameID)
 	if err != nil {
 		r.logger.Warnf("!votes: failed to get game %d: %v", playingGame.GameID, err)
 		return true
 	}
 	var allTimeUp, allTimeDown, allTimeScore int
 	if game != nil {
 		allTimeUp = game.Upvotes
 		allTimeDown = game.Downvotes
 		allTimeScore = game.PopularityScore
 	}
 	message := fmt.Sprintf("🗳️ %s • Today: %d👍 %d👎 (Score: %d) • All-time: %d👍 %d👎 (Score: %d)",
 		playingGame.Title, sessionUp, sessionDown, sessionNet, allTimeUp, allTimeDown, allTimeScore)
 	r.broadcastJackboxMessage(message)
 	return true
 }
 // handleEventRejoinChannels handles rejoining of channels.
 func (r *Router) handleEventRejoinChannels(msg *config.Message) {
 	if msg.Event != config.EventRejoinChannels {
--- a/gateway/router.go
+++ b/gateway/router.go
@@ -155,6 +155,12 @@ func (r *Router) getBridge(account string) *bridge.Bridge {
 func (r *Router) handleReceive() {
 	for msg := range r.Message {
 		msg := msg // scopelint
 		if r.handleEventReconnectKosmi(&msg) {
 			continue
 		}
 		if r.handleEventVotesQuery(&msg) {
 			continue
 		}
 		r.handleEventGetChannelMembers(&msg)
 		r.handleEventFailure(&msg)
 		r.handleEventRejoinChannels(&msg)
--- a/har_operations_full.txt
+++ b/har_operations_full.txt
@@ -1,200 +0,0 @@
 [0] Type: connection_init
 [2] Type: subscribe
    Operation: SettingsQuery
    Query:
 [3] Type: subscribe
    Operation: ExtendedCurrentUserQuery
    Query:
 [4] Type: subscribe
    Operation: UserRoomQuery
    Query:
 [5] Type: subscribe
    Operation: WebRTCIceServerQuery
    Query:
 [6] Type: subscribe
    Query:
 [16] Type: subscribe
    Operation: CurrentUserQuery4
    Query:
 [20] Type: subscribe
    Operation: NotificationQuery1
    Query:
 [21] Type: subscribe
    Operation: MessageList
    Query:
 [22] Type: subscribe
    Operation: EventMutation
    Query:
 [23] Type: subscribe
    Operation: ServerTimeQuery
    Query:
 [24] Type: subscribe
    Operation: JoinRoom
    Query:
 [25] Type: subscribe
    Operation: NewNotificationSubscription
    Query:
 [26] Type: subscribe
    Operation: NewPublicNotificationSubscription
    Query:
 [27] Type: subscribe
    Operation: MessageListUpdate
    Query:
 [28] Type: subscribe
    Operation: OnNewPrivateMessage
    Query:
 [29] Type: subscribe
    Operation: PrivateMessageDeletedSubsciption
    Query:
 [30] Type: subscribe
    Operation: RemoveRoomSubscription
    Query:
 [31] Type: subscribe
    Operation: RoomlistRoomUpdateSubscription
    Query:
 [32] Type: subscribe
    Operation: OnFriendListUpdate
    Query:
 [33] Type: subscribe
    Operation: SubscriptionUpdateSubscription
    Query:
 [34] Type: subscribe
    Operation: SettingsSubscription
    Query:
 [41] Type: subscribe
    Operation: GetRunningApp
    Query:
 [42] Type: subscribe
    Operation: RoomRootQuery
    Query:
 [43] Type: subscribe
    Operation: WithGetMembers
    Query:
 [44] Type: subscribe
    Operation: GetSpacesState
    Query:
 [45] Type: subscribe
    Operation: RoomChatQuery
    Query:
 [46] Type: subscribe
    Operation: LinkedMembers
    Query:
 [47] Type: subscribe
    Operation: mediaPlayerStateQuery1
    Query:
 [48] Type: subscribe
    Operation: MediaPlayerSubtitlesQuery
    Query:
 [49] Type: subscribe
    Operation: MediaSoupStateQuery
    Query:
 [50] Type: subscribe
    Operation: ToolbarMetadataQuery
    Query:
 [51] Type: subscribe
    Operation: MessageReaders
    Query:
 [56] Type: subscribe
    Operation: UserTyping
    Query:
 [57] Type: subscribe
    Operation: RoomDisconnect
    Query:
 [58] Type: subscribe
    Operation: MemberJoins
    Query:
 [59] Type: subscribe
    Operation: MemberLeaves
    Query:
 [60] Type: subscribe
    Operation: SetRole2
    Query:
 [61] Type: subscribe
    Operation: NewMessageSubscription
    Query:
 [62] Type: subscribe
    Operation: MessageDeletedSubscription
    Query:
 [63] Type: subscribe
    Operation: ClearMessagesSubscription
    Query:
 [64] Type: subscribe
    Operation: ReactionAdded
    Query:
 [65] Type: subscribe
    Operation: ReactionRemoved
    Query:
 [66] Type: subscribe
    Operation: MessageEditedSubscription
    Query:
 [67] Type: subscribe
    Operation: OnSpacesStateUpdate
    Query:
 [68] Type: subscribe
    Operation: NewMemberSubscription
    Query:
 [69] Type: subscribe
    Operation: MemberUnlinksSubscription
    Query:
 [70] Type: subscribe
    Operation: SetRole
    Query:
 [71] Type: subscribe
    Operation: OnMediaSoupUpdateState
    Query:
 [75] Type: subscribe
    Operation: StartAppSubscription
    Query:
 [76] Type: subscribe
    Operation: MetadataUpdates
    Query:
 [83] Type: subscribe
    Operation: OnMediaPlayerUpdateState
    Query:
 [84] Type: subscribe
    Operation: OnMediaPlayerUpdateSubtitles
    Query:
 [98] Type: subscribe
    Operation: ServerTimeQuery
    Query:
 [102] Type: subscribe
    Operation: Login
    Query:
 [0] Type: connection_init
 [2] Type: subscribe
    Operation: LeaveRoom
    Query:
 [3] Type: subscribe
    Operation: SettingsQuery
    Query:
 [4] Type: subscribe
    Operation: ExtendedCurrentUserQuery
    Query:
 [5] Type: subscribe
    Operation: UserRoomQuery
    Query:
 [6] Type: subscribe
    Operation: WebRTCIceServerQuery
    Query:
 [7] Type: subscribe
    Query:
 [14] Type: subscribe
    Operation: NotificationQuery3
    Query:
 [15] Type: subscribe
    Operation: MessageList
    Query:
 [16] Type: subscribe
    Operation: NotificationQuery2
    Query:
 [22] Type: subscribe
    Operation: CurrentUserQuery4
    Query:
 [32] Type: subscribe
    Operation: NotificationQuery1
    Query:
 [33] Type: subscribe
    Operation: MessageList
    Query:
 [34] Type: subscribe
    Operation: EventMutation
--- a/matterbridge.toml.example
+++ b/matterbridge.toml.example
@@ -0,0 +1,130 @@
 # Matterbridge configuration for Kosmi <-> IRC relay
 # 
 # IMPORTANT: Copy this file to matterbridge.toml and update values before running:
 # 1. Change the Kosmi RoomURL to your room
 # 2. Change the IRC server and channel to your IRC network
 # 3. Set your bot's nickname
 # 4. Configure NickServ authentication if needed
 # 5. Set Jackbox credentials if using that integration
 ###################################################################
 # Kosmi section
 ###################################################################
 [kosmi]
 [kosmi.hyperspaceout]
 # Kosmi room URL (required)
 # Format: https://app.kosmi.io/room/@roomname or https://app.kosmi.io/room/roomid
 RoomURL="https://app.kosmi.io/room/@yourroom"
 # Optional: Email/password authentication
 # If not provided, will use anonymous access
 # Note: Requires Chrome/Chromium installed for browser automation
 Email=""
 Password=""
 # How to format usernames from other bridges
 RemoteNickFormat="[{PROTOCOL}] <{NICK}> "
 ###################################################################
 # IRC section
 ###################################################################
 [irc]
 [irc.zeronode]
 # IRC server to connect to (change this to your IRC server)
 Server="irc.libera.chat:6697"
 # Your bot's nickname (change this)
 Nick="kosmi-relay"
 # How to format usernames from other bridges  
 RemoteNickFormat="[{PROTOCOL}] <{NICK}> "
 # Enable TLS (recommended for public servers)
 UseTLS=true
 # For TLS, use port 6697:
 # Server="irc.libera.chat:6697"
 # UseTLS=true
 # Skip TLS verification (only for self-signed certs, not recommended)
 SkipTLSVerify=false
 # NickServ authentication (optional but recommended)
 # Register your nick on the IRC network first, then uncomment:
 #NickServNick="nickserv"
 #NickServPassword="your_password"
 # Alternative: Use SASL authentication (more secure)
 #UseSASL=true
 #NickServUsername="kosmi-relay"
 #NickServPassword="your_password"
 # Channels to auto-join on connect (optional)
 Channels=["#your-channel"]
 # Enable debug logging for IRC (optional)
 Debug=false
 ###################################################################
 # Gateway configuration
 ###################################################################
 # This connects the Kosmi room to the IRC channel
 [[gateway]]
 name="kosmi-irc-gateway"
 enable=true
 # Kosmi side
 [[gateway.inout]]
 account="kosmi.hyperspaceout"
 channel="main"  # Kosmi uses a single "main" channel per room
 # IRC side
 [[gateway.inout]]
 account="irc.zeronode"
 channel="#your-channel"
 ###################################################################
 # Jackbox Game Picker API Integration
 ###################################################################
 [jackbox]
 # Enable Jackbox integration for vote detection and game notifications
 Enabled=false
 # Jackbox API URL
 APIURL="https://your-jackbox-api.example.com"
 # Admin password for API authentication
 AdminPassword=""
 # Use WebSocket for real-time game notifications (recommended)
 # Set to false to use webhooks instead
 UseWebSocket=true
 # Webhook configuration (only needed if UseWebSocket=false)
 # Webhook server port (for receiving game notifications)
 WebhookPort=3001
 # Webhook secret for signature verification
 WebhookSecret=""
 # Enable room code image upload for Kosmi chat
 # When enabled, generates a PNG image of the room code and attempts to upload it
 # Falls back to plain text if upload fails or is not supported
 EnableRoomCodeImage=true
 # Delay in seconds before sending the image+announcement message (default: 0)
 RoomCodeImageDelay=28
 # Delay in seconds before sending the plaintext room code follow-up (default: 29)
 RoomCodePlaintextDelay=22
 ###################################################################
 # General settings
 ###################################################################
 [general]
 # Show join/leave messages
 ShowJoinPart=false
 # Remote nick format (how nicks from other bridges are displayed)
 #RemoteNickFormat="[{PROTOCOL}] <{NICK}> "
--- a/BIN
+++ b/BIN
--- a/roomcode_ABCD.gif
+++ b/roomcode_ABCD.gif
--- a/roomcode_TEST.gif
+++ b/roomcode_TEST.gif
--- a/roomcode_XY12.gif
+++ b/roomcode_XY12.gif
--- a/roomcode_ZZZZ.gif
+++ b/roomcode_ZZZZ.gif
--- a/BIN
+++ b/BIN
--- a/BIN
+++ b/BIN
--- a/BIN
+++ b/BIN
--- a/BIN
+++ b/BIN
--- a/BIN
+++ b/BIN
--- a/BIN
+++ b/BIN
--- a/BIN
+++ b/BIN
--- a/BIN
+++ b/BIN
--- a/test_upload.gif
+++ b/test_upload.gif
Author	SHA1	Message	Date
cottongin	88cc140087	Add !votes command, fix vote tally timing, and improve Kosmi stability - Add !votes command (IRC + Kosmi) showing per-session and all-time vote breakdowns for the current game via new Jackbox API endpoints (GET sessions/{id}/games, sessions/{id}/votes, games/{id}) - Fix vote tally broadcasting: remove debounce timer, announce tallies only at game transitions or session end instead of after every vote - Add !kreconnect IRC command to manually trigger Kosmi reconnection - Add WebSocket ping/pong keepalive and write mutex to Kosmi client for connection stability - Add watchConnection() auto-reconnect on unexpected Kosmi disconnects - Remove old 2025-10-31 chat summaries; add votes command design doc Made-with: Cursor	2026-03-16 20:56:18 -04:00
cottongin	1831b0e923	Remove compiled binaries from tracking Untrack 12 Mach-O binaries that were committed to the repo and add them to .gitignore. These can be rebuilt from source with go build. Co-authored-by: Cursor <cursoragent@cursor.com>	2026-02-07 13:53:08 -05:00
cottongin	8eeefcc81c	Move PROJECT_STATUS.txt to docs/ Co-authored-by: Cursor <cursoragent@cursor.com>	2026-02-07 13:46:40 -05:00
cottongin	78accf403d	Remove test artifacts from tracking Untrack har_operations_full.txt, roomcode GIFs, and test_upload.gif. Add them to .gitignore. Co-authored-by: Cursor <cursoragent@cursor.com>	2026-02-07 13:45:54 -05:00
cottongin	db284d0677	Move troubleshooting and implementation docs to docs/ Relocate 30 non-essential .md files (investigation notes, fix summaries, implementation details, status reports) from the project root into docs/ to reduce clutter. Core operational docs (README, quickstart guides, configuration references) remain in the root. Co-authored-by: Cursor <cursoragent@cursor.com>	2026-02-07 13:40:46 -05:00
cottongin	3b7a139606	Remove sensitive files from tracking and add example config Add matterbridge.toml, test configs, HAR captures, and JWT-containing debug files to .gitignore. Provide matterbridge.toml.example with placeholder values for safe onboarding. Co-authored-by: Cursor <cursoragent@cursor.com>	2026-02-07 13:35:51 -05:00
cottongin	fd42ac0e7c	working state	2026-02-07 12:37:21 -05:00
cottongin	1e0cb63b1c	tweaks to websocket	2026-02-07 00:06:20 -05:00
cottongin	673c8025ee	nailed it 2.0	2025-11-02 16:49:12 -05:00
cottongin	9262ae79dd	nailed it	2025-11-02 16:48:18 -05:00
cottongin	f764519a30	nailed it	2025-11-02 16:04:03 -05:00