npm - @gnahz77/opencode-copilot-multi-auth - Versions diffs - 0.1.2 → 0.1.3 - Mend

@gnahz77/opencode-copilot-multi-auth 0.1.2 → 0.1.3

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (9) hide show

package/README.md CHANGED Viewed

@@ -12,7 +12,7 @@ Add the plugin to your `opencode` config:
 {
   "$schema": "https://opencode.ai/config.json",
   "plugin": [
-    "@gnahz77/opencode-copilot-multi-auth@0.1.2"
+    "@gnahz77/opencode-copilot-multi-auth@0.1.3"
   ]
 }
 ```
@@ -25,7 +25,7 @@ If you also want the TUI command support provided by this package, add the same
 {
   "$schema": "https://opencode.ai/tui.json",
   "plugin": [
-    "@gnahz77/opencode-copilot-multi-auth@0.1.2"
+    "@gnahz77/opencode-copilot-multi-auth@0.1.3"
   ]
 }
 ```

package/dist/auth.d.ts CHANGED Viewed

@@ -3,6 +3,7 @@ export declare function getUrls(domain: string): {
     DEVICE_CODE_URL: string;
     ACCESS_TOKEN_URL: string;
     COPILOT_ENTITLEMENT_URL: string;
+    COPILOT_TOKEN_URL: string;
 };
 export declare function lookupGitHubIdentity(accessToken: string, enterpriseUrl?: string): Promise<{
     login: any;
@@ -10,7 +11,8 @@ export declare function lookupGitHubIdentity(accessToken: string, enterpriseUrl?
 }>;
 export declare function fetchEntitlement(info: AuthInput): Promise<any>;
 export declare function getBaseURL(info: AuthInput): Promise<any>;
-export declare function buildHeaders(init: RequestInit | undefined, info: AuthInput, isVision: boolean, isAgent: boolean): {
+export declare function getCopilotToken(info: AuthInput, forceRefresh?: boolean): Promise<any>;
+export declare function buildHeaders(init: RequestInit | undefined, copilotToken: string, isVision: boolean, isAgent: boolean): {
     [k: string]: string;
 };
 export declare function resolveSelectedPoolAccount(pool: AccountPool, accountKey?: string, requestedRawModelId?: string): PoolAccount | null;

package/dist/auth.js CHANGED Viewed

@@ -1,4 +1,4 @@
-import { API_VERSION } from "./constants.js";
+import { API_VERSION, COPILOT_TOKEN_EXPIRY_BUFFER_MS, DEFAULT_COPILOT_BASE_URL, VSCODE_HEADERS, } from "./constants.js";
 import { getSelectedAccountExpiredError, getSelectedAccountMissingError } from "./errors.js";
 import { readPool, resolveWinnerAccount, writePool } from "./pool.js";
 import { stripRoutingHeaders } from "./routing.js";
@@ -9,8 +9,17 @@ export function getUrls(domain) {
         DEVICE_CODE_URL: `https://${domain}/login/device/code`,
         ACCESS_TOKEN_URL: `https://${domain}/login/oauth/access_token`,
         COPILOT_ENTITLEMENT_URL: `https://${apiDomain}/copilot_internal/user`,
+        COPILOT_TOKEN_URL: `https://${apiDomain}/copilot_internal/v2/token`,
     };
 }
+const cachedCopilotTokens = new Map();
+function getCopilotTokenCacheKey(info) {
+    const domain = info.enterpriseUrl ? normalizeDomain(info.enterpriseUrl) : "github.com";
+    return `${domain}:${info.refresh}`;
+}
+function isReusableCopilotToken(token, expiresAt, now) {
+    return Boolean(token && expiresAt && expiresAt - COPILOT_TOKEN_EXPIRY_BUFFER_MS > now);
+}
 export async function lookupGitHubIdentity(accessToken, enterpriseUrl) {
     const deployment = enterpriseUrl ? normalizeDomain(enterpriseUrl) : "github.com";
     const apiDomain = deployment === "github.com" ? "api.github.com" : `api.${deployment}`;
@@ -42,7 +51,7 @@ export async function fetchEntitlement(info) {
         headers: {
             Accept: "application/json",
             Authorization: `Bearer ${info.refresh}`,
-            "User-Agent": "GithubCopilot/1.155.0",
+            ...VSCODE_HEADERS,
         },
     });
     if (!response.ok) {
@@ -54,7 +63,41 @@ export async function getBaseURL(info) {
     if (info.baseUrl)
         return info.baseUrl;
     const entitlement = await fetchEntitlement(info);
-    return entitlement?.endpoints?.api;
+    return entitlement?.endpoints?.api ?? DEFAULT_COPILOT_BASE_URL;
+}
+export async function getCopilotToken(info, forceRefresh = false) {
+    const now = Date.now();
+    if (!forceRefresh && isReusableCopilotToken(info.access, info.expires, now)) {
+        return info.access;
+    }
+    const cacheKey = getCopilotTokenCacheKey(info);
+    const cachedToken = cachedCopilotTokens.get(cacheKey);
+    if (!forceRefresh && cachedToken && isReusableCopilotToken(cachedToken.token, cachedToken.expiresAt, now)) {
+        return cachedToken.token;
+    }
+    const domain = info.enterpriseUrl ? normalizeDomain(info.enterpriseUrl) : "github.com";
+    const urls = getUrls(domain);
+    const response = await fetch(urls.COPILOT_TOKEN_URL, {
+        headers: {
+            Accept: "application/json",
+            Authorization: `Bearer ${info.refresh}`,
+            ...VSCODE_HEADERS,
+        },
+    });
+    if (!response.ok) {
+        throw new Error(`[opencode-copilot-cli-auth] Copilot token exchange failed: ${response.status}`);
+    }
+    const data = await response.json();
+    const token = typeof data?.token === "string" ? data.token : "";
+    const expiresAt = typeof data?.expires_at === "number" ? data.expires_at * 1000 : 0;
+    if (!token || !expiresAt) {
+        throw new Error("[opencode-copilot-cli-auth] Copilot token exchange returned an invalid payload.");
+    }
+    cachedCopilotTokens.set(cacheKey, {
+        token,
+        expiresAt,
+    });
+    return token;
 }
 function getHeader(headers, name) {
     if (!headers)
@@ -74,14 +117,13 @@ function getHeader(headers, name) {
     }
     return undefined;
 }
-export function buildHeaders(init, info, isVision, isAgent) {
+export function buildHeaders(init, copilotToken, isVision, isAgent) {
     const explicitInitiator = getHeader(init?.headers, "x-initiator");
     const headers = {
         ...normalizeHeaderObject(init?.headers),
-        Authorization: `Bearer ${info.refresh}`,
-        "Copilot-Integration-Id": "copilot-developer-cli",
+        Authorization: `Bearer ${copilotToken}`,
+        ...VSCODE_HEADERS,
         "Openai-Intent": "conversation-agent",
-        "User-Agent": "opencode-copilot-cli-auth/0.0.16",
         "X-GitHub-Api-Version": API_VERSION,
         "X-Initiator": explicitInitiator ?? (isAgent ? "agent" : "user"),
         "X-Interaction-Id": crypto.randomUUID(),
@@ -93,6 +135,7 @@ export function buildHeaders(init, info, isVision, isAgent) {
     }
     delete headers["x-api-key"];
     delete headers.authorization;
+    delete headers["authorization"];
     delete headers["x-initiator"];
     return stripRoutingHeaders(headers);
 }
@@ -170,8 +213,9 @@ export async function refreshSelectedAccountBaseURL(accountKey) {
 }
 export async function fetchWithSelectedAccount(input, init, selectedAccount) {
     const { isVision, isAgent } = getConversationMetadata(init);
-    const dispatch = async (account) => {
-        const headers = buildHeaders(init, account.auth, isVision, isAgent);
+    const dispatch = async (account, forceRefreshToken = false) => {
+        const copilotToken = await getCopilotToken(account.auth, forceRefreshToken);
+        const headers = buildHeaders(init, copilotToken, isVision, isAgent);
         const requestInput = applyBaseURLToRequestInput(input, account.baseUrl);
         return fetch(requestInput, {
             ...init,
@@ -187,7 +231,7 @@ export async function fetchWithSelectedAccount(input, init, selectedAccount) {
         return response;
     }
     const refreshedAccount = await refreshSelectedAccountBaseURL(activeAccount.key);
-    const retryResponse = await dispatch(refreshedAccount);
+    const retryResponse = await dispatch(refreshedAccount, true);
     if ([401, 403].includes(retryResponse.status)) {
         throw getSelectedAccountExpiredError(refreshedAccount.key);
     }

package/dist/constants.d.ts CHANGED Viewed

@@ -2,8 +2,16 @@ export declare const ACCOUNT_POOL_SCHEMA_VERSION = 1;
 export declare const ROUTING_ACCOUNT_KEY_HEADER = "x-opencode-copilot-account-key";
 export declare const ROUTING_SOURCE_HEADER = "x-opencode-copilot-route-source";
 export declare const INTERNAL_ROUTING_HEADERS: Set<string>;
-export declare const CLIENT_ID = "Ov23ctDVkRmgkPke0Mmm";
+export declare const CLIENT_ID = "Iv1.b507a08c87ecfe98";
 export declare const API_VERSION = "2025-05-01";
 export declare const OAUTH_POLLING_SAFETY_MARGIN_MS = 3000;
 export declare const OAUTH_SCOPES = "read:user read:org repo gist";
+export declare const DEFAULT_COPILOT_BASE_URL = "https://api.githubcopilot.com";
+export declare const COPILOT_TOKEN_EXPIRY_BUFFER_MS: number;
+export declare const VSCODE_HEADERS: {
+    readonly "User-Agent": "GitHubCopilotChat/0.38.0";
+    readonly "Editor-Version": "vscode/1.110.1";
+    readonly "Editor-Plugin-Version": "copilot-chat/0.38.0";
+    readonly "Copilot-Integration-Id": "vscode-chat";
+};
 export declare const RESPONSES_API_ALTERNATE_INPUT_TYPES: readonly ["file_search_call", "computer_call", "computer_call_output", "web_search_call", "function_call", "function_call_output", "image_generation_call", "code_interpreter_call", "local_shell_call", "local_shell_call_output", "mcp_list_tools", "mcp_approval_request", "mcp_approval_response", "mcp_call", "reasoning"];

package/dist/constants.js CHANGED Viewed

@@ -5,10 +5,18 @@ export const INTERNAL_ROUTING_HEADERS = new Set([
     ROUTING_ACCOUNT_KEY_HEADER,
     ROUTING_SOURCE_HEADER,
 ]);
-export const CLIENT_ID = "Ov23ctDVkRmgkPke0Mmm";
+export const CLIENT_ID = "Iv1.b507a08c87ecfe98";
 export const API_VERSION = "2025-05-01";
 export const OAUTH_POLLING_SAFETY_MARGIN_MS = 3000;
 export const OAUTH_SCOPES = "read:user read:org repo gist";
+export const DEFAULT_COPILOT_BASE_URL = "https://api.githubcopilot.com";
+export const COPILOT_TOKEN_EXPIRY_BUFFER_MS = 5 * 60 * 1000;
+export const VSCODE_HEADERS = {
+    "User-Agent": "GitHubCopilotChat/0.38.0",
+    "Editor-Version": "vscode/1.110.1",
+    "Editor-Plugin-Version": "copilot-chat/0.38.0",
+    "Copilot-Integration-Id": "vscode-chat",
+};
 export const RESPONSES_API_ALTERNATE_INPUT_TYPES = [
     "file_search_call",
     "computer_call",

package/dist/index.js CHANGED Viewed

@@ -1,9 +1,9 @@
 import { CLIENT_ID, OAUTH_POLLING_SAFETY_MARGIN_MS, OAUTH_SCOPES, ROUTING_ACCOUNT_KEY_HEADER, ROUTING_SOURCE_HEADER, } from "./constants.js";
-import { buildHeaders, fetchEntitlement, fetchWithSelectedAccount, getBaseURL, getUrls, lookupGitHubIdentity, resolveSelectedPoolAccount, } from "./auth.js";
+import { buildHeaders, fetchEntitlement, fetchWithSelectedAccount, getBaseURL, getCopilotToken, getUrls, lookupGitHubIdentity, resolveSelectedPoolAccount, } from "./auth.js";
 import { buildPoolBackedModels, normalizeExistingModels, resolveProviderModels } from "./models.js";
 import { deriveAccountKey, getPoolPath, readPool, resolveWinnerAccount, upsertAccount, writePool, } from "./pool.js";
 import { injectRoutingHeaders, stripRoutingHeaders } from "./routing.js";
-import { getHeader, getConversationMetadata, getRequestedRawModelId, normalizeDomain, resolveClaudeThinkingBudget, } from "./utils.js";
+import { applyBaseURLToRequestInput, getHeader, getConversationMetadata, getRequestedRawModelId, normalizeDomain, resolveClaudeThinkingBudget, } from "./utils.js";
 export { getPoolPath, readPool, writePool, deriveAccountKey, lookupGitHubIdentity, upsertAccount, resolveWinnerAccount };
 export { injectRoutingHeaders, stripRoutingHeaders };
 export const CopilotAuthPlugin = async (input) => {
@@ -69,8 +69,10 @@ export const CopilotAuthPlugin = async (input) => {
                             return fetch(inputRequest, init);
                         }
                         const { isVision, isAgent } = getConversationMetadata(init);
-                        const headers = buildHeaders(init, auth, isVision, isAgent);
-                        return fetch(inputRequest, {
+                        const copilotToken = await getCopilotToken(auth);
+                        const headers = buildHeaders(init, copilotToken, isVision, isAgent);
+                        const requestInput = applyBaseURLToRequestInput(inputRequest, baseURL);
+                        return fetch(requestInput, {
                             ...init,
                             headers,
                         });

package/dist/models.js CHANGED Viewed

@@ -1,14 +1,15 @@
-import { getBaseURL } from "./auth.js";
+import { getBaseURL, getCopilotToken } from "./auth.js";
+import { API_VERSION, VSCODE_HEADERS } from "./constants.js";
 import { resolveWinnerAccount } from "./pool.js";
 import { getReleaseDate, isPickerModel, zeroCost } from "./utils.js";
 export async function fetchModels(info, baseURL) {
+    const copilotToken = await getCopilotToken(info);
     const response = await fetch(`${baseURL}/models`, {
         headers: {
-            Authorization: `Bearer ${info.refresh}`,
-            "Copilot-Integration-Id": "copilot-developer-cli",
+            Authorization: `Bearer ${copilotToken}`,
+            ...VSCODE_HEADERS,
             "Openai-Intent": "model-access",
-            "User-Agent": "opencode-copilot-cli-auth/0.0.16",
-            "X-GitHub-Api-Version": "2025-05-01",
+            "X-GitHub-Api-Version": API_VERSION,
             "X-Interaction-Type": "model-access",
             "X-Request-Id": crypto.randomUUID(),
         },

package/dist/types.d.ts CHANGED Viewed

@@ -111,6 +111,8 @@ export interface ProviderModel {
 export type HeaderObject = Headers | Array<[string, string]> | Record<string, string> | undefined;
 export interface AuthInput {
     refresh: string;
+    access?: string;
+    expires?: number;
     enterpriseUrl?: string | null;
     baseUrl?: string | null;
     type?: string;

package/package.json CHANGED Viewed

@@ -1,6 +1,6 @@
 {
   "name": "@gnahz77/opencode-copilot-multi-auth",
-  "version": "0.1.2",
+  "version": "0.1.3",
   "type": "module",
   "main": "./dist/index.js",
   "types": "./dist/index.d.ts",