npm - @lenylvt/pi-ai - Versions diffs - 0.64.0 - Mend

@lenylvt/pi-ai 0.64.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (167) hide show

package/README.md +203 -0
package/dist/api-registry.d.ts +20 -0
package/dist/api-registry.d.ts.map +1 -0
package/dist/api-registry.js +44 -0
package/dist/api-registry.js.map +1 -0
package/dist/cli.d.ts +3 -0
package/dist/cli.d.ts.map +1 -0
package/dist/cli.js +119 -0
package/dist/cli.js.map +1 -0
package/dist/env-api-keys.d.ts +7 -0
package/dist/env-api-keys.d.ts.map +1 -0
package/dist/env-api-keys.js +13 -0
package/dist/env-api-keys.js.map +1 -0
package/dist/index.d.ts +20 -0
package/dist/index.d.ts.map +1 -0
package/dist/index.js +14 -0
package/dist/index.js.map +1 -0
package/dist/models.d.ts +24 -0
package/dist/models.d.ts.map +1 -0
package/dist/models.generated.d.ts +2332 -0
package/dist/models.generated.d.ts.map +1 -0
package/dist/models.generated.js +2186 -0
package/dist/models.generated.js.map +1 -0
package/dist/models.js +60 -0
package/dist/models.js.map +1 -0
package/dist/oauth.d.ts +2 -0
package/dist/oauth.d.ts.map +1 -0
package/dist/oauth.js +2 -0
package/dist/oauth.js.map +1 -0
package/dist/providers/anthropic.d.ts +40 -0
package/dist/providers/anthropic.d.ts.map +1 -0
package/dist/providers/anthropic.js +749 -0
package/dist/providers/anthropic.js.map +1 -0
package/dist/providers/faux.d.ts +56 -0
package/dist/providers/faux.d.ts.map +1 -0
package/dist/providers/faux.js +367 -0
package/dist/providers/faux.js.map +1 -0
package/dist/providers/github-copilot-headers.d.ts +8 -0
package/dist/providers/github-copilot-headers.d.ts.map +1 -0
package/dist/providers/github-copilot-headers.js +29 -0
package/dist/providers/github-copilot-headers.js.map +1 -0
package/dist/providers/openai-codex-responses.d.ts +9 -0
package/dist/providers/openai-codex-responses.d.ts.map +1 -0
package/dist/providers/openai-codex-responses.js +741 -0
package/dist/providers/openai-codex-responses.js.map +1 -0
package/dist/providers/openai-completions.d.ts +15 -0
package/dist/providers/openai-completions.d.ts.map +1 -0
package/dist/providers/openai-completions.js +687 -0
package/dist/providers/openai-completions.js.map +1 -0
package/dist/providers/openai-responses-shared.d.ts +17 -0
package/dist/providers/openai-responses-shared.d.ts.map +1 -0
package/dist/providers/openai-responses-shared.js +458 -0
package/dist/providers/openai-responses-shared.js.map +1 -0
package/dist/providers/openai-responses.d.ts +13 -0
package/dist/providers/openai-responses.d.ts.map +1 -0
package/dist/providers/openai-responses.js +190 -0
package/dist/providers/openai-responses.js.map +1 -0
package/dist/providers/register-builtins.d.ts +16 -0
package/dist/providers/register-builtins.d.ts.map +1 -0
package/dist/providers/register-builtins.js +140 -0
package/dist/providers/register-builtins.js.map +1 -0
package/dist/providers/simple-options.d.ts +8 -0
package/dist/providers/simple-options.d.ts.map +1 -0
package/dist/providers/simple-options.js +35 -0
package/dist/providers/simple-options.js.map +1 -0
package/dist/providers/transform-messages.d.ts +8 -0
package/dist/providers/transform-messages.d.ts.map +1 -0
package/dist/providers/transform-messages.js +155 -0
package/dist/providers/transform-messages.js.map +1 -0
package/dist/stream.d.ts +8 -0
package/dist/stream.d.ts.map +1 -0
package/dist/stream.js +27 -0
package/dist/stream.js.map +1 -0
package/dist/types.d.ts +283 -0
package/dist/types.d.ts.map +1 -0
package/dist/types.js +2 -0
package/dist/types.js.map +1 -0
package/dist/utils/event-stream.d.ts +21 -0
package/dist/utils/event-stream.d.ts.map +1 -0
package/dist/utils/event-stream.js +81 -0
package/dist/utils/event-stream.js.map +1 -0
package/dist/utils/hash.d.ts +3 -0
package/dist/utils/hash.d.ts.map +1 -0
package/dist/utils/hash.js +14 -0
package/dist/utils/hash.js.map +1 -0
package/dist/utils/json-parse.d.ts +9 -0
package/dist/utils/json-parse.d.ts.map +1 -0
package/dist/utils/json-parse.js +29 -0
package/dist/utils/json-parse.js.map +1 -0
package/dist/utils/oauth/anthropic.d.ts +25 -0
package/dist/utils/oauth/anthropic.d.ts.map +1 -0
package/dist/utils/oauth/anthropic.js +335 -0
package/dist/utils/oauth/anthropic.js.map +1 -0
package/dist/utils/oauth/github-copilot.d.ts +30 -0
package/dist/utils/oauth/github-copilot.d.ts.map +1 -0
package/dist/utils/oauth/github-copilot.js +292 -0
package/dist/utils/oauth/github-copilot.js.map +1 -0
package/dist/utils/oauth/index.d.ts +36 -0
package/dist/utils/oauth/index.d.ts.map +1 -0
package/dist/utils/oauth/index.js +92 -0
package/dist/utils/oauth/index.js.map +1 -0
package/dist/utils/oauth/oauth-page.d.ts +3 -0
package/dist/utils/oauth/oauth-page.d.ts.map +1 -0
package/dist/utils/oauth/oauth-page.js +105 -0
package/dist/utils/oauth/oauth-page.js.map +1 -0
package/dist/utils/oauth/openai-codex.d.ts +34 -0
package/dist/utils/oauth/openai-codex.d.ts.map +1 -0
package/dist/utils/oauth/openai-codex.js +373 -0
package/dist/utils/oauth/openai-codex.js.map +1 -0
package/dist/utils/oauth/pkce.d.ts +13 -0
package/dist/utils/oauth/pkce.d.ts.map +1 -0
package/dist/utils/oauth/pkce.js +31 -0
package/dist/utils/oauth/pkce.js.map +1 -0
package/dist/utils/oauth/types.d.ts +47 -0
package/dist/utils/oauth/types.d.ts.map +1 -0
package/dist/utils/oauth/types.js +2 -0
package/dist/utils/oauth/types.js.map +1 -0
package/dist/utils/overflow.d.ts +53 -0
package/dist/utils/overflow.d.ts.map +1 -0
package/dist/utils/overflow.js +119 -0
package/dist/utils/overflow.js.map +1 -0
package/dist/utils/sanitize-unicode.d.ts +22 -0
package/dist/utils/sanitize-unicode.d.ts.map +1 -0
package/dist/utils/sanitize-unicode.js +26 -0
package/dist/utils/sanitize-unicode.js.map +1 -0
package/dist/utils/typebox-helpers.d.ts +17 -0
package/dist/utils/typebox-helpers.d.ts.map +1 -0
package/dist/utils/typebox-helpers.js +21 -0
package/dist/utils/typebox-helpers.js.map +1 -0
package/dist/utils/validation.d.ts +18 -0
package/dist/utils/validation.d.ts.map +1 -0
package/dist/utils/validation.js +80 -0
package/dist/utils/validation.js.map +1 -0
package/package.json +89 -0
package/src/api-registry.ts +98 -0
package/src/cli.ts +136 -0
package/src/env-api-keys.ts +22 -0
package/src/index.ts +29 -0
package/src/models.generated.ts +2188 -0
package/src/models.ts +82 -0
package/src/oauth.ts +1 -0
package/src/providers/anthropic.ts +905 -0
package/src/providers/faux.ts +498 -0
package/src/providers/github-copilot-headers.ts +37 -0
package/src/providers/openai-codex-responses.ts +929 -0
package/src/providers/openai-completions.ts +811 -0
package/src/providers/openai-responses-shared.ts +513 -0
package/src/providers/openai-responses.ts +251 -0
package/src/providers/register-builtins.ts +232 -0
package/src/providers/simple-options.ts +46 -0
package/src/providers/transform-messages.ts +172 -0
package/src/stream.ts +59 -0
package/src/types.ts +294 -0
package/src/utils/event-stream.ts +87 -0
package/src/utils/hash.ts +13 -0
package/src/utils/json-parse.ts +28 -0
package/src/utils/oauth/anthropic.ts +402 -0
package/src/utils/oauth/github-copilot.ts +396 -0
package/src/utils/oauth/index.ts +123 -0
package/src/utils/oauth/oauth-page.ts +109 -0
package/src/utils/oauth/openai-codex.ts +450 -0
package/src/utils/oauth/pkce.ts +34 -0
package/src/utils/oauth/types.ts +59 -0
package/src/utils/overflow.ts +125 -0
package/src/utils/sanitize-unicode.ts +25 -0
package/src/utils/typebox-helpers.ts +24 -0
package/src/utils/validation.ts +93 -0

package/src/utils/oauth/github-copilot.ts ADDED Viewed

@@ -0,0 +1,396 @@
+/**
+ * GitHub Copilot OAuth flow
+ */
+import { getModels } from "../../models.js";
+import type { Api, Model } from "../../types.js";
+import type { OAuthCredentials, OAuthLoginCallbacks, OAuthProviderInterface } from "./types.js";
+type CopilotCredentials = OAuthCredentials & {
+	enterpriseUrl?: string;
+};
+const decode = (s: string) => atob(s);
+const CLIENT_ID = decode("SXYxLmI1MDdhMDhjODdlY2ZlOTg=");
+const COPILOT_HEADERS = {
+	"User-Agent": "GitHubCopilotChat/0.35.0",
+	"Editor-Version": "vscode/1.107.0",
+	"Editor-Plugin-Version": "copilot-chat/0.35.0",
+	"Copilot-Integration-Id": "vscode-chat",
+} as const;
+const INITIAL_POLL_INTERVAL_MULTIPLIER = 1.2;
+const SLOW_DOWN_POLL_INTERVAL_MULTIPLIER = 1.4;
+type DeviceCodeResponse = {
+	device_code: string;
+	user_code: string;
+	verification_uri: string;
+	interval: number;
+	expires_in: number;
+};
+type DeviceTokenSuccessResponse = {
+	access_token: string;
+	token_type?: string;
+	scope?: string;
+};
+type DeviceTokenErrorResponse = {
+	error: string;
+	error_description?: string;
+	interval?: number;
+};
+export function normalizeDomain(input: string): string | null {
+	const trimmed = input.trim();
+	if (!trimmed) return null;
+	try {
+		const url = trimmed.includes("://") ? new URL(trimmed) : new URL(`https://${trimmed}`);
+		return url.hostname;
+	} catch {
+		return null;
+	}
+}
+function getUrls(domain: string): {
+	deviceCodeUrl: string;
+	accessTokenUrl: string;
+	copilotTokenUrl: string;
+} {
+	return {
+		deviceCodeUrl: `https://${domain}/login/device/code`,
+		accessTokenUrl: `https://${domain}/login/oauth/access_token`,
+		copilotTokenUrl: `https://api.${domain}/copilot_internal/v2/token`,
+	};
+}
+/**
+ * Parse the proxy-ep from a Copilot token and convert to API base URL.
+ * Token format: tid=...;exp=...;proxy-ep=proxy.individual.githubcopilot.com;...
+ * Returns API URL like https://api.individual.githubcopilot.com
+ */
+function getBaseUrlFromToken(token: string): string | null {
+	const match = token.match(/proxy-ep=([^;]+)/);
+	if (!match) return null;
+	const proxyHost = match[1];
+	// Convert proxy.xxx to api.xxx
+	const apiHost = proxyHost.replace(/^proxy\./, "api.");
+	return `https://${apiHost}`;
+}
+export function getGitHubCopilotBaseUrl(token?: string, enterpriseDomain?: string): string {
+	// If we have a token, extract the base URL from proxy-ep
+	if (token) {
+		const urlFromToken = getBaseUrlFromToken(token);
+		if (urlFromToken) return urlFromToken;
+	}
+	// Fallback for enterprise or if token parsing fails
+	if (enterpriseDomain) return `https://copilot-api.${enterpriseDomain}`;
+	return "https://api.individual.githubcopilot.com";
+}
+async function fetchJson(url: string, init: RequestInit): Promise<unknown> {
+	const response = await fetch(url, init);
+	if (!response.ok) {
+		const text = await response.text();
+		throw new Error(`${response.status} ${response.statusText}: ${text}`);
+	}
+	return response.json();
+}
+async function startDeviceFlow(domain: string): Promise<DeviceCodeResponse> {
+	const urls = getUrls(domain);
+	const data = await fetchJson(urls.deviceCodeUrl, {
+		method: "POST",
+		headers: {
+			Accept: "application/json",
+			"Content-Type": "application/x-www-form-urlencoded",
+			"User-Agent": "GitHubCopilotChat/0.35.0",
+		},
+		body: new URLSearchParams({
+			client_id: CLIENT_ID,
+			scope: "read:user",
+		}),
+	});
+	if (!data || typeof data !== "object") {
+		throw new Error("Invalid device code response");
+	}
+	const deviceCode = (data as Record<string, unknown>).device_code;
+	const userCode = (data as Record<string, unknown>).user_code;
+	const verificationUri = (data as Record<string, unknown>).verification_uri;
+	const interval = (data as Record<string, unknown>).interval;
+	const expiresIn = (data as Record<string, unknown>).expires_in;
+	if (
+		typeof deviceCode !== "string" ||
+		typeof userCode !== "string" ||
+		typeof verificationUri !== "string" ||
+		typeof interval !== "number" ||
+		typeof expiresIn !== "number"
+	) {
+		throw new Error("Invalid device code response fields");
+	}
+	return {
+		device_code: deviceCode,
+		user_code: userCode,
+		verification_uri: verificationUri,
+		interval,
+		expires_in: expiresIn,
+	};
+}
+/**
+ * Sleep that can be interrupted by an AbortSignal
+ */
+function abortableSleep(ms: number, signal?: AbortSignal): Promise<void> {
+	return new Promise((resolve, reject) => {
+		if (signal?.aborted) {
+			reject(new Error("Login cancelled"));
+			return;
+		}
+		const timeout = setTimeout(resolve, ms);
+		signal?.addEventListener(
+			"abort",
+			() => {
+				clearTimeout(timeout);
+				reject(new Error("Login cancelled"));
+			},
+			{ once: true },
+		);
+	});
+}
+async function pollForGitHubAccessToken(
+	domain: string,
+	deviceCode: string,
+	intervalSeconds: number,
+	expiresIn: number,
+	signal?: AbortSignal,
+) {
+	const urls = getUrls(domain);
+	const deadline = Date.now() + expiresIn * 1000;
+	let intervalMs = Math.max(1000, Math.floor(intervalSeconds * 1000));
+	let intervalMultiplier = INITIAL_POLL_INTERVAL_MULTIPLIER;
+	let slowDownResponses = 0;
+	while (Date.now() < deadline) {
+		if (signal?.aborted) {
+			throw new Error("Login cancelled");
+		}
+		const remainingMs = deadline - Date.now();
+		const waitMs = Math.min(Math.ceil(intervalMs * intervalMultiplier), remainingMs);
+		await abortableSleep(waitMs, signal);
+		const raw = await fetchJson(urls.accessTokenUrl, {
+			method: "POST",
+			headers: {
+				Accept: "application/json",
+				"Content-Type": "application/x-www-form-urlencoded",
+				"User-Agent": "GitHubCopilotChat/0.35.0",
+			},
+			body: new URLSearchParams({
+				client_id: CLIENT_ID,
+				device_code: deviceCode,
+				grant_type: "urn:ietf:params:oauth:grant-type:device_code",
+			}),
+		});
+		if (raw && typeof raw === "object" && typeof (raw as DeviceTokenSuccessResponse).access_token === "string") {
+			return (raw as DeviceTokenSuccessResponse).access_token;
+		}
+		if (raw && typeof raw === "object" && typeof (raw as DeviceTokenErrorResponse).error === "string") {
+			const { error, error_description: description, interval } = raw as DeviceTokenErrorResponse;
+			if (error === "authorization_pending") {
+				continue;
+			}
+			if (error === "slow_down") {
+				slowDownResponses += 1;
+				intervalMs =
+					typeof interval === "number" && interval > 0 ? interval * 1000 : Math.max(1000, intervalMs + 5000);
+				intervalMultiplier = SLOW_DOWN_POLL_INTERVAL_MULTIPLIER;
+				continue;
+			}
+			const descriptionSuffix = description ? `: ${description}` : "";
+			throw new Error(`Device flow failed: ${error}${descriptionSuffix}`);
+		}
+	}
+	if (slowDownResponses > 0) {
+		throw new Error(
+			"Device flow timed out after one or more slow_down responses. This is often caused by clock drift in WSL or VM environments. Please sync or restart the VM clock and try again.",
+		);
+	}
+	throw new Error("Device flow timed out");
+}
+/**
+ * Refresh GitHub Copilot token
+ */
+export async function refreshGitHubCopilotToken(
+	refreshToken: string,
+	enterpriseDomain?: string,
+): Promise<OAuthCredentials> {
+	const domain = enterpriseDomain || "github.com";
+	const urls = getUrls(domain);
+	const raw = await fetchJson(urls.copilotTokenUrl, {
+		headers: {
+			Accept: "application/json",
+			Authorization: `Bearer ${refreshToken}`,
+			...COPILOT_HEADERS,
+		},
+	});
+	if (!raw || typeof raw !== "object") {
+		throw new Error("Invalid Copilot token response");
+	}
+	const token = (raw as Record<string, unknown>).token;
+	const expiresAt = (raw as Record<string, unknown>).expires_at;
+	if (typeof token !== "string" || typeof expiresAt !== "number") {
+		throw new Error("Invalid Copilot token response fields");
+	}
+	return {
+		refresh: refreshToken,
+		access: token,
+		expires: expiresAt * 1000 - 5 * 60 * 1000,
+		enterpriseUrl: enterpriseDomain,
+	};
+}
+/**
+ * Enable a model for the user's GitHub Copilot account.
+ * This is required for some models (like Claude, Grok) before they can be used.
+ */
+async function enableGitHubCopilotModel(token: string, modelId: string, enterpriseDomain?: string): Promise<boolean> {
+	const baseUrl = getGitHubCopilotBaseUrl(token, enterpriseDomain);
+	const url = `${baseUrl}/models/${modelId}/policy`;
+	try {
+		const response = await fetch(url, {
+			method: "POST",
+			headers: {
+				"Content-Type": "application/json",
+				Authorization: `Bearer ${token}`,
+				...COPILOT_HEADERS,
+				"openai-intent": "chat-policy",
+				"x-interaction-type": "chat-policy",
+			},
+			body: JSON.stringify({ state: "enabled" }),
+		});
+		return response.ok;
+	} catch {
+		return false;
+	}
+}
+/**
+ * Enable all known GitHub Copilot models that may require policy acceptance.
+ * Called after successful login to ensure all models are available.
+ */
+async function enableAllGitHubCopilotModels(
+	token: string,
+	enterpriseDomain?: string,
+	onProgress?: (model: string, success: boolean) => void,
+): Promise<void> {
+	const models = getModels("github-copilot");
+	await Promise.all(
+		models.map(async (model) => {
+			const success = await enableGitHubCopilotModel(token, model.id, enterpriseDomain);
+			onProgress?.(model.id, success);
+		}),
+	);
+}
+/**
+ * Login with GitHub Copilot OAuth (device code flow)
+ *
+ * @param options.onAuth - Callback with URL and optional instructions (user code)
+ * @param options.onPrompt - Callback to prompt user for input
+ * @param options.onProgress - Optional progress callback
+ * @param options.signal - Optional AbortSignal for cancellation
+ */
+export async function loginGitHubCopilot(options: {
+	onAuth: (url: string, instructions?: string) => void;
+	onPrompt: (prompt: { message: string; placeholder?: string; allowEmpty?: boolean }) => Promise<string>;
+	onProgress?: (message: string) => void;
+	signal?: AbortSignal;
+}): Promise<OAuthCredentials> {
+	const input = await options.onPrompt({
+		message: "GitHub Enterprise URL/domain (blank for github.com)",
+		placeholder: "company.ghe.com",
+		allowEmpty: true,
+	});
+	if (options.signal?.aborted) {
+		throw new Error("Login cancelled");
+	}
+	const trimmed = input.trim();
+	const enterpriseDomain = normalizeDomain(input);
+	if (trimmed && !enterpriseDomain) {
+		throw new Error("Invalid GitHub Enterprise URL/domain");
+	}
+	const domain = enterpriseDomain || "github.com";
+	const device = await startDeviceFlow(domain);
+	options.onAuth(device.verification_uri, `Enter code: ${device.user_code}`);
+	const githubAccessToken = await pollForGitHubAccessToken(
+		domain,
+		device.device_code,
+		device.interval,
+		device.expires_in,
+		options.signal,
+	);
+	const credentials = await refreshGitHubCopilotToken(githubAccessToken, enterpriseDomain ?? undefined);
+	// Enable all models after successful login
+	options.onProgress?.("Enabling models...");
+	await enableAllGitHubCopilotModels(credentials.access, enterpriseDomain ?? undefined);
+	return credentials;
+}
+export const githubCopilotOAuthProvider: OAuthProviderInterface = {
+	id: "github-copilot",
+	name: "GitHub Copilot",
+	async login(callbacks: OAuthLoginCallbacks): Promise<OAuthCredentials> {
+		return loginGitHubCopilot({
+			onAuth: (url, instructions) => callbacks.onAuth({ url, instructions }),
+			onPrompt: callbacks.onPrompt,
+			onProgress: callbacks.onProgress,
+			signal: callbacks.signal,
+		});
+	},
+	async refreshToken(credentials: OAuthCredentials): Promise<OAuthCredentials> {
+		const creds = credentials as CopilotCredentials;
+		return refreshGitHubCopilotToken(creds.refresh, creds.enterpriseUrl);
+	},
+	getApiKey(credentials: OAuthCredentials): string {
+		return credentials.access;
+	},
+	modifyModels(models: Model<Api>[], credentials: OAuthCredentials): Model<Api>[] {
+		const creds = credentials as CopilotCredentials;
+		const domain = creds.enterpriseUrl ? (normalizeDomain(creds.enterpriseUrl) ?? undefined) : undefined;
+		const baseUrl = getGitHubCopilotBaseUrl(creds.access, domain);
+		return models.map((m) => (m.provider === "github-copilot" ? { ...m, baseUrl } : m));
+	},
+};

package/src/utils/oauth/index.ts ADDED Viewed

@@ -0,0 +1,123 @@
+/**
+ * OAuth credential management for the supported built-in providers.
+ *
+ * Supported OAuth providers:
+ * - Anthropic (Claude Pro/Max)
+ * - GitHub Copilot
+ * - OpenAI Codex (ChatGPT Plus/Pro)
+ */
+export { anthropicOAuthProvider, loginAnthropic, refreshAnthropicToken } from "./anthropic.js";
+export {
+	getGitHubCopilotBaseUrl,
+	githubCopilotOAuthProvider,
+	loginGitHubCopilot,
+	normalizeDomain,
+	refreshGitHubCopilotToken,
+} from "./github-copilot.js";
+export { loginOpenAICodex, openaiCodexOAuthProvider, refreshOpenAICodexToken } from "./openai-codex.js";
+export * from "./types.js";
+import { anthropicOAuthProvider } from "./anthropic.js";
+import { githubCopilotOAuthProvider } from "./github-copilot.js";
+import { openaiCodexOAuthProvider } from "./openai-codex.js";
+import type { OAuthCredentials, OAuthProviderId, OAuthProviderInfo, OAuthProviderInterface } from "./types.js";
+const BUILT_IN_OAUTH_PROVIDERS: OAuthProviderInterface[] = [
+	anthropicOAuthProvider,
+	githubCopilotOAuthProvider,
+	openaiCodexOAuthProvider,
+];
+const oauthProviderRegistry = new Map<string, OAuthProviderInterface>(
+	BUILT_IN_OAUTH_PROVIDERS.map((provider) => [provider.id, provider]),
+);
+export function getOAuthProvider(id: OAuthProviderId): OAuthProviderInterface | undefined {
+	return oauthProviderRegistry.get(id);
+}
+export function registerOAuthProvider(provider: OAuthProviderInterface): void {
+	oauthProviderRegistry.set(provider.id, provider);
+}
+export function unregisterOAuthProvider(id: string): void {
+	const builtInProvider = BUILT_IN_OAUTH_PROVIDERS.find((provider) => provider.id === id);
+	if (builtInProvider) {
+		oauthProviderRegistry.set(id, builtInProvider);
+		return;
+	}
+	oauthProviderRegistry.delete(id);
+}
+export function resetOAuthProviders(): void {
+	oauthProviderRegistry.clear();
+	for (const provider of BUILT_IN_OAUTH_PROVIDERS) {
+		oauthProviderRegistry.set(provider.id, provider);
+	}
+}
+export function getOAuthProviders(): OAuthProviderInterface[] {
+	return Array.from(oauthProviderRegistry.values());
+}
+/**
+ * @deprecated Use getOAuthProviders() which returns OAuthProviderInterface[]
+ */
+export function getOAuthProviderInfoList(): OAuthProviderInfo[] {
+	return getOAuthProviders().map((provider) => ({
+		id: provider.id,
+		name: provider.name,
+		available: true,
+	}));
+}
+/**
+ * Refresh token for any OAuth provider.
+ * @deprecated Use getOAuthProvider(id).refreshToken() instead
+ */
+export async function refreshOAuthToken(
+	providerId: OAuthProviderId,
+	credentials: OAuthCredentials,
+): Promise<OAuthCredentials> {
+	const provider = getOAuthProvider(providerId);
+	if (!provider) {
+		throw new Error(`Unknown OAuth provider: ${providerId}`);
+	}
+	return provider.refreshToken(credentials);
+}
+/**
+ * Get API key for a provider from OAuth credentials.
+ * Automatically refreshes expired tokens.
+ */
+export async function getOAuthApiKey(
+	providerId: OAuthProviderId,
+	credentials: Record<string, OAuthCredentials>,
+): Promise<{ newCredentials: OAuthCredentials; apiKey: string } | null> {
+	const provider = getOAuthProvider(providerId);
+	if (!provider) {
+		throw new Error(`Unknown OAuth provider: ${providerId}`);
+	}
+	let creds = credentials[providerId];
+	if (!creds) {
+		return null;
+	}
+	if (Date.now() >= creds.expires) {
+		try {
+			creds = await provider.refreshToken(creds);
+		} catch {
+			throw new Error(`Failed to refresh OAuth token for ${providerId}`);
+		}
+	}
+	return {
+		newCredentials: creds,
+		apiKey: provider.getApiKey(creds),
+	};
+}

package/src/utils/oauth/oauth-page.ts ADDED Viewed

@@ -0,0 +1,109 @@
+const LOGO_SVG = `<svg xmlns="http://www.w3.org/2000/svg" viewBox="0 0 800 800" aria-hidden="true"><path fill="#fff" fill-rule="evenodd" d="M165.29 165.29 H517.36 V400 H400 V517.36 H282.65 V634.72 H165.29 Z M282.65 282.65 V400 H400 V282.65 Z"/><path fill="#fff" d="M517.36 400 H634.72 V634.72 H517.36 Z"/></svg>`;
+function escapeHtml(value: string): string {
+	return value
+		.replaceAll("&", "&amp;")
+		.replaceAll("<", "&lt;")
+		.replaceAll(">", "&gt;")
+		.replaceAll('"', "&quot;")
+		.replaceAll("'", "&#39;");
+}
+function renderPage(options: { title: string; heading: string; message: string; details?: string }): string {
+	const title = escapeHtml(options.title);
+	const heading = escapeHtml(options.heading);
+	const message = escapeHtml(options.message);
+	const details = options.details ? escapeHtml(options.details) : undefined;
+	return `<!doctype html>
+<html lang="en">
+<head>
+  <meta charset="utf-8" />
+  <meta name="viewport" content="width=device-width, initial-scale=1" />
+  <title>${title}</title>
+  <style>
+    :root {
+      --text: #fafafa;
+      --text-dim: #a1a1aa;
+      --page-bg: #09090b;
+      --font-sans: ui-sans-serif, system-ui, -apple-system, BlinkMacSystemFont, "Segoe UI", Roboto, "Helvetica Neue", Arial, "Noto Sans", sans-serif, "Apple Color Emoji", "Segoe UI Emoji", "Segoe UI Symbol", "Noto Color Emoji";
+      --font-mono: ui-monospace, SFMono-Regular, Menlo, Monaco, Consolas, "Liberation Mono", "Courier New", monospace;
+    }
+    * { box-sizing: border-box; }
+    html { color-scheme: dark; }
+    body {
+      margin: 0;
+      min-height: 100vh;
+      display: flex;
+      align-items: center;
+      justify-content: center;
+      padding: 24px;
+      background: var(--page-bg);
+      color: var(--text);
+      font-family: var(--font-sans);
+      text-align: center;
+    }
+    main {
+      width: 100%;
+      max-width: 560px;
+      display: flex;
+      flex-direction: column;
+      align-items: center;
+      justify-content: center;
+    }
+    .logo {
+      width: 72px;
+      height: 72px;
+      display: block;
+      margin-bottom: 24px;
+    }
+    h1 {
+      margin: 0 0 10px;
+      font-size: 28px;
+      line-height: 1.15;
+      font-weight: 650;
+      color: var(--text);
+    }
+    p {
+      margin: 0;
+      line-height: 1.7;
+      color: var(--text-dim);
+      font-size: 15px;
+    }
+    .details {
+      margin-top: 16px;
+      font-family: var(--font-mono);
+      font-size: 13px;
+      color: var(--text-dim);
+      white-space: pre-wrap;
+      word-break: break-word;
+    }
+  </style>
+</head>
+<body>
+  <main>
+    <div class="logo">${LOGO_SVG}</div>
+    <h1>${heading}</h1>
+    <p>${message}</p>
+    ${details ? `<div class="details">${details}</div>` : ""}
+  </main>
+</body>
+</html>`;
+}
+export function oauthSuccessHtml(message: string): string {
+	return renderPage({
+		title: "Authentication successful",
+		heading: "Authentication successful",
+		message,
+	});
+}
+export function oauthErrorHtml(message: string, details?: string): string {
+	return renderPage({
+		title: "Authentication failed",
+		heading: "Authentication failed",
+		message,
+		details,
+	});
+}