npm - @oevortex/opencode-qwen-auth - Versions diffs - 0.1.0 → 0.1.1 - Mend

@oevortex/opencode-qwen-auth 0.1.0 → 0.1.1

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (19) hide show

package/dist/index.cjs +1600 -0
package/dist/index.d.cts +450 -0
package/dist/index.d.ts +450 -0
package/dist/index.js +1534 -0
package/package.json +14 -6
package/index.ts +0 -82
package/src/constants.ts +0 -43
package/src/global.d.ts +0 -257
package/src/models.ts +0 -148
package/src/plugin/auth.ts +0 -151
package/src/plugin/browser.ts +0 -126
package/src/plugin/fetch-wrapper.ts +0 -460
package/src/plugin/logger.ts +0 -111
package/src/plugin/server.ts +0 -364
package/src/plugin/token.ts +0 -225
package/src/plugin.ts +0 -444
package/src/qwen/oauth.ts +0 -271
package/src/qwen/thinking-parser.ts +0 -190
package/src/types.ts +0 -292

package/src/plugin/server.ts DELETED Viewed

@@ -1,364 +0,0 @@
-/**
- * OAuth callback server for local authentication
- * Handles the OAuth redirect callback when authenticating with Qwen
- */
-import { createServer, type Server, type IncomingMessage, type ServerResponse } from "node:http";
-import { QWEN_CALLBACK_PORT } from "../constants";
-import { createLogger } from "./logger";
-const log = createLogger("server");
-/** Default timeout for waiting for OAuth callback (5 minutes) */
-const DEFAULT_TIMEOUT_MS = 5 * 60 * 1000;
-/** HTML response for successful authentication */
-const SUCCESS_HTML = `
-<!DOCTYPE html>
-<html>
-<head>
-  <title>Authentication Complete</title>
-  <style>
-    body {
-      font-family: -apple-system, BlinkMacSystemFont, 'Segoe UI', Roboto, Oxygen, Ubuntu, sans-serif;
-      display: flex;
-      justify-content: center;
-      align-items: center;
-      height: 100vh;
-      margin: 0;
-      background: linear-gradient(135deg, #667eea 0%, #764ba2 100%);
-    }
-    .container {
-      text-align: center;
-      padding: 40px;
-      background: white;
-      border-radius: 16px;
-      box-shadow: 0 20px 60px rgba(0,0,0,0.3);
-      max-width: 400px;
-    }
-    .checkmark {
-      width: 80px;
-      height: 80px;
-      background: #4CAF50;
-      border-radius: 50%;
-      display: flex;
-      justify-content: center;
-      align-items: center;
-      margin: 0 auto 20px;
-    }
-    .checkmark::after {
-      content: '✓';
-      font-size: 40px;
-      color: white;
-    }
-    h1 {
-      color: #333;
-      margin-bottom: 10px;
-    }
-    p {
-      color: #666;
-      margin: 0;
-    }
-    .close-note {
-      margin-top: 20px;
-      font-size: 14px;
-      color: #999;
-    }
-  </style>
-</head>
-<body>
-  <div class="container">
-    <div class="checkmark"></div>
-    <h1>Authentication Complete</h1>
-    <p>You have successfully authenticated with Qwen.</p>
-    <p class="close-note">You can close this window and return to OpenCode.</p>
-  </div>
-</body>
-</html>
-`;
-/** HTML response for authentication error */
-const ERROR_HTML = (message: string) => `
-<!DOCTYPE html>
-<html>
-<head>
-  <title>Authentication Failed</title>
-  <style>
-    body {
-      font-family: -apple-system, BlinkMacSystemFont, 'Segoe UI', Roboto, Oxygen, Ubuntu, sans-serif;
-      display: flex;
-      justify-content: center;
-      align-items: center;
-      height: 100vh;
-      margin: 0;
-      background: linear-gradient(135deg, #f44336 0%, #d32f2f 100%);
-    }
-    .container {
-      text-align: center;
-      padding: 40px;
-      background: white;
-      border-radius: 16px;
-      box-shadow: 0 20px 60px rgba(0,0,0,0.3);
-      max-width: 400px;
-    }
-    .error-icon {
-      width: 80px;
-      height: 80px;
-      background: #f44336;
-      border-radius: 50%;
-      display: flex;
-      justify-content: center;
-      align-items: center;
-      margin: 0 auto 20px;
-    }
-    .error-icon::after {
-      content: '✕';
-      font-size: 40px;
-      color: white;
-    }
-    h1 {
-      color: #333;
-      margin-bottom: 10px;
-    }
-    p {
-      color: #666;
-      margin: 0;
-    }
-    .error-message {
-      background: #ffebee;
-      padding: 10px;
-      border-radius: 8px;
-      margin-top: 15px;
-      font-family: monospace;
-      font-size: 13px;
-      color: #c62828;
-    }
-  </style>
-</head>
-<body>
-  <div class="container">
-    <div class="error-icon"></div>
-    <h1>Authentication Failed</h1>
-    <p>There was a problem authenticating with Qwen.</p>
-    <div class="error-message">${escapeHtml(message)}</div>
-  </div>
-</body>
-</html>
-`;
-/**
- * Escape HTML special characters to prevent XSS.
- */
-function escapeHtml(text: string): string {
-  return text
-    .replace(/&/g, "&amp;")
-    .replace(/</g, "&lt;")
-    .replace(/>/g, "&gt;")
-    .replace(/"/g, "&quot;")
-    .replace(/'/g, "&#039;");
-}
-/**
- * OAuth callback listener interface.
- */
-export interface OAuthListener {
-  /** The port the server is listening on */
-  port: number;
-  /** Wait for the OAuth callback and return the callback URL */
-  waitForCallback: (timeoutMs?: number) => Promise<URL>;
-  /** Close the server */
-  close: () => Promise<void>;
-}
-/**
- * Start an OAuth callback listener server.
- *
- * This creates a local HTTP server that listens for the OAuth redirect
- * callback and extracts the authorization code and state.
- *
- * @param port - Port to listen on (defaults to QWEN_CALLBACK_PORT)
- * @returns OAuthListener interface for waiting and cleanup
- */
-export async function startOAuthListener(port: number = QWEN_CALLBACK_PORT): Promise<OAuthListener> {
-  return new Promise((resolve, reject) => {
-    let callbackResolve: ((url: URL) => void) | null = null;
-    let callbackReject: ((error: Error) => void) | null = null;
-    let timeoutId: ReturnType<typeof setTimeout> | null = null;
-    const server: Server = createServer((req: IncomingMessage, res: ServerResponse) => {
-      const url = new URL(req.url || "/", `http://localhost:${port}`);
-      log.debug("Received request", { path: url.pathname, search: url.search });
-      // Only handle the callback path
-      if (url.pathname !== "/oauth-callback") {
-        res.writeHead(404, { "Content-Type": "text/plain" });
-        res.end("Not Found");
-        return;
-      }
-      // Check for error in callback
-      const error = url.searchParams.get("error");
-      if (error) {
-        const errorDescription = url.searchParams.get("error_description") || error;
-        log.error("OAuth callback received error", { error, errorDescription });
-        res.writeHead(200, { "Content-Type": "text/html" });
-        res.end(ERROR_HTML(errorDescription));
-        if (callbackReject) {
-          callbackReject(new Error(`OAuth error: ${errorDescription}`));
-          callbackReject = null;
-          callbackResolve = null;
-        }
-        return;
-      }
-      // Extract code and state
-      const code = url.searchParams.get("code");
-      const state = url.searchParams.get("state");
-      if (!code) {
-        const message = "Missing authorization code in callback";
-        log.error(message);
-        res.writeHead(200, { "Content-Type": "text/html" });
-        res.end(ERROR_HTML(message));
-        if (callbackReject) {
-          callbackReject(new Error(message));
-          callbackReject = null;
-          callbackResolve = null;
-        }
-        return;
-      }
-      log.info("OAuth callback received successfully", { hasCode: true, hasState: !!state });
-      // Send success response
-      res.writeHead(200, { "Content-Type": "text/html" });
-      res.end(SUCCESS_HTML);
-      // Resolve the callback promise
-      if (callbackResolve) {
-        callbackResolve(url);
-        callbackResolve = null;
-        callbackReject = null;
-      }
-      // Clear timeout
-      if (timeoutId) {
-        clearTimeout(timeoutId);
-        timeoutId = null;
-      }
-    });
-    // Handle server errors
-    server.on("error", (err: Error) => {
-      log.error("Server error", { error: err.message });
-      if ((err as NodeJS.ErrnoException).code === "EADDRINUSE") {
-        reject(new Error(`Port ${port} is already in use. Cannot start OAuth callback server.`));
-      } else {
-        reject(err);
-      }
-    });
-    // Start listening
-    server.listen(port, "127.0.0.1", () => {
-      log.info("OAuth callback server started", { port });
-      const listener: OAuthListener = {
-        port,
-        waitForCallback: (timeoutMs: number = DEFAULT_TIMEOUT_MS): Promise<URL> => {
-          return new Promise((resolveCallback, rejectCallback) => {
-            callbackResolve = resolveCallback;
-            callbackReject = rejectCallback;
-            // Set timeout
-            timeoutId = setTimeout(() => {
-              if (callbackReject) {
-                callbackReject(new Error(`OAuth callback timeout after ${timeoutMs / 1000} seconds`));
-                callbackReject = null;
-                callbackResolve = null;
-              }
-            }, timeoutMs);
-          });
-        },
-        close: async (): Promise<void> => {
-          return new Promise((resolveClose, rejectClose) => {
-            // Clear any pending timeout
-            if (timeoutId) {
-              clearTimeout(timeoutId);
-              timeoutId = null;
-            }
-            // Reject any pending callback
-            if (callbackReject) {
-              callbackReject(new Error("OAuth listener closed"));
-              callbackReject = null;
-              callbackResolve = null;
-            }
-            // Close the server
-            server.close((err) => {
-              if (err) {
-                log.warn("Error closing server", { error: err.message });
-                rejectClose(err);
-              } else {
-                log.debug("OAuth callback server closed");
-                resolveClose();
-              }
-            });
-          });
-        },
-      };
-      resolve(listener);
-    });
-  });
-}
-/**
- * Check if a port is available for listening.
- *
- * @param port - Port number to check
- * @returns True if port is available
- */
-export async function isPortAvailable(port: number): Promise<boolean> {
-  return new Promise((resolve) => {
-    const server = createServer();
-    server.on("error", () => {
-      resolve(false);
-    });
-    server.listen(port, "127.0.0.1", () => {
-      server.close(() => {
-        resolve(true);
-      });
-    });
-  });
-}
-/**
- * Find an available port starting from the given port.
- *
- * @param startPort - Port to start searching from
- * @param maxAttempts - Maximum number of ports to try
- * @returns Available port number
- */
-export async function findAvailablePort(
-  startPort: number = QWEN_CALLBACK_PORT,
-  maxAttempts: number = 10
-): Promise<number> {
-  for (let i = 0; i < maxAttempts; i++) {
-    const port = startPort + i;
-    if (await isPortAvailable(port)) {
-      return port;
-    }
-  }
-  throw new Error(`Could not find available port (tried ${startPort} - ${startPort + maxAttempts - 1})`);
-}

package/src/plugin/token.ts DELETED Viewed

@@ -1,225 +0,0 @@
-/**
- * Token refresh utilities for the Qwen OpenCode plugin
- * Handles refreshing OAuth access tokens when they expire
- */
-import {
-  QWEN_OAUTH_TOKEN_ENDPOINT,
-  QWEN_OAUTH_CLIENT_ID,
-  HTTP_OK,
-  TOKEN_REFRESH_BUFFER_MS,
-} from "../constants";
-import type { OAuthAuthDetails, QwenTokenResponse, PluginContext } from "../types";
-import { parseRefreshParts, formatRefreshParts } from "./auth";
-import { createLogger } from "./logger";
-const log = createLogger("token");
-/**
- * Encode object as URL-encoded form data.
- */
-function encodeFormData(data: Record<string, string>): string {
-  return Object.entries(data)
-    .map(([key, value]) => `${encodeURIComponent(key)}=${encodeURIComponent(value)}`)
-    .join("&");
-}
-/**
- * Refresh an OAuth access token using the refresh token.
- *
- * @param auth - Current OAuth auth details with refresh token
- * @param client - Plugin client for showing toasts
- * @returns Updated auth details with new access token, or null on failure
- */
-export async function refreshAccessToken(
-  auth: OAuthAuthDetails,
-  client: PluginContext["client"]
-): Promise<OAuthAuthDetails | null> {
-  const parts = parseRefreshParts(auth.refresh);
-  if (!parts.refreshToken) {
-    log.error("No refresh token available for token refresh");
-    await client.tui.showToast({
-      body: {
-        message: "No refresh token available. Please re-authenticate.",
-        variant: "error",
-      },
-    });
-    return null;
-  }
-  log.debug("Refreshing access token...");
-  try {
-    const bodyData = {
-      grant_type: "refresh_token",
-      refresh_token: parts.refreshToken,
-      client_id: QWEN_OAUTH_CLIENT_ID,
-    };
-    const response = await fetch(QWEN_OAUTH_TOKEN_ENDPOINT, {
-      method: "POST",
-      headers: {
-        "Content-Type": "application/x-www-form-urlencoded",
-        Accept: "application/json",
-        "User-Agent":
-          "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/131.0.0.0 Safari/537.36",
-      },
-      body: encodeFormData(bodyData),
-    });
-    if (response.status !== HTTP_OK) {
-      const errorText = await response.text();
-      log.error("Token refresh failed", {
-        status: response.status,
-        statusText: response.statusText,
-        error: errorText.slice(0, 200),
-      });
-      await client.tui.showToast({
-        body: {
-          message: `Token refresh failed: ${response.status} ${response.statusText}`,
-          variant: "error",
-        },
-      });
-      return null;
-    }
-    let tokenData: QwenTokenResponse;
-    try {
-      tokenData = (await response.json()) as QwenTokenResponse;
-    } catch (parseError) {
-      const text = await response.text();
-      log.error("Failed to parse token response", {
-        error: parseError instanceof Error ? parseError.message : String(parseError),
-        responsePreview: text.slice(0, 200),
-      });
-      await client.tui.showToast({
-        body: {
-          message: "Failed to parse token refresh response",
-          variant: "error",
-        },
-      });
-      return null;
-    }
-    if (tokenData.error) {
-      log.error("Token refresh returned error", {
-        error: tokenData.error,
-        description: tokenData.error_description,
-      });
-      await client.tui.showToast({
-        body: {
-          message: `Token refresh error: ${tokenData.error}`,
-          variant: "error",
-        },
-      });
-      return null;
-    }
-    // Calculate new expiry time
-    const expiresAt = Date.now() + tokenData.expires_in * 1000;
-    // Use new refresh token if provided, otherwise keep the old one
-    const newRefreshToken = tokenData.refresh_token || parts.refreshToken;
-    log.info("Token refreshed successfully", {
-      expiresIn: tokenData.expires_in,
-      hasNewRefreshToken: !!tokenData.refresh_token,
-    });
-    // Build updated auth details
-    const updatedParts = {
-      refreshToken: newRefreshToken,
-      resourceUrl: parts.resourceUrl,
-    };
-    return {
-      type: "oauth",
-      access: tokenData.access_token,
-      refresh: formatRefreshParts(updatedParts),
-      expires: expiresAt,
-    };
-  } catch (error) {
-    const errorMessage = error instanceof Error ? error.message : String(error);
-    log.error("Token refresh failed with exception", { error: errorMessage });
-    await client.tui.showToast({
-      body: {
-        message: `Token refresh failed: ${errorMessage}`,
-        variant: "error",
-      },
-    });
-    return null;
-  }
-}
-/**
- * Check if an access token needs refresh (expired or about to expire).
- */
-export function needsTokenRefresh(auth: OAuthAuthDetails): boolean {
-  if (!auth.access || typeof auth.expires !== "number") {
-    return true;
-  }
-  return auth.expires <= Date.now() + TOKEN_REFRESH_BUFFER_MS;
-}
-/**
- * Ensure we have a valid access token, refreshing if necessary.
- *
- * @param auth - Current auth details
- * @param client - Plugin client for showing toasts
- * @returns Updated auth details, or null if refresh failed
- */
-export async function ensureValidToken(
-  auth: OAuthAuthDetails,
-  client: PluginContext["client"]
-): Promise<OAuthAuthDetails | null> {
-  if (!needsTokenRefresh(auth)) {
-    return auth;
-  }
-  log.debug("Token needs refresh, refreshing...");
-  return refreshAccessToken(auth, client);
-}
-/**
- * Calculate time until token expiry in milliseconds.
- * Returns 0 if token is already expired or invalid.
- */
-export function getTimeUntilExpiry(auth: OAuthAuthDetails): number {
-  if (!auth.expires || typeof auth.expires !== "number") {
-    return 0;
-  }
-  return Math.max(0, auth.expires - Date.now());
-}
-/**
- * Format time until expiry as a human-readable string.
- */
-export function formatTimeUntilExpiry(auth: OAuthAuthDetails): string {
-  const ms = getTimeUntilExpiry(auth);
-  if (ms <= 0) {
-    return "expired";
-  }
-  const seconds = Math.floor(ms / 1000);
-  const minutes = Math.floor(seconds / 60);
-  const hours = Math.floor(minutes / 60);
-  if (hours > 0) {
-    const remainingMinutes = minutes % 60;
-    return remainingMinutes > 0 ? `${hours}h ${remainingMinutes}m` : `${hours}h`;
-  }
-  if (minutes > 0) {
-    const remainingSeconds = seconds % 60;
-    return remainingSeconds > 0 ? `${minutes}m ${remainingSeconds}s` : `${minutes}m`;
-  }
-  return `${seconds}s`;
-}