funolio-agent 0.17.8 → 0.17.9

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
Files changed (98) hide show
  1. package/dist/auth/anthropic-subscription.d.ts +9 -29
  2. package/dist/auth/anthropic-subscription.d.ts.map +1 -1
  3. package/dist/auth/anthropic-subscription.js +12 -133
  4. package/dist/auth/anthropic-subscription.js.map +1 -1
  5. package/dist/auth/auto-detect.d.ts +28 -6
  6. package/dist/auth/auto-detect.d.ts.map +1 -1
  7. package/dist/auth/auto-detect.js +52 -205
  8. package/dist/auth/auto-detect.js.map +1 -1
  9. package/dist/auth/credential-reader.d.ts +24 -4
  10. package/dist/auth/credential-reader.d.ts.map +1 -1
  11. package/dist/auth/credential-reader.js +31 -256
  12. package/dist/auth/credential-reader.js.map +1 -1
  13. package/dist/auth/credential-status.d.ts +7 -27
  14. package/dist/auth/credential-status.d.ts.map +1 -1
  15. package/dist/auth/credential-status.js +7 -95
  16. package/dist/auth/credential-status.js.map +1 -1
  17. package/dist/auth/index.d.ts +9 -2
  18. package/dist/auth/index.d.ts.map +1 -1
  19. package/dist/auth/index.js +10 -10
  20. package/dist/auth/index.js.map +1 -1
  21. package/dist/auth/subscription-runtime.d.ts +19 -23
  22. package/dist/auth/subscription-runtime.d.ts.map +1 -1
  23. package/dist/auth/subscription-runtime.js +24 -292
  24. package/dist/auth/subscription-runtime.js.map +1 -1
  25. package/dist/auth/token-refresh.d.ts +19 -28
  26. package/dist/auth/token-refresh.d.ts.map +1 -1
  27. package/dist/auth/token-refresh.js +26 -464
  28. package/dist/auth/token-refresh.js.map +1 -1
  29. package/dist/bot-manager.d.ts +5 -6
  30. package/dist/bot-manager.d.ts.map +1 -1
  31. package/dist/bot-manager.js +20 -62
  32. package/dist/bot-manager.js.map +1 -1
  33. package/dist/commands/start.d.ts.map +1 -1
  34. package/dist/commands/start.js +36 -229
  35. package/dist/commands/start.js.map +1 -1
  36. package/dist/context-compressor.d.ts +6 -1
  37. package/dist/context-compressor.d.ts.map +1 -1
  38. package/dist/context-compressor.js +87 -18
  39. package/dist/context-compressor.js.map +1 -1
  40. package/dist/local-data.d.ts +6 -0
  41. package/dist/local-data.d.ts.map +1 -1
  42. package/dist/local-data.js +9 -0
  43. package/dist/local-data.js.map +1 -1
  44. package/dist/mcp/manager.d.ts.map +1 -1
  45. package/dist/mcp/manager.js +95 -2
  46. package/dist/mcp/manager.js.map +1 -1
  47. package/dist/message-loop.d.ts +1 -10
  48. package/dist/message-loop.d.ts.map +1 -1
  49. package/dist/message-loop.js +66 -236
  50. package/dist/message-loop.js.map +1 -1
  51. package/dist/mqtt-client.js +2 -2
  52. package/dist/mqtt-client.js.map +1 -1
  53. package/dist/providers/anthropic.d.ts +0 -5
  54. package/dist/providers/anthropic.d.ts.map +1 -1
  55. package/dist/providers/anthropic.js +9 -49
  56. package/dist/providers/anthropic.js.map +1 -1
  57. package/dist/providers/index.d.ts +2 -2
  58. package/dist/providers/index.d.ts.map +1 -1
  59. package/dist/tools/analyze-image.js +2 -2
  60. package/dist/tools/analyze-image.js.map +1 -1
  61. package/dist/tools/edit-file.d.ts.map +1 -1
  62. package/dist/tools/edit-file.js +16 -1
  63. package/dist/tools/edit-file.js.map +1 -1
  64. package/dist/tools/git-tools.d.ts.map +1 -1
  65. package/dist/tools/git-tools.js +32 -1
  66. package/dist/tools/git-tools.js.map +1 -1
  67. package/dist/tools/list-directory.d.ts.map +1 -1
  68. package/dist/tools/list-directory.js +23 -0
  69. package/dist/tools/list-directory.js.map +1 -1
  70. package/dist/tools/notify-user.d.ts.map +1 -1
  71. package/dist/tools/notify-user.js +15 -1
  72. package/dist/tools/notify-user.js.map +1 -1
  73. package/dist/tools/read-file.d.ts.map +1 -1
  74. package/dist/tools/read-file.js +3 -1
  75. package/dist/tools/read-file.js.map +1 -1
  76. package/dist/tools/request-mcp-install.js +5 -5
  77. package/dist/tools/request-mcp-install.js.map +1 -1
  78. package/dist/tools/run-command.d.ts.map +1 -1
  79. package/dist/tools/run-command.js +16 -4
  80. package/dist/tools/run-command.js.map +1 -1
  81. package/dist/tools/sandbox.d.ts.map +1 -1
  82. package/dist/tools/sandbox.js +6 -0
  83. package/dist/tools/sandbox.js.map +1 -1
  84. package/dist/tools/schedule-task.d.ts.map +1 -1
  85. package/dist/tools/schedule-task.js +37 -0
  86. package/dist/tools/schedule-task.js.map +1 -1
  87. package/dist/tools/search-codebase.d.ts.map +1 -1
  88. package/dist/tools/search-codebase.js +251 -32
  89. package/dist/tools/search-codebase.js.map +1 -1
  90. package/dist/tools/web-fetch.d.ts.map +1 -1
  91. package/dist/tools/web-fetch.js +21 -2
  92. package/dist/tools/web-fetch.js.map +1 -1
  93. package/dist/tools/web-search.d.ts.map +1 -1
  94. package/dist/tools/web-search.js +38 -34
  95. package/dist/tools/web-search.js.map +1 -1
  96. package/dist/wizard-support.js.map +1 -1
  97. package/dist/workflow-engine.js.map +1 -1
  98. package/package.json +2 -1
package/dist/auth/anthropic-subscription.d.ts CHANGED
@@ -1,32 +1,12 @@
1
- import { OAuthCredential } from './credential-reader';
1
+ /**
2
+ * REMOVED: Anthropic Subscription OAuth auth has been removed.
3
+ *
4
+ * Connection to Anthropic is now exclusively via:
5
+ * 1. claude-cli — spawns the Claude CLI binary (uses your subscription)
6
+ * 2. API key (BYOK) — standard x-api-key authentication
7
+ */
2
8
  export declare const ANTHROPIC_OAUTH_BETA_HEADER = "oauth-2025-04-20";
3
- export declare const ANTHROPIC_CLAUDE_CODE_API_KEY_URL = "https://api.anthropic.com/api/oauth/claude_cli/create_api_key";
4
- export declare const ANTHROPIC_CLAUDE_CODE_MESSAGES_BASE_URL = "https://api.anthropic.com/v1";
5
- export declare const ANTHROPIC_CLAUDE_CODE_MESSAGES_QUERY = "beta=true";
6
- export interface AnthropicSubscriptionTokenInput {
7
- accessToken: string;
8
- refreshToken?: string | null;
9
- expiresAt?: number | null;
10
- onRefresh?: ((credential: OAuthCredential) => void) | null;
11
- }
12
9
  export type AnthropicAuthMode = 'api-key' | 'oauth-bearer';
13
- export interface AnthropicSubscriptionAuthResult {
14
- token: string;
15
- authMode: AnthropicAuthMode;
16
- credential: OAuthCredential;
17
- refreshed: boolean;
18
- source: 'api-key-exchange' | 'oauth-bearer';
19
- }
20
- export interface ClaudeSubscriptionRequestConfig {
21
- baseUrl: string;
22
- apiQuery: string;
23
- extraHeaders: Record<string, string>;
24
- }
25
- export declare function ensureFreshAnthropicCredential(input: AnthropicSubscriptionTokenInput): Promise<{
26
- credential: OAuthCredential;
27
- refreshed: boolean;
28
- }>;
29
- export declare function createAnthropicApiKeyFromOauth(accessToken: string): Promise<string>;
30
- export declare function resolveAnthropicSubscriptionAuth(input: AnthropicSubscriptionTokenInput): Promise<AnthropicSubscriptionAuthResult>;
31
- export declare function getClaudeSubscriptionRequestConfig(source?: string | null): ClaudeSubscriptionRequestConfig;
10
+ /** @deprecated Subscription API removed. Always throws. */
11
+ export declare function resolveAnthropicSubscriptionAuth(_input: any): Promise<never>;
32
12
  //# sourceMappingURL=anthropic-subscription.d.ts.map
package/dist/auth/anthropic-subscription.d.ts.map CHANGED
@@ -1 +1 @@
1
- {"version":3,"file":"anthropic-subscription.d.ts","sourceRoot":"","sources":["../../src/auth/anthropic-subscription.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,eAAe,EAAa,MAAM,qBAAqB,CAAC;AAIjE,eAAO,MAAM,2BAA2B,qBAAqB,CAAC;AAC9D,eAAO,MAAM,iCAAiC,kEAAkE,CAAC;AACjH,eAAO,MAAM,uCAAuC,iCAAiC,CAAC;AACtF,eAAO,MAAM,oCAAoC,cAAc,CAAC;AAUhE,MAAM,WAAW,+BAA+B;IAC9C,WAAW,EAAE,MAAM,CAAC;IACpB,YAAY,CAAC,EAAE,MAAM,GAAG,IAAI,CAAC;IAC7B,SAAS,CAAC,EAAE,MAAM,GAAG,IAAI,CAAC;IAC1B,SAAS,CAAC,EAAE,CAAC,CAAC,UAAU,EAAE,eAAe,KAAK,IAAI,CAAC,GAAG,IAAI,CAAC;CAC5D;AAED,MAAM,MAAM,iBAAiB,GAAG,SAAS,GAAG,cAAc,CAAC;AAE3D,MAAM,WAAW,+BAA+B;IAC9C,KAAK,EAAE,MAAM,CAAC;IACd,QAAQ,EAAE,iBAAiB,CAAC;IAC5B,UAAU,EAAE,eAAe,CAAC;IAC5B,SAAS,EAAE,OAAO,CAAC;IACnB,MAAM,EAAE,kBAAkB,GAAG,cAAc,CAAC;CAC7C;AAED,MAAM,WAAW,+BAA+B;IAC9C,OAAO,EAAE,MAAM,CAAC;IAChB,QAAQ,EAAE,MAAM,CAAC;IACjB,YAAY,EAAE,MAAM,CAAC,MAAM,EAAE,MAAM,CAAC,CAAC;CACtC;AAuDD,wBAAsB,8BAA8B,CAClD,KAAK,EAAE,+BAA+B,GACrC,OAAO,CAAC;IAAE,UAAU,EAAE,eAAe,CAAC;IAAC,SAAS,EAAE,OAAO,CAAA;CAAE,CAAC,CAS9D;AAED,wBAAsB,8BAA8B,CAAC,WAAW,EAAE,MAAM,GAAG,OAAO,CAAC,MAAM,CAAC,CA4BzF;AAED,wBAAsB,gCAAgC,CACpD,KAAK,EAAE,+BAA+B,GACrC,OAAO,CAAC,+BAA+B,CAAC,CA0B1C;AAED,wBAAgB,kCAAkC,CAAC,MAAM,CAAC,EAAE,MAAM,GAAG,IAAI,GAAG,+BAA+B,CAU1G"}
1
+ {"version":3,"file":"anthropic-subscription.d.ts","sourceRoot":"","sources":["../../src/auth/anthropic-subscription.ts"],"names":[],"mappings":"AAAA;;;;;;GAMG;AAIH,eAAO,MAAM,2BAA2B,qBAAqB,CAAC;AAE9D,MAAM,MAAM,iBAAiB,GAAG,SAAS,GAAG,cAAc,CAAC;AAE3D,2DAA2D;AAC3D,wBAAsB,gCAAgC,CAAC,MAAM,EAAE,GAAG,GAAG,OAAO,CAAC,KAAK,CAAC,CAElF"}
package/dist/auth/anthropic-subscription.js CHANGED
@@ -1,139 +1,18 @@
1
1
  "use strict";
2
+ /**
3
+ * REMOVED: Anthropic Subscription OAuth auth has been removed.
4
+ *
5
+ * Connection to Anthropic is now exclusively via:
6
+ * 1. claude-cli — spawns the Claude CLI binary (uses your subscription)
7
+ * 2. API key (BYOK) — standard x-api-key authentication
8
+ */
2
9
  Object.defineProperty(exports, "__esModule", { value: true });
3
- exports.ANTHROPIC_CLAUDE_CODE_MESSAGES_QUERY = exports.ANTHROPIC_CLAUDE_CODE_MESSAGES_BASE_URL = exports.ANTHROPIC_CLAUDE_CODE_API_KEY_URL = exports.ANTHROPIC_OAUTH_BETA_HEADER = void 0;
4
- exports.ensureFreshAnthropicCredential = ensureFreshAnthropicCredential;
5
- exports.createAnthropicApiKeyFromOauth = createAnthropicApiKeyFromOauth;
10
+ exports.ANTHROPIC_OAUTH_BETA_HEADER = void 0;
6
11
  exports.resolveAnthropicSubscriptionAuth = resolveAnthropicSubscriptionAuth;
7
- exports.getClaudeSubscriptionRequestConfig = getClaudeSubscriptionRequestConfig;
8
- const credential_reader_1 = require("./credential-reader");
9
- const token_refresh_1 = require("./token-refresh");
10
- const child_process_1 = require("child_process");
12
+ // Stub types retained for backwards compatibility.
11
13
  exports.ANTHROPIC_OAUTH_BETA_HEADER = 'oauth-2025-04-20';
12
- exports.ANTHROPIC_CLAUDE_CODE_API_KEY_URL = 'https://api.anthropic.com/api/oauth/claude_cli/create_api_key';
13
- exports.ANTHROPIC_CLAUDE_CODE_MESSAGES_BASE_URL = 'https://api.anthropic.com/v1';
14
- exports.ANTHROPIC_CLAUDE_CODE_MESSAGES_QUERY = 'beta=true';
15
- const API_KEY_CACHE_TTL_MS = 30 * 60_000;
16
- let cachedClaudeCliUserAgent = null;
17
- function getClaudeCliUserAgent() {
18
- if (cachedClaudeCliUserAgent)
19
- return cachedClaudeCliUserAgent;
20
- try {
21
- const raw = (0, child_process_1.execSync)('claude --version', {
22
- encoding: 'utf8',
23
- timeout: 5000,
24
- stdio: ['pipe', 'pipe', 'pipe'],
25
- windowsHide: true,
26
- }).trim();
27
- const version = raw.match(/\d+\.\d+\.\d+/)?.[0] || '2.1.63';
28
- cachedClaudeCliUserAgent = `claude-cli/${version}`;
29
- return cachedClaudeCliUserAgent;
30
- }
31
- catch {
32
- cachedClaudeCliUserAgent = 'claude-cli/2.1.63';
33
- return cachedClaudeCliUserAgent;
34
- }
35
- }
36
- const apiKeyCache = new Map();
37
- function readCachedApiKey(accessToken) {
38
- const cached = apiKeyCache.get(accessToken);
39
- if (!cached)
40
- return null;
41
- if (cached.expiresAt <= Date.now()) {
42
- apiKeyCache.delete(accessToken);
43
- return null;
44
- }
45
- return cached.rawKey;
46
- }
47
- function storeCachedApiKey(accessToken, rawKey) {
48
- apiKeyCache.set(accessToken, {
49
- rawKey,
50
- expiresAt: Date.now() + API_KEY_CACHE_TTL_MS,
51
- });
52
- }
53
- function toCredential(input) {
54
- return {
55
- provider: 'anthropic',
56
- accessToken: input.accessToken,
57
- refreshToken: input.refreshToken || '',
58
- expiresAt: input.expiresAt || 0,
59
- };
60
- }
61
- function isScopeLimitedOauthError(message) {
62
- const normalized = message.toLowerCase();
63
- return normalized.includes('org:create_api_key')
64
- || normalized.includes('permission_error')
65
- || normalized.includes('scope requirement');
66
- }
67
- async function ensureFreshAnthropicCredential(input) {
68
- const credential = toCredential(input);
69
- if (!credential.refreshToken || !(0, credential_reader_1.isExpired)(credential)) {
70
- return { credential, refreshed: false };
71
- }
72
- const refreshed = await (0, token_refresh_1.refreshToken)(credential);
73
- input.onRefresh?.(refreshed.credential);
74
- return { credential: refreshed.credential, refreshed: true };
75
- }
76
- async function createAnthropicApiKeyFromOauth(accessToken) {
77
- const cached = readCachedApiKey(accessToken);
78
- if (cached)
79
- return cached;
80
- const response = await fetch(exports.ANTHROPIC_CLAUDE_CODE_API_KEY_URL, {
81
- method: 'POST',
82
- headers: {
83
- Authorization: `Bearer ${accessToken}`,
84
- 'anthropic-beta': exports.ANTHROPIC_OAUTH_BETA_HEADER,
85
- 'Content-Type': 'application/json',
86
- 'User-Agent': 'funolio-agent',
87
- 'x-app': 'funolio-desktop',
88
- },
89
- body: '{}',
90
- });
91
- if (!response.ok) {
92
- const body = await response.text().catch(() => '');
93
- throw new Error(`Anthropic Claude subscription API key exchange failed (${response.status}): ${body}`);
94
- }
95
- const data = await response.json();
96
- if (!data.raw_key) {
97
- throw new Error('Anthropic Claude subscription API key exchange returned no raw_key');
98
- }
99
- storeCachedApiKey(accessToken, data.raw_key);
100
- return data.raw_key;
101
- }
102
- async function resolveAnthropicSubscriptionAuth(input) {
103
- const { credential, refreshed } = await ensureFreshAnthropicCredential(input);
104
- try {
105
- const apiKey = await createAnthropicApiKeyFromOauth(credential.accessToken);
106
- return {
107
- token: apiKey,
108
- authMode: 'api-key',
109
- credential,
110
- refreshed,
111
- source: 'api-key-exchange',
112
- };
113
- }
114
- catch (err) {
115
- const message = err?.message || String(err);
116
- if (!isScopeLimitedOauthError(message)) {
117
- throw err;
118
- }
119
- return {
120
- token: credential.accessToken,
121
- authMode: 'oauth-bearer',
122
- credential,
123
- refreshed,
124
- source: 'oauth-bearer',
125
- };
126
- }
127
- }
128
- function getClaudeSubscriptionRequestConfig(source) {
129
- const isOpenClaw = String(source || '').toLowerCase().includes('openclaw');
130
- return {
131
- baseUrl: exports.ANTHROPIC_CLAUDE_CODE_MESSAGES_BASE_URL,
132
- apiQuery: exports.ANTHROPIC_CLAUDE_CODE_MESSAGES_QUERY,
133
- extraHeaders: {
134
- 'User-Agent': isOpenClaw ? getClaudeCliUserAgent() : 'funolio-agent',
135
- 'x-app': 'funolio-desktop',
136
- },
137
- };
14
+ /** @deprecated Subscription API removed. Always throws. */
15
+ async function resolveAnthropicSubscriptionAuth(_input) {
16
+ throw new Error('Subscription API has been removed. Use claude-cli or API key instead.');
138
17
  }
139
18
  //# sourceMappingURL=anthropic-subscription.js.map
package/dist/auth/anthropic-subscription.js.map CHANGED
@@ -1 +1 @@
1
- {"version":3,"file":"anthropic-subscription.js","sourceRoot":"","sources":["../../src/auth/anthropic-subscription.ts"],"names":[],"mappings":";;;AA6FA,wEAWC;AAED,wEA4BC;AAED,4EA4BC;AAED,gFAUC;AAhLD,2DAAiE;AACjE,mDAA+C;AAC/C,iDAAyC;AAE5B,QAAA,2BAA2B,GAAG,kBAAkB,CAAC;AACjD,QAAA,iCAAiC,GAAG,+DAA+D,CAAC;AACpG,QAAA,uCAAuC,GAAG,8BAA8B,CAAC;AACzE,QAAA,oCAAoC,GAAG,WAAW,CAAC;AAEhE,MAAM,oBAAoB,GAAG,EAAE,GAAG,MAAM,CAAC;AACzC,IAAI,wBAAwB,GAAkB,IAAI,CAAC;AA8BnD,SAAS,qBAAqB;IAC5B,IAAI,wBAAwB;QAAE,OAAO,wBAAwB,CAAC;IAC9D,IAAI,CAAC;QACH,MAAM,GAAG,GAAG,IAAA,wBAAQ,EAAC,kBAAkB,EAAE;YACvC,QAAQ,EAAE,MAAM;YAChB,OAAO,EAAE,IAAI;YACb,KAAK,EAAE,CAAC,MAAM,EAAE,MAAM,EAAE,MAAM,CAAC;YAC/B,WAAW,EAAE,IAAI;SAClB,CAAC,CAAC,IAAI,EAAE,CAAC;QACV,MAAM,OAAO,GAAG,GAAG,CAAC,KAAK,CAAC,eAAe,CAAC,EAAE,CAAC,CAAC,CAAC,IAAI,QAAQ,CAAC;QAC5D,wBAAwB,GAAG,cAAc,OAAO,EAAE,CAAC;QACnD,OAAO,wBAAwB,CAAC;IAClC,CAAC;IAAC,MAAM,CAAC;QACP,wBAAwB,GAAG,mBAAmB,CAAC;QAC/C,OAAO,wBAAwB,CAAC;IAClC,CAAC;AACH,CAAC;AAED,MAAM,WAAW,GAAG,IAAI,GAAG,EAAwB,CAAC;AAEpD,SAAS,gBAAgB,CAAC,WAAmB;IAC3C,MAAM,MAAM,GAAG,WAAW,CAAC,GAAG,CAAC,WAAW,CAAC,CAAC;IAC5C,IAAI,CAAC,MAAM;QAAE,OAAO,IAAI,CAAC;IACzB,IAAI,MAAM,CAAC,SAAS,IAAI,IAAI,CAAC,GAAG,EAAE,EAAE,CAAC;QACnC,WAAW,CAAC,MAAM,CAAC,WAAW,CAAC,CAAC;QAChC,OAAO,IAAI,CAAC;IACd,CAAC;IACD,OAAO,MAAM,CAAC,MAAM,CAAC;AACvB,CAAC;AAED,SAAS,iBAAiB,CAAC,WAAmB,EAAE,MAAc;IAC5D,WAAW,CAAC,GAAG,CAAC,WAAW,EAAE;QAC3B,MAAM;QACN,SAAS,EAAE,IAAI,CAAC,GAAG,EAAE,GAAG,oBAAoB;KAC7C,CAAC,CAAC;AACL,CAAC;AAED,SAAS,YAAY,CAAC,KAAsC;IAC1D,OAAO;QACL,QAAQ,EAAE,WAAW;QACrB,WAAW,EAAE,KAAK,CAAC,WAAW;QAC9B,YAAY,EAAE,KAAK,CAAC,YAAY,IAAI,EAAE;QACtC,SAAS,EAAE,KAAK,CAAC,SAAS,IAAI,CAAC;KAChC,CAAC;AACJ,CAAC;AAED,SAAS,wBAAwB,CAAC,OAAe;IAC/C,MAAM,UAAU,GAAG,OAAO,CAAC,WAAW,EAAE,CAAC;IACzC,OAAO,UAAU,CAAC,QAAQ,CAAC,oBAAoB,CAAC;WAC3C,UAAU,CAAC,QAAQ,CAAC,kBAAkB,CAAC;WACvC,UAAU,CAAC,QAAQ,CAAC,mBAAmB,CAAC,CAAC;AAChD,CAAC;AAEM,KAAK,UAAU,8BAA8B,CAClD,KAAsC;IAEtC,MAAM,UAAU,GAAG,YAAY,CAAC,KAAK,CAAC,CAAC;IACvC,IAAI,CAAC,UAAU,CAAC,YAAY,IAAI,CAAC,IAAA,6BAAS,EAAC,UAAU,CAAC,EAAE,CAAC;QACvD,OAAO,EAAE,UAAU,EAAE,SAAS,EAAE,KAAK,EAAE,CAAC;IAC1C,CAAC;IAED,MAAM,SAAS,GAAG,MAAM,IAAA,4BAAY,EAAC,UAAU,CAAC,CAAC;IACjD,KAAK,CAAC,SAAS,EAAE,CAAC,SAAS,CAAC,UAAU,CAAC,CAAC;IACxC,OAAO,EAAE,UAAU,EAAE,SAAS,CAAC,UAAU,EAAE,SAAS,EAAE,IAAI,EAAE,CAAC;AAC/D,CAAC;AAEM,KAAK,UAAU,8BAA8B,CAAC,WAAmB;IACtE,MAAM,MAAM,GAAG,gBAAgB,CAAC,WAAW,CAAC,CAAC;IAC7C,IAAI,MAAM;QAAE,OAAO,MAAM,CAAC;IAE1B,MAAM,QAAQ,GAAG,MAAM,KAAK,CAAC,yCAAiC,EAAE;QAC9D,MAAM,EAAE,MAAM;QACd,OAAO,EAAE;YACP,aAAa,EAAE,UAAU,WAAW,EAAE;YACtC,gBAAgB,EAAE,mCAA2B;YAC7C,cAAc,EAAE,kBAAkB;YAClC,YAAY,EAAE,eAAe;YAC7B,OAAO,EAAE,iBAAiB;SAC3B;QACD,IAAI,EAAE,IAAI;KACX,CAAC,CAAC;IAEH,IAAI,CAAC,QAAQ,CAAC,EAAE,EAAE,CAAC;QACjB,MAAM,IAAI,GAAG,MAAM,QAAQ,CAAC,IAAI,EAAE,CAAC,KAAK,CAAC,GAAG,EAAE,CAAC,EAAE,CAAC,CAAC;QACnD,MAAM,IAAI,KAAK,CAAC,0DAA0D,QAAQ,CAAC,MAAM,MAAM,IAAI,EAAE,CAAC,CAAC;IACzG,CAAC;IAED,MAAM,IAAI,GAAG,MAAM,QAAQ,CAAC,IAAI,EAA0B,CAAC;IAC3D,IAAI,CAAC,IAAI,CAAC,OAAO,EAAE,CAAC;QAClB,MAAM,IAAI,KAAK,CAAC,oEAAoE,CAAC,CAAC;IACxF,CAAC;IAED,iBAAiB,CAAC,WAAW,EAAE,IAAI,CAAC,OAAO,CAAC,CAAC;IAC7C,OAAO,IAAI,CAAC,OAAO,CAAC;AACtB,CAAC;AAEM,KAAK,UAAU,gCAAgC,CACpD,KAAsC;IAEtC,MAAM,EAAE,UAAU,EAAE,SAAS,EAAE,GAAG,MAAM,8BAA8B,CAAC,KAAK,CAAC,CAAC;IAE9E,IAAI,CAAC;QACH,MAAM,MAAM,GAAG,MAAM,8BAA8B,CAAC,UAAU,CAAC,WAAW,CAAC,CAAC;QAC5E,OAAO;YACL,KAAK,EAAE,MAAM;YACb,QAAQ,EAAE,SAAS;YACnB,UAAU;YACV,SAAS;YACT,MAAM,EAAE,kBAAkB;SAC3B,CAAC;IACJ,CAAC;IAAC,OAAO,GAAQ,EAAE,CAAC;QAClB,MAAM,OAAO,GAAG,GAAG,EAAE,OAAO,IAAI,MAAM,CAAC,GAAG,CAAC,CAAC;QAC5C,IAAI,CAAC,wBAAwB,CAAC,OAAO,CAAC,EAAE,CAAC;YACvC,MAAM,GAAG,CAAC;QACZ,CAAC;QAED,OAAO;YACL,KAAK,EAAE,UAAU,CAAC,WAAW;YAC7B,QAAQ,EAAE,cAAc;YACxB,UAAU;YACV,SAAS;YACT,MAAM,EAAE,cAAc;SACvB,CAAC;IACJ,CAAC;AACH,CAAC;AAED,SAAgB,kCAAkC,CAAC,MAAsB;IACvE,MAAM,UAAU,GAAG,MAAM,CAAC,MAAM,IAAI,EAAE,CAAC,CAAC,WAAW,EAAE,CAAC,QAAQ,CAAC,UAAU,CAAC,CAAC;IAC3E,OAAO;QACL,OAAO,EAAE,+CAAuC;QAChD,QAAQ,EAAE,4CAAoC;QAC9C,YAAY,EAAE;YACZ,YAAY,EAAE,UAAU,CAAC,CAAC,CAAC,qBAAqB,EAAE,CAAC,CAAC,CAAC,eAAe;YACpE,OAAO,EAAE,iBAAiB;SAC3B;KACF,CAAC;AACJ,CAAC"}
1
+ {"version":3,"file":"anthropic-subscription.js","sourceRoot":"","sources":["../../src/auth/anthropic-subscription.ts"],"names":[],"mappings":";AAAA;;;;;;GAMG;;;AASH,4EAEC;AATD,mDAAmD;AAEtC,QAAA,2BAA2B,GAAG,kBAAkB,CAAC;AAI9D,2DAA2D;AACpD,KAAK,UAAU,gCAAgC,CAAC,MAAW;IAChE,MAAM,IAAI,KAAK,CAAC,uEAAuE,CAAC,CAAC;AAC3F,CAAC"}
package/dist/auth/auto-detect.d.ts CHANGED
@@ -1,16 +1,38 @@
1
- import { OAuthCredential } from './credential-reader';
1
+ /**
2
+ * Auth Auto-Detect — Funolio Agent
3
+ *
4
+ * Resolves the best available authentication method for LLM providers.
5
+ * Supported auth methods:
6
+ * 1. Explicit API key (BYOK) — passed via config or CLI flag
7
+ * 2. Environment variable API keys — ANTHROPIC_API_KEY, OPENAI_API_KEY, etc.
8
+ *
9
+ * CLI providers (claude-cli, codex-cli) do not need auth resolution here —
10
+ * they spawn the CLI binary which handles its own authentication.
11
+ *
12
+ * NOTE: Subscription API / OAuth credential resolution has been removed.
13
+ * OAuth tokens passed in config are ignored. Use CLI providers for
14
+ * subscription-based access, or provide an explicit API key.
15
+ */
2
16
  export interface ResolvedAuth {
3
17
  provider: string;
4
18
  model: string;
5
19
  apiKey: string;
6
- source: 'oauth' | 'api-key' | 'env';
7
- credential?: OAuthCredential;
20
+ source: 'api-key' | 'env';
8
21
  expired?: boolean;
9
22
  error?: string;
10
23
  }
11
24
  /**
12
25
  * Resolve the best available authentication method.
13
- * Priority: explicit API key > OAuth credentials > env vars
26
+ *
27
+ * Priority:
28
+ * 1. Explicit API key (from config.apiKey)
29
+ * 2. Environment variable API key
30
+ *
31
+ * OAuth/subscription tokens are ignored. For subscription-based access,
32
+ * use a CLI provider (claude-cli, codex-cli) instead.
33
+ *
34
+ * @param config - Auth configuration. oauthToken fields are accepted for
35
+ * backwards compatibility but are ignored.
14
36
  */
15
37
  export declare function resolveAuth(config: {
16
38
  provider?: string;
@@ -21,8 +43,8 @@ export declare function resolveAuth(config: {
21
43
  oauthExpiresAt?: number;
22
44
  }): Promise<ResolvedAuth | null>;
23
45
  /**
24
- * Ensure the token in a ResolvedAuth is still valid. Refreshes if needed.
25
- * Returns the same object if still valid, or a new one with updated token.
46
+ * Ensure the auth is still valid. For API keys, this is a no-op passthrough.
47
+ * OAuth token refresh has been removed.
26
48
  */
27
49
  export declare function ensureFreshToken(auth: ResolvedAuth): Promise<ResolvedAuth>;
28
50
  //# sourceMappingURL=auto-detect.d.ts.map
package/dist/auth/auto-detect.d.ts.map CHANGED
@@ -1 +1 @@
1
- {"version":3,"file":"auto-detect.d.ts","sourceRoot":"","sources":["../../src/auth/auto-detect.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,eAAe,EAAa,MAAM,qBAAqB,CAAC;AAQjE,MAAM,WAAW,YAAY;IAC3B,QAAQ,EAAE,MAAM,CAAC;IACjB,KAAK,EAAE,MAAM,CAAC;IACd,MAAM,EAAE,MAAM,CAAC;IACf,MAAM,EAAE,OAAO,GAAG,SAAS,GAAG,KAAK,CAAC;IACpC,UAAU,CAAC,EAAE,eAAe,CAAC;IAC7B,OAAO,CAAC,EAAE,OAAO,CAAC;IAClB,KAAK,CAAC,EAAE,MAAM,CAAC;CAChB;AAYD;;;GAGG;AACH,wBAAsB,WAAW,CAAC,MAAM,EAAE;IACxC,QAAQ,CAAC,EAAE,MAAM,CAAC;IAClB,MAAM,CAAC,EAAE,MAAM,CAAC;IAChB,KAAK,CAAC,EAAE,MAAM,CAAC;IACf,UAAU,CAAC,EAAE,MAAM,CAAC;IACpB,iBAAiB,CAAC,EAAE,MAAM,CAAC;IAC3B,cAAc,CAAC,EAAE,MAAM,CAAC;CACzB,GAAG,OAAO,CAAC,YAAY,GAAG,IAAI,CAAC,CAiI/B;AAoCD;;;GAGG;AACH,wBAAsB,gBAAgB,CAAC,IAAI,EAAE,YAAY,GAAG,OAAO,CAAC,YAAY,CAAC,CAgChF"}
1
+ {"version":3,"file":"auto-detect.d.ts","sourceRoot":"","sources":["../../src/auth/auto-detect.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;;;;;GAcG;AAIH,MAAM,WAAW,YAAY;IAC3B,QAAQ,EAAE,MAAM,CAAC;IACjB,KAAK,EAAE,MAAM,CAAC;IACd,MAAM,EAAE,MAAM,CAAC;IACf,MAAM,EAAE,SAAS,GAAG,KAAK,CAAC;IAC1B,OAAO,CAAC,EAAE,OAAO,CAAC;IAClB,KAAK,CAAC,EAAE,MAAM,CAAC;CAChB;AAwBD;;;;;;;;;;;;GAYG;AACH,wBAAsB,WAAW,CAAC,MAAM,EAAE;IACxC,QAAQ,CAAC,EAAE,MAAM,CAAC;IAClB,MAAM,CAAC,EAAE,MAAM,CAAC;IAChB,KAAK,CAAC,EAAE,MAAM,CAAC;IACf,UAAU,CAAC,EAAE,MAAM,CAAC;IACpB,iBAAiB,CAAC,EAAE,MAAM,CAAC;IAC3B,cAAc,CAAC,EAAE,MAAM,CAAC;CACzB,GAAG,OAAO,CAAC,YAAY,GAAG,IAAI,CAAC,CAgC/B;AAID;;;GAGG;AACH,wBAAsB,gBAAgB,CAAC,IAAI,EAAE,YAAY,GAAG,OAAO,CAAC,YAAY,CAAC,CAGhF"}
package/dist/auth/auto-detect.js CHANGED
@@ -1,242 +1,89 @@
1
1
  "use strict";
2
- var __createBinding = (this && this.__createBinding) || (Object.create ? (function(o, m, k, k2) {
3
- if (k2 === undefined) k2 = k;
4
- var desc = Object.getOwnPropertyDescriptor(m, k);
5
- if (!desc || ("get" in desc ? !m.__esModule : desc.writable || desc.configurable)) {
6
- desc = { enumerable: true, get: function() { return m[k]; } };
7
- }
8
- Object.defineProperty(o, k2, desc);
9
- }) : (function(o, m, k, k2) {
10
- if (k2 === undefined) k2 = k;
11
- o[k2] = m[k];
12
- }));
13
- var __setModuleDefault = (this && this.__setModuleDefault) || (Object.create ? (function(o, v) {
14
- Object.defineProperty(o, "default", { enumerable: true, value: v });
15
- }) : function(o, v) {
16
- o["default"] = v;
17
- });
18
- var __importStar = (this && this.__importStar) || (function () {
19
- var ownKeys = function(o) {
20
- ownKeys = Object.getOwnPropertyNames || function (o) {
21
- var ar = [];
22
- for (var k in o) if (Object.prototype.hasOwnProperty.call(o, k)) ar[ar.length] = k;
23
- return ar;
24
- };
25
- return ownKeys(o);
26
- };
27
- return function (mod) {
28
- if (mod && mod.__esModule) return mod;
29
- var result = {};
30
- if (mod != null) for (var k = ownKeys(mod), i = 0; i < k.length; i++) if (k[i] !== "default") __createBinding(result, mod, k[i]);
31
- __setModuleDefault(result, mod);
32
- return result;
33
- };
34
- })();
2
+ /**
3
+ * Auth Auto-Detect Funolio Agent
4
+ *
5
+ * Resolves the best available authentication method for LLM providers.
6
+ * Supported auth methods:
7
+ * 1. Explicit API key (BYOK) — passed via config or CLI flag
8
+ * 2. Environment variable API keys — ANTHROPIC_API_KEY, OPENAI_API_KEY, etc.
9
+ *
10
+ * CLI providers (claude-cli, codex-cli) do not need auth resolution here —
11
+ * they spawn the CLI binary which handles its own authentication.
12
+ *
13
+ * NOTE: Subscription API / OAuth credential resolution has been removed.
14
+ * OAuth tokens passed in config are ignored. Use CLI providers for
15
+ * subscription-based access, or provide an explicit API key.
16
+ */
35
17
  Object.defineProperty(exports, "__esModule", { value: true });
36
18
  exports.resolveAuth = resolveAuth;
37
19
  exports.ensureFreshToken = ensureFreshToken;
38
- const credential_reader_1 = require("./credential-reader");
39
- const token_refresh_1 = require("./token-refresh");
40
- const fs = __importStar(require("fs"));
41
- const path = __importStar(require("path"));
42
- const os = __importStar(require("os"));
43
20
  // ── Default Models ──────────────────────────────────────────────────────────
44
21
  const DEFAULT_MODELS = {
45
22
  anthropic: 'claude-sonnet-4-5',
46
23
  openai: 'gpt-4o',
47
24
  'google-gemini': 'gemini-2.5-flash',
48
25
  };
26
+ // ── Environment API Key Detection ───────────────────────────────────────────
27
+ function getEnvApiKey(provider) {
28
+ switch (provider) {
29
+ case 'anthropic': return process.env.ANTHROPIC_API_KEY;
30
+ case 'openai': return process.env.OPENAI_API_KEY;
31
+ case 'google':
32
+ case 'google-gemini': return process.env.GOOGLE_API_KEY;
33
+ default: return undefined;
34
+ }
35
+ }
49
36
  // ── resolveAuth ─────────────────────────────────────────────────────────────
50
37
  /**
51
38
  * Resolve the best available authentication method.
52
- * Priority: explicit API key > OAuth credentials > env vars
39
+ *
40
+ * Priority:
41
+ * 1. Explicit API key (from config.apiKey)
42
+ * 2. Environment variable API key
43
+ *
44
+ * OAuth/subscription tokens are ignored. For subscription-based access,
45
+ * use a CLI provider (claude-cli, codex-cli) instead.
46
+ *
47
+ * @param config - Auth configuration. oauthToken fields are accepted for
48
+ * backwards compatibility but are ignored.
53
49
  */
54
50
  async function resolveAuth(config) {
51
+ const provider = config.provider || 'anthropic';
52
+ const model = config.model || DEFAULT_MODELS[provider] || 'claude-sonnet-4-5';
55
53
  // 1. Explicit API key takes priority (BYOK)
56
54
  if (config.apiKey) {
57
- const provider = config.provider || 'anthropic';
58
55
  console.log(`[auto-detect] Using explicit API key (source: api-key, provider: ${provider})`);
59
56
  return {
60
57
  provider,
61
- model: config.model || DEFAULT_MODELS[provider] || 'claude-sonnet-4-5',
58
+ model,
62
59
  apiKey: config.apiKey,
63
60
  source: 'api-key',
64
61
  };
65
62
  }
66
- // 2. Use OAuth token from agent config (written during setup/configure)
67
- if (config.oauthToken) {
68
- const provider = config.provider || 'anthropic';
69
- const model = config.model || DEFAULT_MODELS[provider] || 'claude-sonnet-4-5';
70
- const credential = {
71
- provider: provider,
72
- accessToken: config.oauthToken,
73
- refreshToken: config.oauthRefreshToken || '',
74
- expiresAt: config.oauthExpiresAt || 0,
75
- };
76
- // If token is expired OR has no expiry info, and no refresh token in config,
77
- // try to find one from CLI credentials (which track expiry properly)
78
- if (!credential.refreshToken && ((0, credential_reader_1.isExpired)(credential) || !credential.expiresAt)) {
79
- console.log(`[auto-detect] Config OAuth token expired with no refresh token — checking CLI credentials...`);
80
- const cliCreds = detectClaudeCodeCredentials();
81
- if (cliCreds?.refreshToken) {
82
- console.log(`[auto-detect] Found refresh token in Claude Code credentials`);
83
- credential.refreshToken = cliCreds.refreshToken;
84
- credential.expiresAt = cliCreds.expiresAt || credential.expiresAt;
85
- // Use CLI access token if it's newer
86
- if (cliCreds.accessToken && (!(0, credential_reader_1.isExpired)(cliCreds) || cliCreds.expiresAt > credential.expiresAt)) {
87
- credential.accessToken = cliCreds.accessToken;
88
- }
89
- }
90
- }
91
- // Refresh if expired (or if we just imported CLI expiry that shows it's expired)
92
- if (credential.refreshToken && ((0, credential_reader_1.isExpired)(credential) || (credential.expiresAt > 0 && Date.now() >= credential.expiresAt))) {
93
- try {
94
- const result = await (0, token_refresh_1.refreshToken)(credential);
95
- credential.accessToken = result.credential.accessToken;
96
- credential.refreshToken = result.credential.refreshToken;
97
- credential.expiresAt = result.credential.expiresAt;
98
- // Persist the refresh token back to config so we don't lose it
99
- try {
100
- const configPath = path.join(os.homedir(), '.funolio', 'config.json');
101
- if (fs.existsSync(configPath)) {
102
- const cfg = JSON.parse(fs.readFileSync(configPath, 'utf-8'));
103
- const idx = cfg.providers?.findIndex((p) => p.id === provider);
104
- if (idx >= 0 && cfg.providers[idx]) {
105
- cfg.providers[idx].oauthToken = credential.accessToken;
106
- cfg.providers[idx].oauthRefreshToken = credential.refreshToken;
107
- cfg.providers[idx].oauthExpiresAt = credential.expiresAt;
108
- fs.writeFileSync(configPath, JSON.stringify(cfg, null, 2), 'utf-8');
109
- console.log(`[auto-detect] Persisted refreshed tokens to config`);
110
- }
111
- }
112
- }
113
- catch (writeErr) {
114
- console.warn(`[auto-detect] Failed to persist refreshed tokens:`, writeErr);
115
- }
116
- }
117
- catch {
118
- console.log(`[auto-detect] OAuth token expired and refresh failed for ${provider}`);
119
- return {
120
- provider,
121
- model,
122
- apiKey: credential.accessToken,
123
- source: 'oauth',
124
- credential,
125
- expired: true,
126
- error: `OAuth token expired for ${provider}. Run \`funolio-agent configure\` to re-authenticate.`,
127
- };
128
- }
129
- }
130
- console.log(`[auto-detect] Resolved auth: provider=${provider}, model=${model}, source=oauth (from config)`);
131
- return {
132
- provider,
133
- model,
134
- apiKey: credential.accessToken,
135
- source: 'oauth',
136
- credential,
137
- };
138
- }
139
- // 3. Try to auto-detect OAuth token from Claude Code credentials
140
- const claudeCodeAuth = detectClaudeCodeCredentials();
141
- if (claudeCodeAuth) {
142
- const provider = config.provider || 'anthropic';
143
- const model = config.model || DEFAULT_MODELS[provider] || 'claude-sonnet-4-5';
144
- // Refresh if expired
145
- if ((0, credential_reader_1.isExpired)(claudeCodeAuth) && claudeCodeAuth.refreshToken) {
146
- try {
147
- const result = await (0, token_refresh_1.refreshToken)(claudeCodeAuth);
148
- claudeCodeAuth.accessToken = result.credential.accessToken;
149
- claudeCodeAuth.refreshToken = result.credential.refreshToken;
150
- claudeCodeAuth.expiresAt = result.credential.expiresAt;
151
- }
152
- catch {
153
- console.log(`[auto-detect] Claude Code OAuth token expired and refresh failed`);
154
- return {
155
- provider,
156
- model,
157
- apiKey: claudeCodeAuth.accessToken,
158
- source: 'oauth',
159
- credential: claudeCodeAuth,
160
- expired: true,
161
- error: `Claude Code OAuth token expired and refresh failed. Run \`claude login\` to re-authenticate.`,
162
- };
163
- }
164
- }
165
- console.log(`[auto-detect] Resolved auth: provider=${provider}, model=${model}, source=oauth (from Claude Code credentials)`);
63
+ // 2. Check environment variable API keys
64
+ const envKey = getEnvApiKey(provider);
65
+ if (envKey) {
66
+ console.log(`[auto-detect] Using environment variable API key (source: env, provider: ${provider})`);
166
67
  return {
167
68
  provider,
168
69
  model,
169
- apiKey: claudeCodeAuth.accessToken,
170
- source: 'oauth',
171
- credential: claudeCodeAuth,
70
+ apiKey: envKey,
71
+ source: 'env',
172
72
  };
173
73
  }
174
- console.log('[auto-detect] No API key or OAuth token found in config');
74
+ // No API key found CLI providers handle their own auth, so returning null
75
+ // is expected for claude-cli / codex-cli. For API-based providers, this
76
+ // means the user needs to configure an API key.
77
+ console.log(`[auto-detect] No API key found for provider: ${provider}`);
175
78
  return null;
176
79
  }
177
- // ── Claude Code Credential Detection ────────────────────────────────────────
178
- /**
179
- * Detect OAuth credentials from Claude Code's local credential files.
180
- * Checks ~/.claude/.credentials.json for claudeAiOauth tokens.
181
- */
182
- function detectClaudeCodeCredentials() {
183
- try {
184
- const credPath = path.join(os.homedir(), '.claude', '.credentials.json');
185
- if (!fs.existsSync(credPath))
186
- return null;
187
- const raw = JSON.parse(fs.readFileSync(credPath, 'utf-8'));
188
- const oauth = raw?.claudeAiOauth;
189
- if (!oauth?.accessToken?.startsWith('sk-ant-oat01-'))
190
- return null;
191
- const credential = {
192
- provider: 'anthropic',
193
- accessToken: oauth.accessToken,
194
- refreshToken: oauth.refreshToken || '',
195
- expiresAt: oauth.expiresAt || 0,
196
- };
197
- if ((0, credential_reader_1.isExpired)(credential)) {
198
- console.log('[auto-detect] Claude Code OAuth token is expired, will attempt refresh');
199
- }
200
- return credential;
201
- }
202
- catch {
203
- return null;
204
- }
205
- }
206
80
  // ── ensureFreshToken ────────────────────────────────────────────────────────
207
81
  /**
208
- * Ensure the token in a ResolvedAuth is still valid. Refreshes if needed.
209
- * Returns the same object if still valid, or a new one with updated token.
82
+ * Ensure the auth is still valid. For API keys, this is a no-op passthrough.
83
+ * OAuth token refresh has been removed.
210
84
  */
211
85
  async function ensureFreshToken(auth) {
212
- if (auth.source !== 'oauth' || !auth.credential) {
213
- return auth;
214
- }
215
- if (!(0, credential_reader_1.isExpired)(auth.credential)) {
216
- return auth;
217
- }
218
- try {
219
- const result = await (0, token_refresh_1.refreshToken)(auth.credential);
220
- const refreshed = result.credential;
221
- if (refreshed.accessToken === auth.credential.accessToken) {
222
- return auth; // refresh failed or not needed, return as-is
223
- }
224
- return {
225
- ...auth,
226
- apiKey: refreshed.accessToken,
227
- credential: refreshed,
228
- };
229
- }
230
- catch (err) {
231
- if (err instanceof token_refresh_1.TokenRefreshError) {
232
- console.error(`[auto-detect] Token refresh failed for ${err.provider}: ${err.message}`);
233
- return {
234
- ...auth,
235
- expired: true,
236
- error: `Token refresh failed for ${err.provider}${err.httpStatus ? ` (HTTP ${err.httpStatus})` : ''}: ${err.message}`,
237
- };
238
- }
239
- throw err;
240
- }
86
+ // API keys don't expire return as-is
87
+ return auth;
241
88
  }
242
89
  //# sourceMappingURL=auto-detect.js.map
package/dist/auth/auto-detect.js.map CHANGED
@@ -1 +1 @@
1
- {"version":3,"file":"auto-detect.js","sourceRoot":"","sources":["../../src/auth/auto-detect.ts"],"names":[],"mappings":";;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;AAgCA,kCAwIC;AAwCD,4CAgCC;AAhPD,2DAAiE;AACjE,mDAAiF;AACjF,uCAAyB;AACzB,2CAA6B;AAC7B,uCAAyB;AAczB,+EAA+E;AAE/E,MAAM,cAAc,GAA2B;IAC7C,SAAS,EAAE,mBAAmB;IAC9B,MAAM,EAAE,QAAQ;IAChB,eAAe,EAAE,kBAAkB;CACpC,CAAC;AAEF,+EAA+E;AAE/E;;;GAGG;AACI,KAAK,UAAU,WAAW,CAAC,MAOjC;IACC,4CAA4C;IAC5C,IAAI,MAAM,CAAC,MAAM,EAAE,CAAC;QAClB,MAAM,QAAQ,GAAG,MAAM,CAAC,QAAQ,IAAI,WAAW,CAAC;QAChD,OAAO,CAAC,GAAG,CAAC,oEAAoE,QAAQ,GAAG,CAAC,CAAC;QAC7F,OAAO;YACL,QAAQ;YACR,KAAK,EAAE,MAAM,CAAC,KAAK,IAAI,cAAc,CAAC,QAAQ,CAAC,IAAI,mBAAmB;YACtE,MAAM,EAAE,MAAM,CAAC,MAAM;YACrB,MAAM,EAAE,SAAS;SAClB,CAAC;IACJ,CAAC;IAED,wEAAwE;IACxE,IAAI,MAAM,CAAC,UAAU,EAAE,CAAC;QACtB,MAAM,QAAQ,GAAG,MAAM,CAAC,QAAQ,IAAI,WAAW,CAAC;QAChD,MAAM,KAAK,GAAG,MAAM,CAAC,KAAK,IAAI,cAAc,CAAC,QAAQ,CAAC,IAAI,mBAAmB,CAAC;QAE9E,MAAM,UAAU,GAAoB;YAClC,QAAQ,EAAE,QAAuC;YACjD,WAAW,EAAE,MAAM,CAAC,UAAU;YAC9B,YAAY,EAAE,MAAM,CAAC,iBAAiB,IAAI,EAAE;YAC5C,SAAS,EAAE,MAAM,CAAC,cAAc,IAAI,CAAC;SACtC,CAAC;QAEF,6EAA6E;QAC7E,qEAAqE;QACrE,IAAI,CAAC,UAAU,CAAC,YAAY,IAAI,CAAC,IAAA,6BAAS,EAAC,UAAU,CAAC,IAAI,CAAC,UAAU,CAAC,SAAS,CAAC,EAAE,CAAC;YACjF,OAAO,CAAC,GAAG,CAAC,8FAA8F,CAAC,CAAC;YAC5G,MAAM,QAAQ,GAAG,2BAA2B,EAAE,CAAC;YAC/C,IAAI,QAAQ,EAAE,YAAY,EAAE,CAAC;gBAC3B,OAAO,CAAC,GAAG,CAAC,8DAA8D,CAAC,CAAC;gBAC5E,UAAU,CAAC,YAAY,GAAG,QAAQ,CAAC,YAAY,CAAC;gBAChD,UAAU,CAAC,SAAS,GAAG,QAAQ,CAAC,SAAS,IAAI,UAAU,CAAC,SAAS,CAAC;gBAClE,qCAAqC;gBACrC,IAAI,QAAQ,CAAC,WAAW,IAAI,CAAC,CAAC,IAAA,6BAAS,EAAC,QAAQ,CAAC,IAAI,QAAQ,CAAC,SAAS,GAAG,UAAU,CAAC,SAAS,CAAC,EAAE,CAAC;oBAChG,UAAU,CAAC,WAAW,GAAG,QAAQ,CAAC,WAAW,CAAC;gBAChD,CAAC;YACH,CAAC;QACH,CAAC;QAED,iFAAiF;QACjF,IAAI,UAAU,CAAC,YAAY,IAAI,CAAC,IAAA,6BAAS,EAAC,UAAU,CAAC,IAAI,CAAC,UAAU,CAAC,SAAS,GAAG,CAAC,IAAI,IAAI,CAAC,GAAG,EAAE,IAAI,UAAU,CAAC,SAAS,CAAC,CAAC,EAAE,CAAC;YAC3H,IAAI,CAAC;gBACH,MAAM,MAAM,GAAG,MAAM,IAAA,4BAAY,EAAC,UAAU,CAAC,CAAC;gBAC9C,UAAU,CAAC,WAAW,GAAG,MAAM,CAAC,UAAU,CAAC,WAAW,CAAC;gBACvD,UAAU,CAAC,YAAY,GAAG,MAAM,CAAC,UAAU,CAAC,YAAY,CAAC;gBACzD,UAAU,CAAC,SAAS,GAAG,MAAM,CAAC,UAAU,CAAC,SAAS,CAAC;gBAEnD,+DAA+D;gBAC/D,IAAI,CAAC;oBACH,MAAM,UAAU,GAAG,IAAI,CAAC,IAAI,CAAC,EAAE,CAAC,OAAO,EAAE,EAAE,UAAU,EAAE,aAAa,CAAC,CAAC;oBACtE,IAAI,EAAE,CAAC,UAAU,CAAC,UAAU,CAAC,EAAE,CAAC;wBAC9B,MAAM,GAAG,GAAG,IAAI,CAAC,KAAK,CAAC,EAAE,CAAC,YAAY,CAAC,UAAU,EAAE,OAAO,CAAC,CAAC,CAAC;wBAC7D,MAAM,GAAG,GAAG,GAAG,CAAC,SAAS,EAAE,SAAS,CAAC,CAAC,CAAM,EAAE,EAAE,CAAC,CAAC,CAAC,EAAE,KAAK,QAAQ,CAAC,CAAC;wBACpE,IAAI,GAAG,IAAI,CAAC,IAAI,GAAG,CAAC,SAAS,CAAC,GAAG,CAAC,EAAE,CAAC;4BACnC,GAAG,CAAC,SAAS,CAAC,GAAG,CAAC,CAAC,UAAU,GAAG,UAAU,CAAC,WAAW,CAAC;4BACvD,GAAG,CAAC,SAAS,CAAC,GAAG,CAAC,CAAC,iBAAiB,GAAG,UAAU,CAAC,YAAY,CAAC;4BAC/D,GAAG,CAAC,SAAS,CAAC,GAAG,CAAC,CAAC,cAAc,GAAG,UAAU,CAAC,SAAS,CAAC;4BACzD,EAAE,CAAC,aAAa,CAAC,UAAU,EAAE,IAAI,CAAC,SAAS,CAAC,GAAG,EAAE,IAAI,EAAE,CAAC,CAAC,EAAE,OAAO,CAAC,CAAC;4BACpE,OAAO,CAAC,GAAG,CAAC,oDAAoD,CAAC,CAAC;wBACpE,CAAC;oBACH,CAAC;gBACH,CAAC;gBAAC,OAAO,QAAQ,EAAE,CAAC;oBAClB,OAAO,CAAC,IAAI,CAAC,mDAAmD,EAAE,QAAQ,CAAC,CAAC;gBAC9E,CAAC;YACH,CAAC;YAAC,MAAM,CAAC;gBACP,OAAO,CAAC,GAAG,CAAC,4DAA4D,QAAQ,EAAE,CAAC,CAAC;gBACpF,OAAO;oBACL,QAAQ;oBACR,KAAK;oBACL,MAAM,EAAE,UAAU,CAAC,WAAW;oBAC9B,MAAM,EAAE,OAAO;oBACf,UAAU;oBACV,OAAO,EAAE,IAAI;oBACb,KAAK,EAAE,2BAA2B,QAAQ,uDAAuD;iBAClG,CAAC;YACJ,CAAC;QACH,CAAC;QAED,OAAO,CAAC,GAAG,CAAC,yCAAyC,QAAQ,WAAW,KAAK,8BAA8B,CAAC,CAAC;QAC7G,OAAO;YACL,QAAQ;YACR,KAAK;YACL,MAAM,EAAE,UAAU,CAAC,WAAW;YAC9B,MAAM,EAAE,OAAO;YACf,UAAU;SACX,CAAC;IACJ,CAAC;IAED,iEAAiE;IACjE,MAAM,cAAc,GAAG,2BAA2B,EAAE,CAAC;IACrD,IAAI,cAAc,EAAE,CAAC;QACnB,MAAM,QAAQ,GAAG,MAAM,CAAC,QAAQ,IAAI,WAAW,CAAC;QAChD,MAAM,KAAK,GAAG,MAAM,CAAC,KAAK,IAAI,cAAc,CAAC,QAAQ,CAAC,IAAI,mBAAmB,CAAC;QAE9E,qBAAqB;QACrB,IAAI,IAAA,6BAAS,EAAC,cAAc,CAAC,IAAI,cAAc,CAAC,YAAY,EAAE,CAAC;YAC7D,IAAI,CAAC;gBACH,MAAM,MAAM,GAAG,MAAM,IAAA,4BAAY,EAAC,cAAc,CAAC,CAAC;gBAClD,cAAc,CAAC,WAAW,GAAG,MAAM,CAAC,UAAU,CAAC,WAAW,CAAC;gBAC3D,cAAc,CAAC,YAAY,GAAG,MAAM,CAAC,UAAU,CAAC,YAAY,CAAC;gBAC7D,cAAc,CAAC,SAAS,GAAG,MAAM,CAAC,UAAU,CAAC,SAAS,CAAC;YACzD,CAAC;YAAC,MAAM,CAAC;gBACP,OAAO,CAAC,GAAG,CAAC,kEAAkE,CAAC,CAAC;gBAChF,OAAO;oBACL,QAAQ;oBACR,KAAK;oBACL,MAAM,EAAE,cAAc,CAAC,WAAW;oBAClC,MAAM,EAAE,OAAO;oBACf,UAAU,EAAE,cAAc;oBAC1B,OAAO,EAAE,IAAI;oBACb,KAAK,EAAE,8FAA8F;iBACtG,CAAC;YACJ,CAAC;QACH,CAAC;QAED,OAAO,CAAC,GAAG,CAAC,yCAAyC,QAAQ,WAAW,KAAK,+CAA+C,CAAC,CAAC;QAC9H,OAAO;YACL,QAAQ;YACR,KAAK;YACL,MAAM,EAAE,cAAc,CAAC,WAAW;YAClC,MAAM,EAAE,OAAO;YACf,UAAU,EAAE,cAAc;SAC3B,CAAC;IACJ,CAAC;IAED,OAAO,CAAC,GAAG,CAAC,yDAAyD,CAAC,CAAC;IACvE,OAAO,IAAI,CAAC;AACd,CAAC;AAED,+EAA+E;AAE/E;;;GAGG;AACH,SAAS,2BAA2B;IAClC,IAAI,CAAC;QACH,MAAM,QAAQ,GAAG,IAAI,CAAC,IAAI,CAAC,EAAE,CAAC,OAAO,EAAE,EAAE,SAAS,EAAE,mBAAmB,CAAC,CAAC;QACzE,IAAI,CAAC,EAAE,CAAC,UAAU,CAAC,QAAQ,CAAC;YAAE,OAAO,IAAI,CAAC;QAE1C,MAAM,GAAG,GAAG,IAAI,CAAC,KAAK,CAAC,EAAE,CAAC,YAAY,CAAC,QAAQ,EAAE,OAAO,CAAC,CAAC,CAAC;QAC3D,MAAM,KAAK,GAAG,GAAG,EAAE,aAAa,CAAC;QACjC,IAAI,CAAC,KAAK,EAAE,WAAW,EAAE,UAAU,CAAC,eAAe,CAAC;YAAE,OAAO,IAAI,CAAC;QAElE,MAAM,UAAU,GAAoB;YAClC,QAAQ,EAAE,WAAW;YACrB,WAAW,EAAE,KAAK,CAAC,WAAW;YAC9B,YAAY,EAAE,KAAK,CAAC,YAAY,IAAI,EAAE;YACtC,SAAS,EAAE,KAAK,CAAC,SAAS,IAAI,CAAC;SAChC,CAAC;QAEF,IAAI,IAAA,6BAAS,EAAC,UAAU,CAAC,EAAE,CAAC;YAC1B,OAAO,CAAC,GAAG,CAAC,wEAAwE,CAAC,CAAC;QACxF,CAAC;QAED,OAAO,UAAU,CAAC;IACpB,CAAC;IAAC,MAAM,CAAC;QACP,OAAO,IAAI,CAAC;IACd,CAAC;AACH,CAAC;AAED,+EAA+E;AAE/E;;;GAGG;AACI,KAAK,UAAU,gBAAgB,CAAC,IAAkB;IACvD,IAAI,IAAI,CAAC,MAAM,KAAK,OAAO,IAAI,CAAC,IAAI,CAAC,UAAU,EAAE,CAAC;QAChD,OAAO,IAAI,CAAC;IACd,CAAC;IAED,IAAI,CAAC,IAAA,6BAAS,EAAC,IAAI,CAAC,UAAU,CAAC,EAAE,CAAC;QAChC,OAAO,IAAI,CAAC;IACd,CAAC;IAED,IAAI,CAAC;QACH,MAAM,MAAM,GAAG,MAAM,IAAA,4BAAY,EAAC,IAAI,CAAC,UAAU,CAAC,CAAC;QACnD,MAAM,SAAS,GAAG,MAAM,CAAC,UAAU,CAAC;QACpC,IAAI,SAAS,CAAC,WAAW,KAAK,IAAI,CAAC,UAAU,CAAC,WAAW,EAAE,CAAC;YAC1D,OAAO,IAAI,CAAC,CAAC,6CAA6C;QAC5D,CAAC;QAED,OAAO;YACL,GAAG,IAAI;YACP,MAAM,EAAE,SAAS,CAAC,WAAW;YAC7B,UAAU,EAAE,SAAS;SACtB,CAAC;IACJ,CAAC;IAAC,OAAO,GAAQ,EAAE,CAAC;QAClB,IAAI,GAAG,YAAY,iCAAiB,EAAE,CAAC;YACrC,OAAO,CAAC,KAAK,CAAC,0CAA0C,GAAG,CAAC,QAAQ,KAAK,GAAG,CAAC,OAAO,EAAE,CAAC,CAAC;YACxF,OAAO;gBACL,GAAG,IAAI;gBACP,OAAO,EAAE,IAAI;gBACb,KAAK,EAAE,4BAA4B,GAAG,CAAC,QAAQ,GAAG,GAAG,CAAC,UAAU,CAAC,CAAC,CAAC,UAAU,GAAG,CAAC,UAAU,GAAG,CAAC,CAAC,CAAC,EAAE,KAAK,GAAG,CAAC,OAAO,EAAE;aACtH,CAAC;QACJ,CAAC;QACD,MAAM,GAAG,CAAC;IACZ,CAAC;AACH,CAAC"}
1
+ {"version":3,"file":"auto-detect.js","sourceRoot":"","sources":["../../src/auth/auto-detect.ts"],"names":[],"mappings":";AAAA;;;;;;;;;;;;;;GAcG;;AAgDH,kCAuCC;AAQD,4CAGC;AArFD,+EAA+E;AAE/E,MAAM,cAAc,GAA2B;IAC7C,SAAS,EAAE,mBAAmB;IAC9B,MAAM,EAAE,QAAQ;IAChB,eAAe,EAAE,kBAAkB;CACpC,CAAC;AAEF,+EAA+E;AAE/E,SAAS,YAAY,CAAC,QAAgB;IACpC,QAAQ,QAAQ,EAAE,CAAC;QACjB,KAAK,WAAW,CAAC,CAAC,OAAO,OAAO,CAAC,GAAG,CAAC,iBAAiB,CAAC;QACvD,KAAK,QAAQ,CAAC,CAAC,OAAO,OAAO,CAAC,GAAG,CAAC,cAAc,CAAC;QACjD,KAAK,QAAQ,CAAC;QACd,KAAK,eAAe,CAAC,CAAC,OAAO,OAAO,CAAC,GAAG,CAAC,cAAc,CAAC;QACxD,OAAO,CAAC,CAAC,OAAO,SAAS,CAAC;IAC5B,CAAC;AACH,CAAC;AAED,+EAA+E;AAE/E;;;;;;;;;;;;GAYG;AACI,KAAK,UAAU,WAAW,CAAC,MAOjC;IACC,MAAM,QAAQ,GAAG,MAAM,CAAC,QAAQ,IAAI,WAAW,CAAC;IAChD,MAAM,KAAK,GAAG,MAAM,CAAC,KAAK,IAAI,cAAc,CAAC,QAAQ,CAAC,IAAI,mBAAmB,CAAC;IAE9E,4CAA4C;IAC5C,IAAI,MAAM,CAAC,MAAM,EAAE,CAAC;QAClB,OAAO,CAAC,GAAG,CAAC,oEAAoE,QAAQ,GAAG,CAAC,CAAC;QAC7F,OAAO;YACL,QAAQ;YACR,KAAK;YACL,MAAM,EAAE,MAAM,CAAC,MAAM;YACrB,MAAM,EAAE,SAAS;SAClB,CAAC;IACJ,CAAC;IAED,yCAAyC;IACzC,MAAM,MAAM,GAAG,YAAY,CAAC,QAAQ,CAAC,CAAC;IACtC,IAAI,MAAM,EAAE,CAAC;QACX,OAAO,CAAC,GAAG,CAAC,4EAA4E,QAAQ,GAAG,CAAC,CAAC;QACrG,OAAO;YACL,QAAQ;YACR,KAAK;YACL,MAAM,EAAE,MAAM;YACd,MAAM,EAAE,KAAK;SACd,CAAC;IACJ,CAAC;IAED,4EAA4E;IAC5E,wEAAwE;IACxE,gDAAgD;IAChD,OAAO,CAAC,GAAG,CAAC,gDAAgD,QAAQ,EAAE,CAAC,CAAC;IACxE,OAAO,IAAI,CAAC;AACd,CAAC;AAED,+EAA+E;AAE/E;;;GAGG;AACI,KAAK,UAAU,gBAAgB,CAAC,IAAkB;IACvD,uCAAuC;IACvC,OAAO,IAAI,CAAC;AACd,CAAC"}
package/dist/auth/credential-reader.d.ts CHANGED
@@ -1,3 +1,18 @@
1
+ /**
2
+ * REMOVED: OAuth credential reading from disk has been removed.
3
+ *
4
+ * Connection to LLM providers is now exclusively via:
5
+ * 1. CLI providers (claude-cli, codex-cli) — spawns the CLI binary
6
+ * 2. API key (BYOK) — standard x-api-key authentication
7
+ *
8
+ * The credential-reader previously read OAuth tokens from:
9
+ * - ~/.claude/.credentials.json (Anthropic)
10
+ * - ~/.codex/auth.json (OpenAI)
11
+ * - ~/.config/gcloud/application_default_credentials.json (Google)
12
+ *
13
+ * These files are now only used by the CLI providers themselves (claude, codex)
14
+ * and are not read by the Funolio agent.
15
+ */
1
16
  export interface OAuthCredential {
2
17
  provider: 'anthropic' | 'openai' | 'google-gemini';
3
18
  accessToken: string;
@@ -14,11 +29,16 @@ export interface CredentialDetectionResult {
14
29
  error: string;
15
30
  }[];
16
31
  }
17
- /** Clear the credential cache (useful for testing or forced refresh). */
18
- export declare function clearCache(): void;
32
+ /** @deprecated Always returns empty results. */
33
+ export declare function detectCredentials(): CredentialDetectionResult;
34
+ /** @deprecated Always returns null. */
19
35
  export declare function readClaudeCredentials(): OAuthCredential | null;
36
+ /** @deprecated Always returns null. */
20
37
  export declare function readCodexCredentials(): OAuthCredential | null;
38
+ /** @deprecated Always returns null. */
21
39
  export declare function readGeminiCredentials(): OAuthCredential | null;
22
- export declare function detectCredentials(): CredentialDetectionResult;
23
- export declare function isExpired(cred: OAuthCredential): boolean;
40
+ /** Clear the credential cache (no-op). */
41
+ export declare function clearCache(): void;
42
+ /** @deprecated Always returns true (expired). */
43
+ export declare function isExpired(_cred: OAuthCredential): boolean;
24
44
  //# sourceMappingURL=credential-reader.d.ts.map
package/dist/auth/credential-reader.d.ts.map CHANGED
@@ -1 +1 @@
1
- {"version":3,"file":"credential-reader.d.ts","sourceRoot":"","sources":["../../src/auth/credential-reader.ts"],"names":[],"mappings":"AAQA,MAAM,WAAW,eAAe;IAC9B,QAAQ,EAAE,WAAW,GAAG,QAAQ,GAAG,eAAe,CAAC;IACnD,WAAW,EAAE,MAAM,CAAC;IACpB,YAAY,EAAE,MAAM,CAAC;IACrB,SAAS,EAAE,MAAM,CAAC;IAClB,SAAS,CAAC,EAAE,MAAM,CAAC;IACnB,OAAO,CAAC,EAAE,MAAM,CAAC;IACjB,SAAS,CAAC,EAAE,MAAM,CAAC;CACpB;AAED,MAAM,WAAW,yBAAyB;IACxC,WAAW,EAAE,eAAe,EAAE,CAAC;IAC/B,MAAM,EAAE;QAAE,QAAQ,EAAE,MAAM,CAAC;QAAC,KAAK,EAAE,MAAM,CAAA;KAAE,EAAE,CAAC;CAC/C;AAyBD,yEAAyE;AACzE,wBAAgB,UAAU,IAAI,IAAI,CAEjC;AAyCD,wBAAgB,qBAAqB,IAAI,eAAe,GAAG,IAAI,CAwC9D;AAED,wBAAgB,oBAAoB,IAAI,eAAe,GAAG,IAAI,CA+C7D;AAED,wBAAgB,qBAAqB,IAAI,eAAe,GAAG,IAAI,CA2D9D;AAID,wBAAgB,iBAAiB,IAAI,yBAAyB,CA0B7D;AAMD,wBAAgB,SAAS,CAAC,IAAI,EAAE,eAAe,GAAG,OAAO,CAIxD"}
1
+ {"version":3,"file":"credential-reader.d.ts","sourceRoot":"","sources":["../../src/auth/credential-reader.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;;;;;GAcG;AAEH,MAAM,WAAW,eAAe;IAC9B,QAAQ,EAAE,WAAW,GAAG,QAAQ,GAAG,eAAe,CAAC;IACnD,WAAW,EAAE,MAAM,CAAC;IACpB,YAAY,EAAE,MAAM,CAAC;IACrB,SAAS,EAAE,MAAM,CAAC;IAClB,SAAS,CAAC,EAAE,MAAM,CAAC;IACnB,OAAO,CAAC,EAAE,MAAM,CAAC;IACjB,SAAS,CAAC,EAAE,MAAM,CAAC;CACpB;AAED,MAAM,WAAW,yBAAyB;IACxC,WAAW,EAAE,eAAe,EAAE,CAAC;IAC/B,MAAM,EAAE;QAAE,QAAQ,EAAE,MAAM,CAAC;QAAC,KAAK,EAAE,MAAM,CAAA;KAAE,EAAE,CAAC;CAC/C;AAED,gDAAgD;AAChD,wBAAgB,iBAAiB,IAAI,yBAAyB,CAE7D;AAED,uCAAuC;AACvC,wBAAgB,qBAAqB,IAAI,eAAe,GAAG,IAAI,CAE9D;AAED,uCAAuC;AACvC,wBAAgB,oBAAoB,IAAI,eAAe,GAAG,IAAI,CAE7D;AAED,uCAAuC;AACvC,wBAAgB,qBAAqB,IAAI,eAAe,GAAG,IAAI,CAE9D;AAED,0CAA0C;AAC1C,wBAAgB,UAAU,IAAI,IAAI,CAAG;AAErC,iDAAiD;AACjD,wBAAgB,SAAS,CAAC,KAAK,EAAE,eAAe,GAAG,OAAO,CAEzD"}