hedgequantx 2.6.163 → 2.7.0

package/src/services/ai/oauth-qwen.js

@@ -1,279 +0,0 @@
-/**
- * Qwen OAuth Authentication (Device Flow)
- * 
- * Implements OAuth 2.0 Device Authorization Grant for Qwen Chat subscription.
- * Based on the public OAuth flow used by Qwen Code CLI.
- * 
- * Data source: Qwen OAuth API (https://chat.qwen.ai/api/v1/oauth2)
- */
-
-const crypto = require('crypto');
-const https = require('https');
-
-// Public OAuth Client ID (from Qwen CLI)
-const CLIENT_ID = 'f0304373b74a44d2b584a3fb70ca9e56';
-const DEVICE_CODE_URL = 'https://chat.qwen.ai/api/v1/oauth2/device/code';
-const TOKEN_URL = 'https://chat.qwen.ai/api/v1/oauth2/token';
-const SCOPES = 'openid profile email model.completion';
-const GRANT_TYPE = 'urn:ietf:params:oauth:grant-type:device_code';
-
-/**
- * Generate PKCE code verifier and challenge
- * @returns {Object} { verifier: string, challenge: string }
- */
-const generatePKCE = () => {
-  const verifier = crypto.randomBytes(32)
-    .toString('base64')
-    .replace(/\+/g, '-')
-    .replace(/\//g, '_')
-    .replace(/=/g, '');
-  
-  const challenge = crypto.createHash('sha256')
-    .update(verifier)
-    .digest('base64')
-    .replace(/\+/g, '-')
-    .replace(/\//g, '_')
-    .replace(/=/g, '');
-  
-  return { verifier, challenge };
-};
-
-/**
- * Make HTTPS request
- */
-const makeRequest = (urlStr, options) => {
-  return new Promise((resolve, reject) => {
-    const url = new URL(urlStr);
-    const req = https.request({
-      hostname: url.hostname,
-      port: url.port || 443,
-      path: url.pathname + url.search,
-      method: options.method || 'POST',
-      headers: options.headers || {}
-    }, (res) => {
-      let data = '';
-      res.on('data', chunk => data += chunk);
-      res.on('end', () => {
-        try {
-          const json = JSON.parse(data);
-          if (res.statusCode >= 200 && res.statusCode < 300) {
-            resolve(json);
-          } else {
-            resolve({ ...json, statusCode: res.statusCode }); // Return error response for polling
-          }
-        } catch (e) {
-          reject(new Error(`Invalid JSON response: ${data.substring(0, 200)}`));
-        }
-      });
-    });
-    
-    req.on('error', reject);
-    
-    if (options.body) {
-      req.write(options.body);
-    }
-    req.end();
-  });
-};
-
-/**
- * Initiate device authorization flow
- * @returns {Promise<Object>} { deviceCode, userCode, verificationUri, verificationUriComplete, expiresIn, interval, verifier }
- */
-const initiateDeviceFlow = async () => {
-  try {
-    const pkce = generatePKCE();
-    
-    const body = new URLSearchParams({
-      client_id: CLIENT_ID,
-      scope: SCOPES,
-      code_challenge: pkce.challenge,
-      code_challenge_method: 'S256'
-    }).toString();
-    
-    const response = await makeRequest(DEVICE_CODE_URL, {
-      method: 'POST',
-      headers: {
-        'Content-Type': 'application/x-www-form-urlencoded',
-        'Accept': 'application/json'
-      },
-      body
-    });
-    
-    if (!response.device_code) {
-      return {
-        type: 'failed',
-        error: 'Device code not found in response'
-      };
-    }
-    
-    return {
-      type: 'success',
-      deviceCode: response.device_code,
-      userCode: response.user_code,
-      verificationUri: response.verification_uri,
-      verificationUriComplete: response.verification_uri_complete,
-      expiresIn: response.expires_in,
-      interval: response.interval || 5,
-      verifier: pkce.verifier
-    };
-  } catch (error) {
-    return {
-      type: 'failed',
-      error: error.message
-    };
-  }
-};
-
-/**
- * Poll for token (single attempt)
- * @param {string} deviceCode - Device code from initiateDeviceFlow
- * @param {string} verifier - PKCE code verifier
- * @returns {Promise<Object>}
- */
-const pollForToken = async (deviceCode, verifier) => {
-  try {
-    const body = new URLSearchParams({
-      grant_type: GRANT_TYPE,
-      client_id: CLIENT_ID,
-      device_code: deviceCode,
-      code_verifier: verifier
-    }).toString();
-    
-    const response = await makeRequest(TOKEN_URL, {
-      method: 'POST',
-      headers: {
-        'Content-Type': 'application/x-www-form-urlencoded',
-        'Accept': 'application/json'
-      },
-      body
-    });
-    
-    // Check for polling errors (RFC 8628)
-    if (response.error) {
-      switch (response.error) {
-        case 'authorization_pending':
-          return { type: 'pending' };
-        case 'slow_down':
-          return { type: 'slow_down' };
-        case 'expired_token':
-          return { type: 'failed', error: 'Device code expired. Please restart authentication.' };
-        case 'access_denied':
-          return { type: 'failed', error: 'Authorization denied by user.' };
-        default:
-          return { type: 'failed', error: response.error_description || response.error };
-      }
-    }
-    
-    // Success
-    if (response.access_token) {
-      return {
-        type: 'success',
-        access: response.access_token,
-        refresh: response.refresh_token,
-        resourceUrl: response.resource_url,
-        expires: Date.now() + (response.expires_in * 1000)
-      };
-    }
-    
-    return { type: 'pending' };
-  } catch (error) {
-    return {
-      type: 'failed',
-      error: error.message
-    };
-  }
-};
-
-/**
- * Refresh access token using refresh token
- * @param {string} refreshTokenValue - The refresh token
- * @returns {Promise<Object>}
- */
-const refreshToken = async (refreshTokenValue) => {
-  try {
-    const body = new URLSearchParams({
-      grant_type: 'refresh_token',
-      refresh_token: refreshTokenValue,
-      client_id: CLIENT_ID
-    }).toString();
-    
-    const response = await makeRequest(TOKEN_URL, {
-      method: 'POST',
-      headers: {
-        'Content-Type': 'application/x-www-form-urlencoded',
-        'Accept': 'application/json'
-      },
-      body
-    });
-    
-    if (response.error) {
-      return {
-        type: 'failed',
-        error: response.error_description || response.error
-      };
-    }
-    
-    return {
-      type: 'success',
-      access: response.access_token,
-      refresh: response.refresh_token,
-      resourceUrl: response.resource_url,
-      expires: Date.now() + (response.expires_in * 1000)
-    };
-  } catch (error) {
-    return {
-      type: 'failed',
-      error: error.message
-    };
-  }
-};
-
-/**
- * Get valid access token (refresh if expired)
- * @param {Object} oauthData - OAuth data { access, refresh, expires }
- * @returns {Promise<Object>}
- */
-const getValidToken = async (oauthData) => {
-  if (!oauthData || !oauthData.refresh) {
-    return null;
-  }
-  
-  const expirationBuffer = 5 * 60 * 1000; // 5 minutes
-  if (oauthData.expires && oauthData.expires > Date.now() + expirationBuffer) {
-    return {
-      ...oauthData,
-      refreshed: false
-    };
-  }
-  
-  const result = await refreshToken(oauthData.refresh);
-  if (result.type === 'success') {
-    return {
-      access: result.access,
-      refresh: result.refresh,
-      expires: result.expires,
-      refreshed: true
-    };
-  }
-  
-  return null;
-};
-
-/**
- * Check if credentials are OAuth tokens
- */
-const isOAuthCredentials = (credentials) => {
-  return credentials && credentials.oauth && credentials.oauth.refresh;
-};
-
-module.exports = {
-  CLIENT_ID,
-  SCOPES,
-  generatePKCE,
-  initiateDeviceFlow,
-  pollForToken,
-  refreshToken,
-  getValidToken,
-  isOAuthCredentials
-};

package/src/services/ai/providers/direct-providers.js

@@ -1,323 +0,0 @@
-/**
- * Direct AI Providers Configuration
- * @module services/ai/providers/direct-providers
- * 
- * Provider configurations that connect directly to each provider's API
- */
-
-const DIRECT_PROVIDERS = {
-  anthropic: {
-    id: 'anthropic',
-    name: 'CLAUDE (ANTHROPIC)',
-    description: 'Pro/Max or API Key',
-    category: 'direct',
-    models: [],
-    defaultModel: null,
-    options: [
-      {
-        id: 'oauth_max',
-        label: 'CLAUDE PRO/MAX (OAUTH)',
-        description: ['Login with your Claude subscription', 'Unlimited usage with your plan'],
-        fields: ['oauth'],
-        authType: 'oauth'
-      },
-      {
-        id: 'api_key',
-        label: 'API KEY (PAY-PER-USE)',
-        description: ['Get key at console.anthropic.com', '~$0.10 per trading session'],
-        fields: ['apiKey'],
-        url: 'https://console.anthropic.com/settings/keys'
-      }
-    ],
-    endpoint: 'https://api.anthropic.com/v1'
-  },
-  
-  openai: {
-    id: 'openai',
-    name: 'OPENAI (GPT-4/5)',
-    description: 'Plus/Pro or API Key',
-    category: 'direct',
-    models: [],
-    defaultModel: null,
-    options: [
-      {
-        id: 'oauth_plus',
-        label: 'PLUS/PRO SUBSCRIPTION (OAUTH)',
-        description: ['Login with your ChatGPT account', 'Unlimited with your plan'],
-        fields: ['oauth'],
-        authType: 'oauth'
-      },
-      {
-        id: 'api_key',
-        label: 'API KEY (PAY-PER-USE)',
-        description: ['Get key at platform.openai.com', '~$0.15 per trading session'],
-        fields: ['apiKey'],
-        url: 'https://platform.openai.com/api-keys'
-      }
-    ],
-    endpoint: 'https://api.openai.com/v1'
-  },
-  
-  gemini: {
-    id: 'gemini',
-    name: 'GEMINI (GOOGLE)',
-    description: 'Advanced or API Key',
-    category: 'direct',
-    models: [],
-    defaultModel: null,
-    options: [
-      {
-        id: 'oauth_advanced',
-        label: 'ADVANCED SUBSCRIPTION (OAUTH)',
-        description: ['Login with your Google account', 'Unlimited with your plan'],
-        fields: ['oauth'],
-        authType: 'oauth'
-      },
-      {
-        id: 'api_key',
-        label: 'API KEY (FREE TIER)',
-        description: ['Get key at aistudio.google.com', 'Free tier: 60 requests/min'],
-        fields: ['apiKey'],
-        url: 'https://aistudio.google.com/apikey'
-      }
-    ],
-    endpoint: 'https://generativelanguage.googleapis.com/v1'
-  },
-  
-  deepseek: {
-    id: 'deepseek',
-    name: 'DEEPSEEK',
-    description: 'Very cheap & capable',
-    category: 'direct',
-    models: [],
-    defaultModel: null,
-    options: [
-      {
-        id: 'api_key',
-        label: 'API KEY (VERY CHEAP)',
-        description: ['Get key at platform.deepseek.com', '~$0.02 per trading session'],
-        fields: ['apiKey'],
-        url: 'https://platform.deepseek.com'
-      }
-    ],
-    endpoint: 'https://api.deepseek.com/v1'
-  },
-  
-  groq: {
-    id: 'groq',
-    name: 'GROQ',
-    description: 'Ultra fast inference',
-    category: 'direct',
-    models: [],
-    defaultModel: null,
-    options: [
-      {
-        id: 'api_key',
-        label: 'API KEY (FREE TIER)',
-        description: ['Get key at console.groq.com', 'Generous free tier', 'Ultra low latency'],
-        fields: ['apiKey'],
-        url: 'https://console.groq.com/keys'
-      }
-    ],
-    endpoint: 'https://api.groq.com/openai/v1'
-  },
-
-  xai: {
-    id: 'xai',
-    name: 'GROK (XAI)',
-    description: 'Elon Musk\'s Grok AI',
-    category: 'direct',
-    models: [],
-    defaultModel: null,
-    options: [
-      {
-        id: 'api_key',
-        label: 'API KEY',
-        description: ['Get key at console.x.ai', 'Grok models from xAI'],
-        fields: ['apiKey'],
-        url: 'https://console.x.ai'
-      }
-    ],
-    endpoint: 'https://api.x.ai/v1'
-  },
-
-  mistral: {
-    id: 'mistral',
-    name: 'MISTRAL',
-    description: 'European AI leader',
-    category: 'direct',
-    models: [],
-    defaultModel: null,
-    options: [
-      {
-        id: 'api_key',
-        label: 'API KEY',
-        description: ['Get key at console.mistral.ai', 'Fast European models'],
-        fields: ['apiKey'],
-        url: 'https://console.mistral.ai'
-      }
-    ],
-    endpoint: 'https://api.mistral.ai/v1'
-  },
-
-  perplexity: {
-    id: 'perplexity',
-    name: 'PERPLEXITY',
-    description: 'Real-time web search AI',
-    category: 'direct',
-    models: [],
-    defaultModel: null,
-    options: [
-      {
-        id: 'api_key',
-        label: 'API KEY',
-        description: ['Get key at perplexity.ai/settings/api', 'Real-time market news & data', 'Web search integrated'],
-        fields: ['apiKey'],
-        url: 'https://www.perplexity.ai/settings/api'
-      }
-    ],
-    endpoint: 'https://api.perplexity.ai'
-  },
-
-  together: {
-    id: 'together',
-    name: 'TOGETHER AI',
-    description: 'Open source models, fast & cheap',
-    category: 'direct',
-    models: [],
-    defaultModel: null,
-    options: [
-      {
-        id: 'api_key',
-        label: 'API KEY',
-        description: ['Get key at api.together.xyz', '100+ open source models', 'Fast inference, good pricing'],
-        fields: ['apiKey'],
-        url: 'https://api.together.xyz/settings/api-keys'
-      }
-    ],
-    endpoint: 'https://api.together.xyz/v1'
-  },
-
-  iflow: {
-    id: 'iflow',
-    name: 'IFLOW',
-    description: 'Subscription (OAuth)',
-    category: 'direct',
-    models: [],
-    defaultModel: null,
-    options: [
-      {
-        id: 'oauth_sub',
-        label: 'SUBSCRIPTION (OAUTH)',
-        description: ['Login with your iFlow account', 'Access to DeepSeek, Kimi, GLM & more'],
-        fields: ['oauth'],
-        authType: 'oauth'
-      }
-    ],
-    endpoint: 'https://api.iflow.com/v1'
-  },
-
-  qwen: {
-    id: 'qwen',
-    name: 'QWEN (ALIBABA)',
-    description: 'Chat subscription or API Key',
-    category: 'direct',
-    models: [],
-    defaultModel: null,
-    options: [
-      {
-        id: 'oauth_chat',
-        label: 'CHAT SUBSCRIPTION (OAUTH)',
-        description: ['Login with your Qwen account', 'Unlimited with your plan'],
-        fields: ['oauth'],
-        authType: 'oauth'
-      },
-      {
-        id: 'api_key',
-        label: 'API KEY (DASHSCOPE)',
-        description: ['Get key at dashscope.aliyun.com', 'Qwen2.5 models', 'Very competitive pricing'],
-        fields: ['apiKey'],
-        url: 'https://dashscope.console.aliyun.com/apiKey'
-      }
-    ],
-    endpoint: 'https://dashscope.aliyuncs.com/compatible-mode/v1'
-  },
-
-  moonshot: {
-    id: 'moonshot',
-    name: 'MOONSHOT (KIMI)',
-    description: '200K context window',
-    category: 'direct',
-    models: [],
-    defaultModel: null,
-    options: [
-      {
-        id: 'api_key',
-        label: 'API KEY',
-        description: ['Get key at platform.moonshot.cn', 'Up to 200K context', 'Good for long documents'],
-        fields: ['apiKey'],
-        url: 'https://platform.moonshot.cn/console/api-keys'
-      }
-    ],
-    endpoint: 'https://api.moonshot.cn/v1'
-  },
-
-  yi: {
-    id: 'yi',
-    name: '01.AI (YI)',
-    description: 'Yi models by Kai-Fu Lee',
-    category: 'direct',
-    models: [],
-    defaultModel: null,
-    options: [
-      {
-        id: 'api_key',
-        label: 'API KEY',
-        description: ['Get key at platform.01.ai', 'Yi-Large: GPT-4 level', 'Affordable pricing'],
-        fields: ['apiKey'],
-        url: 'https://platform.01.ai'
-      }
-    ],
-    endpoint: 'https://api.01.ai/v1'
-  },
-
-  zhipu: {
-    id: 'zhipu',
-    name: 'ZHIPU AI (GLM)',
-    description: 'ChatGLM models',
-    category: 'direct',
-    models: [],
-    defaultModel: null,
-    options: [
-      {
-        id: 'api_key',
-        label: 'API KEY',
-        description: ['Get key at open.bigmodel.cn', 'ChatGLM-4 models', 'Strong multilingual'],
-        fields: ['apiKey'],
-        url: 'https://open.bigmodel.cn/usercenter/apikeys'
-      }
-    ],
-    endpoint: 'https://open.bigmodel.cn/api/paas/v4'
-  },
-
-  baichuan: {
-    id: 'baichuan',
-    name: 'BAICHUAN',
-    description: 'Multilingual AI model',
-    category: 'direct',
-    models: [],
-    defaultModel: null,
-    options: [
-      {
-        id: 'api_key',
-        label: 'API KEY',
-        description: ['Get key at platform.baichuan-ai.com', 'Strong multilingual support', 'Competitive pricing'],
-        fields: ['apiKey'],
-        url: 'https://platform.baichuan-ai.com/console/apikey'
-      }
-    ],
-    endpoint: 'https://api.baichuan-ai.com/v1'
-  },
-};
-
-module.exports = { DIRECT_PROVIDERS };

package/src/services/ai/providers/index.js

@@ -1,62 +0,0 @@
-/**
- * AI Providers Configuration
- * Each provider has connection options (API Key, Plans, etc.)
- * 
- * IMPORTANT: models arrays are empty - models MUST be fetched from real APIs
- * No hardcoded model lists allowed (see RULES.md)
- */
-
-const { DIRECT_PROVIDERS } = require('./direct-providers');
-const { UNIFIED_PROVIDERS, LOCAL_PROVIDERS, CUSTOM_PROVIDERS } = require('./other-providers');
-
-// Combine all providers
-const PROVIDERS = {
-  ...UNIFIED_PROVIDERS,
-  ...DIRECT_PROVIDERS,
-  ...LOCAL_PROVIDERS,
-  ...CUSTOM_PROVIDERS,
-};
-
-/**
- * Get all providers
- */
-const getProviders = () => Object.values(PROVIDERS);
-
-/**
- * Get providers by category
- */
-const getProvidersByCategory = (category) => {
-  return Object.values(PROVIDERS).filter(p => p.category === category);
-};
-
-/**
- * Get provider by ID
- */
-const getProvider = (id) => PROVIDERS[id] || null;
-
-/**
- * Get provider options
- */
-const getProviderOptions = (id) => {
-  const provider = PROVIDERS[id];
-  return provider ? provider.options : [];
-};
-
-/**
- * Get categories
- */
-const getCategories = () => [
-  { id: 'unified', name: 'UNIFIED (RECOMMENDED)', description: '1 API key for multiple models' },
-  { id: 'direct', name: 'DIRECT PROVIDERS', description: 'Connect directly to each provider' },
-  { id: 'local', name: 'LOCAL (FREE)', description: 'Run models on your machine' },
-  { id: 'custom', name: 'CUSTOM', description: 'Self-hosted solutions' }
-];
-
-module.exports = {
-  PROVIDERS,
-  getProviders,
-  getProvidersByCategory,
-  getProvider,
-  getProviderOptions,
-  getCategories
-};