npm - hedgequantx - Versions diffs - 2.6.163 → 2.7.1 - Mend

hedgequantx 2.6.163 → 2.7.1

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (146) hide show

package/README.md +15 -88
package/bin/cli.js +0 -11
package/dist/lib/api.jsc +0 -0
package/dist/lib/api2.jsc +0 -0
package/dist/lib/core.jsc +0 -0
package/dist/lib/core2.jsc +0 -0
package/dist/lib/data.js +1 -1
package/dist/lib/data.jsc +0 -0
package/dist/lib/data2.jsc +0 -0
package/dist/lib/decoder.jsc +0 -0
package/dist/lib/m/mod1.jsc +0 -0
package/dist/lib/m/mod2.jsc +0 -0
package/dist/lib/n/r1.jsc +0 -0
package/dist/lib/n/r2.jsc +0 -0
package/dist/lib/n/r3.jsc +0 -0
package/dist/lib/n/r4.jsc +0 -0
package/dist/lib/n/r5.jsc +0 -0
package/dist/lib/n/r6.jsc +0 -0
package/dist/lib/n/r7.jsc +0 -0
package/dist/lib/o/util1.jsc +0 -0
package/dist/lib/o/util2.jsc +0 -0
package/package.json +8 -5
package/src/app.js +40 -162
package/src/config/constants.js +31 -33
package/src/config/propfirms.js +13 -217
package/src/config/settings.js +0 -43
package/src/lib/api.js +198 -0
package/src/lib/api2.js +353 -0
package/src/lib/core.js +539 -0
package/src/lib/core2.js +341 -0
package/src/lib/data.js +555 -0
package/src/lib/data2.js +492 -0
package/src/lib/decoder.js +599 -0
package/src/lib/m/s1.js +804 -0
package/src/lib/m/s2.js +34 -0
package/src/lib/n/r1.js +454 -0
package/src/lib/n/r2.js +514 -0
package/src/lib/n/r3.js +631 -0
package/src/lib/n/r4.js +401 -0
package/src/lib/n/r5.js +335 -0
package/src/lib/n/r6.js +425 -0
package/src/lib/n/r7.js +530 -0
package/src/lib/o/l1.js +44 -0
package/src/lib/o/l2.js +427 -0
package/src/lib/python-bridge.js +206 -0
package/src/menus/connect.js +14 -176
package/src/menus/dashboard.js +65 -110
package/src/pages/accounts.js +18 -18
package/src/pages/algo/copy-trading.js +210 -240
package/src/pages/algo/index.js +41 -104
package/src/pages/algo/one-account.js +386 -33
package/src/pages/algo/ui.js +312 -151
package/src/pages/orders.js +3 -3
package/src/pages/positions.js +3 -3
package/src/pages/stats/chart.js +74 -0
package/src/pages/stats/display.js +228 -0
package/src/pages/stats/index.js +236 -0
package/src/pages/stats/metrics.js +213 -0
package/src/pages/user.js +6 -6
package/src/services/hqx-server/constants.js +55 -0
package/src/services/hqx-server/index.js +401 -0
package/src/services/hqx-server/latency.js +81 -0
package/src/services/index.js +12 -3
package/src/services/rithmic/accounts.js +7 -32
package/src/services/rithmic/connection.js +1 -204
package/src/services/rithmic/contracts.js +116 -99
package/src/services/rithmic/handlers.js +21 -196
package/src/services/rithmic/index.js +63 -120
package/src/services/rithmic/market.js +31 -0
package/src/services/rithmic/orders.js +5 -111
package/src/services/rithmic/protobuf.js +384 -138
package/src/services/session.js +22 -173
package/src/ui/box.js +10 -18
package/src/ui/index.js +1 -3
package/src/ui/menu.js +1 -1
package/src/utils/prompts.js +2 -2
package/dist/lib/m/s1.js +0 -1
package/src/menus/ai-agent-connect.js +0 -181
package/src/menus/ai-agent-models.js +0 -219
package/src/menus/ai-agent-oauth.js +0 -292
package/src/menus/ai-agent-ui.js +0 -141
package/src/menus/ai-agent.js +0 -484
package/src/pages/algo/algo-config.js +0 -195
package/src/pages/algo/algo-multi.js +0 -801
package/src/pages/algo/algo-utils.js +0 -58
package/src/pages/algo/copy-engine.js +0 -449
package/src/pages/algo/custom-strategy.js +0 -459
package/src/pages/algo/logger.js +0 -245
package/src/pages/algo/smart-logs-data.js +0 -218
package/src/pages/algo/smart-logs.js +0 -387
package/src/pages/algo/ui-constants.js +0 -144
package/src/pages/algo/ui-summary.js +0 -184
package/src/pages/stats-calculations.js +0 -191
package/src/pages/stats-ui.js +0 -381
package/src/pages/stats.js +0 -339
package/src/services/ai/client-analysis.js +0 -194
package/src/services/ai/client-models.js +0 -333
package/src/services/ai/client.js +0 -343
package/src/services/ai/index.js +0 -384
package/src/services/ai/oauth-anthropic.js +0 -265
package/src/services/ai/oauth-gemini.js +0 -223
package/src/services/ai/oauth-iflow.js +0 -269
package/src/services/ai/oauth-openai.js +0 -233
package/src/services/ai/oauth-qwen.js +0 -279
package/src/services/ai/providers/direct-providers.js +0 -323
package/src/services/ai/providers/index.js +0 -62
package/src/services/ai/providers/other-providers.js +0 -104
package/src/services/ai/proxy-install.js +0 -249
package/src/services/ai/proxy-manager.js +0 -494
package/src/services/ai/proxy-remote.js +0 -161
package/src/services/ai/strategy-supervisor.js +0 -1312
package/src/services/ai/supervisor-data.js +0 -195
package/src/services/ai/supervisor-optimize.js +0 -215
package/src/services/ai/supervisor-sync.js +0 -178
package/src/services/ai/supervisor-utils.js +0 -158
package/src/services/ai/supervisor.js +0 -484
package/src/services/ai/validation.js +0 -250
package/src/services/hqx-server-events.js +0 -110
package/src/services/hqx-server-handlers.js +0 -217
package/src/services/hqx-server-latency.js +0 -136
package/src/services/hqx-server.js +0 -403
package/src/services/position-constants.js +0 -28
package/src/services/position-exit-logic.js +0 -174
package/src/services/position-manager.js +0 -438
package/src/services/position-momentum.js +0 -206
package/src/services/projectx/accounts.js +0 -142
package/src/services/projectx/index.js +0 -443
package/src/services/projectx/market.js +0 -172
package/src/services/projectx/stats.js +0 -110
package/src/services/projectx/trading.js +0 -180
package/src/services/rithmic/latency-tracker.js +0 -182
package/src/services/rithmic/market-data-decoders.js +0 -229
package/src/services/rithmic/market-data.js +0 -272
package/src/services/rithmic/orders-fast.js +0 -246
package/src/services/rithmic/proto-decoders.js +0 -403
package/src/services/rithmic/specs.js +0 -146
package/src/services/rithmic/trade-history.js +0 -254
package/src/services/session-history.js +0 -475
package/src/services/strategy/hft-signal-calc.js +0 -147
package/src/services/strategy/hft-tick.js +0 -407
package/src/services/strategy/recovery-math.js +0 -402
package/src/services/tradovate/constants.js +0 -109
package/src/services/tradovate/index.js +0 -392
package/src/services/tradovate/market.js +0 -47
package/src/services/tradovate/orders.js +0 -145
package/src/services/tradovate/websocket.js +0 -97

package/src/services/ai/oauth-gemini.js DELETED Viewed

@@ -1,223 +0,0 @@
-/**
- * Google Gemini OAuth Authentication
- *
- * Implements OAuth 2.0 for Google Gemini Advanced subscription.
- * Based on the public OAuth flow used by Gemini CLI.
- *
- * Data source: Google OAuth API
- */
-const crypto = require('crypto');
-const https = require('https');
-// Public OAuth Client ID and Secret (from Gemini CLI - public credentials)
-// Split and reversed to avoid GitHub secret scanning false positives
-const _gc = ['rcontent.com', '.apps.googleuse', 'qf6av3hmdib135j', '8ft2oprdrnp9e3a', '68125580939' + '5-oo'];
-const CLIENT_ID = _gc.reverse().join('');
-const _gs = ['XFsxl', '-geV6Cu5cl', 'gMPm-1o7Sk', 'GOCSPX-4u' + 'H'];
-const CLIENT_SECRET = _gs.reverse().join('');
-const REDIRECT_URI = 'http://localhost:8085/oauth2callback';
-const AUTH_URL = 'https://accounts.google.com/o/oauth2/v2/auth';
-const TOKEN_URL = 'https://oauth2.googleapis.com/token';
-const SCOPES = [
-  'https://www.googleapis.com/auth/cloud-platform',
-  'https://www.googleapis.com/auth/userinfo.email',
-  'https://www.googleapis.com/auth/userinfo.profile'
-];
-/**
- * Generate state token
- * @returns {string}
- */
-const generateState = () => {
-  return crypto.randomBytes(16).toString('hex');
-};
-/**
- * Generate OAuth authorization URL
- * @returns {Object} { url: string, state: string }
- */
-const authorize = () => {
-  const state = generateState();
-  const url = new URL(AUTH_URL);
-  url.searchParams.set('client_id', CLIENT_ID);
-  url.searchParams.set('response_type', 'code');
-  url.searchParams.set('redirect_uri', REDIRECT_URI);
-  url.searchParams.set('scope', SCOPES.join(' '));
-  url.searchParams.set('state', state);
-  url.searchParams.set('access_type', 'offline');
-  url.searchParams.set('prompt', 'consent');
-  return {
-    url: url.toString(),
-    state
-  };
-};
-/**
- * Make HTTPS request
- */
-const makeRequest = (urlStr, options) => {
-  return new Promise((resolve, reject) => {
-    const url = new URL(urlStr);
-    const req = https.request({
-      hostname: url.hostname,
-      port: url.port || 443,
-      path: url.pathname + url.search,
-      method: options.method || 'POST',
-      headers: options.headers || {}
-    }, (res) => {
-      let data = '';
-      res.on('data', chunk => data += chunk);
-      res.on('end', () => {
-        try {
-          const json = JSON.parse(data);
-          if (res.statusCode >= 200 && res.statusCode < 300) {
-            resolve(json);
-          } else {
-            reject(new Error(json.error_description || json.error || `HTTP ${res.statusCode}`));
-          }
-        } catch (e) {
-          reject(new Error(`Invalid JSON response: ${data.substring(0, 200)}`));
-        }
-      });
-    });
-    req.on('error', reject);
-    if (options.body) {
-      req.write(options.body);
-    }
-    req.end();
-  });
-};
-/**
- * Exchange authorization code for tokens
- * @param {string} code - Authorization code from callback
- * @returns {Promise<Object>}
- */
-const exchange = async (code) => {
-  try {
-    const body = new URLSearchParams({
-      grant_type: 'authorization_code',
-      client_id: CLIENT_ID,
-      client_secret: CLIENT_SECRET,
-      code: code,
-      redirect_uri: REDIRECT_URI
-    }).toString();
-    const response = await makeRequest(TOKEN_URL, {
-      method: 'POST',
-      headers: {
-        'Content-Type': 'application/x-www-form-urlencoded',
-        'Accept': 'application/json'
-      },
-      body
-    });
-    return {
-      type: 'success',
-      access: response.access_token,
-      refresh: response.refresh_token,
-      idToken: response.id_token,
-      expires: Date.now() + (response.expires_in * 1000),
-      scope: response.scope
-    };
-  } catch (error) {
-    return {
-      type: 'failed',
-      error: error.message
-    };
-  }
-};
-/**
- * Refresh access token using refresh token
- * @param {string} refreshTokenValue - The refresh token
- * @returns {Promise<Object>}
- */
-const refreshToken = async (refreshTokenValue) => {
-  try {
-    const body = new URLSearchParams({
-      client_id: CLIENT_ID,
-      client_secret: CLIENT_SECRET,
-      grant_type: 'refresh_token',
-      refresh_token: refreshTokenValue
-    }).toString();
-    const response = await makeRequest(TOKEN_URL, {
-      method: 'POST',
-      headers: {
-        'Content-Type': 'application/x-www-form-urlencoded',
-        'Accept': 'application/json'
-      },
-      body
-    });
-    return {
-      type: 'success',
-      access: response.access_token,
-      refresh: refreshTokenValue, // Google doesn't always return new refresh token
-      expires: Date.now() + (response.expires_in * 1000)
-    };
-  } catch (error) {
-    return {
-      type: 'failed',
-      error: error.message
-    };
-  }
-};
-/**
- * Get valid access token (refresh if expired)
- * @param {Object} oauthData - OAuth data { access, refresh, expires }
- * @returns {Promise<Object>}
- */
-const getValidToken = async (oauthData) => {
-  if (!oauthData || !oauthData.refresh) {
-    return null;
-  }
-  const expirationBuffer = 5 * 60 * 1000; // 5 minutes
-  if (oauthData.expires && oauthData.expires > Date.now() + expirationBuffer) {
-    return {
-      ...oauthData,
-      refreshed: false
-    };
-  }
-  const result = await refreshToken(oauthData.refresh);
-  if (result.type === 'success') {
-    return {
-      access: result.access,
-      refresh: result.refresh,
-      expires: result.expires,
-      refreshed: true
-    };
-  }
-  return null;
-};
-/**
- * Check if credentials are OAuth tokens
- */
-const isOAuthCredentials = (credentials) => {
-  return credentials && credentials.oauth && credentials.oauth.refresh;
-};
-module.exports = {
-  CLIENT_ID,
-  CLIENT_SECRET,
-  REDIRECT_URI,
-  CALLBACK_PORT: 8085,
-  SCOPES,
-  generateState,
-  authorize,
-  exchange,
-  refreshToken,
-  getValidToken,
-  isOAuthCredentials
-};

package/src/services/ai/oauth-iflow.js DELETED Viewed

@@ -1,269 +0,0 @@
-/**
- * iFlow OAuth Authentication
- *
- * Implements OAuth 2.0 for iFlow subscription.
- * Based on the public OAuth flow used by iFlow CLI.
- *
- * Data source: iFlow OAuth API (https://iflow.cn/oauth)
- */
-const crypto = require('crypto');
-const https = require('https');
-// Public OAuth Client ID and Secret (from iFlow CLI)
-const CLIENT_ID = '10009311001';
-const CLIENT_SECRET = '4Z3YjXycVsQvyGF1etiNlIBB4RsqSDtW';
-const AUTH_URL = 'https://iflow.cn/oauth';
-const TOKEN_URL = 'https://iflow.cn/oauth/token';
-const USER_INFO_URL = 'https://iflow.cn/api/oauth/getUserInfo';
-const CALLBACK_PORT = 11451;
-/**
- * Generate state token
- * @returns {string}
- */
-const generateState = () => {
-  return crypto.randomBytes(16).toString('hex');
-};
-/**
- * Generate OAuth authorization URL
- * @param {number} port - Callback port (default 11451)
- * @returns {Object} { url: string, state: string, redirectUri: string }
- */
-const authorize = (port = CALLBACK_PORT) => {
-  const state = generateState();
-  const redirectUri = `http://localhost:${port}/oauth2callback`;
-  const url = new URL(AUTH_URL);
-  url.searchParams.set('loginMethod', 'phone');
-  url.searchParams.set('type', 'phone');
-  url.searchParams.set('redirect', redirectUri);
-  url.searchParams.set('state', state);
-  url.searchParams.set('client_id', CLIENT_ID);
-  return {
-    url: url.toString(),
-    state,
-    redirectUri
-  };
-};
-/**
- * Make HTTPS request
- */
-const makeRequest = (urlStr, options) => {
-  return new Promise((resolve, reject) => {
-    const url = new URL(urlStr);
-    const req = https.request({
-      hostname: url.hostname,
-      port: url.port || 443,
-      path: url.pathname + url.search,
-      method: options.method || 'POST',
-      headers: options.headers || {}
-    }, (res) => {
-      let data = '';
-      res.on('data', chunk => data += chunk);
-      res.on('end', () => {
-        try {
-          const json = JSON.parse(data);
-          if (res.statusCode >= 200 && res.statusCode < 300) {
-            resolve(json);
-          } else {
-            reject(new Error(json.error_description || json.error || json.message || `HTTP ${res.statusCode}`));
-          }
-        } catch (e) {
-          reject(new Error(`Invalid JSON response: ${data.substring(0, 200)}`));
-        }
-      });
-    });
-    req.on('error', reject);
-    if (options.body) {
-      req.write(options.body);
-    }
-    req.end();
-  });
-};
-/**
- * Exchange authorization code for tokens
- * @param {string} code - Authorization code from callback
- * @param {string} redirectUri - Redirect URI used in authorization
- * @returns {Promise<Object>}
- */
-const exchange = async (code, redirectUri) => {
-  try {
-    const body = new URLSearchParams({
-      grant_type: 'authorization_code',
-      code: code,
-      redirect_uri: redirectUri,
-      client_id: CLIENT_ID,
-      client_secret: CLIENT_SECRET
-    }).toString();
-    const basicAuth = Buffer.from(`${CLIENT_ID}:${CLIENT_SECRET}`).toString('base64');
-    const response = await makeRequest(TOKEN_URL, {
-      method: 'POST',
-      headers: {
-        'Content-Type': 'application/x-www-form-urlencoded',
-        'Accept': 'application/json',
-        'Authorization': `Basic ${basicAuth}`
-      },
-      body
-    });
-    if (!response.access_token) {
-      return {
-        type: 'failed',
-        error: 'No access token in response'
-      };
-    }
-    // Fetch user info to get API key
-    const userInfo = await fetchUserInfo(response.access_token);
-    return {
-      type: 'success',
-      access: response.access_token,
-      refresh: response.refresh_token,
-      expires: Date.now() + (response.expires_in * 1000),
-      apiKey: userInfo.apiKey,
-      email: userInfo.email || userInfo.phone
-    };
-  } catch (error) {
-    return {
-      type: 'failed',
-      error: error.message
-    };
-  }
-};
-/**
- * Fetch user info including API key
- * @param {string} accessToken - Access token
- * @returns {Promise<Object>}
- */
-const fetchUserInfo = async (accessToken) => {
-  const url = `${USER_INFO_URL}?accessToken=${encodeURIComponent(accessToken)}`;
-  const response = await makeRequest(url, {
-    method: 'GET',
-    headers: {
-      'Accept': 'application/json'
-    }
-  });
-  if (!response.success || !response.data) {
-    throw new Error('Failed to fetch user info');
-  }
-  return response.data;
-};
-/**
- * Refresh access token using refresh token
- * @param {string} refreshTokenValue - The refresh token
- * @returns {Promise<Object>}
- */
-const refreshToken = async (refreshTokenValue) => {
-  try {
-    const body = new URLSearchParams({
-      grant_type: 'refresh_token',
-      refresh_token: refreshTokenValue,
-      client_id: CLIENT_ID,
-      client_secret: CLIENT_SECRET
-    }).toString();
-    const basicAuth = Buffer.from(`${CLIENT_ID}:${CLIENT_SECRET}`).toString('base64');
-    const response = await makeRequest(TOKEN_URL, {
-      method: 'POST',
-      headers: {
-        'Content-Type': 'application/x-www-form-urlencoded',
-        'Accept': 'application/json',
-        'Authorization': `Basic ${basicAuth}`
-      },
-      body
-    });
-    if (!response.access_token) {
-      return {
-        type: 'failed',
-        error: 'No access token in refresh response'
-      };
-    }
-    // Fetch updated user info
-    const userInfo = await fetchUserInfo(response.access_token);
-    return {
-      type: 'success',
-      access: response.access_token,
-      refresh: response.refresh_token,
-      expires: Date.now() + (response.expires_in * 1000),
-      apiKey: userInfo.apiKey,
-      email: userInfo.email || userInfo.phone
-    };
-  } catch (error) {
-    return {
-      type: 'failed',
-      error: error.message
-    };
-  }
-};
-/**
- * Get valid access token (refresh if expired)
- * @param {Object} oauthData - OAuth data { access, refresh, expires }
- * @returns {Promise<Object>}
- */
-const getValidToken = async (oauthData) => {
-  if (!oauthData || !oauthData.refresh) {
-    return null;
-  }
-  const expirationBuffer = 5 * 60 * 1000; // 5 minutes
-  if (oauthData.expires && oauthData.expires > Date.now() + expirationBuffer) {
-    return {
-      ...oauthData,
-      refreshed: false
-    };
-  }
-  const result = await refreshToken(oauthData.refresh);
-  if (result.type === 'success') {
-    return {
-      access: result.access,
-      refresh: result.refresh,
-      expires: result.expires,
-      apiKey: result.apiKey,
-      email: result.email,
-      refreshed: true
-    };
-  }
-  return null;
-};
-/**
- * Check if credentials are OAuth tokens
- */
-const isOAuthCredentials = (credentials) => {
-  return credentials && credentials.oauth && credentials.oauth.refresh;
-};
-module.exports = {
-  CLIENT_ID,
-  CLIENT_SECRET,
-  CALLBACK_PORT,
-  generateState,
-  authorize,
-  exchange,
-  fetchUserInfo,
-  refreshToken,
-  getValidToken,
-  isOAuthCredentials
-};

package/src/services/ai/oauth-openai.js DELETED Viewed

@@ -1,233 +0,0 @@
-/**
- * OpenAI OAuth Authentication (Codex)
- *
- * Implements OAuth 2.0 with PKCE for OpenAI ChatGPT Plus/Pro plans.
- * Based on the public OAuth flow used by OpenAI Codex CLI.
- *
- * Data source: OpenAI OAuth API (https://auth.openai.com/oauth/token)
- */
-const crypto = require('crypto');
-const https = require('https');
-// Public OAuth Client ID (from OpenAI Codex CLI)
-const CLIENT_ID = 'app_EMoamEEZ73f0CkXaXp7hrann';
-const REDIRECT_URI = 'http://localhost:1455/auth/callback';
-const AUTH_URL = 'https://auth.openai.com/oauth/authorize';
-const TOKEN_URL = 'https://auth.openai.com/oauth/token';
-/**
- * Generate PKCE code verifier and challenge
- * @returns {Object} { verifier: string, challenge: string }
- */
-const generatePKCE = () => {
-  // Generate a random 32-byte code verifier (base64url encoded)
-  const verifier = crypto.randomBytes(32)
-    .toString('base64')
-    .replace(/\+/g, '-')
-    .replace(/\//g, '_')
-    .replace(/=/g, '');
-  // Generate SHA256 hash of verifier, then base64url encode it
-  const challenge = crypto.createHash('sha256')
-    .update(verifier)
-    .digest('base64')
-    .replace(/\+/g, '-')
-    .replace(/\//g, '_')
-    .replace(/=/g, '');
-  return { verifier, challenge };
-};
-/**
- * Generate OAuth authorization URL
- * @returns {Object} { url: string, verifier: string }
- */
-const authorize = () => {
-  const pkce = generatePKCE();
-  const state = crypto.randomBytes(16).toString('hex');
-  const url = new URL(AUTH_URL);
-  url.searchParams.set('client_id', CLIENT_ID);
-  url.searchParams.set('response_type', 'code');
-  url.searchParams.set('redirect_uri', REDIRECT_URI);
-  url.searchParams.set('scope', 'openid email profile offline_access');
-  url.searchParams.set('state', state);
-  url.searchParams.set('code_challenge', pkce.challenge);
-  url.searchParams.set('code_challenge_method', 'S256');
-  url.searchParams.set('prompt', 'login');
-  url.searchParams.set('id_token_add_organizations', 'true');
-  url.searchParams.set('codex_cli_simplified_flow', 'true');
-  return {
-    url: url.toString(),
-    verifier: pkce.verifier,
-    state
-  };
-};
-/**
- * Make HTTPS request
- */
-const makeRequest = (urlStr, options) => {
-  return new Promise((resolve, reject) => {
-    const url = new URL(urlStr);
-    const req = https.request({
-      hostname: url.hostname,
-      port: url.port || 443,
-      path: url.pathname + url.search,
-      method: options.method || 'POST',
-      headers: options.headers || {}
-    }, (res) => {
-      let data = '';
-      res.on('data', chunk => data += chunk);
-      res.on('end', () => {
-        try {
-          const json = JSON.parse(data);
-          if (res.statusCode >= 200 && res.statusCode < 300) {
-            resolve(json);
-          } else {
-            reject(new Error(json.error_description || json.error || `HTTP ${res.statusCode}`));
-          }
-        } catch (e) {
-          reject(new Error(`Invalid JSON response: ${data.substring(0, 200)}`));
-        }
-      });
-    });
-    req.on('error', reject);
-    if (options.body) {
-      req.write(options.body);
-    }
-    req.end();
-  });
-};
-/**
- * Exchange authorization code for tokens
- * @param {string} code - Authorization code from callback
- * @param {string} verifier - PKCE code verifier
- * @returns {Promise<Object>} { type: 'success', access: string, refresh: string, expires: number }
- */
-const exchange = async (code, verifier) => {
-  try {
-    const body = new URLSearchParams({
-      grant_type: 'authorization_code',
-      client_id: CLIENT_ID,
-      code: code,
-      redirect_uri: REDIRECT_URI,
-      code_verifier: verifier
-    }).toString();
-    const response = await makeRequest(TOKEN_URL, {
-      method: 'POST',
-      headers: {
-        'Content-Type': 'application/x-www-form-urlencoded',
-        'Accept': 'application/json'
-      },
-      body
-    });
-    return {
-      type: 'success',
-      access: response.access_token,
-      refresh: response.refresh_token,
-      idToken: response.id_token,
-      expires: Date.now() + (response.expires_in * 1000)
-    };
-  } catch (error) {
-    return {
-      type: 'failed',
-      error: error.message
-    };
-  }
-};
-/**
- * Refresh access token using refresh token
- * @param {string} refreshTokenValue - The refresh token
- * @returns {Promise<Object>}
- */
-const refreshToken = async (refreshTokenValue) => {
-  try {
-    const body = new URLSearchParams({
-      client_id: CLIENT_ID,
-      grant_type: 'refresh_token',
-      refresh_token: refreshTokenValue,
-      scope: 'openid profile email'
-    }).toString();
-    const response = await makeRequest(TOKEN_URL, {
-      method: 'POST',
-      headers: {
-        'Content-Type': 'application/x-www-form-urlencoded',
-        'Accept': 'application/json'
-      },
-      body
-    });
-    return {
-      type: 'success',
-      access: response.access_token,
-      refresh: response.refresh_token,
-      idToken: response.id_token,
-      expires: Date.now() + (response.expires_in * 1000)
-    };
-  } catch (error) {
-    return {
-      type: 'failed',
-      error: error.message
-    };
-  }
-};
-/**
- * Get valid access token (refresh if expired)
- * @param {Object} oauthData - OAuth data { access, refresh, expires }
- * @returns {Promise<Object>}
- */
-const getValidToken = async (oauthData) => {
-  if (!oauthData || !oauthData.refresh) {
-    return null;
-  }
-  const expirationBuffer = 5 * 60 * 1000; // 5 minutes
-  if (oauthData.expires && oauthData.expires > Date.now() + expirationBuffer) {
-    return {
-      ...oauthData,
-      refreshed: false
-    };
-  }
-  const result = await refreshToken(oauthData.refresh);
-  if (result.type === 'success') {
-    return {
-      access: result.access,
-      refresh: result.refresh,
-      expires: result.expires,
-      refreshed: true
-    };
-  }
-  return null;
-};
-/**
- * Check if credentials are OAuth tokens
- */
-const isOAuthCredentials = (credentials) => {
-  return credentials && credentials.oauth && credentials.oauth.refresh;
-};
-module.exports = {
-  CLIENT_ID,
-  REDIRECT_URI,
-  CALLBACK_PORT: 1455,
-  generatePKCE,
-  authorize,
-  exchange,
-  refreshToken,
-  getValidToken,
-  isOAuthCredentials
-};