opencode-anthropic-auth 0.0.1

package/index.mjs

@@ -0,0 +1,182 @@
+import { generatePKCE } from "@openauthjs/openauth/pkce";
+
+const CLIENT_ID = "9d1c250a-e61b-44d9-88ed-5944d1962f5e";
+
+/**
+ * @param {"max" | "console"} mode
+ */
+async function authorize(mode) {
+  const pkce = await generatePKCE();
+
+  const url = new URL(
+    `https://${mode === "console" ? "console.anthropic.com" : "claude.ai"}/oauth/authorize`,
+    import.meta.url,
+  );
+  url.searchParams.set("code", "true");
+  url.searchParams.set("client_id", CLIENT_ID);
+  url.searchParams.set("response_type", "code");
+  url.searchParams.set(
+    "redirect_uri",
+    "https://console.anthropic.com/oauth/code/callback",
+  );
+  url.searchParams.set(
+    "scope",
+    "org:create_api_key user:profile user:inference",
+  );
+  url.searchParams.set("code_challenge", pkce.challenge);
+  url.searchParams.set("code_challenge_method", "S256");
+  url.searchParams.set("state", pkce.verifier);
+  return {
+    url: url.toString(),
+    verifier: pkce.verifier,
+  };
+}
+
+/**
+ * @param {string} code
+ * @param {string} verifier
+ */
+async function exchange(code, verifier) {
+  const splits = code.split("#");
+  const result = await fetch("https://console.anthropic.com/v1/oauth/token", {
+    method: "POST",
+    headers: {
+      "Content-Type": "application/json",
+    },
+    body: JSON.stringify({
+      code: splits[0],
+      state: splits[1],
+      grant_type: "authorization_code",
+      client_id: CLIENT_ID,
+      redirect_uri: "https://console.anthropic.com/oauth/code/callback",
+      code_verifier: verifier,
+    }),
+  });
+  if (!result.ok)
+    return {
+      type: "failed",
+    };
+  const json = await result.json();
+  return {
+    type: "success",
+    refresh: json.refresh_token,
+    access: json.access_token,
+    expires: Date.now() + json.expires_in * 1000,
+  };
+}
+
+/**
+ * @type {import('@opencode-ai/plugin').Plugin}
+ */
+export async function AnthropicAuthPlugin({ client }) {
+  return {
+    auth: {
+      provider: "anthropic",
+      async loader(getAuth, provider) {
+        const auth = await getAuth();
+        if (auth.type === "oauth") {
+          // zero out cost for max plan
+          for (const model of Object.values(provider.models)) {
+            model.cost = {
+              input: 0,
+              output: 0,
+            };
+          }
+          return {
+            apiKey: "",
+            /**
+             * @param {any} input
+             * @param {any} init
+             */
+            async fetch(input, init) {
+              const auth = await getAuth();
+              if (auth.type !== "oauth") return fetch(input, init);
+              if (!auth.access || auth.expires < Date.now()) {
+                const response = await fetch(
+                  "https://console.anthropic.com/v1/oauth/token",
+                  {
+                    method: "POST",
+                    headers: {
+                      "Content-Type": "application/json",
+                    },
+                    body: JSON.stringify({
+                      grant_type: "refresh_token",
+                      refresh_token: auth.refresh,
+                      client_id: CLIENT_ID,
+                    }),
+                  },
+                );
+                if (!response.ok) return;
+                const json = await response.json();
+                await client.auth.set({
+                  path: {
+                    id: "anthropic",
+                  },
+                  body: {
+                    type: "oauth",
+                    refresh: json.refresh_token,
+                    access: json.access_token,
+                    expires: Date.now() + json.expires_in * 1000,
+                  },
+                });
+                auth.access = json.access_token;
+              }
+              const headers = {
+                ...init.headers,
+                authorization: `Bearer ${auth.access}`,
+                "anthropic-beta":
+                  "oauth-2025-04-20,claude-code-20250219,interleaved-thinking-2025-05-14,fine-grained-tool-streaming-2025-05-14",
+              };
+              delete headers["x-api-key"];
+              return fetch(input, {
+                ...init,
+                headers,
+              });
+            },
+          };
+        }
+
+        return {};
+      },
+      methods: [
+        {
+          label: "Claude Pro/Max",
+          type: "oauth",
+          authorize: async () => {
+            const { url, verifier } = await authorize("max");
+            return {
+              url: url,
+              instructions: "Paste the authorization code here: ",
+              method: "code",
+              callback: async (code) => {
+                const credentials = await exchange(code, verifier);
+                return credentials;
+              },
+            };
+          },
+        },
+        {
+          label: "Create an API Key",
+          type: "oauth",
+          authorize: async () => {
+            const { url, verifier } = await authorize("console");
+            return {
+              url: url,
+              instructions: "Paste the authorization code here: ",
+              method: "code",
+              callback: async (code) => {
+                const credentials = await exchange(code, verifier);
+                return credentials;
+              },
+            };
+          },
+        },
+        {
+          provider: "anthropic",
+          label: "Manually enter API Key",
+          type: "api",
+        },
+      ],
+    },
+  };
+}

package/package.json

@@ -0,0 +1,11 @@
+{
+  "name": "opencode-anthropic-auth",
+  "version": "0.0.1",
+  "main": "./index.mjs",
+  "devDependencies": {
+    "@opencode-ai/plugin": "^0.4.45"
+  },
+  "dependencies": {
+    "@openauthjs/openauth": "^0.4.3"
+  }
+}