opencode-qwencode-auth 1.0.0

package/LICENSE

@@ -0,0 +1,21 @@
+MIT License
+
+Copyright (c) 2025 Gustavo Dias
+
+Permission is hereby granted, free of charge, to any person obtaining a copy
+of this software and associated documentation files (the "Software"), to deal
+in the Software without restriction, including without limitation the rights
+to use, copy, modify, merge, publish, distribute, sublicense, and/or sell
+copies of the Software, and to permit persons to whom the Software is
+furnished to do so, subject to the following conditions:
+
+The above copyright notice and this permission notice shall be included in all
+copies or substantial portions of the Software.
+
+THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR
+IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY,
+FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE
+AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER
+LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM,
+OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE
+SOFTWARE.

package/README.md

@@ -0,0 +1,198 @@
+# 🤖 Qwen Code OAuth Plugin for OpenCode
+
+![License](https://img.shields.io/github/license/gustavodiasdev/opencode-qwencode-auth)
+![GitHub stars](https://img.shields.io/github/stars/gustavodiasdev/opencode-qwencode-auth)
+
+**Authenticate OpenCode CLI with your qwen.ai account.** This plugin enables you to use Qwen3-Coder models with **2,000 free requests per day** - no API key or credit card required!
+
+[🇧🇷 Leia em Português](./README.pt-BR.md)
+
+## ✨ Features
+
+- 🔐 **OAuth Device Flow** - Secure browser-based authentication (RFC 8628)
+- ⚡ **Automatic Polling** - No need to press Enter after authorizing
+- 🆓 **2,000 req/day free** - Generous free tier with no credit card
+- 🧠 **1M context window** - Models with 1 million token context
+- 🔄 **Auto-refresh** - Tokens renewed automatically before expiration
+- 🔗 **qwen-code compatible** - Reuses credentials from `~/.qwen/oauth_creds.json`
+
+## 📋 Prerequisites
+
+- [OpenCode CLI](https://opencode.ai) installed
+- A [qwen.ai](https://chat.qwen.ai) account (free to create)
+
+## 🚀 Installation
+
+### 1. Add the plugin to OpenCode
+
+Edit `~/.opencode/package.json`:
+
+```json
+{
+  "dependencies": {
+    "opencode-qwencode-auth": "github:gustavodiasdev/opencode-qwencode-auth"
+  }
+}
+```
+
+Edit `~/.opencode/opencode.jsonc`:
+
+```json
+{
+  "plugin": ["opencode-qwencode-auth"]
+}
+```
+
+### 2. Install dependencies
+
+```bash
+cd ~/.opencode && npm install
+```
+
+## 🔑 Usage
+
+### 1. Login
+
+```bash
+opencode auth login
+```
+
+### 2. Select Provider
+
+Choose **"Other"** and type `qwen-code`
+
+### 3. Authenticate
+
+Select **"Qwen Code (qwen.ai OAuth)"**
+
+- A browser window will open for you to authorize
+- The plugin automatically detects when you complete authorization
+- No need to copy/paste codes or press Enter!
+
+> [!TIP]
+> In the OpenCode TUI (graphical interface), the **Qwen Code** provider appears automatically in the provider list.
+
+## 🎯 Available Models
+
+| Model | Context | Max Output | Best For |
+|-------|---------|------------|----------|
+| `qwen3-coder-plus` | 1M tokens | 64K tokens | Complex coding tasks |
+| `qwen3-coder-flash` | 1M tokens | 64K tokens | Fast responses |
+
+### Using a specific model
+
+```bash
+opencode --provider qwen-code --model qwen3-coder-plus
+```
+
+## ⚙️ How It Works
+
+```
+┌─────────────────┐     ┌──────────────────┐     ┌─────────────────┐
+│   OpenCode CLI  │────▶│  qwen.ai OAuth   │────▶│  Qwen3-Coder    │
+│                 │◀────│  (Device Flow)   │◀────│  API            │
+└─────────────────┘     └──────────────────┘     └─────────────────┘
+```
+
+1. **Device Flow (RFC 8628)**: Opens your browser to `chat.qwen.ai` for authentication
+2. **Automatic Polling**: Detects authorization completion automatically
+3. **Token Storage**: Saves credentials to `~/.qwen/oauth_creds.json`
+4. **Auto-refresh**: Renews tokens 30 seconds before expiration
+
+## 📊 Usage Limits
+
+| Plan | Rate Limit | Daily Limit |
+|------|------------|-------------|
+| Free (OAuth) | 60 req/min | 2,000 req/day |
+
+> [!NOTE]
+> Limits reset at midnight UTC. For higher limits, consider using an API key from [DashScope](https://dashscope.aliyun.com).
+
+## 🔧 Troubleshooting
+
+### Token expired
+
+The plugin automatically renews tokens. If issues persist:
+
+```bash
+# Remove old credentials
+rm ~/.qwen/oauth_creds.json
+
+# Re-authenticate
+opencode auth login
+```
+
+### Provider not showing in `auth login`
+
+The `qwen-code` provider is added via plugin. In the `opencode auth login` command:
+
+1. Select **"Other"**
+2. Type `qwen-code`
+
+### Rate limit exceeded (429 errors)
+
+- Wait until midnight UTC for quota reset
+- Try using `qwen3-coder-flash` for faster, lighter requests
+- Consider [DashScope API](https://dashscope.aliyun.com) for higher limits
+
+## 🛠️ Development
+
+```bash
+# Clone the repository
+git clone https://github.com/gustavodiasdev/opencode-qwencode-auth.git
+cd opencode-qwencode-auth
+
+# Install dependencies
+bun install
+
+# Type check
+bun run typecheck
+```
+
+### Local testing
+
+Edit `~/.opencode/package.json`:
+
+```json
+{
+  "dependencies": {
+    "opencode-qwencode-auth": "file:///absolute/path/to/opencode-qwencode-auth"
+  }
+}
+```
+
+Then reinstall:
+
+```bash
+cd ~/.opencode && npm install
+```
+
+## 📁 Project Structure
+
+```
+src/
+├── constants.ts        # OAuth endpoints, models config
+├── types.ts            # TypeScript interfaces
+├── index.ts            # Main plugin entry point
+├── qwen/
+│   └── oauth.ts        # OAuth Device Flow + PKCE
+└── plugin/
+    ├── auth.ts         # Credentials management
+    └── utils.ts        # Helper utilities
+```
+
+## 🔗 Related Projects
+
+- [qwen-code](https://github.com/QwenLM/qwen-code) - Official Qwen coding CLI
+- [OpenCode](https://opencode.ai) - AI-powered CLI for development
+- [opencode-gemini-auth](https://github.com/jenslys/opencode-gemini-auth) - Similar plugin for Google Gemini
+
+## 📄 License
+
+MIT
+
+---
+
+<p align="center">
+  Made with ❤️ for the OpenCode community
+</p>

package/README.pt-BR.md

@@ -0,0 +1,198 @@
+# 🤖 Qwen Code OAuth Plugin para OpenCode
+
+![License](https://img.shields.io/github/license/gustavodiasdev/opencode-qwencode-auth)
+![GitHub stars](https://img.shields.io/github/stars/gustavodiasdev/opencode-qwencode-auth)
+
+**Autentique o OpenCode CLI com sua conta qwen.ai.** Este plugin permite usar modelos Qwen3-Coder com **2.000 requisições gratuitas por dia** - sem API key ou cartão de crédito!
+
+[🇺🇸 Read in English](./README.md)
+
+## ✨ Funcionalidades
+
+- 🔐 **OAuth Device Flow** - Autenticação segura via navegador (RFC 8628)
+- ⚡ **Polling Automático** - Não precisa pressionar Enter após autorizar
+- 🆓 **2.000 req/dia grátis** - Plano gratuito generoso sem cartão
+- 🧠 **1M de contexto** - Modelos com 1 milhão de tokens de contexto
+- 🔄 **Auto-refresh** - Tokens renovados automaticamente antes de expirar
+- 🔗 **Compatível com qwen-code** - Reutiliza credenciais de `~/.qwen/oauth_creds.json`
+
+## 📋 Pré-requisitos
+
+- [OpenCode CLI](https://opencode.ai) instalado
+- Uma conta [qwen.ai](https://chat.qwen.ai) (gratuita)
+
+## 🚀 Instalação
+
+### 1. Adicione o plugin ao OpenCode
+
+Edite `~/.opencode/package.json`:
+
+```json
+{
+  "dependencies": {
+    "opencode-qwencode-auth": "github:gustavodiasdev/opencode-qwencode-auth"
+  }
+}
+```
+
+Edite `~/.opencode/opencode.jsonc`:
+
+```json
+{
+  "plugin": ["opencode-qwencode-auth"]
+}
+```
+
+### 2. Instale as dependências
+
+```bash
+cd ~/.opencode && npm install
+```
+
+## 🔑 Uso
+
+### 1. Login
+
+```bash
+opencode auth login
+```
+
+### 2. Selecione o Provider
+
+Escolha **"Other"** e digite `qwen-code`
+
+### 3. Autentique
+
+Selecione **"Qwen Code (qwen.ai OAuth)"**
+
+- Uma janela do navegador abrirá para você autorizar
+- O plugin detecta automaticamente quando você completa a autorização
+- Não precisa copiar/colar códigos ou pressionar Enter!
+
+> [!TIP]
+> No TUI do OpenCode (interface gráfica), o provider **Qwen Code** aparece automaticamente na lista de providers.
+
+## 🎯 Modelos Disponíveis
+
+| Modelo | Contexto | Max Output | Melhor Para |
+|--------|----------|------------|-------------|
+| `qwen3-coder-plus` | 1M tokens | 64K tokens | Tarefas complexas de código |
+| `qwen3-coder-flash` | 1M tokens | 64K tokens | Respostas rápidas |
+
+### Usando um modelo específico
+
+```bash
+opencode --provider qwen-code --model qwen3-coder-plus
+```
+
+## ⚙️ Como Funciona
+
+```
+┌─────────────────┐     ┌──────────────────┐     ┌─────────────────┐
+│   OpenCode CLI  │────▶│  qwen.ai OAuth   │────▶│  Qwen3-Coder    │
+│                 │◀────│  (Device Flow)   │◀────│  API            │
+└─────────────────┘     └──────────────────┘     └─────────────────┘
+```
+
+1. **Device Flow (RFC 8628)**: Abre seu navegador em `chat.qwen.ai` para autenticação
+2. **Polling Automático**: Detecta a conclusão da autorização automaticamente
+3. **Armazenamento de Token**: Salva credenciais em `~/.qwen/oauth_creds.json`
+4. **Auto-refresh**: Renova tokens 30 segundos antes de expirar
+
+## 📊 Limites de Uso
+
+| Plano | Rate Limit | Limite Diário |
+|-------|------------|---------------|
+| Gratuito (OAuth) | 60 req/min | 2.000 req/dia |
+
+> [!NOTE]
+> Os limites resetam à meia-noite UTC. Para limites maiores, considere usar uma API key do [DashScope](https://dashscope.aliyun.com).
+
+## 🔧 Solução de Problemas
+
+### Token expirado
+
+O plugin renova tokens automaticamente. Se houver problemas:
+
+```bash
+# Remova credenciais antigas
+rm ~/.qwen/oauth_creds.json
+
+# Re-autentique
+opencode auth login
+```
+
+### Provider não aparece no `auth login`
+
+O provider `qwen-code` é adicionado via plugin. No comando `opencode auth login`:
+
+1. Selecione **"Other"**
+2. Digite `qwen-code`
+
+### Rate limit excedido (erros 429)
+
+- Aguarde até meia-noite UTC para reset da cota
+- Tente usar `qwen3-coder-flash` para requisições mais leves
+- Considere a [API DashScope](https://dashscope.aliyun.com) para limites maiores
+
+## 🛠️ Desenvolvimento
+
+```bash
+# Clone o repositório
+git clone https://github.com/gustavodiasdev/opencode-qwencode-auth.git
+cd opencode-qwencode-auth
+
+# Instale dependências
+bun install
+
+# Verifique tipos
+bun run typecheck
+```
+
+### Teste local
+
+Edite `~/.opencode/package.json`:
+
+```json
+{
+  "dependencies": {
+    "opencode-qwencode-auth": "file:///caminho/absoluto/para/opencode-qwencode-auth"
+  }
+}
+```
+
+Depois reinstale:
+
+```bash
+cd ~/.opencode && npm install
+```
+
+## 📁 Estrutura do Projeto
+
+```
+src/
+├── constants.ts        # Endpoints OAuth, config de modelos
+├── types.ts            # Interfaces TypeScript
+├── index.ts            # Entry point principal do plugin
+├── qwen/
+│   └── oauth.ts        # OAuth Device Flow + PKCE
+└── plugin/
+    ├── auth.ts         # Gerenciamento de credenciais
+    └── utils.ts        # Utilitários
+```
+
+## 🔗 Projetos Relacionados
+
+- [qwen-code](https://github.com/QwenLM/qwen-code) - CLI oficial do Qwen para programação
+- [OpenCode](https://opencode.ai) - CLI com IA para desenvolvimento
+- [opencode-gemini-auth](https://github.com/jenslys/opencode-gemini-auth) - Plugin similar para Google Gemini
+
+## 📄 Licença
+
+MIT
+
+---
+
+<p align="center">
+  Feito com ❤️ para a comunidade OpenCode
+</p>

package/index.ts

@@ -0,0 +1,3 @@
+// Apenas exportar o plugin principal
+// NÃO exportar funções utilitárias pois o OpenCode trata todas as exportações como plugins
+export { QwenAuthPlugin, default } from "./src/index";

package/package.json

@@ -0,0 +1,50 @@
+{
+  "name": "opencode-qwencode-auth",
+  "version": "1.0.0",
+  "description": "Qwen OAuth authentication plugin for OpenCode - Access Qwen3-Coder models with your qwen.ai account",
+  "module": "index.ts",
+  "type": "module",
+  "scripts": {
+    "build": "bun build ./src/index.ts --outdir ./dist --target node --format esm && bun build ./src/cli.ts --outdir ./dist --target node --format esm",
+    "dev": "bun run --watch src/index.ts",
+    "typecheck": "tsc --noEmit"
+  },
+  "keywords": [
+    "opencode",
+    "qwen",
+    "qwen-code",
+    "qwen3-coder",
+    "oauth",
+    "authentication",
+    "ai",
+    "llm",
+    "opencode-plugins"
+  ],
+  "author": "Gustavo Dias <me@gustavodias.dev>",
+  "license": "MIT",
+  "repository": {
+    "type": "git",
+    "url": "git+https://github.com/gustavodiasdev/opencode-qwencode-auth.git"
+  },
+  "homepage": "https://github.com/gustavodiasdev/opencode-qwencode-auth#readme",
+  "bugs": {
+    "url": "https://github.com/gustavodiasdev/opencode-qwencode-auth/issues"
+  },
+  "dependencies": {
+    "open": "^10.1.0"
+  },
+  "devDependencies": {
+    "@opencode-ai/plugin": "^1.1.48",
+    "@types/node": "^22.0.0",
+    "bun-types": "^1.1.0",
+    "typescript": "^5.6.0"
+  },
+  "files": [
+    "index.ts",
+    "src",
+    "README.md"
+  ],
+  "engines": {
+    "node": ">=20.0.0"
+  }
+}

package/src/cli.ts

@@ -0,0 +1,100 @@
+#!/usr/bin/env node
+/**
+ * Qwen Auth CLI Helper
+ *
+ * This script helps with manual authentication when the automatic
+ * OAuth flow doesn't work (e.g., in SSH sessions, containers, etc.)
+ */
+
+import { existsSync, readFileSync, writeFileSync, mkdirSync } from 'node:fs';
+import { homedir } from 'node:os';
+import { join } from 'node:path';
+import { createInterface } from 'node:readline';
+
+const CREDS_PATH = join(homedir(), '.qwen', 'oauth_creds.json');
+
+const rl = createInterface({
+  input: process.stdin,
+  output: process.stdout,
+});
+
+function question(prompt: string): Promise<string> {
+  return new Promise((resolve) => {
+    rl.question(prompt, resolve);
+  });
+}
+
+async function main() {
+  console.log('\nQwen Auth CLI Helper\n');
+  console.log('This tool helps you set up Qwen authentication manually.\n');
+
+  // Check for existing credentials
+  if (existsSync(CREDS_PATH)) {
+    const data = JSON.parse(readFileSync(CREDS_PATH, 'utf-8'));
+    console.log('Existing credentials found at:', CREDS_PATH);
+
+    if (data.access_token) {
+      console.log('Access token: Present');
+      console.log('Email:', data.email || 'Not set');
+      console.log('Updated at:', data.updated_at ? new Date(data.updated_at).toISOString() : 'Unknown');
+
+      const overwrite = await question('\nOverwrite existing credentials? (y/N): ');
+      if (overwrite.toLowerCase() !== 'y') {
+        console.log('\nKeeping existing credentials. Exiting.');
+        rl.close();
+        return;
+      }
+    }
+  }
+
+  console.log('\nInstructions:');
+  console.log('1. Open https://chat.qwen.ai in your browser');
+  console.log('2. Sign in with your account');
+  console.log('3. Open Developer Tools (F12) -> Network tab');
+  console.log('4. Make any chat request');
+  console.log('5. Find a request to chat.qwen.ai');
+  console.log('6. Copy the "Authorization" header value (starts with "Bearer ...")');
+  console.log('');
+
+  const token = await question('Paste your Bearer token (or just the token without "Bearer "): ');
+
+  if (!token.trim()) {
+    console.log('No token provided. Exiting.');
+    rl.close();
+    return;
+  }
+
+  // Clean up the token
+  let accessToken = token.trim();
+  if (accessToken.toLowerCase().startsWith('bearer ')) {
+    accessToken = accessToken.slice(7);
+  }
+
+  const email = await question('Email (optional, press Enter to skip): ');
+
+  // Save credentials
+  const dir = join(homedir(), '.qwen');
+  if (!existsSync(dir)) {
+    mkdirSync(dir, { recursive: true });
+  }
+
+  const credentials = {
+    access_token: accessToken,
+    email: email.trim() || undefined,
+    updated_at: Date.now(),
+  };
+
+  writeFileSync(CREDS_PATH, JSON.stringify(credentials, null, 2));
+
+  console.log('\nCredentials saved to:', CREDS_PATH);
+  console.log('\nYou can now use OpenCode with Qwen models:');
+  console.log('  opencode --model qwen/qwen3-coder-plus');
+
+  rl.close();
+}
+
+main().catch((error) => {
+  console.error('Error:', error);
+  rl.close();
+  process.exit(1);
+});

package/src/constants.ts

@@ -0,0 +1,56 @@
+/**
+ * Qwen OAuth and API Constants
+ * Based on qwen-code implementation
+ */
+
+// Provider ID - cria provider separado para OAuth
+export const QWEN_PROVIDER_ID = 'qwen-code';
+
+// OAuth Device Flow Endpoints (descobertos do qwen-code)
+export const QWEN_OAUTH_CONFIG = {
+  baseUrl: 'https://chat.qwen.ai',
+  deviceCodeEndpoint: 'https://chat.qwen.ai/api/v1/oauth2/device/code',
+  tokenEndpoint: 'https://chat.qwen.ai/api/v1/oauth2/token',
+  clientId: 'f0304373b74a44d2b584a3fb70ca9e56',
+  scope: 'openid profile email model.completion',
+  grantType: 'urn:ietf:params:oauth:grant-type:device_code',
+} as const;
+
+// Qwen API Configuration
+// O resource_url das credenciais é usado para determinar a URL base
+export const QWEN_API_CONFIG = {
+  // Default base URL (pode ser sobrescrito pelo resource_url das credenciais)
+  defaultBaseUrl: 'https://dashscope.aliyuncs.com/compatible-mode/v1',
+  // Portal URL (usado quando resource_url = "portal.qwen.ai")
+  portalBaseUrl: 'https://portal.qwen.ai/v1',
+  // Endpoint de chat completions
+  chatEndpoint: '/chat/completions',
+  // Endpoint de models
+  modelsEndpoint: '/models',
+  // Usado pelo OpenCode para configurar o provider
+  baseUrl: 'https://portal.qwen.ai/v1',
+} as const;
+
+// OAuth callback port (para futuro Device Flow no plugin)
+export const CALLBACK_PORT = 14561;
+
+// Available Qwen models through OAuth
+// Baseado nos modelos disponíveis no qwen-code
+export const QWEN_MODELS = {
+  'qwen3-coder-plus': {
+    id: 'qwen3-coder-plus',
+    name: 'Qwen3 Coder Plus',
+    contextWindow: 1048576, // 1M tokens
+    maxOutput: 65536, // 64K tokens
+    description: 'Most capable Qwen coding model with 1M context window',
+    cost: { input: 0, output: 0 }, // Free via OAuth
+  },
+  'qwen3-coder-flash': {
+    id: 'qwen3-coder-flash',
+    name: 'Qwen3 Coder Flash',
+    contextWindow: 1048576,
+    maxOutput: 65536,
+    description: 'Faster Qwen coding model for quick responses',
+    cost: { input: 0, output: 0 },
+  },
+} as const;