PyPI - codex-api-proxy - Versions diffs - 0.1.2__tar.gz → 0.1.4__tar.gz - Mend

codex-api-proxy 0.1.2tar.gz → 0.1.4tar.gz

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (25) hide show

{codex_api_proxy-0.1.2 → codex_api_proxy-0.1.4}/PKG-INFO RENAMED Viewed

@@ -1,6 +1,6 @@
 Metadata-Version: 2.4
 Name: codex-api-proxy
-Version: 0.1.2
+Version: 0.1.4
 Summary: Local OpenAI-compatible HTTP proxy backed by Codex/OpenAI credentials
 Author: codex-api-proxy contributors
 License-Expression: MIT
@@ -102,6 +102,20 @@ You can also set the upstream proxy explicitly at startup:
 codex-api-proxy start --proxy=http://127.0.0.1:8118
 ```
+If the upstream connection passes through a corporate TLS proxy or another endpoint
+using a private/self-signed certificate chain, point the proxy at a CA bundle that
+trusts that chain:
+- `CODEX_API_PROXY_CA_BUNDLE`
+- `REQUESTS_CA_BUNDLE`
+- `SSL_CERT_FILE`
+For example:
+```bash
+CODEX_API_PROXY_CA_BUNDLE=/path/to/internal-ca-bundle.pem codex-api-proxy start
+```
 ## Run
 Start in the background:
@@ -164,6 +178,7 @@ Environment variables for the local server:
 - `CODEX_PROXY_PORT`
 - `CODEX_PROXY_API_KEY`
 - `CODEX_API_PROXY_HTTPS_PROXY`
+- `CODEX_API_PROXY_CA_BUNDLE`
 - `CODEX_PROXY_LOG_LEVEL`
 Token refresh compatibility variables:
@@ -209,6 +224,32 @@ curl -sS http://127.0.0.1:8765/v1/responses \
   -d '{"model":"gpt-5.5","input":"Reply with exactly: pong"}'
 ```
+Image input through Chat Completions:
+```bash
+BASE64_IMAGE=$(base64 < image.jpg)
+curl -sS http://127.0.0.1:8765/v1/chat/completions \
+  -H 'Content-Type: application/json' \
+  -d '{
+    "model": "gpt-5.5",
+    "messages": [{
+      "role": "user",
+      "content": [
+        {"type": "text", "text": "What is in this image?"},
+        {
+          "type": "image_url",
+          "image_url": {
+            "url": "data:image/jpeg;base64,'"$BASE64_IMAGE"'",
+            "detail": "high"
+          }
+        }
+      ]
+    }]
+  }'
+```
+When using ChatGPT Codex credentials, Chat Completions image parts are converted to Responses API `input_image` parts. `/v1/responses` requests are passed through unchanged.
 When `--api-key` is configured:
 ```bash

{codex_api_proxy-0.1.2 → codex_api_proxy-0.1.4}/README.md RENAMED Viewed

@@ -78,6 +78,20 @@ You can also set the upstream proxy explicitly at startup:
 codex-api-proxy start --proxy=http://127.0.0.1:8118
 ```
+If the upstream connection passes through a corporate TLS proxy or another endpoint
+using a private/self-signed certificate chain, point the proxy at a CA bundle that
+trusts that chain:
+- `CODEX_API_PROXY_CA_BUNDLE`
+- `REQUESTS_CA_BUNDLE`
+- `SSL_CERT_FILE`
+For example:
+```bash
+CODEX_API_PROXY_CA_BUNDLE=/path/to/internal-ca-bundle.pem codex-api-proxy start
+```
 ## Run
 Start in the background:
@@ -140,6 +154,7 @@ Environment variables for the local server:
 - `CODEX_PROXY_PORT`
 - `CODEX_PROXY_API_KEY`
 - `CODEX_API_PROXY_HTTPS_PROXY`
+- `CODEX_API_PROXY_CA_BUNDLE`
 - `CODEX_PROXY_LOG_LEVEL`
 Token refresh compatibility variables:
@@ -185,6 +200,32 @@ curl -sS http://127.0.0.1:8765/v1/responses \
   -d '{"model":"gpt-5.5","input":"Reply with exactly: pong"}'
 ```
+Image input through Chat Completions:
+```bash
+BASE64_IMAGE=$(base64 < image.jpg)
+curl -sS http://127.0.0.1:8765/v1/chat/completions \
+  -H 'Content-Type: application/json' \
+  -d '{
+    "model": "gpt-5.5",
+    "messages": [{
+      "role": "user",
+      "content": [
+        {"type": "text", "text": "What is in this image?"},
+        {
+          "type": "image_url",
+          "image_url": {
+            "url": "data:image/jpeg;base64,'"$BASE64_IMAGE"'",
+            "detail": "high"
+          }
+        }
+      ]
+    }]
+  }'
+```
+When using ChatGPT Codex credentials, Chat Completions image parts are converted to Responses API `input_image` parts. `/v1/responses` requests are passed through unchanged.
 When `--api-key` is configured:
 ```bash

{codex_api_proxy-0.1.2 → codex_api_proxy-0.1.4}/pyproject.toml RENAMED Viewed

@@ -1,6 +1,6 @@
 [project]
 name = "codex-api-proxy"
-version = "0.1.2"
+version = "0.1.4"
 description = "Local OpenAI-compatible HTTP proxy backed by Codex/OpenAI credentials"
 readme = "README.md"
 requires-python = ">=3.11"

{codex_api_proxy-0.1.2 → codex_api_proxy-0.1.4}/src/codex_api_proxy/__init__.py RENAMED Viewed

@@ -1,3 +1,3 @@
 """OpenAI-compatible HTTP proxy backed by Codex/OpenAI credentials."""
-__version__ = "0.1.2"
+__version__ = "0.1.4"

{codex_api_proxy-0.1.2 → codex_api_proxy-0.1.4}/src/codex_api_proxy/chat_completions.py RENAMED Viewed

@@ -46,7 +46,7 @@ def chat_to_responses_request(
                 {
                     "type": "message",
                     "role": "user",
-                    "content": [{"type": "input_text", "text": text}],
+                    "content": message_content_to_response_content(message.get("content", "")),
                 }
             )
             continue
@@ -147,6 +147,69 @@ def message_content_to_text(content: object) -> str:
     return "".join(parts)
+def message_content_to_response_content(content: object) -> list[dict[str, str]]:
+    if isinstance(content, str):
+        return [{"type": "input_text", "text": content}]
+    if not isinstance(content, list):
+        return [{"type": "input_text", "text": ""}]
+    parts: list[dict[str, str]] = []
+    for item in content:
+        if isinstance(item, str):
+            parts.append({"type": "input_text", "text": item})
+            continue
+        if not isinstance(item, dict):
+            continue
+        part_type = item.get("type")
+        text = item.get("text")
+        if part_type in {"text", "input_text"} and isinstance(text, str):
+            parts.append({"type": "input_text", "text": text})
+            continue
+        image_part = _image_content_part(item)
+        if image_part:
+            parts.append(image_part)
+    return parts or [{"type": "input_text", "text": ""}]
+def _image_content_part(item: dict) -> dict[str, str] | None:
+    part_type = item.get("type")
+    if part_type == "image_url":
+        image_url = item.get("image_url")
+        url: object
+        detail: object = item.get("detail")
+        if isinstance(image_url, dict):
+            url = image_url.get("url")
+            detail = image_url.get("detail", detail)
+        else:
+            url = image_url
+        if not isinstance(url, str):
+            return None
+        part = {"type": "input_image", "image_url": url}
+        if isinstance(detail, str):
+            part["detail"] = detail
+        return part
+    if part_type == "input_image":
+        part = {"type": "input_image"}
+        image_url = item.get("image_url")
+        file_id = item.get("file_id")
+        detail = item.get("detail")
+        if isinstance(image_url, str):
+            part["image_url"] = image_url
+        if isinstance(file_id, str):
+            part["file_id"] = file_id
+        if isinstance(detail, str):
+            part["detail"] = detail
+        if "image_url" not in part and "file_id" not in part:
+            return None
+        return part
+    return None
 def extract_output_text(response: dict) -> str:
     chunks: list[str] = []
     for item in response.get("output", []):

{codex_api_proxy-0.1.2 → codex_api_proxy-0.1.4}/src/codex_api_proxy/config.py RENAMED Viewed

@@ -76,6 +76,14 @@ def upstream_https_proxy(explicit_proxy: str | None = None) -> str | None:
     return DEFAULT_HTTPS_PROXY
+def upstream_ssl_verify() -> bool | str:
+    for key in ("CODEX_API_PROXY_CA_BUNDLE", "REQUESTS_CA_BUNDLE", "SSL_CERT_FILE"):
+        value = os.environ.get(key, "").strip()
+        if value:
+            return value
+    return True
 def upstream_originator() -> str:
     override = os.environ.get("CODEX_INTERNAL_ORIGINATOR_OVERRIDE", "").strip()
     return override or DEFAULT_ORIGINATOR
@@ -95,6 +103,7 @@ def upstream_client(explicit_proxy: str | None = None) -> httpx.AsyncClient:
     return httpx.AsyncClient(
         timeout=DEFAULT_TIMEOUT,
         proxy=upstream_https_proxy(explicit_proxy),
+        verify=upstream_ssl_verify(),
         trust_env=False,
     )

{codex_api_proxy-0.1.2 → codex_api_proxy-0.1.4}/src/codex_api_proxy.egg-info/PKG-INFO RENAMED Viewed

@@ -1,6 +1,6 @@
 Metadata-Version: 2.4
 Name: codex-api-proxy
-Version: 0.1.2
+Version: 0.1.4
 Summary: Local OpenAI-compatible HTTP proxy backed by Codex/OpenAI credentials
 Author: codex-api-proxy contributors
 License-Expression: MIT
@@ -102,6 +102,20 @@ You can also set the upstream proxy explicitly at startup:
 codex-api-proxy start --proxy=http://127.0.0.1:8118
 ```
+If the upstream connection passes through a corporate TLS proxy or another endpoint
+using a private/self-signed certificate chain, point the proxy at a CA bundle that
+trusts that chain:
+- `CODEX_API_PROXY_CA_BUNDLE`
+- `REQUESTS_CA_BUNDLE`
+- `SSL_CERT_FILE`
+For example:
+```bash
+CODEX_API_PROXY_CA_BUNDLE=/path/to/internal-ca-bundle.pem codex-api-proxy start
+```
 ## Run
 Start in the background:
@@ -164,6 +178,7 @@ Environment variables for the local server:
 - `CODEX_PROXY_PORT`
 - `CODEX_PROXY_API_KEY`
 - `CODEX_API_PROXY_HTTPS_PROXY`
+- `CODEX_API_PROXY_CA_BUNDLE`
 - `CODEX_PROXY_LOG_LEVEL`
 Token refresh compatibility variables:
@@ -209,6 +224,32 @@ curl -sS http://127.0.0.1:8765/v1/responses \
   -d '{"model":"gpt-5.5","input":"Reply with exactly: pong"}'
 ```
+Image input through Chat Completions:
+```bash
+BASE64_IMAGE=$(base64 < image.jpg)
+curl -sS http://127.0.0.1:8765/v1/chat/completions \
+  -H 'Content-Type: application/json' \
+  -d '{
+    "model": "gpt-5.5",
+    "messages": [{
+      "role": "user",
+      "content": [
+        {"type": "text", "text": "What is in this image?"},
+        {
+          "type": "image_url",
+          "image_url": {
+            "url": "data:image/jpeg;base64,'"$BASE64_IMAGE"'",
+            "detail": "high"
+          }
+        }
+      ]
+    }]
+  }'
+```
+When using ChatGPT Codex credentials, Chat Completions image parts are converted to Responses API `input_image` parts. `/v1/responses` requests are passed through unchanged.
 When `--api-key` is configured:
 ```bash

{codex_api_proxy-0.1.2 → codex_api_proxy-0.1.4}/tests/test_api.py RENAMED Viewed

@@ -170,6 +170,58 @@ def test_chatgpt_mode_converts_chat_completion_to_responses(tmp_path: Path, monk
     assert seen["body"]["store"] is False
+def test_chatgpt_mode_converts_chat_completion_images_to_responses(tmp_path: Path, monkeypatch) -> None:
+    seen = {}
+    def handler(request: httpx.Request) -> httpx.Response:
+        seen["body"] = json.loads(request.content)
+        body = "\n\n".join(
+            [
+                'data: {"type":"response.output_text.delta","delta":"a cat"}',
+                'data: {"type":"response.completed","response":{"output":[]}}',
+                "",
+            ]
+        )
+        return httpx.Response(200, content=body, headers={"content-type": "text/event-stream"})
+    mock_auto_auth(monkeypatch, chatgpt_auth(tmp_path))
+    mock_upstream(monkeypatch, handler)
+    app = create_app(Settings())
+    client = TestClient(app)
+    response = client.post(
+        "/v1/chat/completions",
+        json={
+            "model": "gpt-5.5",
+            "messages": [
+                {
+                    "role": "user",
+                    "content": [
+                        {"type": "text", "text": "what is in this image?"},
+                        {
+                            "type": "image_url",
+                            "image_url": {
+                                "url": "data:image/jpeg;base64,/9j/4AAQSkZJRgABAQ==",
+                                "detail": "high",
+                            },
+                        },
+                    ],
+                }
+            ],
+        },
+    )
+    assert response.status_code == 200
+    assert seen["body"]["input"][0]["content"] == [
+        {"type": "input_text", "text": "what is in this image?"},
+        {
+            "type": "input_image",
+            "image_url": "data:image/jpeg;base64,/9j/4AAQSkZJRgABAQ==",
+            "detail": "high",
+        },
+    ]
 def test_chatgpt_mode_applies_default_latency_controls(tmp_path: Path, monkeypatch) -> None:
     seen = {}

{codex_api_proxy-0.1.2 → codex_api_proxy-0.1.4}/tests/test_chat_completions.py RENAMED Viewed

@@ -27,6 +27,84 @@ def test_chat_to_responses_request_maps_messages() -> None:
     ]
+def test_chat_to_responses_request_maps_image_content_parts() -> None:
+    payload = chat_to_responses_request(
+        {
+            "model": "gpt-5.5",
+            "messages": [
+                {
+                    "role": "user",
+                    "content": [
+                        {"type": "text", "text": "what is in this image?"},
+                        {
+                            "type": "image_url",
+                            "image_url": {
+                                "url": "https://example.com/cat.jpg",
+                                "detail": "high",
+                            },
+                        },
+                        {
+                            "type": "image_url",
+                            "image_url": {
+                                "url": "data:image/png;base64,iVBORw0KGgo=",
+                            },
+                        },
+                    ],
+                }
+            ],
+        }
+    )
+    assert payload["input"] == [
+        {
+            "type": "message",
+            "role": "user",
+            "content": [
+                {"type": "input_text", "text": "what is in this image?"},
+                {
+                    "type": "input_image",
+                    "image_url": "https://example.com/cat.jpg",
+                    "detail": "high",
+                },
+                {
+                    "type": "input_image",
+                    "image_url": "data:image/png;base64,iVBORw0KGgo=",
+                },
+            ],
+        }
+    ]
+def test_chat_to_responses_request_preserves_responses_image_content_parts() -> None:
+    payload = chat_to_responses_request(
+        {
+            "model": "gpt-5.5",
+            "messages": [
+                {
+                    "role": "user",
+                    "content": [
+                        {"type": "input_text", "text": "compare these images"},
+                        {
+                            "type": "input_image",
+                            "image_url": "https://example.com/a.jpg",
+                            "detail": "low",
+                        },
+                    ],
+                }
+            ],
+        }
+    )
+    assert payload["input"][0]["content"] == [
+        {"type": "input_text", "text": "compare these images"},
+        {
+            "type": "input_image",
+            "image_url": "https://example.com/a.jpg",
+            "detail": "low",
+        },
+    ]
 def test_chat_to_responses_request_applies_default_latency_controls() -> None:
     payload = chat_to_responses_request(
         {

{codex_api_proxy-0.1.2 → codex_api_proxy-0.1.4}/tests/test_config.py RENAMED Viewed

@@ -1,5 +1,6 @@
 from codex_api_proxy.config import DEFAULT_HTTPS_PROXY
 from codex_api_proxy.config import Settings
+from codex_api_proxy.config import upstream_client
 from codex_api_proxy.config import upstream_https_proxy
@@ -64,3 +65,52 @@ def test_upstream_https_proxy_defaults_to_privoxy(monkeypatch) -> None:
 def test_upstream_https_proxy_env_override(monkeypatch) -> None:
     monkeypatch.setenv("CODEX_API_PROXY_HTTPS_PROXY", "http://127.0.0.1:9999")
     assert upstream_https_proxy() == "http://127.0.0.1:9999"
+def test_upstream_client_defaults_to_system_tls_trust(monkeypatch) -> None:
+    for key in ("CODEX_API_PROXY_CA_BUNDLE", "SSL_CERT_FILE", "REQUESTS_CA_BUNDLE"):
+        monkeypatch.delenv(key, raising=False)
+    captured = {}
+    def fake_async_client(**kwargs):
+        captured.update(kwargs)
+        return object()
+    monkeypatch.setattr("codex_api_proxy.config.httpx.AsyncClient", fake_async_client)
+    upstream_client()
+    assert captured["verify"] is True
+def test_upstream_client_uses_proxy_ca_bundle(monkeypatch) -> None:
+    monkeypatch.setenv("CODEX_API_PROXY_CA_BUNDLE", "/etc/ssl/certs/internal-ca.pem")
+    monkeypatch.setenv("SSL_CERT_FILE", "/etc/ssl/certs/ignored.pem")
+    captured = {}
+    def fake_async_client(**kwargs):
+        captured.update(kwargs)
+        return object()
+    monkeypatch.setattr("codex_api_proxy.config.httpx.AsyncClient", fake_async_client)
+    upstream_client()
+    assert captured["verify"] == "/etc/ssl/certs/internal-ca.pem"
+def test_upstream_client_uses_common_ca_bundle_env(monkeypatch) -> None:
+    monkeypatch.delenv("CODEX_API_PROXY_CA_BUNDLE", raising=False)
+    monkeypatch.setenv("REQUESTS_CA_BUNDLE", "/etc/ssl/certs/requests-ca.pem")
+    monkeypatch.setenv("SSL_CERT_FILE", "/etc/ssl/certs/ssl-ca.pem")
+    captured = {}
+    def fake_async_client(**kwargs):
+        captured.update(kwargs)
+        return object()
+    monkeypatch.setattr("codex_api_proxy.config.httpx.AsyncClient", fake_async_client)
+    upstream_client()
+    assert captured["verify"] == "/etc/ssl/certs/requests-ca.pem"