vrr/OmniRoute
2
0
Fork 0
mirror of https://github.com/diegosouzapw/OmniRoute.git synced 2026-04-28 06:19:46 +00:00
Code Issues Projects Releases Packages Wiki Activity Actions 2

chore(release): v3.6.1 — OAuth env repair + i18n fix (#1117)
Some checks are pending
CI / Integration Tests (push) Blocked by required conditions
Details
CI / Lint (push) Waiting to run
Details
CI / Build language matrix (push) Waiting to run
Details
CI / i18n Validation (push) Blocked by required conditions
Details
CI / Security Tests (push) Blocked by required conditions
Details
CI / PR Test Policy (push) Waiting to run
Details
CI / Advanced Security Scans (push) Waiting to run
Details
CI / Build (push) Waiting to run
Details
CI / Build-1 (push) Waiting to run
Details
CI / Unit Tests (push) Blocked by required conditions
Details
CI / Unit Tests-1 (push) Blocked by required conditions
Details
CI / Coverage (push) Blocked by required conditions
Details
CI / SonarQube (push) Blocked by required conditions
Details
CI / PR Coverage Comment (push) Blocked by required conditions
Details
CI / E2E Tests (1/4) (push) Blocked by required conditions
Details
CI / E2E Tests (2/4) (push) Blocked by required conditions
Details
CI / E2E Tests (3/4) (push) Blocked by required conditions
Details
CI / E2E Tests (4/4) (push) Blocked by required conditions
Details
CI / CI Dashboard (push) Blocked by required conditions
Details
Publish to Docker Hub / Build and Push Docker (multi-arch) (push) Waiting to run
Details

Browse source 
* chore: bump to v3.6.1

* fix(i18n): add missing provider messages across locales (#1111)

Integrated into release/v3.6.1 — adds missing filterModels, modelsActive, showModel, hideModel i18n keys across all 32 locales

* fix: add Repair env action for OAuth providers (#1116)

Integrated into release/v3.6.1 — adds OAuth env repair feature with full 33-language i18n support and backupPath security fix

* chore(release): v3.6.1 — OAuth env repair + i18n fix

* fix: add targetFormat openai-responses to gpt-5.4 and gpt-5.4-mini (#1114)

* fix: add targetFormat openai-responses to gpt-5.4 and gpt-5.4-mini (#1114)

* chore: force CI trigger

---------

Co-authored-by: diegosouzapw <diegosouzapw@users.noreply.github.com>
Co-authored-by: Ilham Ramadhan <28677129+rilham97@users.noreply.github.com>
Co-authored-by: Artёm <470045+yart@users.noreply.github.com>
This commit is contained in:
Diego Rodrigues de Sa e Souza 2026-04-10 12:19:15 -03:00 committed by GitHub
parent 37cc63e493
commit 515674b6cf
No known key found for this signature in database
GPG key ID: B5690EEEBB952194
46 changed files with 668 additions and 60 deletions
Download patch file Download diff file Expand all files Collapse all files

182
.agents/workflows/fix-ci.md Normal file
View file

@ -0,0 +1,182 @@
# Fix CI Workflow
Look up the latest GitHub Actions CI run for the current release branch, diagnose all failures, fix them locally, push, and wait for the new CI run to go green before notifying the user.
---
## Phase 1: Identify the Failing CI Run
### 1. Determine the current release version and branch
// turbo
```bash
cd /home/diegosouzapw/dev/proxys/9router
VERSION=$(node -p "require('./package.json').version")
BRANCH=$(git branch --show-current)
echo "Version: $VERSION"
echo "Branch: $BRANCH"
```
### 2. Find the latest CI run for the release PR
// turbo
```bash
cd /home/diegosouzapw/dev/proxys/9router
# Find the PR number for the release branch
PR_NUMBER=$(gh pr list --repo diegosouzapw/OmniRoute --head "$BRANCH" --json number --jq '.[0].number')
echo "PR: #$PR_NUMBER"
# Get the latest CI run
RUN_ID=$(gh run list --repo diegosouzapw/OmniRoute --branch "$BRANCH" --workflow ci.yml --limit 1 --json databaseId --jq '.[0].databaseId')
echo "Latest CI Run: $RUN_ID"
echo "URL: https://github.com/diegosouzapw/OmniRoute/actions/runs/$RUN_ID"
```
---
## Phase 2: Diagnose Failures
### 3. List all failing jobs
// turbo
```bash
cd /home/diegosouzapw/dev/proxys/9router
RUN_ID=$(gh run list --repo diegosouzapw/OmniRoute --branch "$(git branch --show-current)" --workflow ci.yml --limit 1 --json databaseId --jq '.[0].databaseId')
gh run view "$RUN_ID" --repo diegosouzapw/OmniRoute --json jobs --jq '.jobs[] | select(.conclusion == "failure") | {name: .name, conclusion: .conclusion, steps: [.steps[] | select(.conclusion == "failure") | .name]}'
```
### 4. Download and analyze failure logs
// turbo
```bash
cd /home/diegosouzapw/dev/proxys/9router
RUN_ID=$(gh run list --repo diegosouzapw/OmniRoute --branch "$(git branch --show-current)" --workflow ci.yml --limit 1 --json databaseId --jq '.[0].databaseId')
gh run view "$RUN_ID" --repo diegosouzapw/OmniRoute --log-failed 2>&1 | grep -aE "not ok|FAIL|Error:|error:|AssertionError|expected|actual" | grep -v "node_modules\|runner\|git version" | head -50
```
### 5. Classify each failure
For each failing job, determine the root cause category:
| Category | Pattern | Fix Strategy |
| ------------------ | ---------------------------------- | ------------------------------------------ |
| **docs-sync** | OpenAPI/CHANGELOG version mismatch | Run `/version-bump` step 7-8 |
| **Test assertion** | `not ok` + `AssertionError` | Update test expectations to match new code |
| **E2E flaky** | Auth-related 401/403/307 | Make tests tolerate auth states |
| **Coverage gate** | `below threshold` | Add more tests or adjust threshold |
| **Lint** | ESLint errors | Fix code or update rules |
| **Build** | Compilation errors | Fix TypeScript issues |
---
## Phase 3: Apply Fixes
### 6. Fix each failure
For each classified failure:
1. **Read the failing test file** to understand the assertion
2. **Read the production source** to understand the new behavior
3. **Update the test** to match the current behavior
4. **Run the test locally** to verify the fix
// turbo
```bash
cd /home/diegosouzapw/dev/proxys/9router
# Run the specific failing test file(s) to confirm fixes
# Example: node --import tsx/esm --test tests/unit/FAILING_FILE.test.mjs
```
### 7. Run the full local test suite
// turbo
```bash
cd /home/diegosouzapw/dev/proxys/9router
npm test
```
### 8. Run docs-sync check
// turbo
```bash
cd /home/diegosouzapw/dev/proxys/9router
npm run check:docs-sync
```
---
## Phase 4: Push and Monitor
### 9. Commit and push fixes
// turbo-all
```bash
cd /home/diegosouzapw/dev/proxys/9router
git add -A
git commit -m "fix(tests): align CI tests with release changes"
git push origin "$(git branch --show-current)"
```
### 10. Wait for CI to trigger and find the new run
// turbo
```bash
cd /home/diegosouzapw/dev/proxys/9router
sleep 15
BRANCH=$(git branch --show-current)
NEW_RUN_ID=$(gh run list --repo diegosouzapw/OmniRoute --branch "$BRANCH" --workflow ci.yml --limit 1 --json databaseId --jq '.[0].databaseId')
echo "New CI Run: $NEW_RUN_ID"
echo "URL: https://github.com/diegosouzapw/OmniRoute/actions/runs/$NEW_RUN_ID"
```
### 11. Monitor the CI run
// turbo
```bash
cd /home/diegosouzapw/dev/proxys/9router
BRANCH=$(git branch --show-current)
NEW_RUN_ID=$(gh run list --repo diegosouzapw/OmniRoute --branch "$BRANCH" --workflow ci.yml --limit 1 --json databaseId --jq '.[0].databaseId')
gh run watch "$NEW_RUN_ID" --repo diegosouzapw/OmniRoute --exit-status
```
If `gh run watch` exits with 0, the CI is green. If it exits with non-zero, go back to Phase 2 and repeat.
### 12. 🛑 STOP — Notify User
Present a summary to the user:
- **Previous CI run**: URL, list of failures
- **Root causes**: What broke and why
- **Fixes applied**: What tests were changed
- **New CI run**: URL, all-green status
- **PR status**: Ready for review/merge
---
## Common CI Failure Patterns
| Failure | Root Cause | Fix |
| ------------------------------------------ | -------------------------------------- | ----------------------------- |
| `docs-sync FAIL - OpenAPI version differs` | Version not synced after bump | `sed -i` openapi.yaml |
| `docs-sync FAIL - CHANGELOG first section` | Missing `## [Unreleased]` header | Add unreleased section |
| `not ok - cleanupExpiredLogs` | Return shape changed (new fields) | Update `assert.deepEqual` |
| `not ok - email masking` | Email now masked in call logs | Assert masked pattern instead |
| `E2E /api/providers` returns non-200 | Auth enabled in CI, endpoint protected | Accept 401/403 as valid |
| `coverage below 60%` | New untested code | Add unit tests |
## Notes
- This workflow is **iterative**: if the first fix attempt doesn't clear all failures, repeat Phases 2-4.
- Always run tests **locally** before pushing to avoid wasting CI minutes.
- The CI is triggered automatically on push to branches with open PRs to `main`.
- Use `gh run watch` to monitor in real-time instead of polling.

13
CHANGELOG.md
View file

@ -4,6 +4,19 @@
---
## [3.6.1] — 2026-04-10
### ✨ New Features
- **OAuth Env Repair Action:** Added a "Repair env" button to the OAuth Providers dashboard that detects and restores missing OAuth client IDs from `.env.example` — with timestamped backup and append-only safety. Includes full 33-language i18n support and sanitized API responses (#1116, by @yart)
### 🐛 Bug Fixes
- **i18n: Missing Provider Keys:** Added missing `filterModels`, `modelsActive`, `showModel`, `hideModel` keys across all 32 locale files, fixing runtime `MISSING_MESSAGE` errors in the providers UI. Also cleaned up duplicate keys in `en.json` (#1111, by @rilham97)
- **GPT-5.4 Routing:** Added missing `targetFormat: "openai-responses"` to `gpt-5.4` and `gpt-5.4-mini` models in both the Codex and GitHub Copilot providers, fixing `[400]: model not accessible via /chat/completions` errors (#1114, by @ask33r)
---
## [3.6.0] — 2026-04-10
### ✨ New Features & Analytics

2
docs/openapi.yaml
View file

@ -1,7 +1,7 @@
openapi: 3.1.0
info:
title: OmniRoute API
version: 3.6.0
version: 3.6.1
description: |
OmniRoute is a local-first AI API proxy router. It provides an OpenAI-compatible
endpoint that routes requests to multiple AI providers with load balancing,

2
electron/package.json
View file

@ -1,6 +1,6 @@
{
"name": "omniroute-desktop",
"version": "3.6.0",
"version": "3.6.1",
"description": "OmniRoute Desktop Application",
"main": "main.js",
"author": {

4
open-sse/config/providerRegistry.ts
View file

@ -250,8 +250,8 @@ export const REGISTRY: Record<string, RegistryEntry> = {
tokenUrl: "https://auth.openai.com/oauth/token",
},
models: [
{ id: "gpt-5.4", name: "GPT 5.4" },
{ id: "gpt-5.4-mini", name: "GPT 5.4 Mini" },
{ id: "gpt-5.4", name: "GPT 5.4", targetFormat: "openai-responses" },
{ id: "gpt-5.4-mini", name: "GPT 5.4 Mini", targetFormat: "openai-responses" },
{ id: "gpt-5.3-codex", name: "GPT 5.3 Codex" },
{ id: "gpt-5.3-codex-xhigh", name: "GPT 5.3 Codex (xHigh)" },
{ id: "gpt-5.3-codex-high", name: "GPT 5.3 Codex (High)" },

2
open-sse/package.json
View file

@ -1,6 +1,6 @@
{
"name": "@omniroute/open-sse",
"version": "3.6.0",
"version": "3.6.1",
"description": "Express SSE sidecar for OmniRoute — handles streaming, protocol translation, and provider orchestration",
"type": "module",
"main": "index.js",

6
package-lock.json generated
View file

@ -1,12 +1,12 @@
{
"name": "omniroute",
"version": "3.6.0",
"version": "3.6.1",
"lockfileVersion": 3,
"requires": true,
"packages": {
"": {
"name": "omniroute",
"version": "3.6.0",
"version": "3.6.1",
"hasInstallScript": true,
"license": "MIT",
"workspaces": [
@ -20980,7 +20980,7 @@
},
"open-sse": {
"name": "@omniroute/open-sse",
"version": "3.5.9"
"version": "3.6.1"
}
}
}

2
package.json
View file

@ -1,6 +1,6 @@
{
"name": "omniroute",
"version": "3.6.0",
"version": "3.6.1",
"description": "Smart AI Router with auto fallback — route to FREE & cheap models, zero downtime. Works with Cursor, Cline, Claude Desktop, Codex, and any OpenAI-compatible tool.",
"type": "module",
"bin": {

4
scripts/postinstall.mjs
View file

@ -128,13 +128,13 @@ async function fixBetterSqliteBinary() {
try {
const { execSync } = await import("node:child_process");
// On Android/Termux, rebuild from source with --build-from-source flag
const isAndroid = process.platform === "android";
const rebuildCmd = isAndroid
? "npm install better-sqlite3 --build-from-source --force"
: "npm rebuild better-sqlite3";
execSync(rebuildCmd, {
cwd: join(ROOT, "app"),
stdio: "inherit",

167
scripts/sync-env.mjs
View file

@ -2,7 +2,7 @@
/**
* OmniRoute Environment Sync
*
* Ensures .env exists and contains all keys from .env.example.
* Ensures .env exists and contains the selected keys from .env.example.
* Runs on installs and can be executed manually via `npm run env:sync`.
*
* Rules:
@ -31,26 +31,111 @@ export function parseEnvFile(filePath) {
const entries = new Map();
for (const line of content.split(/\r?\n/)) {
const trimmed = line.trim();
if (!trimmed || trimmed.startsWith("#")) continue;
const parsed = parseEnvEntry(line);
if (!parsed) continue;
const eqIndex = trimmed.indexOf("=");
if (eqIndex < 1) continue;
const key = trimmed.slice(0, eqIndex).trim();
const value = trimmed.slice(eqIndex + 1).trim();
const [key, value] = parsed;
entries.set(key, value);
}
return entries;
}
function parseEnvEntry(line) {
const trimmed = line.trim();
if (!trimmed || trimmed.startsWith("#")) return null;
const eqIndex = trimmed.indexOf("=");
if (eqIndex < 1) return null;
const key = trimmed.slice(0, eqIndex).trim();
const value = trimmed.slice(eqIndex + 1).trim();
return [key, value];
}
function parseExampleEntries(content, scope = "full") {
const entries = new Map();
const lines = content.split(/\r?\n/);
if (scope === "oauth") {
let inOauthSection = false;
for (const line of lines) {
const trimmed = line.trim();
if (/OAUTH PROVIDER CREDENTIALS/i.test(trimmed)) {
inOauthSection = true;
continue;
}
if (!inOauthSection) continue;
if (/Provider User-Agent Overrides/i.test(trimmed)) break;
const parsed = parseEnvEntry(line);
if (!parsed) continue;
const [key, value] = parsed;
entries.set(key, value);
}
return entries;
}
for (const line of lines) {
const parsed = parseEnvEntry(line);
if (!parsed) continue;
const [key, value] = parsed;
entries.set(key, value);
}
return entries;
}
export function getEnvSyncPlan({ rootDir, scope = "full" } = {}) {
const root = rootDir || dirname(dirname(fileURLToPath(import.meta.url)));
const envExamplePath = join(root, ".env.example");
const envPath = join(root, ".env");
if (!existsSync(envExamplePath)) {
return {
available: false,
created: false,
added: 0,
missingEntries: [],
};
}
const exampleEntries = parseExampleEntries(readFileSync(envExamplePath, "utf8"), scope);
const currentEntries = parseEnvFile(envPath);
const missingEntries = [];
for (const [key, defaultValue] of exampleEntries) {
if (currentEntries.has(key)) continue;
if (CRYPTO_SECRETS[key] && !defaultValue) {
missingEntries.push({ key, value: CRYPTO_SECRETS[key](), generated: true });
continue;
}
missingEntries.push({ key, value: defaultValue, generated: false });
}
return {
available: true,
created: !existsSync(envPath),
added: missingEntries.length,
missingEntries,
};
}
function replaceBlankSecret(content, key, value) {
const pattern = new RegExp(`^${key}=\\s*$`, "m");
return pattern.test(content) ? content.replace(pattern, `${key}=${value}`) : content;
}
export function syncEnv({ rootDir, quiet = false } = {}) {
export function syncEnv({ rootDir, quiet = false, scope = "full" } = {}) {
const log = quiet ? () => {} : (message) => process.stderr.write(`[sync-env] ${message}\n`);
const root = rootDir || dirname(dirname(fileURLToPath(import.meta.url)));
const envExamplePath = join(root, ".env.example");
@ -61,50 +146,42 @@ export function syncEnv({ rootDir, quiet = false } = {}) {
return { created: false, added: 0 };
}
const exampleEntries = parseEnvFile(envExamplePath);
const exampleEntries = parseExampleEntries(readFileSync(envExamplePath, "utf8"), scope);
if (!existsSync(envPath)) {
copyFileSync(envExamplePath, envPath);
if (scope === "full") {
copyFileSync(envExamplePath, envPath);
let content = readFileSync(envPath, "utf8");
let generated = 0;
for (const [key, generator] of Object.entries(CRYPTO_SECRETS)) {
const nextContent = replaceBlankSecret(content, key, generator());
if (nextContent !== content) {
content = nextContent;
generated++;
log(`${key} auto-generated`);
let content = readFileSync(envPath, "utf8");
let generated = 0;
for (const [key, generator] of Object.entries(CRYPTO_SECRETS)) {
const nextContent = replaceBlankSecret(content, key, generator());
if (nextContent !== content) {
content = nextContent;
generated++;
log(`${key} auto-generated`);
}
}
writeFileSync(envPath, content, "utf8");
log(
`✨ Created .env from .env.example (${exampleEntries.size} keys, ${generated} secrets generated)`
);
return { created: true, added: exampleEntries.size };
}
const { missingEntries } = getEnvSyncPlan({ rootDir: root, scope });
const content = [
"# ── Auto-added by sync-env (oauth defaults) ──",
...missingEntries.map((entry) => `${entry.key}=${entry.value}`),
"",
].join("\n");
writeFileSync(envPath, content, "utf8");
log(
`✨ Created .env from .env.example (${exampleEntries.size} keys, ${generated} secrets generated)`
);
return { created: true, added: exampleEntries.size };
log(`✨ Created .env with oauth defaults (${missingEntries.length} keys)`);
return { created: true, added: missingEntries.length };
}
const currentEntries = parseEnvFile(envPath);
const missingEntries = [];
for (const [key, defaultValue] of exampleEntries) {
if (currentEntries.has(key)) continue;
if (CRYPTO_SECRETS[key] && !defaultValue) {
missingEntries.push({
key,
value: CRYPTO_SECRETS[key](),
generated: true,
});
continue;
}
missingEntries.push({
key,
value: defaultValue,
generated: false,
});
}
const { missingEntries } = getEnvSyncPlan({ rootDir: root, scope });
if (missingEntries.length === 0) {
log("✅ .env is up to date (0 keys added)");
@ -133,5 +210,5 @@ export function syncEnv({ rootDir, quiet = false } = {}) {
}
if (process.argv[1]?.endsWith("sync-env.mjs")) {
syncEnv();
syncEnv({ scope: process.argv.includes("--oauth-only") ? "oauth" : "full" });
}

70
src/app/(dashboard)/dashboard/providers/page.tsx
View file

@ -1,6 +1,6 @@
"use client";
import { useState, useEffect } from "react";
import { useState, useEffect, useCallback } from "react";
import Image from "next/image";
import ProviderIcon from "@/shared/components/ProviderIcon";
import PropTypes from "prop-types";
@ -117,6 +117,11 @@ export default function ProvidersPage() {
const [importingZed, setImportingZed] = useState(false);
const [showConfiguredOnly, setShowConfiguredOnly] = useState(false);
const [configuredOnlyPreferenceReady, setConfiguredOnlyPreferenceReady] = useState(false);
const [oauthEnvRepairStatus, setOauthEnvRepairStatus] = useState<{
available: boolean;
missingCount: number;
} | null>(null);
const [repairingEnv, setRepairingEnv] = useState(false);
const notify = useNotificationStore();
const t = useTranslations("providers");
const tc = useTranslations("common");
@ -158,6 +163,27 @@ export default function ProvidersPage() {
writeConfiguredOnlyPreference(showConfiguredOnly);
}, [configuredOnlyPreferenceReady, showConfiguredOnly]);
const fetchOauthEnvRepairStatus = useCallback(async () => {
try {
const res = await fetch("/api/system/env/repair", { cache: "no-store" });
const data = await res.json();
if (res.ok) {
setOauthEnvRepairStatus({
available: Boolean(data.available),
missingCount: Number(data.missingCount || 0),
});
} else {
setOauthEnvRepairStatus(null);
}
} catch {
setOauthEnvRepairStatus(null);
}
}, []);
useEffect(() => {
void fetchOauthEnvRepairStatus();
}, [fetchOauthEnvRepairStatus]);
const handleZedImport = async () => {
setImportingZed(true);
try {
@ -185,6 +211,30 @@ export default function ProvidersPage() {
}
};
const handleRepairEnv = async () => {
if (!oauthEnvRepairStatus?.available || repairingEnv) return;
setRepairingEnv(true);
try {
const res = await fetch("/api/system/env/repair", {
method: "POST",
headers: { "Content-Type": "application/json" },
});
const data = await res.json();
if (!res.ok) {
throw new Error(data.error || t("repairEnvFailed"));
}
notify.success(
data.backupPath ? `${t("repairEnvSuccess")} (${data.backupPath})` : t("repairEnvSuccess")
);
await fetchOauthEnvRepairStatus();
} catch (error) {
notify.error(error instanceof Error ? error.message : t("repairEnvFailed"));
} finally {
setRepairingEnv(false);
}
};
const getProviderStats = (providerId, authType) => {
const providerConnections = connections.filter((c) => {
if (c.provider !== providerId) return false;
@ -450,6 +500,24 @@ export default function ProvidersPage() {
</span>
{importingZed ? "Importing..." : "Import from Zed"}
</button>
{oauthEnvRepairStatus?.available && oauthEnvRepairStatus.missingCount > 0 && (
<button
onClick={handleRepairEnv}
disabled={repairingEnv}
className={`flex items-center gap-1.5 px-3 py-1.5 rounded-lg text-xs font-medium border transition-colors ${
repairingEnv
? "bg-primary/20 border-primary/40 text-primary animate-pulse"
: "bg-bg-subtle border-border text-text-muted hover:text-text-primary hover:border-primary/40"
}`}
title={t("repairEnvHint")}
aria-label={t("repairEnv")}
>
<span className="material-symbols-outlined text-[14px]">
{repairingEnv ? "sync" : "settings_backup_restore"}
</span>
{repairingEnv ? t("repairEnvWorking") : t("repairEnv")}
</button>
)}
<button
onClick={() => handleBatchTest("oauth")}
disabled={!!testingMode}

2
src/app/(dashboard)/dashboard/settings/components/SystemStorageTab.tsx
View file

@ -195,7 +195,7 @@ export default function SystemStorageTab() {
});
return;
}
// Auto import JSON
const reader = new FileReader();
reader.onload = async (e) => {

84
src/app/api/system/env/repair/route.ts vendored Normal file
View file

@ -0,0 +1,84 @@
/**
* GET /api/system/env/repair Returns OAuth env repair status
* POST /api/system/env/repair Backups .env and adds missing OAuth defaults into .env
*
* Security: Requires admin authentication (same as other management routes).
* Safety: Only fills missing OAuth defaults from .env.example.
*/
import { copyFileSync, existsSync } from "node:fs";
import { join } from "node:path";
import { pathToFileURL } from "node:url";
import { NextResponse } from "next/server";
import { isAuthenticated } from "@/shared/utils/apiAuth";
const SYNC_HELPER_PATH = join(process.cwd(), "scripts/sync-env.mjs");
async function loadSyncHelpers() {
return import(pathToFileURL(SYNC_HELPER_PATH).href);
}
function createEnvBackup() {
const envPath = join(process.cwd(), ".env");
if (!existsSync(envPath)) {
return null;
}
const timestamp = new Date().toISOString().replace(/[:.]/g, "-");
const backupPath = join(process.cwd(), `.env.backup-${timestamp}`);
copyFileSync(envPath, backupPath);
return backupPath;
}
export const dynamic = "force-dynamic";
export async function GET(request: Request) {
if (!(await isAuthenticated(request))) {
return NextResponse.json({ error: "Unauthorized" }, { status: 401 });
}
try {
const { getEnvSyncPlan } = await loadSyncHelpers();
const plan = getEnvSyncPlan({ scope: "oauth" });
return NextResponse.json({
available: plan.available,
created: plan.created,
added: plan.added,
missingCount: plan.missingEntries.length,
missingKeys: plan.missingEntries.map((entry: { key: string }) => entry.key),
});
} catch (error) {
return NextResponse.json(
{ error: (error as Error)?.message || "Failed to inspect env defaults" },
{ status: 500 }
);
}
}
export async function POST(request: Request) {
if (!(await isAuthenticated(request))) {
return NextResponse.json({ error: "Unauthorized" }, { status: 401 });
}
try {
const { syncEnv, getEnvSyncPlan } = await loadSyncHelpers();
const backupPath = createEnvBackup();
const result = syncEnv({ scope: "oauth", quiet: true });
const plan = getEnvSyncPlan({ scope: "oauth" });
return NextResponse.json({
success: true,
backupPath,
created: result.created,
added: result.added,
missingCount: plan.missingEntries.length,
missingKeys: plan.missingEntries.map((entry: { key: string }) => entry.key),
});
} catch (error) {
return NextResponse.json(
{ error: (error as Error)?.message || "Failed to repair env defaults" },
{ status: 500 }
);
}
}

4
src/i18n/messages/ar.json
View file

@ -1572,6 +1572,10 @@
"adding": "جارٍ الإضافة...",
"importingModelsTitle": "استيراد النماذج",
"copyModel": "نموذج النسخ",
"filterModels": "تصفية النماذج…",
"modelsActive": "نشط",
"showModel": "إظهار النموذج",
"hideModel": "إخفاء النموذج",
"removeModel": "إزالة النموذج",
"rateLimitProtected": "محمي",
"rateLimitUnprotected": "غير محمية",

4
src/i18n/messages/bg.json
View file

@ -1572,6 +1572,10 @@
"adding": "Добавяне...",
"importingModelsTitle": "Импортиране на модели",
"copyModel": "Копиране на модел",
"filterModels": "Филтриране на модели…",
"modelsActive": "активни",
"showModel": "Показване на модел",
"hideModel": "Скриване на модел",
"removeModel": "Премахване на модела",
"rateLimitProtected": "Защитен",
"rateLimitUnprotected": "Незащитен",

4
src/i18n/messages/cs.json
View file

@ -1572,6 +1572,10 @@
"adding": "Přidávám...",
"importingModelsTitle": "Import modelů",
"copyModel": "Kopírovat model",
"filterModels": "Filtrovat modely…",
"modelsActive": "aktivní",
"showModel": "Zobrazit model",
"hideModel": "Skrýt model",
"removeModel": "Odebrat model",
"rateLimitProtected": "Chráněn",
"rateLimitUnprotected": "Nechráněn",

4
src/i18n/messages/da.json
View file

@ -1572,6 +1572,10 @@
"adding": "Tilføjer...",
"importingModelsTitle": "Import af modeller",
"copyModel": "Kopi model",
"filterModels": "Filtrer modeller…",
"modelsActive": "aktive",
"showModel": "Vis model",
"hideModel": "Skjul model",
"removeModel": "Fjern modellen",
"rateLimitProtected": "Beskyttet",
"rateLimitUnprotected": "Ubeskyttet",

4
src/i18n/messages/de.json
View file

@ -1572,6 +1572,10 @@
"adding": "Hinzufügen...",
"importingModelsTitle": "Modelle importieren",
"copyModel": "Modell kopieren",
"filterModels": "Modelle filtern…",
"modelsActive": "aktiv",
"showModel": "Modell anzeigen",
"hideModel": "Modell ausblenden",
"removeModel": "Modell entfernen",
"rateLimitProtected": "Geschützt",
"rateLimitUnprotected": "Ungeschützt",

11
src/i18n/messages/en.json
View file

@ -1636,6 +1636,10 @@
"close": "Close",
"importingModelsTitle": "Importing Models",
"copyModel": "Copy model",
"filterModels": "Filter models...",
"modelsActive": "Active",
"showModel": "Show model",
"hideModel": "Hide model",
"removeModel": "Remove model",
"rateLimitProtected": "Protected",
"rateLimitUnprotected": "Unprotected",
@ -1670,6 +1674,11 @@
"configured": "configured",
"providerProxyConfigureHint": "Configure proxy for all connections of this provider",
"providerProxy": "Provider Proxy",
"repairEnv": "Repair env",
"repairEnvWorking": "Repairing...",
"repairEnvHint": "Restore missing OAuth defaults into .env without overwriting existing values.",
"repairEnvSuccess": "OAuth defaults restored",
"repairEnvFailed": "Failed to repair .env",
"noConnectionsYet": "No connections yet",
"addFirstConnectionHint": "Add your first connection to get started",
"addConnection": "Add Connection",
@ -2236,7 +2245,6 @@
"backupCreated": "Backup created: {file}",
"restoreSuccess": "Restored! {connections} connections, {nodes} nodes, {combos} combos, {apiKeys} API keys.",
"importSuccess": "Database imported! {connections} connections, {nodes} nodes, {combos} combos, {apiKeys} API keys.",
"justNow": "just now",
"minutesAgo": "{count}m ago",
"hoursAgo": "{count}h ago",
"daysAgo": "{count}d ago",
@ -2251,7 +2259,6 @@
"errorDuringImport": "An error occurred during import",
"modelPricing": "Model Pricing",
"modelPricingDesc": "Configure cost rates per model • All rates in $/1M tokens",
"providers": "Providers",
"registry": "Registry",
"priced": "Priced",
"searchProvidersModels": "Search providers or models...",

9
src/i18n/messages/es.json
View file

@ -1572,6 +1572,10 @@
"adding": "Añadiendo...",
"importingModelsTitle": "Importar modelos",
"copyModel": "Copiar modelo",
"filterModels": "Filtrar modelos…",
"modelsActive": "activos",
"showModel": "Mostrar modelo",
"hideModel": "Ocultar modelo",
"removeModel": "Quitar modelo",
"rateLimitProtected": "Protegido",
"rateLimitUnprotected": "Desprotegido",
@ -1606,6 +1610,11 @@
"configured": "configurado",
"providerProxyConfigureHint": "Configurar proxy para todas las conexiones de este proveedor",
"providerProxy": "Proxy del proveedor",
"repairEnv": "Reparar .env",
"repairEnvWorking": "Reparando...",
"repairEnvHint": "Restaura en .env las variables OAuth predeterminadas que faltan sin sobrescribir los valores existentes.",
"repairEnvSuccess": "Valores OAuth predeterminados restaurados",
"repairEnvFailed": "No se pudo reparar .env",
"noConnectionsYet": "Aún no hay conexiones",
"addFirstConnectionHint": "Agregue su primera conexión para comenzar",
"addConnection": "Agregar conexión",

4
src/i18n/messages/fi.json
View file

@ -1572,6 +1572,10 @@
"adding": "Lisätään...",
"importingModelsTitle": "Mallien tuonti",
"copyModel": "Kopioi malli",
"filterModels": "Suodata malleja…",
"modelsActive": "aktiivista",
"showModel": "Näytä malli",
"hideModel": "Piilota malli",
"removeModel": "Poista malli",
"rateLimitProtected": "Suojattu",
"rateLimitUnprotected": "Suojaamaton",

4
src/i18n/messages/fr.json
View file

@ -1572,6 +1572,10 @@
"adding": "Ajout...",
"importingModelsTitle": "Importation de modèles",
"copyModel": "Copier le modèle",
"filterModels": "Filtrer les modèles…",
"modelsActive": "actifs",
"showModel": "Afficher le modèle",
"hideModel": "Masquer le modèle",
"removeModel": "Supprimer le modèle",
"rateLimitProtected": "Protégé",
"rateLimitUnprotected": "Non protégé",

4
src/i18n/messages/he.json
View file

@ -1572,6 +1572,10 @@
"adding": "מוסיף...",
"importingModelsTitle": "ייבוא דגמים",
"copyModel": "העתק דגם",
"filterModels": "סינון מודלים…",
"modelsActive": "פעילים",
"showModel": "הצג מודל",
"hideModel": "הסתר מודל",
"removeModel": "הסר את הדגם",
"rateLimitProtected": "מוגן",
"rateLimitUnprotected": "לא מוגן",

4
src/i18n/messages/hi.json
View file

@ -1572,6 +1572,10 @@
"adding": "जोड़ा जा रहा है...",
"importingModelsTitle": "मॉडल आयात करना",
"copyModel": "मॉडल कॉपी करें",
"filterModels": "मॉडल फ़िल्टर करें…",
"modelsActive": "सक्रिय",
"showModel": "मॉडल दिखाएँ",
"hideModel": "मॉडल छिपाएँ",
"removeModel": "मॉडल हटाएँ",
"rateLimitProtected": "संरक्षित",
"rateLimitUnprotected": "असुरक्षित",

4
src/i18n/messages/hu.json
View file

@ -1572,6 +1572,10 @@
"adding": "Hozzáadás...",
"importingModelsTitle": "Modellek importálása",
"copyModel": "Modell másolása",
"filterModels": "Modellek szűrése…",
"modelsActive": "aktív",
"showModel": "Modell megjelenítése",
"hideModel": "Modell elrejtése",
"removeModel": "Modell eltávolítása",
"rateLimitProtected": "Védett",
"rateLimitUnprotected": "Nem védett",

4
src/i18n/messages/id.json
View file

@ -1572,6 +1572,10 @@
"adding": "Menambahkan...",
"importingModelsTitle": "Mengimpor Model",
"copyModel": "Salin modelnya",
"filterModels": "Filter model…",
"modelsActive": "aktif",
"showModel": "Tampilkan model",
"hideModel": "Sembunyikan model",
"removeModel": "Hapus modelnya",
"rateLimitProtected": "Dilindungi",
"rateLimitUnprotected": "Tidak terlindungi",

4
src/i18n/messages/it.json
View file

@ -1572,6 +1572,10 @@
"adding": "Aggiunta...",
"importingModelsTitle": "Importazione di modelli",
"copyModel": "Copia modello",
"filterModels": "Filtra modelli…",
"modelsActive": "attivi",
"showModel": "Mostra modello",
"hideModel": "Nascondi modello",
"removeModel": "Rimuovi il modello",
"rateLimitProtected": "Protetto",
"rateLimitUnprotected": "Non protetto",

4
src/i18n/messages/ja.json
View file

@ -1572,6 +1572,10 @@
"adding": "追加中...",
"importingModelsTitle": "モデルのインポート",
"copyModel": "モデルをコピーする",
"filterModels": "モデルを絞り込む…",
"modelsActive": "有効",
"showModel": "モデルを表示",
"hideModel": "モデルを非表示",
"removeModel": "モデルの削除",
"rateLimitProtected": "保護されています",
"rateLimitUnprotected": "保護されていない",

4
src/i18n/messages/ko.json
View file

@ -1572,6 +1572,10 @@
"adding": "추가 중...",
"importingModelsTitle": "모델 가져오기",
"copyModel": "모델 복사",
"filterModels": "모델 필터링…",
"modelsActive": "활성",
"showModel": "모델 표시",
"hideModel": "모델 숨기기",
"removeModel": "모델 삭제",
"rateLimitProtected": "보호됨",
"rateLimitUnprotected": "보호되지 않음",

4
src/i18n/messages/ms.json
View file

@ -1572,6 +1572,10 @@
"adding": "Menambah...",
"importingModelsTitle": "Mengimport Model",
"copyModel": "Salin model",
"filterModels": "Tapis model…",
"modelsActive": "aktif",
"showModel": "Tunjukkan model",
"hideModel": "Sembunyikan model",
"removeModel": "Alih keluar model",
"rateLimitProtected": "Dilindungi",
"rateLimitUnprotected": "Tidak dilindungi",

4
src/i18n/messages/nl.json
View file

@ -1572,6 +1572,10 @@
"adding": "Toevoegen...",
"importingModelsTitle": "Modellen importeren",
"copyModel": "Kopieermodel",
"filterModels": "Modellen filteren…",
"modelsActive": "actief",
"showModel": "Model tonen",
"hideModel": "Model verbergen",
"removeModel": "Model verwijderen",
"rateLimitProtected": "Beschermd",
"rateLimitUnprotected": "Onbeschermd",

4
src/i18n/messages/no.json
View file

@ -1572,6 +1572,10 @@
"adding": "Legger til...",
"importingModelsTitle": "Importere modeller",
"copyModel": "Kopier modell",
"filterModels": "Filtrer modeller…",
"modelsActive": "aktive",
"showModel": "Vis modell",
"hideModel": "Skjul modell",
"removeModel": "Fjern modellen",
"rateLimitProtected": "Beskyttet",
"rateLimitUnprotected": "Ubeskyttet",

4
src/i18n/messages/phi.json
View file

@ -1572,6 +1572,10 @@
"adding": "Idinaragdag...",
"importingModelsTitle": "Pag-import ng mga Modelo",
"copyModel": "Kopyahin ang modelo",
"filterModels": "I-filter ang mga modelo…",
"modelsActive": "aktibo",
"showModel": "Ipakita ang modelo",
"hideModel": "Itago ang modelo",
"removeModel": "Alisin ang modelo",
"rateLimitProtected": "Pinoprotektahan",
"rateLimitUnprotected": "Hindi protektado",

4
src/i18n/messages/pl.json
View file

@ -1572,6 +1572,10 @@
"adding": "Dodawanie...",
"importingModelsTitle": "Importowanie modeli",
"copyModel": "Skopiuj model",
"filterModels": "Filtruj modele…",
"modelsActive": "aktywne",
"showModel": "Pokaż model",
"hideModel": "Ukryj model",
"removeModel": "Usuń model",
"rateLimitProtected": "Chronione",
"rateLimitUnprotected": "Niechroniony",

4
src/i18n/messages/pt-BR.json
View file

@ -1632,6 +1632,10 @@
"adding": "Adicionando...",
"importingModelsTitle": "Importando Modelos",
"copyModel": "Copiar modelo",
"filterModels": "Filtrar modelos…",
"modelsActive": "ativos",
"showModel": "Mostrar modelo",
"hideModel": "Ocultar modelo",
"removeModel": "Remover modelo",
"rateLimitProtected": "Protegido",
"rateLimitUnprotected": "Desprotegido",

4
src/i18n/messages/pt.json
View file

@ -1623,6 +1623,10 @@
"adding": "Adicionando...",
"importingModelsTitle": "Importando Modelos",
"copyModel": "Copiar modelo",
"filterModels": "Filtrar modelos…",
"modelsActive": "ativos",
"showModel": "Mostrar modelo",
"hideModel": "Ocultar modelo",
"removeModel": "Remover modelo",
"rateLimitProtected": "Protegido",
"rateLimitUnprotected": "Desprotegido",

4
src/i18n/messages/ro.json
View file

@ -1572,6 +1572,10 @@
"adding": "Se adaugă...",
"importingModelsTitle": "Importul modelelor",
"copyModel": "Copiați modelul",
"filterModels": "Filtrează modelele…",
"modelsActive": "active",
"showModel": "Afișează modelul",
"hideModel": "Ascunde modelul",
"removeModel": "Eliminați modelul",
"rateLimitProtected": "Protejat",
"rateLimitUnprotected": "Neprotejat",

9
src/i18n/messages/ru.json
View file

@ -1596,6 +1596,10 @@
"adding": "Добавление...",
"importingModelsTitle": "Импорт моделей",
"copyModel": "Копировать модель",
"filterModels": "Фильтровать модели…",
"modelsActive": "активные",
"showModel": "Показать модель",
"hideModel": "Скрыть модель",
"removeModel": "Удалить модель",
"rateLimitProtected": "Защищено",
"rateLimitUnprotected": "незащищенный",
@ -1632,6 +1636,11 @@
"configured": "настроен",
"providerProxyConfigureHint": "Настроить прокси для всех подключений этого провайдера",
"providerProxy": "Прокси-сервер провайдера",
"repairEnv": "Починить .env",
"repairEnvWorking": "Исправляем...",
"repairEnvHint": "Восстановить недостающие стандартные OAuth-переменные в .env, не перезаписывая существующие значения.",
"repairEnvSuccess": "Стандартные OAuth-переменные восстановлены",
"repairEnvFailed": "Не удалось починить .env",
"noConnectionsYet": "Пока нет подключений",
"addFirstConnectionHint": "Добавьте первое соединение, чтобы начать",
"addConnection": "Добавить соединение",

4
src/i18n/messages/sk.json
View file

@ -1572,6 +1572,10 @@
"adding": "Pridáva sa...",
"importingModelsTitle": "Importovanie modelov",
"copyModel": "Kopírovať model",
"filterModels": "Filtrovať modely…",
"modelsActive": "aktívne",
"showModel": "Zobraziť model",
"hideModel": "Skryť model",
"removeModel": "Odstráňte model",
"rateLimitProtected": "Chránené",
"rateLimitUnprotected": "Nechránené",

4
src/i18n/messages/sv.json
View file

@ -1572,6 +1572,10 @@
"adding": "Lägger till...",
"importingModelsTitle": "Importera modeller",
"copyModel": "Kopiera modell",
"filterModels": "Filtrera modeller…",
"modelsActive": "aktiva",
"showModel": "Visa modell",
"hideModel": "Dölj modell",
"removeModel": "Ta bort modellen",
"rateLimitProtected": "Skyddad",
"rateLimitUnprotected": "Oskyddad",

4
src/i18n/messages/th.json
View file

@ -1572,6 +1572,10 @@
"adding": "กำลังเพิ่ม...",
"importingModelsTitle": "การนำเข้าโมเดล",
"copyModel": "คัดลอกโมเดล",
"filterModels": "กรองโมเดล…",
"modelsActive": "ใช้งานอยู่",
"showModel": "แสดงโมเดล",
"hideModel": "ซ่อนโมเดล",
"removeModel": "ลบโมเดล",
"rateLimitProtected": "ได้รับการคุ้มครอง",
"rateLimitUnprotected": "ไม่มีการป้องกัน",

4
src/i18n/messages/tr.json
View file

@ -1572,6 +1572,10 @@
"adding": "Ekleniyor...",
"importingModelsTitle": "Modelleri İçe Aktarma",
"copyModel": "Modeli kopyala",
"filterModels": "Modelleri filtrele…",
"modelsActive": "etkin",
"showModel": "Modeli göster",
"hideModel": "Modeli gizle",
"removeModel": "Modeli kaldır",
"rateLimitProtected": "Korumalı",
"rateLimitUnprotected": "Korumasız",

4
src/i18n/messages/uk-UA.json
View file

@ -1572,6 +1572,10 @@
"adding": "Додавання...",
"importingModelsTitle": "Імпорт моделей",
"copyModel": "Копія моделі",
"filterModels": "Фільтрувати моделі…",
"modelsActive": "активні",
"showModel": "Показати модель",
"hideModel": "Приховати модель",
"removeModel": "Зняти модель",
"rateLimitProtected": "Захищений",
"rateLimitUnprotected": "Незахищений",

4
src/i18n/messages/vi.json
View file

@ -1572,6 +1572,10 @@
"adding": "Đang thêm...",
"importingModelsTitle": "Nhập mô hình",
"copyModel": "Sao chép mô hình",
"filterModels": "Lọc mô hình…",
"modelsActive": "đang hoạt động",
"showModel": "Hiển thị mô hình",
"hideModel": "Ẩn mô hình",
"removeModel": "Xóa mô hình",
"rateLimitProtected": "Được bảo vệ",
"rateLimitUnprotected": "không được bảo vệ",

9
src/i18n/messages/zh-CN.json
View file

@ -1585,6 +1585,10 @@
"close": "关闭",
"importingModelsTitle": "导入模型",
"copyModel": "复制模型",
"filterModels": "筛选模型…",
"modelsActive": "已启用",
"showModel": "显示模型",
"hideModel": "隐藏模型",
"removeModel": "删除模型",
"rateLimitProtected": "受保护",
"rateLimitUnprotected": "无保护",
@ -1619,6 +1623,11 @@
"configured": "已配置",
"providerProxyConfigureHint": "为该提供商的所有连接配置代理",
"providerProxy": "提供商代理",
"repairEnv": "修复 .env",
"repairEnvWorking": "修复中...",
"repairEnvHint": "将缺失的 OAuth 默认值补充到 .env 中,不会覆盖现有值。",
"repairEnvSuccess": "OAuth 默认值已恢复",
"repairEnvFailed": "修复 .env 失败",
"noConnectionsYet": "还没有连接",
"addFirstConnectionHint": "添加您的第一个连接以开始使用",
"addConnection": "添加连接",

38
tests/unit/sync-env.test.mjs
View file

@ -27,6 +27,25 @@ function writeEnvExample(rootDir) {
);
}
function writeOauthEnvExample(rootDir) {
fs.writeFileSync(
path.join(rootDir, ".env.example"),
[
"# ═══════════════════════════════════════════════════",
"# OAUTH PROVIDER CREDENTIALS",
"# ═══════════════════════════════════════════════════",
"CLAUDE_OAUTH_CLIENT_ID=claude-default",
"CODEX_OAUTH_CLIENT_ID=codex-default",
"# ─────────────────────────────────────────────────────────────────────────────",
"# Provider User-Agent Overrides (optional — customize per-provider UA headers)",
"# ─────────────────────────────────────────────────────────────────────────────",
"JWT_SECRET=should-not-be-copied",
"",
].join("\n"),
"utf8"
);
}
test("syncEnv creates .env from .env.example and generates blank secrets", () => {
const rootDir = createTempRoot();
@ -97,3 +116,22 @@ test("syncEnv is idempotent when .env is already complete", () => {
fs.rmSync(rootDir, { recursive: true, force: true });
}
});
test("syncEnv oauth scope only copies oauth defaults", () => {
const rootDir = createTempRoot();
try {
writeOauthEnvExample(rootDir);
const result = syncEnv({ rootDir, quiet: true, scope: "oauth" });
const envContent = fs.readFileSync(path.join(rootDir, ".env"), "utf8");
assert.deepEqual(result, { created: true, added: 2 });
assert.match(envContent, /^CLAUDE_OAUTH_CLIENT_ID=claude-default$/m);
assert.match(envContent, /^CODEX_OAUTH_CLIENT_ID=codex-default$/m);
assert.doesNotMatch(envContent, /^JWT_SECRET=/m);
assert.doesNotMatch(envContent, /^Provider User-Agent Overrides/m);
} finally {
fs.rmSync(rootDir, { recursive: true, force: true });
}
});