Skip to content

feat(app): import OAuth-backed Den providers#1941

Closed
pascalandr wants to merge 15 commits into
different-ai:devfrom
Pagecran:pr/desktop-import-oauth-den-providers
Closed

feat(app): import OAuth-backed Den providers#1941
pascalandr wants to merge 15 commits into
different-ai:devfrom
Pagecran:pr/desktop-import-oauth-den-providers

Conversation

@pascalandr

@pascalandr pascalandr commented May 24, 2026
edited
Loading

Copy link
Copy Markdown
Contributor

Dependency map

Pagecran/dev
`-- stack/provider-credential-contract-base          (A)
    |-- pr/den-managed-provider-sync                 (B)
    `-- stack/den-api-oauth-credential-handling      (C)
        |-- stack/oauth-device-flow-and-ui           (D)
        `-- stack/desktop-import-oauth-providers     (E)

Scope

  • Includes map parts: A + C + E.
  • Adds the LLM provider credential contract base for OAuth-backed OpenCode credentials.
  • Adds Den API handling for API-key versus OpenCode OAuth-backed provider credentials.
  • Adds desktop import support for OAuth-backed Den organization providers.
  • Imports OpenCode OAuth auth JSON through the Den import credential endpoint while preserving existing API-key import behavior.

Tests

  • pnpm --filter @openwork-ee/den-db build - PASS.
  • From ee/apps/den-api: pnpm exec tsc -p tsconfig.json --noEmit - PASS.
  • From ee/apps/den-api: pnpm exec bun test test/llm-provider-credentials.test.ts - PASS, 4 tests.
  • pnpm --filter @openwork/app typecheck - FAILS in unrelated existing/baseline file src/react-app/design-system/extension-mesh-avatar.tsx because @paper-design/shaders-react types cannot be resolved. This PR does not touch that file or dependency.

Linked issues

pascalandr added 3 commits May 24, 2026 02:54
@pascalandr
feat(den): add provider credential contract base
d4b14c4 
Add the LLM provider credential kind/opencode auth storage contract, migration, and passive credential redaction/flags needed by follow-up provider credential and worker sync PRs.
@pascalandr
feat(den): handle OAuth provider credentials
efdefad 
Add Den API create/update/read/import handling for API-key versus OpenCode OAuth provider credentials on top of the credential contract base.
@pascalandr
feat(app): import OAuth-backed Den providers
32b39e7 
Allow desktop cloud-provider import to consume OpenCode OAuth-backed organization providers from the Den credential import endpoint.
@vercel

vercel Bot commented May 24, 2026
edited
Loading

Copy link
Copy Markdown
Contributor

The latest updates on your projects. Learn more about Vercel for GitHub.

Project Deployment Actions Updated (UTC)
openwork-landing Ready Ready Preview, Comment, Open in v0 Jun 10, 2026 4:54pm

@vercel

vercel Bot commented May 24, 2026

Copy link
Copy Markdown
Contributor

@pascalandr is attempting to deploy a commit to the Different AI Team on Vercel.

A member of the Team first needs to authorize it.

pascalandr added 3 commits May 28, 2026 02:35
@pascalandr
feat(den): add OpenAI OAuth provider flow
976b68c 
Add Den API OpenAI OAuth device-flow routes/tests and Den Web provider UI for OAuth-backed provider credentials on top of the credential handling stack.
@pascalandr
fix: TASK-2026-05-26-014 sync managed providers to remote workers
e5fcafa 
Route Den-backed remote workspaces through the managed-provider sync endpoint for background sync and manual Cloud Provider import. Add focused client coverage for successful and sanitized failure paths.
@pascalandr
fix: TASK-2026-05-26-020 guard managed model picker
4dbe93f 
Apply the cloud managed model allowlist to session and compact model picker options, refresh provider-list queries after managed-provider sync, and add focused regression coverage for stale OpenAI catalog filtering.
cubic-dev-ai[bot]
cubic-dev-ai Bot reviewed May 28, 2026
View reviewed changes

@cubic-dev-ai cubic-dev-ai Bot left a comment
edited
Loading

Copy link
Copy Markdown

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

4 issues found across 18 files

Reply with feedback, questions, or to request a fix.

Fix all with cubic | Re-trigger cubic

Comment thread ee/apps/den-api/src/routes/org/llm-providers.ts Outdated
Comment thread apps/app/src/app/cloud/managed-provider-models.ts Outdated
Comment thread ee/apps/den-web/app/(den)/dashboard/_components/llm-provider-editor-screen.tsx Outdated
Comment thread apps/app/src/react-app/domains/connections/provider-auth/store.ts
@pascalandr
chore: resolve pr 1941 conflicts
e1ba67b 
Merge upstream/dev into pr/desktop-import-oauth-den-providers, sequence migrations, and address OAuth provider review feedback.
@pascalandr
test: TASK-2026-05-28-008 cover PR 1941 reviews
c5ae1c6 
Add explicit duplicate-provider allowlist coverage and align the OAuth migration journal assertion with the actual migration tag.
@pascalandr
Merge remote-tracking branch 'upstream/dev' into pr/desktop-import-oa…
c8d97ca 
…uth-den-providers

# Conflicts:
#	apps/app/src/react-app/domains/connections/provider-auth/store.ts
#	apps/app/src/react-app/shell/session-route.tsx
#	apps/app/src/react-app/shell/settings-route.tsx
#	ee/packages/den-db/drizzle/meta/_journal.json
@pascalandr
fix: TASK-2026-06-05-001 align oauth migration test
fdd0a38 
Update the OAuth provider migration journal assertion to match the current migration tag after newer enterprise feedback changes.
@pascalandr
fix: TASK-2026-06-09-002 preserve cloud managed provider identity
b1e1350 
Use runtime provider IDs for OAuth/OpenWork managed providers, require applied-provider IDs for partial remote sync results, and constrain default model picker entries to managed allowlists.
@pascalandr pascalandr mentioned this pull request Jun 10, 2026
Open
@pascalandr
fix: TASK-2026-06-10-008 keep host tokens out of bearer auth
3299a88 
Stop using remote host tokens as workspace bearer tokens and cover remote endpoint token selection with tests.
@pascalandr

pascalandr commented Jun 10, 2026

Copy link
Copy Markdown
Contributor Author

@cubic-dev-ai review

@cubic-dev-ai

cubic-dev-ai Bot commented Jun 10, 2026

Copy link
Copy Markdown

@cubic-dev-ai review

@pascalandr I have started the AI code review. It will take a few minutes to complete.

cubic-dev-ai[bot]
cubic-dev-ai Bot reviewed Jun 10, 2026
View reviewed changes

@cubic-dev-ai cubic-dev-ai Bot left a comment
edited
Loading

Copy link
Copy Markdown

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

1 issue found

Reply with feedback, questions, or to request a fix.

Re-trigger cubic

Comment thread ee/apps/den-api/src/routes/org/llm-providers.ts Outdated
@pascalandr
fix: TASK-2026-06-10-008 keep pending provider access visible
540ca5e 
Restore pending invitation member access rows in LLM provider responses by left-joining users and preserving invitation email fallback.
@pascalandr pascalandr mentioned this pull request Jun 11, 2026
Open
@pascalandr

pascalandr commented Jun 11, 2026

Copy link
Copy Markdown
Contributor Author

Superseded by the clean consolidated managed providers PR #2175.

@pascalandr pascalandr closed this Jun 11, 2026
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@cubic-dev-ai cubic-dev-ai[bot] cubic-dev-ai[bot] left review comments

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

OpenAI models not available despite being connected Anthropic auth: disable OAuth or enable via custom provider

1 participant

@pascalandr