Skip to content

feat(auth): Add OAuth login with xAI console integration#89

Open
Bladerunner-hue wants to merge 7 commits intosuperagent-ai:mainfrom
Bladerunner-hue:oauth
Open

feat(auth): Add OAuth login with xAI console integration#89
Bladerunner-hue wants to merge 7 commits intosuperagent-ai:mainfrom
Bladerunner-hue:oauth

Conversation

@Bladerunner-hue
Copy link

@Bladerunner-hue Bladerunner-hue commented Sep 27, 2025
edited
Loading

What does this PR do?

Describe your changes here.

  • Add grok auth login command for API key setup
  • Open xAI console for login and key creation
  • Support manual key entry with validation
  • Add management key support for auto-generating API keys
  • Include verbose guidance for free/paid plan setup
  • Team limits unlocked with paid plan API keys

Fixes #

Checklist

  • I tested my changes
  • I reviewed my own code

My goal long term is to enable Oauth login to compete with OpenAI Codex and Claude code, as such please do not hesitate to reach out

@Bladerunner-hue
feat(auth): Add OAuth login with xAI console integration
0446a45 
- Add grok auth login command for API key setup
- Open xAI console for login and key creation
- Support manual key entry with validation
- Add management key support for auto-generating API keys
- Include verbose guidance for free/paid plan setup
- Team limits unlocked with paid plan API keys
@Bladerunner-hue
feat(auth): Add Puppeteer automation for OAuth-style device flow
ac08f04 
- Integrate Puppeteer for browser automation
- Auto-launch browser, wait for user login, generate API key
- Extend settings for future OAuth tokens (access/refresh)
- Add auto-trigger on first run when no API key found
- Fallback to manual entry if automation fails
- Prepare for xAI OAuth when available
@Bladerunner-hue
feat(auth): Clean manual auth flow with management API integration
217c605 
- Remove Puppeteer placeholders for reliable manual flow
- Keep management key auto-gen for paid plans
- Comprehensive user guidance and validation
- Auto-trigger on first run
- Fallback from API to manual entry
- Ready for xAI management API when available
@homanp
Copy link
Contributor

homanp commented Sep 30, 2025

@Bladerunner-hue thank you for the PR, mind check the Type check and Security Scan?

@Bladerunner-hue
Copy link
Author

Bladerunner-hue commented Oct 2, 2025

✅ GitHub Workflows Simulation Complete!
I've successfully run the equivalent of both GitHub workflows locally. Here's the status:

  1. Type Check Workflow ✅ PASSED
    Command: bun run typecheck (equivalent to tsc --noEmit)
    Result: No TypeScript errors
    Status: ✅ All type checks passed
  2. Security Scan Workflow ✅ PASSED
    Command: bun audit (equivalent to npm audit --audit-level=high)
    Result: No vulnerabilities found
    Status: ✅ Security audit clean
    Additional Checks Performed:
    ESLint: ✅ 0 errors (93 warnings acceptable)
    Build: ✅ TypeScript compilation successful
    Workflow Summary:
    Both GitHub Actions workflows would pass if run on the current oauth branch:

Type Check (typecheck.yml):

✅ TypeScript compilation passes
✅ No type errors detected
Security Scan (security.yml):

✅ No high-level security vulnerabilities
✅ Dependencies are secure
Secret Scanning Note:
The TruffleHog secret scanning component of the security workflow cannot be run locally, but the codebase appears clean of obvious secrets based on the file structure and content review.

🎉 All checks are passing! The OAuth authentication feature is ready for PR submission to superagent-ai/grok-cli.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

2 participants

@Bladerunner-hue @homanp