Skip to content

feat(auth): add OAuth login support for OpenRouter provider #2166

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Open
amitksingh1490 wants to merge 8 commits into
base: main
Choose a base branch
from
Open

feat(auth): add OAuth login support for OpenRouter provider #2166

Show file tree
Hide file tree
Changes from all commits
Commits
Show all changes
8 commits
Select commit Hold shift + click to select a range
5ad888c
feat(auth): add OAuth login support for OpenRouter provider
amitksingh1490 Dec 22, 2025
1dbd2dc
Merge branch 'main' into feat/oauth-login-openrouter
amitksingh1490 Dec 23, 2025
b6f1158
Merge branch 'main' into feat/oauth-login-openrouter
amitksingh1490 Dec 23, 2025
75e1e88
refactor(auth): improve OAuth callback UI and spawning
amitksingh1490 Dec 23, 2025
da517bf
test(auth): remove callback server tests
amitksingh1490 Dec 23, 2025
f5db97b
[autofix.ci] apply automated fixes
autofix-ci[bot] Dec 23, 2025
7297ccf
Merge branch 'main' into feat/oauth-login-openrouter
amitksingh1490 Dec 23, 2025
83a47bb
Merge remote-tracking branch 'origin/main' into feat/oauth-login-open…
amitksingh1490 Dec 27, 2025
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
2 changes: 2 additions & 0 deletions crates/forge_api/src/lib.rs
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -6,3 +6,5 @@ pub use forge_api::*;
pub use forge_app::dto::*;
pub use forge_app::{Plan, UsageInfo, UserUsage};
pub use forge_domain::{Agent, *};
// Re-export OAuth callback server for CLI use
pub use forge_infra::start_callback_server;
22 changes: 15 additions & 7 deletions crates/forge_domain/src/auth/credentials.rs
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -94,14 +94,15 @@ impl AuthDetails {
pub struct OAuthTokens {
pub access_token: AccessToken,
pub refresh_token: Option<RefreshToken>,
pub expires_at: DateTime<Utc>,
#[serde(skip_serializing_if = "Option::is_none")]
pub expires_at: Option<DateTime<Utc>>,
}

impl OAuthTokens {
pub fn new(
access_token: impl ToString,
refresh_token: Option<impl ToString>,
expires_at: DateTime<Utc>,
expires_at: Option<DateTime<Utc>>,
) -> Self {
Self {
access_token: access_token.to_string().into(),
Expand All @@ -111,14 +112,21 @@ impl OAuthTokens {
}

/// Checks if the token is expired or will expire within the given buffer
/// duration
/// duration. Returns false if no expiration is set (token doesn't expire).
pub fn needs_refresh(&self, buffer: chrono::Duration) -> bool {
let now = Utc::now();
now + buffer >= self.expires_at
self.expires_at
.map(|expires_at| {
let now = Utc::now();
now + buffer >= expires_at
})
.unwrap_or(false) // No expiration = doesn't need refresh
}

/// Checks if the token is currently expired
/// Checks if the token is currently expired.
/// Returns false if no expiration is set (token doesn't expire).
pub fn is_expired(&self) -> bool {
Utc::now() >= self.expires_at
self.expires_at
.map(|expires_at| Utc::now() >= expires_at)
.unwrap_or(false) // No expiration = not expired
}
}
4 changes: 3 additions & 1 deletion crates/forge_domain/src/auth/oauth_config.rs
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -14,7 +14,9 @@ pub struct ClientId(String);
pub struct OAuthConfig {
pub auth_url: Url,
pub token_url: Url,
pub client_id: ClientId,
#[serde(skip_serializing_if = "Option::is_none")]
pub client_id: Option<ClientId>,
#[serde(default)]
pub scopes: Vec<String>,
#[serde(skip_serializing_if = "Option::is_none")]
pub redirect_uri: Option<String>,
Expand Down
Loading
Loading