feat: add Gemini auth proxy patch#3
Open
Quantumlyy wants to merge 1 commit into
Open
Conversation
There was a problem hiding this comment.
Pull request overview
This PR adds a new background-agents patch series entry to broker Google/Antigravity (Gemini) OAuth token refreshes via the control plane (similar to the existing Codex model), plus updates model catalogs/documentation to expose the new Google model IDs.
Changes:
- Add patch
0005-gemini-auth-proxy.patchimplementing a control-planePOST /sessions/:id/google-token-refreshendpoint, sandbox-side sentinel auth writing, and a fetch-intercepting plugin that forwards refreshes to the control plane. - Extend shared model lists to include Google/Antigravity + Gemini CLI model IDs and defaults.
- Document the new patch and expected
GOOGLE_OAUTH_*secrets inpatches/background-agents/README.md.
Reviewed changes
Copilot reviewed 3 out of 3 changed files in this pull request and generated 2 comments.
| File | Description |
|---|---|
| patches/background-agents/README.md | Documents the new Gemini auth proxy patch, touched files, and expected secrets. |
| patches/background-agents/0005-gemini-auth-proxy.patch | Adds the end-to-end Google token refresh proxy flow (control plane service + sandbox plugin + tests + model exposure). |
| patches/background-agents/0003-opencode-and-cleanup.patch | Updates the upstream model roster patch to include Google model IDs. |
💡 Add Copilot custom instructions for smarter, more guided reviews. Learn how to get started.
Comment on lines
+97
to
+99
| +const ANTIGRAVITY_CLIENT_ID = "1071006060591-tmhssin2h21lcre235vtolojh4g403ep.apps.googleusercontent.com"; | ||
| +const ANTIGRAVITY_CLIENT_SECRET = "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"; | ||
| + |
Comment on lines
+125
to
+130
| Expected secrets: | ||
| - `GOOGLE_OAUTH_REFRESH_TOKEN` — either the raw refresh token or the plugin's | ||
| packed `refreshToken|projectId|managedProjectId` value | ||
| - `GOOGLE_OAUTH_PROJECT_ID` — optional, overrides packed project ID | ||
| - `GOOGLE_OAUTH_MANAGED_PROJECT_ID` — optional, overrides packed managed project ID | ||
|
|
constructorr
Bot
force-pushed
the
feat/gemini-auth-proxy-patch
branch
2 times, most recently
from
87ed9f9 to
70ab9ca
Compare
constructorr
Bot
force-pushed
the
feat/gemini-auth-proxy-patch
branch
from
70ab9ca to
79e404b
Compare
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.This suggestion is invalid because no changes were made to the code.Suggestions cannot be applied while the pull request is closed.Suggestions cannot be applied while viewing a subset of changes.Only one suggestion per line can be applied in a batch.Add this suggestion to a batch that can be applied as a single commit.Applying suggestions on deleted lines is not supported.You must change the existing code in this line in order to create a valid suggestion.Outdated suggestions cannot be applied.This suggestion has been applied or marked resolved.Suggestions cannot be applied from pending reviews.Suggestions cannot be applied on multi-line comments.Suggestions cannot be applied while the pull request is queued to merge.Suggestion cannot be applied right now. Please check back later.
Summary
opencode-antigravity-authfor request transformation while intercepting sentinel refreshes through/sessions/:id/google-token-refresh.GOOGLE_OAUTH_*secrets.Validation
services/background-agentsso the submodule has no local modifications.patch -p1through0005.pytestandvitestare not installed in the initialized submodule.Created with Constructor