Skip to content

Add provider credential store abstractions#385

Open
Specter242 wants to merge 1 commit intosteipete:mainfrom
Specter242:pr-platform-credentials
Open

Add provider credential store abstractions#385
Specter242 wants to merge 1 commit intosteipete:mainfrom
Specter242:pr-platform-credentials

Conversation

@Specter242
Copy link

@Specter242 Specter242 commented Feb 16, 2026

Summary

  • add provider credential store protocols in CodexBarCore
  • include environment-backed and file-backed implementations
  • add composite credential store to support fallback chains

Why

This adds a platform-neutral interface for API key resolution that Linux and other non-AppKit hosts can share without depending on app-specific storage mechanisms.

Test plan

  • swift build -c debug
  • swift test

Made with Cursor

@Specter242 @cursoragent
Add provider credential store abstractions.
1684130 
Introduce composable credential-store interfaces in CodexBarCore so Linux and future hosts can resolve provider API keys from environment and optional secure files without coupling to app-specific storage.

Co-authored-by: Cursor <cursoragent@cursor.com>
@Specter242 Specter242 mentioned this pull request Feb 16, 2026
Draft
4 tasks
chatgpt-codex-connector[bot]
chatgpt-codex-connector bot reviewed Feb 16, 2026
View reviewed changes
Copy link

@chatgpt-codex-connector chatgpt-codex-connector bot left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

💡 Codex Review

Here are some automated review suggestions for this pull request.

Reviewed commit: 1684130b70

ℹ️ About Codex in GitHub

Codex has been enabled to automatically review pull requests in this repo. Reviews are triggered when you

  • Open a pull request for review
  • Mark a draft as ready
  • Comment "@codex review".

If Codex has suggestions, it will comment; otherwise it will react with 👍.

When you sign up for Codex through ChatGPT, Codex can also answer questions or update the PR, like "@codex address that feedback".

Sources/CodexBarCore/Credentials/CredentialStore.swift
public func apiKey(for key: ProviderCredentialKey) -> String? {
let names = Self.environmentNames(for: key.provider)
for name in names {
if let value = self.env[name]?.trimmingCharacters(in: .whitespacesAndNewlines), !value.isEmpty {
Copy link

@chatgpt-codex-connector chatgpt-codex-connector bot Feb 16, 2026

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

P2 Badge Normalize quoted env credentials before returning

This branch only trims whitespace and returns the raw environment value, so credentials like "sk-..." remain quoted and will be sent with quote characters in auth headers when this store is used. Existing provider readers (for example ZaiSettingsReader.cleaned, MiniMaxAPISettingsReader.cleaned, and SyntheticSettingsReader.cleaned) explicitly strip surrounding quotes, so this abstraction introduces behavior drift that can break API authentication in environments where secret injectors or config tooling preserve quotes.

Useful? React with 👍 / 👎.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@chatgpt-codex-connector chatgpt-codex-connector[bot] chatgpt-codex-connector[bot] left review comments

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

1 participant

@Specter242