✨feat: OAuth for Actions (#5693)

* ✨feat: OAuth for Actions * WIP: PoC flow state manager * refactor: Add identifier field to token model from action schema * chore: fix potential file type issues * ci: fix type issue with action metadata auth * fix: ensure FlowManagerOptions has a default ttl value * WIP: OAUTH actions * WIP: first pass OAuth Action * fix: standardize identifier usage in OAuth flow handling * fix: update token retrieval to include userId in query and use correct identifier * refacotr: update token retrieval to use userId for OAuth token query * feat: Tool Call Auth styling * fix: streamline token creation and add type field to token schema * refactor: cleanup OAuth flow by encrypting client credentials and ensuring oauth operations only run under condition * refactor: use encrypted credentials in OAuth callback * fix: update Token collection indexes to use expiresAt TTL index and not createdAt legacy index * refactor: enhance Token index cleanup by improving logging and removing redundant index creation logic * refactor: remove unused OAuth login route and related logic for improved clarity * refactor: replace fetch with axios for OAuth token exchange and improve error handling * refactor: better UX after authentication before oauth tool execution * refactor: implement cleanup handlers for FlowStateManager intervals to enhance resource management * refactor: encrypt OAuth tokens before storing and decrypt upon retrieval for enhanced security * refactor: enhance authentication success page with improved styling and countdown feature * refactor: add response_type parameter to OAuth redirect URI for improved compatibility * chore: update translation.json new localizations * chore: remove unused OGDialog import from OGDialogTemplate component * refactor: Actions Auth using new Dialog styling, use same component with Agents/Assistants * refactor: update removeNullishValues function to support removal of empty strings and adjust transform usage in schemas * chore: bump version of librechat-data-provider to 0.7.6991 * refactor: integrate removeNullishValues function to clean metadata before encryption in agent and assistant routes * refactor: update OAuth input fields to use 'password' type for better security * refactor: update localization placeholders for sign-in message to use double curly braces * refactor: add access_type parameter for offline access in createActionTool function * refactor: implement handleOAuthToken function for token management and encryption * feat: refresh token support * refactor: add default expiration for access token and error handling for missing token * feat: localizations for ActionAuth * refactor: set refresh token expiration to null to not expire if expiry never given * fix: prevent crash fromerror within async handleAbortError in AskController, EditController, and AgentController * feat: Action Callback URL * 🌍 i18n: Update translation.json with latest translations * refactor: handle errors in flow state checking to prevent unhandled promise rejections * fix: improve flow state concurrency to prevent multiple token creation calls * refactor: RequestExecutor to use separate axios instance * refactor: improve concurrency flows by keeping completed state until TTL expiry * refactor: increase TTL for flow state management and adjust monitoring interval * ci: mock axios instance creation in actions spec * feat: add Babel and Jest configuration files; implement FlowStateManager tests with concurrency handling * chore: add disableOAuth prop to ActionsAuth (not implemented for Assistants yet) --------- Co-authored-by: Danny Avila <danny@librechat.ai> Co-authored-by: github-actions[bot] <41898282+github-actions[bot]@users.noreply.github.com>
2026-01-26 12:16:13 +01:00 · 2025-02-10 21:56:08 +01:00 · 2025-02-10 21:56:08 +01:00 · d99a9db3f6
commit d99a9db3f6
parent 71c30a3640
58 changed files with 2146 additions and 1223 deletions
--- a/client/src/components/SidePanel/Builder/ActionCallback.tsx
+++ b/client/src/components/SidePanel/Builder/ActionCallback.tsx
@ -0,0 +1,63 @@
+import { useState } from 'react';
+import { Copy, CopyCheck } from 'lucide-react';
+import { useFormContext } from 'react-hook-form';
+import { AuthTypeEnum } from 'librechat-data-provider';
+import { useLocalize, useCopyToClipboard } from '~/hooks';
+import { useToastContext } from '~/Providers';
+import { Button } from '~/components/ui';
+import { cn } from '~/utils';
+
+export default function ActionCallback({ action_id }: { action_id?: string }) {
+  const localize = useLocalize();
+  const { watch } = useFormContext();
+  const { showToast } = useToastContext();
+  const [isCopying, setIsCopying] = useState(false);
+  const callbackURL = `${window.location.protocol}//${window.location.host}/api/actions/${action_id}/oauth/callback`;
+  const copyLink = useCopyToClipboard({ text: callbackURL });
+
+  if (!action_id) {
+    return null;
+  }
+  const type = watch('type');
+  if (type !== AuthTypeEnum.OAuth) {
+    return null;
+  }
+  return (
+    <div className="mb-1.5 flex flex-col space-y-2">
+      <label className="font-semibold">{localize('com_ui_callback_url')}</label>
+      <div className="relative flex items-center">
+        <div className="border-token-border-medium bg-token-surface-primary hover:border-token-border-hover flex h-10 w-full rounded-lg border">
+          <div className="flex-1 overflow-hidden">
+            <div className="relative w-full">
+              <input
+                type="text"
+                readOnly
+                value={callbackURL}
+                className="w-full border-0 bg-transparent px-3 py-2 pr-12 text-sm text-text-secondary-alt focus:outline-none"
+                style={{ direction: 'rtl' }}
+              />
+            </div>
+          </div>
+          <div className="absolute right-0 flex h-full items-center pr-1">
+            <Button
+              size="sm"
+              variant="ghost"
+              type="button"
+              onClick={() => {
+                if (isCopying) {
+                  return;
+                }
+                showToast({ message: localize('com_ui_copied_to_clipboard') });
+                copyLink(setIsCopying);
+              }}
+              className={cn('h-8 rounded-md px-2', isCopying ? 'cursor-default' : '')}
+              aria-label={localize('com_ui_copy_link')}
+            >
+              {isCopying ? <CopyCheck className="size-4" /> : <Copy className="size-4" />}
+            </Button>
+          </div>
+        </div>
+      </div>
+    </div>
+  );
+}