Add PicoClaw provider/auth UI and model testing#825
Open
ethanperrine wants to merge 1 commit into
Open
Conversation
Rework PicoClaw model configuration into a full provider/auth/provider-model UI and add server-side support for testing and OAuth orchestration. Changes include: - New HTTP routes for model config, model test, and auth status/login/logout/callback in the router. - Added OAuth orchestration that drives the picoclaw binary device-code flow without exposing secrets to the frontend; stores non-secret auth hints in a sidecar file and exposes availability/authenticated flags. - Implemented a Model Test endpoint that runs a minimal prompt against configured providers, classifies outcomes (auth, model, endpoint, network, parser, etc.), and returns a redacted result with a server log reference. - Persist provider/auth/model selection to a non-secret .nanokvm-model.json sidecar and ensure API keys are written only to .security.yml (0600). Preserving unrelated top-level keys when reading/writing .security.yml. - Introduced typed model config handling (validation of provider/auth/method, key management semantics: set/keep/clear) and robust save/apply logic. - Added build-deploy.sh for cross-compiling and deploying the server to NanoKVM devices. - Frontend and i18n/jotai updates to support the new UI and flows. Security: API keys are never returned in API responses or logs; OAuth tokens remain inside the picoclaw binary. Several new files and server handlers implement these behaviors and error codes for auth/model-test flows.
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.This suggestion is invalid because no changes were made to the code.Suggestions cannot be applied while the pull request is closed.Suggestions cannot be applied while viewing a subset of changes.Only one suggestion per line can be applied in a batch.Add this suggestion to a batch that can be applied as a single commit.Applying suggestions on deleted lines is not supported.You must change the existing code in this line in order to create a valid suggestion.Outdated suggestions cannot be applied.This suggestion has been applied or marked resolved.Suggestions cannot be applied from pending reviews.Suggestions cannot be applied on multi-line comments.Suggestions cannot be applied while the pull request is queued to merge.Suggestion cannot be applied right now. Please check back later.
Rework PicoClaw model configuration into a provider/auth/provider-model UI and server-side support for testing and OAuth orchestration. Changes include:
Security: API keys are never returned in API responses or logs; OAuth tokens remain inside the picoclaw binary. Several new files and server handlers implement these behaviors and error codes for auth/model-test flows.