Enhance: support prompting user to chosse pat/oauth

Signed-off-by: Daishan Peng <[email protected]>

Author: StrongMonkey

oauth2/go.mod

@@ -2,21 +2,23 @@ module gateway-oauth2
 
 go 1.23.0
 
+replace github.com/gptscript-ai/go-gptscript => ../../go-gptscript
+
 require (
 	github.com/gptscript-ai/go-gptscript v0.9.6-0.20250204133419-744b25b84a61
 	github.com/pkg/browser v0.0.0-20240102092130-5ac0b6a4141c
 )
 
 require (
-	github.com/getkin/kin-openapi v0.124.0 // indirect
-	github.com/go-openapi/jsonpointer v0.20.2 // indirect
-	github.com/go-openapi/swag v0.22.8 // indirect
-	github.com/invopop/yaml v0.2.0 // indirect
+	github.com/getkin/kin-openapi v0.129.0 // indirect
+	github.com/go-openapi/jsonpointer v0.21.0 // indirect
+	github.com/go-openapi/swag v0.23.0 // indirect
 	github.com/josharian/intern v1.0.0 // indirect
-	github.com/mailru/easyjson v0.7.7 // indirect
+	github.com/mailru/easyjson v0.9.0 // indirect
 	github.com/mohae/deepcopy v0.0.0-20170929034955-c48cc78d4826 // indirect
+	github.com/oasdiff/yaml v0.0.0-20241210131133-6b86fb107d80 // indirect
+	github.com/oasdiff/yaml3 v0.0.0-20241210130736-a94c01f36349 // indirect
 	github.com/perimeterx/marshmallow v1.1.5 // indirect
-	github.com/stretchr/testify v1.9.0 // indirect
 	golang.org/x/sys v0.20.0 // indirect
 	gopkg.in/yaml.v3 v3.0.1 // indirect
 )

oauth2/go.sum

@@ -1,27 +1,27 @@
 github.com/davecgh/go-spew v1.1.1 h1:vj9j/u1bqnvCEfJOwUhtlOARqs3+rkHYY13jYWTU97c=
 github.com/davecgh/go-spew v1.1.1/go.mod h1:J7Y8YcW2NihsgmVo/mv3lAwl/skON4iLHjSsI+c5H38=
-github.com/getkin/kin-openapi v0.124.0 h1:VSFNMB9C9rTKBnQ/fpyDU8ytMTr4dWI9QovSKj9kz/M=
-github.com/getkin/kin-openapi v0.124.0/go.mod h1:wb1aSZA/iWmorQP9KTAS/phLj/t17B5jT7+fS8ed9NM=
-github.com/go-openapi/jsonpointer v0.20.2 h1:mQc3nmndL8ZBzStEo3JYF8wzmeWffDH4VbXz58sAx6Q=
-github.com/go-openapi/jsonpointer v0.20.2/go.mod h1:bHen+N0u1KEO3YlmqOjTT9Adn1RfD91Ar825/PuiRVs=
-github.com/go-openapi/swag v0.22.8 h1:/9RjDSQ0vbFR+NyjGMkFTsA1IA0fmhKSThmfGZjicbw=
-github.com/go-openapi/swag v0.22.8/go.mod h1:6QT22icPLEqAM/z/TChgb4WAveCHF92+2gF0CNjHpPI=
+github.com/getkin/kin-openapi v0.129.0 h1:QGYTNcmyP5X0AtFQ2Dkou9DGBJsUETeLH9rFrJXZh30=
+github.com/getkin/kin-openapi v0.129.0/go.mod h1:gmWI+b/J45xqpyK5wJmRRZse5wefA5H0RDMK46kLUtI=
+github.com/go-openapi/jsonpointer v0.21.0 h1:YgdVicSA9vH5RiHs9TZW5oyafXZFc6+2Vc1rr/O9oNQ=
+github.com/go-openapi/jsonpointer v0.21.0/go.mod h1:IUyH9l/+uyhIYQ/PXVA41Rexl+kOkAPDdXEYns6fzUY=
+github.com/go-openapi/swag v0.23.0 h1:vsEVJDUo2hPJ2tu0/Xc+4noaxyEffXNIs3cOULZ+GrE=
+github.com/go-openapi/swag v0.23.0/go.mod h1:esZ8ITTYEsH1V2trKHjAN8Ai7xHb8RV+YSZ577vPjgQ=
 github.com/go-test/deep v1.0.8 h1:TDsG77qcSprGbC6vTN8OuXp5g+J+b5Pcguhf7Zt61VM=
 github.com/go-test/deep v1.0.8/go.mod h1:5C2ZWiW0ErCdrYzpqxLbTX7MG14M9iiw8DgHncVwcsE=
-github.com/gptscript-ai/go-gptscript v0.9.6-0.20250204133419-744b25b84a61 h1:QxLjsLOYlsVLPwuRkP0Q8EcAoZT1s8vU2ZBSX0+R6CI=
-github.com/gptscript-ai/go-gptscript v0.9.6-0.20250204133419-744b25b84a61/go.mod h1:/FVuLwhz+sIfsWUgUHWKi32qT0i6+IXlUlzs70KKt/Q=
-github.com/invopop/yaml v0.2.0 h1:7zky/qH+O0DwAyoobXUqvVBwgBFRxKoQ/3FjcVpjTMY=
-github.com/invopop/yaml v0.2.0/go.mod h1:2XuRLgs/ouIrW3XNzuNj7J3Nvu/Dig5MXvbCEdiBN3Q=
 github.com/josharian/intern v1.0.0 h1:vlS4z54oSdjm0bgjRigI+G1HpF+tI+9rE5LLzOg8HmY=
 github.com/josharian/intern v1.0.0/go.mod h1:5DoeVV0s6jJacbCEi61lwdGj/aVlrQvzHFFd8Hwg//Y=
 github.com/kr/pretty v0.3.1 h1:flRD4NNwYAUpkphVc1HcthR4KEIFJ65n8Mw5qdRn3LE=
 github.com/kr/pretty v0.3.1/go.mod h1:hoEshYVHaxMs3cyo3Yncou5ZscifuDolrwPKZanG3xk=
 github.com/kr/text v0.2.0 h1:5Nx0Ya0ZqY2ygV366QzturHI13Jq95ApcVaJBhpS+AY=
 github.com/kr/text v0.2.0/go.mod h1:eLer722TekiGuMkidMxC/pM04lWEeraHUUmBw8l2grE=
-github.com/mailru/easyjson v0.7.7 h1:UGYAvKxe3sBsEDzO8ZeWOSlIQfWFlxbzLZe7hwFURr0=
-github.com/mailru/easyjson v0.7.7/go.mod h1:xzfreul335JAWq5oZzymOObrkdz5UnU4kGfJJLY9Nlc=
+github.com/mailru/easyjson v0.9.0 h1:PrnmzHw7262yW8sTBwxi1PdJA3Iw/EKBa8psRf7d9a4=
+github.com/mailru/easyjson v0.9.0/go.mod h1:1+xMtQp2MRNVL/V1bOzuP3aP8VNwRW55fQUto+XFtTU=
 github.com/mohae/deepcopy v0.0.0-20170929034955-c48cc78d4826 h1:RWengNIwukTxcDr9M+97sNutRR1RKhG96O6jWumTTnw=
 github.com/mohae/deepcopy v0.0.0-20170929034955-c48cc78d4826/go.mod h1:TaXosZuwdSHYgviHp1DAtfrULt5eUgsSMsZf+YrPgl8=
+github.com/oasdiff/yaml v0.0.0-20241210131133-6b86fb107d80 h1:nZspmSkneBbtxU9TopEAE0CY+SBJLxO8LPUlw2vG4pU=
+github.com/oasdiff/yaml v0.0.0-20241210131133-6b86fb107d80/go.mod h1:7tFDb+Y51LcDpn26GccuUgQXUk6t0CXZsivKjyimYX8=
+github.com/oasdiff/yaml3 v0.0.0-20241210130736-a94c01f36349 h1:t05Ww3DxZutOqbMN+7OIuqDwXbhl32HiZGpLy26BAPc=
+github.com/oasdiff/yaml3 v0.0.0-20241210130736-a94c01f36349/go.mod h1:y5+oSEHCPT/DGrS++Wc/479ERge0zTFxaF8PbGKcg2o=
 github.com/perimeterx/marshmallow v1.1.5 h1:a2LALqQ1BlHM8PZblsDdidgv1mWi1DgC2UmX50IvK2s=
 github.com/perimeterx/marshmallow v1.1.5/go.mod h1:dsXbUu8CRzfYP5a87xpp0xq9S3u0Vchtcl8we9tYaXw=
 github.com/pkg/browser v0.0.0-20240102092130-5ac0b6a4141c h1:+mdjkGKdHQG3305AYmdv1U2eRNDiU2ErMBj1gwrq8eQ=
@@ -30,8 +30,8 @@ github.com/pmezard/go-difflib v1.0.0 h1:4DBwDE0NGyQoBHbLQYPwSUPoCMWR5BEzIk/f1lZb
 github.com/pmezard/go-difflib v1.0.0/go.mod h1:iKH77koFhYxTK1pcRnkKkqfTogsbg7gZNVY4sRDYZ/4=
 github.com/rogpeppe/go-internal v1.12.0 h1:exVL4IDcn6na9z1rAb56Vxr+CgyK3nn3O+epU5NdKM8=
 github.com/rogpeppe/go-internal v1.12.0/go.mod h1:E+RYuTGaKKdloAfM02xzb0FW3Paa99yedzYV+kq4uf4=
-github.com/stretchr/testify v1.9.0 h1:HtqpIVDClZ4nwg75+f6Lvsy/wHu+3BoSGCbBAcpTsTg=
-github.com/stretchr/testify v1.9.0/go.mod h1:r2ic/lqez/lEtzL7wO/rwa5dbSLXVDPFyf8C91i36aY=
+github.com/stretchr/testify v1.10.0 h1:Xv5erBjTwe/5IxqUQTdXv5kgmIvbHo3QQyRwhJsOfJA=
+github.com/stretchr/testify v1.10.0/go.mod h1:r2ic/lqez/lEtzL7wO/rwa5dbSLXVDPFyf8C91i36aY=
 github.com/ugorji/go/codec v1.2.7 h1:YPXUKf7fYbp/y8xloBqZOw2qaVggbfwMlI8WM3wZUJ0=
 github.com/ugorji/go/codec v1.2.7/go.mod h1:WGN1fab3R1fzQlVQTkfxVtIBhWDRqOviHU95kRgeqEY=
 golang.org/x/sys v0.1.0/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
@@ -40,6 +40,5 @@ golang.org/x/sys v0.20.0/go.mod h1:/VUhepiaJMQUp4+oa/7Zr1D23ma6VTLIYjOOTFZPUcA=
 gopkg.in/check.v1 v0.0.0-20161208181325-20d25e280405/go.mod h1:Co6ibVJAznAaIkqp8huTwlJQCZ016jof/cbN4VW5Yz0=
 gopkg.in/check.v1 v1.0.0-20201130134442-10cb98267c6c h1:Hei/4ADfdWqJk1ZMxUNpqntNwaWcugrBjAiHlqqRiVk=
 gopkg.in/check.v1 v1.0.0-20201130134442-10cb98267c6c/go.mod h1:JHkPIbrfpd72SG/EVd6muEfDQjcINNoR0C8j2r3qZ4Q=
-gopkg.in/yaml.v3 v3.0.0/go.mod h1:K4uyk7z7BCEPqu6E+C64Yfv1cQ7kz7rIZviUmN+EgEM=
 gopkg.in/yaml.v3 v3.0.1 h1:fxVm/GzAzEWqLHuvctI91KS9hhNmmWOoWu0XTYJS7CA=
 gopkg.in/yaml.v3 v3.0.1/go.mod h1:K4uyk7z7BCEPqu6E+C64Yfv1cQ7kz7rIZviUmN+EgEM=

oauth2/main.go

@@ -19,6 +19,13 @@ import (
 	"github.com/pkg/browser"
 )
 
+type authType string
+
+const (
+	authTypePAT   authType = "Personal Access Token (PAT)"
+	authTypeOAuth authType = "OAuth"
+)
+
 type input struct {
 	OAuthInfo      oauthInfo   `json:"oauthInfo"`
 	PromptInfo     *promptInfo `json:"promptInfo,omitempty"`
@@ -68,18 +75,10 @@ type cred struct {
 	RefreshToken string            `json:"refreshToken"`
 }
 
-func normalizeForEnv(appName string) string {
-	return strings.ToUpper(strings.ReplaceAll(appName, "-", "_"))
-}
-
-func getURLs(appName string) (string, string, string) {
-	var (
-		normalizedAppName = normalizeForEnv(appName)
-		authorizeURL      = os.Getenv(fmt.Sprintf("GPTSCRIPT_OAUTH_%s_AUTH_URL", normalizedAppName))
-		refreshURL        = os.Getenv(fmt.Sprintf("GPTSCRIPT_OAUTH_%s_REFRESH_URL", normalizedAppName))
-		tokenURL          = os.Getenv(fmt.Sprintf("GPTSCRIPT_OAUTH_%s_TOKEN_URL", normalizedAppName))
-	)
-	return authorizeURL, refreshURL, tokenURL
+func getURLs(serverURL, appName string) (string, string, string) {
+	return fmt.Sprintf("%s/api/app-oauth/authorize/%s", serverURL, appName),
+		fmt.Sprintf("%s/api/app-oauth/refresh/%s", serverURL, appName),
+		fmt.Sprintf("%s/api/app-oauth/get-token", serverURL)
 }
 
 func main() {
@@ -96,6 +95,11 @@ func mainErr() (err error) {
 		return fmt.Errorf("main: TOOL_CALL_BODY environment variable not set")
 	}
 
+	serverURL := os.Getenv("OAUTH_SERVER_URL")
+	if serverURL == "" {
+		return fmt.Errorf("main: OAUTH_SERVER_URL environment variable not set")
+	}
+
 	var in input
 	if err = json.Unmarshal([]byte(inputStr), &in); err != nil {
 		return fmt.Errorf("main: error parsing input JSON: %w", err)
@@ -118,22 +122,27 @@ func mainErr() (err error) {
 		}
 	}()
 
-	authorizeURL, refreshURL, tokenURL := getURLs(in.OAuthInfo.Integration)
-	if authorizeURL == "" || refreshURL == "" || tokenURL == "" {
-		// The URLs aren't set for this credential. Check to see if we should prompt the user for other tokens
-		if in.PromptInfo == nil {
-			fmt.Printf("All the following environment variables must be set: GPTSCRIPT_OAUTH_%s_AUTH_URL, GPTSCRIPT_OAUTH_%[1]s_REFRESH_URL, GPTSCRIPT_OAUTH_%[1]s_TOKEN_URL", normalizeForEnv(in.OAuthInfo.Integration))
-			fmt.Printf("Or the promptInfo configuration must be provided for token prompting.")
-			os.Exit(1)
+	if in.PromptInfo != nil && os.Getenv("GPTSCRIPT_EXISTING_CREDENTIAL") == "" {
+		authType, err := promptForSelect(ctx, gs)
+		if err != nil {
+			return fmt.Errorf("main: failed to prompt for auth type: %w", err)
 		}
 
-		credJSON, err = promptForTokens(ctx, gs, in.OAuthInfo.Integration, in.PromptInfo)
-		if err != nil {
-			return fmt.Errorf("main: failed to prompt for tokens: %w", err)
+		if authType == authTypePAT {
+			credJSON, err = promptForTokens(ctx, gs, in.OAuthInfo.Integration, in.PromptInfo)
+			if err != nil {
+				return fmt.Errorf("main: failed to prompt for tokens: %w", err)
+			}
+			return nil
 		}
-		return nil
 	}
 
+	return promptForOauth(ctx, gs, serverURL, &in, &credJSON)
+}
+
+func promptForOauth(ctx context.Context, gs *gptscript.GPTScript, serverURL string, in *input, credJSON *[]byte) error {
+	authorizeURL, refreshURL, tokenURL := getURLs(serverURL, in.OAuthInfo.Integration)
+
 	// Refresh existing credential if there is one.
 	existing := os.Getenv("GPTSCRIPT_EXISTING_CREDENTIAL")
 	if existing != "" {
@@ -195,7 +204,7 @@ func mainErr() (err error) {
 			out.ExpiresAt = &expiresAt
 		}
 
-		credJSON, err = json.Marshal(out)
+		*credJSON, err = json.Marshal(out)
 		if err != nil {
 			return fmt.Errorf("main: failed to marshal refreshed credential: %w", err)
 		}
@@ -301,7 +310,7 @@ func mainErr() (err error) {
 			out.ExpiresAt = &expiresAt
 		}
 
-		credJSON, err = json.Marshal(out)
+		*credJSON, err = json.Marshal(out)
 		if err != nil {
 			return fmt.Errorf("main: failed to marshal token credential: %w", err)
 		}
@@ -357,6 +366,40 @@ func generateString() (string, error) {
 	return string(b), nil
 }
 
+func promptForSelect(ctx context.Context, g *gptscript.GPTScript) (authType, error) {
+	fieldName := "Authentication Method"
+
+	fields := gptscript.Fields{gptscript.Field{Name: fieldName, Description: "The authentication method to use for this tool.", Options: []string{string(authTypePAT), string(authTypeOAuth)}}}
+	sysPromptIn, err := json.Marshal(sysPromptInput{
+		Message: "This tool has personal access token (PAT) and OAuth support. Select the authentication method you would like to use for this tool.",
+		Fields:  fields,
+	})
+	if err != nil {
+		return "", fmt.Errorf("promptForSelect: error marshalling sys prompt input: %w", err)
+	}
+
+	run, err := g.Run(ctx, "sys.prompt", gptscript.Options{
+		Input: string(sysPromptIn),
+	})
+	if err != nil {
+		return "", fmt.Errorf("promptForSelect: failed to run sys.prompt: %w", err)
+	}
+
+	out, err := run.Text()
+	if err != nil {
+		return "", fmt.Errorf("promptForSelect: failed to get prompt response: %w", err)
+	}
+
+	m := make(map[string]string)
+	if err = json.Unmarshal([]byte(out), &m); err != nil {
+		return "", fmt.Errorf("promptForSelect: failed to unmarshal prompt response: %w", err)
+	}
+
+	authType := authType(m[fieldName])
+
+	return authType, nil
+}
+
 func promptForTokens(ctx context.Context, g *gptscript.GPTScript, integration string, prompt *promptInfo) ([]byte, error) {
 	if prompt.Metadata == nil {
 		prompt.Metadata = make(map[string]string)