import { afterEach, beforeEach, describe, expect, it, vi } from "vitest"; import type { AuthProfileStore } from "../../agents/auth-profiles/types.js"; import { QWEN_OAUTH_MARKER } from "../../agents/model-auth-markers.js"; import type { ModelDefinitionConfig } from "../../config/types.models.js"; import { registerProviders, requireProvider } from "./testkit.js"; const resolveCopilotApiTokenMock = vi.hoisted(() => vi.fn()); const buildOllamaProviderMock = vi.hoisted(() => vi.fn()); const buildVllmProviderMock = vi.hoisted(() => vi.fn()); const buildSglangProviderMock = vi.hoisted(() => vi.fn()); const ensureAuthProfileStoreMock = vi.hoisted(() => vi.fn()); const listProfilesForProviderMock = vi.hoisted(() => vi.fn()); let runProviderCatalog: typeof import("../provider-discovery.js").runProviderCatalog; let qwenPortalProvider: Awaited>; let githubCopilotProvider: Awaited>; let ollamaProvider: Awaited>; let vllmProvider: Awaited>; let sglangProvider: Awaited>; let minimaxProvider: Awaited>; let minimaxPortalProvider: Awaited>; let modelStudioProvider: Awaited>; let cloudflareAiGatewayProvider: Awaited>; function createModelConfig(id: string, name = id): ModelDefinitionConfig { return { id, name, reasoning: false, input: ["text"], cost: { input: 0, output: 0, cacheRead: 0, cacheWrite: 0, }, contextWindow: 128_000, maxTokens: 8_192, }; } function setRuntimeAuthStore(store?: AuthProfileStore) { const resolvedStore = store ?? { version: 1, profiles: {}, }; ensureAuthProfileStoreMock.mockReturnValue(resolvedStore); listProfilesForProviderMock.mockImplementation( (authStore: AuthProfileStore, providerId: string) => Object.entries(authStore.profiles) .filter(([, credential]) => credential.provider === providerId) .map(([profileId]) => profileId), ); } function setQwenPortalOauthSnapshot() { setRuntimeAuthStore({ version: 1, profiles: { "qwen-portal:default": { type: "oauth", provider: "qwen-portal", access: "access-token", refresh: "refresh-token", expires: Date.now() + 60_000, }, }, }); } function setGithubCopilotProfileSnapshot() { setRuntimeAuthStore({ version: 1, profiles: { "github-copilot:github": { type: "token", provider: "github-copilot", token: "profile-token", }, }, }); } function runCatalog(params: { provider: Awaited>; env?: NodeJS.ProcessEnv; resolveProviderApiKey?: () => { apiKey: string | undefined }; resolveProviderAuth?: ( providerId?: string, options?: { oauthMarker?: string }, ) => { apiKey: string | undefined; discoveryApiKey?: string; mode: "api_key" | "oauth" | "token" | "none"; source: "env" | "profile" | "none"; profileId?: string; }; }) { return runProviderCatalog({ provider: params.provider, config: {}, env: params.env ?? ({} as NodeJS.ProcessEnv), resolveProviderApiKey: params.resolveProviderApiKey ?? (() => ({ apiKey: undefined })), resolveProviderAuth: params.resolveProviderAuth ?? ((_, options) => ({ apiKey: options?.oauthMarker, discoveryApiKey: undefined, mode: options?.oauthMarker ? "oauth" : "none", source: options?.oauthMarker ? "profile" : "none", })), }); } describe("provider discovery contract", () => { beforeEach(async () => { vi.resetModules(); vi.doMock("openclaw/plugin-sdk/agent-runtime", async () => { // Import the direct source module, not the mocked subpath, so bundled // provider helpers still see the full agent-runtime surface. const actual = await import("../../plugin-sdk/agent-runtime.ts"); return { ...actual, ensureAuthProfileStore: ensureAuthProfileStoreMock, listProfilesForProvider: listProfilesForProviderMock, }; }); vi.doMock("openclaw/plugin-sdk/provider-auth", async () => { const actual = await vi.importActual("openclaw/plugin-sdk/provider-auth"); return { ...actual, ensureAuthProfileStore: ensureAuthProfileStoreMock, listProfilesForProvider: listProfilesForProviderMock, }; }); vi.doMock("../../../extensions/github-copilot/token.js", async () => { const actual = await vi.importActual("../../../extensions/github-copilot/token.js"); return { ...actual, resolveCopilotApiToken: resolveCopilotApiTokenMock, }; }); vi.doMock("openclaw/plugin-sdk/provider-setup", async () => { const actual = await vi.importActual("openclaw/plugin-sdk/provider-setup"); return { ...actual, buildOllamaProvider: (...args: unknown[]) => buildOllamaProviderMock(...args), buildVllmProvider: (...args: unknown[]) => buildVllmProviderMock(...args), buildSglangProvider: (...args: unknown[]) => buildSglangProviderMock(...args), }; }); vi.doMock("openclaw/plugin-sdk/self-hosted-provider-setup", async () => { const actual = await vi.importActual( "openclaw/plugin-sdk/self-hosted-provider-setup", ); return { ...actual, buildVllmProvider: (...args: unknown[]) => buildVllmProviderMock(...args), buildSglangProvider: (...args: unknown[]) => buildSglangProviderMock(...args), }; }); vi.doMock("openclaw/plugin-sdk/ollama-setup", async () => { const actual = await vi.importActual("openclaw/plugin-sdk/ollama-setup"); return { ...actual, buildOllamaProvider: (...args: unknown[]) => buildOllamaProviderMock(...args), }; }); ({ runProviderCatalog } = await import("../provider-discovery.js")); const [ { default: qwenPortalPlugin }, { default: githubCopilotPlugin }, { default: ollamaPlugin }, { default: vllmPlugin }, { default: sglangPlugin }, { default: minimaxPlugin }, { default: modelStudioPlugin }, { default: cloudflareAiGatewayPlugin }, ] = await Promise.all([ import("../../../extensions/qwen-portal-auth/index.js"), import("../../../extensions/github-copilot/index.js"), import("../../../extensions/ollama/index.js"), import("../../../extensions/vllm/index.js"), import("../../../extensions/sglang/index.js"), import("../../../extensions/minimax/index.js"), import("../../../extensions/modelstudio/index.js"), import("../../../extensions/cloudflare-ai-gateway/index.js"), ]); qwenPortalProvider = requireProvider(registerProviders(qwenPortalPlugin), "qwen-portal"); githubCopilotProvider = requireProvider( registerProviders(githubCopilotPlugin), "github-copilot", ); ollamaProvider = requireProvider(registerProviders(ollamaPlugin), "ollama"); vllmProvider = requireProvider(registerProviders(vllmPlugin), "vllm"); sglangProvider = requireProvider(registerProviders(sglangPlugin), "sglang"); minimaxProvider = requireProvider(registerProviders(minimaxPlugin), "minimax"); minimaxPortalProvider = requireProvider(registerProviders(minimaxPlugin), "minimax-portal"); modelStudioProvider = requireProvider(registerProviders(modelStudioPlugin), "modelstudio"); cloudflareAiGatewayProvider = requireProvider( registerProviders(cloudflareAiGatewayPlugin), "cloudflare-ai-gateway", ); setRuntimeAuthStore(); }); afterEach(() => { vi.restoreAllMocks(); resolveCopilotApiTokenMock.mockReset(); buildOllamaProviderMock.mockReset(); buildVllmProviderMock.mockReset(); buildSglangProviderMock.mockReset(); ensureAuthProfileStoreMock.mockReset(); listProfilesForProviderMock.mockReset(); }); it("keeps qwen portal oauth marker fallback provider-owned", async () => { setQwenPortalOauthSnapshot(); await expect( runCatalog({ provider: qwenPortalProvider, }), ).resolves.toEqual({ provider: { baseUrl: "https://portal.qwen.ai/v1", apiKey: QWEN_OAUTH_MARKER, api: "openai-completions", models: [ expect.objectContaining({ id: "coder-model", name: "Qwen Coder" }), expect.objectContaining({ id: "vision-model", name: "Qwen Vision" }), ], }, }); }); it("keeps qwen portal env api keys higher priority than oauth markers", async () => { setQwenPortalOauthSnapshot(); await expect( runCatalog({ provider: qwenPortalProvider, env: { QWEN_PORTAL_API_KEY: "env-key" } as NodeJS.ProcessEnv, resolveProviderApiKey: () => ({ apiKey: "env-key" }), }), ).resolves.toMatchObject({ provider: { apiKey: "env-key", }, }); }); it("keeps GitHub Copilot catalog disabled without env tokens or profiles", async () => { await expect(runCatalog({ provider: githubCopilotProvider })).resolves.toBeNull(); }); it("keeps GitHub Copilot profile-only catalog fallback provider-owned", async () => { setGithubCopilotProfileSnapshot(); await expect( runCatalog({ provider: githubCopilotProvider, }), ).resolves.toEqual({ provider: { baseUrl: "https://api.individual.githubcopilot.com", models: [], }, }); }); it("keeps GitHub Copilot env-token base URL resolution provider-owned", async () => { resolveCopilotApiTokenMock.mockResolvedValueOnce({ token: "copilot-api-token", baseUrl: "https://copilot-proxy.example.com", expiresAt: Date.now() + 60_000, }); await expect( runCatalog({ provider: githubCopilotProvider, env: { GITHUB_TOKEN: "github-env-token", } as NodeJS.ProcessEnv, resolveProviderApiKey: () => ({ apiKey: undefined }), }), ).resolves.toEqual({ provider: { baseUrl: "https://copilot-proxy.example.com", models: [], }, }); expect(resolveCopilotApiTokenMock).toHaveBeenCalledWith({ githubToken: "github-env-token", env: expect.objectContaining({ GITHUB_TOKEN: "github-env-token", }), }); }); it("keeps Ollama explicit catalog normalization provider-owned", async () => { await expect( runProviderCatalog({ provider: ollamaProvider, config: { models: { providers: { ollama: { baseUrl: "http://ollama-host:11434/v1/", models: [createModelConfig("llama3.2")], }, }, }, }, env: {} as NodeJS.ProcessEnv, resolveProviderApiKey: () => ({ apiKey: undefined }), resolveProviderAuth: () => ({ apiKey: undefined, discoveryApiKey: undefined, mode: "none", source: "none", }), }), ).resolves.toMatchObject({ provider: { baseUrl: "http://ollama-host:11434", api: "ollama", apiKey: "ollama-local", models: [createModelConfig("llama3.2")], }, }); expect(buildOllamaProviderMock).not.toHaveBeenCalled(); }); it("keeps Ollama empty autodiscovery disabled without keys or explicit config", async () => { buildOllamaProviderMock.mockResolvedValueOnce({ baseUrl: "http://127.0.0.1:11434", api: "ollama", models: [], }); await expect( runProviderCatalog({ provider: ollamaProvider, config: {}, env: {} as NodeJS.ProcessEnv, resolveProviderApiKey: () => ({ apiKey: undefined }), resolveProviderAuth: () => ({ apiKey: undefined, discoveryApiKey: undefined, mode: "none", source: "none", }), }), ).resolves.toBeNull(); expect(buildOllamaProviderMock).toHaveBeenCalledWith(undefined, { quiet: true }); }); it("keeps vLLM self-hosted discovery provider-owned", async () => { buildVllmProviderMock.mockResolvedValueOnce({ baseUrl: "http://127.0.0.1:8000/v1", api: "openai-completions", models: [{ id: "meta-llama/Meta-Llama-3-8B-Instruct", name: "Meta Llama 3" }], }); await expect( runProviderCatalog({ provider: vllmProvider, config: {}, env: { VLLM_API_KEY: "env-vllm-key", } as NodeJS.ProcessEnv, resolveProviderApiKey: () => ({ apiKey: "VLLM_API_KEY", discoveryApiKey: "env-vllm-key", }), resolveProviderAuth: () => ({ apiKey: "VLLM_API_KEY", discoveryApiKey: "env-vllm-key", mode: "api_key", source: "env", }), }), ).resolves.toEqual({ provider: { baseUrl: "http://127.0.0.1:8000/v1", api: "openai-completions", apiKey: "VLLM_API_KEY", models: [{ id: "meta-llama/Meta-Llama-3-8B-Instruct", name: "Meta Llama 3" }], }, }); expect(buildVllmProviderMock).toHaveBeenCalledWith({ apiKey: "env-vllm-key", }); }); it("keeps SGLang self-hosted discovery provider-owned", async () => { buildSglangProviderMock.mockResolvedValueOnce({ baseUrl: "http://127.0.0.1:30000/v1", api: "openai-completions", models: [{ id: "Qwen/Qwen3-8B", name: "Qwen3-8B" }], }); await expect( runProviderCatalog({ provider: sglangProvider, config: {}, env: { SGLANG_API_KEY: "env-sglang-key", } as NodeJS.ProcessEnv, resolveProviderApiKey: () => ({ apiKey: "SGLANG_API_KEY", discoveryApiKey: "env-sglang-key", }), resolveProviderAuth: () => ({ apiKey: "SGLANG_API_KEY", discoveryApiKey: "env-sglang-key", mode: "api_key", source: "env", }), }), ).resolves.toEqual({ provider: { baseUrl: "http://127.0.0.1:30000/v1", api: "openai-completions", apiKey: "SGLANG_API_KEY", models: [{ id: "Qwen/Qwen3-8B", name: "Qwen3-8B" }], }, }); expect(buildSglangProviderMock).toHaveBeenCalledWith({ apiKey: "env-sglang-key", }); }); it("keeps MiniMax API catalog provider-owned", async () => { await expect( runProviderCatalog({ provider: minimaxProvider, config: {}, env: { MINIMAX_API_KEY: "minimax-key", } as NodeJS.ProcessEnv, resolveProviderApiKey: () => ({ apiKey: "minimax-key" }), resolveProviderAuth: () => ({ apiKey: "minimax-key", discoveryApiKey: undefined, mode: "api_key", source: "env", }), }), ).resolves.toMatchObject({ provider: { baseUrl: "https://api.minimax.io/anthropic", api: "anthropic-messages", authHeader: true, apiKey: "minimax-key", models: expect.arrayContaining([ expect.objectContaining({ id: "MiniMax-M2.7" }), expect.objectContaining({ id: "MiniMax-VL-01" }), ]), }, }); }); it("keeps MiniMax portal oauth marker fallback provider-owned", async () => { setRuntimeAuthStore({ version: 1, profiles: { "minimax-portal:default": { type: "oauth", provider: "minimax-portal", access: "access-token", refresh: "refresh-token", expires: Date.now() + 60_000, }, }, }); await expect( runProviderCatalog({ provider: minimaxPortalProvider, config: {}, env: {} as NodeJS.ProcessEnv, resolveProviderApiKey: () => ({ apiKey: undefined }), resolveProviderAuth: () => ({ apiKey: "minimax-oauth", discoveryApiKey: "access-token", mode: "oauth", source: "profile", profileId: "minimax-portal:default", }), }), ).resolves.toMatchObject({ provider: { baseUrl: "https://api.minimax.io/anthropic", api: "anthropic-messages", authHeader: true, apiKey: "minimax-oauth", models: expect.arrayContaining([expect.objectContaining({ id: "MiniMax-M2.7" })]), }, }); }); it("keeps MiniMax portal explicit base URL override provider-owned", async () => { await expect( runProviderCatalog({ provider: minimaxPortalProvider, config: { models: { providers: { "minimax-portal": { baseUrl: "https://portal-proxy.example.com/anthropic", apiKey: "explicit-key", models: [], }, }, }, }, env: {} as NodeJS.ProcessEnv, resolveProviderApiKey: () => ({ apiKey: undefined }), resolveProviderAuth: () => ({ apiKey: undefined, discoveryApiKey: undefined, mode: "none", source: "none", }), }), ).resolves.toMatchObject({ provider: { baseUrl: "https://portal-proxy.example.com/anthropic", apiKey: "explicit-key", }, }); }); it("keeps Model Studio catalog provider-owned", async () => { await expect( runProviderCatalog({ provider: modelStudioProvider, config: { models: { providers: { modelstudio: { baseUrl: "https://coding.dashscope.aliyuncs.com/v1", models: [], }, }, }, }, env: { MODELSTUDIO_API_KEY: "modelstudio-key", } as NodeJS.ProcessEnv, resolveProviderApiKey: () => ({ apiKey: "modelstudio-key" }), resolveProviderAuth: () => ({ apiKey: "modelstudio-key", discoveryApiKey: undefined, mode: "api_key", source: "env", }), }), ).resolves.toMatchObject({ provider: { baseUrl: "https://coding.dashscope.aliyuncs.com/v1", api: "openai-completions", apiKey: "modelstudio-key", models: expect.arrayContaining([ expect.objectContaining({ id: "qwen3.5-plus" }), expect.objectContaining({ id: "MiniMax-M2.5" }), ]), }, }); }); it("keeps Cloudflare AI Gateway catalog disabled without stored metadata", async () => { await expect( runProviderCatalog({ provider: cloudflareAiGatewayProvider, config: {}, env: {} as NodeJS.ProcessEnv, resolveProviderApiKey: () => ({ apiKey: undefined }), resolveProviderAuth: () => ({ apiKey: undefined, discoveryApiKey: undefined, mode: "none", source: "none", }), }), ).resolves.toBeNull(); }); it("keeps Cloudflare AI Gateway env-managed catalog provider-owned", async () => { setRuntimeAuthStore({ version: 1, profiles: { "cloudflare-ai-gateway:default": { type: "api_key", provider: "cloudflare-ai-gateway", keyRef: { source: "env", provider: "default", id: "CLOUDFLARE_AI_GATEWAY_API_KEY", }, metadata: { accountId: "acc-123", gatewayId: "gw-456", }, }, }, }); await expect( runProviderCatalog({ provider: cloudflareAiGatewayProvider, config: {}, env: { CLOUDFLARE_AI_GATEWAY_API_KEY: "secret-value", } as NodeJS.ProcessEnv, resolveProviderApiKey: () => ({ apiKey: undefined }), resolveProviderAuth: () => ({ apiKey: undefined, discoveryApiKey: undefined, mode: "none", source: "none", }), }), ).resolves.toEqual({ provider: { baseUrl: "https://gateway.ai.cloudflare.com/v1/acc-123/gw-456/anthropic", api: "anthropic-messages", apiKey: "CLOUDFLARE_AI_GATEWAY_API_KEY", models: [expect.objectContaining({ id: "claude-sonnet-4-5" })], }, }); }); });