Add workload_identity_federation to api secrets schema#615
Conversation
|
The latest updates on your projects. Learn more about Vercel for GitHub.
|
![chatgpt-codex-connector[bot]](https://avatars.githubusercontent.com/in/1144995?s=60&v=4){kind=small}
There was a problem hiding this comment.
💡 Codex Review
Here are some automated review suggestions for this pull request.
Reviewed commit: 5dd7010080
ℹ️ About Codex in GitHub
Codex has been enabled to automatically review pull requests in this repo. Reviews are triggered when you
- Open a pull request for review
- Mark a draft as ready
- Comment "Codex (@codex) review".
If Codex has suggestions, it will comment; otherwise it will react with 👍.
When you sign up for Codex through ChatGPT, Codex can also answer questions or update the PR, like "Codex (@codex) address that feedback".
| .enum(["api_key", "oauth_bearer", "workload_identity_federation"]) | ||
| .default("api_key"), |
There was a problem hiding this comment.
By adding "workload_identity_federation" to AnthropicMetadataSchema, secrets with that value now validate, but the runtime auth path in packages/proxy/src/proxy.ts still treats only auth_type === "oauth_bearer" as bearer and otherwise sends x-api-key (see isAnthropicOAuthBearerSecret/anthropicAuthHeaders). For Anthropic WIF tokens this will send the wrong header format and cause request authentication failures whenever users set the new enum value.
Useful? React with 👍 / 👎.
2 participants
No description provided.