valknar/llmx
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
1,833 Commits 9 Branches 11 Tags
c4ebe4b07857ab5b47b7a42d7c3b018951f39040
Go to file
Clone
Open with VS Code Open with VSCodium Open with Intellij IDEA
Download ZIP Download TAR.GZ Download BUNDLE
Eric Traut c4ebe4b078 Improved token refresh handling to address "Re-connecting" behavior (#6231) 
Currently, when the access token expires, we attempt to use the refresh
token to acquire a new access token. This works most of the time.
However, there are situations where the refresh token is expired,
exhausted (already used to perform a refresh), or revoked. In those
cases, the current logic treats the error as transient and attempts to
retry it repeatedly.

This PR changes the token refresh logic to differentiate between
permanent and transient errors. It also changes callers to treat the
permanent errors as fatal rather than retrying them. And it provides
better error messages to users so they understand how to address the
problem. These error messages should also help us further understand why
we're seeing examples of refresh token exhaustion.

Here is the error message in the CLI. The same text appears within the
extension.

<img width="863" height="38" alt="image"
src="https://github.com/user-attachments/assets/7ffc0d08-ebf0-4900-b9a9-265064202f4f"
/>

I also correct the spelling of "Re-connecting", which shouldn't have a
hyphen in it.

Testing: I manually tested these code paths by adding temporary code to
programmatically cause my refresh token to be exhausted (by calling the
token refresh endpoint in a tight loop more than 50 times). I then
simulated an access token expiration, which caused the token refresh
logic to be invoked. I confirmed that the updated logic properly handled
the error condition.

Note: We earlier discussed the idea of forcefully logging out the user
at the point where token refresh failed. I made several attempts to do
this, and all of them resulted in a bad UX. It's important to surface
this error to users in a way that explains the problem and tells them
that they need to log in again. We also previously discussed deleting
the auth.json file when this condition is detected. That also creates
problems because it effectively changes the auth status from logged in
to logged out, and this causes odd failures and inconsistent UX. I think
it's therefore better not to delete auth.json in this case. If the user
closes the CLI or VSCE and starts it again, we properly detect that the
access token is expired and the refresh token is "dead", and we force
the user to go through the login flow at that time.

This should address aspects of #6191, #5679, and #5505
2025-11-05 10:51:57 -08:00
.devcontainer
chore: install an extension for TOML syntax highlighting in the devcontainer (#1650)
2025-07-22 10:58:09 -07:00
.github
Revert "fix: pin musl 1.2.5 for DNS fixes" (#6222)
2025-11-04 11:56:40 -08:00
.vscode
Move rust analyzer target dir (#5328)
2025-10-18 17:31:46 -07:00
codex-cli
detect Bun installs in CLI update banner (#5074)
2025-10-14 17:49:44 +00:00
codex-rs
Improved token refresh handling to address "Re-connecting" behavior (#6231)
2025-11-05 10:51:57 -08:00
docs
fix(core): load custom prompts from symlinked Markdown files (#3643)
2025-11-04 17:44:02 -08:00
scripts
Enable plan tool by default (#5384)
2025-10-21 16:25:05 +00:00
sdk/typescript
Add modelReasoningEffort option to TypeScript SDK (#6237)
2025-11-05 08:51:03 -08:00
.codespellignore
feat: make it possible to toggle mouse mode in the Rust TUI (#971)
2025-05-16 16:16:50 -07:00
.codespellrc
TypeScript SDK scaffold (#4455)
2025-09-29 13:27:13 -07:00
.gitignore
feat: agent override file (#5215)
2025-10-15 17:46:01 +01:00
.npmrc
chore: migrate to pnpm for improved monorepo management (#287)
2025-04-18 16:25:15 -07:00
.prettierignore
[apply-patch] Clean up apply-patch tool definitions (#2539)
2025-08-21 20:07:41 -07:00
.prettierrc.toml
Initial commit
2025-04-16 12:56:08 -04:00
AGENTS.md
Auto compact at ~90% (#5292)
2025-10-20 11:29:49 -07:00
CHANGELOG.md
Documentation improvement: add missing period (#3754)
2025-10-30 13:01:33 -07:00
cliff.toml
docs(changelog): update install command to @openai/codex@<version> (#2073)
2025-10-18 11:02:22 -07:00
flake.lock
Fix nix build (#4048)
2025-10-17 12:19:08 -07:00
flake.nix
Fix nix build (#4048)
2025-10-17 12:19:08 -07:00
LICENSE
Initial commit
2025-04-16 12:56:08 -04:00
NOTICE
resizable viewport (#1732)
2025-07-31 00:06:55 +00:00
package.json
chore: subject docs/*.md to Prettier checks (#4645)
2025-10-03 11:35:48 -07:00
pnpm-lock.yaml
[exec] Add MCP tool arguments and results (#5899)
2025-10-29 14:23:57 -07:00
pnpm-workspace.yaml
TypeScript SDK scaffold (#4455)
2025-09-29 13:27:13 -07:00
PNPM.md
fix: include pnpm lock file (#377)
2025-04-18 17:01:11 -07:00
README.md
docs: add example config.toml (#5175)
2025-11-03 18:19:26 -08:00

README.md

npm i -g @openai/codex
or brew install --cask codex

Codex CLI is a coding agent from OpenAI that runs locally on your computer.

If you want Codex in your code editor (VS Code, Cursor, Windsurf), install in your IDE
If you are looking for the cloud-based agent from OpenAI, Codex Web, go to chatgpt.com/codex

Codex CLI splash

Quickstart

Installing and running Codex CLI

Install globally with your preferred package manager. If you use npm:

npm install -g @openai/codex

Alternatively, if you use Homebrew:

brew install --cask codex

Then simply run codex to get started:

codex

If you're running into upgrade issues with Homebrew, see the FAQ entry on brew upgrade codex.

You can also go to the latest GitHub Release and download the appropriate binary for your platform.

Each GitHub Release contains many executables, but in practice, you likely want one of these:

  • macOS
    • Apple Silicon/arm64: codex-aarch64-apple-darwin.tar.gz
    • x86_64 (older Mac hardware): codex-x86_64-apple-darwin.tar.gz
  • Linux
    • x86_64: codex-x86_64-unknown-linux-musl.tar.gz
    • arm64: codex-aarch64-unknown-linux-musl.tar.gz

Each archive contains a single entry with the platform baked into the name (e.g., codex-x86_64-unknown-linux-musl), so you likely want to rename it to codex after extracting it.

Using Codex with your ChatGPT plan

Codex CLI login

Run codex and select Sign in with ChatGPT. We recommend signing into your ChatGPT account to use Codex as part of your Plus, Pro, Team, Edu, or Enterprise plan. Learn more about what's included in your ChatGPT plan.

You can also use Codex with an API key, but this requires additional setup. If you previously used an API key for usage-based billing, see the migration steps. If you're having trouble with login, please comment on this issue.

Model Context Protocol (MCP)

Codex can access MCP servers. To configure them, refer to the config docs.

Configuration

Codex CLI supports a rich set of configuration options, with preferences stored in ~/.codex/config.toml. For full configuration options, see Configuration.

Docs & FAQ

License

This repository is licensed under the Apache-2.0 License.

Reference in New Issue View Git Blame Copy Permalink
Description
No description provided
Readme Apache-2.0 43 MiB
Languages
Rust 96.5%
Python 1.6%
TypeScript 1.1%
PowerShell 0.2%
Shell 0.2%
Other 0.3%