fix(auth): bake public OAuth client ID as fallback in getClientId()

[BYK]

What

Commit the sentry.io OAuth client ID directly as DEFAULT_OAUTH_CLIENT_ID in oauth.ts, used as the final fallback in getClientId().

Why this is safe

The OAuth client ID is public by design. Device Authorization Grant (RFC 8628) is a public-client flow — there is no client secret involved. The value is already stored as a plain repo variable (vars.SENTRY_CLIENT_ID) in CI, not a secret, and has always been readable by anyone with repo access.

Why #911 was over-engineered

PR #911 addressed the same problem but introduced a separate "development" client ID, a new RELEASE_BUILD guard, an ensureSentryClientIdConfigured() function, asymmetric behaviour between build.ts and bundle.ts, and touched 10 files. The dev-vs-production distinction isn't meaningful when both IDs are equally public.

What changes

The fallback chain in getClientId() is unchanged in priority:

SENTRY_CLIENT_ID env var → SENTRY_CLIENT_ID_BUILD (build-time define) → committed default

• Local dev against sentry.io: works out of the box, no .env.local needed
• Self-hosted: still override via SENTRY_CLIENT_ID env var
• Release binaries / npm bundle: still inject via SENTRY_CLIENT_ID_BUILD from SENTRY_CLIENT_ID env var at build time — no behaviour change

Closes #911

[github-actions]

PR Preview Action v1.8.1
🚀 View preview at https://cli.sentry.dev/_preview/pr-916/
Built to branch gh-pages at 2026-05-05 11:44 UTC. Preview will be ready when the GitHub Pages deployment is complete.

[github-actions]

Codecov Results 📊

✅ 6664 passed | Total: 6664 | Pass Rate: 100% | Execution Time: 0ms

📊 Comparison with Base Branch

Metric	Change
Total Tests	—
Passed Tests	—
Failed Tests	—
Skipped Tests	—

✨ No test changes detected

All tests are passing successfully.

✅ Patch coverage is 100.00%. Project has 13516 uncovered lines.
✅ Project coverage is 76.63%. Comparing base (base) to head (head).

Coverage diff

@@            Coverage Diff             @@
##          main       #PR       +/-##
==========================================
+ Coverage    76.63%    76.63%        —%
==========================================
  Files          303       303         —
  Lines        57823     57823         —
  Branches         0         0         —
==========================================
+ Hits         44307     44307         —
- Misses       13516     13516         —
- Partials         0         0         —

---

Generated by Codecov Action

[cursor]

Cursor Bugbot has reviewed your changes and found 1 potential issue.

^{❌ Bugbot Autofix is OFF. To automatically fix reported issues with cloud agents, enable autofix in the Cursor dashboard.}

^{Reviewed by Cursor Bugbot for commit d7e43e9. Configure here.}