Skip to content

Codex: use CODEX_API_KEY for firewall-injected openai-proxy provider config#34425

Closed
Copilot wants to merge 1 commit into
mainfrom
copilot/review-awf-specification
Closed

Codex: use CODEX_API_KEY for firewall-injected openai-proxy provider config#34425
Copilot wants to merge 1 commit into
mainfrom
copilot/review-awf-specification

Conversation

Copy link
Copy Markdown
Contributor

Copilot AI commented May 24, 2026

Codex smoke runs could fail when OPENAI_API_KEY was absent, even though Codex credentials were provided via CODEX_API_KEY. This updates Codex provider wiring to align generated config with Codex auth expectations and avoid missing-key failures.

  • Provider credential mapping

    • Updated generated Codex model_providers.openai-proxy config to read CODEX_API_KEY instead of OPENAI_API_KEY.
    • This applies to the TOML emitted for firewall-enabled Codex runs.

  • Spec/generation alignment

    • Keeps generated runtime config consistent with Codex engine auth (CODEX_API_KEY) and existing workflow secret fallback patterns.

  • Expected output updates

    • Updated Codex engine unit expectations and the Codex wasm golden fixture to match the new env_key.
[model_providers.openai-proxy]
name = "OpenAI AWF proxy"
base_url = "http://172.30.0.30:10000"
env_key = "CODEX_API_KEY"
supports_websockets = false

@pelikhan
Use CODEX_API_KEY for Codex openai-proxy provider
6b3e331 
Co-authored-by: pelikhan <4175913+pelikhan@users.noreply.github.com>
@pelikhan pelikhan closed this May 24, 2026
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

Copilot code review Copilot Awaiting requested review from Copilot Copilot will automatically review once the pull request is marked ready for review

Assignees

@pelikhan pelikhan

Copilot code review Copilot

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

2 participants

@pelikhan