CLIProxyManager is a macOS menu bar app for managing a local CLIProxyAPI server and the shell functions you use to launch Claude Code with different account and model backends.
It is designed for users who want one place to:
- Connect Claude OAuth and Codex OAuth profiles.
- Optionally use a Claude API key stored in macOS Keychain.
- Start, stop, and configure the bundled CLIProxyAPI server.
- Install convenient shell functions into
~/.zshrc. - Check account, server, and shell setup status from the app.
- macOS 13 or later.
- Claude Code installed and available on your machine.
- A Claude account, Codex/OpenAI OAuth account, or Claude API key depending on which shell function you want to use.
- zsh if you want the app to manage shell functions automatically.
Release artifacts are distributed as ad-hoc signed, non-notarized DMGs on GitHub Releases.
-
Open CLIProxyManager.
-
Use Add Provider to connect an account:
- Claude OAuth for your normal Claude Code subscription login.
- Codex OAuth for OpenAI/Codex-backed routing through the local proxy.
-
Review the generated command name and optional nickname, then save.
-
Open Settings and install shell functions.
-
Restart your terminal, or run:
source ~/.zshrc
-
Use one of the installed shell functions:
cc ccodex ccapi
ccapi is installed only when a Claude API key exists in the macOS Keychain.
CLIProxyManager generates shell functions instead of aliases so each command can set the right environment only for that invocation.
Runs Claude Code through the bundled local CLIProxyAPI server using your Claude OAuth profile.
Use this when you want Claude Code to use your normal Claude account or subscription login through the app-managed proxy.
Runs Claude Code through the bundled local CLIProxyAPI server using Codex/OpenAI OAuth-backed routing.
CLIProxyManager maps Claude model roles to the Codex model settings saved in the app:
- Opus role
- Sonnet role
- Haiku role
You can configure model, reasoning level, and context window from the Codex account settings sheet.
Runs Claude Code directly with a Claude API key from macOS Keychain.
The app does not write the API key into your shell profile. The generated function calls the helper command to read the key at runtime.
cliproxy-manager secret get claude-api-keyIf no Claude API key is stored, ccapi is omitted from the installed shell functions.
Use General settings to control app appearance and behavior:
- Light, Dark, or System appearance.
- Launch at login.
- Menu bar only mode.
- Notifications.
Use Server settings to control the local CLIProxyAPI runtime:
- Listen port.
- Bind address.
- Start server on launch.
- Manual restart after changing server settings.
The app writes the proxy config under:
~/.cliproxy-manager/cliproxyapi/config.yaml
Connected provider rows appear after an auth profile exists. Each provider row lets you review the command name, nickname, connection details, and account actions.
Removing an account deletes the corresponding app-managed auth profile from:
~/.cliproxy-manager/auth
Advanced settings include log level, log access, and reset actions. Resetting app settings preserves user-managed account data and command names, but resets preferences such as appearance, behavior, server settings, and logging level.
CLIProxyManager stores app-managed files under:
~/.cliproxy-manager
Important files and directories:
| Path | Purpose |
|---|---|
~/.cliproxy-manager/config.json |
App preferences and command settings. |
~/.cliproxy-manager/functions.zsh |
Generated shell functions. |
~/.cliproxy-manager/auth/ |
App-managed OAuth profile files. |
~/.cliproxy-manager/logs/ |
App and proxy logs. |
~/.cliproxy-manager/cliproxyapi/ |
Bundled proxy binary and generated proxy config. |
When shell functions are installed, CLIProxyManager adds or updates one managed block in ~/.zshrc that sources ~/.cliproxy-manager/functions.zsh.
Restart your terminal or run:
source ~/.zshrcThen check that the shell functions file exists:
ls ~/.cliproxy-manager/functions.zshAnother function or alias with the same name already exists in your shell profile. Choose a different command name in CLIProxyManager, or remove the conflicting function from your shell profile.
ccapi is generated only when a Claude API key is stored in Keychain. Add or update the API key in the app, then reinstall shell functions.
Open CLIProxyManager and check the server status. If needed:
- Stop the server.
- Start it again.
- Confirm the configured port is not already used by another process.
- Open logs from the Advanced settings screen.
Start the local server and confirm the Codex OAuth profile is connected. If model loading still fails, enter the model names manually in Codex settings.
- Claude API keys are stored in macOS Keychain.
- OAuth profile files are stored under
~/.cliproxy-manager/auth. - Generated shell functions use a local dummy API key only for the app-managed local proxy.
- Do not commit files from
~/.cliproxy-managerto a repository.
This app bundles or manages CLIProxyAPI, which is distributed under the MIT License. The CLIProxyAPI license text is included at:
Sources/CLIProxyManagerApp/Resources/Licenses/CLIProxyAPI-LICENSE.txt
When distributing this app with CLIProxyAPI, keep the upstream CLIProxyAPI copyright notice and MIT permission notice in the app bundle and public release materials.
CLIProxyManager vendors the official macOS arm64 CLIProxyAPI release binary into:
Sources/CLIProxyManagerApp/Resources/cliproxyapi/cliproxyapi
Use the vendoring script with an upstream release version:
scripts/vendor-cliproxyapi.sh 7.0.0The script downloads router-for-me/CLIProxyAPI release assets from GitHub, verifies the archive against upstream checksums.txt, copies the archive's cli-proxy-api executable as cliproxyapi, and writes:
Sources/CLIProxyManagerApp/Resources/cliproxyapi/cliproxyapi.manifest.json
After updating the binary, verify it is bundled by running:
swift test --filter LicenseResourceTests/testCLIProxyAPIBinaryResourceIsBundledCommit the updated binary and manifest together.
CLIProxyManager is not an official product of Anthropic, OpenAI, Codex, or any other model provider. It should not be described as endorsed, certified, or guaranteed by those providers.
Users are responsible for using their own accounts and credentials in compliance with each provider's terms, usage policies, and account requirements.