intitial docker impl

2025-08-20 15:26:14 +05:00
parent fc9727cb73
commit c8c6540d23
7 changed files with 167 additions and 4 deletions
--- a/chatmock/cli.py
+++ b/chatmock/cli.py
@@ -11,6 +11,7 @@ from .app import create_app
 from .config import CLIENT_ID_DEFAULT
 from .oauth import OAuthHTTPServer, OAuthHandler, REQUIRED_PORT, URL_BASE
 from .utils import eprint, get_home_dir, load_chatgpt_tokens, parse_jwt_claims, read_auth_file
+import os


 def cmd_login(no_browser: bool, verbose: bool) -> int:
@@ -21,7 +22,8 @@ def cmd_login(no_browser: bool, verbose: bool) -> int:
        return 1

    try:
-        httpd = OAuthHTTPServer(("127.0.0.1", REQUIRED_PORT), OAuthHandler, home_dir=home_dir, client_id=client_id, verbose=verbose)
+        bind_host = os.getenv("CHATGPT_LOCAL_LOGIN_BIND", "127.0.0.1")
+        httpd = OAuthHTTPServer((bind_host, REQUIRED_PORT), OAuthHandler, home_dir=home_dir, client_id=client_id, verbose=verbose)
    except OSError as e:
        eprint(f"ERROR: {e}")
        if e.errno == errno.EADDRINUSE:
--- a/chatmock/oauth.py
+++ b/chatmock/oauth.py
@@ -1,6 +1,7 @@
 from __future__ import annotations

 import datetime
+import ssl
 import http.server
 import json
 import secrets
@@ -10,6 +11,8 @@ import urllib.parse
 import urllib.request
 from typing import Any, Dict, Tuple

+import certifi
+
 from .models import AuthBundle, PkceCodes, TokenData
 from .utils import eprint, generate_pkce, parse_jwt_claims, write_auth_file

@@ -34,6 +37,7 @@ LOGIN_SUCCESS_HTML = """<!DOCTYPE html>
  </html>
 """

+_SSL_CONTEXT = ssl.create_default_context(cafile=certifi.where())

 class OAuthHTTPServer(http.server.HTTPServer):
    def __init__(
@@ -174,7 +178,8 @@ class OAuthHandler(http.server.BaseHTTPRequestHandler):
                data=data,
                method="POST",
                headers={"Content-Type": "application/x-www-form-urlencoded"},
-            )
+            ),
+            context=_SSL_CONTEXT,
        ) as resp:
            payload = json.loads(resp.read().decode())

@@ -242,7 +247,8 @@ class OAuthHandler(http.server.BaseHTTPRequestHandler):
                data=exchange_data,
                method="POST",
                headers={"Content-Type": "application/x-www-form-urlencoded"},
-            )
+            ),
+            context=_SSL_CONTEXT,
        ) as resp:
            exchange_payload = json.loads(resp.read().decode())
            exchanged_access_token = exchange_payload.get("access_token")
@@ -258,4 +264,3 @@ class OAuthHandler(http.server.BaseHTTPRequestHandler):
        }
        success_url = f"{URL_BASE}/success?{urllib.parse.urlencode(success_url_query)}"
        return exchanged_access_token, success_url
-