fix: remover modelos gerais nao suportados e adicionar vision-model

Modelos qwen3-max, qwen-plus-latest, qwen3-235b-a22b e qwen-flash foram removidos
pois o endpoint portal.qwen.ai nao os suporta (retornava 'model not supported').
O endpoint alternativo chat.qwen.ai/api/v2 nao e viavel pois requer cookies de
sessao do browser e protecao anti-bot.

Modelos confirmados via teste no portal.qwen.ai:
- qwen3-coder-plus (1M contexto, 64K output)
- qwen3-coder-flash (1M contexto, 64K output)
- coder-model (alias auto-roteado para qwen3-coder-plus)
- vision-model (mapeia para qwen3-vl-plus, 128K contexto)

Mudancas:
- Removido provider qwen-chat e arquitetura dual-provider
- Removido endpoint chatBaseUrl (chat.qwen.ai/api/v2)
- Adicionado coder-model como alias de coding
- Adicionado vision-model (qwen3-vl-plus) com suporte a imagem
- Limpeza do client.ts (removido roteamento por endpoint)
- Refatoracao do loader com funcao getValidAccessToken
- Corrigida dependencia circular no package.json

Author: gustavodiasdev

bun.lock

@@ -1,7 +1,7 @@
 {
   "name": "opencode-qwencode-auth",
-  "version": "1.2.0",
-  "description": "Qwen OAuth authentication plugin for OpenCode - Access Qwen AI models (Coder, Max, Plus and more) with your qwen.ai account",
+  "version": "1.2.1",
+  "description": "Qwen OAuth authentication plugin for OpenCode - Access Qwen AI models (Coder, Vision) with your qwen.ai account",
   "module": "index.ts",
   "type": "module",
   "scripts": {
@@ -14,9 +14,8 @@
     "qwen",
     "qwen-code",
     "qwen3-coder",
-    "qwen3-max",
-    "qwen-plus",
-    "qwen-flash",
+    "qwen3-vl-plus",
+    "vision-model",
     "oauth",
     "authentication",
     "ai",

package.json

@@ -3,7 +3,7 @@
  * Based on qwen-code implementation
  */
 
-// Provider ID - cria provider separado para OAuth
+// Provider ID
 export const QWEN_PROVIDER_ID = 'qwen-code';
 
 // OAuth Device Flow Endpoints (descobertos do qwen-code)
@@ -34,8 +34,8 @@ export const QWEN_API_CONFIG = {
 // OAuth callback port (para futuro Device Flow no plugin)
 export const CALLBACK_PORT = 14561;
 
-// Available Qwen models through OAuth
-// Baseado nos modelos disponíveis no qwen-code + modelos gerais via portal.qwen.ai
+// Available Qwen models through OAuth (portal.qwen.ai)
+// Testados e confirmados funcionando via token OAuth
 export const QWEN_MODELS = {
   // --- Coding Models ---
   'qwen3-coder-plus': {
@@ -56,40 +56,23 @@ export const QWEN_MODELS = {
     reasoning: false,
     cost: { input: 0, output: 0 },
   },
-  // --- General Purpose Models ---
-  'qwen3-max': {
-    id: 'qwen3-max',
-    name: 'Qwen3 Max',
-    contextWindow: 262144, // 256K tokens
-    maxOutput: 65536, // 64K tokens
-    description: 'Flagship ~1T parameter MoE model, best for complex reasoning and tool use',
+  // --- Alias Models (portal mapeia internamente) ---
+  'coder-model': {
+    id: 'coder-model',
+    name: 'Qwen Coder (auto)',
+    contextWindow: 1048576,
+    maxOutput: 65536,
+    description: 'Auto-routed coding model (maps to qwen3-coder-plus)',
     reasoning: false,
     cost: { input: 0, output: 0 },
   },
-  'qwen-plus-latest': {
-    id: 'qwen-plus-latest',
-    name: 'Qwen Plus',
-    contextWindow: 131072, // 128K tokens
-    maxOutput: 16384, // 16K tokens
-    description: 'Balanced model with thinking mode, good quality-speed tradeoff',
-    reasoning: true,
-    cost: { input: 0, output: 0 },
-  },
-  'qwen3-235b-a22b': {
-    id: 'qwen3-235b-a22b',
-    name: 'Qwen3 235B-A22B',
+  // --- Vision Model ---
+  'vision-model': {
+    id: 'vision-model',
+    name: 'Qwen VL Plus (vision)',
     contextWindow: 131072, // 128K tokens
     maxOutput: 32768, // 32K tokens
-    description: 'Largest open-weight Qwen3 MoE model with thinking mode',
-    reasoning: true,
-    cost: { input: 0, output: 0 },
-  },
-  'qwen-flash': {
-    id: 'qwen-flash',
-    name: 'Qwen Flash',
-    contextWindow: 1048576, // 1M tokens
-    maxOutput: 8192, // 8K tokens
-    description: 'Ultra-fast and low-cost model for simple tasks',
+    description: 'Vision-language model (maps to qwen3-vl-plus), supports image input',
     reasoning: false,
     cost: { input: 0, output: 0 },
   },

src/constants.ts

@@ -3,6 +3,9 @@
  *
  * Plugin de autenticação OAuth para Qwen, baseado no qwen-code.
  * Implementa Device Flow (RFC 8628) para autenticação.
+ *
+ * Provider único: qwen-code → portal.qwen.ai/v1
+ * Modelos confirmados: qwen3-coder-plus, qwen3-coder-flash, coder-model, vision-model
  */
 
 import { existsSync } from 'node:fs';
@@ -31,14 +34,6 @@ export type { AuthErrorKind } from './errors.js';
 // Helpers
 // ============================================
 
-function getBaseUrl(resourceUrl?: string): string {
-  if (!resourceUrl) return QWEN_API_CONFIG.baseUrl;
-  if (resourceUrl.startsWith('http')) {
-    return resourceUrl.endsWith('/v1') ? resourceUrl : `${resourceUrl}/v1`;
-  }
-  return `https://${resourceUrl}/v1`;
-}
-
 function openBrowser(url: string): void {
   try {
     const platform = process.platform;
@@ -51,6 +46,7 @@ function openBrowser(url: string): void {
   }
 }
 
+/** Verifica se existem credenciais válidas em ~/.qwen/oauth_creds.json */
 export function checkExistingCredentials(): QwenCredentials | null {
   const credPath = getCredentialsPath();
   if (existsSync(credPath)) {
@@ -62,6 +58,50 @@ export function checkExistingCredentials(): QwenCredentials | null {
   return null;
 }
 
+/** Obtém um access token válido (com refresh se necessário) */
+async function getValidAccessToken(
+  getAuth: () => Promise<{ type: string; access?: string; refresh?: string; expires?: number }>,
+): Promise<string | null> {
+  const auth = await getAuth();
+
+  // Se não é OAuth, tentar carregar credenciais locais do qwen-code
+  if (!auth || auth.type !== 'oauth') {
+    const creds = checkExistingCredentials();
+    return creds?.accessToken ?? null;
+  }
+
+  let accessToken = auth.access;
+
+  // Refresh se expirado (com margem de 30s)
+  if (accessToken && auth.expires && Date.now() > auth.expires - 30000 && auth.refresh) {
+    try {
+      const refreshed = await refreshAccessToken(auth.refresh);
+      accessToken = refreshed.accessToken;
+      saveCredentials(refreshed);
+    } catch (e) {
+      const detail = e instanceof Error ? e.message : String(e);
+      logTechnicalDetail(`Token refresh falhou: ${detail}`);
+      accessToken = undefined;
+    }
+  }
+
+  // Fallback para credenciais locais do qwen-code
+  if (!accessToken) {
+    const creds = checkExistingCredentials();
+    if (creds) {
+      accessToken = creds.accessToken;
+    } else {
+      console.warn(
+        '[Qwen] Token expirado e sem credenciais alternativas. ' +
+        'Execute "npx opencode-qwencode-auth" ou "qwen-code auth login" para re-autenticar.'
+      );
+      return null;
+    }
+  }
+
+  return accessToken ?? null;
+}
+
 // ============================================
 // Plugin Principal
 // ============================================
@@ -73,71 +113,27 @@ export const QwenAuthPlugin = async (_input: unknown) => {
 
       loader: async (
         getAuth: () => Promise<{ type: string; access?: string; refresh?: string; expires?: number }>,
-        provider: { models?: Record<string, { cost?: { input: number; output: number } }> }
+        provider: { models?: Record<string, { cost?: { input: number; output: number } }> },
       ) => {
-        const auth = await getAuth();
-
-        // Se não é OAuth, tentar carregar credenciais do qwen-code
-        if (!auth || auth.type !== 'oauth') {
-          const creds = checkExistingCredentials();
-          if (creds) {
-            return {
-              apiKey: creds.accessToken,
-              baseURL: getBaseUrl(creds.resourceUrl),
-            };
-          }
-          return null;
-        }
-
         // Zerar custo dos modelos (gratuito via OAuth)
         if (provider?.models) {
           for (const model of Object.values(provider.models)) {
             if (model) model.cost = { input: 0, output: 0 };
           }
         }
 
-        let accessToken = auth.access;
-
-        // Refresh se expirado
-        if (accessToken && auth.expires && Date.now() > auth.expires - 30000 && auth.refresh) {
-          try {
-            const refreshed = await refreshAccessToken(auth.refresh);
-            accessToken = refreshed.accessToken;
-            saveCredentials(refreshed);
-          } catch (e) {
-            const detail = e instanceof Error ? e.message : String(e);
-            logTechnicalDetail(`Token refresh falhou: ${detail}`);
-            // Não continuar com token expirado - tentar fallback
-            accessToken = undefined;
-          }
-        }
-
-        // Fallback para credenciais do qwen-code
-        if (!accessToken) {
-          const creds = checkExistingCredentials();
-          if (creds) {
-            accessToken = creds.accessToken;
-          } else {
-            console.warn(
-              '[Qwen] Token expirado e sem credenciais alternativas. ' +
-              'Execute "npx opencode-qwencode-auth" ou "qwen-code auth login" para re-autenticar.'
-            );
-            return null;
-          }
-        }
-
+        const accessToken = await getValidAccessToken(getAuth);
         if (!accessToken) return null;
 
-        const creds = loadCredentials();
         return {
           apiKey: accessToken,
-          baseURL: getBaseUrl(creds?.resourceUrl),
+          baseURL: QWEN_API_CONFIG.baseUrl,
         };
       },
 
       methods: [
         {
-          type: 'oauth',
+          type: 'oauth' as const,
           label: 'Qwen Code (qwen.ai OAuth)',
           authorize: async () => {
             const { verifier, challenge } = generatePKCE();

src/index.ts

@@ -30,7 +30,6 @@ export class QwenClient {
    */
   private getBaseUrl(): string {
     if (this.credentials?.resourceUrl) {
-      // resourceUrl from qwen-code is just the host, need to add protocol and path
       const resourceUrl = this.credentials.resourceUrl;
       if (resourceUrl.startsWith('http')) {
         return resourceUrl.endsWith('/v1') ? resourceUrl : `${resourceUrl}/v1`;