feat: plugin OAuth Device Flow funcionando com method code

Plugin de autenticação OAuth para OpenCode que integra modelos Qwen
através de conta qwen.ai usando Device Flow (RFC 8628).

Funcionalidades:
- Login via Device Flow com PKCE
- Importação de credenciais do qwen-code (~/.qwen/oauth_creds.json)
- Refresh automático de tokens
- Suporte aos modelos qwen3-coder-plus, qwen3-coder-flash, qwen-coder-plus

Author: gustavodiasdev

.gitignore

@@ -0,0 +1,4 @@
+node_modules/
+dist/
+*.log
+.DS_Store

README.md

@@ -0,0 +1,160 @@
+# Qwen OAuth Plugin for OpenCode
+
+Authenticate OpenCode CLI with your qwen.ai account to use Qwen3-Coder models with **2,000 free requests per day**!
+
+## Features
+
+- 🔐 **OAuth Authentication** - Sign in with your qwen.ai account
+- 🆓 **Free Tier** - 2,000 requests/day, 60 requests/minute (no token limits!)
+- 🔄 **Auto-refresh** - Automatic token refresh
+- 🔗 **qwen-code compatible** - Reuses credentials from qwen-code CLI
+- ⚡ **1M Context** - Access to models with 1M token context windows
+
+## Quick Start
+
+### 1. Add the plugin to your OpenCode config
+
+Create or edit `~/.config/opencode/opencode.json`:
+
+```json
+{
+  "$schema": "https://opencode.ai/config.json",
+  "plugin": ["opencode-qwen-auth"]
+}
+```
+
+### 2. Authenticate
+
+```bash
+opencode auth login
+```
+
+Choose the **Qwen** provider and select **OAuth with Qwen (qwen.ai account)**.
+
+### 3. Start using Qwen models
+
+```bash
+opencode --model qwen/qwen3-coder-plus
+```
+
+## Available Models
+
+| Model | Context | Output | Description |
+|-------|---------|--------|-------------|
+| `qwen3-coder-plus` | 1M tokens | 64K tokens | Most capable coding model |
+| `qwen3-coder-flash` | 1M tokens | 64K tokens | Faster responses |
+| `qwen-coder-plus` | 128K tokens | 32K tokens | Standard coding model |
+
+## Alternative: Import from qwen-code
+
+If you already use [qwen-code](https://github.com/QwenLM/qwen-code), this plugin will automatically detect and reuse your existing credentials from `~/.qwen/oauth_creds.json`.
+
+Just run:
+
+```bash
+# First, authenticate with qwen-code
+qwen  # This will prompt for OAuth login
+
+# Then OpenCode will automatically use those credentials
+opencode --model qwen/qwen3-coder-plus
+```
+
+## Configuration
+
+### Full config example
+
+```json
+{
+  "$schema": "https://opencode.ai/config.json",
+  "plugin": ["opencode-qwen-auth"],
+  "provider": {
+    "qwen": {
+      "models": {
+        "qwen3-coder-plus": {
+          "name": "Qwen3 Coder Plus (OAuth)",
+          "limit": {
+            "context": 1048576,
+            "output": 65536
+          }
+        }
+      }
+    }
+  }
+}
+```
+
+### Environment Variables
+
+| Variable | Description |
+|----------|-------------|
+| `OPENCODE_QWEN_DEBUG` | Set to `1` to enable debug logging |
+
+## Quota Information
+
+| Plan | Rate Limit | Daily Limit |
+|------|------------|-------------|
+| Free (OAuth) | 60 requests/min | 2,000 requests/day |
+
+## Local Development
+
+```bash
+# Clone the repository
+git clone https://github.com/YOUR_USERNAME/opencode-qwen-auth.git
+cd opencode-qwen-auth
+
+# Install dependencies
+bun install
+
+# Build
+bun run build
+
+# Link to OpenCode config
+# Add to ~/.config/opencode/opencode.json:
+{
+  "plugin": ["file:///absolute/path/to/opencode-qwen-auth/dist/index.js"]
+}
+```
+
+## How It Works
+
+1. **OAuth Flow**: Opens your browser to qwen.ai for authentication
+2. **Token Storage**: Saves credentials to `~/.qwen/oauth_creds.json`
+3. **Auto-refresh**: Refreshes tokens automatically when they expire
+4. **API Proxy**: Routes OpenCode requests through Qwen's chat API
+
+## Troubleshooting
+
+### Port 14561 already in use
+
+The plugin uses port 14561 for the OAuth callback. If it's busy:
+
+1. Check for other processes: `lsof -i :14561`
+2. Kill the process or wait for it to finish
+
+### Token expired
+
+The plugin automatically refreshes tokens. If issues persist:
+
+```bash
+# Remove old credentials
+rm ~/.qwen/oauth_creds.json
+
+# Re-authenticate
+opencode auth login
+```
+
+### Rate limit exceeded
+
+If you hit the daily limit (2,000 requests):
+- Wait until midnight UTC for quota reset
+- Consider using API keys for higher limits
+
+## Related Projects
+
+- [qwen-code](https://github.com/QwenLM/qwen-code) - Official Qwen coding CLI
+- [opencode-gemini-auth](https://github.com/jenslys/opencode-gemini-auth) - Gemini OAuth plugin (inspiration for this project)
+- [qwen-code-oai-proxy](https://github.com/aptdnfapt/qwen-code-oai-proxy) - Proxy for using Qwen with any OpenAI-compatible client
+
+## License
+
+MIT

bun.lock

@@ -0,0 +1,3 @@
+// Apenas exportar o plugin principal
+// NÃO exportar funções utilitárias pois o OpenCode trata todas as exportações como plugins
+export { QwenAuthPlugin, default } from "./src/index";

index.ts

@@ -0,0 +1,46 @@
+{
+  "name": "opencode-qwen-auth",
+  "version": "1.0.0",
+  "description": "Qwen OAuth authentication plugin for OpenCode - Access Qwen3-Coder models with your qwen.ai account",
+  "module": "index.ts",
+  "type": "module",
+  "scripts": {
+    "build": "bun build ./src/index.ts --outdir ./dist --target node --format esm && bun build ./src/cli.ts --outdir ./dist --target node --format esm",
+    "dev": "bun run --watch src/index.ts",
+    "typecheck": "tsc --noEmit"
+  },
+  "keywords": [
+    "opencode",
+    "qwen",
+    "qwen-code",
+    "qwen3-coder",
+    "oauth",
+    "authentication",
+    "ai",
+    "llm",
+    "opencode-plugins"
+  ],
+  "author": "",
+  "license": "MIT",
+  "repository": {
+    "type": "git",
+    "url": "https://github.com/YOUR_USERNAME/opencode-qwen-auth"
+  },
+  "dependencies": {
+    "open": "^10.1.0"
+  },
+  "devDependencies": {
+    "@opencode-ai/plugin": "^1.1.48",
+    "@types/node": "^22.0.0",
+    "bun-types": "^1.1.0",
+    "typescript": "^5.6.0"
+  },
+  "files": [
+    "index.ts",
+    "src",
+    "README.md"
+  ],
+  "engines": {
+    "node": ">=20.0.0"
+  }
+}

package.json

@@ -0,0 +1,100 @@
+#!/usr/bin/env node
+/**
+ * Qwen Auth CLI Helper
+ *
+ * This script helps with manual authentication when the automatic
+ * OAuth flow doesn't work (e.g., in SSH sessions, containers, etc.)
+ */
+
+import { existsSync, readFileSync, writeFileSync, mkdirSync } from 'node:fs';
+import { homedir } from 'node:os';
+import { join } from 'node:path';
+import { createInterface } from 'node:readline';
+
+const CREDS_PATH = join(homedir(), '.qwen', 'oauth_creds.json');
+
+const rl = createInterface({
+  input: process.stdin,
+  output: process.stdout,
+});
+
+function question(prompt: string): Promise<string> {
+  return new Promise((resolve) => {
+    rl.question(prompt, resolve);
+  });
+}
+
+async function main() {
+  console.log('\nQwen Auth CLI Helper\n');
+  console.log('This tool helps you set up Qwen authentication manually.\n');
+
+  // Check for existing credentials
+  if (existsSync(CREDS_PATH)) {
+    const data = JSON.parse(readFileSync(CREDS_PATH, 'utf-8'));
+    console.log('Existing credentials found at:', CREDS_PATH);
+
+    if (data.access_token) {
+      console.log('Access token: Present');
+      console.log('Email:', data.email || 'Not set');
+      console.log('Updated at:', data.updated_at ? new Date(data.updated_at).toISOString() : 'Unknown');
+
+      const overwrite = await question('\nOverwrite existing credentials? (y/N): ');
+      if (overwrite.toLowerCase() !== 'y') {
+        console.log('\nKeeping existing credentials. Exiting.');
+        rl.close();
+        return;
+      }
+    }
+  }
+
+  console.log('\nInstructions:');
+  console.log('1. Open https://chat.qwen.ai in your browser');
+  console.log('2. Sign in with your account');
+  console.log('3. Open Developer Tools (F12) -> Network tab');
+  console.log('4. Make any chat request');
+  console.log('5. Find a request to chat.qwen.ai');
+  console.log('6. Copy the "Authorization" header value (starts with "Bearer ...")');
+  console.log('');
+
+  const token = await question('Paste your Bearer token (or just the token without "Bearer "): ');
+
+  if (!token.trim()) {
+    console.log('No token provided. Exiting.');
+    rl.close();
+    return;
+  }
+
+  // Clean up the token
+  let accessToken = token.trim();
+  if (accessToken.toLowerCase().startsWith('bearer ')) {
+    accessToken = accessToken.slice(7);
+  }
+
+  const email = await question('Email (optional, press Enter to skip): ');
+
+  // Save credentials
+  const dir = join(homedir(), '.qwen');
+  if (!existsSync(dir)) {
+    mkdirSync(dir, { recursive: true });
+  }
+
+  const credentials = {
+    access_token: accessToken,
+    email: email.trim() || undefined,
+    updated_at: Date.now(),
+  };
+
+  writeFileSync(CREDS_PATH, JSON.stringify(credentials, null, 2));
+
+  console.log('\nCredentials saved to:', CREDS_PATH);
+  console.log('\nYou can now use OpenCode with Qwen models:');
+  console.log('  opencode --model qwen/qwen3-coder-plus');
+
+  rl.close();
+}
+
+main().catch((error) => {
+  console.error('Error:', error);
+  rl.close();
+  process.exit(1);
+});