Merge branch 'dev' into feat/planner-mode

Author: alaa-eddine

packages/core/CHANGELOG

@@ -5,6 +5,14 @@ All notable changes to the SmythOS CORE Runtime Engine will be documented in thi
 The format is based on [Keep a Changelog](https://keepachangelog.com/en/1.0.0/),
 and this project adheres to [Semantic Versioning](https://semver.org/spec/v2.0.0.html).
 
+## [v1.5.50]
+
+### Features
+
+-   Added support for OpenAI Responses API
+-   Added support for GPT-5 family models with reasoning capabilities .
+-   MCP Client component : support for Streamable HTTP transport
+
 ## [v1.5.31]
 
 ### LLM & Model Support:

packages/core/package.json

@@ -1,6 +1,6 @@
 {
     "name": "@smythos/sre",
-    "version": "1.5.46",
+    "version": "1.5.60",
     "description": "Smyth Runtime Environment",
     "author": "Alaa-eddine KADDOURI",
     "license": "MIT",

packages/core/src/Components/APICall/APICall.class.ts

@@ -59,6 +59,7 @@ export class APICall extends Component {
         consumerSecret: Joi.string().allow('').label('Consumer Secret'),
         oauth1CallbackURL: Joi.string().allow('').label('OAuth1 Callback URL'),
         authenticate: Joi.string().allow('').label('Authenticate'),
+        oauth_con_id: Joi.string().allow('').label('OAuth Connection ID'),
     });
     constructor() {
         super();
@@ -113,10 +114,14 @@ export class APICall extends Component {
             let Headers: any = {};
             let _error: any = undefined;
             try {
-                if (config?.data?.oauthService && config?.data?.oauthService !== 'None') {
-                    const rootUrl = new URL(reqConfig.url).origin;
+                // To support both old and new OAuth configuration, we check for both oauth_con_id and oauthService.
+                logger.debug('checking oauth config', config?.data?.oauth_con_id, config?.data?.oauthService);
+                if (
+                    (config?.data?.oauth_con_id !== undefined && config?.data?.oauth_con_id !== '' && config?.data?.oauth_con_id !== 'None') ||
+                    (config?.data?.oauthService !== '' && config.data.oauthService !== 'None')
+                ) {
                     const additionalParams = extractAdditionalParamsForOAuth1(reqConfig);
-                    const oauthHeaders = await generateOAuthHeaders(agent, config, reqConfig, logger, additionalParams, rootUrl);
+                    const oauthHeaders = await generateOAuthHeaders(agent, config, reqConfig, logger, additionalParams);
                     //reqConfig.headers = { ...reqConfig.headers, ...oauthHeaders };
                     reqConfig.headers = reqConfig.headers.concat({ ...oauthHeaders });
                 }

packages/core/src/Components/APICall/AccessTokenManager.ts

@@ -19,32 +19,35 @@ class AccessTokenManager {
     private secondaryToken: string; // refreshToken || tokenSecret
     private tokenUrl: string; // tokenURL to refresh accessToken
     private expires_in: any;
-    private data: any; // value of key(keyId) in teamSettings that needs to be updated if required
-    private keyId: any; // key of object  in teamSettings
+    private tokensData: any; // Full tokens data object
+    private keyId: any; // key of object in teamSettings
     private logger: any; // Use to log console in debugger
     private agent: Agent;
+    private isNewStructure: boolean;
     constructor(
         clientId: string,
         clientSecret: string,
         secondaryToken: string,
         tokenUrl: string,
         expires_in: any,
         primaryToken: string,
-        data: any,
+        tokensData: any,
         keyId: any,
         logger: any,
         agent: Agent,
+        isNewStructure: boolean = false,
     ) {
         this.clientId = clientId;
         this.clientSecret = clientSecret;
         this.primaryToken = primaryToken;
         this.secondaryToken = secondaryToken;
         this.tokenUrl = tokenUrl;
         this.expires_in = expires_in;
-        this.data = data;
+        this.tokensData = tokensData;
         this.keyId = keyId;
         this.logger = logger;
         this.agent = agent;
+        this.isNewStructure = isNewStructure;
     }
 
     async getAccessToken(): Promise<string> {
@@ -105,19 +108,52 @@ class AccessTokenManager {
             this.logger.debug('Access token refreshed successfully.');
             const expiresInMilliseconds: number = response?.data?.expires_in ? response?.data?.expires_in * 1000 : response?.data?.expires_in;
             const expirationTimestamp: number = expiresInMilliseconds ? new Date().getTime() + expiresInMilliseconds : expiresInMilliseconds;
-            this.data.primary = newAccessToken;
-            this.data.expires_in = expirationTimestamp ? expirationTimestamp?.toString() : expirationTimestamp;
-            //const oauthTeamSettings = new OauthTeamSettings();
-            //const save: any = await oauthTeamSettings.update({ keyId: this.keyId, data: this.data });
 
-            const save: any = await managedVault.user(AccessCandidate.agent(this.agent.id)).set(this.keyId, JSON.stringify(this.data));
+            // Maintain the same structure format when saving
+            let updatedData;
+            if (this.isNewStructure) {
+                // Maintain new structure format
+                updatedData = {
+                    ...this.tokensData,
+                    auth_data: {
+                        ...(this.tokensData?.auth_data ?? {}),
+                        primary: newAccessToken,
+                        // Persist rotated refresh_token when provided; fall back to existing
+                        secondary: (response?.data?.refresh_token ?? this.secondaryToken),
+                        // Use nullish check so 0 is preserved
+                        expires_in: (expirationTimestamp ?? undefined) !== undefined ? String(expirationTimestamp) : undefined
+                    }
+                };
+            } else {
+                // Maintain old structure format
+                updatedData = {
+                    ...this.tokensData,
+                    primary: newAccessToken,
+                    expires_in: (expirationTimestamp ?? undefined) !== undefined ? String(expirationTimestamp) : undefined
+                };
+                // Persist rotated refresh_token when provided; otherwise keep existing
+                updatedData.secondary = (response?.data?.refresh_token ?? this.secondaryToken);
+            }
+
+            const save: any = await managedVault.user(AccessCandidate.agent(this.agent.id)).set(this.keyId, JSON.stringify(updatedData));
             if (save && save.status === 200) {
                 console.log('Access token value is updated successfully.');
                 this.logger.debug('Access token value is updated successfully.');
             } else {
                 console.log('Warning: new access token value is not updated.');
                 this.logger.debug('Warning: new access token value is not updated.');
             }
+
+            // Update internal tokensData reference
+            this.tokensData = updatedData;
+            this.primaryToken = newAccessToken;
+            // Update in-memory refresh token in case the provider rotated it
+            this.secondaryToken = (response?.data?.refresh_token ?? this.secondaryToken);
+            // Preserve 0 and avoid dropping undefined
+            this.expires_in =
+                (expirationTimestamp ?? undefined) !== undefined
+                    ? String(expirationTimestamp)
+                    : undefined;
             return newAccessToken;
         } catch (error) {
             console.error('Failed to refresh access token:', error);