chore: add Codex local environment setup

2026-05-31 22:26:19 +08:00 · 2026-05-30 12:52:29 +08:00
8 changed files with 8 additions and 42 deletions
--- a/.codex
+++ b/.codex
--- a/.codex/environments/environment.toml
+++ b/.codex/environments/environment.toml
@ -0,0 +1,8 @@
+# THIS IS AUTOGENERATED. DO NOT EDIT MANUALLY
+version = 1
+name = "dify"
+
+[setup]
+script = '''
+pnpm install --frozen-lockfile --prefer-offline
+'''
--- a/web/app/components/tools/mcp/hooks/use-mcp-modal-form.ts
+++ b/web/app/components/tools/mcp/hooks/use-mcp-modal-form.ts
@ -54,7 +54,6 @@ type MCPModalFormState = {
  isDynamicRegistration: boolean
  clientID: string
  credentials: string
-  forwardUserIdentity: boolean
 }
 type MCPModalFormActions = {
  setUrl: (url: string) => void
@ -69,7 +68,6 @@ type MCPModalFormActions = {
  setIsDynamicRegistration: (value: boolean) => void
  setClientID: (id: string) => void
  setCredentials: (credentials: string) => void
-  setForwardUserIdentity: (value: boolean) => void
  handleUrlBlur: (url: string) => Promise<void>
  resetIcon: () => void
 }
@ -102,11 +100,6 @@ export const useMCPModalForm = (data?: ToolWithProvider) => {
  const [isDynamicRegistration, setIsDynamicRegistration] = useState(() => isCreate ? true : (data?.is_dynamic_registration ?? true))
  const [clientID, setClientID] = useState(() => data?.authentication?.client_id || '')
  const [credentials, setCredentials] = useState(() => data?.authentication?.client_secret || '')
-  // M3 — user-identity forwarding. Identity mode is implied by the toggle:
-  // off → "off", on → "idp_token" (only mode currently supported).
-  const [forwardUserIdentity, setForwardUserIdentity] = useState(
-    () => Boolean(data?.forward_user_identity),
-  )
  const handleUrlBlur = useCallback(async (urlValue: string) => {
    if (data)
      return
@ -170,7 +163,6 @@ export const useMCPModalForm = (data?: ToolWithProvider) => {
      isDynamicRegistration,
      clientID,
      credentials,
-      forwardUserIdentity,
    } satisfies MCPModalFormState,
    // Actions
    actions: {
@ -186,7 +178,6 @@ export const useMCPModalForm = (data?: ToolWithProvider) => {
      setIsDynamicRegistration,
      setClientID,
      setCredentials,
-      setForwardUserIdentity,
      handleUrlBlur,
      resetIcon,
    } satisfies MCPModalFormActions,
--- a/web/app/components/tools/mcp/modal.tsx
+++ b/web/app/components/tools/mcp/modal.tsx
@ -5,7 +5,6 @@ import type { ToolWithProvider } from '@/app/components/workflow/types'
 import type { AppIconType } from '@/types/app'
 import { Button } from '@langgenius/dify-ui/button'
 import { Dialog, DialogContent } from '@langgenius/dify-ui/dialog'
-import { Switch } from '@langgenius/dify-ui/switch'
 import { toast } from '@langgenius/dify-ui/toast'
 import { RiCloseLine, RiEditLine } from '@remixicon/react'
 import { useHover } from 'ahooks'
@ -40,8 +39,6 @@ type MCPModalConfirmPayload = {
    timeout: number
    sse_read_timeout: number
  }
-  forward_user_identity?: boolean
-  identity_mode?: 'off' | 'idp_token'
 }

 type DuplicateAppModalProps = {
@ -113,8 +110,6 @@ const MCPModalContent: FC<MCPModalContentProps> = ({
        timeout: state.timeout || 30,
        sse_read_timeout: state.sseReadTimeout || 300,
      },
-      forward_user_identity: state.forwardUserIdentity,
-      identity_mode: state.forwardUserIdentity ? 'idp_token' : 'off',
    })
    if (isCreate)
      onHide()
@ -212,23 +207,6 @@ const MCPModalContent: FC<MCPModalContentProps> = ({
          )}
        </div>

-        {/* Forward user identity (M3 — enterprise SSO identity-forwarding) */}
-        <div>
-          <div className="mb-1 flex h-6 items-center">
-            <Switch
-              className="mr-2"
-              checked={state.forwardUserIdentity}
-              onCheckedChange={actions.setForwardUserIdentity}
-            />
-            <span className="system-sm-medium text-text-secondary">
-              {t('mcp.modal.forwardUserIdentity', { ns: 'tools' })}
-            </span>
-          </div>
-          <div className="body-xs-regular text-text-tertiary">
-            {t('mcp.modal.forwardUserIdentityTip', { ns: 'tools' })}
-          </div>
-        </div>
-
        {/* Auth Method Tabs */}
        <TabSlider
          className="w-full"
--- a/web/app/components/tools/types.ts
+++ b/web/app/components/tools/types.ts
@ -78,9 +78,6 @@ export type Collection = {
    timeout?: number
    sse_read_timeout?: number
  }
-  // M3 — user-identity forwarding (MCP)
-  forward_user_identity?: boolean
-  identity_mode?: 'off' | 'idp_token'
  // Workflow
  workflow_app_id?: string
 }
--- a/web/i18n/en-US/tools.json
+++ b/web/i18n/en-US/tools.json
@ -120,8 +120,6 @@
  "mcp.modal.configurations": "Configurations",
  "mcp.modal.confirm": "Add & Authorize",
  "mcp.modal.editTitle": "Edit MCP Server (HTTP)",
-  "mcp.modal.forwardUserIdentity": "Forward user identity",
-  "mcp.modal.forwardUserIdentityTip": "Send the calling user's verified SSO identity to this MCP server as an Authorization Bearer token. Requires Dify Enterprise SSO.",
  "mcp.modal.headerKey": "Header Name",
  "mcp.modal.headerKeyPlaceholder": "e.g., Authorization",
  "mcp.modal.headerValue": "Header Value",
--- a/web/i18n/zh-Hans/tools.json
+++ b/web/i18n/zh-Hans/tools.json
@ -120,8 +120,6 @@
  "mcp.modal.configurations": "配置",
  "mcp.modal.confirm": "添加并授权",
  "mcp.modal.editTitle": "修改 MCP 服务 (HTTP)",
-  "mcp.modal.forwardUserIdentity": "转发用户身份",
-  "mcp.modal.forwardUserIdentityTip": "将调用用户的已验证 SSO 身份作为 Authorization Bearer token 转发到该 MCP 服务器。需要 Dify Enterprise SSO。",
  "mcp.modal.headerKey": "请求头名称",
  "mcp.modal.headerKeyPlaceholder": "例如：Authorization",
  "mcp.modal.headerValue": "请求头值",
--- a/web/service/use-tools.ts
+++ b/web/service/use-tools.ts
@ -106,8 +106,6 @@ export const useCreateMCP = () => {
      timeout?: number
      sse_read_timeout?: number
      headers?: Record<string, string>
-      forward_user_identity?: boolean
-      identity_mode?: 'off' | 'idp_token'
    }) => {
      return post<ToolWithProvider>('workspaces/current/tool-provider/mcp', {
        body: {
@ -135,8 +133,6 @@ export const useUpdateMCP = ({
      timeout?: number
      sse_read_timeout?: number
      headers?: Record<string, string>
-      forward_user_identity?: boolean
-      identity_mode?: 'off' | 'idp_token'
    }) => {
      return put('workspaces/current/tool-provider/mcp', {
        body: {