import type { Api, Model } from "@mariozechner/pi-ai"; import { fetchWithSsrFGuard } from "../infra/net/fetch-guard.js"; import { resolveDebugProxySettings } from "../proxy-capture/env.js"; import { buildProviderRequestDispatcherPolicy, getModelProviderRequestTransport, mergeModelProviderRequestOverrides, resolveProviderRequestPolicyConfig, } from "./provider-request-config.js"; function buildManagedResponse(response: Response, release: () => Promise): Response { if (!response.body) { void release(); return response; } const source = response.body; let reader: ReadableStreamDefaultReader | undefined; let released = false; const finalize = async () => { if (released) { return; } released = true; await release().catch(() => undefined); }; const wrappedBody = new ReadableStream({ start() { reader = source.getReader(); }, async pull(controller) { try { const chunk = await reader?.read(); if (!chunk || chunk.done) { controller.close(); await finalize(); return; } controller.enqueue(chunk.value); } catch (error) { controller.error(error); await finalize(); } }, async cancel(reason) { try { await reader?.cancel(reason); } finally { await finalize(); } }, }); return new Response(wrappedBody, { status: response.status, statusText: response.statusText, headers: response.headers, }); } function resolveModelRequestPolicy(model: Model) { const debugProxy = resolveDebugProxySettings(); let explicitDebugProxyUrl: string | undefined; if (debugProxy.enabled && debugProxy.proxyUrl) { try { if (new URL(model.baseUrl).protocol === "https:") { explicitDebugProxyUrl = debugProxy.proxyUrl; } } catch { // Non-URL provider base URLs cannot use the debug proxy override safely. } } const request = mergeModelProviderRequestOverrides(getModelProviderRequestTransport(model), { proxy: explicitDebugProxyUrl ? { mode: "explicit-proxy", url: explicitDebugProxyUrl, } : undefined, }); return resolveProviderRequestPolicyConfig({ provider: model.provider, api: model.api, baseUrl: model.baseUrl, capability: "llm", transport: "stream", request, allowPrivateNetwork: request?.allowPrivateNetwork === true, }); } export function buildGuardedModelFetch(model: Model): typeof fetch { const requestConfig = resolveModelRequestPolicy(model); const dispatcherPolicy = buildProviderRequestDispatcherPolicy(requestConfig); return async (input, init) => { const request = input instanceof Request ? new Request(input, init) : undefined; const url = request?.url ?? (input instanceof URL ? input.toString() : typeof input === "string" ? input : (() => { throw new Error("Unsupported fetch input for transport-aware model request"); })()); const requestInit = request && ({ method: request.method, headers: request.headers, body: request.body ?? undefined, redirect: request.redirect, signal: request.signal, ...(request.body ? ({ duplex: "half" } as const) : {}), } satisfies RequestInit & { duplex?: "half" }); const result = await fetchWithSsrFGuard({ url, init: requestInit ?? init, capture: { meta: { provider: model.provider, api: model.api, model: model.id, }, }, dispatcherPolicy, // Provider transport intentionally keeps the secure default and never // replays unsafe request bodies across cross-origin redirects. allowCrossOriginUnsafeRedirectReplay: false, ...(requestConfig.allowPrivateNetwork ? { policy: { allowPrivateNetwork: true } } : {}), }); return buildManagedResponse(result.response, result.release); }; }