clients: send permission profiles to app-server (#18280)

mirror of https://github.com/openai/codex.git synced 2026-05-02 10:26:45 +00:00

## Why

After app-server can accept `PermissionProfile`, first-party clients
should stop preferring legacy sandbox fields when canonical permission
information is available. This keeps the migration moving without
removing legacy compatibility yet.

The client side still has mixed surfaces during the stack: embedded
thread start/resume/fork and exec initial turns can derive a profile
directly from local config, while TUI remote sessions and some
turn-start paths only have a legacy/server-context-safe sandbox
projection. Those paths keep sending legacy sandbox fields rather than
synthesizing or sending lossy/local-only profiles.

## What changed

- Sends `permissionProfile` from exec and embedded TUI thread
start/resume/fork requests when config has a representable profile.
- Keeps legacy sandbox fallback for external sandbox policies, TUI
remote thread lifecycle requests, and TUI turn-start requests that do
not yet carry the active profile.
- Sends the actual config-derived `permissionProfile` for exec initial
turns instead of rebuilding one from the legacy sandbox projection.
- Stores response `permissionProfile` as optional in TUI session state
so external sandbox responses and compatibility payloads preserve
`null`.
- Updates tests for request construction and response mapping.

## Verification

- `cargo check --tests -p codex-tui -p codex-exec`
- `cargo test -p codex-tui app_server_session -- --nocapture`
- `cargo test -p codex-exec thread_start_params -- --nocapture`
- `cargo test -p codex-tui
app_server_session::tests::thread_lifecycle_params -- --nocapture`
- `just fix -p codex-tui -p codex-exec`
- `just fix -p codex-tui`












---
[//]: # (BEGIN SAPLING FOOTER)
Stack created with [Sapling](https://sapling-scm.com). Best reviewed
with [ReviewStack](https://reviewstack.dev/openai/codex/pull/18280).
* #18288
* #18287
* #18286
* #18285
* #18284
* #18283
* #18282
* #18281
* __->__ #18280

This commit is contained in:

Michael Bolin

2026-04-22 16:34:13 -07:00

committed by

GitHub

parent 44dbd9e48a

commit bc083e4713

6 changed files with 220 additions and 9 deletions

									
										5

codex-rs/exec/src/lib_tests.rs
									
												View File
												
				@@ -361,6 +361,11 @@ async fn thread_start_params_include_review_policy_when_review_policy_is_manual_

				        params.approvals_reviewer,

				        Some(codex_app_server_protocol::ApprovalsReviewer::User)

				    );

				    assert_eq!(params.sandbox, None);

				    assert_eq!(

				        params.permission_profile,

				        Some(config.permissions.permission_profile().into())

				    );

				}

				#[tokio::test]

clients: send permission profiles to app-server (#18280)

5 codex-rs/exec/src/lib_tests.rs Unescape Escape View File

5

codex-rs/exec/src/lib_tests.rs

View File