Added missing OpenAI responses methods for lifecycle related tasks

[17jmumford]

Summary

This PR adds several missing methods on the OpenAI responses endpoints:

• retrieve
• delete
• cancel
• list

This is needed for asynchronous execution of inference. While Bifrost offers it's own built-in async inference tools, for extremely long running background tasks like Deep Research it is preferable to use what OpenAI provides.

We chose to exclude implementing the 'streaming' feature to keep code changes minimal. Who is streaming something that was async lol.

Changes

• We added these methods ONLY on OpenAI. It seemed pointless to stub them out for every single provider as they seem very specific for OpenAI.

Type of change

• Bug fix
• Feature
• Refactor
• Documentation
• Chore/CI

Affected areas

• Core (Go)
• Transports (HTTP)
• Providers/Integrations
• Plugins
• UI (React)
• Docs

How to test

run new unit test:

make test-core PROVIDER=openai TESTCASE=TestResponsesLifecycle

Basic script to test that it works:

from openai import OpenAI

client = OpenAI(
    base_url="http://127.0.0.1:8080/openai",
    api_key="",
)
r = client.responses.create(
    model="gpt-4.1-mini",
    input="Say hi in one word.",
    store=True,
)
print(client.responses.retrieve(r.id))
print(list(client.responses.input_items.list(r.id)))
client.responses.delete(r.id)

Screenshots/Recordings

Breaking changes

• Yes
• No

Related issues

Closes #3121.

Security considerations

None as far as I know.

Checklist

• I read docs/contributing/README.md and followed the guidelines
• I added/updated tests where appropriate
• I updated documentation where needed
• I verified builds succeed (Go and UI)
• I verified the CI pipeline passes locally if applicable

[coderabbitai]

📝 Walkthrough

Walkthrough

Adds OpenAI Responses lifecycle: new Bifrost public methods for retrieve/delete/cancel/input_items, corresponding schema types and provider interface, OpenAI provider implementations, HTTP routes and integration wiring, test coverage, permission flags, and governance/router adjustments for lifecycle requests.

Changes

Cohort / File(s)	Summary
Core API & Routing core/bifrost.go	Adds four public lifecycle methods (ResponsesRetrieveRequest, ResponsesDeleteRequest, ResponsesCancelRequest, ResponsesInputItemsRequest), nil/default handling, provider dispatch via ResponsesLifecycleProvider, request pooling cleanup, and model-check skip for lifecycle types.
Schemas & Provider Interfaces core/schemas/responses.go, core/schemas/bifrost.go, core/schemas/provider.go	Adds request/response types for lifecycle endpoints, new RequestType constants, BifrostRequest/BifrostResponse fields and helper propagation, ResponsesLifecycleProvider interface, and new allowed-request flags.
OpenAI Provider Implementation core/providers/openai/responseslifecycle.go	Implements OpenAI lifecycle handlers (retrieve, delete, cancel, input_items), shared HTTP executor, query builders, header capture, error enrichment, and response decoding/mapping to schema types.
HTTP Handlers & Integrations transports/bifrost-http/handlers/inference.go, transports/bifrost-http/integrations/openai.go, transports/bifrost-http/integrations/router.go	Adds HTTP routes for /v1/responses/{response_id} (GET/DELETE/POST/GET input_items), extraction/mapping helpers (extractResponsesLifecycleFromPath), OpenAI wire conversion reuse, model-getter adjustments, integration routing for lifecycle responses, post-callback and header forwarding.
Tests & Test Config core/internal/llmtests/..., core/providers/openai/openai_test.go	Adds ResponsesLifecycle feature flag, RunResponsesLifecycleTest integrated into comprehensive tests, enables scenario in OpenAI test config, and updates test runner summary.
Permissions, Governance & Config core/schemas/provider.go, plugins/governance/resolver.go, transports/config.schema.json	Adds granular allowed_request flags (responses_retrieve, responses_delete, responses_cancel, responses_input_items), updates IsOperationAllowed logic, treats lifecycle requests as model-not-required, and updates JSON config schema.
Utilities & Unit Tests core/utils.go, core/schemas/allowedrequestsresponseslifecycle_test.go	Adds isResponsesLifecycleRequestType helper and unit tests covering granular allowed-requests behavior for lifecycle verbs.

Sequence Diagram

sequenceDiagram
    actor Client
    participant HTTPHandler as "HTTP Handler"
    participant Bifrost as "Bifrost"
    participant Provider as "OpenAI Provider"
    participant OpenAIAPI as "OpenAI API"

    Client->>HTTPHandler: GET /v1/responses/{id}?provider=openai
    HTTPHandler->>HTTPHandler: extract response_id & provider
    HTTPHandler->>HTTPHandler: build BifrostResponsesRetrieveRequest
    HTTPHandler->>Bifrost: ResponsesRetrieveRequest(ctx, req)
    Bifrost->>Bifrost: validate inputs, type-assert provider
    Bifrost->>Provider: ResponsesRetrieve(ctx, key, req)
    Provider->>OpenAIAPI: GET /v1/responses/{id} (Bearer auth)
    OpenAIAPI-->>Provider: HTTP response + headers
    Provider->>Provider: decode response, populate extra_fields
    Provider-->>Bifrost: BifrostResponsesResponse
    Bifrost-->>HTTPHandler: BifrostResponsesResponse
    HTTPHandler->>Client: JSON response (forwarded provider headers)

Loading

Estimated code review effort

🎯 4 (Complex) | ⏱️ ~60 minutes

"I hopped to add four trusty doors,
retrieve, delete, cancel—no chores.
Input items counted with care,
OpenAI dances through the air.
— a rabbit, delighted 🐇"

🚥 Pre-merge checks | ✅ 4 | ❌ 1

❌ Failed checks (1 warning)

Check name	Status	Explanation	Resolution
Docstring Coverage	⚠️ Warning	Docstring coverage is 68.75% which is insufficient. The required threshold is 80.00%.	Write docstrings for the functions missing them to satisfy the coverage threshold.

✅ Passed checks (4 passed)

Check name	Status	Explanation
Title check	✅ Passed	The title 'Added missing OpenAI responses methods for lifecycle related tasks' accurately and directly describes the main change: adding retrieve, delete, cancel, and list methods for OpenAI responses lifecycle management.
Linked Issues check	✅ Passed	The PR successfully addresses issue #3121 by implementing responses.retrieve(), delete, cancel, and input_items list methods, enabling polling of long-running background tasks without HTML errors, solving all stated objectives.
Out of Scope Changes check	✅ Passed	All changes are directly scoped to implementing the four OpenAI responses lifecycle methods (retrieve, delete, cancel, list) and their supporting infrastructure; no unrelated changes detected.
Description check	✅ Passed	The PR description includes all required template sections: Summary, Changes, Type of change, Affected areas, How to test, Breaking changes, Related issues, Security considerations, and completed Checklist.

_{✏️ Tip: You can configure your own custom pre-merge checks in the settings.}

✨ Finishing Touches

🧪 Generate unit tests (beta)

• Create PR with unit tests

---

Thanks for using CodeRabbit! It's free for OSS, and your support helps us grow. If you like it, consider giving us a shout-out.

❤️ Share

• X
• Mastodon
• Reddit
• LinkedIn

_{Comment @coderabbitai help to get the list of available commands and usage tips.}

[greptile-apps]

Confidence Score: 5/5

Safe to merge; all findings are P2 style/completeness issues with no functional correctness or security impact.

Only P2 findings — the missing before cursor is a completeness gap but not a regression, and the Provider field omission in error extras is cosmetic. Core dispatch, auth, fallback handling, and governance are all correct.

core/schemas/responses.go and core/providers/openai/responseslifecycle.go for the missing before cursor; core/bifrost.go for the Provider inconsistency in error extras.

Important Files Changed

Filename	Overview
core/bifrost.go	Adds four new top-level lifecycle methods (Retrieve, Delete, Cancel, InputItems); correctly skips fallbacks for lifecycle request types; minor inconsistency in BifrostErrorExtraFields across the 'provider is required' error blocks
core/schemas/responses.go	New request/response types for lifecycle verbs; StartingAfter on retrieve is streaming-only (noted in prior review); BifrostResponsesInputItemsRequest missing Before backward-cursor field
core/providers/openai/responseslifecycle.go	New file implementing ResponsesLifecycleProvider; HTTP calls are well-formed; correctly URL-path-escapes response IDs; rejects large-response streaming mode; buildResponsesInputItemsQuery missing before cursor
core/schemas/provider.go	Adds ResponsesLifecycleProvider interface and granular AllowedRequests flags; IsOperationAllowed logic for lifecycle verbs is correct and tested
transports/bifrost-http/integrations/openai.go	Registers lifecycle route configs for all four verbs; extracts shared openAIResponsesWireConverter (adds nil-safety vs original); extractResponsesLifecycleFromPath correctly detects Azure vs OpenAI; same before cursor gap in InputItems path parser
transports/bifrost-http/handlers/inference.go	Registers four new route handlers for the standalone bifrost-http transport; query-parameter parsing is consistent with the schemas; same before cursor gap in responsesInputItems handler
transports/bifrost-http/integrations/router.go	Adds four new switch cases in handleNonStreamingRequest; delete and input_items bypass the ResponsesResponseConverter correctly; retrieve and cancel correctly check for a non-nil converter
core/schemas/bifrost.go	Extends BifrostRequest/BifrostResponse with four new lifecycle types; GetRequestFields, SetProvider, SetRawRequestBody, GetExtraFields, and PopulateExtraFields are all updated consistently
plugins/governance/resolver.go	Adds four lifecycle request types to the model-not-required list; prevents governance from rejecting modelless lifecycle calls
core/internal/llmtests/responses_lifecycle.go	New integration test covering create→retrieve→list-input-items→delete cycle; correctly skips for non-OpenAI providers; cancel is reasonably omitted
core/schemas/allowedrequestsresponseslifecycle_test.go	New unit tests for AllowedRequests lifecycle granularity; covers nil, legacy-flag, granular, and mixed scenarios; all parallel

_{Reviews (4): Last reviewed commit: "tightened up new response lifecycle meth..." | Re-trigger Greptile}

[coderabbitai]

Actionable comments posted: 7

🧹 Nitpick comments (4)

core/internal/llmtests/responses_lifecycle.go (2)

44-85: Use t.Cleanup to avoid leaking stored responses on early test failure.

If retrieve or input_items assertions fail, the created response is never deleted. Add best-effort cleanup right after rid is known.

Suggested patch

 	rid := *created.ID
+	t.Cleanup(func() {
+		_, _ = client.ResponsesDeleteRequest(bfCtx, &schemas.BifrostResponsesDeleteRequest{
+			Provider:   testConfig.Provider,
+			ResponseID: rid,
+		})
+	})

🤖 Prompt for AI Agents

Verify each finding against the current code and only fix it if needed.

In `@core/internal/llmtests/responses_lifecycle.go` around lines 44 - 85, After
creating the response via client.ResponsesRequest and extracting rid from
created.ID, register a best-effort cleanup using t.Cleanup that calls
client.ResponsesDeleteRequest (using testConfig.Provider and the stored rid) to
delete the created response; ensure the cleanup ignores/delete errors (log or
swallow) so early test failures in subsequent checks (ResponsesRetrieveRequest,
ResponsesInputItemsRequest) cannot leak stored responses. Target the code around
created, created.ID, rid, and client.ResponsesDeleteRequest to add this
t.Cleanup immediately after rid is set.

---

11-13: Please add a cancel-path lifecycle test as well.

This PR adds cancel support, but this scenario intentionally skips it. A lightweight background-response + cancel assertion would close that gap and prevent regressions.

🤖 Prompt for AI Agents

Verify each finding against the current code and only fix it if needed.

In `@core/internal/llmtests/responses_lifecycle.go` around lines 11 - 13, Add a
new lifecycle test that exercises the cancel path: create a background response
via the same client used in RunResponsesLifecycleTest (e.g., call the response
creation path but mark it as background), call the client cancel method (e.g.,
CancelResponse or ResponsesCancel) for that response's ID, then poll or fetch
the response (GetResponse / ResponsesGet) until its status transitions to
"cancelled" and assert the cancelled state and any expected fields (cancellation
reason/timestamp). Use unique symbols from this file (RunResponsesLifecycleTest
for reference) and mirror the existing create/retrieve/assert patterns so the
new test is lightweight, deterministic (use short timeouts/retries), and fails
if cancel no longer works.

core/providers/openai/responseslifecycle.go (2)

177-194: Inconsistent sendBackRawResponse handling compared to other lifecycle methods.

ResponsesRetrieve and ResponsesCancel use HandleProviderResponse which respects sendBackRawResponse to populate ExtraFields.RawResponse. However, ResponsesDelete performs manual unmarshaling and does not populate RawResponse when the flag is enabled.

Consider using HandleProviderResponse for consistency, or manually populating RawResponse:

♻️ Proposed fix to add RawResponse support

+	sendBackRawRequest := providerUtils.ShouldSendBackRawRequest(ctx, provider.sendBackRawRequest)
+	sendBackRawResponse := providerUtils.ShouldSendBackRawResponse(ctx, provider.sendBackRawResponse)
+
 	var wire struct {
 		ID      string `json:"id"`
 		Object  string `json:"object"`
 		Deleted bool   `json:"deleted"`
 	}
 	if err := sonic.Unmarshal(bodyBytes, &wire); err != nil {
 		return nil, providerUtils.NewBifrostOperationError(schemas.ErrProviderResponseUnmarshal, err)
 	}
-	return &schemas.BifrostResponsesDeleteResponse{
+	resp := &schemas.BifrostResponsesDeleteResponse{
 		ID:      wire.ID,
 		Object:  wire.Object,
 		Deleted: wire.Deleted,
 		ExtraFields: schemas.BifrostResponseExtraFields{
 			Latency:                 latencyMs,
 			ProviderResponseHeaders: headers,
 			Provider:                provider.GetProviderKey(),
 		},
-	}, nil
+	}
+	if sendBackRawResponse {
+		resp.ExtraFields.RawResponse = bodyBytes
+	}
+	return resp, nil

🤖 Prompt for AI Agents

Verify each finding against the current code and only fix it if needed.

In `@core/providers/openai/responseslifecycle.go` around lines 177 - 194,
ResponsesDelete currently unmarshals the provider body manually and omits
ExtraFields.RawResponse when sendBackRawResponse is enabled; make it consistent
with ResponsesRetrieve/ResponsesCancel by either calling HandleProviderResponse
to build the full response (so ExtraFields.RawResponse, Latency,
ProviderResponseHeaders, Provider are populated) or, if keeping manual
unmarshaling in ResponsesDelete, set ExtraFields.RawResponse = string(bodyBytes)
(or the appropriate raw bytes representation) when sendBackRawResponse is true
and include Latency, ProviderResponseHeaders and Provider (use
provider.GetProviderKey()) in the BifrostResponsesDeleteResponse.ExtraFields so
RawResponse handling matches the other lifecycle methods.

---

242-263: Same sendBackRawResponse inconsistency applies here.

ResponsesInputItems also performs manual unmarshaling without respecting the sendBackRawResponse flag. Apply the same fix pattern as suggested for ResponsesDelete to maintain consistent behavior across all lifecycle methods.

🤖 Prompt for AI Agents

Verify each finding against the current code and only fix it if needed.

In `@core/providers/openai/responseslifecycle.go` around lines 242 - 263,
ResponsesInputItems currently always unmarshals the response into the local wire
struct (in responseslifecycle.go) and ignores the sendBackRawResponse flag;
update the ResponsesInputItems handling to mirror the fix used in
ResponsesDelete: check the provider's sendBackRawResponse flag (e.g.,
provider.Config().SendBackRawResponse or the same accessor used in
ResponsesDelete) before attempting sonic.Unmarshal, and if true return a
BifrostResponsesInputItemsResponse that contains the raw body bytes and headers
(and latency/provider info) instead of unmarshaling; otherwise proceed with the
existing sonic.Unmarshal into wire and populate
Data/Object/HasMore/FirstID/LastID as before.

🤖 Prompt for all review comments with AI agents

Verify each finding against the current code and only fix it if needed.

Inline comments:
In `@core/bifrost.go`:
- Around line 6112-6151: The new lifecycle cases (ResponsesRetrieveRequest,
ResponsesDeleteRequest, ResponsesCancelRequest, ResponsesInputItemsRequest) must
be treated as model-less when selecting keys so they aren't rejected by
selectKeyFromProviderForModelWithPool's model filtering; update the model-less
skip path used by requestWorker (or wherever
selectKeyFromProviderForModelWithPool checks request type) to include these four
schemas constants so key selection bypasses model allow-list checks and still
calls the lifecycle methods (e.g., add ResponsesRetrieveRequest,
ResponsesDeleteRequest, ResponsesCancelRequest, ResponsesInputItemsRequest to
the model-less request set used by selectKeyFromProviderForModelWithPool).
- Around line 4568-4587: The code is incorrectly rewriting
ResponsesRetrieveRequest/ResponsesDeleteRequest/ResponsesCancelRequest/ResponsesInputItemsRequest
to use fallback.Provider, which routes stored-response operations to the wrong
backend; instead, do not modify or attach these request types to fallbackReq
(i.e., do not set tmp.Provider = fallback.Provider or assign
fallbackReq.ResponsesRetrieveRequest/ResponsesDeleteRequest/ResponsesCancelRequest/ResponsesInputItemsRequest).
Leave the original req.* intact and ensure fallback routing skips these request
types so retrieve/delete/cancel/input_items remain targeted to the original
provider/account.
- Around line 925-1120: The retrieve/delete/cancel/input_items handlers
(ResponsesRetrieveRequest, ResponsesDeleteRequest, ResponsesCancelRequest,
ResponsesInputItemsRequest) currently reselect an API key on every call; instead
preserve and reuse the original creating key by reading the stored-origin key
identifier from the request/metadata and setting it into the per-call context
before calling bifrost.getBifrostRequest() / bifrost.handleRequest().
Concretely: check for a creating/origin API key field on the incoming request
(or load it from response metadata if available), set that value into the ctx
(BifrostContext) used for the call (e.g., ctx.APIKeyID or the existing
BifrostContextKeyAPIKeyID slot) so the downstream selector uses the same key,
then proceed to build bifrostReq and call bifrost.handleRequest as before.

In `@core/schemas/provider.go`:
- Around line 364-365: The switch mapping multiple request kinds to ar.Responses
is too permissive; add explicit per-verb flags to AllowedRequests (e.g.,
ResponsesCreate, ResponsesRetrieve, ResponsesDelete, ResponsesCancel,
ResponsesInputItems) and update ProviderConfig and CustomProviderConfig to
expose those booleans, then change the switch handling of
ResponsesRetrieveRequest, ResponsesDeleteRequest, ResponsesCancelRequest, and
ResponsesInputItemsRequest to check the corresponding new fields (instead of
returning ar.Responses) so lifecycle verbs remain denied unless individually
enabled; preserve the existing nil semantics (nil AllowedRequests == allow all,
non-nil only true fields allowed).

In `@core/schemas/responses.go`:
- Around line 100-102: Remove the unsupported "before" query parameter: delete
the Before field from the BifrostResponsesInputItemsRequest struct (in
core/schemas/responses.go) and remove any handling that appends "before" in
buildResponsesInputItemsQuery (function buildResponsesInputItemsQuery in
core/providers/openai/responseslifecycle.go) so only after, include, limit and
order are sent to OpenAI; ensure any tests or callers that set Before are
updated/removed accordingly.

In `@transports/bifrost-http/handlers/inference.go`:
- Around line 1521-1524: The handler currently ignores malformed numeric query
params (case "starting_after" and similarly "limit") by only setting
bifrostReq.StartingAfter when strconv.Atoi succeeds; change this so that when
strconv.Atoi returns an error you return an HTTP 400 validation response
immediately instead of silently ignoring it. Locate the parsing branches for
"starting_after" and "limit" in inference.go, check strconv.Atoi's error, and
produce a 400 error response (including a short message naming the param and
that it's not a valid integer) rather than continuing; ensure
bifrostReq.StartingAfter and bifrostReq.Limit are only set on successful parse.

In `@transports/bifrost-http/integrations/openai.go`:
- Around line 2365-2374: The extractResponsesLifecycleFromPath logic currently
only pulls "include" and "starting_after"; add two new boolean fields to
BifrostResponsesRetrieveRequest (e.g., IncludeObfuscation and Stream) then
update extractResponsesLifecycleFromPath to handle query keys
"include_obfuscation" and "stream" (parse them as booleans and set
schemas.Ptr(true/false) or equivalent pointer types), and finally propagate
those fields in buildResponsesRetrieveQuery so the OpenAI provider receives
include_obfuscation and stream values when building the provider request.

---

Nitpick comments:
In `@core/internal/llmtests/responses_lifecycle.go`:
- Around line 44-85: After creating the response via client.ResponsesRequest and
extracting rid from created.ID, register a best-effort cleanup using t.Cleanup
that calls client.ResponsesDeleteRequest (using testConfig.Provider and the
stored rid) to delete the created response; ensure the cleanup ignores/delete
errors (log or swallow) so early test failures in subsequent checks
(ResponsesRetrieveRequest, ResponsesInputItemsRequest) cannot leak stored
responses. Target the code around created, created.ID, rid, and
client.ResponsesDeleteRequest to add this t.Cleanup immediately after rid is
set.
- Around line 11-13: Add a new lifecycle test that exercises the cancel path:
create a background response via the same client used in
RunResponsesLifecycleTest (e.g., call the response creation path but mark it as
background), call the client cancel method (e.g., CancelResponse or
ResponsesCancel) for that response's ID, then poll or fetch the response
(GetResponse / ResponsesGet) until its status transitions to "cancelled" and
assert the cancelled state and any expected fields (cancellation
reason/timestamp). Use unique symbols from this file (RunResponsesLifecycleTest
for reference) and mirror the existing create/retrieve/assert patterns so the
new test is lightweight, deterministic (use short timeouts/retries), and fails
if cancel no longer works.

In `@core/providers/openai/responseslifecycle.go`:
- Around line 177-194: ResponsesDelete currently unmarshals the provider body
manually and omits ExtraFields.RawResponse when sendBackRawResponse is enabled;
make it consistent with ResponsesRetrieve/ResponsesCancel by either calling
HandleProviderResponse to build the full response (so ExtraFields.RawResponse,
Latency, ProviderResponseHeaders, Provider are populated) or, if keeping manual
unmarshaling in ResponsesDelete, set ExtraFields.RawResponse = string(bodyBytes)
(or the appropriate raw bytes representation) when sendBackRawResponse is true
and include Latency, ProviderResponseHeaders and Provider (use
provider.GetProviderKey()) in the BifrostResponsesDeleteResponse.ExtraFields so
RawResponse handling matches the other lifecycle methods.
- Around line 242-263: ResponsesInputItems currently always unmarshals the
response into the local wire struct (in responseslifecycle.go) and ignores the
sendBackRawResponse flag; update the ResponsesInputItems handling to mirror the
fix used in ResponsesDelete: check the provider's sendBackRawResponse flag
(e.g., provider.Config().SendBackRawResponse or the same accessor used in
ResponsesDelete) before attempting sonic.Unmarshal, and if true return a
BifrostResponsesInputItemsResponse that contains the raw body bytes and headers
(and latency/provider info) instead of unmarshaling; otherwise proceed with the
existing sonic.Unmarshal into wire and populate
Data/Object/HasMore/FirstID/LastID as before.

🪄 Autofix (Beta)

Fix all unresolved CodeRabbit comments on this PR:

• Push a commit to this branch (recommended)
• Create a new PR with the fixes

---

ℹ️ Review info

⚙️ Run configuration

Configuration used: Organization UI

Review profile: CHILL

Plan: Pro

Run ID: ded573f3-2c3a-4d60-8268-fce66c35dc02

📥 Commits

Reviewing files that changed from the base of the PR and between 943ee4b and 8c72fa8.

📒 Files selected for processing (13)

• core/bifrost.go
• core/internal/llmtests/account.go
• core/internal/llmtests/responses_lifecycle.go
• core/internal/llmtests/tests.go
• core/providers/openai/openai_test.go
• core/providers/openai/responseslifecycle.go
• core/schemas/bifrost.go
• core/schemas/provider.go
• core/schemas/responses.go
• plugins/governance/resolver.go
• transports/bifrost-http/handlers/inference.go
• transports/bifrost-http/integrations/openai.go
• transports/bifrost-http/integrations/router.go

[coderabbitai]

Actionable comments posted: 2

♻️ Duplicate comments (1)

core/bifrost.go (1)

925-1120: ⚠️ Potential issue | 🟠 Major

Preserve creator-key affinity for stored-response lifecycle calls.

These entry points still dispatch with only provider + response_id, so downstream selection can pick any eligible key. In a multi-key OpenAI setup, a response created under key A becomes unreachable when retrieve/delete/cancel/input_items later hit key B. Persist the creating key ID with the stored response (or carry it on these request types) and set BifrostContextKeyAPIKeyID before calling handleRequest().

This verifies whether any lifecycle request struct or transport path already preserves the origin key. Expected result: if you do not find an origin-key field on these request types and do not find BifrostContextKeyAPIKeyID/BifrostContextKeyAPIKeyName being set on the lifecycle path before dispatch, the issue is still present.

#!/bin/bash
set -euo pipefail

echo "== lifecycle request type definitions =="
rg -n --type=go -C3 'type BifrostResponses(Retrieve|Delete|Cancel|InputItems)Request struct' core/schemas

echo
echo "== fields that could preserve lifecycle key affinity =="
rg -n --type=go -C2 'Origin|Creator|APIKeyID|APIKeyName' core/schemas transports/bifrost-http core

echo
echo "== lifecycle entry points and any API-key pinning before dispatch =="
rg -n --type=go -C4 'Responses(Retrieve|Delete|Cancel|InputItems)Request\(|SetValue\(.*BifrostContextKeyAPIKey(ID|Name)' core transports/bifrost-http

🤖 Prompt for AI Agents

Verify each finding against the current code and only fix it if needed.

In `@core/bifrost.go` around lines 925 - 1120, The four lifecycle handlers
ResponsesRetrieveRequest, ResponsesDeleteRequest, ResponsesCancelRequest, and
ResponsesInputItemsRequest do not preserve the original creator API key
affinity, so in multi-key setups retrieval/delete/cancel can be routed to a
different key; fix by carrying the creator key ID (or name) from the stored
response into the request context before dispatch: ensure the stored-response
creation path persists the creator key ID on the stored object (e.g.,
CreatorAPIKeyID/OriginAPIKeyID) and then, in each of the above functions, look
up that persisted creator key ID (or accept it on the request struct) and set
ctx.Values[BifrostContextKeyAPIKeyID] (or BifrostContextKeyAPIKeyName) on the
bifrost context prior to calling handleRequest(); update the request types if
needed to include an Origin/Creator APIKey field so the affinity is available at
dispatch time.

🧹 Nitpick comments (3)

core/schemas/allowedrequestsresponseslifecycle_test.go (1)

5-58: Add an explicit deny-by-default lifecycle subtest.

Coverage is strong already; adding the “non-nil, all lifecycle flags false, Responses=false” case will lock in the default-deny contract for non-nil ACLs.

✅ Suggested test addition

 func TestAllowedRequests_ResponsesLifecycleGranular(t *testing.T) {
 	t.Parallel()
+	t.Run("non-nil with no lifecycle flags denies lifecycle verbs", func(t *testing.T) {
+		t.Parallel()
+		ar := &AllowedRequests{Responses: false}
+		for _, op := range []RequestType{
+			ResponsesRetrieveRequest,
+			ResponsesDeleteRequest,
+			ResponsesCancelRequest,
+			ResponsesInputItemsRequest,
+		} {
+			if ar.IsOperationAllowed(op) {
+				t.Fatalf("expected %q denied", op)
+			}
+		}
+	})
 
 	t.Run("nil means allow", func(t *testing.T) {

🤖 Prompt for AI Agents

Verify each finding against the current code and only fix it if needed.

In `@core/schemas/allowedrequestsresponseslifecycle_test.go` around lines 5 - 58,
Add a new subtest in TestAllowedRequests_ResponsesLifecycleGranular that asserts
a non-nil AllowedRequests with Responses=false and all granular response flags
unset denies every response lifecycle operation: create an AllowedRequests
instance with Responses:false (and do not set
ResponsesRetrieve/ResponsesDelete/ResponsesCancel/ResponsesInputItems), then
call IsOperationAllowed for each RequestType (ResponsesRetrieveRequest,
ResponsesDeleteRequest, ResponsesCancelRequest, ResponsesInputItemsRequest) and
require each to be false to enforce the deny-by-default behavior for non-nil
ACLs.

core/schemas/provider.go (1)

378-409: Consider deduplicating lifecycle gate logic in IsOperationAllowed.

The four lifecycle cases are currently copy/pasted; a tiny helper would reduce drift risk when behavior changes later.

♻️ Refactor sketch

+func (ar *AllowedRequests) isLifecycleVerbAllowed(explicit bool) bool {
+	if explicit {
+		return true
+	}
+	if ar.granularResponsesLifecycleUsed() {
+		return false
+	}
+	return ar.Responses
+}
+
 func (ar *AllowedRequests) IsOperationAllowed(operation RequestType) bool {
@@
 	case ResponsesRetrieveRequest:
-		if ar.ResponsesRetrieve {
-			return true
-		}
-		if ar.granularResponsesLifecycleUsed() {
-			return false
-		}
-		return ar.Responses
+		return ar.isLifecycleVerbAllowed(ar.ResponsesRetrieve)
 	case ResponsesDeleteRequest:
-		if ar.ResponsesDelete {
-			return true
-		}
-		if ar.granularResponsesLifecycleUsed() {
-			return false
-		}
-		return ar.Responses
+		return ar.isLifecycleVerbAllowed(ar.ResponsesDelete)
 	case ResponsesCancelRequest:
-		if ar.ResponsesCancel {
-			return true
-		}
-		if ar.granularResponsesLifecycleUsed() {
-			return false
-		}
-		return ar.Responses
+		return ar.isLifecycleVerbAllowed(ar.ResponsesCancel)
 	case ResponsesInputItemsRequest:
-		if ar.ResponsesInputItems {
-			return true
-		}
-		if ar.granularResponsesLifecycleUsed() {
-			return false
-		}
-		return ar.Responses
+		return ar.isLifecycleVerbAllowed(ar.ResponsesInputItems)

🤖 Prompt for AI Agents

Verify each finding against the current code and only fix it if needed.

In `@core/schemas/provider.go` around lines 378 - 409, The repeated lifecycle gate
logic in IsOperationAllowed for the Responses* cases should be extracted into a
small helper to avoid duplication; implement a method on the same receiver
(e.g., func (ar *ProviderAuthorizer) responsesLifecycleAllowed(opFlag bool)
bool) that encapsulates the pattern: return true if opFlag is true, return false
if ar.granularResponsesLifecycleUsed() is true, otherwise return ar.Responses;
then replace the bodies of the ResponsesRetrieveRequest, ResponsesDeleteRequest,
ResponsesCancelRequest, and ResponsesInputItemsRequest cases to call this helper
(passing ar.ResponsesRetrieve, ar.ResponsesDelete, ar.ResponsesCancel,
ar.ResponsesInputItems respectively).

core/providers/openai/responseslifecycle.go (1)

82-83: Fail fast for unsupported large-response mode before making the upstream call.

This path currently prepares streaming-capable handling and only rejects lifecycle requests after the response is received (lpResult != nil). Since lifecycle endpoints explicitly don’t support large-response mode, returning early avoids unnecessary provider calls/cost.

Based on learnings, request-time large-response decisions should be made from threshold/pre-request context rather than post-response detection.

Also applies to: 122-127

🤖 Prompt for AI Agents

Verify each finding against the current code and only fix it if needed.

In `@core/providers/openai/responseslifecycle.go` around lines 82 - 83, Fail fast
for unsupported large-response mode by detecting the large-response decision
before making the upstream call: in the lifecycle handling path, check the
request/context for large-response mode (the same pre-request threshold check
used elsewhere) and return an error immediately when large-response is requested
for lifecycle endpoints instead of calling
providerUtils.PrepareResponseStreaming or providerUtils.SetExtraHeaders; update
both the block around PrepareResponseStreaming/SetExtraHeaders (where
provider.client and provider.networkConfig.ExtraHeaders are passed) and the
similar branch at the 122-127 region so the check runs prior to any provider
invocation and avoids unnecessary upstream calls.

🤖 Prompt for all review comments with AI agents

Verify each finding against the current code and only fix it if needed.

Inline comments:
In `@core/providers/openai/responseslifecycle.go`:
- Around line 177-183: The unmarshalling error branches using sonic.Unmarshal
(for the local `wire` struct and the similar block at 242-250) currently return
plain providerUtils.NewBifrostOperationError which drops the raw response;
update those error paths to use the shared enrichment flow (e.g.,
providerUtils.HandleProviderResponse or providerUtils.EnrichError) and pass the
original error plus the raw `bodyBytes` (and HTTP status/context) so the
returned error preserves the upstream raw response payload and context instead
of a naked NewBifrostOperationError.
- Around line 87-93: When sending empty POSTs you call req.SetBodyString("{}")
but leave the local body variable nil so downstream error-enrichment (e.g., in
ResponsesCancel) loses the raw request; update the branches where you set the
synthetic "{}" (the block using req.SetBodyString("{}") and the analogous blocks
at the other occurrences) to also assign body = []byte("{}") (or an equivalent
non-nil representation) immediately after calling SetBodyString so the
error-enrichment logic receives the actual payload.

---

Duplicate comments:
In `@core/bifrost.go`:
- Around line 925-1120: The four lifecycle handlers ResponsesRetrieveRequest,
ResponsesDeleteRequest, ResponsesCancelRequest, and ResponsesInputItemsRequest
do not preserve the original creator API key affinity, so in multi-key setups
retrieval/delete/cancel can be routed to a different key; fix by carrying the
creator key ID (or name) from the stored response into the request context
before dispatch: ensure the stored-response creation path persists the creator
key ID on the stored object (e.g., CreatorAPIKeyID/OriginAPIKeyID) and then, in
each of the above functions, look up that persisted creator key ID (or accept it
on the request struct) and set ctx.Values[BifrostContextKeyAPIKeyID] (or
BifrostContextKeyAPIKeyName) on the bifrost context prior to calling
handleRequest(); update the request types if needed to include an Origin/Creator
APIKey field so the affinity is available at dispatch time.

---

Nitpick comments:
In `@core/providers/openai/responseslifecycle.go`:
- Around line 82-83: Fail fast for unsupported large-response mode by detecting
the large-response decision before making the upstream call: in the lifecycle
handling path, check the request/context for large-response mode (the same
pre-request threshold check used elsewhere) and return an error immediately when
large-response is requested for lifecycle endpoints instead of calling
providerUtils.PrepareResponseStreaming or providerUtils.SetExtraHeaders; update
both the block around PrepareResponseStreaming/SetExtraHeaders (where
provider.client and provider.networkConfig.ExtraHeaders are passed) and the
similar branch at the 122-127 region so the check runs prior to any provider
invocation and avoids unnecessary upstream calls.

In `@core/schemas/allowedrequestsresponseslifecycle_test.go`:
- Around line 5-58: Add a new subtest in
TestAllowedRequests_ResponsesLifecycleGranular that asserts a non-nil
AllowedRequests with Responses=false and all granular response flags unset
denies every response lifecycle operation: create an AllowedRequests instance
with Responses:false (and do not set
ResponsesRetrieve/ResponsesDelete/ResponsesCancel/ResponsesInputItems), then
call IsOperationAllowed for each RequestType (ResponsesRetrieveRequest,
ResponsesDeleteRequest, ResponsesCancelRequest, ResponsesInputItemsRequest) and
require each to be false to enforce the deny-by-default behavior for non-nil
ACLs.

In `@core/schemas/provider.go`:
- Around line 378-409: The repeated lifecycle gate logic in IsOperationAllowed
for the Responses* cases should be extracted into a small helper to avoid
duplication; implement a method on the same receiver (e.g., func (ar
*ProviderAuthorizer) responsesLifecycleAllowed(opFlag bool) bool) that
encapsulates the pattern: return true if opFlag is true, return false if
ar.granularResponsesLifecycleUsed() is true, otherwise return ar.Responses; then
replace the bodies of the ResponsesRetrieveRequest, ResponsesDeleteRequest,
ResponsesCancelRequest, and ResponsesInputItemsRequest cases to call this helper
(passing ar.ResponsesRetrieve, ar.ResponsesDelete, ar.ResponsesCancel,
ar.ResponsesInputItems respectively).

🪄 Autofix (Beta)

Fix all unresolved CodeRabbit comments on this PR:

• Push a commit to this branch (recommended)
• Create a new PR with the fixes

---

ℹ️ Review info

⚙️ Run configuration

Configuration used: Organization UI

Review profile: CHILL

Plan: Pro

Run ID: 2a3de415-cfaa-46f5-8b40-1b21f9b2735b

📥 Commits

Reviewing files that changed from the base of the PR and between 8c72fa8 and 00a7649.

📒 Files selected for processing (9)

• core/bifrost.go
• core/providers/openai/responseslifecycle.go
• core/schemas/allowedrequestsresponseslifecycle_test.go
• core/schemas/provider.go
• core/schemas/responses.go
• core/utils.go
• transports/bifrost-http/handlers/inference.go
• transports/bifrost-http/integrations/openai.go
• transports/config.schema.json

🚧 Files skipped from review as they are similar to previous changes (3)

• core/schemas/responses.go
• transports/bifrost-http/handlers/inference.go
• transports/bifrost-http/integrations/openai.go

[coderabbitai]

Actionable comments posted: 2

🤖 Prompt for all review comments with AI agents

Verify each finding against the current code and only fix it if needed.

Inline comments:
In `@core/providers/openai/responseslifecycle.go`:
- Around line 179-199: The success path for delete (and similarly for
ResponsesInputItems) currently omits RawResponse metadata; update the return
construction in ResponsesDelete (and the block at 247-271 / ResponsesInputItems)
to compute sendBackRawRequest := providerUtils.ShouldSendBackRawRequest(ctx,
provider.sendBackRawRequest) and sendBackRawResponse :=
providerUtils.ShouldSendBackRawResponse(ctx, provider.sendBackRawResponse) and
include the raw response via the same pattern used in retrieve/cancel (i.e.,
call providerUtils.HandleProviderResponse or otherwise attach the provider raw
payload into ExtraFields.RawResponse when sendBackRawResponse is true) so that
schemas.BifrostResponsesDeleteResponse.ExtraFields.RawResponse is populated and
the same change is applied to ResponsesInputItems.
- Around line 83-84: The lifecycle handlers
(ResponsesRetrieve/ResponsesCancel/ResponsesInputItems) are hard-failing when
PrepareResponseStreaming returns a large-response result; update the handlers to
not call PrepareResponseStreaming in a way that causes ErrProviderResponseEmpty,
or alternatively detect the large-response outcome from PrepareResponseStreaming
and propagate that payload back through the lifecycle response path instead of
returning ErrProviderResponseEmpty; specifically modify the callsite that
currently does activeClient := providerUtils.PrepareResponseStreaming(ctx,
provider.client, resp) (and the similar uses at lines ~119-128) to either skip
PrepareResponseStreaming for lifecycle endpoints or check its return
(large-response marker) and return the large-response payload to the caller
rather than failing with ErrProviderResponseEmpty.

🪄 Autofix (Beta)

Fix all unresolved CodeRabbit comments on this PR:

• Push a commit to this branch (recommended)
• Create a new PR with the fixes

---

ℹ️ Review info

⚙️ Run configuration

Configuration used: Organization UI

Review profile: CHILL

Plan: Pro

Run ID: 35217d62-937f-4f1b-8b97-f0503a40806c

📥 Commits

Reviewing files that changed from the base of the PR and between 00a7649 and 2162137.

📒 Files selected for processing (1)

• core/providers/openai/responseslifecycle.go

[coderabbitai]

🧹 Nitpick comments (2)

core/providers/openai/responseslifecycle.go (2)

268-269: Remove RawRequest population for GET endpoint.

Same as ResponsesRetrieve - this is a GET endpoint which has no request body.

Suggested fix

 	response.ExtraFields.Latency = latencyMs
 	response.ExtraFields.ProviderResponseHeaders = headers
 	response.ExtraFields.Provider = provider.GetProviderKey()
-	if sendBackRawRequest {
-		response.ExtraFields.RawRequest = rawRequest
-	}
 	if sendBackRawResponse {
 		response.ExtraFields.RawResponse = rawResponse
 	}

Based on learnings: "for all GET/retrieve endpoints in the OpenAI provider, do not populate ExtraFields.RawRequest when sendBackRawRequest is enabled."

🤖 Prompt for AI Agents

Verify each finding against the current code and only fix it if needed.

In `@core/providers/openai/responseslifecycle.go` around lines 268 - 269, The code
currently sets response.ExtraFields.RawRequest when sendBackRawRequest is true,
but for this GET/retrieve endpoint you must not populate RawRequest; update the
logic around sendBackRawRequest in the function handling this endpoint (same
pattern used in ResponsesRetrieve) so that response.ExtraFields.RawRequest =
rawRequest is only assigned for non-GET requests (or skip assignment entirely
for this GET handler), referencing sendBackRawRequest,
response.ExtraFields.RawRequest and rawRequest to locate and remove/guard that
assignment.

---

162-164: Remove RawRequest population for GET endpoint.

Per repository convention, GET/retrieve endpoints should not populate ExtraFields.RawRequest since there is no request body. The same pattern is used in VideoRetrieve and other GET endpoints.

Suggested fix

 	response.ExtraFields.Latency = latencyMs
 	response.ExtraFields.ProviderResponseHeaders = headers
 	response.ExtraFields.Provider = provider.GetProviderKey()
-	if sendBackRawRequest {
-		response.ExtraFields.RawRequest = rawRequest
-	}
 	if sendBackRawResponse {
 		response.ExtraFields.RawResponse = rawResponse
 	}

Based on learnings: "for all GET/retrieve endpoints in the OpenAI provider, do not populate ExtraFields.RawRequest when sendBackRawRequest is enabled."

🤖 Prompt for AI Agents

Verify each finding against the current code and only fix it if needed.

In `@core/providers/openai/responseslifecycle.go` around lines 162 - 164, The
current code unconditionally sets response.ExtraFields.RawRequest when
sendBackRawRequest is true, which violates the GET/retrieve convention; update
the logic so ExtraFields.RawRequest is only populated for non-GET endpoints
(i.e., when there is a request body). Concretely, in the block that checks
sendBackRawRequest, add a guard that verifies the request method is not "GET"
(or that the endpoint is not a retrieve/get operation) before assigning
response.ExtraFields.RawRequest = rawRequest; reference the existing symbols
sendBackRawRequest, response.ExtraFields.RawRequest, and rawRequest when making
this change so it matches the VideoRetrieve/get-endpoint pattern.

🤖 Prompt for all review comments with AI agents

Verify each finding against the current code and only fix it if needed.

Nitpick comments:
In `@core/providers/openai/responseslifecycle.go`:
- Around line 268-269: The code currently sets response.ExtraFields.RawRequest
when sendBackRawRequest is true, but for this GET/retrieve endpoint you must not
populate RawRequest; update the logic around sendBackRawRequest in the function
handling this endpoint (same pattern used in ResponsesRetrieve) so that
response.ExtraFields.RawRequest = rawRequest is only assigned for non-GET
requests (or skip assignment entirely for this GET handler), referencing
sendBackRawRequest, response.ExtraFields.RawRequest and rawRequest to locate and
remove/guard that assignment.
- Around line 162-164: The current code unconditionally sets
response.ExtraFields.RawRequest when sendBackRawRequest is true, which violates
the GET/retrieve convention; update the logic so ExtraFields.RawRequest is only
populated for non-GET endpoints (i.e., when there is a request body).
Concretely, in the block that checks sendBackRawRequest, add a guard that
verifies the request method is not "GET" (or that the endpoint is not a
retrieve/get operation) before assigning response.ExtraFields.RawRequest =
rawRequest; reference the existing symbols sendBackRawRequest,
response.ExtraFields.RawRequest, and rawRequest when making this change so it
matches the VideoRetrieve/get-endpoint pattern.

---

ℹ️ Review info

⚙️ Run configuration

Configuration used: Organization UI

Review profile: CHILL

Plan: Pro

Run ID: 83d7a6e3-f679-4081-a91f-73bd788c9d93

📥 Commits

Reviewing files that changed from the base of the PR and between 2162137 and a35e029.

📒 Files selected for processing (1)

• core/providers/openai/responseslifecycle.go

[17jmumford]

@Pratham-Mishra04 pls don't forget about this PR, we can multiple teams trying to use deep research and asking why it doesn't work on Bifrost 🙏 Thank you!