ClawHub

Codex Auth Session Refresh

Security

🧩 Codex Skill β€” Refresh your Codex CLI auth.json from a local ChatGPT web session. Essential for Codex users behind firewalls, in WSL/containers, or on remote desktops.

Install

openclaw skills install codex-auth-session

🧩 Codex Skill: Codex Auth Session Refresh

This is an OpenClaw skill for Codex CLI. It provides Windows tooling to refresh Codex's auth.json with a fresh ChatGPT session token.

適用於 Codex Β· For Codex CLI users

🎯 Who Is This For?

Codex CLI users who are stuck with any of these:

😀 PainπŸ’₯ Why it sucks
Codex OAuth won't completeProxies, WSL, containers β€” browser never opens
OpenAI 2FA every timeToken expires every few hours
Forced to use API proxiesCan't get official auth working, settle for third-party
Token dies mid-sessionLose context, workflow destroyed

What This Does

Extracts a fresh access_token from your existing ChatGPT browser session and writes it directly to Codex's ~/.codex/auth.json. No reverse engineering. No MITM. No API abuse.

ι€‚η”¨δΊŽ Codex CLI!Codex 衰不了 OAuth ζ—Άηš„ζ•‘ζ˜Ÿγ€‚

Quick Install (on Windows)

git clone https://github.com/zcz-user/codex-auth-session-refresh.git
cd codex-auth-session-refresh
npm install
.\login-profile.ps1        # Login ChatGPT β†’ press Enter
.\status.ps1               # Check Codex auth state

Then Codex will see the fresh token in ~/.codex/auth.json.

Installation via ClawHub

clawhub install codex-auth-session

Commands (for Codex auth management)

CommandWhat it does
login-profile.ps1First login / re-login into ChatGPT (for Codex)
run-refresh.ps1Refresh Codex's access token now
status.ps1Check Codex auth.json status
install-scheduled-task.ps1Auto-refresh Codex auth every N hours
create-desktop-toolbox.ps1Desktop shortcuts for Codex auth management

How It Works

You (browser login to ChatGPT)
        β”‚
        β–Ό
Playwright β†’ chatgpt.com/api/auth/session β†’ accessToken
                                                  β”‚
                                                  β–Ό
                                        ~/.codex/auth.json
                                        (backup created before update)
                                                  β”‚
                                                  β–Ό
                                  Windows Scheduled Task
                                  (auto-refresh, so Codex never loses auth)

Security

  • Token values are never logged β€” delete safe.token before write
  • auth.json backed up with timestamp before every update
  • All sensitive paths excluded via .gitignore

Requirements

  • OS: Windows 10/11
  • Runtime: Node.js 18+
  • Browser: Chrome or Microsoft Edge
  • Target: Codex CLI by OpenAI
More in Security