capdevc
commented
1 year ago I think there should be a command to trigger manually for setting API tokens, maybe with a dropbox for provider selection. With that I don't think deletion is strictly necessary. You could just overwrite the secret with an empty string or whatever you like.
Re: locally hosted, you could only use the API key when the apiURL isn't the default one. For Anthropic this is hard coded in the SDK. I think the way you have it the key is only prompted for at time of use, so that would solve that problem. Is there a scenario where you want an openai api key to use with a non-openai API endpoint?
You could also decouple the API from the provider
"wingman.providers": [
{
"name": "openai",
"apiType": "openai",
"apiKeySecret": "openai",
},
{
"name": "localLLaMa",
"apiType": "openai",
"apiUrl": "https://localhost/...",
},
{
"name": "anthropic",
"apiType": "anthropic",
"apiKeySecret": "anthropic",
},
]Here the provider gets looked up by name (given in the command definition), the apiUrl (optional) overrides the default URL for that API, and the apiKeySecret is the name of the secret for that provider, and no API key is needed if no secret is named.
This may be a little complicated, but defaults could be added for anthropic and openai so you'd only need to interact with it if you wanted to add a non-standard provider for a given API. Presumably if you want to do that you could figure this out.
nvms
RE: #4
One thing to consider is that when using LLaMa for generation, which uses the OpenAI API, the user will be prompted for an OpenAI API key and they may not have one. Still undecided on how best to handle this.
Do we need to expose a way via the UI to destroy these secrets?