Skip to content

Latest commit

 

History

History
123 lines (80 loc) · 4 KB

bridge.md

File metadata and controls

123 lines (80 loc) · 4 KB

Bridge (Windows-hosted ChatGPT session → Linux clients)

Oracle’s bridge workflow lets you keep an authenticated ChatGPT session on a Windows machine while running Oracle (CLI + oracle-mcp) from Linux boxes (often over SSH), without exporting browser cookies off Windows.

Concepts

  • Host (Windows): runs oracle bridge host and holds the signed-in ChatGPT session.
  • Client (Linux): stores the host connection once and routes browser runs (and MCP browser runs) through the host.

1) Windows: start the host service (recommended)

Run this on the Windows machine that’s signed into ChatGPT:

oracle bridge host --token auto --ssh user@your-linux-host

What it does:

  • Starts a local oracle serve instance bound to 127.0.0.1:9473 by default.
  • Generates an access token (stored to disk; not printed unless you ask).
  • Starts an SSH reverse tunnel so the Linux host can reach the Windows service at 127.0.0.1:9473.
  • Writes a connection artifact to ~/.oracle/bridge-connection.json (contains host + token).

Useful flags:

  • Bind a different local port: --bind 127.0.0.1:9474
  • Use a specific token: --token <value>
  • Print the connection string (includes token): --print
  • Print only the token: --print-token
  • SSH port/custom args: --ssh-extra-args "-p 2222"
  • Background mode (writes pid/log files under ~/.oracle): --background

2) Linux: configure the client once

Copy the connection artifact from Windows to Linux (example from Windows → Linux):

scp "$env:USERPROFILE\.oracle\bridge-connection.json" user@your-linux-host:~/bridge-connection.json

Then on the Linux host:

oracle bridge client --connect ~/bridge-connection.json --write-config --test

This writes:

  • ~/.oracle/config.jsonbrowser.remoteHost and browser.remoteToken

Now browser runs automatically route through the host:

oracle --engine browser -p "hello" --file README.md

2b) Linux desktop: local manual-login (no bridge)

If you’re physically on a Linux desktop and just want Oracle to reuse a local signed-in Chrome profile (no Windows bridge):

  1. Run a browser session once and sign in when Chrome opens:
ORACLE_HOME_DIR=~/.oracle-local \
ORACLE_BROWSER_PROFILE_DIR=~/.oracle-local/browser-profile \
oracle --engine browser --browser-manual-login --browser-keep-browser -p "hello"
  1. After you’re signed in, reuse the same env vars for future runs (no more login prompts).

Optional: use the helper wrapper scripts/oracle-local-browser.sh to avoid repeating flags/env vars:

chmod +x ./scripts/oracle-local-browser.sh
./scripts/oracle-local-browser.sh -p "hello" --file README.md

3) Codex CLI (MCP) integration

On the Linux machine where Codex runs:

oracle bridge codex-config

Paste the printed snippet into ~/.codex/config.toml.

3b) Claude Code (MCP) integration

On the Linux machine where Claude Code runs:

oracle bridge claude-config > .mcp.json

Then start Claude Code with that config (or register it via claude mcp add depending on your setup).

Notes:

  • The snippet includes ORACLE_ENGINE="browser" so MCP consult calls use browser mode even if OPENAI_API_KEY is set.
  • By default the snippets leave ORACLE_REMOTE_TOKEN as <YOUR_TOKEN> to avoid printing secrets; rerun with --print-token if you explicitly want it included.

4) Troubleshooting

Run:

oracle bridge doctor

It checks:

  • Whether a remote host/token is configured
  • TCP reachability to the remote host
  • Remote auth via GET /health (token-protected)
  • If no remote is configured, it probes local Chrome + cookie DB detection and suggests --browser-chrome-path / --browser-cookie-path

Security notes

  • Tokens are not printed by default.
  • The connection artifact and config file contain secrets; keep them private (Oracle writes them with restrictive permissions on Unix).
  • Bridge does not extract/decrypt cookies from arbitrary profiles; the Windows machine keeps the authenticated session locally.