diff --git a/AGENTS.md b/AGENTS.md
index 9f334057..1a7891d8 100644
--- a/AGENTS.md
+++ b/AGENTS.md
@@ -95,6 +95,7 @@ App docs:
 - `/app/L0/_all/mod/_core/onscreen_agent/prompts/AGENTS.md`
 - `/app/L0/_all/mod/_core/onscreen_menu/AGENTS.md`
 - `/app/L0/_all/mod/_core/open_router/AGENTS.md`
+- `/app/L0/_all/mod/_core/openai_codex/AGENTS.md`
 - `/app/L0/_all/mod/_core/panels/AGENTS.md`
 - `/app/L0/_all/mod/_core/promptinclude/AGENTS.md`
 - `/app/L0/_all/mod/_core/router/AGENTS.md`
@@ -123,6 +124,7 @@ Server docs:
 - `/server/lib/customware/AGENTS.md`
 - `/server/lib/file_watch/AGENTS.md`
 - `/server/lib/git/AGENTS.md`
+- `/server/lib/openai_codex/AGENTS.md`
 - `/server/lib/share/AGENTS.md`
 - `/server/lib/tmp/AGENTS.md`
 - `/server/pages/AGENTS.md`
diff --git a/README.md b/README.md
index ec541b69..15d5e6c0 100644
--- a/README.md
+++ b/README.md
@@ -134,6 +134,39 @@ node space supervise HOST=0.0.0.0 PORT=3000 # zero downtime auto-update
 
 Run `node space help` to see the full command surface and built-in help for each from [`commands/params.yaml`](./commands/params.yaml).
 
+## Sign in with ChatGPT (Codex OAuth)
+
+The overlay and admin chat surfaces ship a `ChatGPT` provider tab that uses the official OpenAI Codex OAuth device-code flow. If you already pay for ChatGPT Plus, the agent can send its chats through that subscription via `https://chatgpt.com/backend-api/codex/responses` without requiring a separate OpenAI platform API key.
+
+**Requirements**
+
+- An active **ChatGPT Plus** subscription. Free accounts cannot authorize the Codex device flow. Team and Enterprise plans have not been verified yet; they may work if they expose the same `/backend-api/codex` surface to the account.
+- The space-agent server process must be reachable from the browser you sign in from; the OAuth device-flow calls run through authenticated server endpoints to serialize refresh-token rotation safely.
+
+**Setup**
+
+1. In the overlay or admin settings dialog, open the `ChatGPT` tab and press **Sign in with ChatGPT**.
+2. A verification URL plus a short code appear. Open the URL in a signed-in ChatGPT browser tab and paste the code.
+3. Once you approve the device, the agent receives access and refresh tokens, stores them encrypted in your user config through `userCrypto`, and unlocks the model dropdown.
+4. Pick a model (default `gpt-5.4-mini`) and close the dialog. The next message is routed through Codex.
+
+The overlay config stores its tokens in `~/conf/onscreen-agent.yaml`, the admin chat in `~/conf/admin-chat.yaml`. The two surfaces do not share tokens, so signing in on one does not sign in on the other.
+
+**Why does this need a server-side OAuth endpoint?**
+
+Space Agent normally prefers frontend implementations. Codex refresh tokens use single-use rotation: if two browser tabs refresh at the same moment, one call succeeds and the other fails with `invalid_grant`, discarding the only valid refresh token and forcing a full re-login. The OAuth device-code flow and token refresh therefore run through server endpoints in `server/api/openai_codex_*.js` with a single-writer mutex. This is covered under the `shared-data integrity` rule in [`/server/AGENTS.md`](./server/AGENTS.md).
+
+**Troubleshooting**
+
+- **HTTP 403 with `cf-mitigated: challenge`**: Cloudflare blocked the request because the required originator headers were missing. The client ships those headers automatically; if you see this in logs after modifying `app/L0/_all/mod/_core/openai_codex/request.js`, check that `User-Agent`, `originator`, and `ChatGPT-Account-ID` are still set on every outbound Codex request.
+- **HTTP 401 "Refresh token is no longer valid. Please log in again."**: Your refresh token has already been consumed by another Codex client, often the `codex` CLI or the Codex VS Code extension signed into the same account. Sign in again in the settings dialog.
+- **`response.completed.response.output` is empty**: the Codex endpoint sometimes returns an empty final output array even when the streamed deltas arrived correctly. The adapter accumulates text live from `response.output_text.delta` for exactly this reason; do not read the final reply from the completion payload.
+- **HTTP 400 after local changes to the request body**: the Codex `/responses` endpoint rejects `max_output_tokens`, `temperature`, `tools`, and several other Chat-Completions fields. The shape converter in `app/L0/_all/mod/_core/openai_codex/request_shape.js` strips them; if you add a new field, check the drop-list there first.
+
+**Disclaimer**
+
+This provider uses your ChatGPT Plus subscription via the official OpenAI Codex OAuth flow, the same flow the Codex CLI and VS Code extension use. OpenAI's terms of service apply; use at your own risk and avoid non-interactive volume patterns that might look automated.
+
 ## AI-driven development and documentation
 
 Space Agent is developed by AI agents, including its documentation.
diff --git a/app/AGENTS.md b/app/AGENTS.md
index 02229fae..0aeb9938 100644
--- a/app/AGENTS.md
+++ b/app/AGENTS.md
@@ -53,6 +53,7 @@ Current module-local docs in the app tree:
 - `app/L0/_all/mod/_core/onscreen_agent/AGENTS.md`
 - `app/L0/_all/mod/_core/onscreen_menu/AGENTS.md`
 - `app/L0/_all/mod/_core/open_router/AGENTS.md`
+- `app/L0/_all/mod/_core/openai_codex/AGENTS.md`
 - `app/L1/_all/mod/metrics/posthog/AGENTS.md`
 - `app/L0/_admin/mod/_core/overlay_agent/AGENTS.md`
 
diff --git a/app/L0/_all/mod/_core/admin/views/agent/AGENTS.md b/app/L0/_all/mod/_core/admin/views/agent/AGENTS.md
index 705608d2..0241b7ef 100644
--- a/app/L0/_all/mod/_core/admin/views/agent/AGENTS.md
+++ b/app/L0/_all/mod/_core/admin/views/agent/AGENTS.md
@@ -76,7 +76,8 @@ Prompt rules:
 
 Current behavior:
 
-- the LLM settings modal keeps one provider switch at the top with tabs named `API` and `Local`, and shows either the API settings fields or one `Local` section
+- the LLM settings modal keeps one provider switch at the top with three tabs named `API`, `ChatGPT`, and `Local`; API settings show endpoint, model, and API key fields, the `ChatGPT` tab owns the OpenAI Codex OAuth device-code login plus a model dropdown sourced from `/mod/_core/openai_codex/models.js`, and the `Local` section mounts the shared Hugging Face sidebar
+- the `ChatGPT` tab scope is local to the admin chat: users sign in separately in the overlay settings to enable Codex there too, and refresh tokens for admin are stored in `~/conf/admin-chat.yaml` under a `userCrypto:`-prefixed `codex_tokens` entry, independent of the overlay config
 - the `Local` section only supports the Hugging Face browser runtime
 - the toolbar LLM settings button summarizes the current selection with the configured model name only; it does not prepend provider labels such as `API`, `Local`, or `Hugging Face`
 - the local section mounts the standalone Hugging Face config sidebar component through `<x-component>`, so the admin modal and the routed testing harness share the same component file instead of maintaining duplicated local-provider markup
diff --git a/app/L0/_all/mod/_core/admin/views/agent/api.js b/app/L0/_all/mod/_core/admin/views/agent/api.js
index e36a2f31..47125ec0 100644
--- a/app/L0/_all/mod/_core/admin/views/agent/api.js
+++ b/app/L0/_all/mod/_core/admin/views/agent/api.js
@@ -5,6 +5,10 @@ import * as prompt from "/mod/_core/admin/views/agent/prompt.js";
 import { mergeConsecutiveChatMessages } from "/mod/_core/framework/js/chat-messages.js";
 import * as proxyUrl from "/mod/_core/framework/js/proxy-url.js";
 import { getHuggingFaceManager } from "/mod/_core/huggingface/manager.js";
+import {
+  CODEX_STREAM_DONE_MARKER,
+  mapCodexEventToChatFrames
+} from "/mod/_core/openai_codex/sse_adapter.js";
 
 function createHeaders(apiKey) {
   const headers = {
@@ -406,6 +410,87 @@ async function readStreamingResponse(response, onDelta) {
   }
 }
 
+function parseCodexEventBlock(eventBlock, onDelta, meta) {
+  const lines = eventBlock.split(/\r?\n/u);
+
+  for (const line of lines) {
+    if (!line.startsWith("data:")) {
+      continue;
+    }
+
+    const value = line.slice(5).trim();
+
+    if (!value) {
+      continue;
+    }
+
+    let event;
+    try {
+      event = JSON.parse(value);
+    } catch {
+      continue;
+    }
+
+    // `mapCodexEventToChatFrames` throws on response.failed / error events,
+    // which bubbles up to the caller as a request failure. That is the
+    // intended behavior for terminal upstream errors mid-stream.
+    const frames = mapCodexEventToChatFrames(event);
+
+    for (const frame of frames) {
+      if (frame === CODEX_STREAM_DONE_MARKER) {
+        meta.sawDoneMarker = true;
+        return true;
+      }
+
+      const delta = extractStreamingDelta(frame);
+      noteCompletionPayload(meta, frame, delta);
+
+      if (delta) {
+        onDelta(delta);
+      }
+    }
+  }
+
+  return false;
+}
+
+async function readCodexStreamingResponse(response, onDelta) {
+  const meta = createCompletionResponseMeta("stream");
+  const reader = response.body.getReader();
+  const decoder = new TextDecoder();
+  let buffer = "";
+
+  while (true) {
+    const { done, value } = await reader.read();
+    buffer += decoder.decode(value || new Uint8Array(), {
+      stream: !done
+    });
+
+    let boundary = buffer.indexOf("\n\n");
+
+    while (boundary !== -1) {
+      const eventBlock = buffer.slice(0, boundary).trim();
+      buffer = buffer.slice(boundary + 2);
+
+      if (eventBlock && parseCodexEventBlock(eventBlock, onDelta, meta)) {
+        return finalizeCompletionResponseMeta(meta);
+      }
+
+      boundary = buffer.indexOf("\n\n");
+    }
+
+    if (done) {
+      const remaining = buffer.trim();
+
+      if (remaining) {
+        parseCodexEventBlock(remaining, onDelta, meta);
+      }
+
+      return finalizeCompletionResponseMeta(meta);
+    }
+  }
+}
+
 export const prepareAdminAgentApiRequest = globalThis.space.extend(
   import.meta,
   async function prepareAdminAgentApiRequest({
@@ -496,6 +581,62 @@ async function streamAdminAgentApiCompletion({ promptContext, settings, systemPr
   return readStreamingResponse(response, onDelta);
 }
 
+function parseAdminCodexTokens(settings) {
+  const raw = settings?.codexTokens;
+
+  if (!raw) {
+    return null;
+  }
+
+  if (typeof raw === "object") {
+    return raw;
+  }
+
+  if (typeof raw !== "string") {
+    return null;
+  }
+
+  try {
+    return JSON.parse(raw);
+  } catch {
+    return null;
+  }
+}
+
+async function streamAdminAgentCodexCompletion({ promptContext, settings, systemPrompt, messages, onDelta, signal }) {
+  if (!settings?.model?.trim() && !settings?.codexModel?.trim()) {
+    throw new Error("Choose a Codex model before sending a message.");
+  }
+
+  const tokens = parseAdminCodexTokens(settings);
+
+  if (!tokens?.accessToken) {
+    const error = new Error("Sign in with ChatGPT before sending a message.");
+    error.requiresCodexLogin = true;
+    throw error;
+  }
+
+  const apiRequest = await prepareAdminAgentApiRequest({
+    messages,
+    promptContext,
+    settings,
+    systemPrompt
+  });
+  const response = await fetch(apiRequest.requestUrl, {
+    ...buildFetchRequestInit(apiRequest, signal)
+  });
+
+  if (!response.ok) {
+    await throwResponseError(response);
+  }
+
+  if (!response.body) {
+    throw new Error("Streaming response body is not available.");
+  }
+
+  return readCodexStreamingResponse(response, onDelta);
+}
+
 export async function streamAdminAgentCompletion({ promptContext, settings, systemPrompt, messages, onDelta, signal }) {
   const provider = config.normalizeAdminChatLlmProvider(settings?.provider);
   const normalizedPromptContext = normalizeAdminPromptContext(promptContext, systemPrompt);
@@ -512,6 +653,17 @@ export async function streamAdminAgentCompletion({ promptContext, settings, syst
     return result.responseMeta;
   }
 
+  if (provider === config.ADMIN_CHAT_LLM_PROVIDER.CODEX) {
+    return streamAdminAgentCodexCompletion({
+      messages,
+      onDelta,
+      promptContext: normalizedPromptContext,
+      settings,
+      signal,
+      systemPrompt: normalizedPromptContext.systemPrompt
+    });
+  }
+
   return streamAdminAgentApiCompletion({
     messages,
     onDelta,
diff --git a/app/L0/_all/mod/_core/admin/views/agent/config.js b/app/L0/_all/mod/_core/admin/views/agent/config.js
index 2a00ef4a..31ec9ad0 100644
--- a/app/L0/_all/mod/_core/admin/views/agent/config.js
+++ b/app/L0/_all/mod/_core/admin/views/agent/config.js
@@ -1,10 +1,12 @@
 import { DEFAULT_PROMPT_BUDGET_RATIOS, normalizePromptBudgetRatios } from "/mod/_core/agent_prompt/prompt-items.js";
+import { CODEX_DEFAULT_MODEL_ID } from "/mod/_core/openai_codex/models.js";
 
 export const ADMIN_CHAT_CONFIG_PATH = "~/conf/admin-chat.yaml";
 export const ADMIN_CHAT_HISTORY_PATH = "~/hist/admin-chat.json";
 export const DEFAULT_ADMIN_CHAT_MAX_TOKENS = 120_000;
 export const ADMIN_CHAT_LLM_PROVIDER = {
   API: "api",
+  CODEX: "openai-codex",
   LOCAL: "local"
 };
 
@@ -15,6 +17,8 @@ export const ADMIN_CHAT_LOCAL_PROVIDER = {
 export const DEFAULT_ADMIN_CHAT_SETTINGS = {
   apiEndpoint: "https://openrouter.ai/api/v1/chat/completions",
   apiKey: "",
+  codexModel: CODEX_DEFAULT_MODEL_ID,
+  codexTokens: "",
   huggingfaceDtype: "q4",
   huggingfaceModel: "",
   localProvider: ADMIN_CHAT_LOCAL_PROVIDER.HUGGINGFACE,
@@ -26,9 +30,15 @@ export const DEFAULT_ADMIN_CHAT_SETTINGS = {
 };
 
 export function normalizeAdminChatLlmProvider(value) {
-  return value === ADMIN_CHAT_LLM_PROVIDER.LOCAL
-    ? ADMIN_CHAT_LLM_PROVIDER.LOCAL
-    : ADMIN_CHAT_LLM_PROVIDER.API;
+  if (value === ADMIN_CHAT_LLM_PROVIDER.LOCAL) {
+    return ADMIN_CHAT_LLM_PROVIDER.LOCAL;
+  }
+
+  if (value === ADMIN_CHAT_LLM_PROVIDER.CODEX) {
+    return ADMIN_CHAT_LLM_PROVIDER.CODEX;
+  }
+
+  return ADMIN_CHAT_LLM_PROVIDER.API;
 }
 
 export function normalizeAdminChatLocalProvider(value) {
diff --git a/app/L0/_all/mod/_core/admin/views/agent/panel.html b/app/L0/_all/mod/_core/admin/views/agent/panel.html
index bf67faaa..fc15ede6 100644
--- a/app/L0/_all/mod/_core/admin/views/agent/panel.html
+++ b/app/L0/_all/mod/_core/admin/views/agent/panel.html
@@ -188,6 +188,14 @@ <h2>Provider and model configuration</h2>
                     >
                       <span>API</span>
                     </button>
+                    <button
+                      type="button"
+                      class="secondary-button dialog-segmented-button"
+                      :class="{ 'is-active': $store.adminAgent.isSettingsDraftUsingCodexProvider }"
+                      @click="$store.adminAgent.setSettingsProvider('openai-codex')"
+                    >
+                      <span>ChatGPT</span>
+                    </button>
                     <button
                       type="button"
                       class="secondary-button dialog-segmented-button"
@@ -211,6 +219,61 @@ <h2>Provider and model configuration</h2>
                       <input type="password" x-model="$store.adminAgent.settingsDraft.apiKey" />
                     </label>
                   </div>
+                  <div x-show="$store.adminAgent.isSettingsDraftUsingCodexProvider" x-cloak class="admin-agent-codex-settings">
+                    <template x-if="!$store.adminAgent.isCodexLoginActive && !$store.adminAgent.hasCodexTokens">
+                      <div class="admin-agent-codex-login">
+                        <p class="field-note">
+                          Uses your existing ChatGPT Plus subscription via the official OpenAI Codex OAuth flow.
+                          Nothing is billed to the OpenAI platform API on top of your subscription.
+                        </p>
+                        <p class="field-note">
+                          This sign-in is local to the admin chat. Sign in separately in the overlay settings to enable Codex there too.
+                        </p>
+                        <button type="button" class="primary-button" @click="$store.adminAgent.startCodexLogin()">
+                          Sign in with ChatGPT
+                        </button>
+                        <p class="field-note" x-show="$store.adminAgent.codexLoginError" x-text="$store.adminAgent.codexLoginError"></p>
+                      </div>
+                    </template>
+                    <template x-if="$store.adminAgent.isCodexLoginActive">
+                      <div class="admin-agent-codex-login-pending">
+                        <p>
+                          Open
+                          <a :href="$store.adminAgent.codexVerificationUrl" target="_blank" rel="noopener noreferrer" x-text="$store.adminAgent.codexVerificationUrl"></a>
+                          and enter this code:
+                        </p>
+                        <p class="admin-agent-codex-user-code" x-text="$store.adminAgent.codexUserCode"></p>
+                        <button type="button" class="secondary-button" @click="$store.adminAgent.cancelCodexLogin()">
+                          Cancel
+                        </button>
+                      </div>
+                    </template>
+                    <template x-if="!$store.adminAgent.isCodexLoginActive && $store.adminAgent.hasCodexTokens">
+                      <div class="admin-agent-codex-signed-in">
+                        <p class="field-note">
+                          Signed in<span x-show="$store.adminAgent.codexAccountIdSummary">
+                            as <code x-text="$store.adminAgent.codexAccountIdSummary"></code></span>.
+                        </p>
+                        <label class="field">
+                          <span>Model</span>
+                          <select x-model="$store.adminAgent.settingsDraft.codexModel">
+                            <template x-for="entry in $store.adminAgent.codexModelCatalog" :key="entry.id">
+                              <option :value="entry.id" x-text="`${entry.id} — ${entry.description}`"></option>
+                            </template>
+                            <template x-if="!$store.adminAgent.isCodexSelectedModelInCatalog">
+                              <option :value="$store.adminAgent.settingsDraft.codexModel" x-text="$store.adminAgent.settingsDraft.codexModel"></option>
+                            </template>
+                          </select>
+                          <p class="field-note" x-show="!$store.adminAgent.isCodexSelectedModelInCatalog">
+                            ⚠ Not currently listed for your account. Pick another model if chats fail.
+                          </p>
+                        </label>
+                        <button type="button" class="secondary-button" @click="$store.adminAgent.clearCodexLogin()">
+                          Sign out
+                        </button>
+                      </div>
+                    </template>
+                  </div>
                   <div x-show="$store.adminAgent.isSettingsDraftUsingLocalProvider" x-cloak class="admin-agent-local-settings">
                     <div class="admin-agent-local-provider-panel">
                       <x-component path="/mod/_core/huggingface/config-sidebar.html" mode="admin"></x-component>
diff --git a/app/L0/_all/mod/_core/admin/views/agent/storage.js b/app/L0/_all/mod/_core/admin/views/agent/storage.js
index 2dbeb99d..55525414 100644
--- a/app/L0/_all/mod/_core/admin/views/agent/storage.js
+++ b/app/L0/_all/mod/_core/admin/views/agent/storage.js
@@ -1,4 +1,9 @@
 import * as config from "/mod/_core/admin/views/agent/config.js";
+import {
+  decodeStoredCodexTokens,
+  encodeStoredCodexTokens
+} from "/mod/_core/openai_codex/token_envelope.js";
+import { CODEX_DEFAULT_MODEL_ID, normalizeCodexModelId } from "/mod/_core/openai_codex/models.js";
 
 function createDefaultConfig() {
   return {
@@ -138,11 +143,17 @@ async function normalizeStoredConfig(runtime, parsedConfig) {
     runtime,
     storedConfig.api_key || storedConfig.apiKey || config.DEFAULT_ADMIN_CHAT_SETTINGS.apiKey || ""
   );
+  const storedCodexTokens = await decodeStoredCodexTokens(
+    runtime,
+    storedConfig.codex_tokens || storedConfig.codexTokens || ""
+  );
 
   return {
     settings: {
       apiEndpoint: String(storedConfig.api_endpoint || storedConfig.apiEndpoint || config.DEFAULT_ADMIN_CHAT_SETTINGS.apiEndpoint || "").trim(),
       apiKey: storedApiKey.value,
+      codexModel: normalizeCodexModelId(storedConfig.codex_model || storedConfig.codexModel || CODEX_DEFAULT_MODEL_ID),
+      codexTokens: storedCodexTokens.value,
       huggingfaceDtype: String(
         storedConfig.huggingface_dtype || storedConfig.huggingfaceDtype || config.DEFAULT_ADMIN_CHAT_SETTINGS.huggingfaceDtype || ""
       ).trim(),
@@ -156,7 +167,9 @@ async function normalizeStoredConfig(runtime, parsedConfig) {
       promptBudgetRatios: normalizeStoredPromptBudgetRatios(storedConfig),
       provider,
       storedApiKeyLocked: storedApiKey.locked,
-      storedApiKeyValue: storedApiKey.storedValue
+      storedApiKeyValue: storedApiKey.storedValue,
+      storedCodexTokensLocked: storedCodexTokens.locked,
+      storedCodexTokensValue: storedCodexTokens.storedValue
     },
     systemPrompt: String(
       storedConfig.custom_system_prompt ||
@@ -170,9 +183,11 @@ async function normalizeStoredConfig(runtime, parsedConfig) {
 
 async function buildStoredConfigPayload(runtime, { settings, systemPrompt }) {
   const normalizedSystemPrompt = typeof systemPrompt === "string" ? systemPrompt.trim() : "";
+  const encodedCodexTokens = await encodeStoredCodexTokens(runtime, settings);
   const payload = {
     api_endpoint: String(settings?.apiEndpoint || config.DEFAULT_ADMIN_CHAT_SETTINGS.apiEndpoint || "").trim(),
     api_key: await encodeStoredApiKey(runtime, settings),
+    codex_model: normalizeCodexModelId(settings?.codexModel || CODEX_DEFAULT_MODEL_ID),
     huggingface_dtype: String(settings?.huggingfaceDtype || config.DEFAULT_ADMIN_CHAT_SETTINGS.huggingfaceDtype || "").trim(),
     huggingface_model: String(settings?.huggingfaceModel || config.DEFAULT_ADMIN_CHAT_SETTINGS.huggingfaceModel || "").trim(),
     local_provider: config.normalizeAdminChatLocalProvider(settings?.localProvider),
@@ -188,6 +203,16 @@ async function buildStoredConfigPayload(runtime, { settings, systemPrompt }) {
     }
   };
 
+  // When the user signs out `encodedCodexTokens` is an empty string; make the
+  // absence explicit in the YAML payload so sign-out deterministically clears
+  // the stored entry on disk instead of relying on the full-rewrite behaviour
+  // of `fileWrite` alone.
+  if (encodedCodexTokens) {
+    payload.codex_tokens = encodedCodexTokens;
+  } else {
+    delete payload.codex_tokens;
+  }
+
   if (normalizedSystemPrompt) {
     payload.custom_system_prompt = normalizedSystemPrompt;
   }
@@ -220,6 +245,8 @@ export async function saveAdminChatConfig(nextConfig) {
     if (nextConfig?.settings && typeof nextConfig.settings === "object") {
       nextConfig.settings.storedApiKeyLocked = false;
       nextConfig.settings.storedApiKeyValue = String(payload.api_key || "").trim();
+      nextConfig.settings.storedCodexTokensLocked = false;
+      nextConfig.settings.storedCodexTokensValue = String(payload.codex_tokens || "").trim();
     }
   } catch (error) {
     throw new Error(`Unable to save admin chat config: ${error.message}`);
diff --git a/app/L0/_all/mod/_core/admin/views/agent/store.js b/app/L0/_all/mod/_core/admin/views/agent/store.js
index 4aacf7b4..de8a55f5 100644
--- a/app/L0/_all/mod/_core/admin/views/agent/store.js
+++ b/app/L0/_all/mod/_core/admin/views/agent/store.js
@@ -1,5 +1,12 @@
 import * as config from "/mod/_core/admin/views/agent/config.js";
 import * as agentApi from "/mod/_core/admin/views/agent/api.js";
+import * as codexAuthFlow from "/mod/_core/openai_codex/auth_flow.js";
+import * as codexModels from "/mod/_core/openai_codex/models.js";
+import { discoverCodexModels } from "/mod/_core/openai_codex/models_discovery.js";
+import {
+  parseCodexTokens as parseAdminCodexTokensDraft,
+  serializeCodexTokens as serializeAdminCodexTokensDraft
+} from "/mod/_core/openai_codex/token_envelope.js";
 import {
   installPromptItemAccess,
   rebalancePromptBudgetRatios
@@ -49,6 +56,62 @@ function clonePromptBudgetRatios(value = {}) {
   };
 }
 
+function createAdminCodexLoginState() {
+  return {
+    deviceAuthId: "",
+    error: "",
+    status: codexAuthFlow.CODEX_AUTH_FLOW_STATUS.IDLE,
+    userCode: "",
+    verificationUrl: ""
+  };
+}
+
+// Merge the live Codex catalog with the static fallback shipped in
+// `models.js`. The runtime catalog wins when both have the same id so live
+// descriptions and ordering are preserved; static-only entries trail the
+// runtime ones so a user with a broken or empty discovery response still has
+// something to pick.
+function mergeAdminCodexModelCatalogs(runtimeCatalog, staticCatalog) {
+  const runtime = Array.isArray(runtimeCatalog) ? runtimeCatalog : [];
+  const staticList = Array.isArray(staticCatalog) ? staticCatalog : [];
+  const seen = new Set();
+  const merged = [];
+
+  for (const entry of runtime) {
+    if (!entry || typeof entry.id !== "string" || !entry.id) {
+      continue;
+    }
+
+    if (seen.has(entry.id)) {
+      continue;
+    }
+
+    seen.add(entry.id);
+    merged.push({
+      description: typeof entry.description === "string" ? entry.description : "",
+      id: entry.id
+    });
+  }
+
+  for (const entry of staticList) {
+    if (!entry || typeof entry.id !== "string" || !entry.id) {
+      continue;
+    }
+
+    if (seen.has(entry.id)) {
+      continue;
+    }
+
+    seen.add(entry.id);
+    merged.push({
+      description: typeof entry.description === "string" ? entry.description : "",
+      id: entry.id
+    });
+  }
+
+  return merged;
+}
+
 function createPromptBudgetSegments(ratios = {}) {
   const normalizedRatios = clonePromptBudgetRatios(ratios);
 
@@ -206,6 +269,7 @@ function logAdminAgentError(context, error) {
 
 const MAX_PROTOCOL_RETRY_COUNT = 2;
 const MAX_COMPACT_TRIM_ATTEMPTS = 4;
+const CODEX_CATALOG_TTL_MS = 10 * 60 * 1000;
 
 const evaluateAdminAssistantMessage = globalThis.space.extend(
   import.meta,
@@ -307,6 +371,10 @@ function summarizeAdminAgentLlmSelection(settings, huggingfaceState) {
     return configuredModelId || activeModelId || "No model";
   }
 
+  if (provider === config.ADMIN_CHAT_LLM_PROVIDER.CODEX) {
+    return codexModels.normalizeCodexModelId(settings?.codexModel);
+  }
+
   return agentView.summarizeLlmConfig(settings?.apiEndpoint || "", settings?.model || "");
 }
 
@@ -371,9 +439,16 @@ const model = {
   },
   rerunningMessageId: "",
   runtime: null,
+  codexCatalogFetchedAt: 0,
+  codexCatalogPromise: null,
+  codexLoginAbortController: null,
+  codexLoginState: createAdminCodexLoginState(),
+  codexRuntimeCatalog: [],
   settings: {
     apiEndpoint: "",
     apiKey: "",
+    codexModel: config.DEFAULT_ADMIN_CHAT_SETTINGS.codexModel,
+    codexTokens: "",
     huggingfaceDtype: config.DEFAULT_ADMIN_CHAT_SETTINGS.huggingfaceDtype,
     huggingfaceModel: "",
     localProvider: config.DEFAULT_ADMIN_CHAT_SETTINGS.localProvider,
@@ -381,11 +456,15 @@ const model = {
     model: "",
     paramsText: "",
     promptBudgetRatios: { ...config.DEFAULT_ADMIN_CHAT_SETTINGS.promptBudgetRatios },
-    provider: config.DEFAULT_ADMIN_CHAT_SETTINGS.provider
+    provider: config.DEFAULT_ADMIN_CHAT_SETTINGS.provider,
+    storedCodexTokensLocked: false,
+    storedCodexTokensValue: ""
   },
   settingsDraft: {
     apiEndpoint: "",
     apiKey: "",
+    codexModel: config.DEFAULT_ADMIN_CHAT_SETTINGS.codexModel,
+    codexTokens: "",
     huggingfaceDtype: config.DEFAULT_ADMIN_CHAT_SETTINGS.huggingfaceDtype,
     huggingfaceModel: "",
     localProvider: config.DEFAULT_ADMIN_CHAT_SETTINGS.localProvider,
@@ -393,7 +472,9 @@ const model = {
     model: "",
     paramsText: "",
     promptBudgetRatios: { ...config.DEFAULT_ADMIN_CHAT_SETTINGS.promptBudgetRatios },
-    provider: config.DEFAULT_ADMIN_CHAT_SETTINGS.provider
+    provider: config.DEFAULT_ADMIN_CHAT_SETTINGS.provider,
+    storedCodexTokensLocked: false,
+    storedCodexTokensValue: ""
   },
   status: "Loading admin agent...",
   stopRequested: false,
@@ -484,6 +565,53 @@ const model = {
     return config.normalizeAdminChatLlmProvider(this.settingsDraft.provider) === config.ADMIN_CHAT_LLM_PROVIDER.LOCAL;
   },
 
+  get isSettingsDraftUsingCodexProvider() {
+    return config.normalizeAdminChatLlmProvider(this.settingsDraft.provider) === config.ADMIN_CHAT_LLM_PROVIDER.CODEX;
+  },
+
+  get codexModelCatalog() {
+    return mergeAdminCodexModelCatalogs(this.codexRuntimeCatalog, codexModels.CODEX_MODEL_CATALOG);
+  },
+
+  get isCodexSelectedModelInCatalog() {
+    const selected = typeof this.settingsDraft?.codexModel === "string"
+      ? this.settingsDraft.codexModel.trim()
+      : "";
+
+    if (!selected) {
+      return true;
+    }
+
+    return this.codexModelCatalog.some((entry) => entry.id === selected);
+  },
+
+  get isCodexLoginActive() {
+    return this.codexLoginState.status === codexAuthFlow.CODEX_AUTH_FLOW_STATUS.STARTING ||
+      this.codexLoginState.status === codexAuthFlow.CODEX_AUTH_FLOW_STATUS.PENDING;
+  },
+
+  get hasCodexTokens() {
+    const parsed = parseAdminCodexTokensDraft(this.settingsDraft?.codexTokens);
+    return Boolean(parsed?.accessToken);
+  },
+
+  get codexVerificationUrl() {
+    return this.codexLoginState.verificationUrl || "";
+  },
+
+  get codexUserCode() {
+    return this.codexLoginState.userCode || "";
+  },
+
+  get codexLoginError() {
+    return this.codexLoginState.error || "";
+  },
+
+  get codexAccountIdSummary() {
+    const parsed = parseAdminCodexTokensDraft(this.settingsDraft?.codexTokens);
+    return parsed?.accountId || "";
+  },
+
   get huggingfaceSavedModels() {
     return Array.isArray(this.huggingface.savedModels) ? this.huggingface.savedModels : [];
   },
@@ -1648,6 +1776,14 @@ const model = {
       .catch((error) => {
         this.reportError("warming the local-provider settings draft", error);
       });
+
+    // Kick off live Codex catalog discovery so a signed-in user sees the
+    // models actually available to their account. Failures fall back to the
+    // shipped static catalog so the dropdown always has entries.
+    void this.refreshCodexModelCatalog().catch((error) => {
+      this.reportError("refreshing the Codex model catalog", error);
+    });
+
     openDialog(this.refs.settingsDialog);
   },
 
@@ -1667,6 +1803,156 @@ const model = {
         this.reportError("warming the local-provider settings draft", error);
       });
     }
+
+    if (this.isSettingsDraftUsingCodexProvider && !this.settingsDraft.codexModel) {
+      this.settingsDraft = {
+        ...this.settingsDraft,
+        codexModel: codexModels.CODEX_DEFAULT_MODEL_ID
+      };
+    }
+  },
+
+  async startCodexLogin() {
+    if (this.isCodexLoginActive) {
+      return;
+    }
+
+    const controller = typeof AbortController === "function" ? new AbortController() : null;
+    this.codexLoginAbortController = controller;
+    this.codexLoginState = {
+      ...createAdminCodexLoginState(),
+      status: codexAuthFlow.CODEX_AUTH_FLOW_STATUS.STARTING
+    };
+
+    try {
+      const tokens = await codexAuthFlow.runCodexDeviceAuthorizationFlow({
+        onStatusChange: (event) => {
+          this.codexLoginState = {
+            deviceAuthId: event.deviceAuthId || this.codexLoginState.deviceAuthId || "",
+            error: event.error || "",
+            status: event.status,
+            userCode: event.userCode || this.codexLoginState.userCode || "",
+            verificationUrl: event.verificationUrl || this.codexLoginState.verificationUrl || ""
+          };
+        },
+        signal: controller?.signal
+      });
+
+      this.settingsDraft = {
+        ...this.settingsDraft,
+        codexTokens: serializeAdminCodexTokensDraft(tokens)
+      };
+      this.codexLoginState = createAdminCodexLoginState();
+
+      // The signed-in user's catalog depends on the ChatGPT subscription
+      // attached to the newly issued access token. Force a re-discovery now
+      // so the model dropdown reflects the live list before the user picks.
+      void this.refreshCodexModelCatalog({ force: true }).catch(() => {});
+    } catch (error) {
+      if (error?.name !== "AbortError") {
+        this.codexLoginState = {
+          ...createAdminCodexLoginState(),
+          error: error?.message || String(error),
+          status: codexAuthFlow.CODEX_AUTH_FLOW_STATUS.FAILED
+        };
+      } else {
+        this.codexLoginState = createAdminCodexLoginState();
+      }
+    } finally {
+      this.codexLoginAbortController = null;
+    }
+  },
+
+  cancelCodexLogin() {
+    if (this.codexLoginAbortController) {
+      this.codexLoginAbortController.abort();
+    }
+
+    this.codexLoginState = createAdminCodexLoginState();
+    this.codexLoginAbortController = null;
+  },
+
+  clearCodexLogin() {
+    this.settingsDraft = {
+      ...this.settingsDraft,
+      codexTokens: ""
+    };
+    this.codexLoginState = createAdminCodexLoginState();
+  },
+
+  // Discover the live Codex model catalog. The runtime catalog is cached
+  // in-memory with a 10-minute TTL so opening the settings dialog repeatedly
+  // does not spam the Codex models endpoint. Concurrent callers coalesce
+  // through the shared in-flight promise. A failed discovery (network, CORS,
+  // missing tokens) resolves with an empty runtime catalog so the static
+  // fallback in `models.js` remains selectable.
+  async refreshCodexModelCatalog({ force = false } = {}) {
+    if (!force && this.codexCatalogPromise) {
+      return this.codexCatalogPromise;
+    }
+
+    if (!force && this.codexCatalogFetchedAt && (Date.now() - this.codexCatalogFetchedAt) < CODEX_CATALOG_TTL_MS) {
+      return this.codexRuntimeCatalog;
+    }
+
+    const tokens = parseAdminCodexTokensDraft(this.settings?.codexTokens);
+    const accessToken = typeof tokens?.accessToken === "string" ? tokens.accessToken.trim() : "";
+
+    if (!accessToken) {
+      this.codexRuntimeCatalog = [];
+      this.codexCatalogFetchedAt = Date.now();
+      return this.codexRuntimeCatalog;
+    }
+
+    const accountId = typeof tokens?.accountId === "string" ? tokens.accountId.trim() : "";
+    const pending = (async () => {
+      try {
+        const catalog = await discoverCodexModels({
+          accessToken,
+          chatGPTAccountId: accountId
+        });
+        this.codexRuntimeCatalog = Array.isArray(catalog) ? catalog : [];
+      } catch {
+        this.codexRuntimeCatalog = [];
+      } finally {
+        this.codexCatalogFetchedAt = Date.now();
+        this.codexCatalogPromise = null;
+      }
+
+      return this.codexRuntimeCatalog;
+    })();
+
+    this.codexCatalogPromise = pending;
+    return pending;
+  },
+
+  // Called by the `prepareAdminAgentApiRequest` Codex hook after a server-side
+  // refresh rotated the stored refresh token. The hook delegates here instead
+  // of writing the config file directly so that encoding, lock-state
+  // bookkeeping, and persistence stay owned by `storage.js`.
+  async applyRefreshedCodexTokens(tokens) {
+    const serialized = serializeAdminCodexTokensDraft(tokens);
+
+    if (!serialized) {
+      return;
+    }
+
+    this.settings = {
+      ...this.settings,
+      codexTokens: serialized
+    };
+
+    const dialogElement = this.refs?.settingsDialog;
+    const isDialogOpen = Boolean(dialogElement && typeof dialogElement.hasAttribute === "function" && dialogElement.hasAttribute("open"));
+
+    if (isDialogOpen) {
+      this.settingsDraft = {
+        ...this.settingsDraft,
+        codexTokens: serialized
+      };
+    }
+
+    await this.persistConfig();
   },
 
   setSettingsPromptBudgetRatio(key, value) {
@@ -1877,6 +2163,8 @@ const model = {
     this.settings = {
       apiEndpoint: (this.settingsDraft.apiEndpoint || "").trim(),
       apiKey: (this.settingsDraft.apiKey || "").trim(),
+      codexModel: codexModels.normalizeCodexModelId(this.settingsDraft.codexModel),
+      codexTokens: typeof this.settingsDraft.codexTokens === "string" ? this.settingsDraft.codexTokens.trim() : "",
       huggingfaceDtype: (this.settingsDraft.huggingfaceDtype || "").trim(),
       huggingfaceModel: normalizeHuggingFaceModelInput(this.settingsDraft.huggingfaceModel || ""),
       localProvider,
@@ -1886,14 +2174,20 @@ const model = {
       promptBudgetRatios: clonePromptBudgetRatios(this.settingsDraft.promptBudgetRatios),
       provider,
       storedApiKeyLocked: this.settings.storedApiKeyLocked === true,
-      storedApiKeyValue: String(this.settings.storedApiKeyValue || "")
+      storedApiKeyValue: String(this.settings.storedApiKeyValue || ""),
+      storedCodexTokensLocked: this.settings.storedCodexTokensLocked === true,
+      storedCodexTokensValue: String(this.settings.storedCodexTokensValue || "")
     };
 
     try {
       await this.persistConfig();
-      this.status = provider === config.ADMIN_CHAT_LLM_PROVIDER.LOCAL
-        ? `Local ${getConfiguredLocalProviderLabel(this.settings)} settings updated. Preparing the selected model in the background.`
-        : "API LLM settings updated.";
+      if (provider === config.ADMIN_CHAT_LLM_PROVIDER.LOCAL) {
+        this.status = `Local ${getConfiguredLocalProviderLabel(this.settings)} settings updated. Preparing the selected model in the background.`;
+      } else if (provider === config.ADMIN_CHAT_LLM_PROVIDER.CODEX) {
+        this.status = "ChatGPT settings updated.";
+      } else {
+        this.status = "API LLM settings updated.";
+      }
       this.closeSettingsDialog();
 
       if (provider === config.ADMIN_CHAT_LLM_PROVIDER.LOCAL) {
diff --git a/app/L0/_all/mod/_core/documentation/docs/agent/onscreen-agent-runtime.md b/app/L0/_all/mod/_core/documentation/docs/agent/onscreen-agent-runtime.md
index e0eb2309..0bdf1fd7 100644
--- a/app/L0/_all/mod/_core/documentation/docs/agent/onscreen-agent-runtime.md
+++ b/app/L0/_all/mod/_core/documentation/docs/agent/onscreen-agent-runtime.md
@@ -110,7 +110,7 @@ The settings and prompt-history dialogs reuse the shared `_core/visual/forms/dia
 Caught overlay runtime errors are logged through `console.error` and shown through the shared toast stack from `_core/visual/chrome/toast.js`. The composer placeholder still belongs to ready-state and lightweight status guidance, so raw exception text should not be pushed into the textarea placeholder.
 Overlay execution transcripts now use the shared YAML-first formatter for both console logs and returned values, emitting block headers such as `log↓`, `warn↓`, `error↓`, and `result↓` so structured telemetry stays complete across the thread and execution cards. Immediately before those execution results are serialized back into the `execution-output` follow-up turn, the overlay also runs the shared assistant-message evaluation seam; the current first-party hook from `_core/agent-chat` prepends synthetic loop warnings when the exact same assistant message reappears, using `info` on the 2nd send, `warn` on the 3rd send, and `error` on the 4th send onward.
 
-The settings dialog now has two provider tabs named `API` and `Local`. `API` keeps the OpenAI-compatible endpoint, model, and key fields. `Local` mounts the shared Hugging Face config sidebar in onscreen mode, so the overlay reads the same saved-model list and live WebGPU worker state as the routed Local LLM page and the admin chat. Opening the Local tab should refresh saved-model shortcuts without booting the worker; saving local settings persists the selected repo id and dtype, then starts background model preparation. When no local model is selected and saved models exist, the Local panel preselects the browser-wide last successfully loaded saved model from `_core/huggingface/manager.js`, falling back to the first saved entry if that last-used entry was discarded. When no local model is selected, no local model is loaded, and the shared saved-model list is empty, the Local panel prefills the Hugging Face model field with the same testing-page default: `onnx-community/gemma-4-E4B-it-ONNX`.
+The settings dialog now has three provider tabs named `API`, `Codex`, and `Local`. `API` keeps the OpenAI-compatible endpoint, model, and key fields. `Codex` uses an existing OpenAI ChatGPT Plus subscription through the OpenAI Codex OAuth flow instead of an API key, with curated model selection and silent server-side token refresh; the request rewrite, token storage, and proxy-routing contract live in `app/L0/_all/mod/_core/openai_codex/AGENTS.md`. `Local` mounts the shared Hugging Face config sidebar in onscreen mode, so the overlay reads the same saved-model list and live WebGPU worker state as the routed Local LLM page and the admin chat. Opening the Local tab should refresh saved-model shortcuts without booting the worker; saving local settings persists the selected repo id and dtype, then starts background model preparation. When no local model is selected and saved models exist, the Local panel preselects the browser-wide last successfully loaded saved model from `_core/huggingface/manager.js`, falling back to the first saved entry if that last-used entry was discarded. When no local model is selected, no local model is loaded, and the shared saved-model list is empty, the Local panel prefills the Hugging Face model field with the same testing-page default: `onnx-community/gemma-4-E4B-it-ONNX`.
 
 The API-key composer blocker applies only to the default API-provider configuration with no API key, where the composer shows a centered `Set LLM API key` action over the disabled textarea. Local Hugging Face mode can send without an API key and falls back to loading the selected local model on the first message if background preparation has not finished.
 
diff --git a/app/L0/_all/mod/_core/documentation/docs/app/admin-agent-runtime.md b/app/L0/_all/mod/_core/documentation/docs/app/admin-agent-runtime.md
index 458c5902..575ecb57 100644
--- a/app/L0/_all/mod/_core/documentation/docs/app/admin-agent-runtime.md
+++ b/app/L0/_all/mod/_core/documentation/docs/app/admin-agent-runtime.md
@@ -60,6 +60,7 @@ Manual loads follow the same placement rule as the onscreen agent: `history` pla
 The admin settings modal now starts with a provider switch:
 
 - `API`: the existing endpoint, model, API key, params, and max-token settings
+- `Codex`: an OAuth-authenticated path that uses an existing OpenAI ChatGPT Plus subscription instead of an API key. See `app/L0/_all/mod/_core/openai_codex/AGENTS.md` for the request rewrite, token storage, and proxy-routing contract
 - `Local`: a browser-local Hugging Face path that uses Transformers.js on WebGPU
 
 Below those provider-specific sections, the shared settings area also exposes `max_tokens`, prompt-budget ratios for `system`, `history`, and `transient`, plus the separate single-history-message ratio used by the shared trimming path. Those values are persisted in `prompt_budget_ratios` and feed the same prompt-budget builder used by the onscreen agent: prepared entries and prompt items reuse cached token counts, single live history messages are capped first, contributor-level trims must each be at least `250` tokens, and `system` or `transient` falls back to one combined section-body trim when smaller contributor cuts would otherwise be required.
diff --git a/app/L0/_all/mod/_core/documentation/docs/app/modules-and-extensions.md b/app/L0/_all/mod/_core/documentation/docs/app/modules-and-extensions.md
index 9a844806..cc077c9e 100644
--- a/app/L0/_all/mod/_core/documentation/docs/app/modules-and-extensions.md
+++ b/app/L0/_all/mod/_core/documentation/docs/app/modules-and-extensions.md
@@ -14,6 +14,7 @@ This doc covers how browser code is delivered and composed.
 - `app/L0/_all/mod/_core/visual/AGENTS.md`
 - `app/L0/_all/mod/_core/login_hooks/AGENTS.md`
 - `app/L0/_all/mod/_core/open_router/AGENTS.md`
+- `app/L0/_all/mod/_core/openai_codex/AGENTS.md`
 - `app/L0/_all/mod/_core/onscreen_menu/AGENTS.md`
 - `app/L0/_all/mod/_core/promptinclude/AGENTS.md`
 - `app/L0/_all/mod/_core/router/AGENTS.md`
@@ -128,6 +129,7 @@ Rules:
 - `_core/login_hooks` is another headless helper module: it extends `_core/framework/initializer.js/initialize/end`, checks for the client-owned `~/meta/login_hooks.json` marker, dispatches `_core/login_hooks/first_login` once when that marker is absent, and dispatches `_core/login_hooks/any_login` when the authenticated shell was reached directly from `/login`; `_core/spaces` currently consumes `_core/login_hooks/first_login` through `ext/js/_core/login_hooks/first_login/big-bang-space.js` to copy or reuse the module-owned `Big Bang` onboarding space and rewrite the root-shell default route before dashboard loads
 - `_core/user_crypto` is a headless runtime helper module: it extends `_core/framework/initializer.js/initialize/end`, reads `space.api.userSelfInfo()` for the current backend `sessionId` plus `userCrypto` state, restores the unlocked browser key from per-tab session storage when available and otherwise from the encrypted `localStorage` blob through `/api/user_crypto_session_key`, uses that same endpoint to backfill the persisted local blob from an already-unlocked tab, stores that blob under one fixed key, logs concise `console.warn(...)` messages when cache or bootstrap restore paths fail but the module can still continue fail-soft, and signs the browser out when the backend reports that the user still needs a first-login `userCrypto` provisioning run at `/login` or when the persisted blob is stale for the current session
 - `_core/open_router` is a headless provider-policy module: it extends `_core/onscreen_agent/api.js/prepareOnscreenAgentApiRequest/end` and `_core/admin/views/agent/api.js/prepareAdminAgentApiRequest/end`, detects when API mode targets an OpenRouter upstream endpoint, and applies the OpenRouter-specific request headers there instead of hardcoding them inside the chat runtimes
+- `_core/openai_codex` is a headless provider module for the OpenAI Codex (ChatGPT Plus) subscription. It extends the same `prepareOnscreenAgentApiRequest/end` and `prepareAdminAgentApiRequest/end` seams, detects when the active settings select the Codex provider, ensures a fresh access token through the server-side refresh endpoint, rewrites the chat-completions body into the Codex Responses API shape, and routes the call through `space.proxy.buildUrl(...)` because `chatgpt.com` does not advertise CORS for direct browser fetches. Token persistence stays on the storage side via the shared `token_envelope` helpers, and a small `token_manager` coalesces concurrent refresh attempts
 
 Uncached HTML `<x-extension>` lookups are grouped before they hit `/api/extensions_load`:
 
diff --git a/app/L0/_all/mod/_core/onscreen_agent/AGENTS.md b/app/L0/_all/mod/_core/onscreen_agent/AGENTS.md
index 91e3cbe9..6d2073f9 100644
--- a/app/L0/_all/mod/_core/onscreen_agent/AGENTS.md
+++ b/app/L0/_all/mod/_core/onscreen_agent/AGENTS.md
@@ -279,7 +279,8 @@ Current overlay behavior:
 - `store.js` should hold one prompt-instance object per chat surface, rebuild full prompt input when the overlay boots or the thread is reset or a new LLM turn is about to start, and reuse the cached system or examples or transient sections without recomputing the full prepared payload or token counts on every streamed delta
 - prompt-history previews and token counts are derived from the prepared outbound request payload so request-prep extensions stay visible in the context window instead of only affecting the final fetch call, but exact recomputation should happen only at stable boundaries such as request preparation, stop handling, or settled assistant completion, never on every streamed delta
 - the settings modal and prompt-history modal must both use the shared fixed-chrome dialog shell from `_core/visual/forms/dialog.css` so their header and footer rows stay static while only the settings form body or prompt-history frame scrolls
-- the settings modal keeps a provider switch with exactly two tabs named `API` and `Local`; API settings show endpoint, model, and API key fields, while local settings mount the shared `_core/huggingface/config-sidebar.html` component in `onscreen` mode
+- the settings modal keeps a provider switch with three tabs named `API`, `ChatGPT`, and `Local`; API settings show endpoint, model, and API key fields, `ChatGPT` settings own the OpenAI Codex OAuth device-code login plus a model dropdown sourced from `/mod/_core/openai_codex/models.js`, and local settings mount the shared `_core/huggingface/config-sidebar.html` component in `onscreen` mode
+- the `ChatGPT` tab drives the login UX through `_core/openai_codex/auth_flow.js` and stores refreshed tokens in the overlay config under the same `userCrypto:`-prefixed encryption rule as `api_key`
 - local provider settings are limited to the shared Hugging Face browser runtime for now; the overlay subscribes to `_core/huggingface/manager.js`, reads the same saved-model list and live worker state as the routed Local LLM page, and should not boot the worker just because the modal opened
 - when no Hugging Face model is selected and the shared saved-model list has entries, the overlay local-provider panel should preselect the browser-wide last successfully loaded saved model from `_core/huggingface/manager.js`, falling back to the first saved entry if that last-used entry was discarded
 - when no Hugging Face model is selected, no model is loaded, and the shared saved-model list is empty, the overlay local-provider panel should prefill the model field with the same default used by the routed testing page: `onnx-community/gemma-4-E4B-it-ONNX`
diff --git a/app/L0/_all/mod/_core/onscreen_agent/api.js b/app/L0/_all/mod/_core/onscreen_agent/api.js
index 510d23a6..17787335 100644
--- a/app/L0/_all/mod/_core/onscreen_agent/api.js
+++ b/app/L0/_all/mod/_core/onscreen_agent/api.js
@@ -2,6 +2,12 @@ import * as config from "/mod/_core/onscreen_agent/config.js";
 import * as llmParams from "/mod/_core/onscreen_agent/llm-params.js";
 import { prepareOnscreenAgentCompletionRequest } from "/mod/_core/onscreen_agent/llm.js";
 import { getHuggingFaceManager } from "/mod/_core/huggingface/manager.js";
+import { CODEX_RESPONSES_ENDPOINT, applyCodexHeaders } from "/mod/_core/openai_codex/request.js";
+import { chatToResponsesRequest } from "/mod/_core/openai_codex/request_shape.js";
+import {
+  CODEX_STREAM_DONE_MARKER,
+  mapCodexEventToChatFrames
+} from "/mod/_core/openai_codex/sse_adapter.js";
 
 function extractTextContent(value) {
   if (typeof value === "string") {
@@ -186,6 +192,87 @@ async function readStreamingResponse(response, onDelta) {
   }
 }
 
+function parseCodexEventBlock(eventBlock, onDelta, meta) {
+  const lines = eventBlock.split(/\r?\n/u);
+
+  for (const line of lines) {
+    if (!line.startsWith("data:")) {
+      continue;
+    }
+
+    const value = line.slice(5).trim();
+
+    if (!value) {
+      continue;
+    }
+
+    let event;
+    try {
+      event = JSON.parse(value);
+    } catch {
+      continue;
+    }
+
+    // `mapCodexEventToChatFrames` throws on response.failed / error events,
+    // which bubbles up to the caller as a request failure. That is the
+    // intended behavior for terminal upstream errors mid-stream.
+    const frames = mapCodexEventToChatFrames(event);
+
+    for (const frame of frames) {
+      if (frame === CODEX_STREAM_DONE_MARKER) {
+        meta.sawDoneMarker = true;
+        return true;
+      }
+
+      const delta = extractStreamingDelta(frame);
+      noteCompletionPayload(meta, frame, delta);
+
+      if (delta) {
+        onDelta(delta);
+      }
+    }
+  }
+
+  return false;
+}
+
+async function readCodexStreamingResponse(response, onDelta) {
+  const meta = createCompletionResponseMeta("stream");
+  const reader = response.body.getReader();
+  const decoder = new TextDecoder();
+  let buffer = "";
+
+  while (true) {
+    const { done, value } = await reader.read();
+    buffer += decoder.decode(value || new Uint8Array(), {
+      stream: !done
+    });
+
+    let boundary = buffer.indexOf("\n\n");
+
+    while (boundary !== -1) {
+      const eventBlock = buffer.slice(0, boundary).trim();
+      buffer = buffer.slice(boundary + 2);
+
+      if (eventBlock && parseCodexEventBlock(eventBlock, onDelta, meta)) {
+        return finalizeCompletionResponseMeta(meta);
+      }
+
+      boundary = buffer.indexOf("\n\n");
+    }
+
+    if (done) {
+      const remaining = buffer.trim();
+
+      if (remaining) {
+        parseCodexEventBlock(remaining, onDelta, meta);
+      }
+
+      return finalizeCompletionResponseMeta(meta);
+    }
+  }
+}
+
 function normalizeCompletionMessagesForLocal(messages) {
   return (Array.isArray(messages) ? messages : [])
     .map((message) => {
@@ -357,6 +444,88 @@ export class OnscreenAgentApiLlmClient extends OnscreenAgentLlmClient {
   }
 }
 
+export class OnscreenAgentCodexLlmClient extends OnscreenAgentLlmClient {
+  validateSettings(settings = this.settings) {
+    // The Codex-provider path selects the model from `settings.codexModel`;
+    // `settings.model` is the API-tab field and may still hold the unrelated
+    // OpenRouter default (`anthropic/claude-sonnet-4.6`). The hook only falls
+    // back to `settings.model` if `codexModel` is empty, so require
+    // `codexModel` here and keep `settings.model` as a last-resort fallback
+    // that mirrors the admin-side validation.
+    if (!settings?.codexModel?.trim() && !settings?.model?.trim()) {
+      throw new Error("Choose a Codex model before sending a message.");
+    }
+
+    const tokens = parseCodexTokensFromSettings(settings);
+
+    if (!tokens?.accessToken) {
+      const error = new Error("Sign in with ChatGPT before sending a message.");
+      error.requiresCodexLogin = true;
+      throw error;
+    }
+  }
+
+  async resolveApiRequest(options = {}) {
+    const preparedRequest = await this.resolvePreparedRequest(options);
+    const effectiveSettings =
+      preparedRequest?.settings && typeof preparedRequest.settings === "object"
+        ? preparedRequest.settings
+        : this.settings;
+
+    return prepareOnscreenAgentApiRequest({
+      preparedRequest,
+      settings: effectiveSettings
+    });
+  }
+
+  async streamCompletion(options = {}) {
+    const onDelta = typeof options.onDelta === "function" ? options.onDelta : () => {};
+    const effectiveRequest = await this.resolveApiRequest(options);
+    const effectiveSettings =
+      effectiveRequest?.settings && typeof effectiveRequest.settings === "object"
+        ? effectiveRequest.settings
+        : this.settings;
+
+    this.validateSettings(effectiveSettings);
+
+    const response = await fetch(effectiveRequest.requestUrl, {
+      ...buildFetchRequestInit(effectiveRequest, options.signal)
+    });
+
+    if (!response.ok) {
+      await throwResponseError(response);
+    }
+
+    if (!response.body) {
+      throw new Error("Streaming response body is not available.");
+    }
+
+    return readCodexStreamingResponse(response, onDelta);
+  }
+}
+
+function parseCodexTokensFromSettings(settings = {}) {
+  const raw = settings?.codexTokens;
+
+  if (!raw) {
+    return null;
+  }
+
+  if (typeof raw === "object") {
+    return raw;
+  }
+
+  if (typeof raw !== "string") {
+    return null;
+  }
+
+  try {
+    return JSON.parse(raw);
+  } catch {
+    return null;
+  }
+}
+
 export class OnscreenAgentLocalLlmClient extends OnscreenAgentLlmClient {
   validateSettings(settings = this.settings) {
     const selection = config.getOnscreenAgentLocalModelSelection(settings);
@@ -450,6 +619,12 @@ export function createOnscreenAgentLlmClient(settings = config.DEFAULT_ONSCREEN_
     });
   }
 
+  if (provider === config.ONSCREEN_AGENT_LLM_PROVIDER.CODEX) {
+    return new OnscreenAgentCodexLlmClient({
+      settings
+    });
+  }
+
   return new OnscreenAgentApiLlmClient({
     settings
   });
diff --git a/app/L0/_all/mod/_core/onscreen_agent/config.js b/app/L0/_all/mod/_core/onscreen_agent/config.js
index bcca393a..72fd2885 100644
--- a/app/L0/_all/mod/_core/onscreen_agent/config.js
+++ b/app/L0/_all/mod/_core/onscreen_agent/config.js
@@ -1,4 +1,5 @@
 import { DEFAULT_PROMPT_BUDGET_RATIOS, normalizePromptBudgetRatios } from "/mod/_core/agent_prompt/prompt-items.js";
+import { CODEX_DEFAULT_MODEL_ID } from "/mod/_core/openai_codex/models.js";
 
 export const ONSCREEN_AGENT_CONFIG_PATH = "~/conf/onscreen-agent.yaml";
 export const ONSCREEN_AGENT_HISTORY_PATH = "~/hist/onscreen-agent.json";
@@ -6,6 +7,7 @@ export const ONSCREEN_AGENT_UI_STATE_STORAGE_KEY = "space.onscreenAgent.uiState"
 export const DEFAULT_ONSCREEN_AGENT_MAX_TOKENS = 120_000;
 export const ONSCREEN_AGENT_LLM_PROVIDER = Object.freeze({
   API: "api",
+  CODEX: "openai-codex",
   LOCAL: "local"
 });
 export const ONSCREEN_AGENT_LOCAL_PROVIDER = Object.freeze({
@@ -21,6 +23,8 @@ export const ONSCREEN_AGENT_HIDDEN_EDGE = Object.freeze({
 export const DEFAULT_ONSCREEN_AGENT_SETTINGS = {
   apiEndpoint: "https://openrouter.ai/api/v1/chat/completions",
   apiKey: "",
+  codexModel: CODEX_DEFAULT_MODEL_ID,
+  codexTokens: "",
   huggingfaceDtype: "q4",
   huggingfaceModel: "",
   localProvider: ONSCREEN_AGENT_LOCAL_PROVIDER.HUGGINGFACE,
@@ -36,9 +40,15 @@ function normalizeOnscreenAgentSettingText(value) {
 }
 
 export function normalizeOnscreenAgentLlmProvider(value) {
-  return value === ONSCREEN_AGENT_LLM_PROVIDER.LOCAL
-    ? ONSCREEN_AGENT_LLM_PROVIDER.LOCAL
-    : ONSCREEN_AGENT_LLM_PROVIDER.API;
+  if (value === ONSCREEN_AGENT_LLM_PROVIDER.LOCAL) {
+    return ONSCREEN_AGENT_LLM_PROVIDER.LOCAL;
+  }
+
+  if (value === ONSCREEN_AGENT_LLM_PROVIDER.CODEX) {
+    return ONSCREEN_AGENT_LLM_PROVIDER.CODEX;
+  }
+
+  return ONSCREEN_AGENT_LLM_PROVIDER.API;
 }
 
 export function normalizeOnscreenAgentLocalProvider(value) {
diff --git a/app/L0/_all/mod/_core/onscreen_agent/panel.html b/app/L0/_all/mod/_core/onscreen_agent/panel.html
index a4510bdc..461c0b8d 100644
--- a/app/L0/_all/mod/_core/onscreen_agent/panel.html
+++ b/app/L0/_all/mod/_core/onscreen_agent/panel.html
@@ -338,6 +338,14 @@ <h2>Model, credentials, params, and instructions</h2>
                       >
                         <span>API</span>
                       </button>
+                      <button
+                        type="button"
+                        class="secondary-button dialog-segmented-button"
+                        :class="{ 'is-active': $store.onscreenAgent.isSettingsDraftUsingCodexProvider }"
+                        @click="$store.onscreenAgent.setSettingsProvider('openai-codex')"
+                      >
+                        <span>ChatGPT</span>
+                      </button>
                       <button
                         type="button"
                         class="secondary-button dialog-segmented-button"
@@ -361,6 +369,61 @@ <h2>Model, credentials, params, and instructions</h2>
                         <input type="password" x-model="$store.onscreenAgent.settingsDraft.apiKey" />
                       </label>
                     </div>
+                    <div x-show="$store.onscreenAgent.isSettingsDraftUsingCodexProvider" x-cloak class="onscreen-agent-codex-settings">
+                      <template x-if="!$store.onscreenAgent.isCodexLoginActive && !$store.onscreenAgent.hasCodexTokens">
+                        <div class="onscreen-agent-codex-login">
+                          <p class="field-note">
+                            Uses your existing ChatGPT Plus subscription via the official OpenAI Codex OAuth flow.
+                            Nothing is billed to the OpenAI platform API on top of your subscription.
+                          </p>
+                          <p class="field-note">
+                            This sign-in is local to the overlay chat. Sign in separately in the admin chat settings to enable Codex there too.
+                          </p>
+                          <button type="button" class="primary-button" @click="$store.onscreenAgent.startCodexLogin()">
+                            Sign in with ChatGPT
+                          </button>
+                          <p class="field-note" x-show="$store.onscreenAgent.codexLoginError" x-text="$store.onscreenAgent.codexLoginError"></p>
+                        </div>
+                      </template>
+                      <template x-if="$store.onscreenAgent.isCodexLoginActive">
+                        <div class="onscreen-agent-codex-login-pending">
+                          <p>
+                            Open
+                            <a :href="$store.onscreenAgent.codexVerificationUrl" target="_blank" rel="noopener noreferrer" x-text="$store.onscreenAgent.codexVerificationUrl"></a>
+                            and enter this code:
+                          </p>
+                          <p class="onscreen-agent-codex-user-code" x-text="$store.onscreenAgent.codexUserCode"></p>
+                          <button type="button" class="secondary-button" @click="$store.onscreenAgent.cancelCodexLogin()">
+                            Cancel
+                          </button>
+                        </div>
+                      </template>
+                      <template x-if="!$store.onscreenAgent.isCodexLoginActive && $store.onscreenAgent.hasCodexTokens">
+                        <div class="onscreen-agent-codex-signed-in">
+                          <p class="field-note">
+                            Signed in<span x-show="$store.onscreenAgent.codexAccountIdSummary">
+                              as <code x-text="$store.onscreenAgent.codexAccountIdSummary"></code></span>.
+                          </p>
+                          <label class="field">
+                            <span>Model</span>
+                            <select x-model="$store.onscreenAgent.settingsDraft.codexModel">
+                              <template x-for="entry in $store.onscreenAgent.codexModelCatalog" :key="entry.id">
+                                <option :value="entry.id" x-text="`${entry.id} — ${entry.description}`"></option>
+                              </template>
+                              <template x-if="!$store.onscreenAgent.isCodexSelectedModelInCatalog">
+                                <option :value="$store.onscreenAgent.settingsDraft.codexModel" x-text="$store.onscreenAgent.settingsDraft.codexModel"></option>
+                              </template>
+                            </select>
+                            <p class="field-note" x-show="!$store.onscreenAgent.isCodexSelectedModelInCatalog">
+                              ⚠ Not currently listed for your account. Pick another model if chats fail.
+                            </p>
+                          </label>
+                          <button type="button" class="secondary-button" @click="$store.onscreenAgent.clearCodexLogin()">
+                            Sign out
+                          </button>
+                        </div>
+                      </template>
+                    </div>
                     <div x-show="$store.onscreenAgent.isSettingsDraftUsingLocalProvider" x-cloak class="onscreen-agent-local-settings">
                       <div class="onscreen-agent-local-provider-panel">
                         <x-component path="/mod/_core/huggingface/config-sidebar.html" mode="onscreen"></x-component>
diff --git a/app/L0/_all/mod/_core/onscreen_agent/storage.js b/app/L0/_all/mod/_core/onscreen_agent/storage.js
index 6a9b22f2..c47e97fd 100644
--- a/app/L0/_all/mod/_core/onscreen_agent/storage.js
+++ b/app/L0/_all/mod/_core/onscreen_agent/storage.js
@@ -1,4 +1,9 @@
 import * as config from "/mod/_core/onscreen_agent/config.js";
+import {
+  decodeStoredCodexTokens,
+  encodeStoredCodexTokens
+} from "/mod/_core/openai_codex/token_envelope.js";
+import { CODEX_DEFAULT_MODEL_ID, normalizeCodexModelId } from "/mod/_core/openai_codex/models.js";
 
 const DISPLAY_MODE_FULL = "full";
 const DISPLAY_MODE_COMPACT = "compact";
@@ -202,6 +207,10 @@ async function normalizeStoredConfig(runtime, parsedConfig) {
     runtime,
     storedConfig.api_key || storedConfig.apiKey || config.DEFAULT_ONSCREEN_AGENT_SETTINGS.apiKey || ""
   );
+  const storedCodexTokens = await decodeStoredCodexTokens(
+    runtime,
+    storedConfig.codex_tokens || storedConfig.codexTokens || ""
+  );
   const legacyDisplayMode =
     storedConfig.collapsed === true
       ? DISPLAY_MODE_COMPACT
@@ -213,6 +222,8 @@ async function normalizeStoredConfig(runtime, parsedConfig) {
     settings: {
       apiEndpoint: String(storedConfig.api_endpoint || storedConfig.apiEndpoint || config.DEFAULT_ONSCREEN_AGENT_SETTINGS.apiEndpoint || "").trim(),
       apiKey: storedApiKey.value,
+      codexModel: normalizeCodexModelId(storedConfig.codex_model || storedConfig.codexModel || CODEX_DEFAULT_MODEL_ID),
+      codexTokens: storedCodexTokens.value,
       huggingfaceDtype: String(
         storedConfig.huggingface_dtype ||
           storedConfig.huggingfaceDtype ||
@@ -232,7 +243,9 @@ async function normalizeStoredConfig(runtime, parsedConfig) {
       promptBudgetRatios: normalizeStoredPromptBudgetRatios(storedConfig),
       provider,
       storedApiKeyLocked: storedApiKey.locked,
-      storedApiKeyValue: storedApiKey.storedValue
+      storedApiKeyValue: storedApiKey.storedValue,
+      storedCodexTokensLocked: storedCodexTokens.locked,
+      storedCodexTokensValue: storedCodexTokens.storedValue
     },
     systemPrompt: String(
       storedConfig.custom_system_prompt ||
@@ -275,9 +288,11 @@ function normalizeStoredUiState(parsedState) {
 
 async function buildStoredConfigPayload(runtime, { settings, systemPrompt }) {
   const normalizedSystemPrompt = typeof systemPrompt === "string" ? systemPrompt.trim() : "";
+  const encodedCodexTokens = await encodeStoredCodexTokens(runtime, settings);
   const payload = {
     api_endpoint: String(settings?.apiEndpoint || config.DEFAULT_ONSCREEN_AGENT_SETTINGS.apiEndpoint || "").trim(),
     api_key: await encodeStoredApiKey(runtime, settings),
+    codex_model: normalizeCodexModelId(settings?.codexModel || CODEX_DEFAULT_MODEL_ID),
     huggingface_dtype: String(settings?.huggingfaceDtype || config.DEFAULT_ONSCREEN_AGENT_SETTINGS.huggingfaceDtype || "").trim(),
     huggingface_model: String(settings?.huggingfaceModel || config.DEFAULT_ONSCREEN_AGENT_SETTINGS.huggingfaceModel || "").trim(),
     local_provider: config.normalizeOnscreenAgentLocalProvider(settings?.localProvider),
@@ -293,6 +308,16 @@ async function buildStoredConfigPayload(runtime, { settings, systemPrompt }) {
     }
   };
 
+  // When the user signs out `encodedCodexTokens` is an empty string; make the
+  // absence explicit in the YAML payload so sign-out deterministically clears
+  // the stored entry on disk instead of relying on the full-rewrite behaviour
+  // of `fileWrite` alone.
+  if (encodedCodexTokens) {
+    payload.codex_tokens = encodedCodexTokens;
+  } else {
+    delete payload.codex_tokens;
+  }
+
   if (normalizedSystemPrompt) {
     payload.custom_system_prompt = normalizedSystemPrompt;
   }
@@ -446,6 +471,8 @@ export async function saveOnscreenAgentConfig(nextConfig) {
     if (nextConfig?.settings && typeof nextConfig.settings === "object") {
       nextConfig.settings.storedApiKeyLocked = false;
       nextConfig.settings.storedApiKeyValue = String(payload.api_key || "").trim();
+      nextConfig.settings.storedCodexTokensLocked = false;
+      nextConfig.settings.storedCodexTokensValue = String(payload.codex_tokens || "").trim();
     }
   } catch (error) {
     throw new Error(`Unable to save onscreen agent config: ${error.message}`);
diff --git a/app/L0/_all/mod/_core/onscreen_agent/store.js b/app/L0/_all/mod/_core/onscreen_agent/store.js
index 4d592c99..fc7d80ab 100644
--- a/app/L0/_all/mod/_core/onscreen_agent/store.js
+++ b/app/L0/_all/mod/_core/onscreen_agent/store.js
@@ -1,5 +1,12 @@
 import * as config from "/mod/_core/onscreen_agent/config.js";
 import * as agentApi from "/mod/_core/onscreen_agent/api.js";
+import * as codexAuthFlow from "/mod/_core/openai_codex/auth_flow.js";
+import * as codexModels from "/mod/_core/openai_codex/models.js";
+import { discoverCodexModels } from "/mod/_core/openai_codex/models_discovery.js";
+import {
+  parseCodexTokens as parseCodexTokensDraft,
+  serializeCodexTokens as serializeCodexTokensDraft
+} from "/mod/_core/openai_codex/token_envelope.js";
 import {
   installPromptItemAccess,
   rebalancePromptBudgetRatios
@@ -29,6 +36,7 @@ import {
 } from "/mod/_core/onscreen_agent/attachments.js";
 
 const UI_STATE_PERSIST_DELAY_MS = 180;
+const CODEX_CATALOG_TTL_MS = 10 * 60 * 1000;
 const STARTUP_HINT_DELAY_MS = 2000;
 const STARTUP_HINT_VISIBLE_MS = 3000;
 const COMPACT_MODE_TOP_EDGE_THRESHOLD_EM = 10;
@@ -80,6 +88,62 @@ function normalizePromptBudgetSingleMessageRatio(
   return Math.max(0, Math.min(100, Math.round(parsedValue)));
 }
 
+function createCodexLoginState() {
+  return {
+    deviceAuthId: "",
+    error: "",
+    status: codexAuthFlow.CODEX_AUTH_FLOW_STATUS.IDLE,
+    userCode: "",
+    verificationUrl: ""
+  };
+}
+
+// Merge the live Codex catalog (discovered from the Codex models endpoint)
+// with the static fallback shipped in `models.js`. The runtime catalog wins
+// when both have the same id so live descriptions and the live ordering are
+// preserved, and any static-only entries trail the runtime ones so a user
+// with a broken or empty discovery response still has something to pick.
+function mergeCodexModelCatalogs(runtimeCatalog, staticCatalog) {
+  const runtime = Array.isArray(runtimeCatalog) ? runtimeCatalog : [];
+  const staticList = Array.isArray(staticCatalog) ? staticCatalog : [];
+  const seen = new Set();
+  const merged = [];
+
+  for (const entry of runtime) {
+    if (!entry || typeof entry.id !== "string" || !entry.id) {
+      continue;
+    }
+
+    if (seen.has(entry.id)) {
+      continue;
+    }
+
+    seen.add(entry.id);
+    merged.push({
+      description: typeof entry.description === "string" ? entry.description : "",
+      id: entry.id
+    });
+  }
+
+  for (const entry of staticList) {
+    if (!entry || typeof entry.id !== "string" || !entry.id) {
+      continue;
+    }
+
+    if (seen.has(entry.id)) {
+      continue;
+    }
+
+    seen.add(entry.id);
+    merged.push({
+      description: typeof entry.description === "string" ? entry.description : "",
+      id: entry.id
+    });
+  }
+
+  return merged;
+}
+
 function clonePromptBudgetRatios(value = {}) {
   return {
     ...config.normalizeOnscreenAgentPromptBudgetRatios(value)
@@ -817,6 +881,10 @@ function summarizeOnscreenAgentLlmSelection(settings, huggingfaceState) {
     return configuredModelId || activeModelId || "No model";
   }
 
+  if (provider === config.ONSCREEN_AGENT_LLM_PROVIDER.CODEX) {
+    return codexModels.normalizeCodexModelId(settings?.codexModel);
+  }
+
   return agentView.summarizeLlmConfig(settings?.apiEndpoint || "", settings?.model || "");
 }
 
@@ -1405,9 +1473,16 @@ const model = {
   uiBubbleText: "",
   uiStateOwner: "",
   uiStatePersistTimer: 0,
+  codexCatalogFetchedAt: 0,
+  codexCatalogPromise: null,
+  codexLoginAbortController: null,
+  codexLoginState: createCodexLoginState(),
+  codexRuntimeCatalog: [],
   settings: {
     apiEndpoint: "",
     apiKey: "",
+    codexModel: config.DEFAULT_ONSCREEN_AGENT_SETTINGS.codexModel,
+    codexTokens: "",
     huggingfaceDtype: config.DEFAULT_ONSCREEN_AGENT_SETTINGS.huggingfaceDtype,
     huggingfaceModel: "",
     localProvider: config.DEFAULT_ONSCREEN_AGENT_SETTINGS.localProvider,
@@ -1415,11 +1490,15 @@ const model = {
     model: "",
     paramsText: "",
     promptBudgetRatios: { ...config.DEFAULT_ONSCREEN_AGENT_SETTINGS.promptBudgetRatios },
-    provider: config.DEFAULT_ONSCREEN_AGENT_SETTINGS.provider
+    provider: config.DEFAULT_ONSCREEN_AGENT_SETTINGS.provider,
+    storedCodexTokensLocked: false,
+    storedCodexTokensValue: ""
   },
   settingsDraft: {
     apiEndpoint: "",
     apiKey: "",
+    codexModel: config.DEFAULT_ONSCREEN_AGENT_SETTINGS.codexModel,
+    codexTokens: "",
     huggingfaceDtype: config.DEFAULT_ONSCREEN_AGENT_SETTINGS.huggingfaceDtype,
     huggingfaceModel: "",
     localProvider: config.DEFAULT_ONSCREEN_AGENT_SETTINGS.localProvider,
@@ -1427,7 +1506,9 @@ const model = {
     model: "",
     paramsText: "",
     promptBudgetRatios: { ...config.DEFAULT_ONSCREEN_AGENT_SETTINGS.promptBudgetRatios },
-    provider: config.DEFAULT_ONSCREEN_AGENT_SETTINGS.provider
+    provider: config.DEFAULT_ONSCREEN_AGENT_SETTINGS.provider,
+    storedCodexTokensLocked: false,
+    storedCodexTokensValue: ""
   },
   status: "Loading onscreen agent...",
   stopRequested: false,
@@ -1621,6 +1702,53 @@ const model = {
     return config.normalizeOnscreenAgentLlmProvider(this.settingsDraft.provider) === config.ONSCREEN_AGENT_LLM_PROVIDER.LOCAL;
   },
 
+  get isSettingsDraftUsingCodexProvider() {
+    return config.normalizeOnscreenAgentLlmProvider(this.settingsDraft.provider) === config.ONSCREEN_AGENT_LLM_PROVIDER.CODEX;
+  },
+
+  get codexModelCatalog() {
+    return mergeCodexModelCatalogs(this.codexRuntimeCatalog, codexModels.CODEX_MODEL_CATALOG);
+  },
+
+  get isCodexSelectedModelInCatalog() {
+    const selected = typeof this.settingsDraft?.codexModel === "string"
+      ? this.settingsDraft.codexModel.trim()
+      : "";
+
+    if (!selected) {
+      return true;
+    }
+
+    return this.codexModelCatalog.some((entry) => entry.id === selected);
+  },
+
+  get isCodexLoginActive() {
+    return this.codexLoginState.status === codexAuthFlow.CODEX_AUTH_FLOW_STATUS.STARTING ||
+      this.codexLoginState.status === codexAuthFlow.CODEX_AUTH_FLOW_STATUS.PENDING;
+  },
+
+  get hasCodexTokens() {
+    const parsed = parseCodexTokensDraft(this.settingsDraft?.codexTokens);
+    return Boolean(parsed?.accessToken);
+  },
+
+  get codexVerificationUrl() {
+    return this.codexLoginState.verificationUrl || "";
+  },
+
+  get codexUserCode() {
+    return this.codexLoginState.userCode || "";
+  },
+
+  get codexLoginError() {
+    return this.codexLoginState.error || "";
+  },
+
+  get codexAccountIdSummary() {
+    const parsed = parseCodexTokensDraft(this.settingsDraft?.codexTokens);
+    return parsed?.accountId || "";
+  },
+
   get huggingfaceSavedModels() {
     return Array.isArray(this.huggingface.savedModels) ? this.huggingface.savedModels : [];
   },
@@ -4409,6 +4537,16 @@ const model = {
         preserveStatus: true
       });
     });
+
+    // Kick off live Codex catalog discovery so a signed-in user sees the
+    // models actually available to their account. Failures fall back to the
+    // shipped static catalog so the dropdown always has entries.
+    void this.refreshCodexModelCatalog().catch((error) => {
+      this.reportError("refreshing the Codex model catalog", error, {
+        preserveStatus: true
+      });
+    });
+
     openDialog(resolveDialogRef(this.refs, "settingsDialog", SETTINGS_DIALOG_ELEMENT_ID));
   },
 
@@ -4430,6 +4568,159 @@ const model = {
         });
       });
     }
+
+    if (this.isSettingsDraftUsingCodexProvider && !this.settingsDraft.codexModel) {
+      this.settingsDraft = {
+        ...this.settingsDraft,
+        codexModel: codexModels.CODEX_DEFAULT_MODEL_ID
+      };
+    }
+  },
+
+  async startCodexLogin() {
+    if (this.isCodexLoginActive) {
+      return;
+    }
+
+    const controller = typeof AbortController === "function" ? new AbortController() : null;
+    this.codexLoginAbortController = controller;
+    this.codexLoginState = {
+      ...createCodexLoginState(),
+      status: codexAuthFlow.CODEX_AUTH_FLOW_STATUS.STARTING
+    };
+
+    try {
+      const tokens = await codexAuthFlow.runCodexDeviceAuthorizationFlow({
+        onStatusChange: (event) => {
+          this.codexLoginState = {
+            deviceAuthId: event.deviceAuthId || this.codexLoginState.deviceAuthId || "",
+            error: event.error || "",
+            status: event.status,
+            userCode: event.userCode || this.codexLoginState.userCode || "",
+            verificationUrl: event.verificationUrl || this.codexLoginState.verificationUrl || ""
+          };
+        },
+        signal: controller?.signal
+      });
+
+      this.settingsDraft = {
+        ...this.settingsDraft,
+        codexTokens: serializeCodexTokensDraft(tokens)
+      };
+      this.codexLoginState = createCodexLoginState();
+
+      // The signed-in user's catalog depends on the ChatGPT subscription
+      // attached to the newly issued access token. Force a re-discovery now
+      // so the model dropdown reflects the live list before the user picks.
+      void this.refreshCodexModelCatalog({ force: true }).catch(() => {});
+    } catch (error) {
+      if (error?.name !== "AbortError") {
+        this.codexLoginState = {
+          ...createCodexLoginState(),
+          error: error?.message || String(error),
+          status: codexAuthFlow.CODEX_AUTH_FLOW_STATUS.FAILED
+        };
+      } else {
+        this.codexLoginState = createCodexLoginState();
+      }
+    } finally {
+      this.codexLoginAbortController = null;
+    }
+  },
+
+  cancelCodexLogin() {
+    if (this.codexLoginAbortController) {
+      this.codexLoginAbortController.abort();
+    }
+
+    this.codexLoginState = createCodexLoginState();
+    this.codexLoginAbortController = null;
+  },
+
+  clearCodexLogin() {
+    this.settingsDraft = {
+      ...this.settingsDraft,
+      codexTokens: ""
+    };
+    this.codexLoginState = createCodexLoginState();
+  },
+
+  // Discover the live Codex model catalog. The runtime catalog is cached
+  // in-memory with a 10-minute TTL so opening the settings dialog repeatedly
+  // does not spam the Codex models endpoint. Concurrent callers coalesce
+  // through the shared in-flight promise. A failed discovery (network, CORS,
+  // missing tokens) resolves with an empty runtime catalog so the static
+  // fallback in `models.js` remains selectable.
+  async refreshCodexModelCatalog({ force = false } = {}) {
+    if (!force && this.codexCatalogPromise) {
+      return this.codexCatalogPromise;
+    }
+
+    if (!force && this.codexCatalogFetchedAt && (Date.now() - this.codexCatalogFetchedAt) < CODEX_CATALOG_TTL_MS) {
+      return this.codexRuntimeCatalog;
+    }
+
+    const tokens = parseCodexTokensDraft(this.settings?.codexTokens);
+    const accessToken = typeof tokens?.accessToken === "string" ? tokens.accessToken.trim() : "";
+
+    if (!accessToken) {
+      this.codexRuntimeCatalog = [];
+      this.codexCatalogFetchedAt = Date.now();
+      return this.codexRuntimeCatalog;
+    }
+
+    const accountId = typeof tokens?.accountId === "string" ? tokens.accountId.trim() : "";
+    const pending = (async () => {
+      try {
+        const catalog = await discoverCodexModels({
+          accessToken,
+          chatGPTAccountId: accountId
+        });
+        this.codexRuntimeCatalog = Array.isArray(catalog) ? catalog : [];
+      } catch {
+        this.codexRuntimeCatalog = [];
+      } finally {
+        this.codexCatalogFetchedAt = Date.now();
+        this.codexCatalogPromise = null;
+      }
+
+      return this.codexRuntimeCatalog;
+    })();
+
+    this.codexCatalogPromise = pending;
+    return pending;
+  },
+
+  // Called by the `prepareOnscreenAgentApiRequest` Codex hook after a server-
+  // side refresh rotated the stored refresh token. The hook delegates here
+  // instead of writing the config file directly so that encoding, lock-state
+  // bookkeeping, and persistence stay owned by `storage.js`.
+  async applyRefreshedCodexTokens(tokens) {
+    const serialized = serializeCodexTokensDraft(tokens);
+
+    if (!serialized) {
+      return;
+    }
+
+    this.settings = {
+      ...this.settings,
+      codexTokens: serialized
+    };
+
+    // If the settings dialog is currently mounted we also keep the draft in
+    // sync so a user reopening the dialog mid-session still sees the signed-
+    // in state backed by the freshly rotated refresh token.
+    const dialogElement = this.refs?.settingsDialog;
+    const isDialogOpen = Boolean(dialogElement && typeof dialogElement.hasAttribute === "function" && dialogElement.hasAttribute("open"));
+
+    if (isDialogOpen) {
+      this.settingsDraft = {
+        ...this.settingsDraft,
+        codexTokens: serialized
+      };
+    }
+
+    await this.persistConfig();
   },
 
   setSettingsPromptBudgetRatio(key, value) {
@@ -4601,6 +4892,8 @@ const model = {
     this.settings = {
       apiEndpoint: (this.settingsDraft.apiEndpoint || "").trim(),
       apiKey: (this.settingsDraft.apiKey || "").trim(),
+      codexModel: codexModels.normalizeCodexModelId(this.settingsDraft.codexModel),
+      codexTokens: typeof this.settingsDraft.codexTokens === "string" ? this.settingsDraft.codexTokens.trim() : "",
       huggingfaceDtype: (this.settingsDraft.huggingfaceDtype || "").trim(),
       huggingfaceModel: normalizeHuggingFaceModelInput(this.settingsDraft.huggingfaceModel || ""),
       localProvider,
@@ -4610,7 +4903,9 @@ const model = {
       promptBudgetRatios: clonePromptBudgetRatios(this.settingsDraft.promptBudgetRatios),
       provider,
       storedApiKeyLocked: this.settings.storedApiKeyLocked === true,
-      storedApiKeyValue: String(this.settings.storedApiKeyValue || "")
+      storedApiKeyValue: String(this.settings.storedApiKeyValue || ""),
+      storedCodexTokensLocked: this.settings.storedCodexTokensLocked === true,
+      storedCodexTokensValue: String(this.settings.storedCodexTokensValue || "")
     };
     this.systemPrompt = draftPrompt;
     this.systemPromptDraft = draftPrompt;
@@ -4622,9 +4917,13 @@ const model = {
         await this.refreshRuntimeSystemPrompt();
       }
       await this.persistConfig();
-      this.status = provider === config.ONSCREEN_AGENT_LLM_PROVIDER.LOCAL
-        ? `Local ${getConfiguredLocalProviderLabel(this.settings)} settings updated. Preparing the selected model in the background.`
-        : "API chat settings updated.";
+      if (provider === config.ONSCREEN_AGENT_LLM_PROVIDER.LOCAL) {
+        this.status = `Local ${getConfiguredLocalProviderLabel(this.settings)} settings updated. Preparing the selected model in the background.`;
+      } else if (provider === config.ONSCREEN_AGENT_LLM_PROVIDER.CODEX) {
+        this.status = "ChatGPT settings updated.";
+      } else {
+        this.status = "API chat settings updated.";
+      }
       this.closeSettingsDialog();
 
       if (provider === config.ONSCREEN_AGENT_LLM_PROVIDER.LOCAL) {
diff --git a/app/L0/_all/mod/_core/openai_codex/AGENTS.md b/app/L0/_all/mod/_core/openai_codex/AGENTS.md
new file mode 100644
index 00000000..342ec8d0
--- /dev/null
+++ b/app/L0/_all/mod/_core/openai_codex/AGENTS.md
@@ -0,0 +1,144 @@
+# AGENTS
+
+## Purpose
+
+`_core/openai_codex/` owns OpenAI-Codex-specific frontend request customization for the ChatGPT Plus subscription transport.
+
+It is a headless helper module. It does not own chat UI or prompt assembly. It owns reusable Codex endpoint URL constants, Cloudflare-compatible header application, OAuth token helpers, Chat-Completions-to-Responses request-shape conversion, and Responses-API SSE event mapping for the first-party chat surfaces.
+
+Documentation is top priority for this module. After any change under this subtree, update this file and any affected parent or consumer docs in the same session.
+
+## Ownership
+
+This module owns:
+
+- `request.js`: shared Codex endpoint URL constants, Cloudflare-compatible request-header application, JWT account-id extraction, and OAuth device-flow URL constants
+- `ext/js/_core/onscreen_agent/api.js/prepareOnscreenAgentApiRequest/end/openai-codex.js`: overlay-chat API request customization (body shape + headers)
+- `ext/js/_core/admin/views/agent/api.js/prepareAdminAgentApiRequest/end/openai-codex.js`: admin-chat API request customization (body shape + headers)
+- `request_shape.js`: pure stateless converters between OpenAI Chat-Completions request bodies and Codex Responses-API request bodies
+- `sse_adapter.js`: pure stateless mapper from Codex Responses-API SSE events into the existing Chat-Completions-shaped delta frames that `_core/onscreen_agent/api.js` and `_core/admin/views/agent/api.js` already parse
+- `token_manager.js`: browser-side helper that wraps the three OAuth backend endpoints (`/api/openai_codex_auth_start`, `/api/openai_codex_auth_poll`, `/api/openai_codex_token_refresh`) and enforces always-fresh-read refresh semantics with a single-flight coalescer per refresh token. The coalescer is per-tab only: two browser tabs against the same account still issue two parallel refresh requests, and cross-tab serialization relies on the server-side mutex in `server/lib/openai_codex/refresh_lock.js` (which itself is per-worker; see the known-limitations note in `/server/lib/openai_codex/AGENTS.md`).
+- `auth_flow.js`: stateful controller that drives the end-to-end device-code login UX from the settings dialog, emitting `STARTING` / `PENDING` / `COMPLETE` / `FAILED` status events and polling the backend at the interval the OAuth server returns
+- `models.js`: shipped static Codex model catalog used as a fallback by the settings UI, with `CODEX_DEFAULT_MODEL_ID` pointing at the cheapest and fastest option suitable for a ChatGPT Plus subscription
+- `models_parser.js`: pure `parseCodexModelsResponse(payload)` that converts the Codex `/backend-api/codex/models` response into `{ id, description }` entries, filters out unsupported or hidden variants, and sorts by `(priority, slug)` to match the reference Codex client ordering
+- `models_discovery.js`: browser-side `discoverCodexModels({ accessToken, chatGPTAccountId })` helper that fetches the live catalog with `applyCodexHeaders()` through the space-agent outbound proxy (`space.proxy.buildUrl(...)` -> `/api/proxy`). A direct browser fetch against `chatgpt.com/backend-api/codex/models` is always blocked because the endpoint sends no `Access-Control-Allow-Origin` header, so we route through the existing proxy infrastructure on every call rather than attempting a doomed direct request first. Any failure returns an empty array so callers can fall back to the static catalog.
+
+## Local Contracts
+
+- this module contributes behavior only through JS extension hooks, shared helpers, and the dedicated LLM-client subclass; it must not fork or duplicate the admin or onscreen chat runtimes
+- the two shipped extension hooks gate on `settings.provider === "openai-codex"` so they only rewrite requests for the Codex provider and leave OpenRouter or other OpenAI-compatible provider requests untouched
+- the shipped URL constants (`CODEX_BASE_URL`, `CODEX_RESPONSES_ENDPOINT`, `CODEX_MODELS_ENDPOINT`) are consumed directly; there is no endpoint-detection helper because the provider-setting gate removes the need for it
+- provider-specific HTTP policy belongs here or in similar headless provider modules, not hard-coded into `_core/onscreen_agent/llm.js` or `_core/admin/views/agent/api.js`
+- the Codex `/responses` endpoint rejects `max_output_tokens` and `temperature` with HTTP 400; `request_shape.js` strips both before producing the outbound body
+- the Codex `/responses` endpoint streams its own SSE event family, not the Chat-Completions `data: {choices:[...]}` stream; the SSE adapter here is the single source of truth for translating between the two formats
+- refresh-token rotation is single-use and must not run concurrently from multiple browser tabs; the browser-side module must route refreshes through the server endpoint `/api/openai_codex_token_refresh` rather than posting to `auth.openai.com` directly (see `/server/api/AGENTS.md` for that endpoint contract)
+
+## Known Cloudflare Requirement
+
+The Codex endpoint sits behind Cloudflare, which denies requests from non-residential IPs that do not advertise a first-party originator.
+
+Required headers on every outbound request to `https://chatgpt.com/backend-api/codex/...`:
+
+- `User-Agent: codex_cli_rs/0.0.0 (space-agent)` — must begin with `codex_cli_rs/`
+- `originator: codex_cli_rs` — lowercase header name, canonical casing from the `codex-rs` client
+- `ChatGPT-Account-ID: <account_id>` — canonical casing, extracted once from the OAuth access-token JWT claim `https://api.openai.com/auth.chatgpt_account_id` and persisted alongside the tokens in user config; omit the header when extraction fails
+- `Authorization: Bearer <access_token>`
+- `Accept: text/event-stream`
+- `Content-Type: application/json`
+
+Without `User-Agent` plus `originator` the endpoint returns HTTP 403 with response header `cf-mitigated: challenge` regardless of token validity. Do not remove these headers as part of a code-cleanup pass; they are load-bearing infrastructure, not stylistic choices.
+
+## Request Shape Conversion Contract
+
+`request_shape.js` exposes a pure `chatToResponsesRequest(chatBody)` converter. Input is the OpenAI Chat-Completions body produced by `createApiRequestBody(...)` in `_core/onscreen_agent/api.js` or `createRequestBody(...)` in `_core/admin/views/agent/api.js`. Output is the Codex Responses-API body.
+
+Conversion rules:
+
+- the first `role: "system"` message becomes the top-level `instructions` string and is removed from `input`
+- remaining `role: "user"` and `role: "assistant"` messages become `input[]` entries with `content: [{ type: "input_text", text }]`
+- multimodal `{ type: "text", text }` content parts stay as `{ type: "input_text", text }`
+- multimodal `{ type: "image_url", image_url: { url, detail } }` content parts become `{ type: "input_image", image_url, detail }`
+- `model` is passed through unchanged
+- `stream: true` is preserved when present; the Responses endpoint streams SSE on its own regardless, but sending it keeps the contract explicit
+- `store: false` is added unconditionally so Codex does not retain completions
+- `max_output_tokens` is dropped; the Codex endpoint rejects it with HTTP 400
+- `temperature` is dropped; the Codex endpoint rejects it with HTTP 400
+- all other Chat-Completions-specific fields (`n`, `frequency_penalty`, `presence_penalty`, `logit_bias`, `response_format`, `tools`, `tool_choice`, `stop`) are dropped; the Codex Responses-API accepts a narrow body and any unknown field may cause HTTP 400
+
+## SSE Adapter Contract
+
+`sse_adapter.js` exposes a pure `mapCodexEventToChatFrames(event)` mapper. Input is one parsed Codex Responses-API SSE event object. Output is an array of zero or more Chat-Completions-shaped frames plus optional `[DONE]` marker.
+
+### Supported events (produce frames)
+
+| Event type | Output |
+|---|---|
+| `response.output_text.delta` | `{ choices: [{ delta: { content: event.delta }, index: 0 }] }` |
+| `response.refusal.delta` | `{ choices: [{ delta: { content: event.delta }, index: 0 }] }` |
+| `response.completed` | `{ choices: [{ finish_reason: "stop", delta: {}, index: 0 }], usage: { prompt_tokens, completion_tokens, total_tokens } }` plus `[DONE]` |
+| `response.incomplete` | `{ choices: [{ finish_reason: event.response.incomplete_details.reason \|\| "length", delta: {}, index: 0 }] }` plus `[DONE]` |
+| `response.failed` | thrown Error with the upstream error message |
+| `error` (standalone error event) | thrown Error with the upstream error message |
+
+### Ignored events (skipped silently to avoid unknown-event log noise)
+
+`response.created`, `response.in_progress`, `response.output_item.added`, `response.output_item.done`, `response.content_part.added`, `response.content_part.done`, `response.output_text.done`, `response.refusal.done`, `response.function_call_arguments.delta`, `response.function_call_arguments.done`, `response.reasoning_text.delta`, `response.reasoning_text.done`, `response.reasoning_summary_text.delta`, `response.reasoning_summary_text.done`, `response.audio_*`, `response.code_interpreter_*`, `response.file_search_call_*`, `response.web_search_call_*`, `response.image_gen_call_*`, `response.mcp_*`, `response.queued`, `response.output_text_annotation.added`, `response.custom_tool_call_input_*`
+
+### Output accumulation rule
+
+Text output must be accumulated live from `response.output_text.delta` events. Do not read the final reply from `response.completed.response.output` — Codex has been observed returning an empty `output` array in the final event even when deltas streamed correctly. Use `response.completed` only for `usage` and `finish_reason`.
+
+### End-of-stream marker
+
+The Codex Responses-API does not emit a `data: [DONE]` line. The adapter synthesizes `[DONE]` after `response.completed`, `response.incomplete`, `response.failed`, or a standalone `error` event so the existing Chat-Completions SSE parser in `_core/onscreen_agent/api.js` and `_core/admin/views/agent/api.js` sees the expected terminator.
+
+## OAuth Device Flow Reference
+
+The module exports four URL constants used by the server-owned OAuth endpoints and by the frontend settings UI:
+
+- `CODEX_OAUTH_CLIENT_ID` — `app_EMoamEEZ73f0CkXaXp7hrann`
+- `CODEX_OAUTH_AUTHORIZE_URL` — `https://auth.openai.com/codex/device` — where the user pastes the displayed `user_code`
+- `CODEX_OAUTH_DEVICE_CODE_URL` — `https://auth.openai.com/api/accounts/deviceauth/usercode` — server POSTs here to start a device flow
+- `CODEX_OAUTH_DEVICE_TOKEN_URL` — `https://auth.openai.com/api/accounts/deviceauth/token` — server polls here until the user authorizes
+- `CODEX_OAUTH_TOKEN_URL` — `https://auth.openai.com/oauth/token` — server POSTs here to exchange the authorization code for tokens and to refresh
+- `CODEX_OAUTH_REDIRECT_URI` — `https://auth.openai.com/deviceauth/callback` — fixed redirect URI sent during the code-exchange step
+
+## Persisted Token Shape
+
+Codex tokens are persisted inside each chat surface's existing configuration file (`~/conf/onscreen-agent.yaml` for the overlay, `~/conf/admin-chat.yaml` for the admin agent) as a nested encrypted structure.
+
+When the current session is unlocked, the value stored at `openai_codex` is a `userCrypto:`-prefixed ciphertext whose plaintext is a YAML-serialized object with these fields:
+
+- `access_token` — current JWT access token
+- `refresh_token` — current refresh token (single-use, rotates on every refresh)
+- `expires_at` — Unix timestamp in seconds when `access_token` expires
+- `obtained_at` — Unix timestamp in seconds when `access_token` was issued, for telemetry only
+- `account_id` — ChatGPT account id extracted once from the `access_token` JWT claim `https://api.openai.com/auth.chatgpt_account_id`; empty when the token is not a JWT or the claim is missing
+
+The server OAuth endpoints own extraction of `account_id` and return it alongside the tokens; the frontend never re-parses the JWT during normal requests.
+
+## Testing This Locally
+
+This module cannot be fully exercised without an active ChatGPT Plus subscription, since the OAuth device-code flow, the streaming `/responses` endpoint, and the `/models` discovery all require a live OpenAI account with Codex access.
+
+What reviewers can verify without a subscription:
+
+- **Pure-function tests**: `tests/openai_codex_*_test.mjs` covers request-shape conversion, SSE event mapping, the token manager's always-fresh-read and single-flight semantics, the shipped static model catalog, and the live-response parser. Run with `node --test tests/openai_codex_*_test.mjs` — 51 tests, no network access or credentials required.
+- **Server endpoint registration**: `node space serve` starts cleanly and `curl -X POST http://127.0.0.1:3000/api/openai_codex_auth_start` returns HTTP 401 with `{"error":"Authentication required"}` (auth gate works, endpoint is registered).
+- **Module hierarchy**: check that `/mod/_core/openai_codex/*` modules import cleanly from both chat surfaces (no module resolution errors in the browser console on app boot).
+
+What requires a ChatGPT Plus subscription to verify:
+
+- **Full OAuth device-code flow** (`_auth_start` → browser authorize → `_auth_poll` → tokens returned)
+- **First live chat turn** against `gpt-5.4-mini` or another Codex model
+- **Silent refresh** after access-token expiry (~1 hour)
+- **Live model-catalog discovery** (dropdown reflects the account's entitled models, not just the static fallback)
+
+## Development Guidance
+
+- keep provider detection small and explicit
+- prefer one shared helper for endpoint matching, header mutation, and body-shape conversion so the admin and onscreen hooks stay in sync
+- if additional Codex request shaping is needed later, extend the prepared request object here instead of reintroducing per-surface hard-coded branches
+- keep the Cloudflare header block in `request.js` even if it looks like boilerplate; removing it breaks the endpoint with a confusing 403
+- keep the `space.proxy.buildUrl(CODEX_RESPONSES_ENDPOINT)` routing plus `requestInit.credentials = "same-origin"` in both chat-completion hooks (onscreen and admin) — `chatgpt.com` advertises no `Access-Control-Allow-Origin` header so a direct browser fetch is always blocked. The `installFetchProxy(...)` wrapper provides a transparent fallback retry, but every page-load pays one failed-direct-fetch roundtrip and emits a red CORS error in the DevTools console until the wrapper caches the origin. Routing through the proxy explicitly eliminates both costs.
+- update this file when the Codex endpoint adds new SSE event families, when Codex rejects another request-body field, or when OAuth URLs change
diff --git a/app/L0/_all/mod/_core/openai_codex/auth_flow.js b/app/L0/_all/mod/_core/openai_codex/auth_flow.js
new file mode 100644
index 00000000..5765130c
--- /dev/null
+++ b/app/L0/_all/mod/_core/openai_codex/auth_flow.js
@@ -0,0 +1,151 @@
+import {
+  pollCodexDeviceAuthorization,
+  startCodexDeviceAuthorization,
+  normalizeCodexTokens
+} from "/mod/_core/openai_codex/token_manager.js";
+
+export const CODEX_AUTH_FLOW_STATUS = Object.freeze({
+  COMPLETE: "complete",
+  FAILED: "failed",
+  IDLE: "idle",
+  PENDING: "pending",
+  STARTING: "starting"
+});
+
+const DEFAULT_POLL_INTERVAL_SECONDS = 3;
+const MIN_POLL_INTERVAL_SECONDS = 3;
+const DEFAULT_FLOW_TIMEOUT_SECONDS = 15 * 60;
+
+function wait(ms, signal) {
+  return new Promise((resolve, reject) => {
+    if (signal?.aborted) {
+      reject(new DOMException("Device authorization cancelled.", "AbortError"));
+      return;
+    }
+
+    const timer = setTimeout(() => {
+      cleanup();
+      resolve();
+    }, ms);
+
+    const onAbort = () => {
+      clearTimeout(timer);
+      cleanup();
+      reject(new DOMException("Device authorization cancelled.", "AbortError"));
+    };
+
+    function cleanup() {
+      signal?.removeEventListener?.("abort", onAbort);
+    }
+
+    signal?.addEventListener?.("abort", onAbort, { once: true });
+  });
+}
+
+export async function runCodexDeviceAuthorizationFlow({
+  fetchImpl,
+  onStatusChange,
+  signal
+} = {}) {
+  const emit = typeof onStatusChange === "function" ? onStatusChange : () => {};
+
+  emit({ status: CODEX_AUTH_FLOW_STATUS.STARTING });
+
+  let deviceAuth;
+  try {
+    deviceAuth = await startCodexDeviceAuthorization({ fetchImpl });
+  } catch (error) {
+    emit({
+      error: error instanceof Error ? error.message : String(error),
+      status: CODEX_AUTH_FLOW_STATUS.FAILED
+    });
+    throw error;
+  }
+
+  const deviceAuthId = String(deviceAuth?.deviceAuthId || "").trim();
+  const userCode = String(deviceAuth?.userCode || "").trim();
+  const verificationUrl = String(deviceAuth?.verificationUrl || "").trim();
+  const serverInterval = Number.isFinite(deviceAuth?.interval) ? Number(deviceAuth.interval) : DEFAULT_POLL_INTERVAL_SECONDS;
+  const pollIntervalSeconds = Math.max(MIN_POLL_INTERVAL_SECONDS, serverInterval);
+  const timeoutSeconds = Number.isFinite(deviceAuth?.expiresIn) ? Number(deviceAuth.expiresIn) : DEFAULT_FLOW_TIMEOUT_SECONDS;
+
+  if (!deviceAuthId || !userCode || !verificationUrl) {
+    const error = new Error("ChatGPT returned an invalid device authorization payload.");
+    emit({
+      error: error.message,
+      status: CODEX_AUTH_FLOW_STATUS.FAILED
+    });
+    throw error;
+  }
+
+  emit({
+    deviceAuthId,
+    pollIntervalSeconds,
+    status: CODEX_AUTH_FLOW_STATUS.PENDING,
+    userCode,
+    verificationUrl
+  });
+
+  const startedAt = Date.now();
+  let firstIteration = true;
+
+  while (true) {
+    if (signal?.aborted) {
+      const error = new DOMException("Device authorization cancelled.", "AbortError");
+      emit({ error: error.message, status: CODEX_AUTH_FLOW_STATUS.FAILED });
+      throw error;
+    }
+
+    if ((Date.now() - startedAt) / 1000 > timeoutSeconds) {
+      const error = new Error("Timed out waiting for ChatGPT authorization.");
+      emit({ error: error.message, status: CODEX_AUTH_FLOW_STATUS.FAILED });
+      throw error;
+    }
+
+    // Poll immediately on the first iteration so a user who enters the code
+    // before the browser renders the pending panel still sees the login
+    // complete near-instantly. Subsequent iterations wait for the server-
+    // advertised poll interval to avoid hammering the endpoint.
+    if (!firstIteration) {
+      await wait(pollIntervalSeconds * 1000, signal);
+    }
+
+    firstIteration = false;
+
+    let pollResult;
+    try {
+      pollResult = await pollCodexDeviceAuthorization({
+        deviceAuthId,
+        fetchImpl,
+        userCode
+      });
+    } catch (error) {
+      emit({
+        error: error instanceof Error ? error.message : String(error),
+        status: CODEX_AUTH_FLOW_STATUS.FAILED
+      });
+      throw error;
+    }
+
+    if (pollResult?.state === "complete" && pollResult.tokens) {
+      const tokens = normalizeCodexTokens(pollResult.tokens);
+
+      if (!tokens) {
+        const error = new Error("ChatGPT returned an invalid token payload.");
+        emit({ error: error.message, status: CODEX_AUTH_FLOW_STATUS.FAILED });
+        throw error;
+      }
+
+      emit({ status: CODEX_AUTH_FLOW_STATUS.COMPLETE, tokens });
+      return tokens;
+    }
+
+    emit({
+      deviceAuthId,
+      pollIntervalSeconds,
+      status: CODEX_AUTH_FLOW_STATUS.PENDING,
+      userCode,
+      verificationUrl
+    });
+  }
+}
diff --git a/app/L0/_all/mod/_core/openai_codex/ext/js/_core/admin/views/agent/api.js/prepareAdminAgentApiRequest/end/openai-codex.js b/app/L0/_all/mod/_core/openai_codex/ext/js/_core/admin/views/agent/api.js/prepareAdminAgentApiRequest/end/openai-codex.js
new file mode 100644
index 00000000..1a54383b
--- /dev/null
+++ b/app/L0/_all/mod/_core/openai_codex/ext/js/_core/admin/views/agent/api.js/prepareAdminAgentApiRequest/end/openai-codex.js
@@ -0,0 +1,132 @@
+import {
+  CODEX_RESPONSES_ENDPOINT,
+  applyCodexHeaders
+} from "/mod/_core/openai_codex/request.js";
+import { chatToResponsesRequest } from "/mod/_core/openai_codex/request_shape.js";
+import {
+  ensureFreshCodexAccessToken,
+  normalizeCodexTokens
+} from "/mod/_core/openai_codex/token_manager.js";
+
+function isObject(value) {
+  return value !== null && typeof value === "object" && !Array.isArray(value);
+}
+
+function parseCodexTokensFromSettings(settings) {
+  const raw = settings?.codexTokens;
+
+  if (!raw) {
+    return null;
+  }
+
+  if (isObject(raw)) {
+    return normalizeCodexTokens(raw);
+  }
+
+  if (typeof raw !== "string") {
+    return null;
+  }
+
+  try {
+    return normalizeCodexTokens(JSON.parse(raw));
+  } catch {
+    return null;
+  }
+}
+
+function serializeTokens(tokens) {
+  return tokens ? JSON.stringify(tokens) : "";
+}
+
+// chatgpt.com does not advertise CORS, so a direct browser fetch from the
+// page origin is always blocked by the browser's preflight. The standard
+// `prepareAdminAgentApiRequest` flow already routes its API URL through
+// `space.proxy.buildUrl(...)` for proxyable external endpoints; the Codex
+// hook overrides `requestUrl` and must therefore re-apply the same proxy
+// routing itself. Without this, every Codex chat call pays an extra
+// failed-direct-fetch roundtrip (rescued by `installFetchProxy(...)`'s
+// fallback retry) and emits a red CORS error in the DevTools console on
+// the first call of every page load.
+function resolveCodexProxyRequestUrl(targetUrl) {
+  const runtimeProxy = globalThis.space?.proxy;
+
+  if (!runtimeProxy || typeof runtimeProxy.buildUrl !== "function") {
+    return String(targetUrl || "");
+  }
+
+  try {
+    return runtimeProxy.buildUrl(targetUrl);
+  } catch {
+    return String(targetUrl || "");
+  }
+}
+
+// Token persistence lives on the store/storage side. When a refresh rotates
+// the refresh token the hook must hand the new payload back to the store so
+// that encoding, userCrypto, and YAML writing stay owned by `storage.js`.
+async function deliverRefreshedTokensToStore(tokens) {
+  const alpine = globalThis.Alpine;
+  const store = typeof alpine?.store === "function" ? alpine.store("adminAgent") : null;
+
+  if (!store || typeof store.applyRefreshedCodexTokens !== "function") {
+    throw new Error("Admin agent store is not available to persist refreshed Codex tokens.");
+  }
+
+  await store.applyRefreshedCodexTokens(tokens);
+}
+
+export default async function openAiCodexAdminRequestHook(hookContext) {
+  const apiRequest = hookContext?.result;
+
+  if (!apiRequest || typeof apiRequest !== "object") {
+    return;
+  }
+
+  const settings = apiRequest.settings;
+
+  if (settings?.provider !== "openai-codex") {
+    return;
+  }
+
+  const freshTokens = await ensureFreshCodexAccessToken({
+    loadTokens: () => parseCodexTokensFromSettings(settings),
+    saveTokens: deliverRefreshedTokensToStore
+  });
+
+  const chatBody = isObject(apiRequest.requestBody) ? apiRequest.requestBody : {};
+  const model =
+    typeof settings?.codexModel === "string" && settings.codexModel.trim()
+      ? settings.codexModel.trim()
+      : chatBody.model;
+  const codexBody = chatToResponsesRequest({ ...chatBody, model });
+  const proxiedRequestUrl = resolveCodexProxyRequestUrl(CODEX_RESPONSES_ENDPOINT);
+  const withHeaders = applyCodexHeaders(
+    {
+      ...apiRequest,
+      requestBody: codexBody,
+      requestUrl: proxiedRequestUrl
+    },
+    {
+      accessToken: freshTokens.accessToken,
+      chatGPTAccountId: freshTokens.accountId
+    }
+  );
+
+  // The proxy endpoint is itself an authenticated space-agent route that
+  // needs the browser session cookie. It strips the cookie header before
+  // forwarding upstream so this does not leak `space_session` to chatgpt.com.
+  const requestInit = {
+    ...(withHeaders.requestInit && typeof withHeaders.requestInit === "object" ? withHeaders.requestInit : {}),
+    credentials: "same-origin"
+  };
+
+  hookContext.result = {
+    ...withHeaders,
+    apiEndpoint: proxiedRequestUrl,
+    requestInit,
+    settings: {
+      ...settings,
+      codexTokens: serializeTokens(freshTokens)
+    }
+  };
+}
diff --git a/app/L0/_all/mod/_core/openai_codex/ext/js/_core/onscreen_agent/api.js/prepareOnscreenAgentApiRequest/end/openai-codex.js b/app/L0/_all/mod/_core/openai_codex/ext/js/_core/onscreen_agent/api.js/prepareOnscreenAgentApiRequest/end/openai-codex.js
new file mode 100644
index 00000000..76829f2f
--- /dev/null
+++ b/app/L0/_all/mod/_core/openai_codex/ext/js/_core/onscreen_agent/api.js/prepareOnscreenAgentApiRequest/end/openai-codex.js
@@ -0,0 +1,134 @@
+import {
+  CODEX_RESPONSES_ENDPOINT,
+  applyCodexHeaders
+} from "/mod/_core/openai_codex/request.js";
+import { chatToResponsesRequest } from "/mod/_core/openai_codex/request_shape.js";
+import {
+  ensureFreshCodexAccessToken,
+  normalizeCodexTokens
+} from "/mod/_core/openai_codex/token_manager.js";
+
+function isObject(value) {
+  return value !== null && typeof value === "object" && !Array.isArray(value);
+}
+
+function parseCodexTokensFromSettings(settings) {
+  const raw = settings?.codexTokens;
+
+  if (!raw) {
+    return null;
+  }
+
+  if (isObject(raw)) {
+    return normalizeCodexTokens(raw);
+  }
+
+  if (typeof raw !== "string") {
+    return null;
+  }
+
+  try {
+    return normalizeCodexTokens(JSON.parse(raw));
+  } catch {
+    return null;
+  }
+}
+
+function serializeTokens(tokens) {
+  return tokens ? JSON.stringify(tokens) : "";
+}
+
+// chatgpt.com does not advertise CORS, so a direct browser fetch from the
+// page origin is always blocked by the browser's preflight. The standard
+// `prepareOnscreenAgentCompletionRequest` flow already routes its API URL
+// through `space.proxy.buildUrl(...)` for proxyable external endpoints; the
+// Codex hook overrides `requestUrl` and must therefore re-apply the same
+// proxy routing itself. Without this, every Codex chat call pays an extra
+// failed-direct-fetch roundtrip (rescued by `installFetchProxy(...)`'s
+// fallback retry) and emits a red CORS error in the DevTools console on
+// the first call of every page load.
+function resolveCodexProxyRequestUrl(targetUrl) {
+  const runtimeProxy = globalThis.space?.proxy;
+
+  if (!runtimeProxy || typeof runtimeProxy.buildUrl !== "function") {
+    return String(targetUrl || "");
+  }
+
+  try {
+    return runtimeProxy.buildUrl(targetUrl);
+  } catch {
+    return String(targetUrl || "");
+  }
+}
+
+// Token persistence lives on the store/storage side. When a refresh rotates
+// the refresh token the hook must hand the new payload back to the store so
+// that encoding, userCrypto, and YAML writing stay owned by `storage.js`.
+// This indirection through the Alpine store is the documented communication
+// channel between module-owned JS helpers and surface stores.
+async function deliverRefreshedTokensToStore(tokens) {
+  const alpine = globalThis.Alpine;
+  const store = typeof alpine?.store === "function" ? alpine.store("onscreenAgent") : null;
+
+  if (!store || typeof store.applyRefreshedCodexTokens !== "function") {
+    throw new Error("Onscreen agent store is not available to persist refreshed Codex tokens.");
+  }
+
+  await store.applyRefreshedCodexTokens(tokens);
+}
+
+export default async function openAiCodexOnscreenRequestHook(hookContext) {
+  const apiRequest = hookContext?.result;
+
+  if (!apiRequest || typeof apiRequest !== "object") {
+    return;
+  }
+
+  const settings = apiRequest.settings;
+
+  if (settings?.provider !== "openai-codex") {
+    return;
+  }
+
+  const freshTokens = await ensureFreshCodexAccessToken({
+    loadTokens: () => parseCodexTokensFromSettings(settings),
+    saveTokens: deliverRefreshedTokensToStore
+  });
+
+  const chatBody = isObject(apiRequest.requestBody) ? apiRequest.requestBody : {};
+  const model =
+    typeof settings?.codexModel === "string" && settings.codexModel.trim()
+      ? settings.codexModel.trim()
+      : chatBody.model;
+  const codexBody = chatToResponsesRequest({ ...chatBody, model });
+  const proxiedRequestUrl = resolveCodexProxyRequestUrl(CODEX_RESPONSES_ENDPOINT);
+  const withHeaders = applyCodexHeaders(
+    {
+      ...apiRequest,
+      requestBody: codexBody,
+      requestUrl: proxiedRequestUrl
+    },
+    {
+      accessToken: freshTokens.accessToken,
+      chatGPTAccountId: freshTokens.accountId
+    }
+  );
+
+  // The proxy endpoint is itself an authenticated space-agent route that
+  // needs the browser session cookie. It strips the cookie header before
+  // forwarding upstream so this does not leak `space_session` to chatgpt.com.
+  const requestInit = {
+    ...(withHeaders.requestInit && typeof withHeaders.requestInit === "object" ? withHeaders.requestInit : {}),
+    credentials: "same-origin"
+  };
+
+  hookContext.result = {
+    ...withHeaders,
+    apiEndpoint: proxiedRequestUrl,
+    requestInit,
+    settings: {
+      ...settings,
+      codexTokens: serializeTokens(freshTokens)
+    }
+  };
+}
diff --git a/app/L0/_all/mod/_core/openai_codex/models.js b/app/L0/_all/mod/_core/openai_codex/models.js
new file mode 100644
index 00000000..df95e35b
--- /dev/null
+++ b/app/L0/_all/mod/_core/openai_codex/models.js
@@ -0,0 +1,44 @@
+export const CODEX_DEFAULT_MODEL_ID = "gpt-5.4-mini";
+
+export const CODEX_MODEL_CATALOG = Object.freeze([
+  {
+    description: "Cheapest and fastest. Recommended default for ChatGPT Plus.",
+    id: "gpt-5.4-mini"
+  },
+  {
+    description: "Flagship general-purpose model.",
+    id: "gpt-5.4"
+  },
+  {
+    description: "Code-optimized, latest codex variant.",
+    id: "gpt-5.3-codex"
+  },
+  {
+    description: "Code-optimized, previous generation.",
+    id: "gpt-5.2-codex"
+  },
+  {
+    description: "Maximum code-optimized performance.",
+    id: "gpt-5.1-codex-max"
+  },
+  {
+    description: "Smallest code-optimized variant.",
+    id: "gpt-5.1-codex-mini"
+  }
+]);
+
+export function normalizeCodexModelId(value) {
+  const normalized = String(value || "").trim();
+
+  if (!normalized) {
+    return CODEX_DEFAULT_MODEL_ID;
+  }
+
+  return normalized;
+}
+
+export function isKnownCodexModelId(value) {
+  const normalized = String(value || "").trim();
+
+  return CODEX_MODEL_CATALOG.some((entry) => entry.id === normalized);
+}
diff --git a/app/L0/_all/mod/_core/openai_codex/models_discovery.js b/app/L0/_all/mod/_core/openai_codex/models_discovery.js
new file mode 100644
index 00000000..bd1045f9
--- /dev/null
+++ b/app/L0/_all/mod/_core/openai_codex/models_discovery.js
@@ -0,0 +1,93 @@
+import { CODEX_MODELS_ENDPOINT, applyCodexHeaders } from "/mod/_core/openai_codex/request.js";
+import { parseCodexModelsResponse } from "/mod/_core/openai_codex/models_parser.js";
+
+function normalizeText(value) {
+  return typeof value === "string" ? value.trim() : "";
+}
+
+// Resolve the space-agent same-origin proxy URL for the Codex models endpoint.
+// `chatgpt.com` does not send permissive CORS headers, so a direct browser
+// fetch is always blocked. We therefore route the request through the
+// space-agent outbound proxy (`/api/proxy`) on every call; this is existing
+// infrastructure shared with other cross-origin reads and does not require a
+// new backend endpoint. When the runtime does not expose the proxy helper
+// (e.g. test environment without the framework namespace), discovery returns
+// an empty list so callers fall back to the static catalog.
+function resolveProxyUrl(targetUrl) {
+  const runtimeProxy = globalThis.space?.proxy;
+
+  if (!runtimeProxy || typeof runtimeProxy.buildUrl !== "function") {
+    return "";
+  }
+
+  try {
+    return runtimeProxy.buildUrl(targetUrl);
+  } catch {
+    return "";
+  }
+}
+
+async function fetchModelsJson(url, headers, fetchImpl) {
+  // `credentials: "same-origin"` is required because the URL here is always
+  // the space-agent `/api/proxy` endpoint (the runtime's `space.proxy.buildUrl`
+  // returns a same-origin URL). `/api/proxy` itself is an authenticated
+  // endpoint that needs the browser's `space_session` cookie. The proxy
+  // strips the `cookie` header before forwarding upstream, so this does not
+  // leak space-agent session state to chatgpt.com.
+  const response = await fetchImpl(url, {
+    credentials: "same-origin",
+    headers,
+    method: "GET"
+  });
+
+  if (!response.ok) {
+    const error = new Error(`Codex models request failed with HTTP ${response.status}.`);
+    error.statusCode = response.status;
+    throw error;
+  }
+
+  return response.json();
+}
+
+export async function discoverCodexModels({
+  accessToken,
+  chatGPTAccountId,
+  fetchImpl
+} = {}) {
+  const fetchFn = typeof fetchImpl === "function" ? fetchImpl : globalThis.fetch;
+
+  if (typeof fetchFn !== "function") {
+    return [];
+  }
+
+  const token = normalizeText(accessToken);
+
+  if (!token) {
+    return [];
+  }
+
+  const proxyUrl = resolveProxyUrl(CODEX_MODELS_ENDPOINT);
+
+  if (!proxyUrl) {
+    return [];
+  }
+
+  const withAuth = applyCodexHeaders(
+    {},
+    {
+      accessToken: token,
+      chatGPTAccountId: normalizeText(chatGPTAccountId)
+    }
+  );
+  const headers = {
+    ...(withAuth?.headers || {}),
+    Accept: "application/json"
+  };
+
+  try {
+    const payload = await fetchModelsJson(proxyUrl, headers, fetchFn);
+    return parseCodexModelsResponse(payload);
+  } catch {
+    return [];
+  }
+}
diff --git a/app/L0/_all/mod/_core/openai_codex/models_parser.js b/app/L0/_all/mod/_core/openai_codex/models_parser.js
new file mode 100644
index 00000000..3565a629
--- /dev/null
+++ b/app/L0/_all/mod/_core/openai_codex/models_parser.js
@@ -0,0 +1,69 @@
+const DEFAULT_PRIORITY = 10_000;
+const HIDDEN_VISIBILITIES = new Set(["hide", "hidden"]);
+
+function isObject(value) {
+  return value !== null && typeof value === "object" && !Array.isArray(value);
+}
+
+function normalizeText(value) {
+  return typeof value === "string" ? value.trim() : "";
+}
+
+// Parse the live payload returned by `GET /backend-api/codex/models`. Shape is
+// `{ models: [{ slug, supported_in_api, visibility, priority, display_name,
+// description, ... }, ...] }`. Filters are deliberately minimal so future
+// Codex model additions surface automatically without a code change:
+//
+// - drop entries missing a `slug`
+// - drop entries with `supported_in_api === false`
+// - drop entries whose `visibility` equals `"hide"` or `"hidden"` (case-
+//   insensitive)
+//
+// Output is sorted by `(priority, slug)` ascending to match the Codex client
+// reference ordering, and shaped as `{ id, description }` so the settings UI
+// can consume the live catalog with the same reducer as the static fallback.
+export function parseCodexModelsResponse(payload) {
+  const entries = Array.isArray(payload?.models) ? payload.models : [];
+  const result = [];
+
+  for (const entry of entries) {
+    if (!isObject(entry)) {
+      continue;
+    }
+
+    const slug = normalizeText(entry.slug);
+
+    if (!slug) {
+      continue;
+    }
+
+    if (entry.supported_in_api === false) {
+      continue;
+    }
+
+    const visibility = normalizeText(entry.visibility).toLowerCase();
+
+    if (HIDDEN_VISIBILITIES.has(visibility)) {
+      continue;
+    }
+
+    const priority = Number.isFinite(entry.priority) ? Number(entry.priority) : DEFAULT_PRIORITY;
+    const description = normalizeText(entry.description) || normalizeText(entry.display_name);
+
+    result.push({
+      description,
+      id: slug,
+      priority
+    });
+  }
+
+  result.sort((left, right) => {
+    if (left.priority !== right.priority) {
+      return left.priority - right.priority;
+    }
+
+    return left.id.localeCompare(right.id);
+  });
+
+  return result.map(({ description, id }) => ({ description, id }));
+}
diff --git a/app/L0/_all/mod/_core/openai_codex/request.js b/app/L0/_all/mod/_core/openai_codex/request.js
new file mode 100644
index 00000000..633ea247
--- /dev/null
+++ b/app/L0/_all/mod/_core/openai_codex/request.js
@@ -0,0 +1,72 @@
+export const CODEX_BASE_URL = "https://chatgpt.com/backend-api/codex";
+export const CODEX_RESPONSES_ENDPOINT = `${CODEX_BASE_URL}/responses`;
+// `client_version` is a required query parameter on the Codex models endpoint;
+// omitting it yields HTTP 400 `invalid_request_error` with
+// `loc: ('query', 'client_version'), msg: 'Field required'`. The value is not
+// account-scoped and only needs to identify the caller surface.
+export const CODEX_MODELS_ENDPOINT = `${CODEX_BASE_URL}/models?client_version=0.0.0`;
+export const CODEX_OAUTH_CLIENT_ID = "app_EMoamEEZ73f0CkXaXp7hrann";
+export const CODEX_OAUTH_AUTHORIZE_URL = "https://auth.openai.com/codex/device";
+export const CODEX_OAUTH_DEVICE_CODE_URL = "https://auth.openai.com/api/accounts/deviceauth/usercode";
+export const CODEX_OAUTH_DEVICE_TOKEN_URL = "https://auth.openai.com/api/accounts/deviceauth/token";
+export const CODEX_OAUTH_TOKEN_URL = "https://auth.openai.com/oauth/token";
+export const CODEX_OAUTH_REDIRECT_URI = "https://auth.openai.com/deviceauth/callback";
+
+const CODEX_ORIGINATOR = "codex_cli_rs";
+const CODEX_USER_AGENT = `${CODEX_ORIGINATOR}/0.0.0 (space-agent)`;
+
+export function extractChatGPTAccountId(accessToken = "") {
+  const token = String(accessToken || "").trim();
+
+  if (!token) {
+    return "";
+  }
+
+  try {
+    const parts = token.split(".");
+
+    if (parts.length < 2) {
+      return "";
+    }
+
+    const payloadSegment = parts[1].replace(/-/gu, "+").replace(/_/gu, "/");
+    const paddedSegment = payloadSegment + "=".repeat((4 - (payloadSegment.length % 4)) % 4);
+    const payload = JSON.parse(atob(paddedSegment));
+    const accountId = payload?.["https://api.openai.com/auth"]?.chatgpt_account_id;
+
+    return typeof accountId === "string" ? accountId : "";
+  } catch {
+    return "";
+  }
+}
+
+export function applyCodexHeaders(apiRequest = {}, options = {}) {
+  const headers =
+    apiRequest?.headers && typeof apiRequest.headers === "object"
+      ? { ...apiRequest.headers }
+      : {};
+  const accessToken = String(options?.accessToken || "").trim();
+  const explicitAccountId = String(options?.chatGPTAccountId || "").trim();
+
+  // Cloudflare in front of the Codex endpoint blocks non-residential traffic unless the request
+  // advertises a first-party originator. Without these two headers the server returns HTTP 403
+  // with `cf-mitigated: challenge` regardless of token validity.
+  headers["User-Agent"] = CODEX_USER_AGENT;
+  headers.originator = CODEX_ORIGINATOR;
+  headers.Accept = "text/event-stream";
+
+  if (accessToken) {
+    headers.Authorization = `Bearer ${accessToken}`;
+  }
+
+  const chatGPTAccountId = explicitAccountId || extractChatGPTAccountId(accessToken);
+
+  if (chatGPTAccountId) {
+    headers["ChatGPT-Account-ID"] = chatGPTAccountId;
+  }
+
+  return {
+    ...apiRequest,
+    headers
+  };
+}
diff --git a/app/L0/_all/mod/_core/openai_codex/request_shape.js b/app/L0/_all/mod/_core/openai_codex/request_shape.js
new file mode 100644
index 00000000..08fbfe91
--- /dev/null
+++ b/app/L0/_all/mod/_core/openai_codex/request_shape.js
@@ -0,0 +1,184 @@
+const CHAT_COMPLETIONS_FIELDS_TO_DROP = new Set([
+  "frequency_penalty",
+  "logit_bias",
+  "max_output_tokens",
+  "max_tokens",
+  "n",
+  "presence_penalty",
+  "response_format",
+  "stop",
+  "temperature",
+  "tool_choice",
+  "tools",
+  "top_logprobs",
+  "top_p"
+]);
+
+function isObject(value) {
+  return value !== null && typeof value === "object" && !Array.isArray(value);
+}
+
+// Codex's Responses API distinguishes the text-content type by source role:
+// user-authored content uses `input_text`, assistant-authored content uses
+// `output_text`. Posting `input_text` under a role:"assistant" entry yields
+// an `invalid_value` 400 from the API, so the text-type must be passed in by
+// the caller rather than hard-coded here.
+function convertContentParts(content, textType) {
+  if (typeof content === "string") {
+    return [
+      {
+        text: content,
+        type: textType
+      }
+    ];
+  }
+
+  if (!Array.isArray(content)) {
+    return [];
+  }
+
+  return content
+    .map((part) => {
+      if (typeof part === "string") {
+        return {
+          text: part,
+          type: textType
+        };
+      }
+
+      if (!isObject(part)) {
+        return null;
+      }
+
+      if (part.type === "text" || part.type === "input_text" || part.type === "output_text") {
+        return {
+          text: typeof part.text === "string" ? part.text : "",
+          type: textType
+        };
+      }
+
+      if (part.type === "image_url") {
+        const imageUrl =
+          typeof part.image_url === "string"
+            ? part.image_url
+            : isObject(part.image_url)
+              ? part.image_url.url
+              : "";
+        const detail = isObject(part.image_url) ? part.image_url.detail : undefined;
+
+        const converted = {
+          image_url: imageUrl,
+          type: "input_image"
+        };
+
+        if (typeof detail === "string" && detail) {
+          converted.detail = detail;
+        }
+
+        return converted;
+      }
+
+      if (part.type === "input_image") {
+        return { ...part };
+      }
+
+      return null;
+    })
+    .filter(Boolean);
+}
+
+function textTypeForRole(role) {
+  return role === "assistant" ? "output_text" : "input_text";
+}
+
+function extractInstructionsAndInput(messages) {
+  if (!Array.isArray(messages)) {
+    return {
+      input: [],
+      instructions: ""
+    };
+  }
+
+  let instructions = "";
+  let systemConsumed = false;
+  const input = [];
+
+  for (const message of messages) {
+    if (!isObject(message)) {
+      continue;
+    }
+
+    const role = message.role;
+
+    if (role === "system") {
+      if (!systemConsumed) {
+        instructions = typeof message.content === "string"
+          ? message.content
+          : convertContentParts(message.content, "input_text")
+              .map((part) => part.text || "")
+              .join("");
+        systemConsumed = true;
+      }
+
+      continue;
+    }
+
+    if (role !== "user" && role !== "assistant") {
+      continue;
+    }
+
+    const textType = textTypeForRole(role);
+    const contentParts = convertContentParts(message.content, textType);
+    const hasMeaningfulPart = contentParts.some(
+      (part) => (part.type !== "input_text" && part.type !== "output_text") ||
+        (typeof part.text === "string" && part.text.length > 0)
+    );
+
+    if (!hasMeaningfulPart) {
+      continue;
+    }
+
+    input.push({
+      content: contentParts,
+      role
+    });
+  }
+
+  return {
+    input,
+    instructions
+  };
+}
+
+export function chatToResponsesRequest(chatBody = {}) {
+  const body = isObject(chatBody) ? chatBody : {};
+  const { input, instructions } = extractInstructionsAndInput(body.messages);
+
+  const responsesBody = {
+    input,
+    model: typeof body.model === "string" ? body.model : "",
+    store: false
+  };
+
+  if (instructions) {
+    responsesBody.instructions = instructions;
+  }
+
+  if (body.stream === true) {
+    responsesBody.stream = true;
+  }
+
+  for (const [key, value] of Object.entries(body)) {
+    if (key === "messages" || key === "model" || key === "stream" || key === "store") {
+      continue;
+    }
+
+    if (CHAT_COMPLETIONS_FIELDS_TO_DROP.has(key)) {
+      continue;
+    }
+
+    responsesBody[key] = value;
+  }
+
+  return responsesBody;
+}
diff --git a/app/L0/_all/mod/_core/openai_codex/sse_adapter.js b/app/L0/_all/mod/_core/openai_codex/sse_adapter.js
new file mode 100644
index 00000000..35417118
--- /dev/null
+++ b/app/L0/_all/mod/_core/openai_codex/sse_adapter.js
@@ -0,0 +1,188 @@
+export const CODEX_STREAM_DONE_MARKER = "[DONE]";
+
+const IGNORED_EVENT_TYPES = new Set([
+  "response.audio.delta",
+  "response.audio.done",
+  "response.audio_transcript.delta",
+  "response.audio_transcript.done",
+  "response.code_interpreter_call_code.delta",
+  "response.code_interpreter_call_code.done",
+  "response.code_interpreter_call.completed",
+  "response.code_interpreter_call.in_progress",
+  "response.code_interpreter_call.interpreting",
+  "response.content_part.added",
+  "response.content_part.done",
+  "response.created",
+  "response.custom_tool_call_input.delta",
+  "response.custom_tool_call_input.done",
+  "response.file_search_call.completed",
+  "response.file_search_call.in_progress",
+  "response.file_search_call.searching",
+  "response.function_call_arguments.delta",
+  "response.function_call_arguments.done",
+  "response.image_gen_call.completed",
+  "response.image_gen_call.generating",
+  "response.image_gen_call.in_progress",
+  "response.image_gen_call.partial_image",
+  "response.in_progress",
+  "response.mcp_call.completed",
+  "response.mcp_call.failed",
+  "response.mcp_call.in_progress",
+  "response.mcp_call_arguments.delta",
+  "response.mcp_call_arguments.done",
+  "response.mcp_list_tools.completed",
+  "response.mcp_list_tools.failed",
+  "response.mcp_list_tools.in_progress",
+  "response.output_item.added",
+  "response.output_item.done",
+  "response.output_text.done",
+  "response.output_text_annotation.added",
+  "response.queued",
+  "response.reasoning_summary_part.added",
+  "response.reasoning_summary_part.done",
+  "response.reasoning_summary_text.delta",
+  "response.reasoning_summary_text.done",
+  "response.reasoning_text.delta",
+  "response.reasoning_text.done",
+  "response.refusal.done",
+  "response.web_search_call.completed",
+  "response.web_search_call.in_progress",
+  "response.web_search_call.searching"
+]);
+
+function isObject(value) {
+  return value !== null && typeof value === "object" && !Array.isArray(value);
+}
+
+function buildTextDeltaFrame(delta) {
+  return {
+    choices: [
+      {
+        delta: { content: delta },
+        index: 0
+      }
+    ]
+  };
+}
+
+function buildFinishFrame(finishReason, usage) {
+  const frame = {
+    choices: [
+      {
+        delta: {},
+        finish_reason: finishReason,
+        index: 0
+      }
+    ]
+  };
+
+  if (usage && isObject(usage)) {
+    frame.usage = {
+      completion_tokens: Number.isFinite(usage.output_tokens) ? usage.output_tokens : 0,
+      prompt_tokens: Number.isFinite(usage.input_tokens) ? usage.input_tokens : 0,
+      total_tokens: Number.isFinite(usage.total_tokens) ? usage.total_tokens : 0
+    };
+  }
+
+  return frame;
+}
+
+function readEventType(event) {
+  if (!isObject(event)) {
+    return "";
+  }
+
+  return typeof event.type === "string" ? event.type : "";
+}
+
+function readErrorMessage(event) {
+  if (!isObject(event)) {
+    return "Codex stream failed with an unknown error.";
+  }
+
+  if (typeof event.message === "string" && event.message) {
+    return event.message;
+  }
+
+  const nestedError = event.response?.error;
+
+  if (isObject(nestedError) && typeof nestedError.message === "string" && nestedError.message) {
+    return nestedError.message;
+  }
+
+  return "Codex stream failed without an error message.";
+}
+
+export function mapCodexEventToChatFrames(event) {
+  const eventType = readEventType(event);
+
+  if (!eventType) {
+    return [];
+  }
+
+  if (IGNORED_EVENT_TYPES.has(eventType)) {
+    return [];
+  }
+
+  switch (eventType) {
+    case "response.output_text.delta":
+    case "response.refusal.delta": {
+      const delta = typeof event.delta === "string" ? event.delta : "";
+
+      if (!delta) {
+        return [];
+      }
+
+      return [buildTextDeltaFrame(delta)];
+    }
+
+    case "response.completed": {
+      const usage = event.response?.usage;
+      return [buildFinishFrame("stop", usage), CODEX_STREAM_DONE_MARKER];
+    }
+
+    case "response.incomplete": {
+      const reason = event.response?.incomplete_details?.reason;
+      const finishReason =
+        reason === "max_output_tokens"
+          ? "length"
+          : reason === "content_filter"
+            ? "content_filter"
+            : reason === "max_tokens"
+              ? "length"
+              : typeof reason === "string" && reason
+                ? reason
+                : "length";
+      const usage = event.response?.usage;
+
+      return [buildFinishFrame(finishReason, usage), CODEX_STREAM_DONE_MARKER];
+    }
+
+    case "response.failed":
+    case "error": {
+      throw new Error(readErrorMessage(event));
+    }
+
+    default:
+      // Unknown event type - skip silently so future Codex additions do not break streaming.
+      return [];
+  }
+}
+
+export function mapCodexEventSequenceToChatFrames(events) {
+  if (!Array.isArray(events)) {
+    return [];
+  }
+
+  const frames = [];
+
+  for (const event of events) {
+    const eventFrames = mapCodexEventToChatFrames(event);
+
+    for (const frame of eventFrames) {
+      frames.push(frame);
+    }
+  }
+
+  return frames;
+}
diff --git a/app/L0/_all/mod/_core/openai_codex/token_envelope.js b/app/L0/_all/mod/_core/openai_codex/token_envelope.js
new file mode 100644
index 00000000..6a5ae16e
--- /dev/null
+++ b/app/L0/_all/mod/_core/openai_codex/token_envelope.js
@@ -0,0 +1,148 @@
+const USER_CRYPTO_PREFIX = "userCrypto:";
+
+function getUserCryptoRuntime(runtime) {
+  return runtime?.utils?.userCrypto ?? null;
+}
+
+function isSingleUserAppRuntime(runtime) {
+  return Boolean(runtime?.config?.get?.("SINGLE_USER_APP", false));
+}
+
+// Serialize an in-memory Codex tokens object into the JSON string used as the
+// plaintext envelope payload and as the shape stored in Alpine store state.
+// Returns "" for falsy or non-object inputs so callers can pass the return
+// value directly into `settings.codexTokens` without branching.
+export function serializeCodexTokens(tokens) {
+  if (!tokens || typeof tokens !== "object") {
+    return "";
+  }
+
+  try {
+    return JSON.stringify(tokens);
+  } catch {
+    return "";
+  }
+}
+
+// Parse a persisted plaintext token payload (the output of
+// `serializeCodexTokens` after decryption, or the JSON string the Alpine
+// store keeps at `settings.codexTokens`). Returns `null` for malformed or
+// non-object payloads so callers can use a truthy guard on the result.
+export function parseCodexTokens(plain) {
+  if (plain && typeof plain === "object" && !Array.isArray(plain)) {
+    return plain;
+  }
+
+  const normalized = typeof plain === "string" ? plain.trim() : "";
+
+  if (!normalized) {
+    return null;
+  }
+
+  try {
+    const value = JSON.parse(normalized);
+    return value && typeof value === "object" && !Array.isArray(value) ? value : null;
+  } catch {
+    return null;
+  }
+}
+
+// Decodes whatever is sitting in the persisted `codex_tokens` config field and
+// returns a tri-state result shaped like the existing `api_key` handling:
+//
+//   { locked: boolean, storedValue: string, value: string }
+//
+// - `value` is the plaintext JSON string of the tokens when decryption succeeded
+// - `storedValue` is the raw persisted ciphertext (or legacy plaintext); it is
+//   kept verbatim so save can preserve the existing ciphertext untouched while
+//   the session is locked
+// - `locked` is true when a `userCrypto:`-prefixed payload could not be
+//   decrypted in the current session (SINGLE_USER_APP mode or missing master
+//   key); callers must preserve the ciphertext instead of clearing it
+export async function decodeStoredCodexTokens(runtime, storedValue) {
+  const rawStoredValue = String(storedValue || "").trim();
+
+  if (!rawStoredValue) {
+    return {
+      locked: false,
+      storedValue: "",
+      value: ""
+    };
+  }
+
+  if (isSingleUserAppRuntime(runtime) && rawStoredValue.startsWith(USER_CRYPTO_PREFIX)) {
+    // Legacy non-single-user ciphertext must not be treated as plaintext in
+    // single-user mode because single-user bypasses userCrypto entirely.
+    return {
+      locked: true,
+      storedValue: rawStoredValue,
+      value: ""
+    };
+  }
+
+  const userCrypto = getUserCryptoRuntime(runtime);
+
+  if (!userCrypto) {
+    return {
+      locked: rawStoredValue.startsWith(USER_CRYPTO_PREFIX),
+      storedValue: rawStoredValue,
+      value: ""
+    };
+  }
+
+  const plain = await userCrypto.decryptText(rawStoredValue);
+
+  return {
+    locked: rawStoredValue.startsWith(USER_CRYPTO_PREFIX) && !plain,
+    storedValue: rawStoredValue,
+    value: String(plain || "").trim()
+  };
+}
+
+// Encodes the in-memory Codex tokens for persistence. Mirrors the api_key
+// contract: when the active session is locked (cannot currently decrypt the
+// previously stored ciphertext) and the caller did not explicitly replace the
+// tokens, the existing ciphertext must be preserved verbatim so signing in on
+// another session still works.
+//
+// `settings.codexTokens` is the plaintext JSON string (what the frontend
+// holds in memory). `settings.storedCodexTokensLocked` and
+// `settings.storedCodexTokensValue` carry the locked-state bookkeeping that
+// `decodeStoredCodexTokens` returned during the last load.
+export async function encodeStoredCodexTokens(runtime, settings = {}) {
+  const nextValue = typeof settings.codexTokens === "string" ? settings.codexTokens.trim() : "";
+  const storedValue = typeof settings.storedCodexTokensValue === "string" ? settings.storedCodexTokensValue.trim() : "";
+
+  if (
+    settings.storedCodexTokensLocked === true &&
+    !nextValue &&
+    storedValue.startsWith(USER_CRYPTO_PREFIX)
+  ) {
+    return storedValue;
+  }
+
+  if (!nextValue) {
+    return "";
+  }
+
+  if (isSingleUserAppRuntime(runtime)) {
+    // In single-user mode userCrypto is a plaintext bypass, so storing the
+    // plaintext JSON string matches what decryptText would return anyway.
+    return nextValue;
+  }
+
+  const userCrypto = getUserCryptoRuntime(runtime);
+
+  if (!userCrypto) {
+    throw new Error("Unable to encrypt Codex tokens because userCrypto is unavailable.");
+  }
+
+  const encryptedValue = await userCrypto.encryptText(nextValue);
+
+  if (!encryptedValue) {
+    throw new Error("Unable to encrypt Codex tokens because userCrypto is unavailable.");
+  }
+
+  return encryptedValue;
+}
+
diff --git a/app/L0/_all/mod/_core/openai_codex/token_manager.js b/app/L0/_all/mod/_core/openai_codex/token_manager.js
new file mode 100644
index 00000000..9729041e
--- /dev/null
+++ b/app/L0/_all/mod/_core/openai_codex/token_manager.js
@@ -0,0 +1,185 @@
+export const DEFAULT_CODEX_REFRESH_MARGIN_SECONDS = 300;
+export const CODEX_AUTH_START_ENDPOINT = "/api/openai_codex_auth_start";
+export const CODEX_AUTH_POLL_ENDPOINT = "/api/openai_codex_auth_poll";
+export const CODEX_TOKEN_REFRESH_ENDPOINT = "/api/openai_codex_token_refresh";
+
+const inFlightRefreshes = new Map();
+
+function isObject(value) {
+  return value !== null && typeof value === "object" && !Array.isArray(value);
+}
+
+export function normalizeCodexTokens(value) {
+  if (!isObject(value)) {
+    return null;
+  }
+
+  const accessToken = String(value.accessToken || "").trim();
+  const refreshToken = String(value.refreshToken || "").trim();
+
+  if (!accessToken || !refreshToken) {
+    return null;
+  }
+
+  const expiresAt = Number.isFinite(value.expiresAt) ? Number(value.expiresAt) : 0;
+  const obtainedAt = Number.isFinite(value.obtainedAt) ? Number(value.obtainedAt) : 0;
+  const idToken = String(value.idToken || "").trim();
+  const accountId = String(value.accountId || "").trim();
+
+  return {
+    accessToken,
+    accountId,
+    expiresAt,
+    idToken,
+    obtainedAt,
+    refreshToken
+  };
+}
+
+export function isCodexAccessTokenExpiring(tokens, marginSeconds = DEFAULT_CODEX_REFRESH_MARGIN_SECONDS) {
+  const normalized = normalizeCodexTokens(tokens);
+
+  if (!normalized) {
+    return true;
+  }
+
+  const nowSeconds = Math.floor(Date.now() / 1000);
+  const margin = Number.isFinite(marginSeconds) && marginSeconds >= 0 ? marginSeconds : DEFAULT_CODEX_REFRESH_MARGIN_SECONDS;
+
+  return normalized.expiresAt <= nowSeconds + margin;
+}
+
+async function postJson(url, body, fetchImpl) {
+  const fetchFn = typeof fetchImpl === "function" ? fetchImpl : globalThis.fetch;
+
+  if (typeof fetchFn !== "function") {
+    throw new Error("No fetch implementation available.");
+  }
+
+  const response = await fetchFn(url, {
+    body: JSON.stringify(body || {}),
+    credentials: "same-origin",
+    headers: { "Content-Type": "application/json" },
+    method: "POST"
+  });
+
+  let payload = null;
+  const contentType = response.headers?.get?.("content-type") || "";
+
+  if (contentType.includes("application/json")) {
+    try {
+      payload = await response.json();
+    } catch {
+      payload = null;
+    }
+  } else {
+    try {
+      payload = await response.text();
+    } catch {
+      payload = null;
+    }
+  }
+
+  if (!response.ok) {
+    const message = isObject(payload) && typeof payload.error === "string" ? payload.error : `HTTP ${response.status}`;
+    const error = new Error(message);
+    error.statusCode = response.status;
+    error.payload = payload;
+    throw error;
+  }
+
+  return payload;
+}
+
+export async function startCodexDeviceAuthorization({ fetchImpl } = {}) {
+  return postJson(CODEX_AUTH_START_ENDPOINT, {}, fetchImpl);
+}
+
+export async function pollCodexDeviceAuthorization({ deviceAuthId, userCode, fetchImpl } = {}) {
+  return postJson(
+    CODEX_AUTH_POLL_ENDPOINT,
+    {
+      deviceAuthId: String(deviceAuthId || "").trim(),
+      userCode: String(userCode || "").trim()
+    },
+    fetchImpl
+  );
+}
+
+async function refreshOnce(refreshToken, fetchImpl) {
+  const response = await postJson(CODEX_TOKEN_REFRESH_ENDPOINT, { refreshToken }, fetchImpl);
+  const normalized = normalizeCodexTokens(response);
+
+  if (!normalized) {
+    throw new Error("Codex refresh response did not include valid tokens.");
+  }
+
+  return normalized;
+}
+
+async function runSingleFlightRefresh(refreshToken, fetchImpl) {
+  const existing = inFlightRefreshes.get(refreshToken);
+
+  if (existing) {
+    return existing;
+  }
+
+  const pending = (async () => {
+    try {
+      return await refreshOnce(refreshToken, fetchImpl);
+    } finally {
+      inFlightRefreshes.delete(refreshToken);
+    }
+  })();
+
+  inFlightRefreshes.set(refreshToken, pending);
+  return pending;
+}
+
+export async function ensureFreshCodexAccessToken({
+  fetchImpl,
+  loadTokens,
+  marginSeconds = DEFAULT_CODEX_REFRESH_MARGIN_SECONDS,
+  saveTokens
+} = {}) {
+  if (typeof loadTokens !== "function") {
+    throw new Error("loadTokens is required.");
+  }
+
+  // Always re-read persisted tokens instead of trusting an in-memory copy.
+  // Other tabs or processes may have rotated the refresh token, and the
+  // single-use rotation rule means a stale in-memory refresh_token will
+  // fail with invalid_grant and force a full re-login.
+  const loadedTokens = normalizeCodexTokens(await loadTokens());
+
+  if (!loadedTokens) {
+    const error = new Error("Codex tokens are missing. Please log in with ChatGPT.");
+    error.statusCode = 401;
+    throw error;
+  }
+
+  if (!isCodexAccessTokenExpiring(loadedTokens, marginSeconds)) {
+    return loadedTokens;
+  }
+
+  const refreshed = await runSingleFlightRefresh(loadedTokens.refreshToken, fetchImpl);
+
+  if (typeof saveTokens === "function") {
+    try {
+      await saveTokens(refreshed);
+    } catch (error) {
+      // Saving the refreshed tokens back into user config is best-effort from
+      // this module's perspective; the caller should log the failure. The
+      // refreshed tokens are still returned so the active request can proceed.
+      if (typeof globalThis.console?.warn === "function") {
+        globalThis.console.warn("Failed to persist refreshed Codex tokens:", error);
+      }
+    }
+  }
+
+  return refreshed;
+}
+
+export function resetCodexTokenManagerForTesting() {
+  inFlightRefreshes.clear();
+}
diff --git a/server/AGENTS.md b/server/AGENTS.md
index 9828c8ff..31c09ada 100644
--- a/server/AGENTS.md
+++ b/server/AGENTS.md
@@ -34,6 +34,7 @@ Current subsystem-local docs in the server tree:
 - `server/lib/share/AGENTS.md`
 - `server/lib/tmp/AGENTS.md`
 - `server/lib/git/AGENTS.md`
+- `server/lib/openai_codex/AGENTS.md`
 
 Update rules:
 
@@ -121,6 +122,7 @@ Current server layout:
 - `server/lib/share/`: backend-owned hosted-share archive storage, ZIP validation, authenticated import, and anonymous guest-clone helpers
 - `server/lib/tmp/`: `server/tmp/` lifecycle, stale-entry cleanup, and low-RAM ZIP archive creation for attachment-style downloads
 - `server/lib/git/`: Git backend abstraction used by update flows and Git-backed module installs
+- `server/lib/openai_codex/`: backend helpers for the OpenAI Codex (ChatGPT Plus) OAuth device-code flow and single-writer refresh-token rotation used by the `openai_codex_auth_*` and `openai_codex_token_refresh` endpoints
 - `server/tmp/`: transient disk-backed artifacts such as folder-download ZIP files
 
 ## Request Flow And Runtime Contracts
diff --git a/server/api/AGENTS.md b/server/api/AGENTS.md
index 0475d294..34963cb9 100644
--- a/server/api/AGENTS.md
+++ b/server/api/AGENTS.md
@@ -139,6 +139,23 @@ Important notes:
 - `user_self_info` returns the authenticated user's derived identity plus browser-bootstrap crypto metadata: `{ username, fullName, groups, managedGroups, sessionId, userCryptoKeyId, userCryptoState }`
 - `password_generate` is an authenticated utility endpoint that returns the backend-sealed `password.json` payload and should stay narrow
 
+OpenAI Codex OAuth endpoints:
+
+- `openai_codex_auth_start`
+- `openai_codex_auth_poll`
+- `openai_codex_token_refresh`
+
+Current rules:
+
+- these endpoints back the ChatGPT Plus subscription transport for the first-party chat surfaces and authenticate through the normal `space_session` cookie; anonymous access is not allowed
+- they are backend-owned because OpenAI refresh tokens use single-use rotation, which frontend-only code cannot serialize safely between concurrent browser tabs without losing the token and forcing a full re-login; this is a shared-data integrity concern under the rule in `/server/AGENTS.md`
+- they delegate all OAuth traffic to `server/lib/openai_codex/oauth_client.js` and use the in-process mutex in `server/lib/openai_codex/refresh_lock.js` to coalesce concurrent refresh calls that share the same refresh token
+- `openai_codex_auth_start` accepts `POST` with no body; it returns `{ deviceAuthId, userCode, verificationUrl, interval, expiresIn }` so the frontend can show the user the code and poll
+- `openai_codex_auth_poll` accepts `POST` with `{ deviceAuthId, userCode }`; it returns `{ state: "pending" }` until the user authorizes, then `{ state: "complete", tokens: { accessToken, refreshToken, idToken, expiresAt, obtainedAt, accountId } }`. The field is named `state` rather than `status` because the shared router response serializer interprets a top-level `status` property as an HTTP status code.
+- `openai_codex_token_refresh` accepts `POST` with `{ refreshToken }`; it returns a fresh token payload in the same shape, or HTTP 401 when the refresh token has already been consumed (e.g. by a parallel Codex client)
+- token storage stays on the frontend as `userCrypto:`-prefixed ciphertext in `~/conf/onscreen-agent.yaml` and `~/conf/admin-chat.yaml`; these endpoints never read or persist tokens themselves
+- there is no revoke endpoint; logout clears the encrypted config entry on the frontend because access tokens expire within about an hour and OpenAI's device-flow issues only one refresh token per device
+
 ## Handler Contract
 
 Handlers receive the request context assembled by `server/router/router.js`, including:
diff --git a/server/api/openai_codex_auth_poll.js b/server/api/openai_codex_auth_poll.js
new file mode 100644
index 00000000..15b78bf7
--- /dev/null
+++ b/server/api/openai_codex_auth_poll.js
@@ -0,0 +1,26 @@
+import { pollDeviceAuthorization } from "../lib/openai_codex/oauth_client.js";
+
+function createHttpError(message, statusCode) {
+  const error = new Error(message);
+  error.statusCode = statusCode;
+  return error;
+}
+
+export async function post(context) {
+  const payload =
+    context.body && typeof context.body === "object" && !Buffer.isBuffer(context.body)
+      ? context.body
+      : {};
+
+  try {
+    return await pollDeviceAuthorization({
+      deviceAuthId: payload.deviceAuthId,
+      userCode: payload.userCode
+    });
+  } catch (error) {
+    throw createHttpError(
+      error.message || "Failed to poll Codex device authorization.",
+      Number(error.statusCode) || 502
+    );
+  }
+}
diff --git a/server/api/openai_codex_auth_start.js b/server/api/openai_codex_auth_start.js
new file mode 100644
index 00000000..bc4d2151
--- /dev/null
+++ b/server/api/openai_codex_auth_start.js
@@ -0,0 +1,18 @@
+import { startDeviceAuthorization } from "../lib/openai_codex/oauth_client.js";
+
+function createHttpError(message, statusCode) {
+  const error = new Error(message);
+  error.statusCode = statusCode;
+  return error;
+}
+
+export async function post() {
+  try {
+    return await startDeviceAuthorization();
+  } catch (error) {
+    throw createHttpError(
+      error.message || "Failed to start Codex device authorization.",
+      Number(error.statusCode) || 502
+    );
+  }
+}
diff --git a/server/api/openai_codex_token_refresh.js b/server/api/openai_codex_token_refresh.js
new file mode 100644
index 00000000..88ae7327
--- /dev/null
+++ b/server/api/openai_codex_token_refresh.js
@@ -0,0 +1,29 @@
+import { refreshAccessToken } from "../lib/openai_codex/oauth_client.js";
+import { runSingleWriterRefresh } from "../lib/openai_codex/refresh_lock.js";
+
+function createHttpError(message, statusCode) {
+  const error = new Error(message);
+  error.statusCode = statusCode;
+  return error;
+}
+
+export async function post(context) {
+  const payload =
+    context.body && typeof context.body === "object" && !Buffer.isBuffer(context.body)
+      ? context.body
+      : {};
+  const refreshToken = String(payload.refreshToken || "").trim();
+
+  if (!refreshToken) {
+    throw createHttpError("refreshToken is required.", 400);
+  }
+
+  try {
+    return await runSingleWriterRefresh(refreshToken, () => refreshAccessToken({ refreshToken }));
+  } catch (error) {
+    throw createHttpError(
+      error.message || "Failed to refresh Codex access token.",
+      Number(error.statusCode) || 502
+    );
+  }
+}
diff --git a/server/lib/openai_codex/AGENTS.md b/server/lib/openai_codex/AGENTS.md
new file mode 100644
index 00000000..c17a07a9
--- /dev/null
+++ b/server/lib/openai_codex/AGENTS.md
@@ -0,0 +1,50 @@
+# AGENTS
+
+## Purpose
+
+`server/lib/openai_codex/` owns the backend helpers for the OpenAI Codex (ChatGPT Plus) OAuth device-code flow and refresh-token rotation.
+
+It is a thin helper layer: endpoint modules under `server/api/` delegate to these helpers for the OAuth HTTP traffic and for the single-writer refresh mutex. These helpers must not read or write app files, must not touch sessions, and must not depend on the frontend runtime.
+
+## Why This Lives On The Server
+
+The root `server/AGENTS.md` reserves backend code for "security, shared-data integrity, multi-user isolation, or runtime-stability" concerns that the frontend cannot own safely. The Codex OAuth refresh path meets the *shared-data integrity* bar: OpenAI refresh tokens use single-use rotation — if two browser tabs refresh concurrently, exactly one call succeeds and the other returns `invalid_grant`, discarding the only valid refresh token the user has. Full re-authentication becomes the only recovery. A frontend-only implementation cannot provide the serialization guarantee needed to prevent that loss.
+
+The device-code and token-exchange calls additionally leverage server-side fetch so the flow keeps working even when browsers block cross-origin POSTs to `auth.openai.com`.
+
+## Ownership
+
+This subsystem owns:
+
+- `oauth_client.js`: pure OAuth transport functions (`startDeviceAuthorization`, `pollDeviceAuthorization`, `refreshAccessToken`), OAuth URL constants, and JWT account-id extraction
+- `refresh_lock.js`: in-process single-writer coalescer (`runSingleWriterRefresh`) that prevents two concurrent callers from consuming the same refresh token
+
+## Contracts
+
+- `startDeviceAuthorization()` returns `{ deviceAuthId, expiresIn, interval, userCode, verificationUrl }` on success or throws an error with a `statusCode` property
+- `pollDeviceAuthorization({ deviceAuthId, userCode })` returns `{ state: "pending" }` while the user has not yet entered the code, or `{ state: "complete", tokens }` once the token exchange succeeds. The field is named `state` rather than `status` because the shared router response serializer treats a top-level `status` property as an HTTP status code.
+- `refreshAccessToken({ refreshToken })` returns the full token payload described below; it throws a `401` error with `invalid_grant` mapped to a human-readable message when the refresh token has already been consumed, and `502` for other upstream failures
+- the returned `tokens` payload shape is:
+  ```
+  {
+    accessToken: string,
+    refreshToken: string,
+    idToken: string,
+    expiresAt: number,   // unix seconds
+    obtainedAt: number,  // unix seconds
+    accountId: string    // empty when the JWT cannot be parsed or the claim is missing
+  }
+  ```
+- `runSingleWriterRefresh(refreshToken, worker)` coalesces concurrent calls with the same `refreshToken` string into one inflight promise so the single-use token is never posted twice at the same time; it does not persist across process restarts and does not span worker processes in clustered runtime
+
+## Known Limitations
+
+- the refresh mutex is in-process only; when `WORKERS>1`, concurrent refreshes on different worker processes can still race. This is acceptable for the typical single-user browser scenario because one user's tokens are stored in one browser profile and only one Codex client uses them at a time; clustered deployments that expect multiple workers to refresh the same token concurrently must elevate the lock into `server/runtime/state_system.js` named locks
+- this subsystem does not read or persist tokens; persistence stays on the frontend under `userCrypto:`-prefixed encryption in `~/conf/onscreen-agent.yaml` and `~/conf/admin-chat.yaml`
+- there is no revoke endpoint; logout clears the encrypted config entry on the frontend, which is sufficient because access tokens expire within about an hour and OpenAI's device-flow issues one refresh token per device
+
+## Development Guidance
+
+- keep these helpers pure and side-effect-free apart from the network calls and the inflight refresh map
+- never import these helpers from other layers than `server/api/openai_codex_*.js` endpoints
+- when OpenAI changes the OAuth URLs, client id, or device-flow response shape, update this file, `oauth_client.js`, and the matching `/app/L0/_all/mod/_core/openai_codex/` constants in the same session
diff --git a/server/lib/openai_codex/oauth_client.js b/server/lib/openai_codex/oauth_client.js
new file mode 100644
index 00000000..5a368166
--- /dev/null
+++ b/server/lib/openai_codex/oauth_client.js
@@ -0,0 +1,208 @@
+export const CODEX_OAUTH_CLIENT_ID = "app_EMoamEEZ73f0CkXaXp7hrann";
+export const CODEX_OAUTH_DEVICE_CODE_URL = "https://auth.openai.com/api/accounts/deviceauth/usercode";
+export const CODEX_OAUTH_DEVICE_TOKEN_URL = "https://auth.openai.com/api/accounts/deviceauth/token";
+export const CODEX_OAUTH_TOKEN_URL = "https://auth.openai.com/oauth/token";
+export const CODEX_OAUTH_REDIRECT_URI = "https://auth.openai.com/deviceauth/callback";
+export const CODEX_OAUTH_VERIFICATION_URL = "https://auth.openai.com/codex/device";
+
+function createHttpError(message, statusCode) {
+  const error = new Error(message);
+  error.statusCode = statusCode;
+  return error;
+}
+
+function extractChatGPTAccountId(accessToken) {
+  const token = typeof accessToken === "string" ? accessToken.trim() : "";
+
+  if (!token) {
+    return "";
+  }
+
+  try {
+    const parts = token.split(".");
+
+    if (parts.length < 2) {
+      return "";
+    }
+
+    const payload = JSON.parse(Buffer.from(parts[1], "base64url").toString("utf-8"));
+    const accountId = payload?.["https://api.openai.com/auth"]?.chatgpt_account_id;
+
+    return typeof accountId === "string" ? accountId : "";
+  } catch {
+    return "";
+  }
+}
+
+async function readJsonBody(response) {
+  const text = await response.text();
+
+  if (!text) {
+    return {};
+  }
+
+  try {
+    return JSON.parse(text);
+  } catch {
+    return { raw: text };
+  }
+}
+
+export async function startDeviceAuthorization() {
+  const response = await fetch(CODEX_OAUTH_DEVICE_CODE_URL, {
+    body: JSON.stringify({ client_id: CODEX_OAUTH_CLIENT_ID }),
+    headers: { "Content-Type": "application/json" },
+    method: "POST"
+  });
+
+  const payload = await readJsonBody(response);
+
+  if (!response.ok) {
+    throw createHttpError(
+      payload.error_description || payload.error || `Device authorization failed with HTTP ${response.status}.`,
+      response.status === 429 ? 429 : 502
+    );
+  }
+
+  // The OpenAI device-code endpoint returns `interval` as a string (e.g. "5"),
+  // and encodes expiry as `expires_at` (ISO-8601 string) rather than `expires_in`.
+  // Parse both defensively so the frontend always receives numbers.
+  const parsedInterval = Number.parseInt(payload.interval, 10);
+  const expiresAtMs = Date.parse(String(payload.expires_at || ""));
+  const expiresInFromAt = Number.isFinite(expiresAtMs) ? Math.max(1, Math.floor((expiresAtMs - Date.now()) / 1000)) : 0;
+  const parsedExpiresIn = Number.isFinite(payload.expires_in) ? Number(payload.expires_in) : expiresInFromAt;
+
+  return {
+    deviceAuthId: String(payload.device_auth_id || "").trim(),
+    expiresIn: parsedExpiresIn > 0 ? parsedExpiresIn : 900,
+    interval: Number.isFinite(parsedInterval) && parsedInterval >= 3 ? parsedInterval : 5,
+    userCode: String(payload.user_code || "").trim(),
+    verificationUrl: CODEX_OAUTH_VERIFICATION_URL
+  };
+}
+
+function buildTokenPayload(accessToken, refreshToken, expiresIn, idToken) {
+  const normalizedExpiresIn = Number.isFinite(expiresIn) && expiresIn > 0 ? expiresIn : 3600;
+  const obtainedAt = Math.floor(Date.now() / 1000);
+  const accessTokenValue = typeof accessToken === "string" ? accessToken : "";
+  const refreshTokenValue = typeof refreshToken === "string" ? refreshToken : "";
+
+  return {
+    accessToken: accessTokenValue,
+    accountId: extractChatGPTAccountId(accessTokenValue),
+    expiresAt: obtainedAt + normalizedExpiresIn,
+    idToken: typeof idToken === "string" ? idToken : "",
+    obtainedAt,
+    refreshToken: refreshTokenValue
+  };
+}
+
+export async function pollDeviceAuthorization({ deviceAuthId, userCode }) {
+  const normalizedDeviceAuthId = String(deviceAuthId || "").trim();
+  const normalizedUserCode = String(userCode || "").trim();
+
+  if (!normalizedDeviceAuthId || !normalizedUserCode) {
+    throw createHttpError("deviceAuthId and userCode are required.", 400);
+  }
+
+  const pollResponse = await fetch(CODEX_OAUTH_DEVICE_TOKEN_URL, {
+    body: JSON.stringify({
+      device_auth_id: normalizedDeviceAuthId,
+      user_code: normalizedUserCode
+    }),
+    headers: { "Content-Type": "application/json" },
+    method: "POST"
+  });
+
+  if (pollResponse.status === 403 || pollResponse.status === 404) {
+    return { state: "pending" };
+  }
+
+  const pollPayload = await readJsonBody(pollResponse);
+
+  if (!pollResponse.ok) {
+    throw createHttpError(
+      pollPayload.error_description || pollPayload.error || `Device poll failed with HTTP ${pollResponse.status}.`,
+      pollResponse.status === 429 ? 429 : 502
+    );
+  }
+
+  const authorizationCode = String(pollPayload.authorization_code || "").trim();
+  const codeVerifier = String(pollPayload.code_verifier || "").trim();
+
+  if (!authorizationCode || !codeVerifier) {
+    return { state: "pending" };
+  }
+
+  const formBody = new URLSearchParams({
+    client_id: CODEX_OAUTH_CLIENT_ID,
+    code: authorizationCode,
+    code_verifier: codeVerifier,
+    grant_type: "authorization_code",
+    redirect_uri: CODEX_OAUTH_REDIRECT_URI
+  });
+
+  const tokenResponse = await fetch(CODEX_OAUTH_TOKEN_URL, {
+    body: formBody.toString(),
+    headers: { "Content-Type": "application/x-www-form-urlencoded" },
+    method: "POST"
+  });
+
+  const tokenPayload = await readJsonBody(tokenResponse);
+
+  if (!tokenResponse.ok) {
+    throw createHttpError(
+      tokenPayload.error_description || tokenPayload.error || `Token exchange failed with HTTP ${tokenResponse.status}.`,
+      502
+    );
+  }
+
+  return {
+    state: "complete",
+    tokens: buildTokenPayload(
+      tokenPayload.access_token,
+      tokenPayload.refresh_token,
+      tokenPayload.expires_in,
+      tokenPayload.id_token
+    )
+  };
+}
+
+export async function refreshAccessToken({ refreshToken }) {
+  const normalizedRefreshToken = String(refreshToken || "").trim();
+
+  if (!normalizedRefreshToken) {
+    throw createHttpError("refreshToken is required.", 400);
+  }
+
+  const formBody = new URLSearchParams({
+    client_id: CODEX_OAUTH_CLIENT_ID,
+    grant_type: "refresh_token",
+    refresh_token: normalizedRefreshToken
+  });
+
+  const response = await fetch(CODEX_OAUTH_TOKEN_URL, {
+    body: formBody.toString(),
+    headers: { "Content-Type": "application/x-www-form-urlencoded" },
+    method: "POST"
+  });
+
+  const payload = await readJsonBody(response);
+
+  if (!response.ok) {
+    const errorCode = String(payload.error || "").trim();
+    // Bubble up `invalid_grant` as 401 so the frontend knows the refresh token
+    // has already been consumed (e.g. by another Codex client) and a full
+    // re-login is required.
+    if (errorCode === "invalid_grant") {
+      throw createHttpError("Refresh token is no longer valid. Please log in again.", 401);
+    }
+
+    throw createHttpError(
+      payload.error_description || errorCode || `Token refresh failed with HTTP ${response.status}.`,
+      502
+    );
+  }
+
+  return buildTokenPayload(payload.access_token, payload.refresh_token, payload.expires_in, payload.id_token);
+}
diff --git a/server/lib/openai_codex/refresh_lock.js b/server/lib/openai_codex/refresh_lock.js
new file mode 100644
index 00000000..91bce38e
--- /dev/null
+++ b/server/lib/openai_codex/refresh_lock.js
@@ -0,0 +1,29 @@
+const inFlightRefreshes = new Map();
+
+export async function runSingleWriterRefresh(refreshToken, worker) {
+  const key = typeof refreshToken === "string" ? refreshToken : "";
+
+  if (!key) {
+    return worker();
+  }
+
+  const existing = inFlightRefreshes.get(key);
+
+  if (existing) {
+    // Coalesce concurrent refreshes for the same refresh token so we never
+    // post the same single-use token twice at the same moment; that would
+    // consume it twice and leave one caller with invalid_grant.
+    return existing;
+  }
+
+  const pending = (async () => {
+    try {
+      return await worker();
+    } finally {
+      inFlightRefreshes.delete(key);
+    }
+  })();
+
+  inFlightRefreshes.set(key, pending);
+  return pending;
+}
diff --git a/tests/openai_codex_models_parser_test.mjs b/tests/openai_codex_models_parser_test.mjs
new file mode 100644
index 00000000..7ffe8aaf
--- /dev/null
+++ b/tests/openai_codex_models_parser_test.mjs
@@ -0,0 +1,120 @@
+import assert from "node:assert/strict";
+import test from "node:test";
+
+import { parseCodexModelsResponse } from "../app/L0/_all/mod/_core/openai_codex/models_parser.js";
+
+test("parseCodexModelsResponse returns sorted id+description pairs", () => {
+  const result = parseCodexModelsResponse({
+    models: [
+      {
+        description: "Flagship.",
+        display_name: "GPT 5.4",
+        priority: 20,
+        slug: "gpt-5.4",
+        supported_in_api: true,
+        visibility: "public"
+      },
+      {
+        description: "Cheap and fast.",
+        display_name: "GPT 5.4 Mini",
+        priority: 10,
+        slug: "gpt-5.4-mini",
+        supported_in_api: true,
+        visibility: "public"
+      }
+    ]
+  });
+
+  assert.deepEqual(result, [
+    { description: "Cheap and fast.", id: "gpt-5.4-mini" },
+    { description: "Flagship.", id: "gpt-5.4" }
+  ]);
+});
+
+test("parseCodexModelsResponse filters out hidden visibilities case-insensitively", () => {
+  const result = parseCodexModelsResponse({
+    models: [
+      { slug: "a", visibility: "public", priority: 1 },
+      { slug: "b", visibility: "hide", priority: 2 },
+      { slug: "c", visibility: "HIDDEN", priority: 3 },
+      { slug: "d", visibility: "Hide", priority: 4 },
+      { slug: "e", visibility: "", priority: 5 }
+    ]
+  });
+
+  assert.deepEqual(
+    result.map((entry) => entry.id),
+    ["a", "e"]
+  );
+});
+
+test("parseCodexModelsResponse filters out supported_in_api false", () => {
+  const result = parseCodexModelsResponse({
+    models: [
+      { slug: "keep", supported_in_api: true, priority: 1 },
+      { slug: "drop", supported_in_api: false, priority: 2 },
+      { slug: "missing-flag", priority: 3 }
+    ]
+  });
+
+  assert.deepEqual(
+    result.map((entry) => entry.id),
+    ["keep", "missing-flag"]
+  );
+});
+
+test("parseCodexModelsResponse sorts by priority then slug", () => {
+  const result = parseCodexModelsResponse({
+    models: [
+      { slug: "zzz", priority: 10 },
+      { slug: "aaa", priority: 10 },
+      { slug: "bbb", priority: 5 },
+      { slug: "ccc" }
+    ]
+  });
+
+  assert.deepEqual(
+    result.map((entry) => entry.id),
+    ["bbb", "aaa", "zzz", "ccc"]
+  );
+});
+
+test("parseCodexModelsResponse skips entries without a slug", () => {
+  const result = parseCodexModelsResponse({
+    models: [
+      { priority: 1 },
+      { slug: "", priority: 2 },
+      { slug: "   ", priority: 3 },
+      { slug: "ok", priority: 4 }
+    ]
+  });
+
+  assert.deepEqual(
+    result.map((entry) => entry.id),
+    ["ok"]
+  );
+});
+
+test("parseCodexModelsResponse falls back to display_name for description", () => {
+  const result = parseCodexModelsResponse({
+    models: [
+      { slug: "a", display_name: "Alpha model", priority: 1 },
+      { slug: "b", description: "  Beta  ", display_name: "unused", priority: 2 }
+    ]
+  });
+
+  assert.equal(result[0].description, "Alpha model");
+  assert.equal(result[1].description, "Beta");
+});
+
+test("parseCodexModelsResponse tolerates malformed payloads", () => {
+  assert.deepEqual(parseCodexModelsResponse(null), []);
+  assert.deepEqual(parseCodexModelsResponse(undefined), []);
+  assert.deepEqual(parseCodexModelsResponse({}), []);
+  assert.deepEqual(parseCodexModelsResponse({ models: null }), []);
+  assert.deepEqual(parseCodexModelsResponse({ models: "not-an-array" }), []);
+  assert.deepEqual(
+    parseCodexModelsResponse({ models: [null, 42, "string", { not: "a slug" }] }),
+    []
+  );
+});
diff --git a/tests/openai_codex_models_test.mjs b/tests/openai_codex_models_test.mjs
new file mode 100644
index 00000000..68213fc5
--- /dev/null
+++ b/tests/openai_codex_models_test.mjs
@@ -0,0 +1,47 @@
+import assert from "node:assert/strict";
+import test from "node:test";
+
+import {
+  CODEX_DEFAULT_MODEL_ID,
+  CODEX_MODEL_CATALOG,
+  isKnownCodexModelId,
+  normalizeCodexModelId
+} from "../app/L0/_all/mod/_core/openai_codex/models.js";
+
+test("CODEX_MODEL_CATALOG exposes the documented 6 entries", () => {
+  assert.equal(CODEX_MODEL_CATALOG.length, 6);
+  for (const entry of CODEX_MODEL_CATALOG) {
+    assert.ok(typeof entry.id === "string" && entry.id.startsWith("gpt-"));
+    assert.ok(typeof entry.description === "string" && entry.description.length > 0);
+  }
+});
+
+test("CODEX_DEFAULT_MODEL_ID appears in the catalog", () => {
+  assert.ok(isKnownCodexModelId(CODEX_DEFAULT_MODEL_ID));
+});
+
+test("normalizeCodexModelId falls back to the default for empty input", () => {
+  assert.equal(normalizeCodexModelId(""), CODEX_DEFAULT_MODEL_ID);
+  assert.equal(normalizeCodexModelId(null), CODEX_DEFAULT_MODEL_ID);
+  assert.equal(normalizeCodexModelId(undefined), CODEX_DEFAULT_MODEL_ID);
+  assert.equal(normalizeCodexModelId("   "), CODEX_DEFAULT_MODEL_ID);
+});
+
+test("normalizeCodexModelId preserves any trimmed non-empty string", () => {
+  assert.equal(normalizeCodexModelId("  gpt-5.4 "), "gpt-5.4");
+  assert.equal(normalizeCodexModelId("future-model"), "future-model");
+});
+
+test("isKnownCodexModelId returns true only for catalog entries", () => {
+  assert.equal(isKnownCodexModelId("gpt-5.4"), true);
+  assert.equal(isKnownCodexModelId("gpt-5.4-mini"), true);
+  assert.equal(isKnownCodexModelId("gpt-5.3-codex"), true);
+  assert.equal(isKnownCodexModelId("gpt-does-not-exist"), false);
+  assert.equal(isKnownCodexModelId(""), false);
+});
+
+test("CODEX_MODEL_CATALOG is frozen and cannot be mutated", () => {
+  assert.throws(() => {
+    CODEX_MODEL_CATALOG.push({ description: "x", id: "x" });
+  }, TypeError);
+});
diff --git a/tests/openai_codex_request_shape_test.mjs b/tests/openai_codex_request_shape_test.mjs
new file mode 100644
index 00000000..095d7bbb
--- /dev/null
+++ b/tests/openai_codex_request_shape_test.mjs
@@ -0,0 +1,235 @@
+import assert from "node:assert/strict";
+import test from "node:test";
+
+import { chatToResponsesRequest } from "../app/L0/_all/mod/_core/openai_codex/request_shape.js";
+
+test("chatToResponsesRequest lifts the first system message into instructions", () => {
+  const body = chatToResponsesRequest({
+    messages: [
+      { role: "system", content: "You are helpful." },
+      { role: "user", content: "Hello." }
+    ],
+    model: "gpt-5.4-mini"
+  });
+
+  assert.equal(body.instructions, "You are helpful.");
+  assert.equal(body.model, "gpt-5.4-mini");
+  assert.deepEqual(body.input, [
+    {
+      content: [{ text: "Hello.", type: "input_text" }],
+      role: "user"
+    }
+  ]);
+  assert.equal(body.store, false);
+});
+
+test("chatToResponsesRequest wraps user strings as input_text and assistant strings as output_text", () => {
+  // The Codex Responses API rejects `input_text` entries that sit under a
+  // `role: "assistant"` message with HTTP 400 `invalid_value`; assistant
+  // text must use `output_text`. This test guards that mapping.
+  const body = chatToResponsesRequest({
+    messages: [
+      { role: "user", content: "Hi" },
+      { role: "assistant", content: "Hey" },
+      { role: "user", content: "How are you?" }
+    ],
+    model: "gpt-5.4"
+  });
+
+  assert.deepEqual(body.input, [
+    {
+      content: [{ text: "Hi", type: "input_text" }],
+      role: "user"
+    },
+    {
+      content: [{ text: "Hey", type: "output_text" }],
+      role: "assistant"
+    },
+    {
+      content: [{ text: "How are you?", type: "input_text" }],
+      role: "user"
+    }
+  ]);
+});
+
+test("chatToResponsesRequest converts multimodal text parts to input_text", () => {
+  const body = chatToResponsesRequest({
+    messages: [
+      {
+        role: "user",
+        content: [
+          { type: "text", text: "Describe" },
+          { type: "text", text: "this" }
+        ]
+      }
+    ],
+    model: "gpt-5.4"
+  });
+
+  assert.deepEqual(body.input[0].content, [
+    { text: "Describe", type: "input_text" },
+    { text: "this", type: "input_text" }
+  ]);
+});
+
+test("chatToResponsesRequest converts image_url parts to input_image", () => {
+  const body = chatToResponsesRequest({
+    messages: [
+      {
+        role: "user",
+        content: [
+          { type: "text", text: "See this:" },
+          {
+            type: "image_url",
+            image_url: { url: "https://example.invalid/a.png", detail: "high" }
+          }
+        ]
+      }
+    ],
+    model: "gpt-5.4"
+  });
+
+  assert.deepEqual(body.input[0].content, [
+    { text: "See this:", type: "input_text" },
+    {
+      detail: "high",
+      image_url: "https://example.invalid/a.png",
+      type: "input_image"
+    }
+  ]);
+});
+
+test("chatToResponsesRequest drops fields the Codex endpoint rejects", () => {
+  const body = chatToResponsesRequest({
+    frequency_penalty: 0.1,
+    max_output_tokens: 1000,
+    max_tokens: 2000,
+    messages: [{ role: "user", content: "ping" }],
+    model: "gpt-5.4-mini",
+    presence_penalty: 0.2,
+    response_format: { type: "json_object" },
+    stop: ["\n\n"],
+    temperature: 0.5,
+    tool_choice: "none",
+    tools: [{ type: "function", function: { name: "foo" } }],
+    top_p: 0.9
+  });
+
+  assert.ok(!("frequency_penalty" in body));
+  assert.ok(!("max_output_tokens" in body));
+  assert.ok(!("max_tokens" in body));
+  assert.ok(!("presence_penalty" in body));
+  assert.ok(!("response_format" in body));
+  assert.ok(!("stop" in body));
+  assert.ok(!("temperature" in body));
+  assert.ok(!("tool_choice" in body));
+  assert.ok(!("tools" in body));
+  assert.ok(!("top_p" in body));
+});
+
+test("chatToResponsesRequest preserves stream flag when set", () => {
+  const streaming = chatToResponsesRequest({
+    messages: [{ role: "user", content: "ping" }],
+    model: "gpt-5.4",
+    stream: true
+  });
+  const nonStreaming = chatToResponsesRequest({
+    messages: [{ role: "user", content: "ping" }],
+    model: "gpt-5.4"
+  });
+
+  assert.equal(streaming.stream, true);
+  assert.ok(!("stream" in nonStreaming));
+});
+
+test("chatToResponsesRequest always sets store:false", () => {
+  const body = chatToResponsesRequest({
+    messages: [{ role: "user", content: "ping" }],
+    model: "gpt-5.4",
+    store: true
+  });
+
+  assert.equal(body.store, false);
+});
+
+test("chatToResponsesRequest keeps only the first system message as instructions", () => {
+  const body = chatToResponsesRequest({
+    messages: [
+      { role: "system", content: "First system rule." },
+      { role: "user", content: "Hi" },
+      { role: "system", content: "Second system rule should be ignored." },
+      { role: "assistant", content: "Hey" }
+    ],
+    model: "gpt-5.4"
+  });
+
+  assert.equal(body.instructions, "First system rule.");
+  assert.deepEqual(
+    body.input.map((entry) => entry.role),
+    ["user", "assistant"]
+  );
+});
+
+test("chatToResponsesRequest skips messages with empty or unsupported content", () => {
+  const body = chatToResponsesRequest({
+    messages: [
+      { role: "user", content: "" },
+      { role: "tool", content: "ignored" },
+      { role: "user", content: [] },
+      { role: "user", content: "keep me" }
+    ],
+    model: "gpt-5.4"
+  });
+
+  assert.equal(body.input.length, 1);
+  assert.equal(body.input[0].content[0].text, "keep me");
+});
+
+test("chatToResponsesRequest omits instructions when no system message exists", () => {
+  const body = chatToResponsesRequest({
+    messages: [{ role: "user", content: "Hi" }],
+    model: "gpt-5.4"
+  });
+
+  assert.ok(!("instructions" in body));
+});
+
+test("chatToResponsesRequest never emits input_text under an assistant entry", () => {
+  // Regression guard: Codex rejected this with HTTP 400 `invalid_value` on
+  // `input[1].content[0]` because assistant turns must use `output_text`.
+  const body = chatToResponsesRequest({
+    messages: [
+      { role: "system", content: "Sys" },
+      { role: "user", content: "u1" },
+      { role: "assistant", content: [{ type: "text", text: "a1" }] },
+      { role: "user", content: "u2" },
+      { role: "assistant", content: "a2" }
+    ],
+    model: "gpt-5.4"
+  });
+
+  for (const entry of body.input) {
+    for (const part of entry.content) {
+      if (entry.role === "assistant" && part.type && part.type !== "output_text" && part.type !== "input_image") {
+        throw new Error(`assistant entry emitted unexpected content type ${part.type}`);
+      }
+
+      if (entry.role === "user" && part.type === "output_text") {
+        throw new Error("user entry must not emit output_text");
+      }
+    }
+  }
+});
+
+test("chatToResponsesRequest handles malformed body gracefully", () => {
+  assert.deepEqual(chatToResponsesRequest(null), {
+    input: [],
+    model: "",
+    store: false
+  });
+  assert.deepEqual(chatToResponsesRequest(), {
+    input: [],
+    model: "",
+    store: false
+  });
+});
diff --git a/tests/openai_codex_sse_adapter_test.mjs b/tests/openai_codex_sse_adapter_test.mjs
new file mode 100644
index 00000000..42478aa5
--- /dev/null
+++ b/tests/openai_codex_sse_adapter_test.mjs
@@ -0,0 +1,304 @@
+import assert from "node:assert/strict";
+import test from "node:test";
+
+import {
+  CODEX_STREAM_DONE_MARKER,
+  mapCodexEventSequenceToChatFrames,
+  mapCodexEventToChatFrames
+} from "../app/L0/_all/mod/_core/openai_codex/sse_adapter.js";
+
+test("mapCodexEventToChatFrames emits content frames for output_text deltas", () => {
+  const frames = mapCodexEventToChatFrames({
+    delta: "Hel",
+    item_id: "msg_1",
+    output_index: 0,
+    sequence_number: 5,
+    type: "response.output_text.delta"
+  });
+
+  assert.deepEqual(frames, [
+    {
+      choices: [
+        {
+          delta: { content: "Hel" },
+          index: 0
+        }
+      ]
+    }
+  ]);
+});
+
+test("mapCodexEventToChatFrames emits content frames for refusal deltas", () => {
+  const frames = mapCodexEventToChatFrames({
+    delta: "I cannot",
+    type: "response.refusal.delta"
+  });
+
+  assert.equal(frames.length, 1);
+  assert.equal(frames[0].choices[0].delta.content, "I cannot");
+});
+
+test("mapCodexEventToChatFrames skips empty text deltas", () => {
+  const frames = mapCodexEventToChatFrames({
+    delta: "",
+    type: "response.output_text.delta"
+  });
+
+  assert.deepEqual(frames, []);
+});
+
+test("mapCodexEventToChatFrames synthesizes finish + [DONE] on response.completed", () => {
+  const frames = mapCodexEventToChatFrames({
+    response: {
+      usage: {
+        input_tokens: 12,
+        output_tokens: 3,
+        total_tokens: 15
+      }
+    },
+    sequence_number: 99,
+    type: "response.completed"
+  });
+
+  assert.equal(frames.length, 2);
+  assert.deepEqual(frames[0], {
+    choices: [
+      {
+        delta: {},
+        finish_reason: "stop",
+        index: 0
+      }
+    ],
+    usage: {
+      completion_tokens: 3,
+      prompt_tokens: 12,
+      total_tokens: 15
+    }
+  });
+  assert.equal(frames[1], CODEX_STREAM_DONE_MARKER);
+});
+
+test("mapCodexEventToChatFrames handles response.completed without usage", () => {
+  const frames = mapCodexEventToChatFrames({
+    response: {},
+    type: "response.completed"
+  });
+
+  assert.equal(frames.length, 2);
+  assert.equal(frames[0].choices[0].finish_reason, "stop");
+  assert.ok(!("usage" in frames[0]));
+  assert.equal(frames[1], CODEX_STREAM_DONE_MARKER);
+});
+
+test("mapCodexEventToChatFrames maps incomplete reasons onto chat finish reasons", () => {
+  const lengthFrames = mapCodexEventToChatFrames({
+    response: {
+      incomplete_details: { reason: "max_output_tokens" }
+    },
+    type: "response.incomplete"
+  });
+  assert.equal(lengthFrames[0].choices[0].finish_reason, "length");
+  assert.equal(lengthFrames[1], CODEX_STREAM_DONE_MARKER);
+
+  const filterFrames = mapCodexEventToChatFrames({
+    response: {
+      incomplete_details: { reason: "content_filter" }
+    },
+    type: "response.incomplete"
+  });
+  assert.equal(filterFrames[0].choices[0].finish_reason, "content_filter");
+
+  const unknownFrames = mapCodexEventToChatFrames({
+    response: {},
+    type: "response.incomplete"
+  });
+  assert.equal(unknownFrames[0].choices[0].finish_reason, "length");
+});
+
+test("mapCodexEventToChatFrames throws on response.failed", () => {
+  assert.throws(
+    () =>
+      mapCodexEventToChatFrames({
+        response: {
+          error: { message: "upstream boom" }
+        },
+        type: "response.failed"
+      }),
+    /upstream boom/u
+  );
+});
+
+test("mapCodexEventToChatFrames throws on standalone error event", () => {
+  assert.throws(
+    () =>
+      mapCodexEventToChatFrames({
+        message: "rate limited",
+        type: "error"
+      }),
+    /rate limited/u
+  );
+});
+
+test("mapCodexEventToChatFrames silently ignores documented low-level events", () => {
+  const ignoredTypes = [
+    "response.created",
+    "response.in_progress",
+    "response.output_item.added",
+    "response.output_item.done",
+    "response.content_part.added",
+    "response.content_part.done",
+    "response.output_text.done",
+    "response.refusal.done",
+    "response.function_call_arguments.delta",
+    "response.function_call_arguments.done",
+    "response.reasoning_text.delta",
+    "response.reasoning_summary_text.delta",
+    "response.queued",
+    "response.output_text_annotation.added",
+    "response.audio.delta",
+    "response.code_interpreter_call.in_progress",
+    "response.file_search_call.searching",
+    "response.web_search_call.completed",
+    "response.image_gen_call.generating",
+    "response.mcp_call.in_progress",
+    "response.custom_tool_call_input.delta"
+  ];
+
+  for (const type of ignoredTypes) {
+    const frames = mapCodexEventToChatFrames({ type });
+    assert.deepEqual(frames, [], `expected ${type} to produce no frames`);
+  }
+});
+
+test("mapCodexEventToChatFrames ignores unknown future events without throwing", () => {
+  assert.deepEqual(
+    mapCodexEventToChatFrames({ type: "response.some_future_event" }),
+    []
+  );
+});
+
+test("mapCodexEventToChatFrames handles malformed input defensively", () => {
+  assert.deepEqual(mapCodexEventToChatFrames(null), []);
+  assert.deepEqual(mapCodexEventToChatFrames(undefined), []);
+  assert.deepEqual(mapCodexEventToChatFrames("string"), []);
+  assert.deepEqual(mapCodexEventToChatFrames({}), []);
+  assert.deepEqual(mapCodexEventToChatFrames({ type: 42 }), []);
+});
+
+test("mapCodexEventSequenceToChatFrames processes a realistic happy-path stream", () => {
+  const events = [
+    { response: {}, sequence_number: 0, type: "response.created" },
+    { sequence_number: 1, type: "response.in_progress" },
+    { item: {}, output_index: 0, sequence_number: 2, type: "response.output_item.added" },
+    {
+      content_index: 0,
+      item_id: "msg_1",
+      output_index: 0,
+      part: {},
+      sequence_number: 3,
+      type: "response.content_part.added"
+    },
+    {
+      content_index: 0,
+      delta: "Hel",
+      item_id: "msg_1",
+      output_index: 0,
+      sequence_number: 4,
+      type: "response.output_text.delta"
+    },
+    {
+      content_index: 0,
+      delta: "lo",
+      item_id: "msg_1",
+      output_index: 0,
+      sequence_number: 5,
+      type: "response.output_text.delta"
+    },
+    {
+      content_index: 0,
+      delta: "!",
+      item_id: "msg_1",
+      output_index: 0,
+      sequence_number: 6,
+      type: "response.output_text.delta"
+    },
+    {
+      content_index: 0,
+      item_id: "msg_1",
+      output_index: 0,
+      sequence_number: 7,
+      text: "Hello!",
+      type: "response.output_text.done"
+    },
+    { item: {}, output_index: 0, sequence_number: 8, type: "response.output_item.done" },
+    {
+      response: {
+        usage: { input_tokens: 8, output_tokens: 3, total_tokens: 11 }
+      },
+      sequence_number: 9,
+      type: "response.completed"
+    }
+  ];
+
+  const frames = mapCodexEventSequenceToChatFrames(events);
+
+  // 3 text deltas + 1 finish frame + 1 [DONE] marker
+  assert.equal(frames.length, 5);
+  assert.equal(frames[0].choices[0].delta.content, "Hel");
+  assert.equal(frames[1].choices[0].delta.content, "lo");
+  assert.equal(frames[2].choices[0].delta.content, "!");
+  assert.equal(frames[3].choices[0].finish_reason, "stop");
+  assert.deepEqual(frames[3].usage, {
+    completion_tokens: 3,
+    prompt_tokens: 8,
+    total_tokens: 11
+  });
+  assert.equal(frames[4], CODEX_STREAM_DONE_MARKER);
+});
+
+test("mapCodexEventSequenceToChatFrames processes a refusal sequence", () => {
+  const events = [
+    { response: {}, type: "response.created" },
+    {
+      delta: "I cannot ",
+      type: "response.refusal.delta"
+    },
+    {
+      delta: "help with that.",
+      type: "response.refusal.delta"
+    },
+    {
+      text: "I cannot help with that.",
+      type: "response.refusal.done"
+    },
+    {
+      response: {
+        usage: { input_tokens: 5, output_tokens: 8, total_tokens: 13 }
+      },
+      type: "response.completed"
+    }
+  ];
+
+  const frames = mapCodexEventSequenceToChatFrames(events);
+
+  assert.equal(frames.length, 4);
+  assert.equal(frames[0].choices[0].delta.content, "I cannot ");
+  assert.equal(frames[1].choices[0].delta.content, "help with that.");
+  assert.equal(frames[2].choices[0].finish_reason, "stop");
+  assert.equal(frames[3], CODEX_STREAM_DONE_MARKER);
+});
+
+test("mapCodexEventSequenceToChatFrames passes errors through the middle of a stream", () => {
+  const events = [
+    { type: "response.created" },
+    { delta: "Start", type: "response.output_text.delta" },
+    { message: "mid-stream failure", type: "error" }
+  ];
+
+  assert.throws(() => mapCodexEventSequenceToChatFrames(events), /mid-stream failure/u);
+});
+
+test("mapCodexEventSequenceToChatFrames tolerates non-array input", () => {
+  assert.deepEqual(mapCodexEventSequenceToChatFrames(null), []);
+  assert.deepEqual(mapCodexEventSequenceToChatFrames("not-an-array"), []);
+});
diff --git a/tests/openai_codex_token_envelope_test.mjs b/tests/openai_codex_token_envelope_test.mjs
new file mode 100644
index 00000000..980cb709
--- /dev/null
+++ b/tests/openai_codex_token_envelope_test.mjs
@@ -0,0 +1,175 @@
+import assert from "node:assert/strict";
+import test from "node:test";
+
+import {
+  decodeStoredCodexTokens,
+  encodeStoredCodexTokens,
+  parseCodexTokens,
+  serializeCodexTokens
+} from "../app/L0/_all/mod/_core/openai_codex/token_envelope.js";
+
+function createConfigStub(values = {}) {
+  return {
+    get: (key, fallback) => (key in values ? values[key] : fallback),
+    values
+  };
+}
+
+function createUserCryptoStub({ decrypt, encrypt } = {}) {
+  return {
+    decryptText: async (value) => (typeof decrypt === "function" ? decrypt(value) : ""),
+    encryptText: async (value) => (typeof encrypt === "function" ? encrypt(value) : "")
+  };
+}
+
+function createRuntime({ singleUserApp = false, userCrypto = null, useParamsForLegacyBugRepro = false } = {}) {
+  const runtime = {
+    config: createConfigStub({ SINGLE_USER_APP: singleUserApp }),
+    utils: userCrypto ? { userCrypto } : {}
+  };
+
+  if (useParamsForLegacyBugRepro) {
+    runtime.params = { SINGLE_USER_APP: singleUserApp };
+  }
+
+  return runtime;
+}
+
+test("serializeCodexTokens returns JSON string for object input", () => {
+  assert.equal(serializeCodexTokens({ access_token: "abc" }), '{"access_token":"abc"}');
+});
+
+test("serializeCodexTokens returns '' for falsy or non-object input", () => {
+  assert.equal(serializeCodexTokens(null), "");
+  assert.equal(serializeCodexTokens(undefined), "");
+  assert.equal(serializeCodexTokens("string"), "");
+  assert.equal(serializeCodexTokens(42), "");
+});
+
+test("parseCodexTokens accepts an object directly", () => {
+  const value = { access_token: "abc" };
+  assert.deepEqual(parseCodexTokens(value), value);
+});
+
+test("parseCodexTokens parses a JSON string into an object", () => {
+  assert.deepEqual(parseCodexTokens('{"access_token":"abc"}'), { access_token: "abc" });
+});
+
+test("parseCodexTokens returns null for empty, malformed or non-object payloads", () => {
+  assert.equal(parseCodexTokens(""), null);
+  assert.equal(parseCodexTokens("   "), null);
+  assert.equal(parseCodexTokens("not-json"), null);
+  assert.equal(parseCodexTokens("[1,2,3]"), null);
+  assert.equal(parseCodexTokens(null), null);
+});
+
+test("decodeStoredCodexTokens returns a blank result for empty stored value", async () => {
+  const runtime = createRuntime();
+  const result = await decodeStoredCodexTokens(runtime, "");
+  assert.deepEqual(result, { locked: false, storedValue: "", value: "" });
+});
+
+test("decodeStoredCodexTokens returns a locked result in SINGLE_USER_APP for legacy ciphertext", async () => {
+  const runtime = createRuntime({ singleUserApp: true });
+  const ciphertext = "userCrypto:legacy-payload";
+
+  const result = await decodeStoredCodexTokens(runtime, ciphertext);
+
+  assert.deepEqual(result, {
+    locked: true,
+    storedValue: ciphertext,
+    value: ""
+  });
+});
+
+test("decodeStoredCodexTokens ignores runtime.params.SINGLE_USER_APP — the read path is runtime.config.get", async () => {
+  // Regression guard: previously the single-user check read from
+  // `runtime.params.SINGLE_USER_APP`, which is not how frontend runtime
+  // config is exposed. With the legacy path set but the correct config
+  // path absent, the helper must NOT take the single-user branch.
+  const runtime = {
+    params: { SINGLE_USER_APP: true },
+    config: createConfigStub({}),
+    utils: { userCrypto: createUserCryptoStub({ decrypt: () => "" }) }
+  };
+  const ciphertext = "userCrypto:legacy-payload";
+
+  const result = await decodeStoredCodexTokens(runtime, ciphertext);
+
+  assert.equal(result.locked, true);
+  assert.equal(result.value, "");
+  assert.equal(result.storedValue, ciphertext);
+});
+
+test("decodeStoredCodexTokens decrypts in multi-user runtime when userCrypto is available", async () => {
+  const runtime = createRuntime({
+    userCrypto: createUserCryptoStub({ decrypt: () => '{"access_token":"abc"}' })
+  });
+
+  const result = await decodeStoredCodexTokens(runtime, "userCrypto:wrapped");
+
+  assert.equal(result.locked, false);
+  assert.equal(result.value, '{"access_token":"abc"}');
+});
+
+test("decodeStoredCodexTokens reports locked when userCrypto is missing and value is wrapped", async () => {
+  const runtime = createRuntime();
+  const result = await decodeStoredCodexTokens(runtime, "userCrypto:wrapped");
+
+  assert.equal(result.locked, true);
+  assert.equal(result.value, "");
+});
+
+test("encodeStoredCodexTokens preserves locked stored ciphertext when caller did not replace tokens", async () => {
+  const runtime = createRuntime();
+  const result = await encodeStoredCodexTokens(runtime, {
+    codexTokens: "",
+    storedCodexTokensLocked: true,
+    storedCodexTokensValue: "userCrypto:previous"
+  });
+
+  assert.equal(result, "userCrypto:previous");
+});
+
+test("encodeStoredCodexTokens returns plaintext in SINGLE_USER_APP", async () => {
+  const runtime = createRuntime({ singleUserApp: true });
+
+  const result = await encodeStoredCodexTokens(runtime, {
+    codexTokens: '{"access_token":"abc"}'
+  });
+
+  assert.equal(result, '{"access_token":"abc"}');
+});
+
+test("encodeStoredCodexTokens encrypts in multi-user runtime when userCrypto is available", async () => {
+  const runtime = createRuntime({
+    userCrypto: createUserCryptoStub({ encrypt: (value) => `userCrypto:${value}` })
+  });
+
+  const result = await encodeStoredCodexTokens(runtime, {
+    codexTokens: '{"access_token":"abc"}'
+  });
+
+  assert.equal(result, 'userCrypto:{"access_token":"abc"}');
+});
+
+test("encodeStoredCodexTokens throws when userCrypto is unavailable in multi-user runtime", async () => {
+  const runtime = createRuntime();
+
+  await assert.rejects(
+    () => encodeStoredCodexTokens(runtime, { codexTokens: '{"access_token":"abc"}' }),
+    /userCrypto is unavailable/u
+  );
+});
+
+test("encodeStoredCodexTokens returns '' when caller cleared tokens and no locked ciphertext is held", async () => {
+  const runtime = createRuntime({ singleUserApp: true });
+
+  const result = await encodeStoredCodexTokens(runtime, {
+    codexTokens: "",
+    storedCodexTokensLocked: false,
+    storedCodexTokensValue: ""
+  });
+
+  assert.equal(result, "");
+});
diff --git a/tests/openai_codex_token_manager_test.mjs b/tests/openai_codex_token_manager_test.mjs
new file mode 100644
index 00000000..f0b14e95
--- /dev/null
+++ b/tests/openai_codex_token_manager_test.mjs
@@ -0,0 +1,316 @@
+import assert from "node:assert/strict";
+import test from "node:test";
+
+import {
+  DEFAULT_CODEX_REFRESH_MARGIN_SECONDS,
+  ensureFreshCodexAccessToken,
+  isCodexAccessTokenExpiring,
+  normalizeCodexTokens,
+  resetCodexTokenManagerForTesting
+} from "../app/L0/_all/mod/_core/openai_codex/token_manager.js";
+
+function createFetchStub(handler) {
+  return async function stubbedFetch(url, init) {
+    const callInfo = {
+      body: init && typeof init.body === "string" ? JSON.parse(init.body) : null,
+      credentials: init?.credentials,
+      method: init?.method,
+      url
+    };
+    const { status = 200, body = {}, contentType = "application/json" } = await handler(callInfo);
+    const bodyText = contentType.includes("application/json") ? JSON.stringify(body) : String(body);
+
+    return {
+      headers: {
+        get: (name) => (String(name).toLowerCase() === "content-type" ? contentType : null)
+      },
+      json: async () => JSON.parse(bodyText),
+      ok: status >= 200 && status < 300,
+      status,
+      text: async () => bodyText
+    };
+  };
+}
+
+function nowSeconds() {
+  return Math.floor(Date.now() / 1000);
+}
+
+test("normalizeCodexTokens returns null for missing fields", () => {
+  assert.equal(normalizeCodexTokens(null), null);
+  assert.equal(normalizeCodexTokens({}), null);
+  assert.equal(normalizeCodexTokens({ accessToken: "a" }), null);
+  assert.equal(normalizeCodexTokens({ refreshToken: "r" }), null);
+});
+
+test("normalizeCodexTokens fills numeric defaults", () => {
+  const normalized = normalizeCodexTokens({
+    accessToken: "a",
+    refreshToken: "r"
+  });
+
+  assert.equal(normalized.accessToken, "a");
+  assert.equal(normalized.refreshToken, "r");
+  assert.equal(normalized.expiresAt, 0);
+  assert.equal(normalized.obtainedAt, 0);
+  assert.equal(normalized.accountId, "");
+  assert.equal(normalized.idToken, "");
+});
+
+test("isCodexAccessTokenExpiring returns true when token has no expiry", () => {
+  assert.equal(
+    isCodexAccessTokenExpiring({ accessToken: "a", refreshToken: "r" }),
+    true
+  );
+});
+
+test("isCodexAccessTokenExpiring respects safety margin", () => {
+  const farFuture = nowSeconds() + DEFAULT_CODEX_REFRESH_MARGIN_SECONDS + 600;
+  const nearFuture = nowSeconds() + DEFAULT_CODEX_REFRESH_MARGIN_SECONDS - 60;
+
+  assert.equal(
+    isCodexAccessTokenExpiring({
+      accessToken: "a",
+      expiresAt: farFuture,
+      refreshToken: "r"
+    }),
+    false
+  );
+
+  assert.equal(
+    isCodexAccessTokenExpiring({
+      accessToken: "a",
+      expiresAt: nearFuture,
+      refreshToken: "r"
+    }),
+    true
+  );
+});
+
+test("ensureFreshCodexAccessToken returns existing token when not expiring", async () => {
+  resetCodexTokenManagerForTesting();
+  const tokens = {
+    accessToken: "live",
+    accountId: "",
+    expiresAt: nowSeconds() + 3600,
+    idToken: "",
+    obtainedAt: nowSeconds(),
+    refreshToken: "rt1"
+  };
+
+  let loadCalls = 0;
+  let saveCalls = 0;
+  const fetchImpl = createFetchStub(() => {
+    throw new Error("fetch should not be called when token is still valid");
+  });
+
+  const result = await ensureFreshCodexAccessToken({
+    fetchImpl,
+    loadTokens: async () => {
+      loadCalls += 1;
+      return tokens;
+    },
+    saveTokens: async () => {
+      saveCalls += 1;
+    }
+  });
+
+  assert.equal(result.accessToken, "live");
+  assert.equal(loadCalls, 1);
+  assert.equal(saveCalls, 0);
+});
+
+test("ensureFreshCodexAccessToken refreshes when token is expiring", async () => {
+  resetCodexTokenManagerForTesting();
+  const stale = {
+    accessToken: "stale",
+    accountId: "",
+    expiresAt: nowSeconds() + 30,
+    idToken: "",
+    obtainedAt: nowSeconds() - 3600,
+    refreshToken: "rt-old"
+  };
+  const refreshedPayload = {
+    accessToken: "fresh",
+    accountId: "acc-1",
+    expiresAt: nowSeconds() + 3600,
+    idToken: "id1",
+    obtainedAt: nowSeconds(),
+    refreshToken: "rt-new"
+  };
+
+  let postedBody = null;
+  let savedTokens = null;
+
+  const fetchImpl = createFetchStub((callInfo) => {
+    assert.equal(callInfo.url, "/api/openai_codex_token_refresh");
+    postedBody = callInfo.body;
+    return { body: refreshedPayload };
+  });
+
+  const result = await ensureFreshCodexAccessToken({
+    fetchImpl,
+    loadTokens: async () => stale,
+    saveTokens: async (tokens) => {
+      savedTokens = tokens;
+    }
+  });
+
+  assert.deepEqual(postedBody, { refreshToken: "rt-old" });
+  assert.equal(result.accessToken, "fresh");
+  assert.equal(result.refreshToken, "rt-new");
+  assert.equal(savedTokens?.accessToken, "fresh");
+  assert.equal(savedTokens?.refreshToken, "rt-new");
+});
+
+test("ensureFreshCodexAccessToken re-reads tokens on every call (no in-memory cache)", async () => {
+  resetCodexTokenManagerForTesting();
+  let loadCalls = 0;
+  const fetchImpl = createFetchStub(() => {
+    throw new Error("fetch should not be called when token is still valid");
+  });
+
+  const stillValid = {
+    accessToken: "a",
+    accountId: "",
+    expiresAt: nowSeconds() + 3600,
+    idToken: "",
+    obtainedAt: nowSeconds(),
+    refreshToken: "r"
+  };
+
+  const loadTokens = async () => {
+    loadCalls += 1;
+    return stillValid;
+  };
+
+  await ensureFreshCodexAccessToken({ fetchImpl, loadTokens });
+  await ensureFreshCodexAccessToken({ fetchImpl, loadTokens });
+  await ensureFreshCodexAccessToken({ fetchImpl, loadTokens });
+
+  assert.equal(loadCalls, 3);
+});
+
+test("ensureFreshCodexAccessToken coalesces concurrent refresh calls for the same refresh token", async () => {
+  resetCodexTokenManagerForTesting();
+  const stale = {
+    accessToken: "stale",
+    accountId: "",
+    expiresAt: nowSeconds() - 60,
+    idToken: "",
+    obtainedAt: nowSeconds() - 3600,
+    refreshToken: "rt-shared"
+  };
+
+  let refreshCallCount = 0;
+  let resolveRefresh;
+  const refreshPayload = {
+    accessToken: "fresh",
+    accountId: "",
+    expiresAt: nowSeconds() + 3600,
+    idToken: "",
+    obtainedAt: nowSeconds(),
+    refreshToken: "rt-new"
+  };
+
+  const fetchImpl = createFetchStub(async () => {
+    refreshCallCount += 1;
+    await new Promise((resolve) => {
+      resolveRefresh = resolve;
+    });
+    return { body: refreshPayload };
+  });
+
+  const loadTokens = async () => stale;
+  const promiseA = ensureFreshCodexAccessToken({ fetchImpl, loadTokens });
+  const promiseB = ensureFreshCodexAccessToken({ fetchImpl, loadTokens });
+  const promiseC = ensureFreshCodexAccessToken({ fetchImpl, loadTokens });
+
+  // Let microtasks run so all three calls reach the single-flight coalesce path.
+  await Promise.resolve();
+  await Promise.resolve();
+
+  resolveRefresh({ body: refreshPayload });
+
+  const [a, b, c] = await Promise.all([promiseA, promiseB, promiseC]);
+
+  assert.equal(refreshCallCount, 1);
+  assert.equal(a.accessToken, "fresh");
+  assert.equal(b.accessToken, "fresh");
+  assert.equal(c.accessToken, "fresh");
+});
+
+test("ensureFreshCodexAccessToken throws when no tokens are stored", async () => {
+  resetCodexTokenManagerForTesting();
+  await assert.rejects(
+    () =>
+      ensureFreshCodexAccessToken({
+        fetchImpl: createFetchStub(() => {
+          throw new Error("should not be called");
+        }),
+        loadTokens: async () => null
+      }),
+    /Codex tokens are missing/u
+  );
+});
+
+test("ensureFreshCodexAccessToken propagates invalid_grant from refresh endpoint", async () => {
+  resetCodexTokenManagerForTesting();
+  const stale = {
+    accessToken: "stale",
+    expiresAt: nowSeconds() - 60,
+    obtainedAt: nowSeconds() - 3600,
+    refreshToken: "rt-revoked"
+  };
+
+  const fetchImpl = createFetchStub(() => ({
+    body: { error: "Refresh token is no longer valid. Please log in again." },
+    status: 401
+  }));
+
+  await assert.rejects(
+    () =>
+      ensureFreshCodexAccessToken({
+        fetchImpl,
+        loadTokens: async () => stale
+      }),
+    (error) => error.statusCode === 401 && /Refresh token is no longer valid/u.test(error.message)
+  );
+});
+
+test("ensureFreshCodexAccessToken returns refreshed tokens even when save fails", async () => {
+  resetCodexTokenManagerForTesting();
+  const stale = {
+    accessToken: "stale",
+    expiresAt: nowSeconds() - 60,
+    obtainedAt: nowSeconds() - 3600,
+    refreshToken: "rt1"
+  };
+  const refreshed = {
+    accessToken: "fresh",
+    expiresAt: nowSeconds() + 3600,
+    obtainedAt: nowSeconds(),
+    refreshToken: "rt2"
+  };
+
+  const fetchImpl = createFetchStub(() => ({ body: refreshed }));
+
+  // Silence expected console.warn during this test so it does not pollute
+  // the overall test output.
+  const originalWarn = globalThis.console.warn;
+  globalThis.console.warn = () => {};
+
+  try {
+    const result = await ensureFreshCodexAccessToken({
+      fetchImpl,
+      loadTokens: async () => stale,
+      saveTokens: async () => {
+        throw new Error("disk error");
+      }
+    });
+
+    assert.equal(result.accessToken, "fresh");
+  } finally {
+    globalThis.console.warn = originalWarn;
+  }
+});