Codex CLI

Configuration

disable_response_storage = true

The official documentation’s “Required for ZDR orgs.” refers to Zero Data Retention.

Login

requires_openai_auth = true

If using a single provider with responses API, you may set requires_openai_auth on the model provider and save your API key with codex login:

printenv OPENAI_API_KEY | codex login --with-api-key
codex login --with-api-key < my_key.txt

Otherwise, use API key (if needed) from the “env_key” environment variable, or specify the header statically:

http_headers = { "Authorization" = "Bearer sk-..." }

References

• https://github.com/openai/codex/blob/26f7c46856060f440615645bdf2faf9e62c74e72/codex-rs/core/src/model_provider_info.rs#L83-L86