yunxiafei/openclaw-mission-control
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
1,070 Commits 16 Branches 0 Tags
73b01fcb258501de3c26e087b22e819fc6b48e9a
Commit Graph

75 Commits

Author SHA1 Message Date
Claude Thebot
7bca8c1ca2 fix: address PR #261 review – remove DOCUMENTATION.md, fix systemd docs and install.sh 
- Remove DOCUMENTATION.md (owner request)
- systemd README: fix sed example (use redirection, not -o); add note on user units vs boot (loginctl enable-linger); document REPO_ROOT must not contain spaces
- deployment README: clarify macOS LaunchAgents run at login, not boot; mention LaunchDaemons for true boot
- install.sh: capture install_systemd_services exit; die when --install-service requested and install fails; add REPO_ROOT space check; only print success message on success

Made-with: Cursor
 2026-03-09 23:23:30 -07:00
Claude Thebot
efee334843 feat: run at boot (systemd/launchd) and auth token re-sync docs 
- Add systemd unit examples and README for local install (Linux)
- Extend deployment README with Run at boot (local install) and merge upstream
- Add Re-syncing auth tokens subsection to gateway provisioning troubleshooting
- install.sh: add --install-service to install systemd user units (Linux)
- DOCUMENTATION.md: session notes

Made-with: Cursor
 2026-03-09 22:25:31 -07:00
Abhimanyu Saharan
46bc9a02c6 fix(security): Keep short agent token prefixes in logs 
Restore the existing short token-prefix logging behavior for agent auth failures while keeping the optional bearer-path rate-limit fix. Update tests and docs so the replacement branch reflects the intended logging policy.

Co-Authored-By: Claude <noreply@anthropic.com>
 2026-03-07 23:43:32 +05:30
Abhimanyu Saharan
fb8a932923 fix(security): Close review follow-up gaps 
Rate-limit the optional agent bearer path after user auth resolution so mixed user/agent routes no longer leave an unthrottled PBKDF2 path. Stop logging token prefixes on agent auth failures and require a locally supplied token for backend/.env.test instead of committing one.

Update tests and docs to cover agent bearer fallback, configurable webhook signature headers, and the operator-facing security settings added by the hardening work.

Co-Authored-By: Claude <noreply@anthropic.com>
 2026-03-07 23:40:50 +05:30
Hugh Brown
24e40f1153 docs: update operations README for configurable rate-limit backend 
Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com>
 2026-03-07 23:35:10 +05:30
Hugh Brown
494bf4649e docs: update api.md and authentication.md for Redis rate-limit backend and token logging 
Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com>
 2026-03-07 23:35:10 +05:30
Hugh Brown
81d16a324b docs: update security.md for Redis rate-limit backend and token logging 
Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com>
 2026-03-07 23:35:10 +05:30
Hugh Brown
ee825fb2d5 docs: fix gateway token description in openclaw_gateway_ws.md to match actual behavior 
Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com>
 2026-03-07 23:35:10 +05:30
Hugh Brown
84a5d8677e docs: update security.md to reflect current gateway token behavior 
The has_token redaction was reverted to avoid a frontend breaking
change. Update docs to match: tokens are currently returned in API
responses, redaction is planned for a future PR. Also note the
configurable payload size limit.

Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com>
 2026-03-07 23:35:10 +05:30
Hugh Brown
acd1526acf docs: update api.md to reflect require_user_or_agent rename 
Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com>
 2026-03-07 23:35:10 +05:30
Hugh Brown
149fde90c4 docs: document security hardening changes from security review 
Add documentation for all user/operator-facing changes introduced by the
security review branch: rate limits, security headers, webhook HMAC
verification, payload size limits, gateway token redaction, non-root
containers, agent token logging, and prompt injection mitigation.

Updated: docs/reference/api.md, docs/reference/authentication.md,
docs/reference/configuration.md, docs/deployment/README.md,
docs/operations/README.md, docs/openclaw_gateway_ws.md, backend/README.md.
Created: docs/reference/security.md (consolidated security reference).

Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com>
 2026-03-07 23:35:10 +05:30
Abhimanyu Saharan
bee40c36cd fix: address PR #100 review comments 2026-03-03 05:17:31 +05:30
Abhimanyu Saharan
7fa0959f63 docs: use sentence-case heading in docs landing 2026-03-03 05:04:42 +05:30
Abhimanyu Saharan
32e8855404 docs(api): document auth, request ids, errors, examples 2026-03-03 05:04:42 +05:30
Abhimanyu Saharan
a3a9a12a02 docs: flesh out deployment + operations runbooks 2026-03-03 05:04:42 +05:30
Abhimanyu Saharan
e477cffe7e docs: add testing + release checklist; fix contributing links 2026-03-03 05:04:42 +05:30
Abhimanyu Saharan
1fdacec7c1 docs: add initial docs/ information architecture + stubs 2026-03-03 05:04:42 +05:30
Claude Thebot
c402344cb8 feat: add macOS support to installer and docs 
- install.sh: detect Darwin, use Homebrew for packages/Node, Docker Desktop hint
- install.sh: portable realpath and bash 3-compatible confirm() for macOS
- docs/installer-support.md: add macOS (Darwin) / Homebrew to support matrix
- README.md: document supported platforms (Linux and macOS), Docker Desktop/Homebrew
- ci.yml: add installer-macos job (macos-latest, bash -n install.sh)

Made-with: Cursor
 2026-02-26 15:52:47 -08:00
Abhimanyu Saharan
1d50e48609 chore: update CI configuration and improve README instructions 2026-02-25 00:49:35 +05:30
Abhimanyu Saharan
0795f78eff feat: implement unified agent lifecycle orchestration and metadata tracking 2026-02-25 00:34:04 +05:30
Abhimanyu Saharan
effd9f316c docs: update documentation for enabling self-signed TLS certificates in gateway configuration 2026-02-22 21:03:32 +05:30
Abhimanyu Saharan
374d5a0c37 Merge branch 'master' into copilot/feature-allow-self-signed-tls 
# Conflicts:
#	backend/app/api/gateways.py
#	backend/app/schemas/gateways.py
#	backend/app/services/openclaw/admin_service.py
#	backend/app/services/openclaw/gateway_resolver.py
#	backend/app/services/openclaw/gateway_rpc.py
#	backend/app/services/openclaw/provisioning.py
#	backend/app/services/openclaw/provisioning_db.py
#	frontend/src/api/generated/model/gatewayCreate.ts
#	frontend/src/api/generated/model/gatewayRead.ts
#	frontend/src/api/generated/model/gatewayUpdate.ts
 2026-02-22 19:51:27 +05:30
Abhimanyu Saharan
3dfb70cd90 feat: add disable_device_pairing option to gateway configuration 2026-02-22 19:19:26 +05:30
copilot-swe-agent[bot]
87b210b34d docs: Add documentation for self-signed TLS certificate support 
Co-authored-by: abhi1693 <5083532+abhi1693@users.noreply.github.com>
 2026-02-22 05:32:04 +00:00
Abhimanyu Saharan
0b3fb04630 docs: add OpenClaw baseline configuration guide to README 2026-02-15 15:36:20 +05:30
Abhimanyu Saharan
1cad57f6b5 ci(policy): enforce one migration per PR 2026-02-14 19:09:09 +00:00
Abhimanyu Saharan
c772063280 Merge branch 'master' into installer 2026-02-14 00:20:07 +05:30
Abhimanyu Saharan
645e620ae9 installer: scaffold package manager abstraction and support matrix 2026-02-13 09:40:54 +00:00
Abhimanyu Saharan
e60734f3e7 ci: add migration integrity gate for migration-relevant changes 2026-02-12 20:04:38 +00:00
Abhimanyu Saharan
d6db63480e CI: add markdownlint + docs-check wrapper; extend link check scope 2026-02-12 14:44:43 +00:00
Abhimanyu Saharan
6548f738cd removed old docs 2026-02-12 02:16:43 +05:30
Abhimanyu Saharan
f50588b20a docs: resolve merge conflicts with master 2026-02-11 14:41:30 +00:00
Abhimanyu Saharan
3dfdfa3c3e Merge pull request #82 from abhi1693/docs/style-guide 
docs: add docs style guide
 2026-02-11 19:42:31 +05:30
Abhimanyu Saharan
571b4844d9 feat: update local authentication mode to require a non-placeholder token of at least 50 characters 2026-02-11 19:40:33 +05:30
Abhimanyu Saharan
b87f56de7a feat: update authentication configuration and documentation for local and Clerk modes 2026-02-11 19:40:33 +05:30
Abhimanyu Saharan
06ff1a9720 feat: implement local authentication mode and update related components 2026-02-11 19:40:33 +05:30
Abhimanyu Saharan
54f10fac4f docs: rewrite core reader journey pages (NetBox-style) 2026-02-11 12:59:37 +00:00
Abhimanyu Saharan
a84d7d6cab docs: link style guide from docs landing 2026-02-11 12:55:43 +00:00
Abhimanyu Saharan
d7e8d41c65 docs: add documentation style guide 2026-02-11 12:55:22 +00:00
Abhimanyu Saharan
a2a4159a51 docs(backend): add core module guide (config/auth/deps/logging/errors) 2026-02-11 12:50:06 +00:00
Abhimanyu Saharan
cacb25abfa docs: add frontend API/auth module reference 2026-02-11 12:48:53 +00:00
Abhimanyu Saharan
32c9540d54 docs(api): add module-level index for backend/app/api layer 2026-02-11 12:48:18 +00:00
Abhimanyu Saharan
4c206fb97d docs: replace code-formatted doc paths with markdown links 2026-02-11 10:40:02 +00:00
Abhimanyu Saharan
f523415fc8 docs: rename Non-goals to Out of scope 2026-02-11 10:36:45 +00:00
Abhimanyu Saharan
93f52f9273 docs: clarify Clerk is required (remove optional wording) 2026-02-11 10:08:36 +00:00
Abhimanyu Saharan
5808aa8f59 docs: tone (remove first-pass phrasing) 2026-02-11 09:46:42 +00:00
Abhimanyu Saharan
8fbec579ea docs: tone pass (remove boilerplate evidence notes) 2026-02-11 09:46:17 +00:00
Abhimanyu Saharan
7be38140a1 docs: add missing context to overview/architecture/ops/troubleshooting 2026-02-11 09:45:29 +00:00
Abhimanyu Saharan
04c6822ea8 docs: add agent automation endpoint index 2026-02-11 09:02:48 +00:00
Abhimanyu Saharan
1839e2638c docs: tighten configuration reference (precedence + env var table) 2026-02-11 09:01:09 +00:00