openclaw/src/plugin-sdk/command-auth.ts

import type { OpenClawConfig } from "../config/config.js";
import { resolveDmGroupAccessWithLists } from "../security/dm-policy-shared.js";

export {
  hasControlCommand,
  hasInlineCommandTokens,
  isControlCommandMessage,
  shouldComputeCommandAuthorized,
} from "../auto-reply/command-detection.js";
export {
  buildCommandText,
  buildCommandTextFromArgs,
  findCommandByNativeName,
  getCommandDetection,
  isCommandEnabled,
  isCommandMessage,
  isNativeCommandSurface,
  listChatCommands,
  listChatCommandsForConfig,
  listNativeCommandSpecs,
  listNativeCommandSpecsForConfig,
  maybeResolveTextAlias,
  normalizeCommandBody,
  parseCommandArgs,
  resolveCommandArgChoices,
  resolveCommandArgMenu,
  resolveTextCommand,
  serializeCommandArgs,
  shouldHandleTextCommands,
} from "../auto-reply/commands-registry.js";
export type {
  ChatCommandDefinition,
  CommandArgChoiceContext,
  CommandArgDefinition,
  CommandArgMenuSpec,
  CommandArgValues,
  CommandArgs,
  CommandDetection,
  CommandNormalizeOptions,
  CommandScope,
  NativeCommandSpec,
  ResolvedCommandArgChoice,
  ShouldHandleTextCommandsParams,
} from "../auto-reply/commands-registry.js";
export {
  resolveCommandAuthorizedFromAuthorizers,
  resolveControlCommandGate,
  resolveDualTextControlCommandGate,
  type CommandAuthorizer,
  type CommandGatingModeWhenAccessGroupsOff,
} from "../channels/command-gating.js";
export {
  resolveNativeCommandSessionTargets,
  type ResolveNativeCommandSessionTargetsParams,
} from "../channels/native-command-session-targets.js";
export {
  resolveCommandAuthorization,
  type CommandAuthorization,
} from "../auto-reply/command-auth.js";
export {
  listReservedChatSlashCommandNames,
  listSkillCommandsForAgents,
  listSkillCommandsForWorkspace,
  resolveSkillCommandInvocation,
} from "../auto-reply/skill-commands.js";
export { buildCommandsPaginationKeyboard } from "../auto-reply/reply/commands-info.js";
export {
  buildModelsProviderData,
  formatModelsAvailableHeader,
  resolveModelsCommandReply,
} from "../auto-reply/reply/commands-models.js";
export type { ModelsProviderData } from "../auto-reply/reply/commands-models.js";
export { resolveStoredModelOverride } from "../auto-reply/reply/model-selection.js";
export type { StoredModelOverride } from "../auto-reply/reply/model-selection.js";
export {
  buildCommandsMessage,
  buildCommandsMessagePaginated,
  buildHelpMessage,
} from "../auto-reply/status.js";

export type ResolveSenderCommandAuthorizationParams = {
  cfg: OpenClawConfig;
  rawBody: string;
  isGroup: boolean;
  dmPolicy: string;
  configuredAllowFrom: string[];
  configuredGroupAllowFrom?: string[];
  senderId: string;
  isSenderAllowed: (senderId: string, allowFrom: string[]) => boolean;
  readAllowFromStore: () => Promise<string[]>;
  shouldComputeCommandAuthorized: (rawBody: string, cfg: OpenClawConfig) => boolean;
  resolveCommandAuthorizedFromAuthorizers: (params: {
    useAccessGroups: boolean;
    authorizers: Array<{ configured: boolean; allowed: boolean }>;
  }) => boolean;
};

export type CommandAuthorizationRuntime = {
  shouldComputeCommandAuthorized: (rawBody: string, cfg: OpenClawConfig) => boolean;
  resolveCommandAuthorizedFromAuthorizers: (params: {
    useAccessGroups: boolean;
    authorizers: Array<{ configured: boolean; allowed: boolean }>;
  }) => boolean;
};

export type ResolveSenderCommandAuthorizationWithRuntimeParams = Omit<
  ResolveSenderCommandAuthorizationParams,
  "shouldComputeCommandAuthorized" | "resolveCommandAuthorizedFromAuthorizers"
> & {
  runtime: CommandAuthorizationRuntime;
};

/** Fast-path DM command authorization when only policy and sender allowlist state matter. */
export function resolveDirectDmAuthorizationOutcome(params: {
  isGroup: boolean;
  dmPolicy: string;
  senderAllowedForCommands: boolean;
}): "disabled" | "unauthorized" | "allowed" {
  if (params.isGroup) {
    return "allowed";
  }
  if (params.dmPolicy === "disabled") {
    return "disabled";
  }
  if (params.dmPolicy !== "open" && !params.senderAllowedForCommands) {
    return "unauthorized";
  }
  return "allowed";
}

/** Runtime-backed wrapper around sender command authorization for grouped helper surfaces. */
export async function resolveSenderCommandAuthorizationWithRuntime(
  params: ResolveSenderCommandAuthorizationWithRuntimeParams,
): ReturnType<typeof resolveSenderCommandAuthorization> {
  return resolveSenderCommandAuthorization({
    ...params,
    shouldComputeCommandAuthorized: params.runtime.shouldComputeCommandAuthorized,
    resolveCommandAuthorizedFromAuthorizers: params.runtime.resolveCommandAuthorizedFromAuthorizers,
  });
}

/** Compute effective allowlists and command authorization for one inbound sender. */
export async function resolveSenderCommandAuthorization(
  params: ResolveSenderCommandAuthorizationParams,
): Promise<{
  shouldComputeAuth: boolean;
  effectiveAllowFrom: string[];
  effectiveGroupAllowFrom: string[];
  senderAllowedForCommands: boolean;
  commandAuthorized: boolean | undefined;
}> {
  const shouldComputeAuth = params.shouldComputeCommandAuthorized(params.rawBody, params.cfg);
  const storeAllowFrom =
    !params.isGroup &&
    params.dmPolicy !== "allowlist" &&
    (params.dmPolicy !== "open" || shouldComputeAuth)
      ? await params.readAllowFromStore().catch(() => [])
      : [];
  const access = resolveDmGroupAccessWithLists({
    isGroup: params.isGroup,
    dmPolicy: params.dmPolicy,
    groupPolicy: "allowlist",
    allowFrom: params.configuredAllowFrom,
    groupAllowFrom: params.configuredGroupAllowFrom ?? [],
    storeAllowFrom,
    isSenderAllowed: (allowFrom) => params.isSenderAllowed(params.senderId, allowFrom),
  });
  const effectiveAllowFrom = access.effectiveAllowFrom;
  const effectiveGroupAllowFrom = access.effectiveGroupAllowFrom;
  const useAccessGroups = params.cfg.commands?.useAccessGroups !== false;
  const senderAllowedForCommands = params.isSenderAllowed(
    params.senderId,
    params.isGroup ? effectiveGroupAllowFrom : effectiveAllowFrom,
  );
  const ownerAllowedForCommands = params.isSenderAllowed(params.senderId, effectiveAllowFrom);
  const groupAllowedForCommands = params.isSenderAllowed(params.senderId, effectiveGroupAllowFrom);
  const commandAuthorized = shouldComputeAuth
    ? params.resolveCommandAuthorizedFromAuthorizers({
        useAccessGroups,
        authorizers: [
          { configured: effectiveAllowFrom.length > 0, allowed: ownerAllowedForCommands },
          { configured: effectiveGroupAllowFrom.length > 0, allowed: groupAllowedForCommands },
        ],
      })
    : undefined;

  return {
    shouldComputeAuth,
    effectiveAllowFrom,
    effectiveGroupAllowFrom,
    senderAllowedForCommands,
    commandAuthorized,
  };
}
refactor(core): dedupe shared config and runtime helpers 2026-02-16 14:52:03 +00:00			`import type { OpenClawConfig } from "../config/config.js";`
fix: enforce explicit group auth boundaries across channels 2026-02-26 18:15:57 +01:00			`import { resolveDmGroupAccessWithLists } from "../security/dm-policy-shared.js";`
refactor(core): dedupe shared config and runtime helpers 2026-02-16 14:52:03 +00:00
refactor: consolidate plugin sdk surface 2026-03-20 18:50:25 +00:00			`export {`
			`hasControlCommand,`
			`hasInlineCommandTokens,`
			`isControlCommandMessage,`
			`shouldComputeCommandAuthorized,`
			`} from "../auto-reply/command-detection.js";`
			`export {`
			`buildCommandText,`
			`buildCommandTextFromArgs,`
			`findCommandByNativeName,`
			`getCommandDetection,`
			`isCommandEnabled,`
			`isCommandMessage,`
			`isNativeCommandSurface,`
			`listChatCommands,`
			`listChatCommandsForConfig,`
			`listNativeCommandSpecs,`
			`listNativeCommandSpecsForConfig,`
			`maybeResolveTextAlias,`
			`normalizeCommandBody,`
			`parseCommandArgs,`
			`resolveCommandArgChoices,`
			`resolveCommandArgMenu,`
			`resolveTextCommand,`
			`serializeCommandArgs,`
			`shouldHandleTextCommands,`
			`} from "../auto-reply/commands-registry.js";`
			`export type {`
			`ChatCommandDefinition,`
			`CommandArgChoiceContext,`
			`CommandArgDefinition,`
			`CommandArgMenuSpec,`
			`CommandArgValues,`
			`CommandArgs,`
			`CommandDetection,`
			`CommandNormalizeOptions,`
			`CommandScope,`
			`NativeCommandSpec,`
			`ResolvedCommandArgChoice,`
			`ShouldHandleTextCommandsParams,`
			`} from "../auto-reply/commands-registry.js";`
			`export {`
			`resolveCommandAuthorizedFromAuthorizers,`
			`resolveControlCommandGate,`
			`resolveDualTextControlCommandGate,`
			`type CommandAuthorizer,`
			`type CommandGatingModeWhenAccessGroupsOff,`
			`} from "../channels/command-gating.js";`
			`export {`
			`resolveNativeCommandSessionTargets,`
			`type ResolveNativeCommandSessionTargetsParams,`
			`} from "../channels/native-command-session-targets.js";`
			`export {`
			`resolveCommandAuthorization,`
			`type CommandAuthorization,`
			`} from "../auto-reply/command-auth.js";`
			`export {`
			`listReservedChatSlashCommandNames,`
			`listSkillCommandsForAgents,`
			`listSkillCommandsForWorkspace,`
			`resolveSkillCommandInvocation,`
			`} from "../auto-reply/skill-commands.js";`
			`export { buildCommandsPaginationKeyboard } from "../auto-reply/reply/commands-info.js";`
			`export {`
			`buildModelsProviderData,`
			`formatModelsAvailableHeader,`
			`resolveModelsCommandReply,`
			`} from "../auto-reply/reply/commands-models.js";`
			`export type { ModelsProviderData } from "../auto-reply/reply/commands-models.js";`
			`export { resolveStoredModelOverride } from "../auto-reply/reply/model-selection.js";`
			`export type { StoredModelOverride } from "../auto-reply/reply/model-selection.js";`
			`export {`
			`buildCommandsMessage,`
			`buildCommandsMessagePaginated,`
			`buildHelpMessage,`
			`} from "../auto-reply/status.js";`

refactor(core): dedupe shared config and runtime helpers 2026-02-16 14:52:03 +00:00			`export type ResolveSenderCommandAuthorizationParams = {`
			`cfg: OpenClawConfig;`
			`rawBody: string;`
			`isGroup: boolean;`
			`dmPolicy: string;`
			`configuredAllowFrom: string[];`
fix: enforce explicit group auth boundaries across channels 2026-02-26 18:15:57 +01:00			`configuredGroupAllowFrom?: string[];`
refactor(core): dedupe shared config and runtime helpers 2026-02-16 14:52:03 +00:00			`senderId: string;`
			`isSenderAllowed: (senderId: string, allowFrom: string[]) => boolean;`
			`readAllowFromStore: () => Promise<string[]>;`
			`shouldComputeCommandAuthorized: (rawBody: string, cfg: OpenClawConfig) => boolean;`
			`resolveCommandAuthorizedFromAuthorizers: (params: {`
			`useAccessGroups: boolean;`
			`authorizers: Array<{ configured: boolean; allowed: boolean }>;`
			`}) => boolean;`
			`};`

refactor(plugin-sdk): share auth, routing, and stream/account helpers 2026-03-02 15:14:46 +00:00			`export type CommandAuthorizationRuntime = {`
			`shouldComputeCommandAuthorized: (rawBody: string, cfg: OpenClawConfig) => boolean;`
			`resolveCommandAuthorizedFromAuthorizers: (params: {`
			`useAccessGroups: boolean;`
			`authorizers: Array<{ configured: boolean; allowed: boolean }>;`
			`}) => boolean;`
			`};`

			`export type ResolveSenderCommandAuthorizationWithRuntimeParams = Omit<`
			`ResolveSenderCommandAuthorizationParams,`
			`"shouldComputeCommandAuthorized" \| "resolveCommandAuthorizedFromAuthorizers"`
			`> & {`
			`runtime: CommandAuthorizationRuntime;`
			`};`

refactor: tighten plugin sdk channel seams 2026-03-16 01:05:18 -07:00			`/** Fast-path DM command authorization when only policy and sender allowlist state matter. */`
refactor(plugin-sdk): share auth, routing, and stream/account helpers 2026-03-02 15:14:46 +00:00			`export function resolveDirectDmAuthorizationOutcome(params: {`
			`isGroup: boolean;`
			`dmPolicy: string;`
			`senderAllowedForCommands: boolean;`
			`}): "disabled" \| "unauthorized" \| "allowed" {`
			`if (params.isGroup) {`
			`return "allowed";`
			`}`
			`if (params.dmPolicy === "disabled") {`
			`return "disabled";`
			`}`
			`if (params.dmPolicy !== "open" && !params.senderAllowedForCommands) {`
			`return "unauthorized";`
			`}`
			`return "allowed";`
			`}`

refactor: tighten plugin sdk channel seams 2026-03-16 01:05:18 -07:00			`/** Runtime-backed wrapper around sender command authorization for grouped helper surfaces. */`
refactor(plugin-sdk): share auth, routing, and stream/account helpers 2026-03-02 15:14:46 +00:00			`export async function resolveSenderCommandAuthorizationWithRuntime(`
			`params: ResolveSenderCommandAuthorizationWithRuntimeParams,`
			`): ReturnType<typeof resolveSenderCommandAuthorization> {`
			`return resolveSenderCommandAuthorization({`
			`...params,`
			`shouldComputeCommandAuthorized: params.runtime.shouldComputeCommandAuthorized,`
			`resolveCommandAuthorizedFromAuthorizers: params.runtime.resolveCommandAuthorizedFromAuthorizers,`
			`});`
			`}`

refactor: tighten plugin sdk channel seams 2026-03-16 01:05:18 -07:00			`/** Compute effective allowlists and command authorization for one inbound sender. */`
refactor(core): dedupe shared config and runtime helpers 2026-02-16 14:52:03 +00:00			`export async function resolveSenderCommandAuthorization(`
			`params: ResolveSenderCommandAuthorizationParams,`
			`): Promise<{`
			`shouldComputeAuth: boolean;`
			`effectiveAllowFrom: string[];`
fix: enforce explicit group auth boundaries across channels 2026-02-26 18:15:57 +01:00			`effectiveGroupAllowFrom: string[];`
refactor(core): dedupe shared config and runtime helpers 2026-02-16 14:52:03 +00:00			`senderAllowedForCommands: boolean;`
			`commandAuthorized: boolean \| undefined;`
			`}> {`
			`const shouldComputeAuth = params.shouldComputeCommandAuthorized(params.rawBody, params.cfg);`
			`const storeAllowFrom =`
fix: enforce strict allowlist across pairing stores (#23017) 2026-02-22 00:00:23 +01:00			`!params.isGroup &&`
			`params.dmPolicy !== "allowlist" &&`
			`(params.dmPolicy !== "open" \|\| shouldComputeAuth)`
refactor(core): dedupe shared config and runtime helpers 2026-02-16 14:52:03 +00:00			`? await params.readAllowFromStore().catch(() => [])`
			`: [];`
fix: enforce explicit group auth boundaries across channels 2026-02-26 18:15:57 +01:00			`const access = resolveDmGroupAccessWithLists({`
			`isGroup: params.isGroup,`
			`dmPolicy: params.dmPolicy,`
			`groupPolicy: "allowlist",`
			`allowFrom: params.configuredAllowFrom,`
			`groupAllowFrom: params.configuredGroupAllowFrom ?? [],`
			`storeAllowFrom,`
			`isSenderAllowed: (allowFrom) => params.isSenderAllowed(params.senderId, allowFrom),`
			`});`
			`const effectiveAllowFrom = access.effectiveAllowFrom;`
			`const effectiveGroupAllowFrom = access.effectiveGroupAllowFrom;`
refactor(core): dedupe shared config and runtime helpers 2026-02-16 14:52:03 +00:00			`const useAccessGroups = params.cfg.commands?.useAccessGroups !== false;`
fix: enforce explicit group auth boundaries across channels 2026-02-26 18:15:57 +01:00			`const senderAllowedForCommands = params.isSenderAllowed(`
			`params.senderId,`
			`params.isGroup ? effectiveGroupAllowFrom : effectiveAllowFrom,`
			`);`
			`const ownerAllowedForCommands = params.isSenderAllowed(params.senderId, effectiveAllowFrom);`
			`const groupAllowedForCommands = params.isSenderAllowed(params.senderId, effectiveGroupAllowFrom);`
refactor(core): dedupe shared config and runtime helpers 2026-02-16 14:52:03 +00:00			`const commandAuthorized = shouldComputeAuth`
			`? params.resolveCommandAuthorizedFromAuthorizers({`
			`useAccessGroups,`
			`authorizers: [`
fix: enforce explicit group auth boundaries across channels 2026-02-26 18:15:57 +01:00			`{ configured: effectiveAllowFrom.length > 0, allowed: ownerAllowedForCommands },`
			`{ configured: effectiveGroupAllowFrom.length > 0, allowed: groupAllowedForCommands },`
refactor(core): dedupe shared config and runtime helpers 2026-02-16 14:52:03 +00:00			`],`
			`})`
			`: undefined;`

			`return {`
			`shouldComputeAuth,`
			`effectiveAllowFrom,`
fix: enforce explicit group auth boundaries across channels 2026-02-26 18:15:57 +01:00			`effectiveGroupAllowFrom,`
refactor(core): dedupe shared config and runtime helpers 2026-02-16 14:52:03 +00:00			`senderAllowedForCommands,`
			`commandAuthorized,`
			`};`
			`}`