vultr/openclaw
1
0
Fork 0
mirror of https://github.com/openclaw/openclaw.git synced 2026-05-09 20:00:42 +00:00
Code Issues Packages Projects Releases Wiki Activity

fix(cli): authorize gateway model probe overrides

Browse Source
This commit is contained in:
Peter Steinberger
2026-04-28 20:55:38 +01:00
parent 87172dc9fe
commit 3b593bc561
4 changed files with 41 additions and 2 deletions
Download Patch File Download Diff File Expand all files Collapse all files

9
src/cli/capability-cli.ts
View File

@@ -22,6 +22,7 @@ import type { OpenClawConfig } from "../config/types.openclaw.js";
import { callGateway, randomIdempotencyKey } from "../gateway/call.js";
import { buildGatewayConnectionDetailsWithResolvers } from "../gateway/connection-details.js";
import { isLoopbackHost } from "../gateway/net.js";
import { ADMIN_SCOPE } from "../gateway/operator-scopes.js";
import { GATEWAY_CLIENT_MODES, GATEWAY_CLIENT_NAMES } from "../gateway/protocol/client-info.js";
import { generateImage, listRuntimeImageGenerationProviders } from "../image-generation/runtime.js";
import type {
@@ -702,6 +703,9 @@ async function runModelRun(params: {
}
const { provider, model } = resolveModelRefOverride(params.model);
// Provider/model overrides require trusted-operator scope. Use the backend
// shared-secret lane so local gateway smokes do not depend on paired CLI device scopes.
const hasModelOverride = Boolean(provider || model);
const response: {
result?: {
payloads?: Array<{ text?: string; mediaUrl?: string | null; mediaUrls?: string[] }>;
@@ -730,8 +734,9 @@ async function runModelRun(params: {
},
expectFinal: true,
timeoutMs: 120_000,
clientName: GATEWAY_CLIENT_NAMES.CLI,
mode: GATEWAY_CLIENT_MODES.CLI,
clientName: hasModelOverride ? GATEWAY_CLIENT_NAMES.GATEWAY_CLIENT : GATEWAY_CLIENT_NAMES.CLI,
mode: hasModelOverride ? GATEWAY_CLIENT_MODES.BACKEND : GATEWAY_CLIENT_MODES.CLI,
...(hasModelOverride ? { scopes: [ADMIN_SCOPE] } : {}),
});
return {
ok: true,