Tighten phone-control mutation authorization [AI] (#87150)

* fix: require admin authorization for phone control mutations * addressing codex review * addressing codex review * addressing ci * addressing ci * test: restore provider registry mock isolation * docs: add changelog entry for PR merge
2026-06-09 13:32:52 +00:00 · 2026-05-28 16:00:01 +05:30
parent 629fc2f8f0
commit 91a4635bdc
11 changed files with 209 additions and 19 deletions
--- a/src/plugins/types.ts
+++ b/src/plugins/types.ts
@@ -2054,6 +2054,8 @@ export type OpenClawPluginCommandDefinition = {
  requireAuth?: boolean;
  /** Operator scopes required by gateway clients; command owners may satisfy this on chat surfaces. */
  requiredScopes?: OperatorScope[];
+  /** Whether a trusted bundled handler needs owner status for subcommand-level authorization. */
+  exposeSenderIsOwner?: boolean;
  /**
   * Allows a bundled plugin to claim a command name that is otherwise reserved
   * by core. External plugins cannot use this field.