feat(push): add iOS APNs relay gateway (#43369)

* feat(push): add ios apns relay gateway * fix(shared): avoid oslog string concatenation # Conflicts: # apps/shared/OpenClawKit/Sources/OpenClawKit/GatewayChannel.swift * fix(push): harden relay validation and invalidation * fix(push): persist app attest state before relay registration * fix(push): harden relay invalidation and url handling * feat(push): use scoped relay send grants * feat(push): configure ios relay through gateway config * feat(push): bind relay registration to gateway identity * fix(push): tighten ios relay trust flow * fix(push): bound APNs registration fields (#43369) (thanks @ngutman)
2026-05-05 22:10:21 +00:00 · 2026-03-12 18:15:35 +02:00
parent 9342739d71
commit b77b7485e0
36 changed files with 3249 additions and 203 deletions
--- a/src/gateway/protocol/push.test.ts
+++ b/src/gateway/protocol/push.test.ts
@@ -0,0 +1,22 @@
+import AjvPkg from "ajv";
+import { describe, expect, it } from "vitest";
+import { PushTestResultSchema } from "./schema/push.js";
+
+describe("gateway protocol push schema", () => {
+  const Ajv = AjvPkg as unknown as new (opts?: object) => import("ajv").default;
+  const ajv = new Ajv({ allErrors: true, strict: false });
+  const validatePushTestResult = ajv.compile(PushTestResultSchema);
+
+  it("accepts push.test results with a transport", () => {
+    expect(
+      validatePushTestResult({
+        ok: true,
+        status: 200,
+        tokenSuffix: "abcd1234",
+        topic: "ai.openclaw.ios",
+        environment: "production",
+        transport: "relay",
+      }),
+    ).toBe(true);
+  });
+});
--- a/src/gateway/protocol/schema/push.ts
+++ b/src/gateway/protocol/schema/push.ts
@@ -22,6 +22,7 @@ export const PushTestResultSchema = Type.Object(
    tokenSuffix: Type.String(),
    topic: Type.String(),
    environment: ApnsEnvironmentSchema,
+    transport: Type.String({ enum: ["direct", "relay"] }),
  },
  { additionalProperties: false },
 );