docs(pairing): explain approval upgrades

2026-05-06 08:30:42 +00:00 · 2026-04-20 13:06:15 +05:30
parent 41a01cdae5
commit d63671fce0
2 changed files with 7 additions and 0 deletions
--- a/docs/channels/pairing.md
+++ b/docs/channels/pairing.md
@@ -100,6 +100,12 @@ If the same device retries with different auth details (for example different
 role/scopes/public key), the previous pending request is superseded and a new
 `requestId` is created.

+Important: an already paired device does not get broader access silently. If it
+reconnects asking for more scopes or a broader role, OpenClaw keeps the
+existing approval as-is and creates a fresh pending upgrade request. Use
+`openclaw devices list` to compare the currently approved access with the newly
+requested access before you approve.
+
 ### Node pairing state storage

 Stored under `~/.openclaw/devices/`: