mirror of
https://github.com/openclaw/openclaw.git
synced 2026-05-29 14:35:17 +00:00
77d9ac30bb
* refactor: share talk event metric extraction * refactor: reuse shared coercion helpers * refactor: reuse shared primitive guards * refactor: reuse shared record guard * refactor: reuse shared primitive helpers * refactor: reuse shared string guards * refactor: reuse shared non-empty string guard * refactor: share plugin primitive coercion helpers * refactor: reuse plugin coercion helpers * refactor: reuse plugin coercion helpers in more plugins * refactor: reuse channel coercion helpers * refactor: reuse monitor coercion helpers * refactor: reuse provider coercion helpers * refactor: reuse core coercion helpers * refactor: reuse runtime coercion helpers * refactor: reuse helper coercion in codex paths * refactor: reuse helper coercion in runtime paths * refactor: reuse codex app-server coercion helpers * refactor: reuse codex record helpers * refactor: reuse migration and qa record helpers * refactor: reuse feishu and core helper guards * refactor: reuse browser and policy coercion helpers * refactor: reuse memory wiki record helper * refactor: share boolean coercion helpers * refactor: reuse finite number coercion * refactor: reuse trimmed string list helpers * refactor: reuse string list normalization * refactor: reuse remaining string list helpers * refactor: reuse string entry normalizer * refactor: share sorted string helpers * refactor: share string list normalization * test: preserve command registry browser imports * refactor: reuse trimmed list helpers * refactor: reuse string dedupe helpers * refactor: reuse local dedupe helpers * refactor: reuse more string dedupe helpers * refactor: reuse command string dedupe helpers * refactor: dedupe memory path lists with helper * refactor: expose string dedupe helpers to plugins * refactor: reuse core string dedupe helpers * refactor: reuse shared unique value helpers * refactor: reuse unique helpers in agent utilities * refactor: reuse unique helpers in config plumbing * refactor: reuse unique helpers in extensions * refactor: reuse unique helpers in core utilities * refactor: reuse unique helpers in qa plugins * refactor: reuse unique helpers in memory plugins * refactor: reuse unique helpers in channel plugins * refactor: reuse unique helpers in core tails * refactor: reuse unique helper in comfy workflow * refactor: reuse unique helpers in test utilities * refactor: expose unique value helper to plugins * refactor: reuse unique helpers for numeric lists * refactor: replace index dedupe filters * refactor: reuse string entry normalization * refactor: reuse string normalization in plugin helpers * refactor: reuse string normalization in extension helpers * refactor: reuse string normalization in channel parsers * refactor: reuse string normalization in memory search * refactor: reuse string normalization in provider parsers * refactor: reuse string normalization in qa helpers * refactor: reuse string normalization in infra parsers * refactor: reuse string normalization in messaging parsers * refactor: reuse string normalization in core parsers * refactor: reuse string normalization in extension parsers * refactor: reuse string normalization in remaining parsers * refactor: reuse string normalization in final parser spots * refactor: reuse string normalization in qa media helpers * refactor: reuse normalization in provider and media lists * refactor: reuse normalization for remaining set filters * refactor: reuse normalization in policy allowlists * refactor: reuse normalization in session and owner lists * refactor: centralize primitive string lists * refactor: reuse lowercase entry helpers * refactor: reuse sorted string helpers * refactor: reuse unique trimmed helpers * refactor: reuse string normalization helpers * refactor: reuse catalog string helpers * refactor: reuse remaining string helpers * refactor: simplify remaining list normalization * refactor: reuse codex auth order normalization * chore: refresh plugin sdk api baseline * fix: make shared string sorting deterministic * chore: refresh plugin sdk api baseline * fix: align host env security ordering
110 lines
2.9 KiB
TypeScript
110 lines
2.9 KiB
TypeScript
import {
|
|
type DeviceAuthEntry,
|
|
type DeviceAuthStore,
|
|
normalizeDeviceAuthRole,
|
|
normalizeDeviceAuthScopes,
|
|
} from "./device-auth.js";
|
|
import { isRecord } from "./record-coerce.js";
|
|
export type { DeviceAuthEntry, DeviceAuthStore } from "./device-auth.js";
|
|
|
|
export type DeviceAuthStoreAdapter = {
|
|
readStore: () => DeviceAuthStore | null;
|
|
writeStore: (store: DeviceAuthStore) => void;
|
|
};
|
|
|
|
function coerceDeviceAuthEntry(role: string, value: unknown): DeviceAuthEntry | null {
|
|
if (!isRecord(value) || typeof value.token !== "string") {
|
|
return null;
|
|
}
|
|
const updatedAtMs =
|
|
typeof value.updatedAtMs === "number" && Number.isFinite(value.updatedAtMs)
|
|
? value.updatedAtMs
|
|
: 0;
|
|
return {
|
|
token: value.token,
|
|
role,
|
|
scopes: normalizeDeviceAuthScopes(Array.isArray(value.scopes) ? value.scopes : undefined),
|
|
updatedAtMs,
|
|
};
|
|
}
|
|
|
|
function copyCanonicalDeviceAuthTokens(
|
|
tokens: Record<string, unknown>,
|
|
): Record<string, DeviceAuthEntry> {
|
|
const out: Record<string, DeviceAuthEntry> = {};
|
|
for (const [rawRole, value] of Object.entries(tokens)) {
|
|
const role = normalizeDeviceAuthRole(rawRole);
|
|
if (!role) {
|
|
continue;
|
|
}
|
|
const entry = coerceDeviceAuthEntry(role, value);
|
|
if (entry) {
|
|
out[role] = entry;
|
|
}
|
|
}
|
|
return out;
|
|
}
|
|
|
|
export function loadDeviceAuthTokenFromStore(params: {
|
|
adapter: DeviceAuthStoreAdapter;
|
|
deviceId: string;
|
|
role: string;
|
|
}): DeviceAuthEntry | null {
|
|
const store = params.adapter.readStore();
|
|
if (!store || store.deviceId !== params.deviceId) {
|
|
return null;
|
|
}
|
|
const role = normalizeDeviceAuthRole(params.role);
|
|
return coerceDeviceAuthEntry(role, store.tokens[role]);
|
|
}
|
|
|
|
export function storeDeviceAuthTokenInStore(params: {
|
|
adapter: DeviceAuthStoreAdapter;
|
|
deviceId: string;
|
|
role: string;
|
|
token: string;
|
|
scopes?: string[];
|
|
}): DeviceAuthEntry {
|
|
const role = normalizeDeviceAuthRole(params.role);
|
|
const existing = params.adapter.readStore();
|
|
const next: DeviceAuthStore = {
|
|
version: 1,
|
|
deviceId: params.deviceId,
|
|
tokens:
|
|
existing && existing.deviceId === params.deviceId && existing.tokens
|
|
? copyCanonicalDeviceAuthTokens(existing.tokens)
|
|
: {},
|
|
};
|
|
const entry: DeviceAuthEntry = {
|
|
token: params.token,
|
|
role,
|
|
scopes: normalizeDeviceAuthScopes(params.scopes),
|
|
updatedAtMs: Date.now(),
|
|
};
|
|
next.tokens[role] = entry;
|
|
params.adapter.writeStore(next);
|
|
return entry;
|
|
}
|
|
|
|
export function clearDeviceAuthTokenFromStore(params: {
|
|
adapter: DeviceAuthStoreAdapter;
|
|
deviceId: string;
|
|
role: string;
|
|
}): void {
|
|
const store = params.adapter.readStore();
|
|
if (!store || store.deviceId !== params.deviceId) {
|
|
return;
|
|
}
|
|
const role = normalizeDeviceAuthRole(params.role);
|
|
if (!store.tokens[role]) {
|
|
return;
|
|
}
|
|
const next: DeviceAuthStore = {
|
|
version: 1,
|
|
deviceId: store.deviceId,
|
|
tokens: copyCanonicalDeviceAuthTokens(store.tokens),
|
|
};
|
|
delete next.tokens[role];
|
|
params.adapter.writeStore(next);
|
|
}
|