vultr/openclaw
1
0
Fork 0
mirror of https://github.com/openclaw/openclaw.git synced 2026-04-04 05:42:02 +00:00
Code Issues Packages Projects Releases Wiki Activity
Files
2dbfd4ebe2fac4885433eb5a38396aed33509a5a
openclaw/src/plugin-sdk/approval-auth-helpers.ts
Peter Steinberger c2cbdea28c refactor: add approval auth capabilities to more channels
2026-03-30 09:04:08 +09:00

45 lines
1.4 KiB
TypeScript
Raw Blame History

import type { OpenClawConfig } from "./config-runtime.js";
type ApprovalKind = "exec" | "plugin";
function defaultNormalizeSenderId(value: string): string | undefined {
const trimmed = value.trim();
return trimmed || undefined;
}
export function createResolvedApproverActionAuthAdapter(params: {
channelLabel: string;
resolveApprovers: (params: { cfg: OpenClawConfig; accountId?: string | null }) => string[];
normalizeSenderId?: (value: string) => string | undefined;
}) {
const normalizeSenderId = params.normalizeSenderId ?? defaultNormalizeSenderId;
return {
authorizeActorAction({
cfg,
accountId,
senderId,
approvalKind,
}: {
cfg: OpenClawConfig;
accountId?: string | null;
senderId?: string | null;
action: "approve";
approvalKind: ApprovalKind;
}) {
const approvers = params.resolveApprovers({ cfg, accountId });
if (approvers.length === 0) {
return { authorized: true } as const;
}
const normalizedSenderId = senderId ? normalizeSenderId(senderId) : undefined;
if (normalizedSenderId && approvers.includes(normalizedSenderId)) {
return { authorized: true } as const;
}
return {
authorized: false,
reason: `❌ You are not authorized to approve ${approvalKind} requests on ${params.channelLabel}.`,
} as const;
},
};
}
Reference in New Issue View Git Blame Copy Permalink