mirror of
https://github.com/openclaw/openclaw.git
synced 2026-05-10 20:20:44 +00:00
a1ac559ed7
* feat(codex): add native plugin config schema * feat(codex): add native plugin inventory activation * feat(codex): configure native plugin apps for threads * feat(codex): enforce plugin elicitation policy * feat(codex): migrate native plugins * docs(codex): document native plugin support * fix(codex): harden plugin migration refresh * fix(codex): satisfy plugin activation lint * fix: stabilize codex plugin app config * fix: address codex plugin review feedback * fix: key codex plugin app cache by websocket credentials * fix: keep codex plugin app fingerprints stable * fix: refresh codex plugin cache test fixtures * fix: refresh plugin app readiness after activation * fix: support remote codex plugin activation * fix: recover plugin app bindings after cache refresh * fix: force codex app refresh after plugin activation * fix: recover partial codex plugin app bindings * fix: sync codex plugin selection config * fix: keep codex plugin activation fail closed * fix: align codex plugin protocol types with main * fix: refresh partial codex plugin app bindings * fix: key codex app cache by env api key * fix: skip failed codex plugin migration config * test: update codex prompt snapshots * fix: fail closed on missing codex app inventory entries * fix(codex): enforce native plugin policy gates * fix(codex): normalize native plugin policy types * fix(codex): fail closed on plugin refresh errors * fix(codex): use native plugin destructive policy * fix(codex): key plugin cache by api-key profiles * fix(codex): drop unshipped plugin fingerprint compat * fix(codex): let native app policy gate plugin tools * fix(codex): allow open-world plugin app tools * fix(codex): revalidate native plugin app bindings * fix(codex): preserve plugin binding on recheck failure * docs(codex): clarify plugin harness scope * fix(codex): return activation report state exhaustively * test(codex): refresh prompt snapshots after rebase * fix(codex): match namespaced plugin ids
496 lines
16 KiB
TypeScript
496 lines
16 KiB
TypeScript
import { formatErrorMessage } from "openclaw/plugin-sdk/agent-harness-runtime";
|
|
import type {
|
|
PluginConversationBindingResolvedEvent,
|
|
PluginHookInboundClaimContext,
|
|
PluginHookInboundClaimEvent,
|
|
} from "openclaw/plugin-sdk/plugin-entry";
|
|
import type { ReplyPayload } from "openclaw/plugin-sdk/reply-payload";
|
|
import { resolveCodexAppServerAuthProfileIdForAgent } from "./app-server/auth-bridge.js";
|
|
import { CODEX_CONTROL_METHODS } from "./app-server/capabilities.js";
|
|
import {
|
|
codexSandboxPolicyForTurn,
|
|
resolveCodexAppServerRuntimeOptions,
|
|
type CodexAppServerApprovalPolicy,
|
|
type CodexAppServerSandboxMode,
|
|
} from "./app-server/config.js";
|
|
import {
|
|
type CodexServiceTier,
|
|
type CodexThreadResumeResponse,
|
|
type CodexThreadStartResponse,
|
|
type CodexTurnStartResponse,
|
|
type JsonValue,
|
|
} from "./app-server/protocol.js";
|
|
import {
|
|
clearCodexAppServerBinding,
|
|
isCodexAppServerNativeAuthProfile,
|
|
normalizeCodexAppServerBindingModelProvider,
|
|
readCodexAppServerBinding,
|
|
writeCodexAppServerBinding,
|
|
type CodexAppServerAuthProfileLookup,
|
|
} from "./app-server/session-binding.js";
|
|
import { getSharedCodexAppServerClient } from "./app-server/shared-client.js";
|
|
import { formatCodexDisplayText } from "./command-formatters.js";
|
|
import {
|
|
createCodexConversationBindingData,
|
|
readCodexConversationBindingData,
|
|
readCodexConversationBindingDataRecord,
|
|
resolveCodexDefaultWorkspaceDir,
|
|
type CodexConversationBindingData,
|
|
} from "./conversation-binding-data.js";
|
|
import { trackCodexConversationActiveTurn } from "./conversation-control.js";
|
|
import { createCodexConversationTurnCollector } from "./conversation-turn-collector.js";
|
|
import { buildCodexConversationTurnInput } from "./conversation-turn-input.js";
|
|
|
|
const DEFAULT_BOUND_TURN_TIMEOUT_MS = 20 * 60_000;
|
|
|
|
export {
|
|
readCodexConversationBindingData,
|
|
resolveCodexDefaultWorkspaceDir,
|
|
} from "./conversation-binding-data.js";
|
|
|
|
type CodexConversationRunOptions = {
|
|
pluginConfig?: unknown;
|
|
timeoutMs?: number;
|
|
};
|
|
|
|
type CodexConversationStartParams = {
|
|
pluginConfig?: unknown;
|
|
config?: Parameters<typeof resolveCodexAppServerAuthProfileIdForAgent>[0]["config"];
|
|
sessionFile: string;
|
|
workspaceDir?: string;
|
|
threadId?: string;
|
|
model?: string;
|
|
modelProvider?: string;
|
|
authProfileId?: string;
|
|
approvalPolicy?: CodexAppServerApprovalPolicy;
|
|
sandbox?: CodexAppServerSandboxMode;
|
|
serviceTier?: CodexServiceTier;
|
|
};
|
|
|
|
type BoundTurnResult = {
|
|
reply: ReplyPayload;
|
|
};
|
|
|
|
type CodexConversationGlobalState = {
|
|
queues: Map<string, Promise<void>>;
|
|
};
|
|
|
|
const CODEX_CONVERSATION_GLOBAL_STATE = Symbol.for("openclaw.codex.conversationBinding");
|
|
|
|
function getGlobalState(): CodexConversationGlobalState {
|
|
const globalState = globalThis as typeof globalThis & {
|
|
[CODEX_CONVERSATION_GLOBAL_STATE]?: CodexConversationGlobalState;
|
|
};
|
|
globalState[CODEX_CONVERSATION_GLOBAL_STATE] ??= { queues: new Map() };
|
|
return globalState[CODEX_CONVERSATION_GLOBAL_STATE];
|
|
}
|
|
|
|
export async function startCodexConversationThread(
|
|
params: CodexConversationStartParams,
|
|
): Promise<CodexConversationBindingData> {
|
|
const workspaceDir =
|
|
params.workspaceDir?.trim() || resolveCodexDefaultWorkspaceDir(params.pluginConfig);
|
|
const existingBinding = await readCodexAppServerBinding(params.sessionFile, {
|
|
config: params.config,
|
|
});
|
|
const authProfileId = resolveCodexAppServerAuthProfileIdForAgent({
|
|
authProfileId: params.authProfileId ?? existingBinding?.authProfileId,
|
|
config: params.config,
|
|
});
|
|
if (params.threadId?.trim()) {
|
|
await attachExistingThread({
|
|
pluginConfig: params.pluginConfig,
|
|
sessionFile: params.sessionFile,
|
|
threadId: params.threadId.trim(),
|
|
workspaceDir,
|
|
model: params.model,
|
|
modelProvider: params.modelProvider,
|
|
authProfileId,
|
|
approvalPolicy: params.approvalPolicy,
|
|
sandbox: params.sandbox,
|
|
serviceTier: params.serviceTier,
|
|
config: params.config,
|
|
});
|
|
} else {
|
|
await createThread({
|
|
pluginConfig: params.pluginConfig,
|
|
sessionFile: params.sessionFile,
|
|
workspaceDir,
|
|
model: params.model,
|
|
modelProvider: params.modelProvider,
|
|
authProfileId,
|
|
approvalPolicy: params.approvalPolicy,
|
|
sandbox: params.sandbox,
|
|
serviceTier: params.serviceTier,
|
|
config: params.config,
|
|
});
|
|
}
|
|
return createCodexConversationBindingData({
|
|
sessionFile: params.sessionFile,
|
|
workspaceDir,
|
|
});
|
|
}
|
|
|
|
export async function handleCodexConversationInboundClaim(
|
|
event: PluginHookInboundClaimEvent,
|
|
ctx: PluginHookInboundClaimContext,
|
|
options: CodexConversationRunOptions = {},
|
|
): Promise<{ handled: boolean; reply?: ReplyPayload } | undefined> {
|
|
const data = readCodexConversationBindingData(ctx.pluginBinding);
|
|
if (!data) {
|
|
return undefined;
|
|
}
|
|
if (event.commandAuthorized !== true) {
|
|
return { handled: true };
|
|
}
|
|
const prompt = event.bodyForAgent?.trim() || event.content?.trim() || "";
|
|
if (!prompt) {
|
|
return { handled: true };
|
|
}
|
|
try {
|
|
const result = await enqueueBoundTurn(data.sessionFile, () =>
|
|
runBoundTurnWithMissingThreadRecovery({
|
|
data,
|
|
prompt,
|
|
event,
|
|
pluginConfig: options.pluginConfig,
|
|
timeoutMs: options.timeoutMs,
|
|
}),
|
|
);
|
|
return { handled: true, reply: result.reply };
|
|
} catch (error) {
|
|
return {
|
|
handled: true,
|
|
reply: {
|
|
text: `Codex app-server turn failed: ${formatCodexDisplayText(formatErrorMessage(error))}`,
|
|
},
|
|
};
|
|
}
|
|
}
|
|
|
|
export async function handleCodexConversationBindingResolved(
|
|
event: PluginConversationBindingResolvedEvent,
|
|
): Promise<void> {
|
|
if (event.status !== "denied") {
|
|
return;
|
|
}
|
|
const data = readCodexConversationBindingDataRecord(event.request.data ?? {});
|
|
if (!data) {
|
|
return;
|
|
}
|
|
await clearCodexAppServerBinding(data.sessionFile);
|
|
}
|
|
|
|
async function attachExistingThread(params: {
|
|
pluginConfig?: unknown;
|
|
sessionFile: string;
|
|
threadId: string;
|
|
workspaceDir: string;
|
|
model?: string;
|
|
modelProvider?: string;
|
|
authProfileId?: string;
|
|
approvalPolicy?: CodexAppServerApprovalPolicy;
|
|
sandbox?: CodexAppServerSandboxMode;
|
|
serviceTier?: CodexServiceTier;
|
|
config?: CodexAppServerAuthProfileLookup["config"];
|
|
}): Promise<void> {
|
|
const runtime = resolveCodexAppServerRuntimeOptions({
|
|
pluginConfig: params.pluginConfig,
|
|
});
|
|
const modelProvider = resolveThreadRequestModelProvider({
|
|
authProfileId: params.authProfileId,
|
|
modelProvider: params.modelProvider,
|
|
config: params.config,
|
|
});
|
|
const client = await getSharedCodexAppServerClient({
|
|
startOptions: runtime.start,
|
|
timeoutMs: runtime.requestTimeoutMs,
|
|
authProfileId: params.authProfileId,
|
|
});
|
|
const response: CodexThreadResumeResponse = await client.request(
|
|
CODEX_CONTROL_METHODS.resumeThread,
|
|
{
|
|
threadId: params.threadId,
|
|
...(params.model ? { model: params.model } : {}),
|
|
...(modelProvider ? { modelProvider } : {}),
|
|
approvalPolicy: params.approvalPolicy ?? runtime.approvalPolicy,
|
|
approvalsReviewer: runtime.approvalsReviewer,
|
|
sandbox: params.sandbox ?? runtime.sandbox,
|
|
...((params.serviceTier ?? runtime.serviceTier)
|
|
? { serviceTier: params.serviceTier ?? runtime.serviceTier }
|
|
: {}),
|
|
persistExtendedHistory: true,
|
|
},
|
|
{ timeoutMs: runtime.requestTimeoutMs },
|
|
);
|
|
const thread = response.thread;
|
|
const runtimeApprovalPolicy =
|
|
typeof runtime.approvalPolicy === "string" ? runtime.approvalPolicy : undefined;
|
|
await writeCodexAppServerBinding(
|
|
params.sessionFile,
|
|
{
|
|
threadId: thread.id,
|
|
cwd: thread.cwd ?? params.workspaceDir,
|
|
authProfileId: params.authProfileId,
|
|
model: response.model ?? params.model,
|
|
modelProvider: normalizeCodexAppServerBindingModelProvider({
|
|
config: params.config,
|
|
authProfileId: params.authProfileId,
|
|
modelProvider: response.modelProvider ?? params.modelProvider,
|
|
}),
|
|
approvalPolicy: params.approvalPolicy ?? runtimeApprovalPolicy,
|
|
sandbox: params.sandbox ?? runtime.sandbox,
|
|
serviceTier: params.serviceTier ?? runtime.serviceTier,
|
|
},
|
|
{
|
|
config: params.config,
|
|
},
|
|
);
|
|
}
|
|
|
|
async function createThread(params: {
|
|
pluginConfig?: unknown;
|
|
sessionFile: string;
|
|
workspaceDir: string;
|
|
model?: string;
|
|
modelProvider?: string;
|
|
authProfileId?: string;
|
|
approvalPolicy?: CodexAppServerApprovalPolicy;
|
|
sandbox?: CodexAppServerSandboxMode;
|
|
serviceTier?: CodexServiceTier;
|
|
config?: CodexAppServerAuthProfileLookup["config"];
|
|
}): Promise<void> {
|
|
const runtime = resolveCodexAppServerRuntimeOptions({
|
|
pluginConfig: params.pluginConfig,
|
|
});
|
|
const modelProvider = resolveThreadRequestModelProvider({
|
|
authProfileId: params.authProfileId,
|
|
modelProvider: params.modelProvider,
|
|
config: params.config,
|
|
});
|
|
const client = await getSharedCodexAppServerClient({
|
|
startOptions: runtime.start,
|
|
timeoutMs: runtime.requestTimeoutMs,
|
|
authProfileId: params.authProfileId,
|
|
});
|
|
const response: CodexThreadStartResponse = await client.request(
|
|
"thread/start",
|
|
{
|
|
cwd: params.workspaceDir,
|
|
...(params.model ? { model: params.model } : {}),
|
|
...(modelProvider ? { modelProvider } : {}),
|
|
approvalPolicy: params.approvalPolicy ?? runtime.approvalPolicy,
|
|
approvalsReviewer: runtime.approvalsReviewer,
|
|
sandbox: params.sandbox ?? runtime.sandbox,
|
|
...((params.serviceTier ?? runtime.serviceTier)
|
|
? { serviceTier: params.serviceTier ?? runtime.serviceTier }
|
|
: {}),
|
|
developerInstructions:
|
|
"This Codex thread is bound to an OpenClaw conversation. Answer normally; OpenClaw will deliver your final response back to the conversation.",
|
|
experimentalRawEvents: true,
|
|
persistExtendedHistory: true,
|
|
},
|
|
{ timeoutMs: runtime.requestTimeoutMs },
|
|
);
|
|
const runtimeApprovalPolicy =
|
|
typeof runtime.approvalPolicy === "string" ? runtime.approvalPolicy : undefined;
|
|
await writeCodexAppServerBinding(
|
|
params.sessionFile,
|
|
{
|
|
threadId: response.thread.id,
|
|
cwd: response.thread.cwd ?? params.workspaceDir,
|
|
authProfileId: params.authProfileId,
|
|
model: response.model ?? params.model,
|
|
modelProvider: normalizeCodexAppServerBindingModelProvider({
|
|
config: params.config,
|
|
authProfileId: params.authProfileId,
|
|
modelProvider: response.modelProvider ?? params.modelProvider,
|
|
}),
|
|
approvalPolicy: params.approvalPolicy ?? runtimeApprovalPolicy,
|
|
sandbox: params.sandbox ?? runtime.sandbox,
|
|
serviceTier: params.serviceTier ?? runtime.serviceTier,
|
|
},
|
|
{
|
|
config: params.config,
|
|
},
|
|
);
|
|
}
|
|
|
|
async function runBoundTurn(params: {
|
|
data: CodexConversationBindingData;
|
|
prompt: string;
|
|
event: PluginHookInboundClaimEvent;
|
|
pluginConfig?: unknown;
|
|
timeoutMs?: number;
|
|
}): Promise<BoundTurnResult> {
|
|
const runtime = resolveCodexAppServerRuntimeOptions({
|
|
pluginConfig: params.pluginConfig,
|
|
});
|
|
const binding = await readCodexAppServerBinding(params.data.sessionFile);
|
|
const threadId = binding?.threadId;
|
|
if (!threadId) {
|
|
throw new Error("bound Codex conversation has no thread binding");
|
|
}
|
|
|
|
const client = await getSharedCodexAppServerClient({
|
|
startOptions: runtime.start,
|
|
timeoutMs: runtime.requestTimeoutMs,
|
|
authProfileId: binding.authProfileId,
|
|
});
|
|
const collector = createCodexConversationTurnCollector(threadId);
|
|
const notificationCleanup = client.addNotificationHandler((notification) =>
|
|
collector.handleNotification(notification),
|
|
);
|
|
const requestCleanup = client.addRequestHandler(
|
|
async (request): Promise<JsonValue | undefined> => {
|
|
if (request.method === "item/tool/call") {
|
|
return {
|
|
contentItems: [
|
|
{
|
|
type: "inputText",
|
|
text: "OpenClaw native Codex conversation binding does not expose dynamic OpenClaw tools yet.",
|
|
},
|
|
],
|
|
success: false,
|
|
};
|
|
}
|
|
if (
|
|
request.method === "item/commandExecution/requestApproval" ||
|
|
request.method === "item/fileChange/requestApproval"
|
|
) {
|
|
return {
|
|
decision: "decline",
|
|
reason:
|
|
"OpenClaw native Codex conversation binding cannot route interactive approvals yet; use the Codex harness or explicit /acp spawn codex for that workflow.",
|
|
};
|
|
}
|
|
if (request.method === "item/permissions/requestApproval") {
|
|
return { permissions: {}, scope: "turn" };
|
|
}
|
|
if (request.method.includes("requestApproval")) {
|
|
return {
|
|
decision: "decline",
|
|
reason:
|
|
"OpenClaw native Codex conversation binding cannot route interactive approvals yet; use the Codex harness or explicit /acp spawn codex for that workflow.",
|
|
};
|
|
}
|
|
return undefined;
|
|
},
|
|
);
|
|
try {
|
|
const response: CodexTurnStartResponse = await client.request(
|
|
"turn/start",
|
|
{
|
|
threadId,
|
|
input: buildCodexConversationTurnInput({
|
|
prompt: params.prompt,
|
|
event: params.event,
|
|
}),
|
|
cwd: binding.cwd || params.data.workspaceDir,
|
|
approvalPolicy: binding.approvalPolicy ?? runtime.approvalPolicy,
|
|
approvalsReviewer: runtime.approvalsReviewer,
|
|
sandboxPolicy: codexSandboxPolicyForTurn(
|
|
binding.sandbox ?? runtime.sandbox,
|
|
binding.cwd || params.data.workspaceDir,
|
|
),
|
|
...(binding.model ? { model: binding.model } : {}),
|
|
...((binding.serviceTier ?? runtime.serviceTier)
|
|
? { serviceTier: binding.serviceTier ?? runtime.serviceTier }
|
|
: {}),
|
|
},
|
|
{ timeoutMs: runtime.requestTimeoutMs },
|
|
);
|
|
const turnId = response.turn.id;
|
|
const activeCleanup = trackCodexConversationActiveTurn({
|
|
sessionFile: params.data.sessionFile,
|
|
threadId,
|
|
turnId,
|
|
});
|
|
collector.setTurnId(turnId);
|
|
const completion = await collector
|
|
.wait({
|
|
timeoutMs: params.timeoutMs ?? DEFAULT_BOUND_TURN_TIMEOUT_MS,
|
|
})
|
|
.finally(activeCleanup);
|
|
const replyText = completion.replyText.trim();
|
|
return {
|
|
reply: {
|
|
text: replyText || "Codex completed without a text reply.",
|
|
},
|
|
};
|
|
} finally {
|
|
notificationCleanup();
|
|
requestCleanup();
|
|
}
|
|
}
|
|
|
|
async function runBoundTurnWithMissingThreadRecovery(params: {
|
|
data: CodexConversationBindingData;
|
|
prompt: string;
|
|
event: PluginHookInboundClaimEvent;
|
|
pluginConfig?: unknown;
|
|
timeoutMs?: number;
|
|
}): Promise<BoundTurnResult> {
|
|
try {
|
|
return await runBoundTurn(params);
|
|
} catch (error) {
|
|
if (!isCodexThreadNotFoundError(error)) {
|
|
throw error;
|
|
}
|
|
const binding = await readCodexAppServerBinding(params.data.sessionFile);
|
|
await startCodexConversationThread({
|
|
pluginConfig: params.pluginConfig,
|
|
sessionFile: params.data.sessionFile,
|
|
workspaceDir: binding?.cwd || params.data.workspaceDir,
|
|
model: binding?.model,
|
|
modelProvider: binding?.modelProvider,
|
|
authProfileId: binding?.authProfileId,
|
|
approvalPolicy: binding?.approvalPolicy,
|
|
sandbox: binding?.sandbox,
|
|
serviceTier: binding?.serviceTier,
|
|
});
|
|
return await runBoundTurn(params);
|
|
}
|
|
}
|
|
|
|
function isCodexThreadNotFoundError(error: unknown): boolean {
|
|
return /\bthread not found:/iu.test(formatErrorMessage(error));
|
|
}
|
|
|
|
function enqueueBoundTurn<T>(key: string, run: () => Promise<T>): Promise<T> {
|
|
const state = getGlobalState();
|
|
const previous = state.queues.get(key) ?? Promise.resolve();
|
|
const next = previous.then(run, run);
|
|
const queued = next.then(
|
|
() => undefined,
|
|
() => undefined,
|
|
);
|
|
state.queues.set(key, queued);
|
|
void next
|
|
.finally(() => {
|
|
if (state.queues.get(key) === queued) {
|
|
state.queues.delete(key);
|
|
}
|
|
})
|
|
.catch(() => undefined);
|
|
return next;
|
|
}
|
|
|
|
function resolveThreadRequestModelProvider(params: {
|
|
authProfileId?: string;
|
|
modelProvider?: string;
|
|
config?: CodexAppServerAuthProfileLookup["config"];
|
|
}): string | undefined {
|
|
const modelProvider = params.modelProvider?.trim();
|
|
if (!modelProvider || modelProvider.toLowerCase() === "codex") {
|
|
return undefined;
|
|
}
|
|
if (
|
|
isCodexAppServerNativeAuthProfile(params) &&
|
|
(modelProvider.toLowerCase() === "openai" || modelProvider.toLowerCase() === "openai-codex")
|
|
) {
|
|
return undefined;
|
|
}
|
|
return modelProvider.toLowerCase() === "openai-codex" ? "openai" : modelProvider;
|
|
}
|