fix(security): centralize owner-only tool gating and scope maps

2026-05-08 16:38:27 +00:00 · 2026-02-19 15:27:45 +01:00
parent 9130fd2b06
commit 3d7ad1cfca
16 changed files with 372 additions and 251 deletions
--- a/src/agents/openclaw-gateway-tool.e2e.test.ts
+++ b/src/agents/openclaw-gateway-tool.e2e.test.ts
@@ -17,23 +17,15 @@ vi.mock("./tools/gateway.js", () => ({
 }));

 describe("gateway tool", () => {
-  it("rejects non-owner callers explicitly", async () => {
-    const { callGatewayTool } = await import("./tools/gateway.js");
+  it("marks gateway as owner-only", async () => {
    const tool = createOpenClawTools({
-      senderIsOwner: false,
      config: { commands: { restart: true } },
    }).find((candidate) => candidate.name === "gateway");
    expect(tool).toBeDefined();
    if (!tool) {
      throw new Error("missing gateway tool");
    }
-
-    await expect(
-      tool.execute("call-owner-check", {
-        action: "config.get",
-      }),
-    ).rejects.toThrow("Tool restricted to owner senders.");
-    expect(callGatewayTool).not.toHaveBeenCalled();
+    expect(tool.ownerOnly).toBe(true);
  });

  it("schedules SIGUSR1 restart", async () => {