mirror of https://github.com/openclaw/openclaw.git
365 lines
11 KiB
TypeScript
365 lines
11 KiB
TypeScript
import type { ReplyPayload } from "../auto-reply/types.js";
|
|
import type { InteractiveReply, InteractiveReplyButton } from "../interactive/payload.js";
|
|
import {
|
|
resolveExecApprovalAllowedDecisions,
|
|
type ExecApprovalDecision,
|
|
type ExecHost,
|
|
} from "./exec-approvals.js";
|
|
|
|
export type ExecApprovalReplyDecision = ExecApprovalDecision;
|
|
export type ExecApprovalUnavailableReason =
|
|
| "initiating-platform-disabled"
|
|
| "initiating-platform-unsupported"
|
|
| "no-approval-route";
|
|
|
|
export type ExecApprovalReplyMetadata = {
|
|
approvalId: string;
|
|
approvalSlug: string;
|
|
approvalKind: "exec" | "plugin";
|
|
agentId?: string;
|
|
allowedDecisions?: readonly ExecApprovalReplyDecision[];
|
|
sessionKey?: string;
|
|
};
|
|
|
|
export type ExecApprovalActionDescriptor = {
|
|
decision: ExecApprovalReplyDecision;
|
|
label: string;
|
|
style: NonNullable<InteractiveReplyButton["style"]>;
|
|
command: string;
|
|
};
|
|
|
|
export type ExecApprovalPendingReplyParams = {
|
|
warningText?: string;
|
|
approvalId: string;
|
|
approvalSlug: string;
|
|
approvalCommandId?: string;
|
|
ask?: string | null;
|
|
agentId?: string | null;
|
|
allowedDecisions?: readonly ExecApprovalReplyDecision[];
|
|
command: string;
|
|
cwd?: string;
|
|
host: ExecHost;
|
|
nodeId?: string;
|
|
sessionKey?: string | null;
|
|
expiresAtMs?: number;
|
|
nowMs?: number;
|
|
};
|
|
|
|
export type ExecApprovalUnavailableReplyParams = {
|
|
warningText?: string;
|
|
channelLabel?: string;
|
|
reason: ExecApprovalUnavailableReason;
|
|
sentApproverDms?: boolean;
|
|
};
|
|
|
|
function resolveAllowedDecisions(params: {
|
|
ask?: string | null;
|
|
allowedDecisions?: readonly ExecApprovalReplyDecision[];
|
|
}): readonly ExecApprovalReplyDecision[] {
|
|
return params.allowedDecisions ?? resolveExecApprovalAllowedDecisions({ ask: params.ask });
|
|
}
|
|
|
|
function buildApprovalCommandFence(
|
|
descriptors: readonly ExecApprovalActionDescriptor[],
|
|
): string | null {
|
|
if (descriptors.length === 0) {
|
|
return null;
|
|
}
|
|
return buildFence(descriptors.map((descriptor) => descriptor.command).join("\n"), "txt");
|
|
}
|
|
|
|
export function buildExecApprovalCommandText(params: {
|
|
approvalCommandId: string;
|
|
decision: ExecApprovalReplyDecision;
|
|
}): string {
|
|
return `/approve ${params.approvalCommandId} ${params.decision}`;
|
|
}
|
|
|
|
export function buildExecApprovalActionDescriptors(params: {
|
|
approvalCommandId: string;
|
|
ask?: string | null;
|
|
allowedDecisions?: readonly ExecApprovalReplyDecision[];
|
|
}): ExecApprovalActionDescriptor[] {
|
|
const approvalCommandId = params.approvalCommandId.trim();
|
|
if (!approvalCommandId) {
|
|
return [];
|
|
}
|
|
const allowedDecisions = resolveAllowedDecisions(params);
|
|
const descriptors: ExecApprovalActionDescriptor[] = [];
|
|
if (allowedDecisions.includes("allow-once")) {
|
|
descriptors.push({
|
|
decision: "allow-once",
|
|
label: "Allow Once",
|
|
style: "success",
|
|
command: buildExecApprovalCommandText({
|
|
approvalCommandId,
|
|
decision: "allow-once",
|
|
}),
|
|
});
|
|
}
|
|
if (allowedDecisions.includes("allow-always")) {
|
|
descriptors.push({
|
|
decision: "allow-always",
|
|
label: "Allow Always",
|
|
style: "primary",
|
|
command: buildExecApprovalCommandText({
|
|
approvalCommandId,
|
|
decision: "allow-always",
|
|
}),
|
|
});
|
|
}
|
|
if (allowedDecisions.includes("deny")) {
|
|
descriptors.push({
|
|
decision: "deny",
|
|
label: "Deny",
|
|
style: "danger",
|
|
command: buildExecApprovalCommandText({
|
|
approvalCommandId,
|
|
decision: "deny",
|
|
}),
|
|
});
|
|
}
|
|
return descriptors;
|
|
}
|
|
|
|
function buildApprovalInteractiveButtons(
|
|
allowedDecisions: readonly ExecApprovalReplyDecision[],
|
|
approvalId: string,
|
|
): InteractiveReplyButton[] {
|
|
return buildExecApprovalActionDescriptors({
|
|
approvalCommandId: approvalId,
|
|
allowedDecisions,
|
|
}).map((descriptor) => ({
|
|
label: descriptor.label,
|
|
value: descriptor.command,
|
|
style: descriptor.style,
|
|
}));
|
|
}
|
|
|
|
export function buildApprovalInteractiveReply(params: {
|
|
approvalId: string;
|
|
ask?: string | null;
|
|
allowedDecisions?: readonly ExecApprovalReplyDecision[];
|
|
}): InteractiveReply | undefined {
|
|
const buttons = buildApprovalInteractiveButtons(
|
|
resolveAllowedDecisions(params),
|
|
params.approvalId,
|
|
);
|
|
return buttons.length > 0 ? { blocks: [{ type: "buttons", buttons }] } : undefined;
|
|
}
|
|
|
|
export function buildExecApprovalInteractiveReply(params: {
|
|
approvalCommandId: string;
|
|
ask?: string | null;
|
|
allowedDecisions?: readonly ExecApprovalReplyDecision[];
|
|
}): InteractiveReply | undefined {
|
|
return buildApprovalInteractiveReply({
|
|
approvalId: params.approvalCommandId,
|
|
ask: params.ask,
|
|
allowedDecisions: params.allowedDecisions,
|
|
});
|
|
}
|
|
|
|
export function getExecApprovalApproverDmNoticeText(): string {
|
|
return "Approval required. I sent approval DMs to the approvers for this account.";
|
|
}
|
|
|
|
export function parseExecApprovalCommandText(
|
|
raw: string,
|
|
): { approvalId: string; decision: ExecApprovalReplyDecision } | null {
|
|
const trimmed = raw.trim();
|
|
const match = trimmed.match(
|
|
/^\/?approve(?:@[^\s]+)?\s+([A-Za-z0-9][A-Za-z0-9._:-]*)\s+(allow-once|allow-always|always|deny)\b/i,
|
|
);
|
|
if (!match) {
|
|
return null;
|
|
}
|
|
const rawDecision = match[2].toLowerCase();
|
|
return {
|
|
approvalId: match[1],
|
|
decision:
|
|
rawDecision === "always" ? "allow-always" : (rawDecision as ExecApprovalReplyDecision),
|
|
};
|
|
}
|
|
|
|
export function formatExecApprovalExpiresIn(expiresAtMs: number, nowMs: number): string {
|
|
const totalSeconds = Math.max(0, Math.round((expiresAtMs - nowMs) / 1000));
|
|
if (totalSeconds < 60) {
|
|
return `${totalSeconds}s`;
|
|
}
|
|
|
|
const hours = Math.floor(totalSeconds / 3600);
|
|
const minutes = Math.floor((totalSeconds % 3600) / 60);
|
|
const seconds = totalSeconds % 60;
|
|
const parts: string[] = [];
|
|
if (hours > 0) {
|
|
parts.push(`${hours}h`);
|
|
}
|
|
if (minutes > 0) {
|
|
parts.push(`${minutes}m`);
|
|
}
|
|
if (hours === 0 && minutes < 5 && seconds > 0) {
|
|
parts.push(`${seconds}s`);
|
|
}
|
|
return parts.join(" ");
|
|
}
|
|
|
|
function buildFence(text: string, language?: string): string {
|
|
let fence = "```";
|
|
while (text.includes(fence)) {
|
|
fence += "`";
|
|
}
|
|
const languagePrefix = language ? language : "";
|
|
return `${fence}${languagePrefix}\n${text}\n${fence}`;
|
|
}
|
|
|
|
export function getExecApprovalReplyMetadata(
|
|
payload: ReplyPayload,
|
|
): ExecApprovalReplyMetadata | null {
|
|
const channelData = payload.channelData;
|
|
if (!channelData || typeof channelData !== "object" || Array.isArray(channelData)) {
|
|
return null;
|
|
}
|
|
const execApproval = channelData.execApproval;
|
|
if (!execApproval || typeof execApproval !== "object" || Array.isArray(execApproval)) {
|
|
return null;
|
|
}
|
|
const record = execApproval as Record<string, unknown>;
|
|
const approvalId = typeof record.approvalId === "string" ? record.approvalId.trim() : "";
|
|
const approvalSlug = typeof record.approvalSlug === "string" ? record.approvalSlug.trim() : "";
|
|
if (!approvalId || !approvalSlug) {
|
|
return null;
|
|
}
|
|
const approvalKind = record.approvalKind === "plugin" ? "plugin" : "exec";
|
|
const allowedDecisions = Array.isArray(record.allowedDecisions)
|
|
? record.allowedDecisions.filter(
|
|
(value): value is ExecApprovalReplyDecision =>
|
|
value === "allow-once" || value === "allow-always" || value === "deny",
|
|
)
|
|
: undefined;
|
|
const agentId =
|
|
typeof record.agentId === "string" ? record.agentId.trim() || undefined : undefined;
|
|
const sessionKey =
|
|
typeof record.sessionKey === "string" ? record.sessionKey.trim() || undefined : undefined;
|
|
return {
|
|
approvalId,
|
|
approvalSlug,
|
|
approvalKind,
|
|
agentId,
|
|
allowedDecisions,
|
|
sessionKey,
|
|
};
|
|
}
|
|
|
|
export function buildExecApprovalPendingReplyPayload(
|
|
params: ExecApprovalPendingReplyParams,
|
|
): ReplyPayload {
|
|
const approvalCommandId = params.approvalCommandId?.trim() || params.approvalSlug;
|
|
const allowedDecisions = resolveAllowedDecisions(params);
|
|
const descriptors = buildExecApprovalActionDescriptors({
|
|
approvalCommandId,
|
|
allowedDecisions,
|
|
});
|
|
const primaryAction = descriptors[0] ?? null;
|
|
const secondaryActions = descriptors.slice(1);
|
|
const lines: string[] = [];
|
|
const warningText = params.warningText?.trim();
|
|
if (warningText) {
|
|
lines.push(warningText);
|
|
}
|
|
lines.push("Approval required.");
|
|
if (primaryAction) {
|
|
lines.push("Run:");
|
|
lines.push(buildFence(primaryAction.command, "txt"));
|
|
}
|
|
lines.push("Pending command:");
|
|
lines.push(buildFence(params.command, "sh"));
|
|
const secondaryFence = buildApprovalCommandFence(secondaryActions);
|
|
if (secondaryFence) {
|
|
lines.push("Other options:");
|
|
lines.push(secondaryFence);
|
|
}
|
|
if (!allowedDecisions.includes("allow-always")) {
|
|
lines.push(
|
|
"The effective approval policy requires approval every time, so Allow Always is unavailable.",
|
|
);
|
|
}
|
|
const info: string[] = [];
|
|
info.push(`Host: ${params.host}`);
|
|
if (params.nodeId) {
|
|
info.push(`Node: ${params.nodeId}`);
|
|
}
|
|
if (params.cwd) {
|
|
info.push(`CWD: ${params.cwd}`);
|
|
}
|
|
if (typeof params.expiresAtMs === "number" && Number.isFinite(params.expiresAtMs)) {
|
|
info.push(
|
|
`Expires in: ${formatExecApprovalExpiresIn(params.expiresAtMs, params.nowMs ?? Date.now())}`,
|
|
);
|
|
}
|
|
info.push(`Full id: \`${params.approvalId}\``);
|
|
lines.push(info.join("\n"));
|
|
|
|
return {
|
|
text: lines.join("\n\n"),
|
|
interactive: buildApprovalInteractiveReply({
|
|
approvalId: params.approvalId,
|
|
allowedDecisions,
|
|
}),
|
|
channelData: {
|
|
execApproval: {
|
|
approvalId: params.approvalId,
|
|
approvalSlug: params.approvalSlug,
|
|
approvalKind: "exec",
|
|
agentId: params.agentId?.trim() || undefined,
|
|
allowedDecisions,
|
|
sessionKey: params.sessionKey?.trim() || undefined,
|
|
},
|
|
},
|
|
};
|
|
}
|
|
|
|
export function buildExecApprovalUnavailableReplyPayload(
|
|
params: ExecApprovalUnavailableReplyParams,
|
|
): ReplyPayload {
|
|
const lines: string[] = [];
|
|
const warningText = params.warningText?.trim();
|
|
if (warningText) {
|
|
lines.push(warningText);
|
|
}
|
|
|
|
if (params.sentApproverDms) {
|
|
lines.push(getExecApprovalApproverDmNoticeText());
|
|
return {
|
|
text: lines.join("\n\n"),
|
|
};
|
|
}
|
|
|
|
if (params.reason === "initiating-platform-disabled") {
|
|
lines.push(
|
|
`Exec approval is required, but chat exec approvals are not enabled on ${params.channelLabel ?? "this platform"}.`,
|
|
);
|
|
lines.push(
|
|
"Approve it from the Web UI or terminal UI, or enable a native chat approval client such as Discord, Slack, or Telegram. If those accounts already know your owner ID via allowFrom or owner config, OpenClaw can often infer approvers automatically.",
|
|
);
|
|
} else if (params.reason === "initiating-platform-unsupported") {
|
|
lines.push(
|
|
`Exec approval is required, but ${params.channelLabel ?? "this platform"} does not support chat exec approvals.`,
|
|
);
|
|
lines.push(
|
|
"Approve it from the Web UI or terminal UI, or enable a native chat approval client such as Discord, Slack, or Telegram. If those accounts already know your owner ID via allowFrom or owner config, OpenClaw can often infer approvers automatically.",
|
|
);
|
|
} else {
|
|
lines.push(
|
|
"Exec approval is required, but no interactive approval client is currently available.",
|
|
);
|
|
lines.push(
|
|
"Open the Web UI or terminal UI, or enable a native chat approval client such as Discord, Slack, or Telegram, then retry the command. If those accounts already know your owner ID via allowFrom or owner config, you can usually leave execApprovals.approvers unset.",
|
|
);
|
|
}
|
|
|
|
return {
|
|
text: lines.join("\n\n"),
|
|
};
|
|
}
|