liuyu/openclaw
1
0
Fork 0
mirror of https://github.com/openclaw/openclaw.git synced 2026-06-06 05:51:15 +08:00
Code Issues Packages Projects Releases Wiki Activity
Files
8f85f949465acbb73c7f64a3d79c2ab0d12594cb
openclaw/src/agents/bash-tools.exec-gateway-approval.e2e.test.ts
Patrick Erichsen 8f85f94946 feat: install GitHub-backed ClawHub skills (#90478) 
* feat: install GitHub-backed ClawHub skills

* fix: satisfy ClawHub install type checks

* fix: harden github-backed skill installs

* fix: keep heartbeat template non-actionable

* feat: support forcing pending ClawHub installs
2026-06-04 19:10:02 -07:00

188 lines
6.1 KiB
TypeScript
Raw Blame History

/**
* Gateway exec approval E2E tests.
* Exercises a real gateway server approval flow, approval follow-up text, and
* approval timeout behavior in an isolated temp config.
*/
import fs from "node:fs/promises";
import os from "node:os";
import path from "node:path";
import { afterEach, describe, expect, it } from "vitest";
import { clearConfigCache, clearRuntimeConfigSnapshot } from "../config/config.js";
import { clearSessionStoreCacheForTest } from "../config/sessions/store.js";
import { ADMIN_SCOPE } from "../gateway/method-scopes.js";
import { startGatewayServer } from "../gateway/server.js";
import {
connectGatewayClient,
disconnectGatewayClient,
getFreeGatewayPort,
} from "../gateway/test-helpers.e2e.js";
import { captureEnv } from "../test-utils/env.js";
import { GATEWAY_CLIENT_MODES, GATEWAY_CLIENT_NAMES } from "../utils/message-channel.js";
import type { ExecApprovalFollowupOutcome } from "./bash-tools.exec-types.js";
import { createExecTool } from "./bash-tools.exec.js";
const TEST_ENV_KEYS = [
"HOME",
"OPENCLAW_STATE_DIR",
"OPENCLAW_CONFIG_PATH",
"OPENCLAW_GATEWAY_TOKEN",
"OPENCLAW_GATEWAY_PORT",
"OPENCLAW_SKIP_CHANNELS",
"OPENCLAW_SKIP_GMAIL_WATCHER",
"OPENCLAW_SKIP_CRON",
"OPENCLAW_SKIP_CANVAS_HOST",
"OPENCLAW_SKIP_BROWSER_CONTROL_SERVER",
"OPENCLAW_SKIP_PROVIDERS",
"OPENCLAW_TEST_MINIMAL_GATEWAY",
];
const GATEWAY_CONNECT_TIMEOUT_MS = 120_000;
const EXEC_APPROVAL_E2E_TIMEOUT_MS = 180_000;
type Cleanup = () => Promise<void> | void;
async function withTimeout<T>(promise: Promise<T>, timeoutMs: number, label: string): Promise<T> {
let timeout: NodeJS.Timeout | undefined;
const timeoutPromise = new Promise<never>((_, reject) => {
timeout = setTimeout(() => reject(new Error(`timed out waiting for ${label}`)), timeoutMs);
timeout.unref();
});
try {
return await Promise.race([promise, timeoutPromise]);
} finally {
if (timeout) {
clearTimeout(timeout);
}
}
}
describe("gateway-hosted exec approvals", () => {
const cleanup: Cleanup[] = [];
afterEach(async () => {
for (const step of cleanup.splice(0).toReversed()) {
await step();
}
clearRuntimeConfigSnapshot();
clearConfigCache();
clearSessionStoreCacheForTest();
});
it(
"lets OpenClaw-style gateway tool calls request and wait for approval over separate connections",
async () => {
const envSnapshot = captureEnv(TEST_ENV_KEYS);
cleanup.push(() => envSnapshot.restore());
const tempHome = await fs.mkdtemp(path.join(os.tmpdir(), "openclaw-exec-approval-e2e-"));
cleanup.push(() => fs.rm(tempHome, { recursive: true, force: true, maxRetries: 5 }));
const stateDir = path.join(tempHome, ".openclaw");
const workspaceDir = path.join(tempHome, "workspace");
await fs.mkdir(workspaceDir, { recursive: true });
const port = await getFreeGatewayPort();
const token = "exec-approval-e2e-token";
const configPath = path.join(stateDir, "openclaw.json");
await fs.mkdir(stateDir, { recursive: true });
await fs.writeFile(
configPath,
`${JSON.stringify(
{
gateway: {
port,
auth: { mode: "token", token },
},
tools: {
exec: {
host: "gateway",
security: "allowlist",
ask: "always",
},
},
},
null,
2,
)}\n`,
"utf8",
);
process.env.HOME = tempHome;
process.env.OPENCLAW_STATE_DIR = stateDir;
process.env.OPENCLAW_CONFIG_PATH = configPath;
process.env.OPENCLAW_GATEWAY_TOKEN = token;
process.env.OPENCLAW_GATEWAY_PORT = String(port);
process.env.OPENCLAW_SKIP_CHANNELS = "1";
process.env.OPENCLAW_SKIP_GMAIL_WATCHER = "1";
process.env.OPENCLAW_SKIP_CRON = "1";
process.env.OPENCLAW_SKIP_CANVAS_HOST = "1";
process.env.OPENCLAW_SKIP_BROWSER_CONTROL_SERVER = "1";
process.env.OPENCLAW_SKIP_PROVIDERS = "1";
process.env.OPENCLAW_TEST_MINIMAL_GATEWAY = "1";
clearRuntimeConfigSnapshot();
clearConfigCache();
clearSessionStoreCacheForTest();
const server = await startGatewayServer(port, {
bind: "loopback",
auth: { mode: "token", token },
controlUiEnabled: false,
deferStartupSidecars: true,
});
cleanup.push(() => server.close());
const operator = await connectGatewayClient({
url: `ws://127.0.0.1:${port}`,
token,
clientName: GATEWAY_CLIENT_NAMES.TEST,
clientDisplayName: "approval operator",
mode: GATEWAY_CLIENT_MODES.TEST,
scopes: [ADMIN_SCOPE],
requestTimeoutMs: GATEWAY_CONNECT_TIMEOUT_MS,
timeoutMs: GATEWAY_CONNECT_TIMEOUT_MS,
});
cleanup.push(() => disconnectGatewayClient(operator));
let resolveOutcome: (outcome: ExecApprovalFollowupOutcome) => void = () => {};
const outcomePromise = new Promise<ExecApprovalFollowupOutcome>((resolve) => {
resolveOutcome = resolve;
});
const tool = createExecTool({
host: "gateway",
security: "allowlist",
ask: "always",
cwd: workspaceDir,
approvalRunningNoticeMs: 0,
approvalFollowupMode: "direct",
approvalFollowup: ({ outcome }) => {
resolveOutcome(outcome);
return undefined;
},
});
const pending = await tool.execute("exec-approval-e2e", {
command: "printf 'smoke\\n'",
workdir: workspaceDir,
timeout: 5,
});
expect(pending.details.status).toBe("approval-pending");
if (pending.details.status !== "approval-pending") {
throw new Error("expected approval-pending exec result");
}
await operator.request(
"exec.approval.resolve",
{ id: pending.details.approvalId, decision: "allow-once" },
{ timeoutMs: 10_000 },
);
const outcome = await withTimeout(outcomePromise, 15_000, "approved exec outcome");
expect(outcome.status).toBe("completed");
expect(outcome.exitCode).toBe(0);
expect(outcome.aggregated).toBe("smoke");
},
EXEC_APPROVAL_E2E_TIMEOUT_MS,
);
});
Reference in New Issue View Git Blame Copy Permalink