Spaces:

darkfire514
/

OpenClawBot

Paused

App Files Files Community

OpenClawBot / extensions /matrix /src /onboarding.ts

darkfire514

Upload 553 files

87fc763 verified about 1 month ago

raw

history blame contribute delete

13.5 kB

	import {
	addWildcardAllowFrom,
	formatDocsLink,
	promptChannelAccessConfig,
	type ChannelOnboardingAdapter,
	type ChannelOnboardingDmPolicy,
	type WizardPrompter,
	} from "openclaw/plugin-sdk";
	import type { CoreConfig, DmPolicy } from "./types.js";
	import { listMatrixDirectoryGroupsLive } from "./directory-live.js";
	import { listMatrixDirectoryPeersLive } from "./directory-live.js";
	import { resolveMatrixAccount } from "./matrix/accounts.js";
	import { ensureMatrixSdkInstalled, isMatrixSdkAvailable } from "./matrix/deps.js";

	const channel = "matrix" as const;

	function setMatrixDmPolicy(cfg: CoreConfig, policy: DmPolicy) {
	const allowFrom =
	policy === "open" ? addWildcardAllowFrom(cfg.channels?.matrix?.dm?.allowFrom) : undefined;
	return {
	...cfg,
	channels: {
	...cfg.channels,
	matrix: {
	...cfg.channels?.matrix,
	dm: {
	...cfg.channels?.matrix?.dm,
	policy,
	...(allowFrom ? { allowFrom } : {}),
	},
	},
	},
	};
	}

	async function noteMatrixAuthHelp(prompter: WizardPrompter): Promise<void> {
	await prompter.note(
	[
	"Matrix requires a homeserver URL.",
	"Use an access token (recommended) or a password (logs in and stores a token).",
	"With access token: user ID is fetched automatically.",
	"Env vars supported: MATRIX_HOMESERVER, MATRIX_USER_ID, MATRIX_ACCESS_TOKEN, MATRIX_PASSWORD.",
	`Docs: ${formatDocsLink("/channels/matrix", "channels/matrix")}`,
	].join("\n"),
	"Matrix setup",
	);
	}

	async function promptMatrixAllowFrom(params: {
	cfg: CoreConfig;
	prompter: WizardPrompter;
	}): Promise<CoreConfig> {
	const { cfg, prompter } = params;
	const existingAllowFrom = cfg.channels?.matrix?.dm?.allowFrom ?? [];
	const account = resolveMatrixAccount({ cfg });
	const canResolve = Boolean(account.configured);

	const parseInput = (raw: string) =>
	raw
	.split(/[\n,;]+/g)
	.map((entry) => entry.trim())
	.filter(Boolean);

	const isFullUserId = (value: string) => value.startsWith("@") && value.includes(":");

	while (true) {
	const entry = await prompter.text({
	message: "Matrix allowFrom (username or user id)",
	placeholder: "@user:server",
	initialValue: existingAllowFrom[0] ? String(existingAllowFrom[0]) : undefined,
	validate: (value) => (String(value ?? "").trim() ? undefined : "Required"),
	});
	const parts = parseInput(String(entry));
	const resolvedIds: string[] = [];
	let unresolved: string[] = [];

	for (const part of parts) {
	if (isFullUserId(part)) {
	resolvedIds.push(part);
	continue;
	}
	if (!canResolve) {
	unresolved.push(part);
	continue;
	}
	const results = await listMatrixDirectoryPeersLive({
	cfg,
	query: part,
	limit: 5,
	}).catch(() => []);
	const match = results.find((result) => result.id);
	if (match?.id) {
	resolvedIds.push(match.id);
	if (results.length > 1) {
	await prompter.note(
	`Multiple matches for "${part}", using ${match.id}.`,
	"Matrix allowlist",
	);
	}
	} else {
	unresolved.push(part);
	}
	}

	if (unresolved.length > 0) {
	await prompter.note(
	`Could not resolve: ${unresolved.join(", ")}. Use full @user:server IDs.`,
	"Matrix allowlist",
	);
	continue;
	}

	const unique = [
	...new Set([
	...existingAllowFrom.map((item) => String(item).trim()).filter(Boolean),
	...resolvedIds,
	]),
	];
	return {
	...cfg,
	channels: {
	...cfg.channels,
	matrix: {
	...cfg.channels?.matrix,
	enabled: true,
	dm: {
	...cfg.channels?.matrix?.dm,
	policy: "allowlist",
	allowFrom: unique,
	},
	},
	},
	};
	}
	}

	function setMatrixGroupPolicy(cfg: CoreConfig, groupPolicy: "open" \| "allowlist" \| "disabled") {
	return {
	...cfg,
	channels: {
	...cfg.channels,
	matrix: {
	...cfg.channels?.matrix,
	enabled: true,
	groupPolicy,
	},
	},
	};
	}

	function setMatrixGroupRooms(cfg: CoreConfig, roomKeys: string[]) {
	const groups = Object.fromEntries(roomKeys.map((key) => [key, { allow: true }]));
	return {
	...cfg,
	channels: {
	...cfg.channels,
	matrix: {
	...cfg.channels?.matrix,
	enabled: true,
	groups,
	},
	},
	};
	}

	const dmPolicy: ChannelOnboardingDmPolicy = {
	label: "Matrix",
	channel,
	policyKey: "channels.matrix.dm.policy",
	allowFromKey: "channels.matrix.dm.allowFrom",
	getCurrent: (cfg) => (cfg as CoreConfig).channels?.matrix?.dm?.policy ?? "pairing",
	setPolicy: (cfg, policy) => setMatrixDmPolicy(cfg as CoreConfig, policy),
	promptAllowFrom: promptMatrixAllowFrom,
	};

	export const matrixOnboardingAdapter: ChannelOnboardingAdapter = {
	channel,
	getStatus: async ({ cfg }) => {
	const account = resolveMatrixAccount({ cfg: cfg as CoreConfig });
	const configured = account.configured;
	const sdkReady = isMatrixSdkAvailable();
	return {
	channel,
	configured,
	statusLines: [
	`Matrix: ${configured ? "configured" : "needs homeserver + access token or password"}`,
	],
	selectionHint: !sdkReady
	? "install @vector-im/matrix-bot-sdk"
	: configured
	? "configured"
	: "needs auth",
	};
	},
	configure: async ({ cfg, runtime, prompter, forceAllowFrom }) => {
	let next = cfg as CoreConfig;
	await ensureMatrixSdkInstalled({
	runtime,
	confirm: async (message) =>
	await prompter.confirm({
	message,
	initialValue: true,
	}),
	});
	const existing = next.channels?.matrix ?? {};
	const account = resolveMatrixAccount({ cfg: next });
	if (!account.configured) {
	await noteMatrixAuthHelp(prompter);
	}

	const envHomeserver = process.env.MATRIX_HOMESERVER?.trim();
	const envUserId = process.env.MATRIX_USER_ID?.trim();
	const envAccessToken = process.env.MATRIX_ACCESS_TOKEN?.trim();
	const envPassword = process.env.MATRIX_PASSWORD?.trim();
	const envReady = Boolean(envHomeserver && (envAccessToken \|\| (envUserId && envPassword)));

	if (
	envReady &&
	!existing.homeserver &&
	!existing.userId &&
	!existing.accessToken &&
	!existing.password
	) {
	const useEnv = await prompter.confirm({
	message: "Matrix env vars detected. Use env values?",
	initialValue: true,
	});
	if (useEnv) {
	next = {
	...next,
	channels: {
	...next.channels,
	matrix: {
	...next.channels?.matrix,
	enabled: true,
	},
	},
	};
	if (forceAllowFrom) {
	next = await promptMatrixAllowFrom({ cfg: next, prompter });
	}
	return { cfg: next };
	}
	}

	const homeserver = String(
	await prompter.text({
	message: "Matrix homeserver URL",
	initialValue: existing.homeserver ?? envHomeserver,
	validate: (value) => {
	const raw = String(value ?? "").trim();
	if (!raw) {
	return "Required";
	}
	if (!/^https?:\/\//i.test(raw)) {
	return "Use a full URL (https://...)";
	}
	return undefined;
	},
	}),
	).trim();

	let accessToken = existing.accessToken ?? "";
	let password = existing.password ?? "";
	let userId = existing.userId ?? "";

	if (accessToken \|\| password) {
	const keep = await prompter.confirm({
	message: "Matrix credentials already configured. Keep them?",
	initialValue: true,
	});
	if (!keep) {
	accessToken = "";
	password = "";
	userId = "";
	}
	}

	if (!accessToken && !password) {
	// Ask auth method FIRST before asking for user ID
	const authMode = await prompter.select({
	message: "Matrix auth method",
	options: [
	{ value: "token", label: "Access token (user ID fetched automatically)" },
	{ value: "password", label: "Password (requires user ID)" },
	],
	});

	if (authMode === "token") {
	accessToken = String(
	await prompter.text({
	message: "Matrix access token",
	validate: (value) => (value?.trim() ? undefined : "Required"),
	}),
	).trim();
	// With access token, we can fetch the userId automatically - don't prompt for it
	// The client.ts will use whoami() to get it
	userId = "";
	} else {
	// Password auth requires user ID upfront
	userId = String(
	await prompter.text({
	message: "Matrix user ID",
	initialValue: existing.userId ?? envUserId,
	validate: (value) => {
	const raw = String(value ?? "").trim();
	if (!raw) {
	return "Required";
	}
	if (!raw.startsWith("@")) {
	return "Matrix user IDs should start with @";
	}
	if (!raw.includes(":")) {
	return "Matrix user IDs should include a server (:server)";
	}
	return undefined;
	},
	}),
	).trim();
	password = String(
	await prompter.text({
	message: "Matrix password",
	validate: (value) => (value?.trim() ? undefined : "Required"),
	}),
	).trim();
	}
	}

	const deviceName = String(
	await prompter.text({
	message: "Matrix device name (optional)",
	initialValue: existing.deviceName ?? "OpenClaw Gateway",
	}),
	).trim();

	// Ask about E2EE encryption
	const enableEncryption = await prompter.confirm({
	message: "Enable end-to-end encryption (E2EE)?",
	initialValue: existing.encryption ?? false,
	});

	next = {
	...next,
	channels: {
	...next.channels,
	matrix: {
	...next.channels?.matrix,
	enabled: true,
	homeserver,
	userId: userId \|\| undefined,
	accessToken: accessToken \|\| undefined,
	password: password \|\| undefined,
	deviceName: deviceName \|\| undefined,
	encryption: enableEncryption \|\| undefined,
	},
	},
	};

	if (forceAllowFrom) {
	next = await promptMatrixAllowFrom({ cfg: next, prompter });
	}

	const existingGroups = next.channels?.matrix?.groups ?? next.channels?.matrix?.rooms;
	const accessConfig = await promptChannelAccessConfig({
	prompter,
	label: "Matrix rooms",
	currentPolicy: next.channels?.matrix?.groupPolicy ?? "allowlist",
	currentEntries: Object.keys(existingGroups ?? {}),
	placeholder: "!roomId:server, #alias:server, Project Room",
	updatePrompt: Boolean(existingGroups),
	});
	if (accessConfig) {
	if (accessConfig.policy !== "allowlist") {
	next = setMatrixGroupPolicy(next, accessConfig.policy);
	} else {
	let roomKeys = accessConfig.entries;
	if (accessConfig.entries.length > 0) {
	try {
	const resolvedIds: string[] = [];
	const unresolved: string[] = [];
	for (const entry of accessConfig.entries) {
	const trimmed = entry.trim();
	if (!trimmed) {
	continue;
	}
	const cleaned = trimmed.replace(/^(room\|channel):/i, "").trim();
	if (cleaned.startsWith("!") && cleaned.includes(":")) {
	resolvedIds.push(cleaned);
	continue;
	}
	const matches = await listMatrixDirectoryGroupsLive({
	cfg: next,
	query: trimmed,
	limit: 10,
	});
	const exact = matches.find(
	(match) => (match.name ?? "").toLowerCase() === trimmed.toLowerCase(),
	);
	const best = exact ?? matches[0];
	if (best?.id) {
	resolvedIds.push(best.id);
	} else {
	unresolved.push(entry);
	}
	}
	roomKeys = [...resolvedIds, ...unresolved.map((entry) => entry.trim()).filter(Boolean)];
	if (resolvedIds.length > 0 \|\| unresolved.length > 0) {
	await prompter.note(
	[
	resolvedIds.length > 0 ? `Resolved: ${resolvedIds.join(", ")}` : undefined,
	unresolved.length > 0
	? `Unresolved (kept as typed): ${unresolved.join(", ")}`
	: undefined,
	]
	.filter(Boolean)
	.join("\n"),
	"Matrix rooms",
	);
	}
	} catch (err) {
	await prompter.note(
	`Room lookup failed; keeping entries as typed. ${String(err)}`,
	"Matrix rooms",
	);
	}
	}
	next = setMatrixGroupPolicy(next, "allowlist");
	next = setMatrixGroupRooms(next, roomKeys);
	}
	}

	return { cfg: next };
	},
	dmPolicy,
	disable: (cfg) => ({
	...(cfg as CoreConfig),
	channels: {
	...(cfg as CoreConfig).channels,
	matrix: { ...(cfg as CoreConfig).channels?.matrix, enabled: false },
	},
	}),
	};