Configuration 🔧¶

OpenClaw reads an optional JSON5 config from ~/.openclaw/openclaw.json (comments + trailing commas allowed).

Om filen saknas, använder OpenClaw säkra standardinställningar (inbäddad Pi agent + per-sender sessioner + arbetsyta ~/.openclaw/workspace). Du behöver oftast bara en konfiguration till:

restrict who can trigger the bot (channels.whatsapp.allowFrom, channels.telegram.allowFrom, etc.)
control group allowlists + mention behavior (channels.whatsapp.groups, channels.telegram.groups, channels.discord.guilds, agents.list[].groupChat)
customize message prefixes (messages)
set the agent's workspace (agents.defaults.workspace or agents.list[].workspace)
tune the embedded agent defaults (agents.defaults) and session behavior (session)
set per-agent identity (agents.list[].identity)

New to configuration? Check out the Configuration Examples guide for complete examples with detailed explanations!

Strict config validation¶

OpenClaw accepterar endast konfigurationer som helt matchar schemat. Okända nycklar, felaktigt formatterade typer eller ogiltiga värden orsakar porten till vägra att starta för säkerhet.

When validation fails:

The Gateway does not boot.
Only diagnostic commands are allowed (for example: openclaw doctor, openclaw logs, openclaw health, openclaw status, openclaw service, openclaw help).
Run openclaw doctor to see the exact issues.
Run openclaw doctor --fix (or --yes) to apply migrations/repairs.

Doctor never writes changes unless you explicitly opt into --fix/--yes.

Schema + UI hints¶

Gateway exponerar en JSON Schema representation av konfigurationen via config.schema för UI editorer. Control UI renderar ett formulär från detta schema, med en Raw JSON-editor som en escape-kläckning.

Channel plugins and extensions can register schema + UI hints for their config, so channel settings stay schema-driven across apps without hard-coded forms.

Hints (labels, grouping, sensitive fields) ship alongside the schema so clients can render better forms without hard-coding config knowledge.

Apply + restart (RPC)¶

Använd config.apply för att validera + skriv hela konfigurationen och starta om Gateway i ett steg. Den skriver en omstartsvakt och pingar den sista aktiva sessionen efter Gateway kommer tillbaka.

Varning: config.apply ersätter hela config. Om du bara vill ändra några nycklar använder config.patch eller openclaw config set. Behåll en säkerhetskopia av ~/.openclaw/openclaw.json.

Params:

raw (string) — JSON5 payload for the entire config
baseHash (optional) — config hash from config.get (required when a config already exists)
sessionKey (optional) — last active session key for the wake-up ping
note (optional) — note to include in the restart sentinel
restartDelayMs (optional) — delay before restart (default 2000)

Example (via gateway call):

openclaw gateway call config.get --params '{}' # capture payload.hash
openclaw gateway call config.apply --params '{
  "raw": "{\\n  agents: { defaults: { workspace: \\"~/.openclaw/workspace\\" } }\\n}\\n",
  "baseHash": "<hash-from-config.get>",
  "sessionKey": "agent:main:whatsapp:dm:+15555550123",
  "restartDelayMs": 1000
}'

Partial updates (RPC)¶

Använd config.patch för att sammanfoga en partiell uppdatering till den befintliga konfigurationen utan att klumpa relaterade nycklar. Det gäller JSON sammanfoga patch semantik:

objects merge recursively
null deletes a key
arrays replace Like config.apply, it validates, writes the config, stores a restart sentinel, and schedules the Gateway restart (with an optional wake when sessionKey is provided).

Params:

raw (string) — JSON5 payload containing just the keys to change
baseHash (required) — config hash from config.get
sessionKey (optional) — last active session key for the wake-up ping
note (optional) — note to include in the restart sentinel
restartDelayMs (optional) — delay before restart (default 2000)

Example:

openclaw gateway call config.get --params '{}' # capture payload.hash
openclaw gateway call config.patch --params '{
  "raw": "{\\n  channels: { telegram: { groups: { \\"*\\": { requireMention: false } } } }\\n}\\n",
  "baseHash": "<hash-from-config.get>",
  "sessionKey": "agent:main:whatsapp:dm:+15555550123",
  "restartDelayMs": 1000
}'

Minimal config (recommended starting point)¶

{
  agents: { defaults: { workspace: "~/.openclaw/workspace" } },
  channels: { whatsapp: { allowFrom: ["+15555550123"] } },
}

Build the default image once with:

scripts/sandbox-setup.sh

Self-chat mode (recommended for group control)¶

To prevent the bot from responding to WhatsApp @-mentions in groups (only respond to specific text triggers):

{
  agents: {
    defaults: { workspace: "~/.openclaw/workspace" },
    list: [
      {
        id: "main",
        groupChat: { mentionPatterns: ["@openclaw", "reisponde"] },
      },
    ],
  },
  channels: {
    whatsapp: {
      // Allowlist is DMs only; including your own number enables self-chat mode.
      allowFrom: ["+15555550123"],
      groups: { "*": { requireMention: true } },
    },
  },
}

Config Includes (`$include`)¶

Dela upp din konfiguration i flera filer med hjälp av direktivet $include. Detta är användbart för:

Organizing large configs (e.g., per-client agent definitions)
Sharing common settings across environments
Keeping sensitive configs separate

Basic usage¶

// ~/.openclaw/openclaw.json
{
  gateway: { port: 18789 },

  // Include a single file (replaces the key's value)
  agents: { $include: "./agents.json5" },

  // Include multiple files (deep-merged in order)
  broadcast: {
    $include: ["./clients/mueller.json5", "./clients/schmidt.json5"],
  },
}

// ~/.openclaw/agents.json5
{
  defaults: { sandbox: { mode: "all", scope: "session" } },
  list: [{ id: "main", workspace: "~/.openclaw/workspace" }],
}

Merge behavior¶

Single file: Replaces the object containing $include
Array of files: Deep-merges files in order (later files override earlier ones)
With sibling keys: Sibling keys are merged after includes (override included values)
Sibling keys + arrays/primitives: Not supported (included content must be an object)

// Sibling keys override included values
{
  $include: "./base.json5", // { a: 1, b: 2 }
  b: 99, // Result: { a: 1, b: 99 }
}

Nested includes¶

Included files can themselves contain $include directives (up to 10 levels deep):

// clients/mueller.json5
{
  agents: { $include: "./mueller/agents.json5" },
  broadcast: { $include: "./mueller/broadcast.json5" },
}

Path resolution¶

Relative paths: Resolved relative to the including file
Absolute paths: Used as-is
Parent directories: ../ references work as expected

{ "$include": "./sub/config.json5" }      // relative
{ "$include": "/etc/openclaw/base.json5" } // absolute
{ "$include": "../shared/common.json5" }   // parent dir

Error handling¶

Missing file: Clear error with resolved path
Parse error: Shows which included file failed
Circular includes: Detected and reported with include chain

Example: Multi-client legal setup¶

// ~/.openclaw/openclaw.json
{
  gateway: { port: 18789, auth: { token: "secret" } },

  // Common agent defaults
  agents: {
    defaults: {
      sandbox: { mode: "all", scope: "session" },
    },
    // Merge agent lists from all clients
    list: { $include: ["./clients/mueller/agents.json5", "./clients/schmidt/agents.json5"] },
  },

  // Merge broadcast configs
  broadcast: {
    $include: ["./clients/mueller/broadcast.json5", "./clients/schmidt/broadcast.json5"],
  },

  channels: { whatsapp: { groupPolicy: "allowlist" } },
}

// ~/.openclaw/clients/mueller/agents.json5
[
  { id: "mueller-transcribe", workspace: "~/clients/mueller/transcribe" },
  { id: "mueller-docs", workspace: "~/clients/mueller/docs" },
]

// ~/.openclaw/clients/mueller/broadcast.json5
{
  "120363403215116621@g.us": ["mueller-transcribe", "mueller-docs"],
}

Common options¶

Env vars + `.env`¶

OpenClaw reads env vars from the parent process (shell, launchd/systemd, CI, etc.).

Additionally, it loads:

.env from the current working directory (if present)
a global fallback .env from ~/.openclaw/.env (aka $OPENCLAW_STATE_DIR/.env)

Neither .env file overrides existing env vars.

Du kan också ange inline env vars i konfiguration. Dessa tillämpas endast om processen env saknar nyckeln (samma icke-dominerande regel):

{
  env: {
    OPENROUTER_API_KEY: "sk-or-...",
    vars: {
      GROQ_API_KEY: "gsk-...",
    },
  },
}

See /environment for full precedence and sources.

`env.shellEnv` (optional)¶

Opt-in bekvämlighet: om aktiverat och ingen av de förväntade nycklarna är inställd ännu, OpenClaw kör ditt inloggningsskal och importerar endast de saknade förväntade nycklarna (aldrig åsidosätter). Detta skapar effektivt din skalprofil.

{
  env: {
    shellEnv: {
      enabled: true,
      timeoutMs: 15000,
    },
  },
}

Env var equivalent:

OPENCLAW_LOAD_SHELL_ENV=1
OPENCLAW_SHELL_ENV_TIMEOUT_MS=15000

Env var substitution in config¶

Du kan referera miljövariabler direkt i alla konfigurationssträngar med hjälp av ${VAR_NAME} syntax. Variabler ersätts vid konfigurationens laddningstid, innan validering.

{
  models: {
    providers: {
      "vercel-gateway": {
        apiKey: "${VERCEL_GATEWAY_API_KEY}",
      },
    },
  },
  gateway: {
    auth: {
      token: "${OPENCLAW_GATEWAY_TOKEN}",
    },
  },
}

Rules:

Only uppercase env var names are matched: [A-Z_][A-Z0-9_]*
Missing or empty env vars throw an error at config load
Escape with $${VAR} to output a literal ${VAR}
Works with $include (included files also get substitution)

Inline substitution:

{
  models: {
    providers: {
      custom: {
        baseUrl: "${CUSTOM_API_BASE}/v1", // → "https://api.example.com/v1"
      },
    },
  },
}

Auth storage (OAuth + API keys)¶

OpenClaw stores per-agent auth profiles (OAuth + API keys) in:

<agentDir>/auth-profiles.json (default: ~/.openclaw/agents/<agentId>/agent/auth-profiles.json)

`auth`¶

Valfri metadata för auth profiler. Detta gör inte butikshemligheter; det kartor profil ID till en leverantör + läge (och valfri e-post) och definierar leverantörens rotationsorder som används för failover.

{
  auth: {
    profiles: {
      "anthropic:me@example.com": { provider: "anthropic", mode: "oauth", email: "me@example.com" },
      "anthropic:work": { provider: "anthropic", mode: "api_key" },
    },
    order: {
      anthropic: ["anthropic:me@example.com", "anthropic:work"],
    },
  },
}

`agents.list[].identity`¶

Valfri per-agent identitet används för standardinställningar och UX. Detta är skrivet av macOS onboarding assistent.

If set, OpenClaw derives defaults (only when you haven’t set them explicitly):

messages.ackReaction from the active agent’s identity.emoji (falls back to 👀)
agents.list[].groupChat.mentionPatterns from the agent’s identity.name/identity.emoji (so “@Samantha” works in groups across Telegram/Slack/Discord/Google Chat/iMessage/WhatsApp)
identity.avatar accepterar en arbetsytarelativ bildsökväg eller en fjärr-URL/data-URL. Lokala filer måste leva inuti agentens arbetsyta.

identity.avatar accepts:

Workspace-relative path (must stay within the agent workspace)
http(s) URL
data: URI

{
  agents: {
    list: [
      {
        id: "main",
        identity: {
          name: "Samantha",
          theme: "helpful sloth",
          emoji: "🦥",
          avatar: "avatars/samantha.png",
        },
      },
    ],
  },
}

`wizard`¶

Metadata written by CLI wizards (onboard, configure, doctor).

{
  wizard: {
    lastRunAt: "2026-01-01T00:00:00.000Z",
    lastRunVersion: "2026.1.4",
    lastRunCommit: "abc1234",
    lastRunCommand: "configure",
    lastRunMode: "local",
  },
}

`logging`¶

Default log file: /tmp/openclaw/openclaw-YYYY-MM-DD.log
If you want a stable path, set logging.file to /tmp/openclaw/openclaw.log.
Console output can be tuned separately via:
logging.consoleLevel (defaults to info, bumps to debug when --verbose)
logging.consoleStyle (pretty | compact | json)
Tool summaries can be redacted to avoid leaking secrets:
logging.redactSensitive (off | tools, default: tools)
logging.redactPatterns (array of regex strings; overrides defaults)

{
  logging: {
    level: "info",
    file: "/tmp/openclaw/openclaw.log",
    consoleLevel: "info",
    consoleStyle: "pretty",
    redactSensitive: "tools",
    redactPatterns: [
      // Example: override defaults with your own rules.
      "\\bTOKEN\\b\\s*[=:]\\s*([\"']?)([^\\s\"']+)\\1",
      "/\\bsk-[A-Za-z0-9_-]{8,}\\b/gi",
    ],
  },
}

`channels.whatsapp.dmPolicy`¶

Controls how WhatsApp direct chats (DMs) are handled:

"pairing" (default): unknown senders get a pairing code; owner must approve
"allowlist": only allow senders in channels.whatsapp.allowFrom (or paired allow store)
"open": allow all inbound DMs (requires channels.whatsapp.allowFrom to include "*")
"disabled": ignore all inbound DMs

Parkopplingskoderna löper ut efter 1 timme; boten skickar bara en parkopplingskod när en ny begäran skapas. Väntande DM-parningsförfrågningar är kapslade på 3 per kanal som standard.

Pairing approvals:

openclaw pairing list whatsapp
openclaw pairing approve whatsapp <code>

`channels.whatsapp.allowFrom`¶

Tillåten lista med E.164 telefonnummer som kan utlösa autosvar på WhatsApp (DMs endast). Om tomt och channels.whatsapp.dmPolicy="parkoppling", kommer okända avsändare att få en parkopplingskod. För grupper, använd channels.whatsapp.groupPolicy + channels.whatsapp.groupAllowFrom.

{
  channels: {
    whatsapp: {
      dmPolicy: "pairing", // pairing | allowlist | open | disabled
      allowFrom: ["+15555550123", "+447700900123"],
      textChunkLimit: 4000, // optional outbound chunk size (chars)
      chunkMode: "length", // optional chunking mode (length | newline)
      mediaMaxMb: 50, // optional inbound media cap (MB)
    },
  },
}

`channels.whatsapp.sendReadReceipts`¶

Kontrollerar om meddelanden från WhatsApp är markerade som lästa (blå ticks). Standard: true.

Self-chat mode always skips read receipts, even when enabled.

Ersättning per konto: channels.whatsapp.accounts.<id>.sendReadkvitton.

{
  channels: {
    whatsapp: { sendReadReceipts: false },
  },
}

`channels.whatsapp.accounts` (multi-account)¶

Run multiple WhatsApp accounts in one gateway:

{
  channels: {
    whatsapp: {
      accounts: {
        default: {}, // optional; keeps the default id stable
        personal: {},
        biz: {
          // Optional override. Default: ~/.openclaw/credentials/whatsapp/biz
          // authDir: "~/.openclaw/credentials/whatsapp/biz",
        },
      },
    },
  },
}

Notes:

Outbound commands default to account default if present; otherwise the first configured account id (sorted).
The legacy single-account Baileys auth dir is migrated by openclaw doctor into whatsapp/default.

`channels.telegram.accounts` / `channels.discord.accounts` / `channels.googlechat.accounts` / `channels.slack.accounts` / `channels.mattermost.accounts` / `channels.signal.accounts` / `channels.imessage.accounts`¶

Run multiple accounts per channel (each account has its own accountId and optional name):

{
  channels: {
    telegram: {
      accounts: {
        default: {
          name: "Primary bot",
          botToken: "123456:ABC...",
        },
        alerts: {
          name: "Alerts bot",
          botToken: "987654:XYZ...",
        },
      },
    },
  },
}

Notes:

default is used when accountId is omitted (CLI + routing).
Env tokens only apply to the default account.
Inställningar för baskanaler (grupppolicy, omnämnande av gating, etc.) gäller för alla konton om de inte åsidosätts per konto.
Use bindings[].match.accountId to route each account to a different agents.defaults.

Group chat mention gating (`agents.list[].groupChat` + `messages.groupChat`)¶

Standard för gruppmeddelanden till kräver omnämnande (antingen metadata omnämnande eller regex mönster). Gäller WhatsApp, Telegram, Discord, Google Chat, och iMessage grupp chattar.

Mention types:

Metadata omnämnande: Ursprunglig plattform @-omnämnanden (t.ex., WhatsApp tap-to-mention). Ignorerade i WhatsApp själv-chatt läge (se channels.whatsapp.allowFrom).
Textmönster: Regex mönster definierade i agents.list[].groupChat.mentionMönster. Kontrollera alltid oavsett själv chatt läge.
Mention gating is enforced only when mention detection is possible (native mentions or at least one mentionPattern).

{
  messages: {
    groupChat: { historyLimit: 50 },
  },
  agents: {
    list: [{ id: "main", groupChat: { mentionPatterns: ["@openclaw", "openclaw"] } }],
  },
}

messages.groupChat.historyLimit sätter den globala standarden för gruppens historikkontext. Kanaler kan åsidosätta med kanaler.<channel>.historyLimit (eller kanaler.<channel>.accounts.*.historyLimit för multi-account). Sätt 0 till att inaktivera historikinslagning.

DM history limits¶

DM-konversationer använder sessionsbaserad historik som hanteras av agenten. Du kan begränsa antalet användarvarv som behålls per DM-session:

{
  channels: {
    telegram: {
      dmHistoryLimit: 30, // limit DM sessions to 30 user turns
      dms: {
        "123456789": { historyLimit: 50 }, // per-user override (user ID)
      },
    },
  },
}

Resolution order:

Per-DM åsidosätter: kanaler.<provider>.dms[userId].historyLimit
Leverantörens standard: kanaler.<provider>.dmHistoryLimit
No limit (all history retained)

Supported providers: telegram, whatsapp, discord, slack, signal, imessage, msteams.

Per-agent override (takes precedence when set, even []):

{
  agents: {
    list: [
      { id: "work", groupChat: { mentionPatterns: ["@workbot", "\\+15555550123"] } },
      { id: "personal", groupChat: { mentionPatterns: ["@homebot", "\\+15555550999"] } },
    ],
  },
}

Nämn gating defaults live per kanal (channels.whatsapp.groups, channels.telegram.groups, channels.imessage.groups, channels.discord.guilds). När *.groups är satt, fungerar det också som en grupptillåten list; inkludera "*" för att tillåta alla grupper.

To respond only to specific text triggers (ignoring native @-mentions):

{
  channels: {
    whatsapp: {
      // Include your own number to enable self-chat mode (ignore native @-mentions).
      allowFrom: ["+15555550123"],
      groups: { "*": { requireMention: true } },
    },
  },
  agents: {
    list: [
      {
        id: "main",
        groupChat: {
          // Only these text patterns will trigger responses
          mentionPatterns: ["reisponde", "@openclaw"],
        },
      },
    ],
  },
}

Group policy (per channel)¶

Use channels.*.groupPolicy to control whether group/room messages are accepted at all:

{
  channels: {
    whatsapp: {
      groupPolicy: "allowlist",
      groupAllowFrom: ["+15551234567"],
    },
    telegram: {
      groupPolicy: "allowlist",
      groupAllowFrom: ["tg:123456789", "@alice"],
    },
    signal: {
      groupPolicy: "allowlist",
      groupAllowFrom: ["+15551234567"],
    },
    imessage: {
      groupPolicy: "allowlist",
      groupAllowFrom: ["chat_id:123"],
    },
    msteams: {
      groupPolicy: "allowlist",
      groupAllowFrom: ["user@org.com"],
    },
    discord: {
      groupPolicy: "allowlist",
      guilds: {
        GUILD_ID: {
          channels: { help: { allow: true } },
        },
      },
    },
    slack: {
      groupPolicy: "allowlist",
      channels: { "#general": { allow: true } },
    },
  },
}

Notes:

"open": groups bypass allowlists; mention-gating still applies.
"disabled": block all group/room messages.
"allowlist": only allow groups/rooms that match the configured allowlist.
channels.defaults.groupPolicy sets the default when a provider’s groupPolicy is unset.
WhatsApp/Telegram/Signal/iMessage/Microsoft Teams use groupAllowFrom (fallback: explicit allowFrom).
Discord/Slack use channel allowlists (channels.discord.guilds.*.channels, channels.slack.channels).
Group DMs (Discord/Slack) are still controlled by dm.groupEnabled + dm.groupChannels.
Default is groupPolicy: "allowlist" (unless overridden by channels.defaults.groupPolicy); if no allowlist is configured, group messages are blocked.

Multi-agent routing (`agents.list` + `bindings`)¶

Kör flera isolerade agenter (separat arbetsyta, agentDir, sessioner) inuti en Gateway. Inkommande meddelanden dirigeras till en agent via bindningar.

agents.list[]: per-agent overrides.
id: stable agent id (required).
default: valfritt; när flera är inställda, loggas de första vinsterna och en varning. Om ingen är satt, är den första posten i listan standardagenten.
name: display name for the agent.
workspace: default ~/.openclaw/workspace-<agentId> (for main, falls back to agents.defaults.workspace).
agentDir: default ~/.openclaw/agents/<agentId>/agent.
model: per-agent default model, overrides agents.defaults.model for that agent.
- string form: "provider/model", overrides only agents.defaults.model.primary
- object form: { primary, fallbacks } (fallbacks override agents.defaults.model.fallbacks; [] disables global fallbacks for that agent)
identity: per-agent name/theme/emoji (used for mention patterns + ack reactions).
groupChat: per-agent mention-gating (mentionPatterns).
sandbox: per-agent sandbox config (overrides agents.defaults.sandbox).
- mode: "off" | "non-main" | "all"
- workspaceAccess: "none" | "ro" | "rw"
- scope: "session" | "agent" | "shared"
- workspaceRoot: custom sandbox workspace root
- docker: per-agent docker overrides (e.g. image, network, env, setupCommand, limits; ignored when scope: "shared")
- browser: per-agent sandboxed browser overrides (ignored when scope: "shared")
- prune: per-agent sandbox pruning overrides (ignored when scope: "shared")
subagents: per-agent sub-agent defaults.
- allowAgents: allowlist of agent ids for sessions_spawn from this agent (["*"] = allow any; default: only same agent)
tools: per-agent tool restrictions (applied before sandbox tool policy).
- profile: base tool profile (applied before allow/deny)
- allow: array of allowed tool names
- deny: array of denied tool names (deny wins)
agents.defaults: shared agent defaults (model, workspace, sandbox, etc.).
bindings[]: routes inbound messages to an agentId.
match.channel (required)
match.accountId (optional; * = any account; omitted = default account)
match.peer (optional; { kind: direct|group|channel, id })
match.guildId / match.teamId (optional; channel-specific)

Deterministic match order:

match.peer
match.guildId
match.teamId
match.accountId (exact, no peer/guild/team)
match.accountId: "*" (channel-wide, no peer/guild/team)
default agent (agents.list[].default, else first list entry, else "main")

Within each match tier, the first matching entry in bindings wins.

Per-agent access profiles (multi-agent)¶

Varje agent kan bära sin egen sandlåda + verktygspolicy. Använd detta för att blanda tillgång till nivåer i en gateway:

Full access (personal agent)
Read-only tools + workspace
No filesystem access (messaging/session tools only)

See Multi-Agent Sandbox & Tools for precedence and additional examples.

Full access (no sandbox):

{
  agents: {
    list: [
      {
        id: "personal",
        workspace: "~/.openclaw/workspace-personal",
        sandbox: { mode: "off" },
      },
    ],
  },
}

Read-only tools + read-only workspace:

{
  agents: {
    list: [
      {
        id: "family",
        workspace: "~/.openclaw/workspace-family",
        sandbox: {
          mode: "all",
          scope: "agent",
          workspaceAccess: "ro",
        },
        tools: {
          allow: [
            "read",
            "sessions_list",
            "sessions_history",
            "sessions_send",
            "sessions_spawn",
            "session_status",
          ],
          deny: ["write", "edit", "apply_patch", "exec", "process", "browser"],
        },
      },
    ],
  },
}

No filesystem access (messaging/session tools enabled):

{
  agents: {
    list: [
      {
        id: "public",
        workspace: "~/.openclaw/workspace-public",
        sandbox: {
          mode: "all",
          scope: "agent",
          workspaceAccess: "none",
        },
        tools: {
          allow: [
            "sessions_list",
            "sessions_history",
            "sessions_send",
            "sessions_spawn",
            "session_status",
            "whatsapp",
            "telegram",
            "slack",
            "discord",
            "gateway",
          ],
          deny: [
            "read",
            "write",
            "edit",
            "apply_patch",
            "exec",
            "process",
            "browser",
            "canvas",
            "nodes",
            "cron",
            "gateway",
            "image",
          ],
        },
      },
    ],
  },
}

Example: two WhatsApp accounts → two agents:

{
  agents: {
    list: [
      { id: "home", default: true, workspace: "~/.openclaw/workspace-home" },
      { id: "work", workspace: "~/.openclaw/workspace-work" },
    ],
  },
  bindings: [
    { agentId: "home", match: { channel: "whatsapp", accountId: "personal" } },
    { agentId: "work", match: { channel: "whatsapp", accountId: "biz" } },
  ],
  channels: {
    whatsapp: {
      accounts: {
        personal: {},
        biz: {},
      },
    },
  },
}

`tools.agentToAgent` (optional)¶

Agent-to-agent messaging is opt-in:

{
  tools: {
    agentToAgent: {
      enabled: false,
      allow: ["home", "work"],
    },
  },
}

`messages.queue`¶

Controls how inbound messages behave when an agent run is already active.

{
  messages: {
    queue: {
      mode: "collect", // steer | followup | collect | steer-backlog (steer+backlog ok) | interrupt (queue=steer legacy)
      debounceMs: 1000,
      cap: 20,
      drop: "summarize", // old | new | summarize
      byChannel: {
        whatsapp: "collect",
        telegram: "collect",
        discord: "collect",
        imessage: "collect",
        webchat: "collect",
      },
    },
  },
}

`messages.inbound`¶

Debounce snabba inkommande meddelanden från samma avsändare så att flera back-to-back meddelanden blir en enda agent tur. Debouncing är scoped per kanal + konversation och använder det senaste meddelandet för svarstråd/IDs.

{
  messages: {
    inbound: {
      debounceMs: 2000, // 0 disables
      byChannel: {
        whatsapp: 5000,
        slack: 1500,
        discord: 1500,
      },
    },
  },
}

Notes:

Debounce batches text-only messages; media/attachments flush immediately.
Control commands (e.g. /queue, /new) bypass debouncing so they stay standalone.

`commands` (chat command handling)¶

Controls how chat commands are enabled across connectors.

{
  commands: {
    native: "auto", // register native commands when supported (auto)
    text: true, // parse slash commands in chat messages
    bash: false, // allow ! (alias: /bash) (host-only; requires tools.elevated allowlists)
    bashForegroundMs: 2000, // bash foreground window (0 backgrounds immediately)
    config: false, // allow /config (writes to disk)
    debug: false, // allow /debug (runtime-only overrides)
    restart: false, // allow /restart + gateway restart tool
    useAccessGroups: true, // enforce access-group allowlists/policies for commands
  },
}

Notes:

Text commands must be sent as a standalone message and use the leading / (no plain-text aliases).
commands.text: false disables parsing chat messages for commands.
commands.native: "auto" (default) turns on native commands for Discord/Telegram and leaves Slack off; unsupported channels stay text-only.
Ange commands.native: true<unk> false för att tvinga alla eller åsidosätta per kanal med channels.discord.commands.native, channels.telegram.commands.native, channels.slack.commands.native (bool eller "auto"). false rensar tidigare registrerade kommandon på Discord/Telegram vid uppstart; Slack kommandon hanteras i Slack appen.
channels.telegram.customCommands lägger till extra Telegram bot menyposter. Namnen normaliseras; konflikter med infödda kommandon ignoreras.
commands.bash: true aktiverar ! <cmd> för att köra värdskalskommandon (/bash <cmd> fungerar också som ett alias). Kräver tools.elevated.enabled och tillåter avsändaren i tools.elevated.allowFrom.<channel>.
commands.bashForegroundMs kontrollerar hur länge bash väntar innan bakgrunden. Medan en bash jobb är igång, ny ! <cmd>-förfrågningar avvisas (en åt gången).
commands.config: true enables /config (reads/writes openclaw.json).
kanaler.<provider>.configWrites portar config mutationer initierade av den kanalen (standard: true). Detta gäller /config set<unk> unset plus leverantörsspecifika auto-migreringar (Telegram supergrupps-ID ändringar, Slack kanal-ID ändringar).
commands.debug: true enables /debug (runtime-only overrides).
commands.restart: true enables /restart and the gateway tool restart action.
commands.useAccessGroups: false allows commands to bypass access-group allowlists/policies.
Slash kommandon och direktiv hedras endast för auktoriserade avsändare. Auktorisering härrör från kanal allowlists/parkoppling plus commands.useAccessGroups.

`web` (WhatsApp web channel runtime)¶

WhatsApp körs genom gateways webbkanal (Baileys Web). Den startar automatiskt när en länkad session finns. Set web.enabled: false för att hålla den avstängd som standard.

{
  web: {
    enabled: true,
    heartbeatSeconds: 60,
    reconnect: {
      initialMs: 2000,
      maxMs: 120000,
      factor: 1.4,
      jitter: 0.2,
      maxAttempts: 0,
    },
  },
}

`channels.telegram` (bot transport)¶

OpenClaw startar Telegram endast när en channels.telegram-konfigurationssektion finns. Bottoken är löst från channels.telegram.botToken (eller channels.telegram.tokenFile), med TELEGRAM_BOT_TOKEN som en reserv för standardkontot. Ange channels.telegram.enabled: false för att inaktivera automatisk start. Stöd för flera konton lever under channels.telegram.accounts (se avsnittet för flera konton ovan). Env tokens gäller endast för standardkontot. Ange channels.telegram.configWrites: false för att blockera Telegram-initierad config skriver (inklusive supergrupps-ID migrationer och /config set<unk> unset).

{
  channels: {
    telegram: {
      enabled: true,
      botToken: "your-bot-token",
      dmPolicy: "pairing", // pairing | allowlist | open | disabled
      allowFrom: ["tg:123456789"], // optional; "open" requires ["*"]
      groups: {
        "*": { requireMention: true },
        "-1001234567890": {
          allowFrom: ["@admin"],
          systemPrompt: "Keep answers brief.",
          topics: {
            "99": {
              requireMention: false,
              skills: ["search"],
              systemPrompt: "Stay on topic.",
            },
          },
        },
      },
      customCommands: [
        { command: "backup", description: "Git backup" },
        { command: "generate", description: "Create an image" },
      ],
      historyLimit: 50, // include last N group messages as context (0 disables)
      replyToMode: "first", // off | first | all
      linkPreview: true, // toggle outbound link previews
      streamMode: "partial", // off | partial | block (draft streaming; separate from block streaming)
      draftChunk: {
        // optional; only for streamMode=block
        minChars: 200,
        maxChars: 800,
        breakPreference: "paragraph", // paragraph | newline | sentence
      },
      actions: { reactions: true, sendMessage: true }, // tool action gates (false disables)
      reactionNotifications: "own", // off | own | all
      mediaMaxMb: 5,
      retry: {
        // outbound retry policy
        attempts: 3,
        minDelayMs: 400,
        maxDelayMs: 30000,
        jitter: 0.1,
      },
      network: {
        // transport overrides
        autoSelectFamily: false,
      },
      proxy: "socks5://localhost:9050",
      webhookUrl: "https://example.com/telegram-webhook", // requires webhookSecret
      webhookSecret: "secret",
      webhookPath: "/telegram-webhook",
    },
  },
}

Draft streaming notes:

Uses Telegram sendMessageDraft (draft bubble, not a real message).
Requires private chat topics (message_thread_id in DMs; bot has topics enabled).
/ resonemang ström strömmar resonemang i utkastet, skickar sedan det slutliga svaret. Standardinställningar och beteende för försök dokumenteras i Retry policy.

`channels.discord` (bot transport)¶

Konfigurera Discord-roboten genom att ställa in bot token och valfri gating: Multi-account support lever under channels.discord.accounts (se avsnittet med flera konton ovan). Env tokens gäller endast för standardkontot.

{
  channels: {
    discord: {
      enabled: true,
      token: "your-bot-token",
      mediaMaxMb: 8, // clamp inbound media size
      allowBots: false, // allow bot-authored messages
      actions: {
        // tool action gates (false disables)
        reactions: true,
        stickers: true,
        polls: true,
        permissions: true,
        messages: true,
        threads: true,
        pins: true,
        search: true,
        memberInfo: true,
        roleInfo: true,
        roles: false,
        channelInfo: true,
        voiceStatus: true,
        events: true,
        moderation: false,
      },
      replyToMode: "off", // off | first | all
      dm: {
        enabled: true, // disable all DMs when false
        policy: "pairing", // pairing | allowlist | open | disabled
        allowFrom: ["1234567890", "steipete"], // optional DM allowlist ("open" requires ["*"])
        groupEnabled: false, // enable group DMs
        groupChannels: ["openclaw-dm"], // optional group DM allowlist
      },
      guilds: {
        "123456789012345678": {
          // guild id (preferred) or slug
          slug: "friends-of-openclaw",
          requireMention: false, // per-guild default
          reactionNotifications: "own", // off | own | all | allowlist
          users: ["987654321098765432"], // optional per-guild user allowlist
          channels: {
            general: { allow: true },
            help: {
              allow: true,
              requireMention: true,
              users: ["987654321098765432"],
              skills: ["docs"],
              systemPrompt: "Short answers only.",
            },
          },
        },
      },
      historyLimit: 20, // include last N guild messages as context
      textChunkLimit: 2000, // optional outbound text chunk size (chars)
      chunkMode: "length", // optional chunking mode (length | newline)
      maxLinesPerMessage: 17, // soft max lines per message (Discord UI clipping)
      retry: {
        // outbound retry policy
        attempts: 3,
        minDelayMs: 500,
        maxDelayMs: 30000,
        jitter: 0.1,
      },
    },
  },
}

OpenClaw startar Discord endast när en channels.discord-konfigurationssektion finns. Token är löst från channels.discord.token, med DISCORD_BOT_TOKEN som en reserv för standardkontot (om inte channels.discord.enabled är false). Använd user:<id> (DM) eller channel:<id> (guild channel) när du anger leveransmål för cron/CLI-kommandon; nakna numeriska ID är tvetydiga och avvisade. Guild-sniglar är gemener med mellanslag som ersätts av -; kanalnycklar använder det sluggade kanalnamnet (ingen ledande #). Föredrar guild ids som nycklar för att undvika byta namn på tvetydighet. Bot-författade meddelanden ignoreras som standard. Aktivera med channels.discord.allowBots (egna meddelanden filtreras fortfarande för att förhindra självsvarsloopar). Reaction notification modes:

off: no reaction events.
own: reactions on the bot's own messages (default).
all: all reactions on all messages.
allowlist: reaktioner från guilds.<id>.users på alla meddelanden (tom lista inaktiveras). Utgående text är chunked av channels.discord.textChunkLimit (standard 2000). Ange channels.discord.chunkMode="newline" för att dela på tomma linjer (styckegränser) före längdbitar. Discord-klienter kan klippa väldigt höga meddelanden, så channels.discord.maxLinesPerMessage (standard 17) delar långa multi-line svar även när under 2000 tecken. Standardinställningar och beteende för försök dokumenteras i Retry policy.

`channels.googlechat` (Chat API webhook)¶

Google Chat kör över HTTP webhooks med app-level auth (servicekonto). Multi-account support lives under channels.googlechat.accounts (see the multi-account section above). Env vars gäller endast för standardkontot.

{
  channels: {
    googlechat: {
      enabled: true,
      serviceAccountFile: "/path/to/service-account.json",
      audienceType: "app-url", // app-url | project-number
      audience: "https://gateway.example.com/googlechat",
      webhookPath: "/googlechat",
      botUser: "users/1234567890", // optional; improves mention detection
      dm: {
        enabled: true,
        policy: "pairing", // pairing | allowlist | open | disabled
        allowFrom: ["users/1234567890"], // optional; "open" requires ["*"]
      },
      groupPolicy: "allowlist",
      groups: {
        "spaces/AAAA": { allow: true, requireMention: true },
      },
      actions: { reactions: true },
      typingIndicator: "message",
      mediaMaxMb: 20,
    },
  },
}

Notes:

Service account JSON can be inline (serviceAccount) or file-based (serviceAccountFile).
Env fallbacks for the default account: GOOGLE_CHAT_SERVICE_ACCOUNT or GOOGLE_CHAT_SERVICE_ACCOUNT_FILE.
audienceType + audience must match the Chat app’s webhook auth config.
Use spaces/<spaceId> or users/<userId|email> when setting delivery targets.

`channels.slack` (socket mode)¶

Slack runs in Socket Mode and requires both a bot token and app token:

{
  channels: {
    slack: {
      enabled: true,
      botToken: "xoxb-...",
      appToken: "xapp-...",
      dm: {
        enabled: true,
        policy: "pairing", // pairing | allowlist | open | disabled
        allowFrom: ["U123", "U456", "*"], // optional; "open" requires ["*"]
        groupEnabled: false,
        groupChannels: ["G123"],
      },
      channels: {
        C123: { allow: true, requireMention: true, allowBots: false },
        "#general": {
          allow: true,
          requireMention: true,
          allowBots: false,
          users: ["U123"],
          skills: ["docs"],
          systemPrompt: "Short answers only.",
        },
      },
      historyLimit: 50, // include last N channel/group messages as context (0 disables)
      allowBots: false,
      reactionNotifications: "own", // off | own | all | allowlist
      reactionAllowlist: ["U123"],
      replyToMode: "off", // off | first | all
      thread: {
        historyScope: "thread", // thread | channel
        inheritParent: false,
      },
      actions: {
        reactions: true,
        messages: true,
        pins: true,
        memberInfo: true,
        emojiList: true,
      },
      slashCommand: {
        enabled: true,
        name: "openclaw",
        sessionPrefix: "slack:slash",
        ephemeral: true,
      },
      textChunkLimit: 4000,
      chunkMode: "length",
      mediaMaxMb: 20,
    },
  },
}

Stöd för flera konton lever under channels.slack.accounts (se avsnittet för flera konton ovan). Env tokens gäller endast för standardkontot.

OpenClaw startar Slack när leverantören är aktiverad och båda tokens är inställda (via config eller SLACK_BOT_TOKEN + SLACK_APP_TOKEN). Använd user:<id> (DM) eller channel:<id> när du anger leveransmål för cron/CLI-kommandon. Ange channels.slack.configWrites: false för att blockera Slack-initierade config writes (inklusive kanal ID migrationer och /config set<unk> unset).

Bot-författade meddelanden ignoreras som standard. Aktivera med channels.slack.allowBots eller channels.slack.channels.<id>.allowBots.

Reaction notification modes:

off: no reaction events.
own: reactions on the bot's own messages (default).
all: all reactions on all messages.
allowlist: reactions from channels.slack.reactionAllowlist on all messages (empty list disables).

Thread session isolation:

channels.slack.thread.historyScope controls whether thread history is per-thread (thread, default) or shared across the channel (channel).
channels.slack.thread.inheritParent controls whether new thread sessions inherit the parent channel transcript (default: false).

Slack action groups (gate slack tool actions):

Action group	Default	Notes
reactions	enabled	React + list reactions
messages	enabled	Read/send/edit/delete
pins	enabled	Pin/unpin/list
memberInfo	enabled	Member info
emojiList	enabled	Custom emoji list

`channels.mattermost` (bot token)¶

Mattermost levereras som ett plugin och ingår inte i kärninstallationen. Installera det först: openclaw plugins install @openclaw/mattermost (eller ./extensions/mattermost från en git checkout).

Mattermost requires a bot token plus the base URL for your server:

{
  channels: {
    mattermost: {
      enabled: true,
      botToken: "mm-token",
      baseUrl: "https://chat.example.com",
      dmPolicy: "pairing",
      chatmode: "oncall", // oncall | onmessage | onchar
      oncharPrefixes: [">", "!"],
      textChunkLimit: 4000,
      chunkMode: "length",
    },
  },
}

OpenClaw startar Mattermost när kontot är konfigurerat (bot token + bas-URL) och aktiverat. Token + bas-URL löses från channels.mattermost.botToken + channels.mattermost.baseUrl eller MATTERMOST_BOT_TOKEN + MATTERMOST_URL för standardkontot (om inte channels.mattermost.enabled är false).

Chat modes:

oncall (default): respond to channel messages only when @mentioned.
onmessage: respond to every channel message.
onchar: respond when a message starts with a trigger prefix (channels.mattermost.oncharPrefixes, default [">", "!"]).

Access control:

Default DMs: channels.mattermost.dmPolicy="pairing" (unknown senders get a pairing code).
Public DMs: channels.mattermost.dmPolicy="open" plus channels.mattermost.allowFrom=["*"].
Grupper: channels.mattermost.groupPolicy="allowlist" som standard (nämna-gated). Använd channels.mattermost.groupAllowFrom för att begränsa avsändarna.

Stöd för flera konton lever under channels.mattermost.accounts (se avsnittet för flera konton ovan). Env vars gäller endast för standardkontot. Använd channel:<id> eller user:<id> (eller @username) när du anger leveransmål; nakna ID behandlas som kanal-ID.

`channels.signal` (signal-cli)¶

Signal reactions can emit system events (shared reaction tooling):

{
  channels: {
    signal: {
      reactionNotifications: "own", // off | own | all | allowlist
      reactionAllowlist: ["+15551234567", "uuid:123e4567-e89b-12d3-a456-426614174000"],
      historyLimit: 50, // include last N group messages as context (0 disables)
    },
  },
}

Reaction notification modes:

off: no reaction events.
own: reactions on the bot's own messages (default).
all: all reactions on all messages.
allowlist: reactions from channels.signal.reactionAllowlist on all messages (empty list disables).

`channels.imessage` (imsg CLI)¶

OpenClaw skapar imsg rpc (JSON-RPC över stdio). Ingen daemon eller port krävs.

{
  channels: {
    imessage: {
      enabled: true,
      cliPath: "imsg",
      dbPath: "~/Library/Messages/chat.db",
      remoteHost: "user@gateway-host", // SCP for remote attachments when using SSH wrapper
      dmPolicy: "pairing", // pairing | allowlist | open | disabled
      allowFrom: ["+15555550123", "user@example.com", "chat_id:123"],
      historyLimit: 50, // include last N group messages as context (0 disables)
      includeAttachments: false,
      mediaMaxMb: 16,
      service: "auto",
      region: "US",
    },
  },
}

Multi-account support lives under channels.imessage.accounts (see the multi-account section above).

Notes:

Requires Full Disk Access to the Messages DB.
The first send will prompt for Messages automation permission.
Föredrar chat_id:<id>-mål. Använd imsg chats --limit 20 för att lista chattar.
channels.imessage.cliPath can point to a wrapper script (e.g. ssh to another Mac that runs imsg rpc); use SSH keys to avoid password prompts.
For remote SSH wrappers, set channels.imessage.remoteHost to fetch attachments via SCP when includeAttachments is enabled.

Example wrapper:

#!/usr/bin/env bash
exec ssh -T gateway-host imsg "$@"

`agents.defaults.workspace`¶

Sets the single global workspace directory used by the agent for file operations.

Default: ~/.openclaw/workspace.

{
  agents: { defaults: { workspace: "~/.openclaw/workspace" } },
}

If agents.defaults.sandbox is enabled, non-main sessions can override this with their own per-scope workspaces under agents.defaults.sandbox.workspaceRoot.

`agents.defaults.repoRoot`¶

Valfri utvecklingskatalogsrot som visas i systemprompten Runtime line. Om unset, försöker OpenClaw upptäcka en .git-katalog genom att gå uppåt från arbetsytan (och nuvarande arbetskatalog). Vägen måste finnas för att användas.

{
  agents: { defaults: { repoRoot: "~/Projects/openclaw" } },
}

`agents.defaults.skipBootstrap`¶

Disables automatic creation of the workspace bootstrap files (AGENTS.md, SOUL.md, TOOLS.md, IDENTITY.md, USER.md, HEARTBEAT.md, and BOOTSTRAP.md).

Use this for pre-seeded deployments where your workspace files come from a repo.

{
  agents: { defaults: { skipBootstrap: true } },
}

`agents.defaults.bootstrapMaxChars`¶

Max antal tecken i varje arbetsyta bootstrap-fil injiceras i systemprompten innan trunkering. Standard: 20000.

When a file exceeds this limit, OpenClaw logs a warning and injects a truncated head/tail with a marker.

{
  agents: { defaults: { bootstrapMaxChars: 20000 } },
}

`agents.defaults.userTimezone`¶

Anger användarens tidszon för systempromptkontext (inte för tidsstämplar i meddelandekuvert). Om unset, använder OpenClaw värdtidszonen vid runtime.

{
  agents: { defaults: { userTimezone: "America/Chicago" } },
}

`agents.defaults.timeFormat`¶

Kontrollerar tidsformatet som visas i systempromptens sektion för aktuellt datum och tid. Standard: auto (OS inställningar).

{
  agents: { defaults: { timeFormat: "auto" } }, // auto | 12 | 24
}

`messages`¶

Styr inbound/utgående prefix och valfria ackreaktioner. Se Messages för köer, sessioner och strömmande sammanhang.

{
  messages: {
    responsePrefix: "🦞", // or "auto"
    ackReaction: "👀",
    ackReactionScope: "group-mentions",
    removeAckAfterReply: false,
  },
}

responsePrefix is applied to all outbound replies (tool summaries, block streaming, final replies) across channels unless already present.

Overrides can be configured per channel and per account:

kanaler.<channel>.responsePrefix
kanaler.<channel>.accounts.<id>.responsePrefix

Resolution order (most specific wins):

kanaler.<channel>.accounts.<id>.responsePrefix
kanaler.<channel>.responsePrefix
messages.responsePrefix

Semantics:

undefined falls through to the next level.
"" explicitly disables the prefix and stops the cascade.
"auto" derives [{identity.name}] for the routed agent.

Overrides apply to all channels, including extensions, and to every outbound reply kind.

Om messages.responsePrefix är avsatt, tillämpas inget prefix som standard. WhatsApp självchatt svar är undantaget: de standard till [{identity.name}] när satt, annars [openclaw], så same-phone konversationer förblir läsbara. Set it to "auto" to derive [{identity.name}] for the routed agent (when set).

Template variables¶

The responsePrefix string can include template variables that resolve dynamically:

Variable	Description	Example
`{model}`	Short model name	`claude-opus-4-6`, `gpt-4o`
`{modelFull}`	Full model identifier	`anthropic/claude-opus-4-6`
`{provider}`	Provider name	`anthropic`, `openai`
`{thinkingLevel}`	Current thinking level	`high`, `low`, `off`
`{identity.name}`	Agent identity name	(same as `"auto"` mode)

Variabler är skiftlägesokänsliga ({MODEL} = {model}). {think} är ett alias för {thinkingLevel}. Olösta variabler förblir som bokstavlig text.

{
  messages: {
    responsePrefix: "[{model} | think:{thinkingLevel}]",
  },
}

Example output: [claude-opus-4-6 | think:high] Here's my response...

WhatsApp inkommande prefix är konfigurerad via channels.whatsapp.messagePrefix (föråldrad: messages.messagePrefix). Standard förblir oförändrad: "[openclaw]" när channels.whatsapp.allowFrom är tom, annars "" (inget prefix). När du använder "[openclaw]", kommer OpenClaw istället använda [{identity.name}] när den dirigerade agenten har identity.name satt.

ackReaction skickar en emoji-reaktion för att bekräfta inkommande meddelanden på kanaler som stödjer reaktioner (brist / Discord/Telegram/Google Chat). Standardvärdet för aktiva agentens identity.emoji när den är satt, annars "👀". Ställ in den till "" för att inaktivera.

ackReactionScope controls when reactions fire:

group-mentions (default): only when a group/room requires mentions and the bot was mentioned
group-all: all group/room messages
direct: direct messages only
all: all messages

removeAckAfterReply tar bort botens ack reaktion efter att ett svar skickas (Slack/Discord/Telegram/Google Chat endast). Standard: false.

`messages.tts`¶

Aktivera text-till-tal för utgående svar. När på, OpenClaw genererar ljud med hjälp av ElevenLabs eller OpenAI och fäster den till svar. Telegram använder Opus röstanteckningar; andra kanaler skicka MP3-ljud.

{
  messages: {
    tts: {
      auto: "always", // off | always | inbound | tagged
      mode: "final", // final | all (include tool/block replies)
      provider: "elevenlabs",
      summaryModel: "openai/gpt-4.1-mini",
      modelOverrides: {
        enabled: true,
      },
      maxTextLength: 4000,
      timeoutMs: 30000,
      prefsPath: "~/.openclaw/settings/tts.json",
      elevenlabs: {
        apiKey: "elevenlabs_api_key",
        baseUrl: "https://api.elevenlabs.io",
        voiceId: "voice_id",
        modelId: "eleven_multilingual_v2",
        seed: 42,
        applyTextNormalization: "auto",
        languageCode: "en",
        voiceSettings: {
          stability: 0.5,
          similarityBoost: 0.75,
          style: 0.0,
          useSpeakerBoost: true,
          speed: 1.0,
        },
      },
      openai: {
        apiKey: "openai_api_key",
        model: "gpt-4o-mini-tts",
        voice: "alloy",
      },
    },
  },
}

Notes:

messages.tts.auto controls auto‑TTS (off, always, inbound, tagged).
/tts off|always|inbound|tagged sets the per‑session auto mode (overrides config).
messages.tts.enabled is legacy; doctor migrates it to messages.tts.auto.
prefsPath stores local overrides (provider/limit/summarize).
maxTextLength is a hard cap for TTS input; summaries are truncated to fit.
summaryModel overrides agents.defaults.model.primary for auto-summary.
Accepts provider/model or an alias from agents.defaults.models.
modelOverrides enables model-driven overrides like [[tts:...]] tags (on by default).
/tts limit and /tts summary control per-user summarization settings.
apiKey values fall back to ELEVENLABS_API_KEY/XI_API_KEY and OPENAI_API_KEY.
elevenlabs.baseUrl overrides the ElevenLabs API base URL.
elevenlabs.voiceSettings supports stability/similarityBoost/style (0..1), useSpeakerBoost, and speed (0.5..2.0).

`talk`¶

Standardvärden för Talk-läge (macOS/iOS/Android). Röst-ID faller tillbaka till ELEVENLABS_VOICE_ID eller SAG_VOICE_ID vid upplösning. apiKey faller tillbaka till ELEVENLABS_API_KEY (eller gatewayens skalprofil) vid upplösning. voiceAliases låter Talk använda vänliga namn (t.ex. "voice":"Clawd").

{
  talk: {
    voiceId: "elevenlabs_voice_id",
    voiceAliases: {
      Clawd: "EXAVITQu4vr4xnSDxMaL",
      Roger: "CwhRBWXzGAHq8TQ4Fs17",
    },
    modelId: "eleven_v3",
    outputFormat: "mp3_44100_128",
    apiKey: "elevenlabs_api_key",
    interruptOnSpeech: true,
  },
}

`agents.defaults`¶

Styr den inbäddade agenten runtime (modell/thinking/verbose/timeouts). agents.defaults.models definierar den konfigurerade modellkatalogen (och fungerar som tillåten lista för /model). agents.defaults.model.primary sätter standardmodellen: agents.defaults.model.fallbacks är globala felrapporter. agents.defaults.imageModel är valfritt och används endast om den primära modellen saknar bildinmatning. Varje agents.defaults.models post kan innehålla:

alias (optional model shortcut, e.g. /opus).
params (optional provider-specific API params passed through to the model request).

params används också för strömning av körningar (inbäddad agent + komprimering). Tangenter som stöds idag: temperature, maxTokens. Dessa sammanfogas med calltime-alternativ; samtals-levererade värden vinner. temperature är en avancerad ratt-lämna unset om du inte vet modellens standardvärden och behöver en ändring.

Example:

{
  agents: {
    defaults: {
      models: {
        "anthropic/claude-sonnet-4-5-20250929": {
          params: { temperature: 0.6 },
        },
        "openai/gpt-5.2": {
          params: { maxTokens: 8192 },
        },
      },
    },
  },
}

Z.AI GLM-4.x models automatically enable thinking mode unless you:

set --thinking off, or
define agents.defaults.models["zai/<model>"].params.thinking yourself.

OpenClaw fartyg också några inbyggda alias shorthands. Standardvärden gäller endast när modellen redan finns i agents.defaults.models:

opus -> anthropic/claude-opus-4-6
sonnet -> anthropic/claude-sonnet-4-5
gpt -> openai/gpt-5.2
gpt-mini -> openai/gpt-5-mini
gemini -> google/gemini-3-pro-preview
gemini-flash -> google/gemini-3-flash-preview

If you configure the same alias name (case-insensitive) yourself, your value wins (defaults never override).

Example: Opus 4.6 primary with MiniMax M2.1 fallback (hosted MiniMax):

{
  agents: {
    defaults: {
      models: {
        "anthropic/claude-opus-4-6": { alias: "opus" },
        "minimax/MiniMax-M2.1": { alias: "minimax" },
      },
      model: {
        primary: "anthropic/claude-opus-4-6",
        fallbacks: ["minimax/MiniMax-M2.1"],
      },
    },
  },
}

MiniMax auth: set MINIMAX_API_KEY (env) or configure models.providers.minimax.

`agents.defaults.cliBackends` (CLI fallback)¶

Valfria CLI-backends för text-only reservkörningar (inga verktygssamtal). Dessa är användbara som en backup sökväg när API-leverantörer misslyckas. Bildgenomströmning stöds när du konfigurerar en imageArg som accepterar filsökvägar.

Notes:

CLI backends are text-first; tools are always disabled.
Sessions are supported when sessionArg is set; session ids are persisted per backend.
För claude-cli, är standardinställningarna inkopplade. Åsidosätt kommandosökvägen om PATH är minimal (launchd/systemd).

Example:

{
  agents: {
    defaults: {
      cliBackends: {
        "claude-cli": {
          command: "/opt/homebrew/bin/claude",
        },
        "my-cli": {
          command: "my-cli",
          args: ["--json"],
          output: "json",
          modelArg: "--model",
          sessionArg: "--session",
          sessionMode: "existing",
          systemPromptArg: "--system",
          systemPromptWhen: "first",
          imageArg: "--image",
          imageMode: "repeat",
        },
      },
    },
  },
}

{
  agents: {
    defaults: {
      models: {
        "anthropic/claude-opus-4-6": { alias: "Opus" },
        "anthropic/claude-sonnet-4-1": { alias: "Sonnet" },
        "openrouter/deepseek/deepseek-r1:free": {},
        "zai/glm-4.7": {
          alias: "GLM",
          params: {
            thinking: {
              type: "enabled",
              clear_thinking: false,
            },
          },
        },
      },
      model: {
        primary: "anthropic/claude-opus-4-6",
        fallbacks: [
          "openrouter/deepseek/deepseek-r1:free",
          "openrouter/meta-llama/llama-3.3-70b-instruct:free",
        ],
      },
      imageModel: {
        primary: "openrouter/qwen/qwen-2.5-vl-72b-instruct:free",
        fallbacks: ["openrouter/google/gemini-2.0-flash-vision:free"],
      },
      thinkingDefault: "low",
      verboseDefault: "off",
      elevatedDefault: "on",
      timeoutSeconds: 600,
      mediaMaxMb: 5,
      heartbeat: {
        every: "30m",
        target: "last",
      },
      maxConcurrent: 3,
      subagents: {
        model: "minimax/MiniMax-M2.1",
        maxConcurrent: 1,
        archiveAfterMinutes: 60,
      },
      exec: {
        backgroundMs: 10000,
        timeoutSec: 1800,
        cleanupMs: 1800000,
      },
      contextTokens: 200000,
    },
  },
}

`agents.defaults.contextPruning` (tool-result pruning)¶

agents.defaults.contextPruning beskär gamla verktygsresultat från minneskontexten precis innan en begäran skickas till LLM. Det ändrar inte sessionshistoriken på disk (*.jsonl är fullständig).

This is intended to reduce token usage for chatty agents that accumulate large tool outputs over time.

High level:

Never touches user/assistant messages.
Protects the last keepLastAssistants assistant messages (no tool results after that point are pruned).
Protects the bootstrap prefix (nothing before the first user message is pruned).
Modes:
adaptive: soft-trims överdimensionerade verktygsresultat (behåll huvud/svans) när det uppskattade kontextförhållandet korsar softTrimRatio. Sedan är det svårt att rensa de äldsta kvalificerade verktygsresultaten när det uppskattade kontextförhållandet korsar hardClearRatio och det finns tillräckligt många verktygsresultat bulk (minPrunableToolChars).
aggressive: always replaces eligible tool results before the cutoff with the hardClear.placeholder (no ratio checks).

Soft vs hard pruning (what changes in the context sent to the LLM):

Soft-trim: endast för oversized verktygsresultat. Håller början + slut och skär ... i mitten.
Before: toolResult("…very long output…")
After: toolResult("HEAD…\n...\n…TAIL\n\n[Tool result trimmed: …]")
Hard-clear: replaces the entire tool result with the placeholder.
Before: toolResult("…very long output…")
After: toolResult("[Old tool result content cleared]")

Notes / current limitations:

Tool results containing image blocks are skipped (never trimmed/cleared) right now.
The estimated “context ratio” is based on characters (approximate), not exact tokens.
If the session doesn’t contain at least keepLastAssistants assistant messages yet, pruning is skipped.
In aggressive mode, hardClear.enabled is ignored (eligible tool results are always replaced with hardClear.placeholder).

Default (adaptive):

{
  agents: { defaults: { contextPruning: { mode: "adaptive" } } },
}

To disable:

{
  agents: { defaults: { contextPruning: { mode: "off" } } },
}

Defaults (when mode is "adaptive" or "aggressive"):

keepLastAssistants: 3
softTrimRatio: 0.3 (adaptive only)
hardClearRatio: 0.5 (adaptive only)
minPrunableToolChars: 50000 (adaptive only)
softTrim: { maxChars: 4000, headChars: 1500, tailChars: 1500 } (adaptive only)
hardClear: { enabled: true, placeholder: "[Old tool result content cleared]" }

Example (aggressive, minimal):

{
  agents: { defaults: { contextPruning: { mode: "aggressive" } } },
}

Example (adaptive tuned):

{
  agents: {
    defaults: {
      contextPruning: {
        mode: "adaptive",
        keepLastAssistants: 3,
        softTrimRatio: 0.3,
        hardClearRatio: 0.5,
        minPrunableToolChars: 50000,
        softTrim: { maxChars: 4000, headChars: 1500, tailChars: 1500 },
        hardClear: { enabled: true, placeholder: "[Old tool result content cleared]" },
        // Optional: restrict pruning to specific tools (deny wins; supports "*" wildcards)
        tools: { deny: ["browser", "canvas"] },
      },
    },
  },
}

See /concepts/session-pruning for behavior details.

`agents.defaults.compaction` (reserve headroom + memory flush)¶

agents.defaults.compaction.mode väljer komprimeringsstrategin. Standardvärdet är default; sätt safeguard för att aktivera chunked summarization för mycket lång historik. Se /concepts/compaction.

agents.defaults.compaction.reserveTokensFloor upprätthåller ett minimum reserveTokens värde för Pi compaction (standard: 20000). Ställ in den till 0 för att inaktivera golvet.

agents.defaults.compaction.memoryFlush kör en tyst agentic sväng innan auto-packning, instruerar modellen att lagra hållbara minnen på disk (t.ex. minne/YYYY-MM-DD.md). Det utlöses när sessionssymbolen uppskattning passerar en mjuk tröskel under komprimeringsgränsen.

Legacy defaults:

memoryFlush.enabled: true
memoryFlush.softThresholdTokens: 4000
memoryFlush.prompt / memoryFlush.systemPrompt: built-in defaults with NO_REPLY
Note: memory flush is skipped when the session workspace is read-only (agents.defaults.sandbox.workspaceAccess: "ro" or "none").

Example (tuned):

{
  agents: {
    defaults: {
      compaction: {
        mode: "safeguard",
        reserveTokensFloor: 24000,
        memoryFlush: {
          enabled: true,
          softThresholdTokens: 6000,
          systemPrompt: "Session nearing compaction. Store durable memories now.",
          prompt: "Write any lasting notes to memory/YYYY-MM-DD.md; reply with NO_REPLY if nothing to store.",
        },
      },
    },
  },
}

Block streaming:

agents.defaults.blockStreamingDefault: "on"/"off" (default off).
Kanalöverskridningar: *.blockStreaming (och varianter per konto) för att tvinga blockering av strömning på/av. Icke-Telegram kanaler kräver en explicit *.blockStreaming: true för att aktivera blocksvar.
agents.defaults.blockStreamingBreak: "text_end" or "message_end" (default: text_end).
agents.defaults.blockStreamingChunk: mjuk chunking för strömmade block. Standardvärdet är 800–1200 tecken, föredrar paragraf brytningar (\n\n), sedan newlines och meningar. Example:

json5 { agents: { defaults: { blockStreamingChunk: { minChars: 800, maxChars: 1200 } } }, }

agents.defaults.blockStreamingCoalesce: slå samman strömmade block innan sändning. Standardvärdet är { idleMs: 1000 } och ärver minChars från blockStreamingChunk med maxChars kantad till kanalens textgräns. Signal/Slack/Discord/Google Chat standard till minChars: 1500 om inte åsidosätts. Kanal åsidosätter: channels.whatsapp.blockStreamingCoalesce, channels.telegram.blockStreamingCoalesce, channels.discord.blockStreamingCoalesce, channels.slack.blockStreamingCoalesce, channels.mattermost.blockStreamingCoalesce, channels.signal.blockStreamingCoalesce, channels.imessage.blockStreamingCoalesce, channels.msteams.blockingCoalesce, channels.googlechat.blockStreamingCoalesce (och per-konto varianters).
agents.defaults.humanDelay: randomiserad paus mellan blocksvar efter den första. Modes: off (standard), natural (800–2500ms), custom (använd minMs/maxMs). Per-agent åsidosätter: agents.list[].humanDelay. Example:

json5 { agents: { defaults: { humanDelay: { mode: "natural" } } }, }

See /concepts/streaming for behavior + chunking details.

Typing indicators:

agents.defaults.typingMode: "aldrig" <unk> "instant" <unk> "tänker" <unk> "meddelande". Standardvärdet är instant för direktchatt/omnämnanden och message för icke nämnda gruppchattar.
session.typingMode: per-session override for the mode.
agents.defaults.typingIntervalSeconds: how often the typing signal is refreshed (default: 6s).
session.typingIntervalSeconds: åsidosätt per session för uppdateringsintervallet. Se /concepts/typing-indicators för beteendedetaljer.

agents.defaults.model.primary bör anges som provider/model (t.ex. anthropic/claude-opus-4-6). Alias kommer från agents.defaults.models.*.alias (t.ex. Opus). Om du utelämnar leverantören antar OpenClaw för närvarande anthropic som ett tillfälligt avskrivningsfall. Z.AI modeller är tillgängliga som zai/<model> (t.ex. zai/glm-4.7) och kräver ZAI_API_KEY (eller äldre Z_AI_API_KEY) i miljön.

agents.defaults.heartbeat configures periodic heartbeat runs:

every: varaktighet sträng (ms, s, m, h); standard enhetsminuter. Standard: 30m. Sätt 0m till att inaktivera.
model: optional override model for heartbeat runs (provider/model).
includeReasoning: när true, kommer hjärtslag också leverera det separata Resoning: meddelandet när det är tillgängligt (samma form som /resonemang på). Standard: false.
session: valfri sessionsnyckel för att kontrollera vilken session hjärtslaget körs i. Standard: main.
to: optional recipient override (channel-specific id, e.g. E.164 for WhatsApp, chat id for Telegram).
target: valfri leveranskanal (last, whatsapp, telegram, discord, slack, msteams, signal, imessage, none). Standard: sista.
prompt: valfri åsidosättning för hjärtslagets kropp (standard: Read HEARTBEAT.md om den existerar (arbetsytans sammanhang). Följ den strikt. Sluta inte eller upprepa gamla uppgifter från tidigare chattar. Om inget behöver uppmärksamhet, svara HEARTBEAT_OK.). Overrides skickas ordagrant, inkludera en Read HEARTBEAT.md-rad om du fortfarande vill att filen ska läsas.
ackMaxChars: max chars allowed after HEARTBEAT_OK before delivery (default: 300).

Per-agent heartbeats:

Set agents.list[].heartbeat to enable or override heartbeat settings for a specific agent.
If any agent entry defines heartbeat, only those agents run heartbeats; defaults become the shared baseline for those agents.

Heartbeats kör full agent varv. Kortare intervall brinner fler tokens; var uppmärksam på every, håll HEARTBEAT.md liten och/eller välj en billigare model.

tools.exec configures background exec defaults:

backgroundMs: time before auto-background (ms, default 10000)
timeoutSec: auto-kill after this runtime (seconds, default 1800)
cleanupMs: how long to keep finished sessions in memory (ms, default 1800000)
notifyOnExit: enqueue a system event + request heartbeat when backgrounded exec exits (default true)
applyPatch.enabled: enable experimental apply_patch (OpenAI/OpenAI Codex only; default false)
applyPatch.allowModels: optional allowlist of model ids (e.g. gpt-5.2 or openai/gpt-5.2) Note: applyPatch is only under tools.exec.

tools.web configures web search + fetch tools:

tools.web.search.enabled (default: true when key is present)
tools.web.search.apiKey (recommended: set via openclaw configure --section web, or use BRAVE_API_KEY env var)
tools.web.search.maxResults (1–10, default 5)
tools.web.search.timeoutSeconds (default 30)
tools.web.search.cacheTtlMinutes (default 15)
tools.web.fetch.enabled (default true)
tools.web.fetch.maxChars (default 50000)
tools.web.fetch.maxCharsCap (default 50000; clamps maxChars from config/tool calls)
tools.web.fetch.timeoutSeconds (default 30)
tools.web.fetch.cacheTtlMinutes (default 15)
tools.web.fetch.userAgent (optional override)
tools.web.fetch.readability (default true; disable to use basic HTML cleanup only)
tools.web.fetch.firecrawl.enabled (default true when an API key is set)
tools.web.fetch.firecrawl.apiKey (optional; defaults to FIRECRAWL_API_KEY)
tools.web.fetch.firecrawl.baseUrl (default https://api.firecrawl.dev)
tools.web.fetch.firecrawl.onlyMainContent (default true)
tools.web.fetch.firecrawl.maxAgeMs (optional)
tools.web.fetch.firecrawl.timeoutSeconds (optional)

tools.media configures inbound media understanding (image/audio/video):

tools.media.models: shared model list (capability-tagged; used after per-cap lists).
tools.media.concurrency: max concurrent capability runs (default 2).
tools.media.image / tools.media.audio / tools.media.video:
enabled: opt-out switch (default true when models are configured).
prompt: optional prompt override (image/video append a maxChars hint automatically).
maxChars: max output characters (default 500 for image/video; unset for audio).
maxBytes: max media size to send (defaults: image 10MB, audio 20MB, video 50MB).
timeoutSeconds: request timeout (defaults: image 60s, audio 60s, video 120s).
language: optional audio hint.
attachments: attachment policy (mode, maxAttachments, prefer).
scope: optional gating (first match wins) with match.channel, match.chatType, or match.keyPrefix.
models: ordered list of model entries; failures or oversize media fall back to the next entry.
Each models[] entry:
Provider entry (type: "provider" or omitted):
- provider: API provider id (openai, anthropic, google/gemini, groq, etc).
- model: model id override (required for image; defaults to gpt-4o-mini-transcribe/whisper-large-v3-turbo for audio providers, and gemini-3-flash-preview for video).
- profile / preferredProfile: auth profile selection.
CLI entry (type: "cli"):
- command: executable to run.
- args: templated args (supports {{MediaPath}}, {{Prompt}}, {{MaxChars}}, etc).
capabilities: valfri lista (image, audio, video) för att grinda en delad post. Standardvärden vid utelämnande: openai/anthropic/minimax → bild, google → bild+audio+video, groq → ljud.
prompt, maxChars, maxBytes, timeoutSeconds, language can be overridden per entry.

If no models are configured (or enabled: false), understanding is skipped; the model still receives the original attachments.

Provider auth follows the standard model auth order (auth profiles, env vars like OPENAI_API_KEY/GROQ_API_KEY/GEMINI_API_KEY, or models.providers.*.apiKey).

Example:

{
  tools: {
    media: {
      audio: {
        enabled: true,
        maxBytes: 20971520,
        scope: {
          default: "deny",
          rules: [{ action: "allow", match: { chatType: "direct" } }],
        },
        models: [
          { provider: "openai", model: "gpt-4o-mini-transcribe" },
          { type: "cli", command: "whisper", args: ["--model", "base", "{{MediaPath}}"] },
        ],
      },
      video: {
        enabled: true,
        maxBytes: 52428800,
        models: [{ provider: "google", model: "gemini-3-flash-preview" }],
      },
    },
  },
}

agents.defaults.subagents configures sub-agent defaults:

model: standardmodell för spawnade underagenter (sträng eller { primary, fallbacks }). Om utelämnade, sub-agenter ärva uppringarens modell om inte åsidosätts per agent eller per samtal.
maxConcurrent: max concurrent sub-agent runs (default 1)
archiveAfterMinutes: auto-archive sub-agent sessions after N minutes (default 60; set 0 to disable)
Per-subagent tool policy: tools.subagents.tools.allow / tools.subagents.tools.deny (deny wins)

tools.profile sets a base tool allowlist before tools.allow/tools.deny:

minimal: session_status only
coding: group:fs, group:runtime, group:sessions, group:memory, image
messaging: group:messaging, sessions_list, sessions_history, sessions_send, session_status
full: no restriction (same as unset)

Per-agent override: agents.list[].tools.profile.

Example (messaging-only by default, allow Slack + Discord tools too):

{
  tools: {
    profile: "messaging",
    allow: ["slack", "discord"],
  },
}

Example (coding profile, but deny exec/process everywhere):

{
  tools: {
    profile: "coding",
    deny: ["group:runtime"],
  },
}

tools.byProvider låter dig ytterligare begränsa verktyg för specifika leverantörer (eller en enda provider/model). Per-agent åsidosätter: agents.list[].tools.byProvider.

Beställning: basprofil → leverantörsprofil → tillåta/neka policyer. Leverantörsnycklar accepterar antingen provider (t.ex. google-antigravity) eller provider/model (t.ex. openai/gpt-5.2).

Example (keep global coding profile, but minimal tools for Google Antigravity):

{
  tools: {
    profile: "coding",
    byProvider: {
      "google-antigravity": { profile: "minimal" },
    },
  },
}

Example (provider/model-specific allowlist):

{
  tools: {
    allow: ["group:fs", "group:runtime", "sessions_list"],
    byProvider: {
      "openai/gpt-5.2": { allow: ["group:fs", "sessions_list"] },
    },
  },
}

tools.allow / tools.deny konfigurera ett globalt verktyg tillåta/neka policy (neka vinster). Matchning är skiftlägesokänslig och stöder * jokertecken ("*" betyder alla verktyg). Detta tillämpas även när Docker-sandlådan är off.

Example (disable browser/canvas everywhere):

{
  tools: { deny: ["browser", "canvas"] },
}

Tool groups (shorthands) work in global and per-agent tool policies:

group:runtime: exec, bash, process
group:fs: read, write, edit, apply_patch
group:sessions: sessions_list, sessions_history, sessions_send, sessions_spawn, session_status
group:memory: memory_search, memory_get
group:web: web_search, web_fetch
group:ui: browser, canvas
group:automation: cron, gateway
group:messaging: message
group:nodes: nodes
group:openclaw: all built-in OpenClaw tools (excludes provider plugins)

tools.elevated controls elevated (host) exec access:

enabled: allow elevated mode (default true)
allowFrom: per-channel allowlists (empty = disabled)
whatsapp: E.164 numbers
telegram: chat ids or usernames
discord: user ids or usernames (falls back to channels.discord.dm.allowFrom if omitted)
signal: E.164 numbers
imessage: handles/chat ids
webchat: session ids or usernames

Example:

{
  tools: {
    elevated: {
      enabled: true,
      allowFrom: {
        whatsapp: ["+15555550123"],
        discord: ["steipete", "1234567890123"],
      },
    },
  },
}

Per-agent override (further restrict):

{
  agents: {
    list: [
      {
        id: "family",
        tools: {
          elevated: { enabled: false },
        },
      },
    ],
  },
}

Notes:

tools.elevated är den globala baslinjen. agents.list[].tools.elevated kan endast ytterligare begränsa (båda måste tillåta).
/elevated on|off|ask|full stores state per session key; inline directives apply to a single message.
Elevated exec runs on the host and bypasses sandboxing.
Tool policy still applies; if exec is denied, elevated cannot be used.

agents.defaults.maxConcurrent anger det maximala antalet inbäddade agentkörningar som kan köras parallellt mellan sessioner. Varje session är fortfarande serialiserad (en kör per sessionsnyckel åt gången). Standard: 1.

`agents.defaults.sandbox`¶

Valfri Docker sandboxning för den inbyggda agenten. Avsedd för icke-huvudsakliga sessioner så att de inte kan komma åt ditt värdsystem.

Details: Sandboxing

Defaults (if enabled):

scope: "agent" (one container + workspace per agent)
Debian bookworm-slim based image
agent workspace access: workspaceAccess: "none" (default)
"none": use a per-scope sandbox workspace under ~/.openclaw/sandboxes
"ro": keep the sandbox workspace at /workspace, and mount the agent workspace read-only at /agent (disables write/edit/apply_patch)
"rw": mount the agent workspace read/write at /workspace
auto-prune: idle > 24h OR age > 7d
tool policy: allow only exec, process, read, write, edit, apply_patch, sessions_list, sessions_history, sessions_send, sessions_spawn, session_status (deny wins)
configure via tools.sandbox.tools, override per-agent via agents.list[].tools.sandbox.tools
tool group shorthands supported in sandbox policy: group:runtime, group:fs, group:sessions, group:memory (see Sandbox vs Tool Policy vs Elevated)
optional sandboxed browser (Chromium + CDP, noVNC observer)
hardening knobs: network, user, pidsLimit, memory, cpus, ulimits, seccompProfile, apparmorProfile

Varning: scope: "shared" betyder en delad behållare och delad arbetsyta. Ingen tvärgående isolering. Använd scope: "session" för per-session-isolering.

Legacy: perSession is still supported (true → scope: "session", false → scope: "shared").

setupCommand körs en gång efter att behållaren skapats (inuti behållaren via sh -lc). För paket installerar, säkerställa nätverk egress, en skrivbar root FS, och en root-användare.

{
  agents: {
    defaults: {
      sandbox: {
        mode: "non-main", // off | non-main | all
        scope: "agent", // session | agent | shared (agent is default)
        workspaceAccess: "none", // none | ro | rw
        workspaceRoot: "~/.openclaw/sandboxes",
        docker: {
          image: "openclaw-sandbox:bookworm-slim",
          containerPrefix: "openclaw-sbx-",
          workdir: "/workspace",
          readOnlyRoot: true,
          tmpfs: ["/tmp", "/var/tmp", "/run"],
          network: "none",
          user: "1000:1000",
          capDrop: ["ALL"],
          env: { LANG: "C.UTF-8" },
          setupCommand: "apt-get update && apt-get install -y git curl jq",
          // Per-agent override (multi-agent): agents.list[].sandbox.docker.*
          pidsLimit: 256,
          memory: "1g",
          memorySwap: "2g",
          cpus: 1,
          ulimits: {
            nofile: { soft: 1024, hard: 2048 },
            nproc: 256,
          },
          seccompProfile: "/path/to/seccomp.json",
          apparmorProfile: "openclaw-sandbox",
          dns: ["1.1.1.1", "8.8.8.8"],
          extraHosts: ["internal.service:10.0.0.5"],
          binds: ["/var/run/docker.sock:/var/run/docker.sock", "/home/user/source:/source:rw"],
        },
        browser: {
          enabled: false,
          image: "openclaw-sandbox-browser:bookworm-slim",
          containerPrefix: "openclaw-sbx-browser-",
          cdpPort: 9222,
          vncPort: 5900,
          noVncPort: 6080,
          headless: false,
          enableNoVnc: true,
          allowHostControl: false,
          allowedControlUrls: ["http://10.0.0.42:18791"],
          allowedControlHosts: ["browser.lab.local", "10.0.0.42"],
          allowedControlPorts: [18791],
          autoStart: true,
          autoStartTimeoutMs: 12000,
        },
        prune: {
          idleHours: 24, // 0 disables idle pruning
          maxAgeDays: 7, // 0 disables max-age pruning
        },
      },
    },
  },
  tools: {
    sandbox: {
      tools: {
        allow: [
          "exec",
          "process",
          "read",
          "write",
          "edit",
          "apply_patch",
          "sessions_list",
          "sessions_history",
          "sessions_send",
          "sessions_spawn",
          "session_status",
        ],
        deny: ["browser", "canvas", "nodes", "cron", "discord", "gateway"],
      },
    },
  },
}

Build the default sandbox image once with:

scripts/sandbox-setup.sh

Note: sandbox containers default to network: "none"; set agents.defaults.sandbox.docker.network to "bridge" (or your custom network) if the agent needs outbound access.

Obs: Inkommande bilagor iscensätts i den aktiva arbetsytan vid media/inbound/*. Med workspaceAccess: "rw", betyder det att filer skrivs in i agentens arbetsyta.

Note: docker.binds mounts additional host directories; global and per-agent binds are merged.

Build the optional browser image with:

scripts/sandbox-browser-setup.sh

När agents.defaults.sandbox.browser.enabled=true, använder webbläsarverktyget en sandlåda Chromium-instans (CDP). Om noVNC är aktiverat (standard när headless=false), injiceras noVNC-URL i systemprompten så att agenten kan referera till den. Detta kräver inte browser.enabled i huvudkonfigurationen; sandboxen kontrollerar URL injiceras per session.

agents.defaults.sandbox.browser.allowHostControl (standard: false) tillåter sandlådade sessioner att uttryckligen rikta värd webbläsarkontrollserver via webbläsarverktyget (target: "host"). Lämna detta om du vill ha strikt sandlåda isolering.

Allowlists for remote control:

allowedControlUrls: exact control URLs permitted for target: "custom".
allowedControlHosts: hostnames permitted (hostname only, no port).
allowedControlPorts: tillåtna portar (standard: http=80, https=443). Standard: alla tillåtna listor är ogiltiga (ingen begränsning). allowHostControl standard är falsk.

`models` (custom providers + base URLs)¶

OpenClaw använder modellkatalogen pi-coding-agent Du kan lägga till anpassade leverantörer (LiteLLM, lokala OpenAI-kompatibla servrar, antropiska proxyer, etc.) genom att skriva ~/.openclaw/agent/<agentId>/agent/models.json eller genom att definiera samma schema i din OpenClaw config under models.providers. Leverantör-för-leverantör översikt + exempel: /concepts/model-providers.

When models.providers is present, OpenClaw writes/merges a models.json into ~/.openclaw/agents/<agentId>/agent/ on startup:

default behavior: merge (keeps existing providers, overrides on name)
set models.mode: "replace" to overwrite the file contents

Select the model via agents.defaults.model.primary (provider/model).

{
  agents: {
    defaults: {
      model: { primary: "custom-proxy/llama-3.1-8b" },
      models: {
        "custom-proxy/llama-3.1-8b": {},
      },
    },
  },
  models: {
    mode: "merge",
    providers: {
      "custom-proxy": {
        baseUrl: "http://localhost:4000/v1",
        apiKey: "LITELLM_KEY",
        api: "openai-completions",
        models: [
          {
            id: "llama-3.1-8b",
            name: "Llama 3.1 8B",
            reasoning: false,
            input: ["text"],
            cost: { input: 0, output: 0, cacheRead: 0, cacheWrite: 0 },
            contextWindow: 128000,
            maxTokens: 32000,
          },
        ],
      },
    },
  },
}

OpenCode Zen (multi-model proxy)¶

OpenCode Zen är en flermodellgateway med slutpunkter per modell. OpenClaw använder den inbyggda opencode-leverantören från pi-ai; sätt OPENCODE_API_KEY (eller OPENCODE_ZEN_API_KEY) från https://opencode.ai/auth.

Notes:

Model refs use opencode/<modelId> (example: opencode/claude-opus-4-6).
If you enable an allowlist via agents.defaults.models, add each model you plan to use.
Shortcut: openclaw onboard --auth-choice opencode-zen.

{
  agents: {
    defaults: {
      model: { primary: "opencode/claude-opus-4-6" },
      models: { "opencode/claude-opus-4-6": { alias: "Opus" } },
    },
  },
}

Z.AI (GLM-4.7) — provider alias support¶

Z.AI-modeller finns tillgängliga via den inbyggda zai-leverantören. Ange ZAI_API_KEY i din miljö och referera till modellen genom leverantör/modell.

Shortcut: openclaw onboard --auth-choice zai-api-key.

{
  agents: {
    defaults: {
      model: { primary: "zai/glm-4.7" },
      models: { "zai/glm-4.7": {} },
    },
  },
}

Notes:

z.ai/* and z-ai/* are accepted aliases and normalize to zai/*.
If ZAI_API_KEY is missing, requests to zai/* will fail with an auth error at runtime.
Example error: No API key found for provider "zai".
Z.AI:s allmänna API-slutpunkt är https://api.z.ai/api/paas/v4. GLM-kodning förfrågningar använder dedikerad kodningsslutpunkt https://api.z.ai/api/coding/paas/v4. Den inbyggda zai-leverantören använder kodningsslutpunkten. Om du behöver den allmänna slutpunkten, definiera en anpassad leverantör i models.providers med bas-URL åsidosättning (se avsnittet anpassade leverantörer ovan).
Use a fake placeholder in docs/configs; never commit real API keys.

Moonshot AI (Kimi)¶

Use Moonshot's OpenAI-compatible endpoint:

{
  env: { MOONSHOT_API_KEY: "sk-..." },
  agents: {
    defaults: {
      model: { primary: "moonshot/kimi-k2.5" },
      models: { "moonshot/kimi-k2.5": { alias: "Kimi K2.5" } },
    },
  },
  models: {
    mode: "merge",
    providers: {
      moonshot: {
        baseUrl: "https://api.moonshot.ai/v1",
        apiKey: "${MOONSHOT_API_KEY}",
        api: "openai-completions",
        models: [
          {
            id: "kimi-k2.5",
            name: "Kimi K2.5",
            reasoning: false,
            input: ["text"],
            cost: { input: 0, output: 0, cacheRead: 0, cacheWrite: 0 },
            contextWindow: 256000,
            maxTokens: 8192,
          },
        ],
      },
    },
  },
}

Notes:

Set MOONSHOT_API_KEY in the environment or use openclaw onboard --auth-choice moonshot-api-key.
Model ref: moonshot/kimi-k2.5.
For the China endpoint, either:
Run openclaw onboard --auth-choice moonshot-api-key-cn (wizard will set https://api.moonshot.cn/v1), or
Manually set baseUrl: "https://api.moonshot.cn/v1" in models.providers.moonshot.

Kimi Coding¶

Use Moonshot AI's Kimi Coding endpoint (Anthropic-compatible, built-in provider):

{
  env: { KIMI_API_KEY: "sk-..." },
  agents: {
    defaults: {
      model: { primary: "kimi-coding/k2p5" },
      models: { "kimi-coding/k2p5": { alias: "Kimi K2.5" } },
    },
  },
}

Notes:

Set KIMI_API_KEY in the environment or use openclaw onboard --auth-choice kimi-code-api-key.
Model ref: kimi-coding/k2p5.

Synthetic (Anthropic-compatible)¶

Use Synthetic's Anthropic-compatible endpoint:

{
  env: { SYNTHETIC_API_KEY: "sk-..." },
  agents: {
    defaults: {
      model: { primary: "synthetic/hf:MiniMaxAI/MiniMax-M2.1" },
      models: { "synthetic/hf:MiniMaxAI/MiniMax-M2.1": { alias: "MiniMax M2.1" } },
    },
  },
  models: {
    mode: "merge",
    providers: {
      synthetic: {
        baseUrl: "https://api.synthetic.new/anthropic",
        apiKey: "${SYNTHETIC_API_KEY}",
        api: "anthropic-messages",
        models: [
          {
            id: "hf:MiniMaxAI/MiniMax-M2.1",
            name: "MiniMax M2.1",
            reasoning: false,
            input: ["text"],
            cost: { input: 0, output: 0, cacheRead: 0, cacheWrite: 0 },
            contextWindow: 192000,
            maxTokens: 65536,
          },
        ],
      },
    },
  },
}

Notes:

Set SYNTHETIC_API_KEY or use openclaw onboard --auth-choice synthetic-api-key.
Model ref: synthetic/hf:MiniMaxAI/MiniMax-M2.1.
Base URL should omit /v1 because the Anthropic client appends it.

Local models (LM Studio) — recommended setup¶

Se /gateway/local-models för den aktuella lokala vägledningen. TL;DR: kör MiniMax M2.1 via LM Studio Responses API på seriös hårdvara, hålla värdmodeller sammanslagna för reserv.

MiniMax M2.1¶

Use MiniMax M2.1 directly without LM Studio:

{
  agent: {
    model: { primary: "minimax/MiniMax-M2.1" },
    models: {
      "anthropic/claude-opus-4-6": { alias: "Opus" },
      "minimax/MiniMax-M2.1": { alias: "Minimax" },
    },
  },
  models: {
    mode: "merge",
    providers: {
      minimax: {
        baseUrl: "https://api.minimax.io/anthropic",
        apiKey: "${MINIMAX_API_KEY}",
        api: "anthropic-messages",
        models: [
          {
            id: "MiniMax-M2.1",
            name: "MiniMax M2.1",
            reasoning: false,
            input: ["text"],
            // Pricing: update in models.json if you need exact cost tracking.
            cost: { input: 15, output: 60, cacheRead: 2, cacheWrite: 10 },
            contextWindow: 200000,
            maxTokens: 8192,
          },
        ],
      },
    },
  },
}

Notes:

Set MINIMAX_API_KEY environment variable or use openclaw onboard --auth-choice minimax-api.
Available model: MiniMax-M2.1 (default).
Update pricing in models.json if you need exact cost tracking.

Cerebras (GLM 4.6 / 4.7)¶

Use Cerebras via their OpenAI-compatible endpoint:

{
  env: { CEREBRAS_API_KEY: "sk-..." },
  agents: {
    defaults: {
      model: {
        primary: "cerebras/zai-glm-4.7",
        fallbacks: ["cerebras/zai-glm-4.6"],
      },
      models: {
        "cerebras/zai-glm-4.7": { alias: "GLM 4.7 (Cerebras)" },
        "cerebras/zai-glm-4.6": { alias: "GLM 4.6 (Cerebras)" },
      },
    },
  },
  models: {
    mode: "merge",
    providers: {
      cerebras: {
        baseUrl: "https://api.cerebras.ai/v1",
        apiKey: "${CEREBRAS_API_KEY}",
        api: "openai-completions",
        models: [
          { id: "zai-glm-4.7", name: "GLM 4.7 (Cerebras)" },
          { id: "zai-glm-4.6", name: "GLM 4.6 (Cerebras)" },
        ],
      },
    },
  },
}

Notes:

Use cerebras/zai-glm-4.7 for Cerebras; use zai/glm-4.7 for Z.AI direct.
Set CEREBRAS_API_KEY in the environment or config.

Notes:

Supported APIs: openai-completions, openai-responses, anthropic-messages, google-generative-ai
Use authHeader: true + headers for custom auth needs.
Override the agent config root with OPENCLAW_AGENT_DIR (or PI_CODING_AGENT_DIR) if you want models.json stored elsewhere (default: ~/.openclaw/agents/main/agent).

`session`¶

Controls session scoping, reset policy, reset triggers, and where the session store is written.

{
  session: {
    scope: "per-sender",
    dmScope: "main",
    identityLinks: {
      alice: ["telegram:123456789", "discord:987654321012345678"],
    },
    reset: {
      mode: "daily",
      atHour: 4,
      idleMinutes: 60,
    },
    resetByType: {
      thread: { mode: "daily", atHour: 4 },
      direct: { mode: "idle", idleMinutes: 240 },
      group: { mode: "idle", idleMinutes: 120 },
    },
    resetTriggers: ["/new", "/reset"],
    // Default is already per-agent under ~/.openclaw/agents/<agentId>/sessions/sessions.json
    // You can override with {agentId} templating:
    store: "~/.openclaw/agents/{agentId}/sessions/sessions.json",
    // Direct chats collapse to agent:<agentId>:<mainKey> (default: "main").
    mainKey: "main",
    agentToAgent: {
      // Max ping-pong reply turns between requester/target (0–5).
      maxPingPongTurns: 5,
    },
    sendPolicy: {
      rules: [{ action: "deny", match: { channel: "discord", chatType: "group" } }],
      default: "allow",
    },
  },
}

Fields:

mainKey: direktchatt hink nyckel (standard: "main"). Användbart när du vill ”byta namn” den primära DM-tråden utan att ändra agentId.
Sandbox-anteckning: agents.defaults.sandbox.mode: "non-main" använder denna nyckel för att upptäcka huvudsessionen. Alla sessionsnycklar som inte matchar mainKey (grupper/kanaler) är sandlådade.
dmScope: how DM sessions are grouped (default: "main").
main: all DMs share the main session for continuity.
per-peer: isolate DMs by sender id across channels.
per-channel-peer: isolate DMs per channel + sender (recommended for multi-user inboxes).
per-account-channel-peer: isolate DMs per account + channel + sender (recommended for multi-account inboxes).
Secure DM mode (recommended): set session.dmScope: "per-channel-peer" when multiple people can DM the bot (shared inboxes, multi-person allowlists, or dmPolicy: "open").
identityLinks: map canonical ids to provider-prefixed peers so the same person shares a DM session across channels when using per-peer, per-channel-peer, or per-account-channel-peer.
Example: alice: ["telegram:123456789", "discord:987654321012345678"].
reset: primär återställningspolicy. Standard för daglig återställning vid 4:00 AM lokal tid på gatewayvärden.
mode: daily or idle (default: daily when reset is present).
atHour: local hour (0-23) for the daily reset boundary.
idleMinutes: glida inaktiv fönster på några minuter. När dagligen + inaktiv är båda konfigurerade, vilket som löper ut första vinner.
resetByType: per-session overrides for direct, group, and thread. Legacy dm key is accepted as an alias for direct.
If you only set legacy session.idleMinutes without any reset/resetByType, OpenClaw stays in idle-only mode for backward compatibility.
heartbeatIdleMinutes: optional idle override for heartbeat checks (daily reset still applies when enabled).
agentToAgent.maxPingPongTurns: max reply-back turns between requester/target (0–5, default 5).
sendPolicy.default: allow or deny fallback when no rule matches.
sendPolicy.rules[]: match by channel, chatType (direct<unk> group<unk> room), eller keyPrefix (t.ex. cron:). Förneka först vinster; annars tillåter.

`skills` (skills config)¶

Controls bundled allowlist, install preferences, extra skill folders, and per-skill overrides. Gäller buntade färdigheter och ~/.openclaw/skills (färdigheter i arbetsyta vinner fortfarande på namnkonflikter).

Fields:

allowBundled: valfri tillåten lista för bundna färdigheter endast. Om angivet, är endast de medföljande färdigheterna berättigade (hanterade / arbetsytan opåverkade).
load.extraDirs: additional skill directories to scan (lowest precedence).
install.preferBrew: prefer brew installers when available (default: true).
install.nodeManager: node installer preference (npm | pnpm | yarn, default: npm).
entries.<skillKey>: konfigurationsöverskridanden per skicklighet.

Per-skill fields:

enabled: set false to disable a skill even if it’s bundled/installed.
env: environment variables injected for the agent run (only if not already set).
apiKey: optional convenience for skills that declare a primary env var (e.g. nano-banana-pro → GEMINI_API_KEY).

Example:

{
  skills: {
    allowBundled: ["gemini", "peekaboo"],
    load: {
      extraDirs: ["~/Projects/agent-scripts/skills", "~/Projects/oss/some-skill-pack/skills"],
    },
    install: {
      preferBrew: true,
      nodeManager: "npm",
    },
    entries: {
      "nano-banana-pro": {
        apiKey: "GEMINI_KEY_HERE",
        env: {
          GEMINI_API_KEY: "GEMINI_KEY_HERE",
        },
      },
      peekaboo: { enabled: true },
      sag: { enabled: false },
    },
  },
}

`plugins` (extensions)¶

Kontrollerar plugin-upptäckt, tillåter/förneka, och per-plugin-konfiguration. Plugins laddas från ~/.openclaw/extensions, <workspace>/.openclaw/extensions, plus alla plugins.load.paths-poster. Konfigurationsändringar kräver en omstart av gatewayen. Se /plugin för full användning.

Fields:

enabled: master toggle for plugin loading (default: true).
allow: optional allowlist of plugin ids; when set, only listed plugins load.
deny: optional denylist of plugin ids (deny wins).
load.paths: extra plugin files or directories to load (absolute or ~).
entries.<pluginId>: åsidosättningar per plugin.
enabled: set false to disable.
config: plugin-specific config object (validated by the plugin if provided).

Example:

{
  plugins: {
    enabled: true,
    allow: ["voice-call"],
    load: {
      paths: ["~/Projects/oss/voice-call-extension"],
    },
    entries: {
      "voice-call": {
        enabled: true,
        config: {
          provider: "twilio",
        },
      },
    },
  },
}

`browser` (openclaw-managed browser)¶

OpenClaw kan starta en dedikerad, isolerad Chrome/Brave/Edge/Chromium instans för openclaw och exponera en liten loopback kontrolltjänst. Profiler kan peka mot en fjärr Chromium-baserad webbläsare via profiles.<name>.cdpUrl. Remote -profiler är bifogade (start/stopp/reset är inaktiverade).

browser.cdpUrl remains for legacy single-profile configs and as the base scheme/host for profiles that only set cdpPort.

Defaults:

enabled: true
evaluateEnabled: true (set false to disable act:evaluate and wait --fn)
control service: loopback only (port derived from gateway.port, default 18791)
CDP URL: http://127.0.0.1:18792 (control service + 1, legacy single-profile)
profile color: #FF4500 (lobster-orange)
Note: the control server is started by the running gateway (OpenClaw.app menubar, or openclaw gateway).
Auto-detect order: default browser if Chromium-based; otherwise Chrome → Brave → Edge → Chromium → Chrome Canary.

{
  browser: {
    enabled: true,
    evaluateEnabled: true,
    // cdpUrl: "http://127.0.0.1:18792", // legacy single-profile override
    defaultProfile: "chrome",
    profiles: {
      openclaw: { cdpPort: 18800, color: "#FF4500" },
      work: { cdpPort: 18801, color: "#0066CC" },
      remote: { cdpUrl: "http://10.0.0.42:9222", color: "#00AA00" },
    },
    color: "#FF4500",
    // Advanced:
    // headless: false,
    // noSandbox: false,
    // executablePath: "/Applications/Brave Browser.app/Contents/MacOS/Brave Browser",
    // attachOnly: false, // set true when tunneling a remote CDP to localhost
  },
}

`ui` (Appearance)¶

Optional accent color used by the native apps for UI chrome (e.g. Talk Mode bubble tint).

If unset, clients fall back to a muted light-blue.

{
  ui: {
    seamColor: "#FF4500", // hex (RRGGBB or #RRGGBB)
    // Optional: Control UI assistant identity override.
    // If unset, the Control UI uses the active agent identity (config or IDENTITY.md).
    assistant: {
      name: "OpenClaw",
      avatar: "CB", // emoji, short text, or image URL/data URI
    },
  },
}

`gateway` (Gateway server mode + bind)¶

Use gateway.mode to explicitly declare whether this machine should run the Gateway.

Defaults:

mode: unset (treated as “do not auto-start”)
bind: loopback
port: 18789 (single port for WS + HTTP)

{
  gateway: {
    mode: "local", // or "remote"
    port: 18789, // WS + HTTP multiplex
    bind: "loopback",
    // controlUi: { enabled: true, basePath: "/openclaw" }
    // auth: { mode: "token", token: "your-token" } // token gates WS + Control UI access
    // tailscale: { mode: "off" | "serve" | "funnel" }
  },
}

Control UI base path:

gateway.controlUi.basePath sets the URL prefix where the Control UI is served.
Examples: "/ui", "/openclaw", "/apps/openclaw".
Default: root (/) (unchanged).
gateway.controlUi.root sets the filesystem root for Control UI assets (default: dist/control-ui).
gateway.controlUi.allowInsecureAuth tillåter token-only auth för Control UI när enhetsidentitet utelämnas (vanligtvis över HTTP). Standard: false. Föredrar HTTPS (Tailscale Serve) eller 127.0.0.1.
gateway.controlUi.dangerouslyDisableDeviceAuth inaktiverar enhetsidentitetskontroller för kontrollgränssnitt (endast token/lösenord). Standard: false. Endast Break-glas.

Related docs:

Trusted proxies:

gateway.trustedProxies: list of reverse proxy IPs that terminate TLS in front of the Gateway.
When a connection comes from one of these IPs, OpenClaw uses x-forwarded-for (or x-real-ip) to determine the client IP for local pairing checks and HTTP auth/local checks.
Only list proxies you fully control, and ensure they overwrite incoming x-forwarded-for.

Notes:

openclaw gateway refuses to start unless gateway.mode is set to local (or you pass the override flag).
gateway.port controls the single multiplexed port used for WebSocket + HTTP (control UI, hooks, A2UI).
OpenAI Chat Completions endpoint: disabled by default; enable with gateway.http.endpoints.chatCompletions.enabled: true.
Precedence: --port > OPENCLAW_GATEWAY_PORT > gateway.port > default 18789.
Gateway auth krävs som standard (token/lösenord eller Tailscale Serve identitet). Icke-loopback binder kräver ett delat token/lösenord.
The onboarding wizard generates a gateway token by default (even on loopback).
gateway.remote.token är bara för fjärr-CLI-samtal; det aktiverar inte lokal gateway auth. gateway.token ignoreras.

Auth and Tailscale:

gateway.auth.mode sätter handskakningskraven (token eller password). När inaktiverad, antas token auth.
gateway.auth.token stores the shared token for token auth (used by the CLI on the same machine).
When gateway.auth.mode is set, only that method is accepted (plus optional Tailscale headers).
gateway.auth.password can be set here, or via OPENCLAW_GATEWAY_PASSWORD (recommended).
gateway.auth.allowTailscale tillåter Tailscale Serve identitetshuvuden (tailscale-user-login) att tillfredsställa auth när begäran anländer på loopback med x-forwarded-for, x-forwarded-proto och x-forwarded-host. OpenClaw verifierar identiteten genom att lösa x-forwarded-for-adressen via tailscale whois innan du accepterar den. När true, Serve requests inte behöver ett token/password; sätt false att kräva explicita autentiseringsuppgifter. Standardvärdet är true när tailscale.mode = "serve" och auth läge är inte password.
gateway.tailscale.mode: "serve" uses Tailscale Serve (tailnet only, loopback bind).
gateway.tailscale.mode: "funnel" exposes the dashboard publicly; requires auth.
gateway.tailscale.resetOnExit resets Serve/Funnel config on shutdown.

Remote client defaults (CLI):

gateway.remote.url sets the default Gateway WebSocket URL for CLI calls when gateway.mode = "remote".
gateway.remote.transport väljer macOS fjärrtransport (ssh default, direct för ws/wss). När direct, gateway.remote.url måste vara ws:// eller wss://. ws://host standard är port 18789.
gateway.remote.token supplies the token for remote calls (leave unset for no auth).
gateway.remote.password supplies the password for remote calls (leave unset for no auth).

macOS app behavior:

OpenClaw.app watches ~/.openclaw/openclaw.json and switches modes live when gateway.mode or gateway.remote.url changes.
If gateway.mode is unset but gateway.remote.url is set, the macOS app treats it as remote mode.
When you change connection mode in the macOS app, it writes gateway.mode (and gateway.remote.url + gateway.remote.transport in remote mode) back to the config file.

{
  gateway: {
    mode: "remote",
    remote: {
      url: "ws://gateway.tailnet:18789",
      token: "your-token",
      password: "your-password",
    },
  },
}

Direct transport example (macOS app):

{
  gateway: {
    mode: "remote",
    remote: {
      transport: "direct",
      url: "wss://gateway.example.ts.net",
      token: "your-token",
    },
  },
}

`gateway.reload` (Config hot reload)¶

The Gateway watches ~/.openclaw/openclaw.json (or OPENCLAW_CONFIG_PATH) and applies changes automatically.

Modes:

hybrid (default): hot-apply safe changes; restart the Gateway for critical changes.
hot: only apply hot-safe changes; log when a restart is required.
restart: restart the Gateway on any config change.
off: disable hot reload.

{
  gateway: {
    reload: {
      mode: "hybrid",
      debounceMs: 300,
    },
  },
}

Hot reload matrix (files + impact)¶

Files watched:

~/.openclaw/openclaw.json (or OPENCLAW_CONFIG_PATH)

Hot-applied (no full gateway restart):

hooks (webhook auth/path/mappings) + hooks.gmail (Gmail watcher restarted)
browser (browser control server restart)
cron (cron service restart + concurrency update)
agents.defaults.heartbeat (heartbeat runner restart)
web (WhatsApp web channel restart)
telegram, discord, signal, imessage (channel restarts)
agent, models, routing, messages, session, whatsapp, logging, skills, ui, talk, identity, wizard (dynamic reads)

Requires full Gateway restart:

gateway (port/bind/auth/control UI/tailscale)
bridge (legacy)
discovery
canvasHost
plugins
Any unknown/unsupported config path (defaults to restart for safety)

Multi-instance isolation¶

To run multiple gateways on one host (for redundancy or a rescue bot), isolate per-instance state + config and use unique ports:

OPENCLAW_CONFIG_PATH (per-instance config)
OPENCLAW_STATE_DIR (sessions/creds)
agents.defaults.workspace (memories)
gateway.port (unique per instance)

Convenience flags (CLI):

openclaw --dev … → uses ~/.openclaw-dev + shifts ports from base 19001
openclaw --profile <name> … → uses ~/.openclaw-<name> (port via config/env/flags)

Se Gateway runbook för härledd portmappning (gateway/browser/canvas). Se Flera gateways för webbläsare/CDP-portisoleringsdetaljer.

Example:

OPENCLAW_CONFIG_PATH=~/.openclaw/a.json \
OPENCLAW_STATE_DIR=~/.openclaw-a \
openclaw gateway --port 19001

`hooks` (Gateway webhooks)¶

Enable a simple HTTP webhook endpoint on the Gateway HTTP server.

Defaults:

enabled: false
path: /hooks
maxBodyBytes: 262144 (256 KB)

{
  hooks: {
    enabled: true,
    token: "shared-secret",
    path: "/hooks",
    presets: ["gmail"],
    transformsDir: "~/.openclaw/hooks",
    mappings: [
      {
        match: { path: "gmail" },
        action: "agent",
        wakeMode: "now",
        name: "Gmail",
        sessionKey: "hook:gmail:{{messages[0].id}}",
        messageTemplate: "From: {{messages[0].from}}\nSubject: {{messages[0].subject}}\n{{messages[0].snippet}}",
        deliver: true,
        channel: "last",
        model: "openai/gpt-5.2-mini",
      },
    ],
  },
}

Requests must include the hook token:

Authorization: Bearer <token> or
x-openclaw-token: <token>

Endpoints:

POST /hooks/wake → { text, mode?: "now"|"next-heartbeat" }
POST /hooks/agent → { message, name?, sessionKey?, wakeMode?, levererar?, kanal?, till?, modell?, tänker?, timeoutSeconds? }
POST /hooks/<name> → resolved via hooks.mappings

/hooks/agent always posts a summary into the main session (and can optionally trigger an immediate heartbeat via wakeMode: "now").

Mapping notes:

match.path matches the sub-path after /hooks (e.g. /hooks/gmail → gmail).
match.source matches a payload field (e.g. { source: "gmail" }) so you can use a generic /hooks/ingest path.
Templates like {{messages[0].subject}} read from the payload.
transform can point to a JS/TS module that returns a hook action.
deliver: true sends the final reply to a channel; channel defaults to last (falls back to WhatsApp).
If there is no prior delivery route, set channel + to explicitly (required for Telegram/Discord/Google Chat/Slack/Signal/iMessage/MS Teams).
model overrides the LLM for this hook run (provider/model or alias; must be allowed if agents.defaults.models is set).

Gmail helper config (used by openclaw webhooks gmail setup / run):

{
  hooks: {
    gmail: {
      account: "openclaw@gmail.com",
      topic: "projects/<project-id>/topics/gog-gmail-watch",
      subscription: "gog-gmail-watch-push",
      pushToken: "shared-push-token",
      hookUrl: "http://127.0.0.1:18789/hooks/gmail",
      includeBody: true,
      maxBytes: 20000,
      renewEveryMinutes: 720,
      serve: { bind: "127.0.0.1", port: 8788, path: "/" },
      tailscale: { mode: "funnel", path: "/gmail-pubsub" },

      // Optional: use a cheaper model for Gmail hook processing
      // Falls back to agents.defaults.model.fallbacks, then primary, on auth/rate-limit/timeout
      model: "openrouter/meta-llama/llama-3.3-70b-instruct:free",
      // Optional: default thinking level for Gmail hooks
      thinking: "off",
    },
  },
}

Model override for Gmail hooks:

hooks.gmail.model specifies a model to use for Gmail hook processing (defaults to session primary).
Accepts provider/model refs or aliases from agents.defaults.models.
Falls back to agents.defaults.model.fallbacks, then agents.defaults.model.primary, on auth/rate-limit/timeouts.
If agents.defaults.models is set, include the hooks model in the allowlist.
At startup, warns if the configured model is not in the model catalog or allowlist.
hooks.gmail.thinking sets the default thinking level for Gmail hooks and is overridden by per-hook thinking.

Gateway auto-start:

If hooks.enabled=true and hooks.gmail.account is set, the Gateway starts gog gmail watch serve on boot and auto-renews the watch.
Set OPENCLAW_SKIP_GMAIL_WATCHER=1 to disable the auto-start (for manual runs).
Avoid running a separate gog gmail watch serve alongside the Gateway; it will fail with listen tcp 127.0.0.1:8788: bind: address already in use.

Obs: när tailscale.mode är på, OpenClaw defaults serve.path till / så Tailscale kan proxy /gmail-pubsub korrekt (det tar bort set-path prefix). Om du behöver backend för att ta emot den prefixade sökvägen, sätt hooks.gmail.tailscale.target till en fullständig URL (och anpassa serve.path).

`canvasHost` (LAN/tailnet Canvas file server + live reload)¶

The Gateway serves a directory of HTML/CSS/JS over HTTP so iOS/Android nodes can simply canvas.navigate to it.

Default root: ~/.openclaw/workspace/canvas
Default port: 18793 (chosen to avoid the openclaw browser CDP port 18792)
The server listens on the gateway bind host (LAN or Tailnet) so nodes can reach it.

The server:

serves files under canvasHost.root
injects a tiny live-reload client into served HTML
watches the directory and broadcasts reloads over a WebSocket endpoint at /__openclaw__/ws
auto-creates a starter index.html when the directory is empty (so you see something immediately)
also serves A2UI at /__openclaw__/a2ui/ and is advertised to nodes as canvasHostUrl (always used by nodes for Canvas/A2UI)

Disable live reload (and file watching) if the directory is large or you hit EMFILE:

config: canvasHost: { liveReload: false }

{
  canvasHost: {
    root: "~/.openclaw/workspace/canvas",
    port: 18793,
    liveReload: true,
  },
}

Changes to canvasHost.* require a gateway restart (config reload will restart).

Disable with:

config: canvasHost: { enabled: false }
env: OPENCLAW_SKIP_CANVAS_HOST=1

`bridge` (legacy TCP bridge, removed)¶

Aktuella byggen innehåller inte längre TCP-brygglyssnare; bridge.* konfigurationsnycklar ignoreras. Noder ansluter över Gateway WebSocket. Detta avsnitt hålls för historisk referens.

Legacy behavior:

The Gateway could expose a simple TCP bridge for nodes (iOS/Android), typically on port 18790.

Defaults:

enabled: true
port: 18790
bind: lan (binds to 0.0.0.0)

Bind modes:

lan: 0.0.0.0 (reachable on any interface, including LAN/Wi‑Fi and Tailscale)
tailnet: bind only to the machine’s Tailscale IP (recommended for Vienna ⇄ London)
loopback: 127.0.0.1 (local only)
auto: prefer tailnet IP if present, else lan

TLS:

bridge.tls.enabled: enable TLS for bridge connections (TLS-only when enabled).
bridge.tls.autoGenerate: generate a self-signed cert when no cert/key are present (default: true).
bridge.tls.certPath / bridge.tls.keyPath: PEM paths for the bridge certificate + private key.
bridge.tls.caPath: optional PEM CA bundle (custom roots or future mTLS).

När TLS är aktiverad annonserar Gateway bridgeTls=1 och bridgeTlsSha256 i upptäckten TXT poster så att noder kan fästa certifikatet. Manuella anslutningar använder trust-on-first use om inget fingeravtryck lagras ännu. Auto-genererade certs kräver openssl på PATH; om generering misslyckas, kommer bryggan inte starta.

{
  bridge: {
    enabled: true,
    port: 18790,
    bind: "tailnet",
    tls: {
      enabled: true,
      // Uses ~/.openclaw/bridge/tls/bridge-{cert,key}.pem when omitted.
      // certPath: "~/.openclaw/bridge/tls/bridge-cert.pem",
      // keyPath: "~/.openclaw/bridge/tls/bridge-key.pem"
    },
  },
}

`discovery.mdns` (Bonjour / mDNS broadcast mode)¶

Controls LAN mDNS discovery broadcasts (_openclaw-gw._tcp).

minimal (default): omit cliPath + sshPort from TXT records
full: include cliPath + sshPort in TXT records
off: disable mDNS broadcasts entirely
Värdnamn: standard är openclaw (annonserar openclaw.local). Åsidosätt med OPENCLAW_MDNS_HOSTNAME.

{
  discovery: { mdns: { mode: "minimal" } },
}

`discovery.wideArea` (Wide-Area Bonjour / unicast DNS‑SD)¶

When enabled, the Gateway writes a unicast DNS-SD zone for _openclaw-gw._tcp under ~/.openclaw/dns/ using the configured discovery domain (example: openclaw.internal.).

To make iOS/Android discover across networks (Vienna ⇄ London), pair this with:

a DNS server on the gateway host serving your chosen domain (CoreDNS is recommended)
Tailscale split DNS so clients resolve that domain via the gateway DNS server

One-time setup helper (gateway host):

openclaw dns setup --apply

{
  discovery: { wideArea: { enabled: true } },
}

Media model template variables¶

Template placeholders are expanded in tools.media.*.models[].args and tools.media.models[].args (and any future templated argument fields).

Variabel Beskrivning ------------------------------------------------------------------------------------------------------- -------- ------- ---------- ----- ------ -------- ------- --- {{Body}} Fullständig inkommande meddelandekropp {{RawBody}} Rå inkommande meddelandekropp (ingen historik/avsändaromslag; bäst för kommandot parsing) {{BodyStripped}} Body med gruppen omnämnanden borttagna (bästa standard för agenter) {{From}} Sender identifierare (E. 64 för WhatsApp kan skilja sig åt per kanal) {{To}} Destination identifierare {{MessageSid}} Channel meddelande id (när tillgängligt) {{SessionId}} Current session UUID {{IsNewSession}} "true" när en ny session skapades {{MediaUrl}} Inkommande media pseudo-URL (om närvarande) {{MediaPath}} Lokal mediakurs (om nedladdning) {{MediaType}} Mediatyp (bild/ljud/dokument/…) | | {{Transcript}} | Audio transcript (when enabled) | | {{Prompt}} | Resolved media prompt for CLI entries | | {{MaxChars}} | Resolved max output chars for CLI entries | | {{ChatType}} | "direct" or "group" | | {{GroupSubject}} | Group subject (best effort) | | {{GroupMembers}} | Group members preview (best effort) | | {{SenderName}} | Sender display name (best effort) | | {{SenderE164}} | Sender phone number (best effort) | | {{Provider}} | Provider hint (whatsapp | telegram | discord | googlechat | slack | signal | imessage | msteams | webchat | …) |

Cron (Gateway scheduler)¶

Cron är en Gateway-ägd schemaläggare för wakeups och schemalagda jobb. Se Cron jobs för funktionen översikt och CLI exempel.

{
  cron: {
    enabled: true,
    maxConcurrentRuns: 2,
  },
}

Next: Agent Runtime 🦞

Gateway

Remote access

Security

Web interfaces

Configuration 🔧¶

Strict config validation¶

Schema + UI hints¶

Apply + restart (RPC)¶

Partial updates (RPC)¶

Minimal config (recommended starting point)¶

Self-chat mode (recommended for group control)¶

Config Includes ($include)¶

Basic usage¶

Merge behavior¶

Nested includes¶

Path resolution¶

Error handling¶

Example: Multi-client legal setup¶

Common options¶

Env vars + .env¶

env.shellEnv (optional)¶

Env var substitution in config¶

Auth storage (OAuth + API keys)¶

auth¶

agents.list[].identity¶

wizard¶

logging¶

channels.whatsapp.dmPolicy¶

channels.whatsapp.allowFrom¶

channels.whatsapp.sendReadReceipts¶

channels.whatsapp.accounts (multi-account)¶

channels.telegram.accounts / channels.discord.accounts / channels.googlechat.accounts / channels.slack.accounts / channels.mattermost.accounts / channels.signal.accounts / channels.imessage.accounts¶

Group chat mention gating (agents.list[].groupChat + messages.groupChat)¶

DM history limits¶

Group policy (per channel)¶

Multi-agent routing (agents.list + bindings)¶

Per-agent access profiles (multi-agent)¶

tools.agentToAgent (optional)¶

messages.queue¶

messages.inbound¶

commands (chat command handling)¶

web (WhatsApp web channel runtime)¶

channels.telegram (bot transport)¶

channels.discord (bot transport)¶

channels.googlechat (Chat API webhook)¶

channels.slack (socket mode)¶

channels.mattermost (bot token)¶

channels.signal (signal-cli)¶

channels.imessage (imsg CLI)¶

agents.defaults.workspace¶

agents.defaults.repoRoot¶

agents.defaults.skipBootstrap¶

agents.defaults.bootstrapMaxChars¶

agents.defaults.userTimezone¶

agents.defaults.timeFormat¶

messages¶

Template variables¶

messages.tts¶

talk¶

agents.defaults¶

agents.defaults.cliBackends (CLI fallback)¶

agents.defaults.contextPruning (tool-result pruning)¶

agents.defaults.compaction (reserve headroom + memory flush)¶

agents.defaults.sandbox¶

models (custom providers + base URLs)¶

OpenCode Zen (multi-model proxy)¶

Z.AI (GLM-4.7) — provider alias support¶

Moonshot AI (Kimi)¶

Kimi Coding¶

Synthetic (Anthropic-compatible)¶

Local models (LM Studio) — recommended setup¶

MiniMax M2.1¶

Cerebras (GLM 4.6 / 4.7)¶

session¶

skills (skills config)¶

plugins (extensions)¶

browser (openclaw-managed browser)¶

ui (Appearance)¶

gateway (Gateway server mode + bind)¶

gateway.reload (Config hot reload)¶

Config Includes (`$include`)¶

Env vars + `.env`¶

`env.shellEnv` (optional)¶

`auth`¶

`agents.list[].identity`¶

`wizard`¶

`logging`¶

`channels.whatsapp.dmPolicy`¶

`channels.whatsapp.allowFrom`¶

`channels.whatsapp.sendReadReceipts`¶

`channels.whatsapp.accounts` (multi-account)¶

`channels.telegram.accounts` / `channels.discord.accounts` / `channels.googlechat.accounts` / `channels.slack.accounts` / `channels.mattermost.accounts` / `channels.signal.accounts` / `channels.imessage.accounts`¶

Group chat mention gating (`agents.list[].groupChat` + `messages.groupChat`)¶

Multi-agent routing (`agents.list` + `bindings`)¶

`tools.agentToAgent` (optional)¶

`messages.queue`¶

`messages.inbound`¶

`commands` (chat command handling)¶

`web` (WhatsApp web channel runtime)¶

`channels.telegram` (bot transport)¶

`channels.discord` (bot transport)¶

`channels.googlechat` (Chat API webhook)¶

`channels.slack` (socket mode)¶

`channels.mattermost` (bot token)¶

`channels.signal` (signal-cli)¶

`channels.imessage` (imsg CLI)¶

`agents.defaults.workspace`¶

`agents.defaults.repoRoot`¶

`agents.defaults.skipBootstrap`¶

`agents.defaults.bootstrapMaxChars`¶

`agents.defaults.userTimezone`¶

`agents.defaults.timeFormat`¶

`messages`¶

`messages.tts`¶

`talk`¶

`agents.defaults`¶

`agents.defaults.cliBackends` (CLI fallback)¶

`agents.defaults.contextPruning` (tool-result pruning)¶

`agents.defaults.compaction` (reserve headroom + memory flush)¶

`agents.defaults.sandbox`¶

`models` (custom providers + base URLs)¶

`session`¶

`skills` (skills config)¶

`plugins` (extensions)¶

`browser` (openclaw-managed browser)¶

`ui` (Appearance)¶

`gateway` (Gateway server mode + bind)¶

`gateway.reload` (Config hot reload)¶

`hooks` (Gateway webhooks)¶

`canvasHost` (LAN/tailnet Canvas file server + live reload)¶

`bridge` (legacy TCP bridge, removed)¶

`discovery.mdns` (Bonjour / mDNS broadcast mode)¶

`discovery.wideArea` (Wide-Area Bonjour / unicast DNS‑SD)¶