@brantrusnak/openclaw-omadeus 1.0.2 → 1.0.4

package/README.md

@@ -1,61 +1,44 @@
 # OpenClaw Omadeus Plugin
 
-[Omadeus](https://omadeus.com) plugin for [OpenClaw](https://www.npmjs.com/package/openclaw).
+[![Socket Badge](https://badge.socket.dev/npm/package/@brantrusnak/openclaw-omadeus)](https://badge.socket.dev/npm/package/@brantrusnak/openclaw-omadeus)
+[![CI](https://github.com/brantrusnak/openclaw-omadeus-plugin/actions/workflows/npm-publish.yml/badge.svg)](https://github.com/brantrusnak/openclaw-omadeus-plugin/actions/workflows/npm-publish.yml)
+[![npm version](https://img.shields.io/npm/v/@brantrusnak/openclaw-omadeus)](https://www.npmjs.com/package/@brantrusnak/openclaw-omadeus)
+[![License: ISC](https://img.shields.io/npm/l/@brantrusnak/openclaw-omadeus)](https://www.npmjs.com/package/@brantrusnak/openclaw-omadeus)
 
-This plugin connects OpenClaw to Omadeus over WebSocket so OpenClaw can listen
-for Omadeus messages and reply through the selected Omadeus channel.
+[Omadeus](https://omadeus.com) plugin for [OpenClaw](https://www.npmjs.com/package/openclaw).
 
 ## Requirements
 
 - Node.js 22 or newer
 - OpenClaw 2026.4.10 or newer
-- An Omadeus account with access to the organization and channel you want
-  OpenClaw to use
+- An Omadeus account
 
 ## Install
 
-Install OpenClaw first:
-
 ```bash
 npm install -g openclaw
+openclaw plugins install @brantrusnak/openclaw-omadeus
 ```
 
-Set up OpenClaw if you have not already:
-
-```bash
-openclaw onboard
-```
-
-Then install this plugin with the OpenClaw plugin command:
+Verify the plugin was installed:
 
 ```bash
-openclaw plugins install @brantrusnak/openclaw-omadeus
+openclaw plugins list
 ```
 
-You can confirm OpenClaw discovered the plugin with:
+Then run setup:
 
 ```bash
-openclaw plugins list
-openclaw plugins inspect omadeus
+openclaw onboard
 ```
 
 ## Configure
 
-After installing the plugin, run OpenClaw configuration and choose Omadeus when
-prompted:
-
 ```bash
 openclaw configure
 ```
 
-The Omadeus setup flow asks for:
-
-- Omadeus email and password
-- Organization ID
-- The Omadeus member/account to listen as
-- The Omadeus channel to use for messages
-
-The plugin also supports these environment variables:
+You can also set credentials via environment variables:
 
 ```bash
 export OMADEUS_EMAIL="you@example.com"
@@ -63,45 +46,16 @@ export OMADEUS_PASSWORD="your-password"
 export OMADEUS_ORGANIZATION_ID="123"
 ```
 
-The default Omadeus endpoints are:
-
-- CAS: `https://dev1-cas.rouztech.com`
-- Maestro: `https://dev3-maestro.rouztech.com`
-
-If your Omadeus deployment uses different endpoints, configure them through the
-OpenClaw setup flow or in your OpenClaw config under `channels.omadeus`.
-
-## Start OpenClaw
-
-Once OpenClaw and the plugin are configured, start or restart the gateway:
+## Start
 
 ```bash
 openclaw gateway
 ```
 
-Check channel health with:
-
-```bash
-openclaw channels status --deep
-openclaw plugins doctor
-```
-
 ## Local Development
 
-From this repository, you can link the local plugin into OpenClaw:
-
 ```bash
+npm install
+npm run build
 openclaw plugins install . --link
 ```
-
-Before publishing, inspect the npm package contents:
-
-```bash
-npm pack --dry-run
-```
-
-Publish to npm:
-
-```bash
-npm publish
-```

package/dist/_virtual/_rolldown/runtime.js

@@ -0,0 +1,4 @@
+import "node:module";
+import.meta.url;
+//#endregion
+export {};

package/dist/api.js

@@ -0,0 +1,5 @@
+import "./_virtual/_rolldown/runtime.js";
+import { omadeusSetupAdapter } from "./src/setup-core.js";
+import { omadeusSetupWizard } from "./src/onboarding.js";
+import "./src/setup-surface.js";
+export { omadeusSetupAdapter, omadeusSetupWizard };

package/dist/index.js

@@ -0,0 +1,14 @@
+import "./_virtual/_rolldown/runtime.js";
+import { setOmadeusRuntime } from "./src/runtime.js";
+import { omadeusPlugin } from "./src/channel.js";
+import { defineChannelPluginEntry } from "openclaw/plugin-sdk/core";
+//#region index.ts
+var openclaw_omadeus_plugin_default = defineChannelPluginEntry({
+	id: "omadeus",
+	name: "Omadeus",
+	description: "Omadeus project management channel plugin",
+	plugin: omadeusPlugin,
+	setRuntime: setOmadeusRuntime
+});
+//#endregion
+export { openclaw_omadeus_plugin_default as default, omadeusPlugin, setOmadeusRuntime };

package/dist/runtime-api.js

@@ -0,0 +1,15 @@
+import "./_virtual/_rolldown/runtime.js";
+import { DEFAULT_ACCOUNT_ID } from "openclaw/plugin-sdk/core";
+import { createReplyPrefixContext } from "openclaw/plugin-sdk/channel-runtime";
+import { logInboundDrop } from "openclaw/plugin-sdk/channel-inbound";
+import { resolveControlCommandGate } from "openclaw/plugin-sdk/command-auth";
+import { createChannelPairingController } from "openclaw/plugin-sdk/channel-pairing";
+import { readStoreAllowFromForDmPolicy, resolveDmGroupAccessWithLists } from "openclaw/plugin-sdk/channel-policy";
+import { addWildcardAllowFrom, formatDocsLink, mergeAllowFromEntries } from "openclaw/plugin-sdk/setup";
+//#region runtime-api.ts
+function missingTargetError(provider, hint) {
+	const normalizedHint = hint?.trim();
+	return /* @__PURE__ */ new Error(`Delivering to ${provider} requires target${normalizedHint ? ` ${normalizedHint}` : ""}`);
+}
+//#endregion
+export { DEFAULT_ACCOUNT_ID, addWildcardAllowFrom, createChannelPairingController, createReplyPrefixContext, formatDocsLink, logInboundDrop, mergeAllowFromEntries, missingTargetError, readStoreAllowFromForDmPolicy, resolveControlCommandGate, resolveDmGroupAccessWithLists };

package/dist/setup-entry.js

@@ -0,0 +1,7 @@
+import "./_virtual/_rolldown/runtime.js";
+import { omadeusPlugin } from "./src/channel.js";
+import { defineSetupPluginEntry } from "openclaw/plugin-sdk/core";
+//#region setup-entry.ts
+var setup_entry_default = defineSetupPluginEntry(omadeusPlugin);
+//#endregion
+export { setup_entry_default as default };

package/dist/src/allowed-reaction-emojis.js

@@ -0,0 +1,21 @@
+//#region src/allowed-reaction-emojis.ts
+/**
+* Omadeus only accepts these exact reaction strings; any other value is ignored (no API call).
+*/
+const ALLOWED_OMADEUS_REACTION_EMOJI_LIST = [
+	"👍",
+	"👎",
+	"❤️",
+	"😂",
+	"😮",
+	"😢",
+	"🙏"
+];
+const ALLOWED = new Set(ALLOWED_OMADEUS_REACTION_EMOJI_LIST);
+function isAllowedOmadeusReactionEmoji(raw) {
+	const trimmed = raw.trim();
+	if (!trimmed) return false;
+	return ALLOWED.has(trimmed);
+}
+//#endregion
+export { ALLOWED_OMADEUS_REACTION_EMOJI_LIST, isAllowedOmadeusReactionEmoji };

package/dist/src/api/auth.api.js

@@ -0,0 +1,118 @@
+import { getCasSession, setCasSession } from "../store.js";
+//#region src/api/auth.api.ts
+const CAS_APPLICATION_ID = 1;
+const CAS_SCOPES = "title,email,avatar,firstName,lastName,birth,phone,countryCode";
+function formatFetchError(label, url, method, err) {
+	const base = err instanceof Error ? err.message : String(err);
+	const cause = err instanceof Error && err.cause instanceof Error ? err.cause.message : void 0;
+	const detail = cause && cause !== base ? `${base} (${cause})` : base;
+	return /* @__PURE__ */ new Error(`${label} (${method} ${url}) failed: ${detail}`);
+}
+async function omadeusFetch(label, url, init) {
+	const method = init.method ?? "GET";
+	try {
+		return await fetch(url, init);
+	} catch (err) {
+		throw formatFetchError(label, url, method, err);
+	}
+}
+async function createCasToken(params) {
+	const { casUrl, email, password } = params;
+	const res = await omadeusFetch("CAS token request", `${casUrl}/apiv1/tokens`, {
+		method: "CREATE",
+		headers: { "Content-Type": "application/json;charset=UTF-8" },
+		body: JSON.stringify({
+			email,
+			password
+		})
+	});
+	if (!res.ok) {
+		const text = await res.text().catch(() => "");
+		throw new Error(`CAS token request failed (${res.status}): ${text}`);
+	}
+	const body = await res.json();
+	const refreshCookie = res.headers.get("set-cookie") ?? "";
+	setCasSession({
+		token: body.token,
+		refreshCookie
+	});
+	return {
+		token: body.token,
+		refreshCookie
+	};
+}
+async function createAuthorizationCode(params) {
+	const { casUrl, token, email, redirectUri } = params;
+	const casSession = getCasSession();
+	const qs = new URLSearchParams({
+		applicationId: String(CAS_APPLICATION_ID),
+		scopes: CAS_SCOPES,
+		state: email,
+		redirectUri: redirectUri ?? ""
+	});
+	if (redirectUri) qs.set("redirectUri", redirectUri);
+	const res = await omadeusFetch("CAS authorization code request", `${casUrl}/apiv1/authorizationcodes?${qs}`, {
+		method: "CREATE",
+		body: "",
+		headers: {
+			Authorization: `Bearer ${token}`,
+			...casSession?.refreshCookie ? { Cookie: casSession.refreshCookie } : {}
+		}
+	});
+	if (!res.ok) {
+		const text = await res.text().catch(() => "");
+		throw new Error(`CAS authorization code request failed (${res.status}): ${text}`);
+	}
+	const jsonResponse = await res.json();
+	const code = jsonResponse.authorizationCode ?? jsonResponse.code;
+	if (!code) throw new Error("CAS authorization code response missing code");
+	return code;
+}
+async function obtainSessionToken(params) {
+	const { maestroUrl, authorizationCode, organizationId } = params;
+	const res = await omadeusFetch("Omadeus session token request", `${maestroUrl}/dolphin/apiv1/oauth2/tokens`, {
+		method: "OBTAIN",
+		headers: { "Content-Type": "application/json;charset=UTF-8" },
+		body: JSON.stringify({
+			authorizationCode,
+			organizationId
+		})
+	});
+	if (!res.ok) {
+		const text = await res.text().catch(() => "");
+		throw new Error(`Omadeus session token request failed (${res.status}): ${text}`);
+	}
+	const body = await res.json();
+	if (!body.token) throw new Error("Omadeus session token response missing token");
+	return body.token;
+}
+async function listOrganizations(params) {
+	const { maestroUrl, email } = params;
+	const res = await omadeusFetch("Omadeus list organizations", `${maestroUrl}/dolphin/apiv1/organizations`, {
+		method: "LIST",
+		headers: { "Content-Type": "application/json;charset=UTF-8" },
+		body: JSON.stringify({ email })
+	});
+	if (!res.ok) {
+		const text = await res.text().catch(() => "");
+		throw new Error(`Omadeus list organizations failed (${res.status}): ${text}`);
+	}
+	return await res.json();
+}
+async function listOrganizationMembers(params) {
+	const { maestroUrl, sessionToken, organizationId } = params;
+	const res = await omadeusFetch("Omadeus list organization members", `${maestroUrl}/dolphin/apiv1/organizations/${organizationId}/members`, {
+		method: "LIST",
+		headers: {
+			Authorization: `Bearer ${sessionToken}`,
+			"Content-Type": "application/json;charset=UTF-8"
+		}
+	});
+	if (!res.ok) {
+		const text = await res.text().catch(() => "");
+		throw new Error(`Omadeus list organization members failed (${res.status}): ${text}`);
+	}
+	return await res.json();
+}
+//#endregion
+export { createAuthorizationCode, createCasToken, listOrganizationMembers, listOrganizations, obtainSessionToken };

package/dist/src/api/channel.api.js

@@ -0,0 +1,23 @@
+//#region src/api/channel.api.ts
+async function listMemberChannelViews(params) {
+	const { maestroUrl, sessionToken, memberReferenceId, skip = 0, take = 100 } = params;
+	const url = `${maestroUrl}/jaguar/apiv1/members/${memberReferenceId}/channelviews?${new URLSearchParams({
+		skip: String(skip),
+		take: String(take),
+		sort: "-recentMessageAt"
+	}).toString()}`;
+	const res = await fetch(url, {
+		method: "LIST",
+		headers: {
+			Authorization: `Bearer ${sessionToken}`,
+			"Content-Type": "application/json;charset=UTF-8"
+		}
+	});
+	if (!res.ok) {
+		const text = await res.text().catch(() => "");
+		throw new Error(`Omadeus list channel views failed (${res.status}): ${text}`);
+	}
+	return await res.json();
+}
+//#endregion
+export { listMemberChannelViews };

package/dist/src/api/message.api.js

@@ -0,0 +1,76 @@
+import { generateTemporaryId, jaguarFetch } from "../utils/http.util.js";
+//#region src/api/message.api.ts
+async function readJsonOrEmpty(res) {
+	if (res.status === 204) return;
+	const trimmed = (await res.text()).trim();
+	if (!trimmed) return;
+	try {
+		return JSON.parse(trimmed);
+	} catch {
+		return trimmed;
+	}
+}
+async function sendRoomMessage(opts, params) {
+	try {
+		const res = await jaguarFetch(opts, `/rooms/${params.roomId}/messages`, {
+			method: "SEND",
+			body: JSON.stringify({
+				body: params.body,
+				temporaryId: generateTemporaryId(),
+				links: "[]"
+			})
+		});
+		if (!res.ok) {
+			const text = await res.text().catch(() => "");
+			return {
+				ok: false,
+				error: `${res.status}: ${text.slice(0, 200)}`
+			};
+		}
+		return {
+			ok: true,
+			message: await res.json()
+		};
+	} catch (err) {
+		return {
+			ok: false,
+			error: (err instanceof Error ? err.message : String(err)).slice(0, 300)
+		};
+	}
+}
+async function editMessage(opts, params) {
+	const res = await jaguarFetch(opts, `/messages/${params.messageId}`, {
+		method: "EDIT",
+		body: JSON.stringify({
+			body: params.body,
+			...params.temporaryId ? { temporaryId: params.temporaryId } : {},
+			...params.links ? { links: JSON.stringify(params.links) } : {}
+		})
+	});
+	if (!res.ok) {
+		const text = await res.text().catch(() => "");
+		throw new Error(`Omadeus edit message failed (${res.status}): ${text.slice(0, 200)}`);
+	}
+	return await res.json();
+}
+async function deleteMessage(opts, params) {
+	const res = await jaguarFetch(opts, `/messages/${params.messageId}`, { method: "DELETE" });
+	if (!res.ok) {
+		const text = await res.text().catch(() => "");
+		throw new Error(`Omadeus delete message failed (${res.status}): ${text.slice(0, 200)}`);
+	}
+	return await res.json();
+}
+async function addMessageReaction(opts, params) {
+	const res = await jaguarFetch(opts, `/messages/${params.messageId}/reactions`, {
+		method: "ADD",
+		body: JSON.stringify({ emoji: params.emoji })
+	});
+	if (!res.ok) {
+		const text = await res.text().catch(() => "");
+		throw new Error(`Omadeus add reaction failed (${res.status}): ${text.slice(0, 200)}`);
+	}
+	return readJsonOrEmpty(res);
+}
+//#endregion
+export { addMessageReaction, deleteMessage, editMessage, sendRoomMessage };

package/dist/src/api/nugget.api.js

@@ -0,0 +1,127 @@
+import { dolphinFetch } from "../utils/http.util.js";
+//#region src/api/nugget.api.ts
+/** Omadeus nugget/task display number (`N###` in UI maps to this field). */
+function readNuggetNumber(record) {
+	const value = record["number"];
+	if (typeof value === "number" && Number.isFinite(value)) return value;
+	if (typeof value === "string" && /^\d+$/.test(value.trim())) return Number(value.trim());
+}
+function readNumberField(record, key) {
+	const value = record[key];
+	if (typeof value === "number" && Number.isFinite(value)) return value;
+	if (typeof value === "string" && /^\d+$/.test(value.trim())) return Number(value.trim());
+}
+function findNuggetRowByNumber(rows, nuggetNumber) {
+	return rows.find((row) => readNuggetNumber(row) === nuggetNumber);
+}
+function resolveTaskChannelRoomId(record) {
+	return readNumberField(record, "privateRoomId") ?? readNumberField(record, "publicRoomId") ?? readNumberField(record, "sharedRoomId");
+}
+function extractRows(payload) {
+	if (Array.isArray(payload)) return payload.filter((entry) => !!entry && typeof entry === "object");
+	if (!payload || typeof payload !== "object") return [];
+	const envelope = payload;
+	for (const key of [
+		"data",
+		"results",
+		"items",
+		"rows"
+	]) {
+		const value = envelope[key];
+		if (Array.isArray(value)) return value.filter((entry) => !!entry && typeof entry === "object");
+	}
+	return [];
+}
+/**
+* Dolphin SEARCH on nuggetviews — arbitrary text query (e.g. N###, task title, or room id string).
+* Prefer filtering results with `findNuggetRowByNumber` or `findNuggetRowByRoomId`.
+*/
+async function searchNuggetRowsByTextQuery(opts, params) {
+	const take = params.take ?? 100;
+	const q = params.query.trim();
+	if (!q) return [];
+	const search = new URLSearchParams();
+	search.set("take", String(take));
+	const res = await dolphinFetch(opts, `/nuggetviews?${search.toString()}`, {
+		method: "SEARCH",
+		body: JSON.stringify({ query: q }),
+		signal: params.signal
+	});
+	if (!res.ok) {
+		const text = await res.text().catch(() => "");
+		throw new Error(`Omadeus nugget search failed (${res.status}): ${text.slice(0, 200)}`);
+	}
+	return extractRows(await res.json());
+}
+/**
+* Picks a row whose private/public/shared task room id matches a Jaguar `roomId`.
+*/
+function findNuggetRowByRoomId(rows, roomId) {
+	for (const row of rows) for (const key of [
+		"privateRoomId",
+		"publicRoomId",
+		"sharedRoomId"
+	]) if (readNumberField(row, key) === roomId) return row;
+}
+/**
+* Resolve the nugget/task row for a Jaguar Task or Nugget **chat room** by matching
+* `privateRoomId` / `publicRoomId` / `sharedRoomId` to `roomId` in Dolphin `nuggetviews` search results.
+* Tries search by `roomName` first (usually matches the task title), then by the numeric `roomId` as text.
+*/
+async function findNuggetByTaskChannelRoom(opts, params) {
+	const { roomId, roomName, signal } = params;
+	const tryQueries = [];
+	if (typeof roomName === "string" && roomName.trim()) tryQueries.push(roomName.trim());
+	tryQueries.push(String(roomId));
+	const tried = /* @__PURE__ */ new Set();
+	for (const query of tryQueries) {
+		if (tried.has(query)) continue;
+		tried.add(query);
+		const match = findNuggetRowByRoomId(await searchNuggetRowsByTextQuery(opts, {
+			query,
+			take: 100,
+			signal
+		}), roomId);
+		if (match) return match;
+	}
+	return null;
+}
+/**
+* Dolphin SEARCH on nuggetviews returns an array of nugget/task rows.
+* User-facing `N111` corresponds to `number: 111` on each row (not `id`).
+*/
+async function searchNuggetByNumber(opts, params) {
+	return findNuggetRowByNumber(await searchNuggetRowsByTextQuery(opts, {
+		query: `N${params.nuggetNumber}`,
+		take: 100,
+		signal: params.signal
+	}), params.nuggetNumber) ?? null;
+}
+async function resolveTaskRoomIdByNumber(opts, params) {
+	const row = await searchNuggetByNumber(opts, params);
+	if (!row) return null;
+	return resolveTaskChannelRoomId(row) ?? null;
+}
+async function createNugget(opts, params) {
+	const res = await dolphinFetch(opts, "/nuggets", {
+		method: "CREATE",
+		body: JSON.stringify({
+			title: params.title,
+			stage: params.stage,
+			description: params.description,
+			kind: params.kind,
+			priority: params.priority,
+			memberReferenceId: params.memberReferenceId,
+			clientId: params.clientId,
+			folderId: params.folderId
+		}),
+		signal: params.signal
+	});
+	if (!res.ok) {
+		const text = await res.text().catch(() => "");
+		throw new Error(`Omadeus nugget create failed (${res.status}): ${text.slice(0, 200)}`);
+	}
+	return await res.json();
+}
+//#endregion
+export { createNugget, findNuggetByTaskChannelRoom, readNuggetNumber, resolveTaskChannelRoomId, resolveTaskRoomIdByNumber, searchNuggetByNumber };

package/dist/src/auth.js

@@ -0,0 +1,30 @@
+import { clearCasSession } from "./store.js";
+import { createAuthorizationCode, createCasToken, obtainSessionToken } from "./api/auth.api.js";
+import { decodeJwtPayload } from "./utils/jwt.util.js";
+//#region src/auth.ts
+async function authenticate(params) {
+	const { casUrl, maestroUrl, email, password, organizationId } = params;
+	const { token } = await createCasToken({
+		casUrl,
+		email,
+		password
+	});
+	const authorizationCode = await createAuthorizationCode({
+		casUrl,
+		token,
+		email,
+		redirectUri: maestroUrl
+	});
+	clearCasSession();
+	const dolphinToken = await obtainSessionToken({
+		maestroUrl,
+		authorizationCode,
+		organizationId
+	});
+	return {
+		dolphinToken,
+		payload: decodeJwtPayload(dolphinToken)
+	};
+}
+//#endregion
+export { authenticate };