@plusplus7/clawclamp 0.1.0

package/LICENSE

@@ -0,0 +1,21 @@
+MIT License
+
+Copyright (c) 2026 Clawclamp contributors
+
+Permission is hereby granted, free of charge, to any person obtaining a copy
+of this software and associated documentation files (the "Software"), to deal
+in the Software without restriction, including without limitation the rights
+to use, copy, modify, merge, publish, distribute, sublicense, and/or sell
+copies of the Software, and to permit persons to whom the Software is
+furnished to do so, subject to the following conditions:
+
+The above copyright notice and this permission notice shall be included in all
+copies or substantial portions of the Software.
+
+THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR
+IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY,
+FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE
+AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER
+LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM,
+OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE
+SOFTWARE.

package/README.md

@@ -0,0 +1,94 @@
+# Clawclamp
+
+[中文说明](./README.zh-CN.md)
+
+![npm scope](https://img.shields.io/badge/npm-%40plusplus7%2Fclawclamp-cb3837)
+![cedar](https://img.shields.io/badge/auth-Cedar-0b7285)
+![ui](https://img.shields.io/badge/UI-audit%20%26%20policy%20lab-1f6feb)
+![vibe coding](https://img.shields.io/badge/vibe%20coding-AI%20generated-7c3aed)
+
+Clawclamp adds Cedar-based authorization to OpenClaw tool calls. It evaluates every tool invocation via a Cedar policy, records allow/deny decisions to an audit log, and exposes a gateway UI for reviewing logs and granting short-term approvals.
+
+This repository is a vibe-coding project and most of the implementation was generated with AI assistance.
+
+## Screenshots
+
+Add screenshots under `screenshots/` and reference them here when the repository is published on GitHub.
+
+- Suggested files: `screenshots/policy-lab.png`, `screenshots/audit-log.png`
+- Suggested captures: the policy editor, the audit table, and the mode / grant controls
+
+## Features
+
+- Cedar policy enforcement for `before_tool_call`.
+- Long-term authorization via Cedar policy.
+- Short-term authorization via time-bound Cedar policy.
+- Audit UI for allowed/denied/gray-mode tool calls.
+- Gray mode: denied calls are still executed but logged as overrides.
+
+## Install
+
+From npm:
+
+```bash
+openclaw plugins install @plusplus7/clawclamp
+```
+
+Or in config / plugin management, use the package name `@plusplus7/clawclamp`.
+
+## GitHub
+
+Recommended repository description:
+
+> Cedar-based authorization and audit plugin for OpenClaw, built as a vibe-coding / AI-assisted project.
+
+Suggested topics:
+
+`openclaw`, `cedar`, `authorization`, `audit`, `plugin`, `ai-generated`, `vibe-coding`
+
+## Configuration
+
+Configure under `plugins.entries.clawclamp.config`:
+
+```yaml
+plugins:
+  entries:
+    clawclamp:
+      enabled: true
+      config:
+        mode: gray
+        principalId: openclaw
+        policyStoreUri: file:///path/to/policy-store.json
+        policyFailOpen: false
+        # 可选：UI 访问令牌（非 loopback 时可通过 ?token= 或 X-OpenClaw-Token 访问）
+        # uiToken: "your-ui-token"
+        risk:
+          default: high
+          overrides:
+            read: low
+            web_search: medium
+            exec: high
+        grants:
+          defaultTtlSeconds: 900
+          maxTtlSeconds: 3600
+        audit:
+          maxEntries: 500
+          includeParams: true
+```
+
+`policyStoreUri` points to a Cedar policy store JSON (file:// or https://). `policyStoreLocal` can be set to a raw JSON string for the policy store. If omitted, the plugin uses a built-in policy store that denies all tool calls unless a grant is active or an explicit permit policy exists.
+
+## UI
+
+Open the gateway path `/plugins/clawclamp` to view audit logs, toggle gray mode, and create short-term grants.
+
+UI access rules:
+
+- Loopback (127.0.0.1 / ::1) is allowed without a token.
+- Non-loopback requires a token via `?token=` or `X-OpenClaw-Token` / `Authorization: Bearer`.
+
+Policy management:
+
+- The UI includes a Cedar policy panel for CRUD.
+- If `policyStoreUri` is set, policies are read-only.
+- Default policy set is empty, so all tool calls are denied unless you add permit policies.

package/README.zh-CN.md

@@ -0,0 +1,94 @@
+# Clawclamp
+
+[English README](./README.md)
+
+![npm scope](https://img.shields.io/badge/npm-%40plusplus7%2Fclawclamp-cb3837)
+![cedar](https://img.shields.io/badge/auth-Cedar-0b7285)
+![ui](https://img.shields.io/badge/UI-audit%20%26%20policy%20lab-1f6feb)
+![vibe coding](https://img.shields.io/badge/vibe%20coding-AI%20generated-7c3aed)
+
+Clawclamp 是一个为 OpenClaw 提供 Cedar 权限控制的插件。它会在每次工具调用前执行 Cedar 鉴权，记录允许/拒绝审计日志，并提供一个网关 UI 用于查看日志、维护 Cedar policy 和发放短期授权。
+
+这个仓库属于 vibe coding 项目，主要实现内容由 AI 辅助生成。
+
+## 截图
+
+准备发布到 GitHub 时，建议把截图放到 `screenshots/` 目录，并在这里引用。
+
+- 建议文件名：`screenshots/policy-lab.png`、`screenshots/audit-log.png`
+- 建议展示内容：策略编辑器、审计日志表格、模式切换和短期授权区域
+
+## 功能
+
+- 基于 `before_tool_call` 的 Cedar 鉴权
+- 基于 Cedar policy 的长期授权控制
+- 基于带过期时间的 Cedar policy 的短期授权
+- 审计 UI，可查看允许、拒绝和灰度放行的工具调用
+- 灰度模式：即使被 Cedar 拒绝，调用也可继续执行，但会被审计记录
+
+## 安装
+
+通过 npm 安装：
+
+```bash
+openclaw plugins install @plusplus7/clawclamp
+```
+
+如果通过配置或插件管理安装，包名使用 `@plusplus7/clawclamp`。
+
+## GitHub 展示文案
+
+建议仓库描述：
+
+> OpenClaw 的 Cedar 权限控制与审计插件，一个 vibe coding / AI 辅助生成项目。
+
+建议 topics：
+
+`openclaw`、`cedar`、`authorization`、`audit`、`plugin`、`ai-generated`、`vibe-coding`
+
+## 配置
+
+在 `plugins.entries.clawclamp.config` 下配置：
+
+```yaml
+plugins:
+  entries:
+    clawclamp:
+      enabled: true
+      config:
+        mode: gray
+        principalId: openclaw
+        policyStoreUri: file:///path/to/policy-store.json
+        policyFailOpen: false
+        # 可选：UI 访问令牌（非 loopback 时可通过 ?token= 或 X-OpenClaw-Token 访问）
+        # uiToken: "your-ui-token"
+        risk:
+          default: high
+          overrides:
+            read: low
+            web_search: medium
+            exec: high
+        grants:
+          defaultTtlSeconds: 900
+          maxTtlSeconds: 3600
+        audit:
+          maxEntries: 500
+          includeParams: true
+```
+
+`policyStoreUri` 指向一个 Cedar policy store JSON（`file://` 或 `https://`）。也可以使用 `policyStoreLocal` 直接传入原始 JSON 字符串。如果不配置，插件会使用内置的默认 policy store。默认情况下不会自动放行任何工具，只有显式 permit policy 或短期授权 policy 才能放行。
+
+## UI
+
+打开网关路径 `/plugins/clawclamp`，可以查看审计日志、切换模式、创建短期授权，以及增删改查 Cedar policy。
+
+UI 访问规则：
+
+- 来自 loopback（`127.0.0.1` / `::1`）的请求默认允许访问
+- 非 loopback 请求需要通过 `?token=`、`X-OpenClaw-Token` 或 `Authorization: Bearer` 提供令牌
+
+策略管理说明：
+
+- UI 内置 Cedar policy 面板，支持 CRUD
+- 如果配置了 `policyStoreUri`，策略将变为只读
+- 默认 policy 集为空，因此默认拒绝所有工具调用，除非你手动添加 permit policy 或创建短期授权

package/RELEASE.md

@@ -0,0 +1,34 @@
+# Release Checklist
+
+## Before Publish
+
+1. Verify package name in `package.json` is `@dejavu/clawclamp`
+2. Run tests
+
+```bash
+pnpm exec vitest run
+```
+
+3. Check README links and screenshots
+4. Commit release changes
+
+## Publish To npm
+
+```bash
+npm login
+npm publish --access public
+```
+
+## Publish To GitHub
+
+1. Create repository
+2. Push code
+3. Add repository description:
+
+> Cedar-based authorization and audit plugin for OpenClaw, built as a vibe-coding / AI-assisted project.
+
+4. Add topics:
+
+`openclaw`, `cedar`, `authorization`, `audit`, `plugin`, `ai-generated`, `vibe-coding`
+
+5. Add screenshots under `screenshots/`

package/assets/app.js

@@ -0,0 +1,362 @@
+const API_BASE = "/plugins/clawclamp/api";
+
+const qs = (id) => document.getElementById(id);
+
+const modeEl = qs("mode");
+const modeNoteEl = qs("mode-note");
+const enforceBtn = qs("mode-enforce");
+const grayBtn = qs("mode-gray");
+const refreshBtn = qs("refresh");
+const grantForm = qs("grant-form");
+const grantToolInput = qs("grant-tool");
+const grantTtlInput = qs("grant-ttl");
+const grantNoteInput = qs("grant-note");
+const grantHint = qs("grant-hint");
+const grantsEl = qs("grants");
+const auditEl = qs("audit");
+const auditPageSizeEl = qs("audit-page-size");
+const auditPrevEl = qs("audit-prev");
+const auditNextEl = qs("audit-next");
+const auditPageInfoEl = qs("audit-page-info");
+const policyListEl = qs("policy-list");
+const policyIdInput = qs("policy-id");
+const policyContentInput = qs("policy-content");
+const policyCreateBtn = qs("policy-create");
+const policyUpdateBtn = qs("policy-update");
+const policyDeleteBtn = qs("policy-delete");
+const policyStatusEl = qs("policy-status");
+let policyReadOnly = false;
+let policies = [];
+let auditPage = 1;
+let auditPageSize = Number(auditPageSizeEl?.value || 50);
+let auditTotal = 0;
+
+async function fetchJson(path, opts = {}) {
+  const res = await fetch(path, {
+    headers: { "content-type": "application/json" },
+    ...opts,
+  });
+  const payload = await res.json().catch(() => ({}));
+  if (!res.ok) {
+    const message = payload.error || `Request failed (${res.status})`;
+    throw new Error(message);
+  }
+  return payload;
+}
+
+function formatTime(iso) {
+  if (!iso) return "-";
+  const date = new Date(iso);
+  return date.toLocaleTimeString();
+}
+
+function renderMode(state) {
+  modeEl.textContent = state.mode === "gray" ? "灰度" : "强制";
+  modeNoteEl.textContent =
+    state.mode === "gray"
+      ? "被拒绝的工具调用仍会执行，但会标记为灰度放行。"
+      : "被拒绝的工具调用将被阻断。";
+  enforceBtn.disabled = state.mode === "enforce";
+  grayBtn.disabled = state.mode === "gray";
+  grantHint.textContent =
+    `默认 TTL ${state.grants.defaultTtlSeconds}s，最长 ${state.grants.maxTtlSeconds}s。`;
+}
+
+function renderGrants(grants) {
+  if (!grants.length) {
+    grantsEl.innerHTML = "<div class=\"note\">暂无有效授权。</div>";
+    return;
+  }
+  grantsEl.innerHTML = "";
+  grants.forEach((grant) => {
+    const item = document.createElement("div");
+    item.className = "list-item";
+    item.innerHTML = `
+      <div>
+        <strong>${grant.toolName}</strong><br />
+        <span class="note">到期时间 ${new Date(grant.expiresAt).toLocaleString()}</span>
+      </div>
+      <button class="btn ghost" data-id="${grant.id}">撤销</button>
+    `;
+    item.querySelector("button").addEventListener("click", async () => {
+      await fetchJson(`${API_BASE}/grants/${grant.id}`, { method: "DELETE" });
+      await refreshAll();
+    });
+    grantsEl.appendChild(item);
+  });
+}
+
+function decisionBadge(decision) {
+  if (decision === "allow_grayed") return "gray";
+  if (decision === "deny") return "deny";
+  return "allow";
+}
+
+function decisionLabel(decision) {
+  if (decision === "allow_grayed") return "灰度放行";
+  if (decision === "deny") return "拒绝";
+  if (decision === "error") return "错误";
+  return "允许";
+}
+
+function riskLabel(risk) {
+  if (risk === "low") return "低";
+  if (risk === "medium") return "中";
+  if (risk === "high") return "高";
+  return risk || "-";
+}
+
+function renderAudit(entries) {
+  if (!entries.length) {
+    auditEl.innerHTML = "<div class=\"note\">暂无审计记录。</div>";
+    return;
+  }
+
+  const header = document.createElement("div");
+  header.className = "table-row header";
+  header.innerHTML =
+    "<div>时间</div><div>工具</div><div>决策</div><div>风险</div><div>说明</div><div>操作</div>";
+
+  auditEl.innerHTML = "";
+  auditEl.appendChild(header);
+
+  entries.forEach((entry) => {
+    const row = document.createElement("div");
+    row.className = "table-row";
+    const badgeClass = decisionBadge(entry.decision);
+    const canAllow = entry.decision === "deny" || entry.decision === "allow_grayed";
+    const canDeny = entry.decision === "allow";
+    const paramsText =
+      entry.params && typeof entry.params === "object"
+        ? JSON.stringify(entry.params, null, 2)
+        : entry.params || "";
+    const meta = [
+      entry.toolCallId ? `toolCallId: ${entry.toolCallId}` : null,
+      entry.runId ? `runId: ${entry.runId}` : null,
+      entry.sessionKey ? `sessionKey: ${entry.sessionKey}` : null,
+      entry.agentId ? `agentId: ${entry.agentId}` : null,
+    ].filter(Boolean);
+    row.innerHTML = `
+      <div>${formatTime(entry.timestamp)}</div>
+      <div class="mono">${entry.toolName}</div>
+      <div class="badge ${badgeClass}">${decisionLabel(entry.decision)}</div>
+      <div>${riskLabel(entry.risk)}</div>
+      <div>${entry.reason || entry.error || ""}</div>
+      <div class="actions">
+        ${canAllow ? "<button class=\"btn mini\" data-action=\"allow\">一键允许</button>" : ""}
+        ${canDeny ? "<button class=\"btn mini warn\" data-action=\"deny\">一键拒绝</button>" : ""}
+      </div>
+      <div class="audit-detail">
+        <div class="audit-meta">${meta.join(" · ")}</div>
+        ${paramsText ? `<pre>${paramsText}</pre>` : ""}
+      </div>
+    `;
+    const allowBtn = row.querySelector("button[data-action=\"allow\"]");
+    if (allowBtn) {
+      allowBtn.addEventListener("click", async () => {
+        await applyPolicyChange("permit", entry.toolName);
+        await refreshAll();
+      });
+    }
+    const denyBtn = row.querySelector("button[data-action=\"deny\"]");
+    if (denyBtn) {
+      denyBtn.addEventListener("click", async () => {
+        await applyPolicyChange("forbid", entry.toolName);
+        await refreshAll();
+      });
+    }
+    auditEl.appendChild(row);
+  });
+}
+
+function renderAuditPager(total, page, pageSize) {
+  auditTotal = total || 0;
+  auditPage = page || 1;
+  const totalPages = Math.max(1, Math.ceil(auditTotal / pageSize));
+  auditPageInfoEl.textContent = `第 ${auditPage} / ${totalPages} 页 · 共 ${auditTotal} 条`;
+  auditPrevEl.disabled = auditPage <= 1;
+  auditNextEl.disabled = auditPage >= totalPages;
+}
+
+function renderPolicyList(list) {
+  policies = list;
+  if (!list.length) {
+    policyListEl.innerHTML = "<div class=\"note\">暂无策略。</div>";
+    return;
+  }
+  policyListEl.innerHTML = "";
+  list.forEach((policy) => {
+    const item = document.createElement("button");
+    item.className = "policy-item";
+    item.textContent = policy.id;
+    item.addEventListener("click", () => {
+      policyIdInput.value = policy.id;
+      policyContentInput.value = policy.content || "";
+      policyStatusEl.textContent = "";
+    });
+    policyListEl.appendChild(item);
+  });
+}
+
+async function refreshPolicies() {
+  const result = await fetchJson(`${API_BASE}/policies`);
+  policyReadOnly = result.readOnly === true;
+  renderPolicyList(result.policies || []);
+  policyCreateBtn.disabled = policyReadOnly;
+  policyUpdateBtn.disabled = policyReadOnly;
+  policyDeleteBtn.disabled = policyReadOnly;
+  if (policyReadOnly) {
+    policyStatusEl.textContent = "policyStoreUri 模式下为只读。";
+  }
+}
+
+async function refreshAll() {
+  const state = await fetchJson(`${API_BASE}/state`);
+  renderMode(state);
+  const grants = await fetchJson(`${API_BASE}/grants`);
+  renderGrants(grants.grants || []);
+  const logs = await fetchJson(`${API_BASE}/logs?page=${auditPage}&pageSize=${auditPageSize}`);
+  renderAudit(logs.entries || []);
+  renderAuditPager(logs.total || 0, logs.page || auditPage, logs.pageSize || auditPageSize);
+  await refreshPolicies();
+}
+
+refreshBtn.addEventListener("click", () => {
+  refreshAll();
+});
+
+enforceBtn.addEventListener("click", async () => {
+  await fetchJson(`${API_BASE}/mode`, {
+    method: "POST",
+    body: JSON.stringify({ mode: "enforce" }),
+  });
+  await refreshAll();
+});
+
+grayBtn.addEventListener("click", async () => {
+  await fetchJson(`${API_BASE}/mode`, {
+    method: "POST",
+    body: JSON.stringify({ mode: "gray" }),
+  });
+  await refreshAll();
+});
+
+grantForm.addEventListener("submit", async (event) => {
+  event.preventDefault();
+  const toolName = grantToolInput.value.trim();
+  const ttlSeconds = grantTtlInput.value ? Number(grantTtlInput.value) : undefined;
+  const note = grantNoteInput.value.trim();
+  await fetchJson(`${API_BASE}/grants`, {
+    method: "POST",
+    body: JSON.stringify({ toolName, ttlSeconds, note: note || undefined }),
+  });
+  grantToolInput.value = "";
+  grantTtlInput.value = "";
+  grantNoteInput.value = "";
+  await refreshAll();
+});
+
+auditPageSizeEl.addEventListener("change", async () => {
+  auditPageSize = Number(auditPageSizeEl.value || 50);
+  auditPage = 1;
+  await refreshAll();
+});
+
+auditPrevEl.addEventListener("click", async () => {
+  if (auditPage <= 1) return;
+  auditPage -= 1;
+  await refreshAll();
+});
+
+auditNextEl.addEventListener("click", async () => {
+  const totalPages = Math.max(1, Math.ceil(auditTotal / auditPageSize));
+  if (auditPage >= totalPages) return;
+  auditPage += 1;
+  await refreshAll();
+});
+
+refreshAll();
+setInterval(refreshAll, 10_000);
+
+function sanitizeIdPart(value) {
+  return value.toLowerCase().replace(/[^a-z0-9_-]+/g, "_").slice(0, 64);
+}
+
+function policyIdPrefix(effect, toolName) {
+  return `ui-${effect}:${sanitizeIdPart(toolName)}:`;
+}
+
+function policyBody(effect, toolName) {
+  const keyword = effect === "forbid" ? "forbid" : "permit";
+  return `${keyword}(principal, action, resource)\nwhen {\n  action == Action::\"Invoke\" && resource.name == \"${toolName}\"\n};`;
+}
+
+async function removePoliciesByPrefix(prefix) {
+  const targets = policies.filter((policy) => policy.id.startsWith(prefix));
+  for (const policy of targets) {
+    await fetchJson(`${API_BASE}/policies/${encodeURIComponent(policy.id)}`, {
+      method: "DELETE",
+    });
+  }
+}
+
+async function applyPolicyChange(effect, toolName) {
+  const opposite = effect === "permit" ? "forbid" : "permit";
+  await removePoliciesByPrefix(policyIdPrefix(opposite, toolName));
+  const id = `${policyIdPrefix(effect, toolName)}${Date.now()}`;
+  const content = policyBody(effect, toolName);
+  await fetchJson(`${API_BASE}/policies`, {
+    method: "POST",
+    body: JSON.stringify({ id, content }),
+  });
+}
+
+policyCreateBtn.addEventListener("click", async () => {
+  const id = policyIdInput.value.trim();
+  const content = policyContentInput.value.trim();
+  if (!content) {
+    policyStatusEl.textContent = "请输入 Policy 内容。";
+    return;
+  }
+  const body = { content, ...(id ? { id } : {}) };
+  await fetchJson(`${API_BASE}/policies`, {
+    method: "POST",
+    body: JSON.stringify(body),
+  });
+  policyStatusEl.textContent = "已新增策略。";
+  await refreshAll();
+});
+
+policyUpdateBtn.addEventListener("click", async () => {
+  const id = policyIdInput.value.trim();
+  const content = policyContentInput.value.trim();
+  if (!id) {
+    policyStatusEl.textContent = "请选择或填写 Policy ID。";
+    return;
+  }
+  if (!content) {
+    policyStatusEl.textContent = "请输入 Policy 内容。";
+    return;
+  }
+  await fetchJson(`${API_BASE}/policies/${encodeURIComponent(id)}`, {
+    method: "PUT",
+    body: JSON.stringify({ content }),
+  });
+  policyStatusEl.textContent = "已保存策略。";
+  await refreshAll();
+});
+
+policyDeleteBtn.addEventListener("click", async () => {
+  const id = policyIdInput.value.trim();
+  if (!id) {
+    policyStatusEl.textContent = "请选择或填写 Policy ID。";
+    return;
+  }
+  await fetchJson(`${API_BASE}/policies/${encodeURIComponent(id)}`, {
+    method: "DELETE",
+  });
+  policyStatusEl.textContent = "已删除策略。";
+  policyIdInput.value = "";
+  policyContentInput.value = "";
+  await refreshAll();
+});