@virtue-ai/gateway-connect 0.3.4 → 0.3.6

package/README.md

@@ -23,7 +23,11 @@ openclaw models auth paste-token --provider openai
 ### Step 3: Connect to VirtueAI MCP Gateway
 
 ```bash
+# Standalone gateway
 npx @virtue-ai/gateway-connect --gateway-url https://virtueai-agent-gtw-xxxx.ngrok.io
+
+# Platform-hosted gateway
+npx @virtue-ai/gateway-connect --gateway-url https://your-domain.ngrok.app/api/gateways/gtw_xxxx
 ```
 
 This will:
@@ -39,7 +43,7 @@ This will:
 One-shot mode:
 
 ```bash
-openclaw agent --local --message "What tools do you have?"
+openclaw agent --local --agent main --message "What tools do you have?"
 ```
 
 Interactive TUI mode:
@@ -91,7 +95,9 @@ This approach works with any embedded model provider (not just Claude CLI), beca
 npx @virtue-ai/gateway-connect [options]
 
 Options:
-  --gateway-url <url>    Gateway URL (default: https://virtueai-agent-gtw-l3phon63.ngrok.io)
+  --gateway-url <url>    Gateway URL (standalone or platform-hosted)
+  --api-url <url>        Prompt-guard API URL (default: https://agentgateway1.virtueai.io)
+  --gateway-id <id>      Gateway ID for trajectory recording
   --model <model>        Model to use (e.g. openai/gpt-4o, anthropic/claude-sonnet-4-5)
   --guard-uuid <uuid>    Guard UUID for trajectory recording (or set VIRTUEAI_GUARD_UUID)
   --help                 Show help message

package/dist/index.js

@@ -27,7 +27,7 @@ import { generateTrajectoryPlugin, enableTrajectoryPlugin } from './trajectory-p
 const CALLBACK_PORT = 19876;
 const CALLBACK_PATH = '/callback';
 const REDIRECT_URI = `http://localhost:${CALLBACK_PORT}${CALLBACK_PATH}`;
-const SCOPES = 'claudeai copilot mcp:read mcp:execute mcp:access';
+const DEFAULT_SCOPES = 'claudeai copilot mcp:read mcp:execute mcp:access';
 const OPENCLAW_DIR = path.join(os.homedir(), '.openclaw');
 const MCP_CONFIG_PATH = path.join(OPENCLAW_DIR, 'mcp-gateway.json');
 const OPENCLAW_CONFIG_PATH = path.join(OPENCLAW_DIR, 'openclaw.json');
@@ -102,7 +102,7 @@ function openBrowser(url) {
 // ---------------------------------------------------------------------------
 async function authenticate(gatewayUrl) {
     console.log('  Discovering OAuth endpoints...');
-    const { data: metadata } = await fetchJson(`${gatewayUrl}/.well-known/oauth-authorization-server`, { method: 'GET' });
+    const { data: metadata } = await fetchJson(`${gatewayUrl}/.well-known/oauth-authorization-server`, { method: 'GET', headers: { Accept: 'application/json' } });
     if (!metadata.authorization_endpoint || !metadata.token_endpoint) {
         console.error('Error: Could not discover OAuth endpoints from gateway.');
         console.error('Response:', JSON.stringify(metadata, null, 2));
@@ -111,8 +111,12 @@ async function authenticate(gatewayUrl) {
     const authEndpoint = metadata.authorization_endpoint;
     const tokenEndpoint = metadata.token_endpoint;
     const registerEndpoint = metadata.registration_endpoint;
+    const scopes = metadata.scopes_supported
+        ? metadata.scopes_supported.join(' ')
+        : DEFAULT_SCOPES;
     console.log(`  Auth endpoint: ${authEndpoint}`);
     console.log(`  Token endpoint: ${tokenEndpoint}`);
+    console.log(`  Scopes: ${scopes}`);
     console.log('  Registering OAuth client...');
     const { status: regStatus, data: clientInfo } = await fetchJson(registerEndpoint, {
         method: 'POST',
@@ -121,7 +125,7 @@ async function authenticate(gatewayUrl) {
             client_name: 'openclaw-gateway-connect',
             grant_types: ['authorization_code', 'refresh_token'],
             redirect_uris: [REDIRECT_URI],
-            scope: SCOPES,
+            scope: scopes,
             token_endpoint_auth_method: 'none',
         }),
     });
@@ -139,7 +143,7 @@ async function authenticate(gatewayUrl) {
     authUrl.searchParams.set('client_id', clientId);
     authUrl.searchParams.set('redirect_uri', REDIRECT_URI);
     authUrl.searchParams.set('response_type', 'code');
-    authUrl.searchParams.set('scope', SCOPES);
+    authUrl.searchParams.set('scope', scopes);
     authUrl.searchParams.set('state', state);
     authUrl.searchParams.set('code_challenge', codeChallenge);
     authUrl.searchParams.set('code_challenge_method', 'S256');
@@ -347,7 +351,7 @@ function writeGatewayConfig(gatewayUrl, accessToken, guardUuid, apiUrl, gatewayI
     const config = {
         trajectory: {
             gatewayUrl,
-            apiUrl: apiUrl || DEFAULT_API_URL,
+            apiUrl: apiUrl || '',
             gatewayId: gatewayId || DEFAULT_GATEWAY_ID,
             guardUuid: guardUuid || process.env.VIRTUEAI_GUARD_UUID || '',
         },
@@ -501,7 +505,7 @@ Supported models:
     ${TOOLS_PLUGIN_DIR}
 
   Start using it:
-    openclaw agent --local --message "What tools do you have?"
+    openclaw agent --local --agent main --message "What tools do you have?"
 
   To use a different model:
     npx @virtue-ai/gateway-connect --gateway-url ${gatewayUrl} --model openai/gpt-4o

package/dist/trajectory-plugin.js

@@ -50,7 +50,7 @@ function loadConfig() {
     const cfg = JSON.parse(raw);
 
     const gatewayUrl = cfg._auth?.gatewayUrl ?? cfg.trajectory?.gatewayUrl ?? "";
-    const apiUrl = cfg.trajectory?.apiUrl ?? gatewayUrl;
+    const apiUrl = cfg.trajectory?.apiUrl ?? "";
     const gatewayId = cfg.trajectory?.gatewayId ?? "";
     const token = cfg._auth?.accessToken ?? "";
 
@@ -59,8 +59,13 @@ function loadConfig() {
       process.env.VIRTUEAI_GUARD_UUID ||
       DEFAULT_GUARD_UUID;
 
-    if (!apiUrl || !token) return null;
-    return { gatewayUrl, apiUrl, gatewayId, token, guardUuid };
+    // If explicit apiUrl is set, use old path; otherwise derive from gatewayUrl
+    const trajectoryEndpoint = apiUrl
+      ? apiUrl + "/api/prompt-guard/topic_guard"
+      : gatewayUrl + "/prompt-guard/topic_guard";
+
+    if (!gatewayUrl || !token) return null;
+    return { gatewayUrl, gatewayId, token, guardUuid, trajectoryEndpoint };
   } catch {
     return null;
   }
@@ -100,7 +105,7 @@ const plugin = {
 
     let gatewaySessionId = null;
     let endpointDisabled = false;
-    const endpoint = config.apiUrl + "/api/prompt-guard/topic_guard";
+    const endpoint = config.trajectoryEndpoint;
     const localSessionId = "local_" + Date.now().toString(36);
 
     try { mkdirSync(TRAJECTORY_LOG_DIR, { recursive: true }); } catch {}
@@ -113,7 +118,7 @@ const plugin = {
       } catch {}
     }
 
-    api.logger.info("[virtueai-trajectory] Plugin registered, sending to " + config.apiUrl);
+    api.logger.info("[virtueai-trajectory] Plugin registered, endpoint: " + endpoint);
 
     async function sendStep(role, content) {
       if (endpointDisabled) return;
@@ -138,9 +143,9 @@ const plugin = {
           body: JSON.stringify(body),
         });
 
-        if (res.status === 404) {
+        if (res.status === 404 || res.status === 401 || res.status === 403) {
           endpointDisabled = true;
-          api.logger.warn("[virtueai-trajectory] Endpoint returned 404 — trajectory recording disabled. Is the prompt-guard API deployed on the gateway?");
+          api.logger.warn("[virtueai-trajectory] HTTP " + res.status + " — trajectory recording disabled");
           return;
         }
         if (!res.ok) {

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "@virtue-ai/gateway-connect",
-  "version": "0.3.4",
+  "version": "0.3.6",
   "description": "One-command setup to connect OpenClaw to VirtueAI MCP gateway",
   "type": "module",
   "files": [