ofiere-openclaw-plugin 4.22.0 → 4.24.0

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "ofiere-openclaw-plugin",
-  "version": "4.22.0",
+  "version": "4.24.0",
   "type": "module",
   "description": "OpenClaw plugin for Ofiere PM - 13 meta-tools covering tasks, agents, projects, scheduling, knowledge, workflows, notifications, memory, prompts, constellation, space file management, execution plan builder, and SOP management",
   "keywords": ["openclaw", "ofiere", "project-management", "agents", "plugin"],

package/src/tools.ts

@@ -2428,7 +2428,7 @@ async function dispatchReportDirect(
   channelTypes: string[],
 ): Promise<{ sent: string[]; failed: string[] }> {
   // Query agent's active channel bindings
-  let query = supabase.from("channel_bindings").select("channel_type, channel_account_id, agent_id, channel_config")
+  let query = supabase.from("channel_bindings").select("channel_type, channel_account_id, agent_id, channel_config, thread_id")
     .eq("user_id", userId)
     .eq("agent_id", agentId)
     .eq("notifications_enabled", true)
@@ -2447,10 +2447,6 @@ async function dispatchReportDirect(
   const sent: string[] = [];
   const failed: string[] = [];
 
-  // Resolve dashboard URL + auth for sending
-  const dashboardUrl = process.env.OFIERE_DASHBOARD_URL || "https://ofiere.com";
-  const serviceRoleKey = (supabase as any).supabaseKey || process.env.OFIERE_SERVICE_ROLE_KEY || process.env.SUPABASE_SERVICE_ROLE_KEY || "";
-
   for (const b of bindings) {
     const limit = LIMITS[b.channel_type] || 4000;
     let msg = report;
@@ -2458,31 +2454,89 @@ async function dispatchReportDirect(
       msg = msg.substring(0, limit - 80) + "\n\n... [Full report on dashboard]";
     }
 
-    // accountId must match the key used during gateway sync (gatewaySync.ts:435),
-    // which defaults to agentId when channel_account_id is null.
     const effectiveAccountId = b.channel_account_id || b.agent_id || agentId || "default";
 
-    try {
-      const res = await fetch(`${dashboardUrl}/api/channels/gateway-send`, {
-        method: "POST",
-        headers: {
-          "Content-Type": "application/json",
-          "Authorization": `Bearer ${serviceRoleKey}`,
-        },
-        body: JSON.stringify({
-          userId,
-          channelType: b.channel_type,
-          accountId: effectiveAccountId,
-          message: msg,
-        }),
-      });
-      if (res.ok) sent.push(b.channel_type);
-      else {
-        const errText = await res.text().catch(() => "");
-        failed.push(`${b.channel_type}: HTTP ${res.status} ${errText.slice(0, 100)}`);
+    if (b.channel_type === "telegram") {
+      // Direct Telegram Bot API — bypass gateway entirely
+      const chatId = b.thread_id;
+      if (!chatId) {
+        failed.push(`telegram: no chat_id (thread_id) for ${effectiveAccountId}`);
+        continue;
+      }
+
+      const config = typeof b.channel_config === "string" ? JSON.parse(b.channel_config) : b.channel_config;
+      if (!config?.encryptedToken) {
+        failed.push(`telegram: no encryptedToken for ${effectiveAccountId}`);
+        continue;
+      }
+
+      // Decrypt bot token (mirrors dashboard/lib/encryption.ts)
+      let botToken: string | null = null;
+      try {
+        const crypto = await import("crypto");
+        const keyHex = process.env.OFIERE_ENCRYPTION_KEY ||
+          crypto.createHash("sha256").update("nerv-os-default-key-change-me").digest("hex");
+        const keyBuf = Buffer.from(keyHex, "hex");
+        const data = Buffer.from(config.encryptedToken, "hex");
+        const iv = data.subarray(0, 12);
+        const authTag = data.subarray(12, 28);
+        const ciphertext = data.subarray(28);
+        const decipher = crypto.createDecipheriv("aes-256-gcm", keyBuf, iv);
+        decipher.setAuthTag(authTag);
+        const decrypted = Buffer.concat([decipher.update(ciphertext), decipher.final()]);
+        botToken = decrypted.toString("utf8");
+      } catch (e: any) {
+        failed.push(`telegram: decrypt failed for ${effectiveAccountId}: ${e.message}`);
+        continue;
+      }
+
+      if (!botToken) {
+        failed.push(`telegram: null token for ${effectiveAccountId}`);
+        continue;
+      }
+
+      try {
+        const res = await fetch(`https://api.telegram.org/bot${botToken}/sendMessage`, {
+          method: "POST",
+          headers: { "Content-Type": "application/json" },
+          body: JSON.stringify({ chat_id: chatId, text: msg }),
+        });
+        if (res.ok) {
+          sent.push(b.channel_type);
+        } else {
+          const errText = await res.text().catch(() => "");
+          failed.push(`telegram: Bot API ${res.status} ${errText.slice(0, 100)}`);
+        }
+      } catch (e: any) {
+        failed.push(`telegram: ${e.message || "fetch error"}`);
+      }
+    } else {
+      // Non-telegram: route through dashboard gateway-send (best-effort)
+      const dashboardUrl = process.env.OFIERE_DASHBOARD_URL || "https://ofiere.com";
+      const serviceRoleKey = (supabase as any).supabaseKey || process.env.OFIERE_SERVICE_ROLE_KEY || process.env.SUPABASE_SERVICE_ROLE_KEY || "";
+      try {
+        const res = await fetch(`${dashboardUrl}/api/channels/gateway-send`, {
+          method: "POST",
+          headers: {
+            "Content-Type": "application/json",
+            "Authorization": `Bearer ${serviceRoleKey}`,
+          },
+          body: JSON.stringify({
+            userId,
+            channelType: b.channel_type,
+            accountId: effectiveAccountId,
+            message: msg,
+            ...(b.thread_id ? { threadId: b.thread_id } : {}),
+          }),
+        });
+        if (res.ok) sent.push(b.channel_type);
+        else {
+          const errText = await res.text().catch(() => "");
+          failed.push(`${b.channel_type}: HTTP ${res.status} ${errText.slice(0, 100)}`);
+        }
+      } catch (e: any) {
+        failed.push(`${b.channel_type}: ${e.message || "fetch error"}`);
       }
-    } catch (e: any) {
-      failed.push(`${b.channel_type}: ${e.message || "fetch error"}`);
     }
   }