| Quellcodebibliothek Statistik Leitseite products/Sources/formale Sprachen/Java/Openclaw/extensions/qqbot/src/bridge/approval/ (KI Agentensystem Version 22©) Datei vom 26.3.2026 mit Größe 8 kB |
|
Quelle capability.tsSprache: JAVA |
|||||||||||||||
|
/** * QQ Bot Approval Capability — entry point. * * QQBot uses a simpler approval model than Telegram/Slack: any user who * can see the inline-keyboard buttons can approve. No explicit approver * list is required — the bot simply sends the approval message to the * originating conversation and whoever clicks the button resolves it. * * When `execApprovals` IS configured, it gates which requests are * handled natively and who is authorized. When it is NOT configured, * QQBot falls back to "always handle, anyone can approve". */ import { createChannelApprovalCapability, splitChannelApprovalCapability, } from "openclaw/plugin-sdk/approval-delivery-runtime"; import { createLazyChannelApprovalNativeRuntimeAdapter } from "openclaw/plugin-sdk/ap import type { ChannelApprovalNativeRuntimeAdapter } from "openclaw/plugin-sdk/approval import { resolveApprovalRequestSessionConversation } from "openclaw/plugin-sdk/approv import type { ChannelApprovalCapability } from "openclaw/plugin-sdk/channel-contract"; import type { OpenClawConfig } from "openclaw/plugin-sdk/config-runtime"; import { normalizeOptionalString } from "openclaw/plugin-sdk/text-runtime"; import { resolveApprovalTarget } from "../../engine/approval/index.js"; import { isQQBotExecApprovalClientEnabled, matchesQQBotApprovalAccount, shouldHandleQQBotExecApprovalRequest, isQQBotExecApprovalAuthorizedSender, isQQBotExecApprovalApprover, resolveQQBotExecApprovalConfig, } from "../../exec-approvals.js"; import { ensurePlatformAdapter } from "../bootstrap.js"; import { resolveQQBotAccount } from "../config.js"; import { getBridgeLogger } from "../logger.js"; /** * When `execApprovals` is configured, delegate to the profile-based * check. Otherwise fall back to target-resolvability plus the shared * per-account ownership rule in `matchesQQBotApprovalAccount` so that * each QQBot account handler only delivers approvals that originated * from its own account (openids are account-scoped — cross-account * delivery fails with 500 on the QQ Bot API). */ function shouldHandleRequest(params: { cfg: OpenClawConfig; accountId?: string | null; request: { request: { sessionKey?: string | null; turnSourceTo?: string | null; turnSourceChannel?: string | null; turnSourceAccountId?: string | null; }; }; }): boolean { if (hasExecApprovalConfig(params)) { return shouldHandleQQBotExecApprovalRequest(params as never); } if (!canResolveTarget(params.request)) { return false; } return matchesQQBotApprovalAccount({ cfg: params.cfg, accountId: params.accountId, request: params.request as never, }); } function hasExecApprovalConfig(params: { cfg: OpenClawConfig; accountId?: string | null; }): boolean { return resolveQQBotExecApprovalConfig(params) !== undefined; } function isNativeDeliveryEnabled(params: { cfg: OpenClawConfig; accountId?: string | null; }): boolean { if (hasExecApprovalConfig(params)) { return isQQBotExecApprovalClientEnabled(params); } const account = resolveQQBotAccount(params.cfg, params.accountId); return account.enabled && account.secretSource !== "none"; } function canResolveTarget(request: { request: { sessionKey?: string | null; turnSourceTo?: string | null }; }): boolean { const sessionKey = request.request.sessionKey ?? null; const turnSourceTo = request.request.turnSourceTo ?? null; const target = resolveApprovalTarget(sessionKey, turnSourceTo); if (target) { return true; } const sessionConversation = resolveApprovalRequestSessionConversation({ request: request as never, channel: "qqbot", bundledFallback: true, }); return sessionConversation?.id != null; } function createQQBotApprovalCapability(): ChannelApprovalCapability { return createChannelApprovalCapability({ authorizeActorAction: ({ cfg, accountId, senderId, approvalKind }) => { if (hasExecApprovalConfig({ cfg, accountId })) { const authorized = approvalKind === "plugin" ? isQQBotExecApprovalApprover({ cfg, accountId, senderId }) : isQQBotExecApprovalAuthorizedSender({ cfg, accountId, senderId }); return authorized ? { authorized: true } : { authorized: false, reason: "You are not authorized to approve this request." }; } return { authorized: true }; }, getActionAvailabilityState: ({ cfg, accountId, }: { cfg: OpenClawConfig; accountId?: string | null; action: "approve"; }) => { const enabled = isNativeDeliveryEnabled({ cfg, accountId }); return enabled ? { kind: "enabled" } : { kind: "disabled" }; }, getExecInitiatingSurfaceState: ({ cfg, accountId, }: { cfg: OpenClawConfig; accountId?: string | null; action: "approve"; }) => { const enabled = isNativeDeliveryEnabled({ cfg, accountId }); return enabled ? { kind: "enabled" } : { kind: "disabled" }; }, describeExecApprovalSetup: ({ accountId }: { accountId?: string | null }) => { const prefix = accountId && accountId !== "default" ? `channels.qqbot.accounts.${accountId}` : "channels.qqbot"; return `QQBot native exec approvals are enabled by default. To restrict who can approve, confi }, delivery: { hasConfiguredDmRoute: () => true, shouldSuppressForwardingFallback: (input) => { const channel = normalizeOptionalString(input.target?.channel); if (channel !== "qqbot") { return false; } const accountId = normalizeOptionalString(input.target?.accountId) ?? normalizeOptionalString(input.request?.request?.turnSourceAccountId); const result = isNativeDeliveryEnabled({ cfg: input.cfg, accountId }); getBridgeLogger().debug?.( `[qqbot:approval] shouldSuppressForwardingFallback channel=${channel} accountId=${a ); return result; }, }, native: { describeDeliveryCapabilities: ({ cfg, accountId }) => ({ enabled: isNativeDeliveryEnabled({ cfg, accountId }), preferredSurface: "origin" as const, supportsOriginSurface: true, supportsApproverDmSurface: false, notifyOriginWhenDmOnly: false, }), resolveOriginTarget: ({ request }) => { const sessionKey = request.request.sessionKey ?? null; const turnSourceTo = request.request.turnSourceTo ?? null; const target = resolveApprovalTarget(sessionKey, turnSourceTo); if (target) { return { to: `${target.type}:${target.id}` }; } const sessionConversation = resolveApprovalRequestSessionConversation({ request: request as never, channel: "qqbot", bundledFallback: true, }); if (sessionConversation?.id) { const kind = sessionConversation.kind === "group" ? "group" : "c2c"; return { to: `${kind}:${sessionConversation.id}` }; } return null; }, }, nativeRuntime: createLazyChannelApprovalNativeRuntimeAdapter({ eventKinds: ["exec", "plugin"], isConfigured: ({ cfg, accountId }) => { const result = isNativeDeliveryEnabled({ cfg, accountId }); getBridgeLogger().debug?.( `[qqbot:approval] nativeRuntime.isConfigured accountId=${accountId} → ${result}`, ); return result; }, shouldHandle: ({ cfg, accountId, request }) => { const result = shouldHandleRequest({ cfg, accountId, request: request as never, }); getBridgeLogger().debug?.( `[qqbot:approval] nativeRuntime.shouldHandle accountId=${accountId} → ${result}`, ); return result; }, load: async () => { // Ensure PlatformAdapter is registered before handler-runtime uses // getPlatformAdapter(). When the framework spawns the approval handler // outside the qqbot gateway startAccount context, channel.ts's // side-effect `import "./bridge/bootstrap.js"` may not have run yet. ensurePlatformAdapter(); return (await import("./handler-runtime.js")) .qqbotApprovalNativeRuntime as unknown as ChannelApprovalNativeRuntimeAdapter; }, }), }); } export const qqbotApprovalCapability = createQQBotApprovalCapability(); export const qqbotNativeApprovalAdapter = splitChannelApprovalCapability(qqbotApprov let _cachedCapability: ChannelApprovalCapability | undefined; export function getQQBotApprovalCapability(): ChannelApprovalCapability { _cachedCapability ??= qqbotApprovalCapability; return _cachedCapability; }
¤ Dauer der Verarbeitung: 0.12 Sekunden (vorverarbeitet am 2026-06-10) ¤*© Formatika GbR, Deutschland |
|
||||||||||||||
2026-06-09