openclaw/src at 2dcd2f909449d55324e2305836df2058d4c0599d - openclaw - Gitea: Git with a cup of tea

negodiy/openclaw

Files

History

Arthur Freitas Ramos 2dcd2f9094 fix: refresh Copilot token before expiry and retry on auth errors

GitHub Copilot API tokens expire after ~30 minutes. When OpenClaw spawns
a long-running subagent using Copilot as the provider, the token would
expire mid-session with no recovery mechanism, causing 401 auth errors.

This commit adds:
- Periodic token refresh scheduled 5 minutes before expiry
- Auth error detection with automatic token refresh and single retry
- Proper timer cleanup on session shutdown to prevent leaks

The implementation uses a per-attempt retry flag to ensure each auth
error can trigger one refresh+retry cycle without creating infinite
retry loops.

🤖 AI-assisted: This fix was developed with GitHub Copilot CLI assistance.
Testing: Fully tested with 3 new unit tests covering auth retry, retry
reset, and timer cleanup scenarios. All 11 auth rotation tests pass.

2026-03-02 02:09:40 +00:00

..

ACP: carry dedupe/projector updates onto configurable acpx branch

2026-03-01 20:39:24 +01:00

fix: refresh Copilot token before expiry and retry on auth errors

2026-03-02 02:09:40 +00:00

fix(auto-reply): land #31080 from @scoootscooob

2026-03-02 01:17:42 +00:00

test(browser): fix windows download tmp path assertions

2026-03-02 01:32:28 +00:00

…

fix(discord): support applied_tags parameter for forum thread creation

2026-03-02 02:05:11 +00:00

fix(cli): set cron run exit code from run outcome (land #31121 by @Sid-Qin)

2026-03-02 01:58:39 +00:00

fix(doctor): use posix path semantics for linux sd detection

2026-03-02 01:48:14 +00:00

…

discord: expose EventQueue listenerTimeout as configurable option (fixes #24458 )

2026-03-02 02:06:24 +00:00

fix(cron): retry rename on EBUSY and fall back to copyFile on Windows

2026-03-01 20:02:24 -06:00

Node install: persist gateway token in service env (#31122 )

2026-03-01 17:35:24 -08:00

discord: expose EventQueue listenerTimeout as configurable option (fixes #24458 )

2026-03-02 02:06:24 +00:00

…

fix(security): harden root-scoped writes against symlink races

2026-03-02 01:27:46 +00:00

refactor: unify boundary hardening for file reads

2026-02-26 13:04:37 +01:00

refactor(security): enforce account-scoped pairing APIs

2026-02-26 21:57:52 +01:00

fix(security): harden root-scoped writes against symlink races

2026-03-02 01:27:46 +00:00

refactor(security): enforce account-scoped pairing APIs

2026-02-26 21:57:52 +01:00

link-understanding

…

refactor(diagnostics): hot-reload stuck warning threshold

2026-03-02 00:32:33 +00:00

fix(markdown): require paired || delimiters for spoiler detection (#26105 )

2026-02-25 04:54:51 +00:00

fix: harden sandbox media reads against TOCTOU escapes

2026-03-02 01:04:01 +00:00

media-understanding

fix(security): lock sandbox tmp media paths to openclaw roots

2026-02-24 23:10:19 +00:00

fix(memory): discard stdout for qmd update/embed to prevent output cap failure (openclaw#28900) thanks @Glucksberg

2026-03-01 12:16:50 -06:00

refactor!: remove versioned system-run approval contract

2026-03-02 01:12:53 +00:00

refactor(channels): unify dm pairing policy flows

2026-02-26 22:36:20 +01:00

fix(acpx): default strict windows wrapper policy on windows

2026-03-02 01:31:32 +00:00

fix(plugins): prioritize bundled duplicates in auto-discovery

2026-03-01 23:48:30 +00:00

test: harden flaky timeout and resolver specs

2026-03-01 21:30:07 +00:00

Config: expand Kilo catalog and persist selected Kilo models (#24921 )

2026-02-23 21:17:37 -05:00

fix(routing): treat group/channel peer.kind as equivalent (land #31135 by @Sid-Qin)

2026-03-02 01:47:02 +00:00

…

test: harden flaky timeout and resolver specs

2026-03-01 21:30:07 +00:00

Fixes minor security vulnerability (#30948 ) (#30951 )

2026-03-02 00:38:01 +00:00

TUI: sync /model status immediately

2026-02-28 14:02:56 -08:00

Web UI: strip relevant-memories scaffolding

2026-02-28 13:20:50 -08:00

fix(signal): prevent sentTranscript sync messages from bypassing loop protection (#31093 )

2026-03-02 01:11:22 +00:00

fix(channels): align command-body parsing sources

2026-03-01 23:11:48 +00:00

fix(telegram): prevent channel-level groups from leaking to all accounts in multi-account setups

2026-03-02 02:08:11 +00:00

…

refactor: dedupe media and request-body test scaffolding

2026-02-22 18:37:25 +00:00

diffs plugin

2026-02-28 18:38:00 -05:00

fix(tts): use opus format and enable voice bubbles for feishu and whatsapp (#27366 )

2026-02-27 23:41:22 -06:00

TUI: guard SIGTERM shutdown against setRawMode EBADF

2026-02-28 14:56:01 -08:00

…

fix(agents): add forward-compat fallback for google-gemini-cli gemini-3.1-pro/flash-preview (#26570 )

2026-02-26 18:39:13 -05:00

refactor(security): enforce account-scoped pairing APIs

2026-02-26 21:57:52 +01:00

WhatsApp: enforce allowFrom for explicit outbound sends (#20921 )

2026-02-22 18:13:23 -05:00

refactor(gateway): dedupe origin seeding and plugin route auth matching

2026-03-02 00:42:22 +00:00

channel-web.ts

…

docker-image-digests.test.ts

…

docker-setup.test.ts

fix(docker): ensure agent directory permissions in docker-setup.sh (#28841 )

2026-03-01 18:07:34 -08:00

dockerfile.test.ts

fix(docker): harden /app/extensions permissions to 755 (#30191 )

2026-03-01 15:45:21 -08:00

entry.ts

CLI: add root --help fast path and lazy channel option resolution (#30975 )

2026-03-01 14:23:46 -08:00

extensionAPI.ts

…

globals.ts

…

index.ts

…

logger.test.ts

…

logger.ts

…

logging.ts

…

polls.test.ts

…

polls.ts

…

runtime.ts

…

utils.test.ts

fix(utils): guard resolveUserPath for missing workspace input

2026-02-22 13:19:25 +01:00

utils.ts

fix(utils): guard resolveUserPath for missing workspace input

2026-02-22 13:19:25 +01:00

version.test.ts

test(core): increase coverage for sessions, auth choice, and model listing

2026-02-22 14:08:51 +00:00

version.ts

…