Commit Graph

9 Commits

Author SHA1 Message Date
Ojus Save
01e659e14d fix(render): improve permission handling and error checking
- Use touch/rm test instead of -w flag for better compatibility
- Clean up unused variables
- Add clearer fallback chain with logging
- Ensure script handles all edge cases gracefully
2026-01-26 11:37:41 -08:00
Ojus Save
0710303f30 fix(render): handle permission errors when running as non-root user
- Check if CLAWDBOT_STATE_DIR or /data/.clawdbot is writable
- Fall back to $HOME/.clawdbot if permissions fail
- Update CLAWDBOT_STATE_DIR export to match actual directory used
- Prevents Docker failures when running as node user (non-root)
2026-01-26 10:40:38 -08:00
Ojus Save
a3ced7f523 debug: verify config is readable and disable cache 2026-01-26 01:51:23 -08:00
Ojus Save
5c78e7897d fix: explicitly set CLAWDBOT_CONFIG_PATH to ensure config is loaded 2026-01-26 01:50:21 -08:00
Ojus Save
e18261e65c debug: write config to both locations 2026-01-26 01:47:51 -08:00
Ojus Save
519ea85238 debug: add verbose output to startup script 2026-01-26 01:38:19 -08:00
Ojus Save
035fa457bd fix(render): use startup script to configure trustedProxies
The key difference from the wrapper:
- Wrapper strips proxy headers before forwarding to internal gateway
- Direct deployment needs trustedProxies config to trust Render's proxy IPs

This script:
1. Creates config with gateway.trustedProxies for Render's internal IPs
2. Sets allowInsecureAuth for Control UI access
3. Starts gateway with token auth
2026-01-26 01:04:34 -08:00
Ojus Save
8396539d7c fix(render): pass password from env var to gateway command 2026-01-26 00:28:59 -08:00
Ojus Save
fab6b51b6e fix(render): add startup script to configure trusted proxies and insecure UI auth
- Create render-start.sh that writes config before starting gateway
- Configure gateway.trustedProxies for Render's internal network
- Enable gateway.controlUi.allowInsecureAuth to skip device pairing
2026-01-26 00:20:36 -08:00