openclaw

Author	SHA1	Message	Date
Ojus Save	041e279427	fix(render): improve permission handling and error checking - Use touch/rm test instead of -w flag for better compatibility - Clean up unused variables - Add clearer fallback chain with logging - Ensure script handles all edge cases gracefully	2026-01-28 10:10:18 -08:00
Ojus Save	4b37990554	fix(render): handle permission errors when running as non-root user - Check if CLAWDBOT_STATE_DIR or /data/.clawdbot is writable - Fall back to $HOME/.clawdbot if permissions fail - Update CLAWDBOT_STATE_DIR export to match actual directory used - Prevents Docker failures when running as node user (non-root)	2026-01-28 10:10:18 -08:00
Ojus Save	bf39de591c	debug: verify config is readable and disable cache	2026-01-28 10:10:12 -08:00
Ojus Save	eec4567f0c	fix: explicitly set CLAWDBOT_CONFIG_PATH to ensure config is loaded	2026-01-28 10:10:12 -08:00
Ojus Save	6df64ae4f7	debug: write config to both locations	2026-01-28 10:10:12 -08:00
Ojus Save	744371091b	debug: add verbose output to startup script	2026-01-28 10:10:12 -08:00
Ojus Save	e56581caf2	fix(render): use startup script to configure trustedProxies The key difference from the wrapper: - Wrapper strips proxy headers before forwarding to internal gateway - Direct deployment needs trustedProxies config to trust Render's proxy IPs This script: 1. Creates config with gateway.trustedProxies for Render's internal IPs 2. Sets allowInsecureAuth for Control UI access 3. Starts gateway with token auth	2026-01-28 10:10:12 -08:00
Ojus Save	453e40d25f	fix(render): pass password from env var to gateway command	2026-01-28 10:10:12 -08:00
Ojus Save	9eaaa2b0d0	fix(render): add startup script to configure trusted proxies and insecure UI auth - Create render-start.sh that writes config before starting gateway - Configure gateway.trustedProxies for Render's internal network - Enable gateway.controlUi.allowInsecureAuth to skip device pairing	2026-01-28 10:10:12 -08:00

9 Commits