ironclaw 0.24.0

Secure personal AI assistant that protects your data and expands its capabilities on the fly
Documentation 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143

//! OpenClaw configuration to IronClaw settings mapping.

use secrecy::SecretString;
use std::collections::HashMap;

use super::reader::OpenClawConfig;

/// Map OpenClaw configuration to IronClaw settings (dotted-key format).
pub fn map_openclaw_config_to_settings(
    config: &OpenClawConfig,
) -> HashMap<String, serde_json::Value> {
    let mut settings = HashMap::new();

    // Map LLM configuration
    if let Some(ref llm) = config.llm {
        if let Some(ref provider) = llm.provider {
            settings.insert(
                "llm.backend".to_string(),
                serde_json::Value::String(provider.clone()),
            );
        }

        if let Some(ref model) = llm.model {
            settings.insert(
                "llm.selected_model".to_string(),
                serde_json::Value::String(model.clone()),
            );
        }

        if let Some(ref base_url) = llm.base_url {
            settings.insert(
                "llm.base_url".to_string(),
                serde_json::Value::String(base_url.clone()),
            );
        }
    }

    // Map embeddings configuration
    if let Some(ref emb) = config.embeddings {
        if let Some(ref model) = emb.model {
            settings.insert(
                "embeddings.model".to_string(),
                serde_json::Value::String(model.clone()),
            );
        }

        if let Some(ref provider) = emb.provider {
            settings.insert(
                "embeddings.provider".to_string(),
                serde_json::Value::String(provider.clone()),
            );
        }
    }

    // Map any other top-level settings
    for (key, value) in &config.other_settings {
        // Safely pass through JSON-serializable values
        settings.insert(key.clone(), value.clone());
    }

    settings
}

/// Extract credentials from OpenClaw configuration.
///
/// Returns a list of (secret_name, secret_value) pairs that should be stored.
/// Secret values are never logged or printed.
pub fn extract_credentials(config: &OpenClawConfig) -> Vec<(String, SecretString)> {
    let mut credentials = Vec::new();

    // Extract LLM API key if present
    if let Some(ref llm) = config.llm
        && let Some(ref api_key) = llm.api_key
    {
        credentials.push(("llm_api_key".to_string(), api_key.clone()));
    }

    // Extract embeddings API key if present
    if let Some(ref emb) = config.embeddings
        && let Some(ref api_key) = emb.api_key
    {
        credentials.push(("embeddings_api_key".to_string(), api_key.clone()));
    }

    credentials
}

#[cfg(test)]
mod tests {
    use super::*;
    use crate::import::openclaw::reader::{OpenClawConfig, OpenClawLlmConfig};

    #[test]
    fn test_map_llm_config() {
        let mut config = OpenClawConfig {
            llm: None,
            embeddings: None,
            other_settings: HashMap::new(),
        };

        config.llm = Some(OpenClawLlmConfig {
            provider: Some("openai".to_string()),
            model: Some("gpt-4".to_string()),
            api_key: Some(SecretString::new("secret".to_string().into_boxed_str())),
            base_url: None,
        });

        let settings = map_openclaw_config_to_settings(&config);

        assert_eq!(
            settings.get("llm.backend"),
            Some(&serde_json::Value::String("openai".to_string()))
        );
        assert_eq!(
            settings.get("llm.selected_model"),
            Some(&serde_json::Value::String("gpt-4".to_string()))
        );
    }

    #[test]
    fn test_extract_credentials_never_logs() {
        let mut config = OpenClawConfig {
            llm: None,
            embeddings: None,
            other_settings: HashMap::new(),
        };

        config.llm = Some(OpenClawLlmConfig {
            provider: Some("anthropic".to_string()),
            model: Some("claude-3".to_string()),
            api_key: Some(SecretString::new(
                "secret-key-value".to_string().into_boxed_str(),
            )),
            base_url: None,
        });

        let creds = extract_credentials(&config);
        assert_eq!(creds.len(), 1);
        assert_eq!(creds[0].0, "llm_api_key");
        // Verify the value is wrapped in SecretString (never exposed in Debug output)
        assert!(!format!("{:?}", creds[0].1).contains("secret-key-value"));
    }
}