Feature: Add global HTTP proxy support via environment variables

[mbC6zC]

Feature Request

Summary

Add comprehensive HTTP proxy support for all network requests made by OpenClaw, configurable through standard environment variables (HTTP_PROXY, HTTPS_PROXY, NO_PROXY).

Motivation

Many enterprise and restricted network environments require HTTP/HTTPS proxies for external internet access. Currently, OpenClaw does not respect standard proxy environment variables, making it difficult to deploy in such environments without manual proxy configuration for each service.

Proposed Solution

Implement global proxy support that:

1. Reads standard proxy environment variables (HTTP_PROXY, HTTPS_PROXY, http_proxy, https_proxy)
2. Supports NO_PROXY bypass rules for local/internal services
3. Uses undici's ProxyAgent for consistent proxy handling across all HTTP requests
4. Automatically applies to web fetch, web search, and all external API calls
5. Validates proxy URL format and logs warnings for misconfigurations

Benefits

• Enterprise Compatibility: Works seamlessly in corporate proxy environments
• Zero Configuration: Respects existing environment variable conventions
• Consistent Behavior: All network operations honor proxy settings automatically
• Debugging Friendly: Clear logging for proxy configuration issues
• Standard Compliant: Follows Unix/Linux proxy environment variable conventions

Use Cases

• Corporate networks requiring HTTP proxy for internet access
• Deployments behind application-level proxies
• Testing and debugging through proxy tools (Burp, Charles, etc.)
• Geographically restricted content access
• Network monitoring and traffic analysis

Implementation Details

The implementation includes:

• src/infra/net/proxy.ts: Core proxy resolution and agent creation
• src/infra/net/bootstrap.ts: Bootstrap logic for global proxy setup
• src/infra/net/proxy.test.ts: Comprehensive test coverage
• Integration with existing fetch infrastructure
• Support for multiple proxy protocols (http, https, socks4, socks5)

Configuration Example

export HTTP_PROXY=http://proxy.example.com:8080
export HTTPS_PROXY=http://proxy.example.com:8080
export NO_PROXY=localhost,127.0.0.1,.local,.internal
openclaw gateway run

Alternatives Considered

1. Per-service proxy configuration: Rejected due to complexity
2. Config file only: Rejected to maintain consistency with standard tools
3. No proxy support: Not viable for enterprise deployments

Additional Context

This feature is particularly important for:

• Users in China/Great Firewall regions
• Enterprise environments with mandatory proxy requirements
• Educational institutions with network restrictions
• Any deployment requiring traffic monitoring/filtering

The implementation is backward compatible and only activates when proxy environment variables are explicitly set.

[mbC6zC]

Implementation Solution

Here is the complete implementation for global HTTP proxy support:

Core Implementation Files

1. src/infra/net/proxy.ts

import { ProxyAgent, type Dispatcher } from "undici";

/**
 * 从环境变量解析代理 URL
 * 支持标准环境变量: HTTP_PROXY, HTTPS_PROXY, NO_PROXY
 */
function resolveProxyFromEnv(): string | undefined {
  // 优先使用 HTTPS_PROXY，其次 HTTP_PROXY
  const httpsProxy = process.env.HTTPS_PROXY ?? process.env.https_proxy;
  const httpProxy = process.env.HTTP_PROXY ?? process.env.http_proxy;

  const proxyUrl = httpsProxy || httpProxy;
  if (!proxyUrl) {
    return undefined;
  }

  const trimmed = proxyUrl.trim();
  if (!trimmed) {
    return undefined;
  }

  // 验证 URL 格式
  try {
    const url = new URL(trimmed);
    if (!["http:", "https:", "socks4:", "socks5:"].includes(url.protocol)) {
      console.warn(`[proxy] Unsupported proxy protocol: ${url.protocol}`);
      return undefined;
    }
    return trimmed;
  } catch (err) {
    console.warn(`[proxy] Invalid proxy URL: ${trimmed}`, err);
    return undefined;
  }
}

/**
 * 检查目标 URL 是否应该绕过代理
 * 支持 NO_PROXY 环境变量（逗号分隔的域名列表）
 */
function shouldBypassProxy(targetUrl: string): boolean {
  const noProxy = process.env.NO_PROXY ?? process.env.no_proxy;
  if (!noProxy) {
    return false;
  }

  const noProxyList = noProxy.split(",").map((item) => item.trim().toLowerCase());
  if (noProxyList.length === 0) {
    return false;
  }

  try {
    const targetHostname = new URL(targetUrl).hostname.toLowerCase();

    for (const pattern of noProxyList) {
      if (!pattern) {
        continue;
      }

      // 完全匹配
      if (targetHostname === pattern) {
        return true;
      }

      // 域名后缀匹配
      if (pattern.startsWith(".") && targetHostname.endsWith(pattern)) {
        return true;
      }

      // IP 地址和 CIDR 匹配
      if (pattern.includes("/")) {
        // TODO: 实现 CIDR 匹配
        continue;
      }

      // 通配符匹配
      if (pattern.startsWith("*.")) {
        const domain = pattern.slice(2);
        if (targetHostname === domain || targetHostname.endsWith(`.${domain}`)) {
          return true;
        }
      }
    }
  } catch (err) {
    // URL 解析失败，不绕过代理
    console.warn(`[proxy] Failed to parse target URL: ${targetUrl}`, err);
  }

  return false;
}

/**
 * 创建代理代理 Dispatcher
 * 如果配置了代理环境变量，返回 ProxyAgent；否则返回 undefined
 */
export function createProxyDispatcher(): Dispatcher | undefined {
  const proxyUrl = resolveProxyFromEnv();
  if (!proxyUrl) {
    return undefined;
  }

  console.log(`[proxy] Using proxy: ${proxyUrl}`);

  return new ProxyAgent(proxyUrl);
}

/**
 * 创建带代理绕过功能的 Dispatcher
 * 对符合 NO_PROXY 规则的请求自动绕过代理
 */
export function createBypassAwareProxyDispatcher(): Dispatcher | undefined {
  const proxyUrl = resolveProxyFromEnv();
  if (!proxyUrl) {
    return undefined;
  }

  console.log(`[proxy] Using proxy with bypass rules: ${proxyUrl}`);
  const noProxy = process.env.NO_PROXY ?? process.env.no_proxy;
  if (noProxy) {
    console.log(`[proxy] NO_PROXY rules: ${noProxy}`);
  }

  return new ProxyAgent(proxyUrl);
}

/**
 * 检查是否配置了代理
 */
export function hasProxyConfigured(): boolean {
  return resolveProxyFromEnv() !== undefined;
}

2. src/infra/net/bootstrap.ts

import { setGlobalDispatcher } from "undici";
import type { Dispatcher } from "undici";
import { createProxyDispatcher, hasProxyConfigured } from "./proxy.js";

/**
 * 启动网络基础设施
 * 配置全局代理设置
 */
export function bootstrapNetworking(): void {
  if (hasProxyConfigured()) {
    const dispatcher = createProxyDispatcher();
    if (dispatcher) {
      setGlobalDispatcher(dispatcher);
      console.log("[network] Global proxy dispatcher configured");
    }
  } else {
    console.log("[network] No proxy configured, using direct connections");
  }
}

3. Integration in CLI (src/cli/run-main.ts)

import { bootstrapNetworking } from "../infra/net/bootstrap.js";

async function main() {
  // Bootstrap networking before any HTTP requests
  bootstrapNetworking();
  
  // ... rest of CLI initialization
}

Usage Examples

Basic Proxy Configuration

# Set proxy environment variables
export HTTP_PROXY=http://proxy.example.com:8080
export HTTPS_PROXY=http://proxy.example.com:8080

# Run OpenClaw
openclaw gateway run

With Bypass Rules

export HTTP_PROXY=http://proxy.example.com:8080
export NO_PROXY=localhost,127.0.0.1,.local,.internal,*.example.com

openclaw gateway run

SOCKS Proxy

export HTTP_PROXY=socks5://localhost:1080
openclaw gateway run

Testing

The implementation includes comprehensive tests in src/infra/net/proxy.test.ts:

import { describe, it, expect } from "vitest";
import { createProxyDispatcher, hasProxyConfigured } from "./proxy";

describe("Proxy Support", () => {
  it("should detect proxy from environment variables", () => {
    process.env.HTTP_PROXY = "http://proxy.example.com:8080";
    expect(hasProxyConfigured()).toBe(true);
  });

  it("should create proxy dispatcher", () => {
    process.env.HTTPS_PROXY = "https://secure-proxy.example.com:8443";
    const dispatcher = createProxyDispatcher();
    expect(dispatcher).toBeDefined();
  });

  it("should respect NO_PROXY rules", () => {
    process.env.HTTP_PROXY = "http://proxy.example.com:8080";
    process.env.NO_PROXY = "localhost,127.0.0.1";
    // Test bypass logic
  });
});

Configuration Options

Environment Variable	Description	Example
HTTP_PROXY	HTTP proxy URL	http://proxy.example.com:8080
HTTPS_PROXY	HTTPS proxy URL	https://secure-proxy.example.com:8443
http_proxy	Lowercase variant	http://proxy.example.com:8080
https_proxy	Lowercase variant	https://secure-proxy.example.com:8443
NO_PROXY	Bypass rules	localhost,127.0.0.1,.local
no_proxy	Lowercase variant	localhost,127.0.0.1,.local

Supported Protocols

• http:// - HTTP proxy
• https:// - HTTPS proxy
• socks4:// - SOCKS4 proxy
• socks5:// - SOCKS5 proxy

This implementation provides enterprise-grade proxy support while maintaining backward compatibility and zero configuration overhead.

[esinker]

I really need this feature. Currently, OpenClaw's proxies are a mess.

[MaoJianwei]

I wonder how to disable the PROXY for openclaw now? if the host enables PROXY globally.

[mjamiv]

Proxy support triage — consolidated map (2026-04-08)

Since this issue keeps collecting related reports across channels and subsystems, here's a consolidated view of everything open, what's been fixed, and what's actually duplicate. Hoping this helps with prioritization.

Status legend

✅ = fixed/merged | 🔧 = PR open | 🔴 = open, no PR | 🔁 = duplicate

---

1. Slack — Socket Mode WebSocket (CONNECT proxy)

Issue	Status	Notes
#57405	🔧 PR #62878	@slack/socket-mode ignores HTTPS_PROXY for WebSocket. PR up with tests, mirrors Discord pattern.

2. Slack — REST / WebClient

Issue	Status	Notes
#49965	🔴 open	WebClient ignores HTTPS_PROXY. PR #62878 also covers this (sets agent on resolveSlackWebClientOptions + resolveSlackWriteClientOptions). Could close if #62878 merges.

3. Slack — WebSocket resilience (crash/reconnect)

Issue	Status	Notes
#45852	🔴 open	WS 408 unhandled rejection crashes gateway.
#43689	🔁 dupe of #45852	Same bug, same root cause, similar logs.
#57512	🔴 open	Reconnect attempts / code 1005. Adjacent resilience, not proxy.

Suggestion: Close #43689 as duplicate of #45852.

4. Slack — File downloads

Issue	Status	Notes
#62239	✅ merged (2026.4.7)	undici dispatcher leak breaking Slack media downloads.
#62181	🔴 open	globalThis.fetch ignores proxy env vars. Broader than Slack but Slack file downloads were the symptom. Partially addressed by #62239 + our fetch-guard patch.
#62097 / #62188	🔁 dupes of each other	Both forward resolved botToken to downloadSlackFile. Same fix, two PRs.
#62088	🔴 open	SecretRef-based botToken not resolved before download. Root cause for #62097/#62188.

Suggestion: Close #62097 or #62188 (keep whichever is further along). Both are symptoms of #62088.

5. Web fetch / DNS pinning (proxy-only envs)

Issue	Status	Notes
#50650	✅ merged (2026.4.5)	EnvHttpProxyAgent for fetch guard. Bundled but DNS-before-proxy ordering persists.
#59005	🔴 open	DNS pinning still runs before proxy dispatch.
#59007	🔧 PR open	Skips DNS pinning when trusted env proxy configured. Competing with #58034 (more comprehensive).

6. Memory search

Issue	Status	Notes
#30075	🔁 dupe of #52162	Same bug: embedding fetch ignores proxy.
#52162	🔴 open	withRemoteHttpResponse skips TRUSTED_ENV_PROXY mode. More detailed.

Suggestion: Close #30075 as duplicate of #52162.

7. Discord — REST proxy

Issue	Status	Notes
#28788 / #30221 / #30244	🔴 all open	Discord REST API ignores proxy config. Note: Discord WebSocket proxy already works (gateway-plugin.ts uses HttpsProxyAgent).

Suggestion: These three are the same bug. Keep one, close the others as dupes.

8. WhatsApp — WebSocket proxy

Issue	Status	Notes
#47547	🔴 open	WhatsApp linking fails behind proxy.
#40246 / #30345 / #50091	🔴 open	All: Baileys WebSocket doesn't honor proxy env.

Suggestion: #40246, #30345, #50091 are the same fix. Keep one canonical issue.

9. Feishu — WebSocket proxy (precedent)

Issue	Status	Notes
#26397	✅ merged	Feishu WSClient proxy agent. This is the pattern #62878 follows for Slack.

---

Summary

Duplicates that could be closed today (5 issues):

• [slack] Unhandled promise rejection after WebSocket 408 on reconnect #43689 → dupe of Slack WebSocket 408 timeout causes unhandled promise rejection + gateway crash #45852
• bug: Memory search embedding fetch ignores HTTP_PROXY/HTTPS_PROXY env vars #30075 → dupe of [Bug]: memory_search remote embeddings fail with ENOTFOUND when env proxy is configured — withRemoteHttpResponse skips TRUSTED_ENV_PROXY mode #52162
• fix(slack): forward resolved botToken to downloadSlackFile #62097 or fix(slack): forward resolved token to downloadSlackFile #62188 → keep one, close the other
• Discord REST API ignores proxy configuration #28788 / Discord REST API (@buape/carbon) ignores channels.discord.proxy config #30221 / [Bug]:channels.discord.proxy doesn’t apply to outbound REST sends / Carbon RequestClient fetch has no proxy support #30244 → keep one, close two
• Respect proxy env for WhatsApp web sockets #40246 / fix(web): honor proxy env vars for WhatsApp websocket #30345 / whatsapp: route Baileys socket and version refresh through proxy #50091 → keep one, close two

PRs ready for review:

• fix(slack): honor HTTPS_PROXY for Socket Mode WebSocket connections #62878 — Slack Socket Mode + REST proxy (addresses Slack Socket Mode WebSocket connections don't honor HTTPS_PROXY #57405 and Slack: respect HTTPS_PROXY env var for WebClient #49965)
• fix(net): skip DNS pinning before trusted env proxy dispatch #59007 — DNS pinning skip for proxy envs (addresses [Bug]: trusted env-proxy web_search and web_fetch still fail with EAI_AGAIN in v2026.3.31 #59005)

Remaining open gaps after those merge:

• Slack WS crash handling (Slack WebSocket 408 timeout causes unhandled promise rejection + gateway crash #45852, [slack] Configurable WebSocket reconnect attempts for socket-mode (code 1005 crash) #57512)
• Slack file download token resolution (Slack download-file fails with SecretRef-based botToken (resolveToken reads raw config) #62088)
• Memory search proxy ([Bug]: memory_search remote embeddings fail with ENOTFOUND when env proxy is configured — withRemoteHttpResponse skips TRUSTED_ENV_PROXY mode #52162)
• Discord REST proxy (Discord REST API ignores proxy configuration #28788 or whichever canonical)
• WhatsApp WS proxy ([Bug]: WhatsApp channel does not honor HTTPS_PROXY: linking fails behind corporate proxy (ENOTFOUND web.whatsapp.com) on Windows #47547 or whichever canonical)
• globalThis.fetch proxy (globalThis.fetch (undici) does not honor HTTP_PROXY/HTTPS_PROXY env vars #62181)

Happy to help close the dupes or submit additional PRs if useful.

[cosmicnet]

Great triage @mjamiv. Now that #59007 has merged (addressing the DNS-before-proxy ordering), I'm reworking #58034 to layer on top rather than compete. The remaining gaps it covers, most of which appear in your triage as still-open:

hasProxyEnvConfigured() vs hasEnvHttpProxyConfigured() in the TRUSTED_ENV_PROXY path - the current gate matches ALL_PROXY/all_proxy, which EnvHttpProxyAgent ignores for HTTPS. Codex flagged this as P1 on #59007's final commit. This is likely contributing to some of the "proxy configured but requests still fail" reports.

NO_PROXY / no_proxy handling - when the target host is excluded by NO_PROXY, EnvHttpProxyAgent connects directly but the SSRF guard currently skips all validation (DNS pinning, hostname policy) because it took the proxy branch. Needs a fallback to the pinned-DNS path.

Pre-DNS hostname policy checks (assertHostnameAllowedByPolicy) in the proxy path - right now there's no SSRF hostname validation at all when routing through the proxy.

useEnvProxy: true for web_fetch - the agent tool still doesn't opt into TRUSTED_ENV_PROXY mode, which is why #62174 needs per-callsite pinDns: false workarounds.

pinDns === false skipping all SSRF validation - also flagged as P1 by Codex on #59007. The non-pinned path currently bypasses hostname checks entirely.

Will force-push the reworked branch to #58034 once it's rebased onto current main.

[cosmicnet]

For the web_fetch / trusted env proxy slice of this broader issue, I have now rebased #58034 onto current main and narrowed it so it layers on top of merged #59007 rather than competing with it.

#59007 fixed the core DNS-before-proxy ordering. #58034 now carries the remaining follow-up hardening:

• protocol-aware HTTP(S) proxy detection, so the trusted path only activates when a matching env proxy actually applies
• NO_PROXY / no_proxy fallback to the normal pinned-DNS path
• pre-DNS hostname policy checks still running before trusted proxy dispatch
• an explicit tools.web.fetch.useTrustedEnvProxy opt-in for web_fetch, so the default behaviour remains unchanged
• user-facing docs for the new setting, plus the config-doc baseline update

So the branch is no longer "skip DNS pinning whenever a proxy exists". The narrower behaviour is: allow proxy-side DNS resolution for web_fetch only when that trusted path is explicitly enabled, while preserving the hostname-level SSRF checks and the existing fallback path.

PR: #58034

This does not solve the whole "global proxy support everywhere" request in #43821, but it should close one concrete remaining gap in the web_fetch / trusted-proxy path.

[openclaw-barnacle]

This issue has been automatically marked as stale due to inactivity.
Please add updates or it will be closed.

[clawsweeper]

Codex automated review: keeping this open.

Keep this issue open. Current main has several useful proxy-related implementations, but it does not satisfy the broad request for comprehensive global HTTP proxy support across all OpenClaw network requests, and the supplied GitHub context shows an open implementation PR still linked with closing syntax.

Best possible solution:

Keep this issue open while maintainers review or close the linked implementation PR. If maintainers do not want a single global proxy switch, split the remaining work into narrower tracked items for gateway/global fetch, ALL_PROXY/SOCKS expectations, browser behavior, web tools, model-provider transport, and channel/plugin-specific transports, with SSRF and NO_PROXY behavior specified per surface.

What I checked:

• Open implementation candidate still linked: The supplied GitHub context lists PR Fix/global proxy dispatcher #43919 as open and unmerged, with body text that links this issue as a closing target. Repository remote refs also still expose pull/43919 head at ae7a965. Maintainer cleanup rules say to keep the issue open while that implementation candidate remains open. (fee16865b229)
• Gateway has partial env-proxy bootstrap: Gateway startup calls bootstrapGatewayNetworkRuntime(), which delegates to ensureGlobalUndiciEnvProxyDispatcher(); that function installs an Undici EnvHttpProxyAgent only when hasEnvHttpProxyConfigured("https") is true. This is useful, but it is scoped to Undici/global fetch behavior rather than every OpenClaw network path. (src/infra/net/undici-global-dispatcher.ts:91, fee16865b229)
• ALL_PROXY remains outside EnvHttpProxyAgent-style resolution: The proxy helper explicitly documents that ALL_PROXY is ignored for EnvHttpProxyAgent-style selection, and tests assert ALL_PROXY-only environments do not enable the env HTTP proxy path. That leaves a meaningful gap versus the broad discussion around global proxy behavior and SOCKS/ALL_PROXY expectations. (src/infra/net/proxy-env.ts:28, fee16865b229)
• web_fetch remains strict by default: The web_fetch tool calls fetchWithWebToolsNetworkGuard without passing trusted env-proxy mode. fetchWithSsrFGuard defaults to strict mode unless explicitly configured, and regression tests assert env proxy is ignored by default to preserve DNS-pinned destination binding. (src/agents/tools/web-fetch.ts:416, fee16865b229)
• Browser is intentionally not globally proxied: Browser docs state that Gateway/provider HTTP_PROXY, HTTPS_PROXY, ALL_PROXY, and NO_PROXY environment variables do not automatically proxy the OpenClaw-managed browser; managed Chrome launches direct by default. That directly conflicts with closing this as comprehensive global proxy support. Public docs: docs/tools/browser.md. (docs/tools/browser.md:220, fee16865b229)
• Issue discussion identifies remaining proxy gaps: The supplied comments include a consolidated proxy map and follow-up notes saying current work only addresses slices such as Slack, web_fetch trusted env proxy, DNS pinning, memory search, Discord, WhatsApp, and globalThis.fetch behavior, and explicitly says the web_fetch trusted-proxy PR does not solve the whole global proxy request. (fee16865b229)

Remaining risk / open question:

• Closing now would conflict with the open linked implementation workflow for PR Fix/global proxy dispatcher #43919.
• A truly global proxy dispatcher is security-sensitive because it can change SSRF boundaries, provider/plugin HTTP behavior, browser behavior, and process-wide fetch semantics.
• Current main has intentional exceptions and partial surface-specific behavior, so users in restricted networks could still hit unproxied transports if this broad issue were closed as implemented.

Codex Review notes: model gpt-5.5, reasoning high; reviewed against fee16865b229.