[Bug]: Control UI over LAN HTTP still requires device identity and does not send auth token

[KingAkrej]

Bug type

Regression (worked before, now fails)

Summary

Control UI accessed over LAN HTTP in 2026.3.12 fails with "device identity required" even when allowInsecureAuth and dangerouslyDisableDeviceAuth are enabled, and the connect request does not include params.auth.token.

Steps to reproduce

1. Run OpenClaw 2026.3.12 in a Docker container
2. Configure gateway with:

• bind: "lan"
• auth.mode: "token"
• valid gateway.auth.token
• gateway.controlUi.allowedOrigins = ["ip"]
• gateway.controlUi.allowInsecureAuth = true
• gateway.controlUi.dangerouslyDisableDeviceAuth = true

3. Restart the container
4. Open ip from another machine on the LAN
5. Enter:

• WebSocket URL: ws://ip
• correct gateway token

6. Click Connect
7. Observe error: device identity required

Expected behavior

Control UI should connect successfully over LAN HTTP when allowInsecureAuth: true and dangerouslyDisableDeviceAuth: true are enabled.

At minimum, the client should send params.auth.token in the connect request and should not fail with device identity required.

Actual behavior

Control UI loads in the browser, but clicking Connect fails with:

• device identity required

The gateway responds to the connect request with:

• NOT_PAIRED
• DEVICE_IDENTITY_REQUIRED

Captured trace shows the request is sent without params.auth and without params.device.

OpenClaw version

2026.3.12

Operating system

Linux

Install method

docker

Model

gpt 5.4

Provider / routing chain

openclaw -> openai

Config file / key location

No response

Additional provider/model setup details

No response

Logs, screenshots, and evidence

{"type":"event","event":"connect.challenge","payload":{"nonce":"366f183e-0f0f-46eb-b64b-5c4411010257","ts":1773438431889}}
{"type":"req","id":"6f86c753-80b7-4387-922b-7002a4a4c0c8","method":"connect","params":{"minProtocol":3,"maxProtocol":3,"client":{"id":"openclaw-control-ui","version":"2026.3.12","platform":"Win32","mode":"webchat","instanceId":"9ebfb0aa-84c6-46a8-a3e6-9c7c2b70fa85"},"role":"operator","scopes":["operator.admin","operator.approvals","operator.pairing"],"caps":["tool-events"],"userAgent":"Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/145.0.0.0 Safari/537.36","locale":"cs"}}
{"type":"res","id":"6f86c753-80b7-4387-922b-7002a4a4c0c8","ok":false,"error":{"code":"NOT_PAIRED","message":"device identity required","details":{"code":"DEVICE_IDENTITY_REQUIRED"}}}

Impact and severity

No response

Additional information

No response

[shuicici]

I reproduced this class of failure locally and I’m taking this one.\n\nPlan for today: trace the Control UI connect payload path for LAN HTTP + + , confirm where /device identity are dropped, then submit a minimal fix with regression coverage.

[shuicici]

Correction (previous comment had shell-formatting damage).

I reproduced this class of failure locally and I’m taking this one.

Plan for today:

• Trace the Control UI connect payload path for LAN HTTP + allowInsecureAuth + dangerouslyDisableDeviceAuth
• Confirm where params.auth.token / device identity are dropped
• Submit a minimal fix with regression coverage

[shuicici]

Repro confirmed locally on current main by forcing an insecure (no crypto.subtle) browser context:

pnpm tsx /tmp/repro-45481.ts
# output: null

null above is connect.params.auth, even when GatewayBrowserClient is created with an explicit token.

Code-path root cause:

• ui/src/ui/gateway.ts:250-259 only calls selectConnectAuth(...) inside if (isSecureContext)
• ui/src/ui/gateway.ts:261-270 builds auth from selectedAuth, but in insecure context selectedAuth stays { canFallbackToShared: false }
• result: explicit this.opts.token is never propagated into params.auth.token for LAN HTTP control-ui connections

I’ll prepare a minimal patch so explicit token/password auth is still sent in insecure context while keeping device identity skipped there.

[KingAkrej]

Thanks, that matches what I was seeing on my side. Appreciate the quick repro and root-cause analysis.

[shuicici]

I've submitted a fix for this issue. The root cause was that in insecure context (HTTP/LAN), the gateway was not populating selectedAuth with the explicitly provided token/password from opts, causing connect requests to be sent without any auth.

The fix adds an else branch for insecure context that:

1. Populates selectedAuth.authToken from this.opts.token if provided
2. Populates selectedAuth.authPassword from this.opts.password if provided
3. Still skips device identity (which requires secure context)

PR: #45629

[LeoCRui]

@shuicici Is it true that if we upgrade now, we can access it normally in LAN mode?

[wm801]

Confirmed on native Windows (not Docker) with OpenClaw 2026.3.12.

What I verified locally:

• install type: global npm on Windows 10 x64
• gateway config:
  • gateway.bind = lan
  • gateway.auth.mode = token
  • valid gateway.auth.token
  • gateway.controlUi.allowedOrigins included the LAN dashboard origin
  • gateway.controlUi.allowInsecureAuth = true
  • gateway.controlUi.dangerouslyDisableDeviceAuth = true
• also added auth rate limiting (not relevant to the failure)
• did a full hard gateway restart (killed existing gateway processes and started fresh), not just hot reload
• retried from a second PC on the same LAN using multiple browsers / private window

Result:

• remote LAN Control UI still failed before connect
• gateway logs still showed:
  • code=1008 reason=device identity required
  • followed by some code=4008 reason=connect failed

So this does not appear to be just:

• browser cache
• stale hot-reload state
• Docker-specific behavior

It still looks like the remote HTTP Control UI / WS handshake path is requiring device identity even when both break-glass toggles are enabled.

[steipete]

Closing this as implemented after Codex review.

Current main already carries the LAN/insecure Control UI auth path that this issue asked for: the browser client now preserves explicit token/password auth in insecure contexts, the gateway still allows the break-glass device-auth bypass for operator Control UI sessions, and the repo includes regression coverage plus docs describing the intended behavior.

What I checked:

• Control UI client now preserves explicit auth in insecure contexts: buildConnectPlan() initializes selectedAuth with this.opts.token / this.opts.password before the secure-context check, so plain-HTTP Control UI connections still send params.auth.token or params.auth.password even when no device identity can be created. (ui/src/ui/gateway.ts:403, 028b6c9b13c9)
• Connect payload builder includes the explicit token/password: buildGatewayConnectAuth() returns an auth object whenever a token or password is present, so the connect request is no longer sent without params.auth. (ui/src/ui/gateway.ts:231, 028b6c9b13c9)
• Gateway still honors the break-glass device-auth bypass: resolveControlUiAuthPolicy() maps dangerouslyDisableDeviceAuth to allowBypass, and evaluateMissingDeviceIdentity() allows operator Control UI sessions without device identity when that flag is enabled. (src/gateway/server/ws-connection/connect-policy.ts:23, 028b6c9b13c9)
• Regression tests cover insecure auth and break-glass bypass: The control-ui auth suite now verifies localhost insecure token/password auth succeeds without device identity, and separately verifies dangerouslyDisableDeviceAuth admits operator Control UI sessions with shared-token auth and no usable device identity. (src/gateway/server.auth.control-ui.suite.ts:317, 028b6c9b13c9)
• Shipped release contains the same implementation and docs: Release tag v2026.4.22 contains the same ui/src/ui/gateway.ts insecure-context auth logic and Control UI docs that explicitly list dangerouslyDisableDeviceAuth=true as the break-glass exception for non-secure HTTP Control UI access. Public docs: docs/web/control-ui.md. (docs/web/control-ui.md:256, 00bd2cf7a376)

So I’m closing this as already implemented rather than keeping a duplicate issue open.

Review notes: reviewed against 028b6c9b13c9; fix evidence: release v2026.4.22, commit 00bd2cf7a376.