Vertex AI ADC OAuth Authentication Fails with 401 Error

[nakedsleepwalker]

Problem Description

When using Vertex AI with Application Default Credentials (ADC), OpenClaw returns 401 status code (no body) error. Direct API calls with curl using the same ADC credentials work correctly.

Environment

• OpenClaw version: 2026.4.2
• pi-ai version: 0.64.0
• @google/genai version: 1.47.0
• GCP Project: [REDACTED]
• Location: us-central1

Environment Variables

• GOOGLE_CLOUD_PROJECT=[REDACTED]
• GOOGLE_CLOUD_LOCATION=us-central1
• GOOGLE_APPLICATION_CREDENTIALS=/root/.config/gcloud/application_default_credentials.json
• GOOGLE_GENAI_USE_VERTEXAI=true

Reproduction Steps

1. Configure OpenClaw to use google-vertex provider with OAuth authentication
2. Ensure ADC credentials are properly set up (gcloud auth application-default login)
3. Attempt to make a request using any google-vertex model (e.g., google/gemini-2.5-flash)
4. Receive 401 error: 401 status code (no body)

Expected Behavior

OpenClaw should properly authenticate with Vertex AI using ADC OAuth and return valid responses, same as direct curl requests.

Direct Curl Test (Works)

TOKEN=$(gcloud auth application-default print-access-token)
curl -X POST -H Authorization: Bearer $TOKEN -H Content-Type: application/json -d {contents:[{parts:[{text:Hello}]}]} https://us-central1-aiplatform.googleapis.com/v1beta1/projects/[PROJECT]/locations/us-central1/publishers/google/models/gemini-2.5-flash:generateContent

Root Cause Analysis

Finding 1: pi-ai google-vertex.js imports wrong SDK module

The google-vertex.js provider in pi-ai imports from @google/genai which resolves to the web version, not the Node.js version. The SDK requires Node.js-specific imports for proper ADC authentication.

Finding 2: Google extension hooks into google-vertex requests

The bundled Google extension in OpenClaw core registers hookAliases: [google-antigravity, google-vertex]. This causes it to intercept ALL google-vertex requests. However, the Google extension auth handling is designed for API key authentication (createProviderApiKeyAuthMethod), NOT ADC OAuth.

Finding 3: Custom provider config conflicts

The custom google-vertex provider config has auth: oauth which triggers OpenClaw OAuth handling but returns marker string without properly exchanging it for a real bearer token.

What We Tried

1. Fixed pi-ai SDK imports - Changed from @google/genai to @google/genai/node
2. Removed custom provider config - Still returns 401
3. Changed auth setting - Still returns 401
4. Changed location - Still returns 401

Issue Summary

The core problem is that OpenClaw bundled Google extension has hookAliases: [google-vertex] which intercepts all google-vertex requests, but its auth handling is for API keys only - NOT ADC OAuth.

Request

Please fix the Google extension to properly support ADC OAuth for Vertex AI, OR provide a way to disable the hook alias for google-vertex so pi-ai implementation can work correctly.

[clawsweeper]

Thanks for the context here. I did a careful shell check against current main, and this is already implemented.

Close as implemented on current main. The reported gcloud ADC path now stays inside the Google plugin, detects authorized_user Application Default Credentials, refreshes an OAuth access token, sends Vertex requests with Authorization: Bearer ..., and builds the project/location Vertex endpoint directly; the fix is on main but is not proven shipped in v2026.4.27.

So I’m closing this as already implemented rather than keeping a duplicate issue open.

Review details

Best possible solution:

Keep the plugin-owned authorized_user ADC REST transport on main for this issue, and leave broader Google Vertex/provider consolidation work to the existing related implementation discussions rather than reopening this specific 401 report.

Do we have a high-confidence way to reproduce the issue?

Yes. The issue provides a concrete gcloud ADC reproduction path, and current main has a focused regression test that exercises the same authorized_user ADC marker, token refresh, Vertex endpoint, and bearer-authenticated request path without requiring live GCP access.

Is this the best way to solve the issue?

Yes for the reported failure. Routing google-vertex through the Google plugin's guarded REST transport with explicit ADC bearer-token exchange is the narrowest maintainable fix for the 401 path; broader SDK unification is a separate design/security review topic.

Security review:

Security review: No PR diff is under review; this issue reports provider authentication behavior, and the current-main implementation uses bearer-token transport without exposing new reviewable changes here.

What I checked:

• Google hook now routes google-vertex ADC to the plugin transport: The Google provider still owns the google-vertex hook alias, but current main now returns createGoogleVertexTransportStreamFn() when the model API is google-vertex and authorized_user ADC is available. (extensions/google/provider-registration.ts:60, ad7fa6c38774)
• ADC OAuth token exchange is implemented: Current main resolves GOOGLE_APPLICATION_CREDENTIALS or the gcloud default ADC paths, requires type: "authorized_user", refreshes the OAuth token through https://oauth2.googleapis.com/token, caches it by credentials path and refresh token, and returns an Authorization bearer header. (extensions/google/vertex-adc.ts:165, ad7fa6c38774)
• Vertex endpoint routing and bearer header are used: The transport constructs /v1/projects/<project>/locations/<location>/publishers/google/models/<model>:streamGenerateContent?alt=sse from GOOGLE_CLOUD_PROJECT/GCLOUD_PROJECT and GOOGLE_CLOUD_LOCATION, and uses the ADC marker to resolve bearer headers instead of sending a fake API key. (extensions/google/transport-stream.ts:604, ad7fa6c38774)
• Regression coverage matches the reported flow: The focused test creates an authorized_user ADC file, sets GOOGLE_APPLICATION_CREDENTIALS, GOOGLE_CLOUD_PROJECT, and GOOGLE_CLOUD_LOCATION, verifies token refresh, and asserts the Vertex request uses Authorization: Bearer ya29.vertex-token. (extensions/google/transport-stream.test.ts:291, ad7fa6c38774)
• Auth discovery emits the ADC marker: The Google plugin manifest declares local-file auth evidence for google-vertex, requiring project and location env vars plus ADC credentials and mapping that evidence to the gcp-vertex-credentials marker consumed by the transport. (extensions/google/openclaw.plugin.json:80, ad7fa6c38774)
• Release provenance check: git tag --contains HEAD returned no tags, git show v2026.4.27:extensions/google/vertex-adc.ts failed because the file is absent from the latest release tag, and git show v2026.4.27:extensions/google/provider-registration.ts showed only the old alias without the Vertex stream hook. This is fixed on current main, not proven shipped in v2026.4.27. (ad7fa6c38774)

Likely related people:

• @steipete: Prior ClawSweeper feature-history for the overlapping Google Vertex PR attributes the current authorized_user ADC transport, Vertex request routing, and vertex-adc.ts implementation on main to Peter Steinberger; the current files still contain that implementation path. (role: introduced current main Vertex ADC runtime support; confidence: medium; commits: 0b59964ec945, b113d92c6fda; files: extensions/google/provider-registration.ts, extensions/google/transport-stream.ts, extensions/google/vertex-adc.ts)
• @shakkernerd: Related ClawSweeper history and changelog context credit Shakker with moving local credential evidence such as Google Vertex ADC into plugin manifest setup metadata, adjacent to the marker path used here. (role: adjacent owner for Google Vertex auth evidence metadata; confidence: medium; commits: 3bd6b54f0b3a; files: extensions/google/openclaw.plugin.json, src/agents/model-auth-env.ts, src/agents/model-auth.profiles.test.ts)
• @openclaw/openclaw-secops: CODEOWNERS routes src/agents/*auth*.ts and nested auth paths to this team, and this behavior depends on model auth evidence and credential marker handling. (role: codeowner for auth-sensitive agent paths; confidence: high; files: .github/CODEOWNERS, src/agents/model-auth-env.ts, src/agents/model-auth.ts)

Codex review notes: model gpt-5.5, reasoning high; reviewed against ad7fa6c38774; fix evidence: commit ad7fa6c38774, main fix timestamp 2026-04-30T05:38:28-07:00.