[Bug]: Agent-specific MiniMax auth resolves from main agent auth-profiles.json

[blaspat]

Bug type

Regression (worked before, now fails)

Beta release blocker

No

Summary

OpenClaw version:
2026.4.9 (0512059)

Extra confirmation:

• ~/.openclaw/agents/kate/agent/auth-profiles.json does contain:
  • minimax-portal:default
  • provider: minimax-portal

Symptom:

• dashboard chat, /new, and /reset return:
  • ⚠️ API rate limit reached. Please try again later.
• logs mention:
  • auth profile failure state updated
  • embedded run failover decision

Steps to reproduce

What I did:

• configured MiniMax OAuth
• dashboard session uses agent kate
• /model status shows:
  • Current: minimax-portal/MiniMax-M2.7
  • Agent: kate
  • Auth file: ~/.openclaw/agents/kate/agent/auth-profiles.json

Expected behavior

• kate should resolve MiniMax auth from ~/.openclaw/agents/kate/agent/auth-profiles.json

Actual behavior

• openclaw models status --agent kate shows:
  • Auth store: ~/.openclaw/agents/kate/agent/auth-profiles.json
  • but effective MiniMax auth resolves from:
    ~/.openclaw/agents/main/agent/auth-profiles.json

OpenClaw version

2026.4.9 (0512059)

Operating system

Ubuntu 24.04

Install method

No response

Model

minimax-portal/MiniMax-M2.7

Provider / routing chain

minimax

Additional provider/model setup details

No response

Logs, screenshots, and evidence

Impact and severity

No response

Additional information

No response

[EronFan]

I’m taking this one and digging into the auth profile path resolution regression now.

[clawsweeper]

Codex review: keeping this open for maintainer follow-up; there is still a little grit to resolve. Reviewed June 5, 2026, 1:04 AM ET / 05:04 UTC.

Summary
Keep open: current main and the latest release still preserve the reported main-first same-provider auth order, and the focused closing pull request is still open and dirty rather than merged.

Reproducibility: yes. source-reproducible: current main merges main and agent stores in a way that preserves main provider order when the selected agent has no local order entry. I did not run a live MiniMax OAuth/dashboard flow in this read-only review.

Next step
Do not queue another fix PR because #82497 already owns the focused repair path; maintainers should refresh, review, land, or close that PR.

Security
Needs attention: The issue is security-sensitive because effective provider auth can come from the wrong agent scope until the merge/order repair lands.

Review details

Best possible solution:

Refresh, review, and land a focused repair that makes selected-agent same-provider profiles precede inherited main profiles while preserving main-agent fallback only when local provider auth is absent.

Do we have a high-confidence way to reproduce the issue?

Yes, source-reproducible: current main merges main and agent stores in a way that preserves main provider order when the selected agent has no local order entry. I did not run a live MiniMax OAuth/dashboard flow in this read-only review.

Is this the best way to solve the issue?

Yes, the best fix direction is a shared auth-profile merge/order repair with regression coverage, not a MiniMax-specific workaround. The linked open PR appears to target that boundary but needs refresh/review before this issue can close.

AGENTS.md: found and applied where relevant.

Remaining risk / open question:

• The open repair PR is currently dirty and unmerged, so closing the issue now would lose the canonical tracking point for a live auth-provider regression.
• This read-only review source-reproduced the precedence bug but did not run a live MiniMax OAuth/dashboard flow.

Codex review notes: model gpt-5.5, reasoning high; reviewed against e0018382eb00.

Label changes

Label changes:

• remove clawsweeper:linked-pr-open: Current issue advisory state no longer selects this label.

Label justifications:

• P1: The issue affects real agent auth-provider routing and can make a configured non-main agent use the wrong credential source during normal chat/model flows.
• impact:security: The reported behavior crosses agent credential boundaries by resolving effective provider auth from the main agent when an agent-local provider profile exists.
• impact:auth-provider: The bug is specifically in auth-profile merge and provider auth order resolution for MiniMax OAuth profiles.

Evidence reviewed

Security concerns:

• [medium] Cross-agent auth profile precedence remains unresolved — src/agents/auth-profiles/persisted.ts:543
  Current main can prefer inherited main-agent provider order over a selected agent's same-provider local profile, which can route model calls through credentials from the wrong agent scope.
  Confidence: 0.86

What I checked:

• Current main merge path keeps main auth order ahead of agent-local same-provider profiles: For a non-main agent, runtime loading merges the main store as base and the selected agent store as override; the merge keeps profiles from base first and merges provider order with base order when the agent store has no local order entry. (src/agents/auth-profiles/store.ts:804, e0018382eb00)
• Current main order resolution honors the stored main provider order: resolveAuthProfileOrder chooses stored provider order before falling back to all compatible store profiles, so a main order containing minimax-portal:cli can keep the agent-local minimax-portal:default profile out of first position when the agent has no local order entry. (src/agents/auth-profiles/order.ts:263, e0018382eb00)
• Docs define the expected boundary as local first, main fallback only when local auth is absent: The multi-agent docs say auth is scoped by agent and agents can read through to the default/main agent only when they do not have a local profile, matching the reporter's expected behavior. Public docs: docs/tools/multi-agent-sandbox-tools.md. (docs/tools/multi-agent-sandbox-tools.md:23, e0018382eb00)
• Latest release still has the same relevant behavior: The v2026.6.1 tag shows the same relevant merge and order-resolution shape, so the latest release does not contain a shipped fix for this issue. (src/agents/auth-profiles/persisted.ts:524, 2e08f0f4221f)
• Linked closing PR remains open and unmerged: The live GitHub API reports fix(auth): prefer agent-local provider profiles #82497 as open, unmerged, and dirty; it adds the exact regression test and merge-order repair direction but is not yet the canonical merged fix. (361dc465e607)
• History/provenance is shallow but points at current auth-profile area ownership: The checked-out shallow/grafted history blames the central merge/order lines to commit 506c2ee, so owner routing should also lean on the linked repair PR history rather than blame alone. (src/agents/auth-profiles/persisted.ts:516, 506c2ee18186)

Likely related people:

• lidge-jun: Authored the open linked repair PR that directly closes this issue and adds a regression test for agent-local provider precedence. (role: open repair author; confidence: high; commits: 361dc465e607; files: src/agents/auth-profiles/persisted.ts, src/agents/auth-profiles.ensureauthprofilestore.test.ts)
• EronFan: Commented that they were taking the issue and opened an earlier closed PR for an auth-profile snapshot-key hypothesis on the same report. (role: prior repair attempt author; confidence: medium; commits: 9a2fe8c82f2d; files: src/agents/auth-profiles/store.ts, src/agents/auth-profiles.ensureauthprofilestore.test.ts)
• Peter Steinberger: The available shallow checkout blames the current auth-profile merge/order code to commit 506c2ee, though the grafted history limits attribution confidence. (role: recent area contributor; confidence: low; commits: 506c2ee18186; files: src/agents/auth-profiles/persisted.ts, src/agents/auth-profiles/store.ts, src/agents/auth-profiles/order.ts)

How this review workflow works

• ClawSweeper keeps one durable marker-backed review comment per issue or PR.
• Re-runs edit this comment so the latest verdict, findings, and automation markers stay together instead of adding duplicate bot comments.
• A fresh review can be triggered by eligible @clawsweeper re-review comments, exact-item GitHub events, scheduled/background review runs, or manual workflow dispatch.
• PR/issue authors and users with repository write access can comment @clawsweeper re-review or @clawsweeper re-run on an open PR or issue to request a fresh review only.
• Maintainers can also comment @clawsweeper review to request a fresh review only.
• Fresh-review commands do not start repair, autofix, rebase, CI repair, or automerge.
• Maintainer-only repair and merge flows require explicit commands such as @clawsweeper autofix, @clawsweeper automerge, @clawsweeper fix ci, or @clawsweeper address review.
• Maintainers can comment @clawsweeper explain to ask for more context, or @clawsweeper stop to stop active automation.