openclaw doctor does not indicate which agent's auth state it is reporting when multiple agent stores exist

[balric-seo]

Summary

When multiple agent stores exist (e.g. \�gents/main\ and \�gents/coder), \openclaw doctor\ reports auth status without identifying which agent's store the result comes from. This makes it impossible to diagnose per-agent auth drift without inspecting files manually.

Version

OpenClaw 2026.4.23 (a979721)

Context

OpenClaw stores per-agent auth tokens in separate files:

• \�gents//agent/auth-profiles.json\

When agent stores diverge (e.g. \�gents/coder\ has a valid token, \�gents/main\ has an expired one), doctor reports the stale state without identifying which agent is the source. This sent debugging in the wrong direction for an extended time.

Expected Behavior

Doctor output should include the agent id being checked, e.g.:
\
Model auth (agent: main)

• openai-codex:balric@gmail.com: expired
  Model auth (agent: coder)
• openai-codex:balric@gmail.com: ok (expires in 10 days)
  \\

Or at minimum, call out when auth state differs between agent stores.

Actual Behavior

Doctor reports a single generic auth status line with no indication of which agent's store was checked.

Impact

Medium — makes debugging per-agent auth drift significantly harder, especially for users with multiple agents (main, coder, operator, etc.)

[clawsweeper]

Codex review: keeping this open for maintainer follow-up; there is still a little grit to resolve.

Workflow note: Future ClawSweeper reviews update this same comment in place.

How this review workflow works

• ClawSweeper keeps one durable marker-backed review comment per issue or PR.
• Re-runs edit this comment so the latest verdict, findings, and automation markers stay together instead of adding duplicate bot comments.
• A fresh review can be triggered by eligible @clawsweeper re-review comments, exact-item GitHub events, scheduled/background review runs, or manual workflow dispatch.
• PR/issue authors and users with repository write access can comment @clawsweeper re-review or @clawsweeper re-run on an open PR or issue to request a fresh review only.
• Maintainers can also comment @clawsweeper review to request a fresh review only.
• Fresh-review commands do not start repair, autofix, rebase, CI repair, or automerge.
• Maintainer-only repair and merge flows require explicit commands such as @clawsweeper autofix, @clawsweeper automerge, @clawsweeper fix ci, or @clawsweeper address review.
• Maintainers can comment @clawsweeper explain to ask for more context, or @clawsweeper stop to stop active automation.

Summary
Keep open: current main and v2026.5.19 still load one implicit auth profile store for doctor auth health and emit generic auth note titles, while the focused related PR closed unmerged after review blockers.

Reproducibility: yes. source inspection gives a high-confidence reproduction path: current noteAuthProfileHealth reads the implicit auth store and emits unlabeled auth notes while docs define per-agent stores that can diverge. I did not run a live multi-store doctor command in this read-only review.

Next step
The bug is valid, current main still has it, the prior focused PR is closed unmerged, and the remaining implementation boundary is narrow enough for a replacement repair PR.

Review details

Best possible solution:

Land a focused fix that labels per-agent doctor auth diagnostics, enumerates the correct configured/direct auth stores, preserves default/runtime refresh behavior, and adds regression coverage plus redacted real doctor output proof.

Do we have a high-confidence way to reproduce the issue?

Yes, source inspection gives a high-confidence reproduction path: current noteAuthProfileHealth reads the implicit auth store and emits unlabeled auth notes while docs define per-agent stores that can diverge. I did not run a live multi-store doctor command in this read-only review.

Is this the best way to solve the issue?

Yes, agent-labeled diagnostics are the narrow maintainable fix. The implementation should distinguish runtime-default and configured per-agent targets instead of keying behavior off display labels.

Label justifications:

• P2: This is a concrete doctor/auth diagnostic bug with limited blast radius but real debugging impact for multi-agent users.
• impact:session-state: The ambiguity is tied to multiple agent state directories and per-agent auth store drift.
• impact:auth-provider: The issue is about ambiguous model-auth health reporting from per-agent auth profile stores.

Acceptance criteria:

• node scripts/run-vitest.mjs src/commands/doctor-auth.profile-health.test.ts
• node scripts/crabbox-wrapper.mjs run --shell -- "pnpm check:changed"
• Provide redacted real openclaw doctor output or logs showing labeled per-agent auth diagnostics.

What I checked:

• Current doctor auth remains unscoped: noteAuthProfileHealth loads ensureAuthProfileStore(undefined, ...) and emits Auth profile cooldowns, OAuth refresh errors, and Model auth without an agent id, so divergent per-agent stores remain ambiguous. (src/commands/doctor-auth.ts:216, 384451343191)
• Doctor flow passes no agent target: runAuthProfileHealth calls noteAuthProfileHealth with config, prompter, and keychain settings only; it does not enumerate configured agent ids or agent directories. (src/flows/doctor-health-contributions.ts:152, 384451343191)
• Docs establish per-agent auth stores: The multi-agent docs state that each agent reads auth profiles from its own ~/.openclaw/agents/<agentId>/agent/auth-profiles.json, making unlabeled doctor output ambiguous when stores differ. Public docs: docs/concepts/multi-agent.md. (docs/concepts/multi-agent.md:21, 384451343191)
• Regression coverage is still missing: The focused doctor auth-profile health test only covers skipping external auth loading when no auth source exists; it does not cover multi-agent store enumeration or labeled output. (src/commands/doctor-auth.profile-health.test.ts:25, 384451343191)
• Latest release has the same behavior: The v2026.5.19 tag points at a185ca2, and its doctor auth implementation still loads the implicit auth store and uses the same generic note titles. (src/commands/doctor-auth.ts:216, a185ca283a74)
• Related implementation PR is closed unmerged: fix: label doctor auth warnings by agent #71923 attempted the focused fix, but it is closed, unmerged, and its review found default-store selection/refresh issues plus missing real behavior proof. (1b0ad6a30088)

Likely related people:

• steipete: Peter Steinberger introduced OAuth auth health and later touched the same doctor/auth-profile helper surface. (role: feature owner and recent area contributor; confidence: high; commits: 948ce5eb5fab, e9ba9ffad07a; files: src/commands/doctor-auth.ts, src/agents/auth-health.ts, src/agents/auth-profiles/store.ts)
• vincentkoc: Recent commits changed auth-profile source checks/runtime loading and the multi-agent docs that a per-agent doctor target selection would build on. (role: adjacent auth-profile and multi-agent contributor; confidence: medium; commits: bde246e7aff8, 2bc031c3571b, 652e8af81e2a; files: src/agents/auth-profiles/source-check.ts, src/agents/auth-profiles/store.ts, docs/concepts/multi-agent.md)
• mbelinky: Recent merged work added OAuth reauth failure diagnostics in the same doctor auth output path that needs agent labeling. (role: adjacent doctor auth diagnostics contributor; confidence: medium; commits: b77db8c0b610; files: src/commands/doctor-auth.ts)
• neeravmakwana: The closed related PR directly implemented agent-labeled doctor auth diagnostics and added tests, but did not merge after review blockers. (role: prior implementation candidate author; confidence: medium; commits: bbfbe9192797, a146ef2b9502, 1b0ad6a30088; files: src/commands/doctor-auth.ts, src/commands/doctor-auth.profile-health.test.ts, src/agents/auth-profiles/source-check.ts)

Remaining risk / open question:

• No live openclaw doctor multi-store run was executed in this read-only pass; the reproduction is source-based.
• A replacement fix should not copy the closed PR as-is because review found it could skip the configured default agent auth dir and remove the existing default-store refresh prompt in multi-agent mode.

Codex review notes: model gpt-5.5, reasoning high; reviewed against 384451343191.