fix(openai): require api-key auth for realtime voice

[joshavant]

Summary

• Require OpenAI Realtime voice to use OpenAI Platform API-key credentials instead of OpenAI OAuth bearer tokens.
• Preserve valid API-key auth-profile users by adding provider-auth profile type filtering and using openai api_key profiles for Realtime voice.
• Update OpenAI and Control UI Talk docs to distinguish OpenAI API-key profiles from OAuth profiles for Realtime voice.

Fixes #90456.

Compatibility note

Existing OpenAI OAuth-only Talk/Realtime setups will now show OpenAI Realtime voice as unconfigured until an OpenAI Platform API key, OPENAI_API_KEY, or an openai API-key auth profile is configured. OAuth profiles still work for Codex-backed openai/* chat models, but they no longer satisfy Realtime voice configuration.

Verification

• .agents/skills/autoreview/scripts/autoreview --mode local clean: no accepted/actionable findings.
• pnpm test extensions/openai/realtime-voice-provider.test.ts src/plugin-sdk/provider-auth.test.ts -- --reporter=verbose
• git diff --check
• AWS Crabbox E2E OAuth-only Gateway Talk repro: provider aws, lease cbx_db09d2a9c1af, run run_0b7d65c055d2, exit 0, lease stopped. The isolated OAuth-only OpenAI auth profile produced catalogOpenAI.configured=false, talk.client.create failed with UNAVAILABLE, and no WebRTC session was returned.

Real behavior proof

Behavior addressed: OAuth-only OpenAI Realtime voice no longer advertises as configured or returns a browser WebRTC session that later fails at OpenAI /v1/realtime/calls.

Real environment tested: AWS Crabbox Linux (provider=aws, lease=cbx_db09d2a9c1af, run=run_0b7d65c055d2).

Exact steps or command run after this patch: Started an isolated OpenClaw Gateway with talk.realtime.provider: "openai", transport: "webrtc", no OPENAI_API_KEY, and only an openai OAuth auth profile; connected through Gateway WebSocket RPC; called talk.catalog and talk.client.create.

Evidence after fix: ISSUE_90456_CRABBOX_PROOF={"catalogOpenAI":{"configured":false,"supportsBrowserSession":true,"transports":["webrtc","gateway-relay"]},"createOk":false,"createReturnedWebrtcSession":false,"createError":{"name":"GatewayClientRequestError","message":"Error: Realtime voice provider \"openai\" is not configured","gatewayCode":"UNAVAILABLE"},"reproducedFixedBehavior":true}.

Observed result after fix: OpenAI Realtime voice remains discoverable but not configured for OAuth-only auth, and talk.client.create fails before minting or returning a browser session.

What was not tested: A live paid OpenAI Platform API-key WebRTC media exchange was not rerun in this PR; focused tests cover explicit API key, OPENAI_API_KEY, keychain env refs, and openai API-key auth profile resolution.

[clawsweeper]

Codex review: needs maintainer review before merge. Reviewed June 8, 2026, 11:03 PM ET / 03:03 UTC.

Summary
Requires OpenAI Realtime voice to resolve OpenAI Platform API-key credentials, filters provider auth profiles by credential type, and updates the related docs and tests.

PR surface: Source -59, Tests +45, Docs -2. Total -16 across 6 files.

Reproducibility: yes. the linked issue gives a concrete v2026.6.1 live repro, and current source inspection shows OAuth profiles can satisfy the Realtime configured/auth path before this PR, though I did not rerun the live handshake locally.

Review metrics: 1 noteworthy metric.

• OpenAI Realtime auth fallback: 1 shipped fallback removed/changed. The PR changes OAuth-only OpenAI Realtime from configured-at-runtime to fail-closed, which is the key upgrade behavior maintainers must accept before merge.

Merge readiness
Overall: 🐚 platinum hermit
Proof: 🦞 diamond lobster
Patch quality: 🐚 platinum hermit
Result: ready for maintainer review.

Overall follows the weaker of proof and patch quality, so missing proof can cap an otherwise strong patch.

Rank-up moves:

• [P1] Maintainer should explicitly accept the OAuth-only Realtime compatibility break before merge.

Risk before merge

• [P1] Existing OpenAI OAuth-only Realtime voice users who saw the provider as configured in v2026.6.1 will now see it unconfigured and must add an OpenAI Platform API-key auth profile, config value, or OPENAI_API_KEY.
• [P1] The provider-auth SDK change is additive, but it still touches public plugin auth helper behavior and should remain a deliberate maintainer-owned compatibility decision.

Maintainer options:

1. Accept API-key-only Realtime voice (recommended)
   Land as-is after maintainer confirms OAuth-only OpenAI Realtime should fail closed and users must configure OpenAI Platform API-key auth.
2. Require an upgrade note
   Before merge, add explicit release-note or PR-body wording that OAuth-only OpenAI users will see Realtime unconfigured until they configure API-key auth.

Next step before merge

• [P2] Protected maintainer review and the intentional shipped auth fallback removal need human acceptance, not an automated repair.

Security
Cleared: The diff narrows credential use for OpenAI Realtime voice and does not change CI, dependencies, lockfiles, publishing, or secret exposure paths.

Review details

Best possible solution:

Land the API-key-only Realtime voice path after maintainer accepts the shipped OAuth fallback removal and release-note context calls out the API-key auth requirement.

Do we have a high-confidence way to reproduce the issue?

Yes: the linked issue gives a concrete v2026.6.1 live repro, and current source inspection shows OAuth profiles can satisfy the Realtime configured/auth path before this PR, though I did not rerun the live handshake locally.

Is this the best way to solve the issue?

Yes: the OpenAI Realtime WebRTC dependency contract and failing user path point to requiring Platform API-key credentials for Realtime voice, and the patch preserves explicit config, env, and API-key auth profiles while removing the unsupported OAuth path. (developers.openai.com)

AGENTS.md: found and applied where relevant.

Codex review notes: model gpt-5.5, reasoning high; reviewed against 0933726574e8.

Label changes

Label changes:

• add P1: The PR fixes a broken OpenAI Realtime Talk workflow that currently advertises as configured but fails live media setup for OAuth-only users.
• add merge-risk: 🚨 compatibility: Merging changes shipped v2026.6.1 behavior for existing OAuth-only OpenAI Realtime configurations and requires users to add API-key auth.
• add merge-risk: 🚨 auth-provider: The diff changes provider auth profile selection and Realtime credential routing for the OpenAI provider.
• add proof: sufficient: Contributor real behavior proof is sufficient. The PR includes after-fix AWS Crabbox Gateway proof for the OAuth-only failure mode, showing configured=false, UNAVAILABLE, and no returned WebRTC session; positive paid API-key media exchange was not rerun but is covered by focused credential-resolution tests.
• add rating: 🐚 platinum hermit: Overall readiness is 🐚 platinum hermit; proof is 🦞 diamond lobster and patch quality is 🐚 platinum hermit.
• add status: 👀 ready for maintainer look: ClawSweeper has no concrete contributor-facing blocker left for this PR. Sufficient (logs): The PR includes after-fix AWS Crabbox Gateway proof for the OAuth-only failure mode, showing configured=false, UNAVAILABLE, and no returned WebRTC session; positive paid API-key media exchange was not rerun but is covered by focused credential-resolution tests.

Label justifications:

• P1: The PR fixes a broken OpenAI Realtime Talk workflow that currently advertises as configured but fails live media setup for OAuth-only users.
• merge-risk: 🚨 compatibility: Merging changes shipped v2026.6.1 behavior for existing OAuth-only OpenAI Realtime configurations and requires users to add API-key auth.
• merge-risk: 🚨 auth-provider: The diff changes provider auth profile selection and Realtime credential routing for the OpenAI provider.
• rating: 🐚 platinum hermit: Overall readiness is 🐚 platinum hermit; proof is 🦞 diamond lobster and patch quality is 🐚 platinum hermit.
• status: 👀 ready for maintainer look: ClawSweeper has no concrete contributor-facing blocker left for this PR. Sufficient (logs): The PR includes after-fix AWS Crabbox Gateway proof for the OAuth-only failure mode, showing configured=false, UNAVAILABLE, and no returned WebRTC session; positive paid API-key media exchange was not rerun but is covered by focused credential-resolution tests.
• proof: sufficient: Contributor real behavior proof is sufficient. The PR includes after-fix AWS Crabbox Gateway proof for the OAuth-only failure mode, showing configured=false, UNAVAILABLE, and no returned WebRTC session; positive paid API-key media exchange was not rerun but is covered by focused credential-resolution tests.

Evidence reviewed

PR surface:

Source -59, Tests +45, Docs -2. Total -16 across 6 files.

View PR surface stats

Area	Files	Added	Removed	Net
Source	2	82	141	-59
Tests	2	157	112	+45
Docs	2	17	19	-2
Config	0	0	0	0
Generated	0	0	0	0
Other	0	0	0	0
Total	6	256	272	-16

Acceptance criteria:

• [P1] Review the PR's Crabbox proof for the OAuth-only fail-closed path.
• [P1] Confirm release-note or merge note covers API-key auth requirement for existing OAuth-only users.
• [P1] Run or rely on the provided focused tests for OpenAI realtime voice and provider-auth profile filtering.

What I checked:

• Policy read: The root and scoped repository guidance were applied; plugin SDK/auth surfaces and shipped fallback changes are compatibility-sensitive and protected by maintainer review policy. (AGENTS.md:1, 0933726574e8)
• PR source behavior: On the PR head, OpenAI Realtime resolves a configured API key, an openai auth profile filtered to api_key, or OPENAI_API_KEY; OAuth profiles are excluded from Realtime voice API-key resolution. (extensions/openai/realtime-voice-provider.ts:339, 50dec30a98e9)
• PR browser session behavior: The browser WebRTC session path on the PR head calls the Platform API-key resolver before minting a Realtime client secret, so OAuth-only installs fail before returning browser session metadata. (extensions/openai/realtime-voice-provider.ts:1294, 50dec30a98e9)
• Additive SDK filtering: The provider-auth helper adds an optional profileTypes filter and applies it before resolving an auth profile API key, preserving existing callers that omit the option. (src/plugin-sdk/provider-auth.ts:407, 50dec30a98e9)
• Regression tests: PR tests cover OAuth/no-key bridge failure before fetch/WebSocket, API-key profile resolution, browser-session no-key failure, browser-session API-key profile minting, and OPENAI_API_KEY resolution. (extensions/openai/realtime-voice-provider.test.ts:283, 50dec30a98e9)
• Provider-auth test: The added provider-auth test demonstrates that an OAuth auth profile is skipped when profileTypes: ["api_key"] is requested and only the API-key profile is resolved. (src/plugin-sdk/provider-auth.test.ts:104, 50dec30a98e9)

Likely related people:

• Peter Steinberger: History sampling shows the largest share of commits across the OpenAI realtime provider, provider-auth helper, and related docs, including prior realtime helper refactors. (role: feature-history owner; confidence: high; commits: 6dfdc92bd4c6, a5b563280910; files: extensions/openai/realtime-voice-provider.ts, docs/providers/openai.md)
• Vincent Koc: Recent current-main and auth-routing commits touch the relevant provider-auth and OpenAI realtime behavior, including the shipped v2026.6.1 baseline path. (role: recent area contributor; confidence: high; commits: 2e08f0f4221f, 859eb0666282; files: extensions/openai/realtime-voice-provider.ts, src/plugin-sdk/provider-auth.ts)
• joshavant: Beyond authoring this PR, prior merged work touched adjacent Control UI/config and docs surfaces relevant to auth/config handling. (role: recent adjacent contributor; confidence: medium; commits: 81b777c768; files: docs/web/control-ui.md)

What the crustacean ranks mean

• 🦀 challenger crab: rare, exceptional readiness with strong proof, clean implementation, and convincing validation.
• 🦞 diamond lobster: very strong readiness with only minor maintainer review expected.
• 🐚 platinum hermit: good normal PR, likely mergeable with ordinary maintainer review.
• 🦐 gold shrimp: useful signal, but proof or patch confidence is still limited.
• 🦪 silver shellfish: thin signal; proof, validation, or implementation needs work.
• 🧂 unranked krab: not merge-ready because proof is missing/unusable or there are serious correctness or safety concerns.
• 🌊 off-meta tidepool: rating does not apply to this item.

Shiny media proof means a screenshot, video, or linked artifact directly shows the changed behavior. Runtime, network, CSP, and security claims still need visible diagnostics.

How this review workflow works

• ClawSweeper keeps one durable marker-backed review comment per issue or PR.
• Re-runs edit this comment so the latest verdict, findings, and automation markers stay together instead of adding duplicate bot comments.
• A fresh review can be triggered by eligible @clawsweeper re-review comments, exact-item GitHub events, scheduled/background review runs, or manual workflow dispatch.
• PR/issue authors and users with repository write access can comment @clawsweeper re-review or @clawsweeper re-run on an open PR or issue to request a fresh review only.
• Maintainers can also comment @clawsweeper review to request a fresh review only.
• Fresh-review commands do not start repair, autofix, rebase, CI repair, or automerge.
• Maintainer-only repair and merge flows require explicit commands such as @clawsweeper autofix, @clawsweeper automerge, @clawsweeper fix ci, or @clawsweeper address review.
• Maintainers can comment @clawsweeper explain to ask for more context, or @clawsweeper stop to stop active automation.