feat(openclaw-plugin): align auth, namespace, and role id handling (#1606)

* feat(plugin): multi-tenant identity, agent scope mode, and resource recall

Made-with: Cursor

* fix(openclaw-plugin): avoid default tenant fallback

* feat(openclaw-plugin): add server auth mode handling

* feat(openclaw-plugin): add server auth mode and canonical namespace config

* feat(openclaw-plugin): propagate sender role id in session writes

* test(openclaw-plugin): add multi-tenant coverage and Chinese report

* docs(openclaw-plugin): update Chinese multi-tenant docs

* fix(openclaw-plugin): align default namespace policy and shared role id logic

* test(auth): drop unintended test_auth changes from plugin PR

* fix(openclaw-plugin): preserve tenant headers for api key root flows

---------

Co-authored-by: johnny <1667704220@qq.com>

Author: jcp0578

docs/zh/concepts/11-multi-tenant.md

@@ -202,7 +202,7 @@ openclaw config set plugins.entries.openviking.config.agentId "<agent-id>"
 
 - 接入简单，插件不需要管理 account/user 生命周期
 - 最适合“一个 OpenClaw 实例对应一个 OpenViking 用户”的场景
-- `agentId` 决定 agent 级空间，便于区分不同 OpenClaw 实例或不同 agent 角色
+- `agentId` 参与决定 agent 级空间，便于区分不同 OpenClaw 实例或不同 agent 角色
 - 同一 account 内的 `resources` 可共享，`user` / `agent` memory 会按身份隔离
 
 ### OpenClaw 插件为何通常不配 `account` / `user`

examples/openclaw-plugin/README.md

@@ -51,6 +51,32 @@ The main rules are:
 
 This matters because the plugin is built to support multi-agent and multi-session OpenClaw usage without mixing memories across sessions.
 
+The recommended remote-mode configuration only needs:
+
+- `baseUrl`
+- `apiKey`
+- `agentId`
+
+In this setup:
+
+- `apiKey` should usually be a user key
+- `accountId` / `userId` are advanced options only for root-key or `trusted` deployments
+- `isolateUserScopeByAgent` / `isolateAgentScopeByUser` must match the server-side account namespace policy when using the PR #1356 canonical namespace model
+- `agentScopeMode` is a deprecated compatibility alias for older hash-based routing and should only be used against older servers
+
+### Canonical namespace policy
+
+For OpenViking servers that include PR #1356, the plugin no longer treats agent or user scope as a locally computed hash. Instead it expands shorthand aliases into canonical URIs using the configured namespace policy:
+
+- `viking://user/memories`
+  - `viking://user/<user_id>/memories` when `isolateUserScopeByAgent=false`
+  - `viking://user/<user_id>/agent/<agent_id>/memories` when `isolateUserScopeByAgent=true`
+- `viking://agent/memories`
+  - `viking://agent/<agent_id>/memories` when `isolateAgentScopeByUser=false`
+  - `viking://agent/<agent_id>/user/<user_id>/memories` when `isolateAgentScopeByUser=true`
+
+The plugin cannot auto-discover this policy today because `/api/v1/system/status` does not expose it. Configure the two booleans explicitly so they stay aligned with the server-side account policy.
+
 ## Prompt-Front Recall Flow
 
 ![Automatic recall flow before prompt build](./images/openclaw-plugin-recall-flow.png)

examples/openclaw-plugin/README_CN.md

@@ -51,6 +51,32 @@
 
 这样做是为了支持多 agent、多 session 并发时的记忆隔离，避免不同 OpenClaw 会话串用同一套长期上下文。
 
+默认推荐的远程模式配置只有：
+
+- `baseUrl`
+- `apiKey`
+- `agentId`
+
+其中：
+
+- `apiKey` 推荐使用某个 user 的 user key
+- `accountId` / `userId` 仅在 root key 或 `trusted` 模式下作为高级选项使用
+- 使用 PR #1356 canonical namespace 模型时，`isolateUserScopeByAgent` / `isolateAgentScopeByUser` 必须与服务端 account namespace policy 保持一致
+- `agentScopeMode` 已退化为兼容旧 hash 路由的 deprecated alias，仅应在旧服务端上使用
+
+### Canonical namespace policy
+
+对于包含 PR #1356 的 OpenViking 服务端，插件不再在本地计算 user 或 agent scope hash，而是根据配置的 namespace policy 将别名 URI 展开为 canonical URI：
+
+- `viking://user/memories`
+  - `isolateUserScopeByAgent=false` 时展开为 `viking://user/<user_id>/memories`
+  - `isolateUserScopeByAgent=true` 时展开为 `viking://user/<user_id>/agent/<agent_id>/memories`
+- `viking://agent/memories`
+  - `isolateAgentScopeByUser=false` 时展开为 `viking://agent/<agent_id>/memories`
+  - `isolateAgentScopeByUser=true` 时展开为 `viking://agent/<agent_id>/user/<user_id>/memories`
+
+插件当前无法从 `/api/v1/system/status` 自动发现这两个 policy，因此需要显式配置，使其与服务端 account policy 保持一致。
+
 ## Prompt 前召回链路
 
 ![Prompt 前的自动召回流程](./images/openclaw-plugin-recall-flow.png)

examples/openclaw-plugin/client.ts

@@ -1,4 +1,4 @@
-import { createHash, randomUUID } from "node:crypto";
+import { randomUUID } from "node:crypto";
 import type { spawn } from "node:child_process";
 import { once } from "node:events";
 import { createWriteStream } from "node:fs";
@@ -27,6 +27,8 @@ export type FindResult = {
 
 export type CaptureMode = "semantic" | "keyword";
 export type ScopeName = "user" | "agent";
+export type AgentScopeMode = "user_agent" | "agent";
+export type ServerAuthMode = "api_key" | "trusted";
 export type RuntimeIdentity = {
   userId: string;
   agentId: string;
@@ -171,17 +173,20 @@ export const localClientCache = new Map<string, LocalClientCacheEntry>();
 export const localClientPendingPromises = new Map<string, PendingClientEntry>();
 
 const MEMORY_URI_PATTERNS = [
-  /^viking:\/\/user\/(?:[^/]+\/)?memories(?:\/|$)/,
-  /^viking:\/\/agent\/(?:[^/]+\/)?memories(?:\/|$)/,
+  /^viking:\/\/user\/(?:[^/]+(?:\/agent\/[^/]+)?\/)?memories(?:\/|$)/,
+  /^viking:\/\/agent\/(?:[^/]+(?:\/user\/[^/]+)?\/)?memories(?:\/|$)/,
 ];
-const USER_STRUCTURE_DIRS = new Set(["memories"]);
-const AGENT_STRUCTURE_DIRS = new Set(["memories", "skills", "instructions", "workspaces"]);
+const USER_STRUCTURE_DIRS = new Set(["memories", "profile.md", ".abstract.md", ".overview.md"]);
+const AGENT_STRUCTURE_DIRS = new Set([
+  "memories",
+  "skills",
+  "instructions",
+  "workspaces",
+  ".abstract.md",
+  ".overview.md",
+]);
 const REMOTE_RESOURCE_PREFIXES = ["http://", "https://", "git@", "ssh://", "git://"];
 
-function md5Short(input: string): string {
-  return createHash("md5").update(input).digest("hex").slice(0, 12);
-}
-
 export function isMemoryUri(uri: string): boolean {
   return MEMORY_URI_PATTERNS.some((pattern) => pattern.test(uri));
 }
@@ -211,25 +216,57 @@ async function cleanupUploadTempPath(path?: string): Promise<void> {
 }
 
 export class OpenVikingClient {
-  private spaceCache = new Map<string, Partial<Record<ScopeName, string>>>();
   private identityCache = new Map<string, RuntimeIdentity>();
 
   constructor(
     private readonly baseUrl: string,
     private readonly apiKey: string,
     private readonly defaultAgentId: string,
     private readonly timeoutMs: number,
+    private readonly serverAuthMode: ServerAuthMode = "api_key",
     /** When set (or defaulted), sent so ROOT key can access tenant-scoped APIs. */
     private readonly accountId: string = "",
     private readonly userId: string = "",
     /** When set, logs routing for find + session writes (tenant headers + paths; never apiKey). */
     private readonly routingDebugLog?: (message: string) => void,
+    private readonly isolateUserScopeByAgent = false,
+    private readonly isolateAgentScopeByUser = true,
   ) {}
 
   getDefaultAgentId(): string {
     return this.defaultAgentId;
   }
 
+  async getResolvedIdentity(agentId?: string): Promise<RuntimeIdentity> {
+    return this.getRuntimeIdentity(agentId);
+  }
+
+  private resolveTenantHeaders():
+    | { apiKey?: string; accountId?: string; userId?: string }
+  {
+    const apiKey = this.apiKey.trim();
+    const accountId = this.accountId.trim();
+    const userId = this.userId.trim();
+    if (this.serverAuthMode === "trusted") {
+      return {
+        ...(apiKey ? { apiKey } : {}),
+        accountId: accountId || "default",
+        userId: userId || "default",
+      };
+    }
+    if (apiKey) {
+      return {
+        apiKey,
+        ...(accountId ? { accountId } : {}),
+        ...(userId ? { userId } : {}),
+      };
+    }
+    return {
+      accountId: accountId || "default",
+      userId: userId || "default",
+    };
+  }
+
   private async emitRoutingDebug(
     label: string,
     detail: Record<string, unknown>,
@@ -240,16 +277,17 @@ export class OpenVikingClient {
     }
     const effectiveAgentId = agentId ?? this.defaultAgentId;
     const identity = await this.getRuntimeIdentity(agentId);
+    const tenantHeaders = this.resolveTenantHeaders();
     this.routingDebugLog(
       `openviking: ${label} ` +
         JSON.stringify({
           ...detail,
           X_OpenViking_Agent: effectiveAgentId,
-          X_OpenViking_Account: this.accountId.trim() || "default",
-          X_OpenViking_User: this.userId.trim() || "default",
+          X_OpenViking_Account: tenantHeaders.accountId ?? null,
+          X_OpenViking_User: tenantHeaders.userId ?? null,
           resolved_user_id: identity.userId,
           session_vfs_hint: detail.sessionId
-            ? `viking://session/${identity.userId}/${String(detail.sessionId)}`
+            ? `viking://session/${String(detail.sessionId)}`
             : undefined,
         }),
     );
@@ -266,11 +304,16 @@ export class OpenVikingClient {
     const timer = setTimeout(() => controller.abort(), requestTimeoutMs ?? this.timeoutMs);
     try {
       const headers = new Headers(init.headers ?? {});
-      if (this.apiKey) {
-        headers.set("X-API-Key", this.apiKey);
+      const tenantHeaders = this.resolveTenantHeaders();
+      if (tenantHeaders.apiKey) {
+        headers.set("X-API-Key", tenantHeaders.apiKey);
+      }
+      if (tenantHeaders.accountId) {
+        headers.set("X-OpenViking-Account", tenantHeaders.accountId);
+      }
+      if (tenantHeaders.userId) {
+        headers.set("X-OpenViking-User", tenantHeaders.userId);
       }
-      headers.set("X-OpenViking-Account", this.accountId.trim() || "default");
-      headers.set("X-OpenViking-User", this.userId.trim() || "default");
       if (effectiveAgentId) {
         headers.set("X-OpenViking-Agent", effectiveAgentId);
       }
@@ -306,14 +349,6 @@ export class OpenVikingClient {
     await this.request<{ status: string }>("/health");
   }
 
-  private async ls(uri: string, agentId?: string): Promise<Array<Record<string, unknown>>> {
-    return this.request<Array<Record<string, unknown>>>(
-      `/api/v1/fs/ls?uri=${encodeURIComponent(uri)}&output=original`,
-      {},
-      agentId,
-    );
-  }
-
   private async getRuntimeIdentity(agentId?: string): Promise<RuntimeIdentity> {
     const effectiveAgentId = agentId ?? this.defaultAgentId;
     const cached = this.identityCache.get(effectiveAgentId);
@@ -334,54 +369,18 @@ export class OpenVikingClient {
     }
   }
 
-  private async resolveScopeSpace(scope: ScopeName, agentId?: string): Promise<string> {
-    const effectiveAgentId = agentId ?? this.defaultAgentId;
-    const agentScopes = this.spaceCache.get(effectiveAgentId);
-    const cached = agentScopes?.[scope];
-    if (cached) {
-      return cached;
-    }
-
+  private async buildCanonicalRoot(scope: ScopeName, agentId?: string): Promise<string> {
     const identity = await this.getRuntimeIdentity(agentId);
-    const fallbackSpace =
-      scope === "user" ? identity.userId : md5Short(`${identity.userId}:${identity.agentId}`);
-    const reservedDirs = scope === "user" ? USER_STRUCTURE_DIRS : AGENT_STRUCTURE_DIRS;
-    const preferredSpace =
-      scope === "user" ? identity.userId : md5Short(`${identity.userId}:${identity.agentId}`);
-
-    const saveSpace = (space: string) => {
-      const existing = this.spaceCache.get(effectiveAgentId) ?? {};
-      existing[scope] = space;
-      this.spaceCache.set(effectiveAgentId, existing);
-    };
-
-    try {
-      const entries = await this.ls(`viking://${scope}`, agentId);
-      const spaces = entries
-        .filter((entry) => entry?.isDir === true)
-        .map((entry) => (typeof entry.name === "string" ? entry.name.trim() : ""))
-        .filter((name) => name && !name.startsWith(".") && !reservedDirs.has(name));
-
-      if (spaces.length > 0) {
-        if (spaces.includes(preferredSpace)) {
-          saveSpace(preferredSpace);
-          return preferredSpace;
-        }
-        if (scope === "user" && spaces.includes("default")) {
-          saveSpace("default");
-          return "default";
-        }
-        if (spaces.length === 1) {
-          saveSpace(spaces[0]!);
-          return spaces[0]!;
-        }
-      }
-    } catch {
-      // Fall back to identity-derived space when listing fails.
+    if (scope === "user") {
+      const root = this.isolateUserScopeByAgent
+        ? `viking://user/${identity.userId}/agent/${identity.agentId}`
+        : `viking://user/${identity.userId}`;
+      return root;
     }
-
-    saveSpace(fallbackSpace);
-    return fallbackSpace;
+    const root = this.isolateAgentScopeByUser
+      ? `viking://agent/${identity.agentId}/user/${identity.userId}`
+      : `viking://agent/${identity.agentId}`;
+    return root;
   }
 
   private async normalizeTargetUri(targetUri: string, agentId?: string): Promise<string> {
@@ -405,8 +404,8 @@ export class OpenVikingClient {
       return trimmed;
     }
 
-    const space = await this.resolveScopeSpace(scope, agentId);
-    return `viking://${scope}/${space}/${parts.join("/")}`;
+    const root = await this.buildCanonicalRoot(scope, agentId);
+    return `${root}/${parts.join("/")}`;
   }
 
   async find(
@@ -427,12 +426,13 @@ export class OpenVikingClient {
     };
     const effectiveAgentId = agentId ?? this.defaultAgentId;
     const identity = await this.getRuntimeIdentity(agentId);
+    const tenantHeaders = this.resolveTenantHeaders();
     this.routingDebugLog?.(
       `openviking: find POST ${this.baseUrl}/api/v1/search/find ` +
         JSON.stringify({
           X_OpenViking_Agent: effectiveAgentId,
-          X_OpenViking_Account: this.accountId.trim() || "default",
-          X_OpenViking_User: this.userId.trim() || "default",
+          X_OpenViking_Account: tenantHeaders.accountId ?? null,
+          X_OpenViking_User: tenantHeaders.userId ?? null,
           resolved_user_id: identity.userId,
           target_uri: normalizedTargetUri,
           target_uri_input: options.targetUri,
@@ -645,21 +645,27 @@ export class OpenVikingClient {
     }>,
     agentId?: string,
     createdAt?: string,
+    roleId?: string,
   ): Promise<void> {
     const body: {
       role: string;
+      role_id?: string;
       parts: typeof parts;
       created_at?: string;
     } = { role, parts };
     if (createdAt) {
       body.created_at = createdAt;
     }
+    if (roleId) {
+      body.role_id = roleId;
+    }
     await this.emitRoutingDebug(
       "session message POST (with parts)",
       {
         path: `/api/v1/sessions/${encodeURIComponent(sessionId)}/messages`,
         sessionId,
         role,
+        role_id: roleId ?? null,
         partCount: parts.length,
         created_at: createdAt ?? null,
       },