refactor(security): enforce account-scoped pairing APIs

src/web/auto-reply/monitor/process-message.ts

@@ -25,7 +25,6 @@ import {
 import { logVerbose, shouldLogVerbose } from "../../../globals.js";
 import type { getChildLogger } from "../../../logging.js";
 import { getAgentScopedMediaLocalRoots } from "../../../media/local-roots.js";
-import { readChannelAllowFromStore } from "../../../pairing/pairing-store.js";
 import type { resolveAgentRoute } from "../../../routing/resolve-route.js";
 import {
   readStoreAllowFromForDmPolicy,
@@ -80,9 +79,8 @@ async function resolveWhatsAppCommandAuthorized(params: {
     ? []
     : await readStoreAllowFromForDmPolicy({
         provider: "whatsapp",
+        accountId: params.msg.accountId,
         dmPolicy,
-        readStore: (provider) =>
-          readChannelAllowFromStore(provider, process.env, params.msg.accountId),
       });
   const dmAllowFrom =
     configuredAllowFrom.length > 0

src/web/inbound/access-control.ts

@@ -6,10 +6,7 @@ import {
 } from "../../config/runtime-group-policy.js";
 import { logVerbose } from "../../globals.js";
 import { buildPairingReply } from "../../pairing/pairing-messages.js";
-import {
-  readChannelAllowFromStore,
-  upsertChannelPairingRequest,
-} from "../../pairing/pairing-store.js";
+import { upsertChannelPairingRequest } from "../../pairing/pairing-store.js";
 import {
   readStoreAllowFromForDmPolicy,
   resolveDmGroupAccessWithLists,
@@ -66,8 +63,8 @@ export async function checkInboundAccessControl(params: {
   const configuredAllowFrom = account.allowFrom ?? [];
   const storeAllowFrom = await readStoreAllowFromForDmPolicy({
     provider: "whatsapp",
+    accountId: account.accountId,
     dmPolicy,
-    readStore: (provider) => readChannelAllowFromStore(provider, process.env, account.accountId),
   });
   // Without user config, default to self-only DM access so the owner can talk to themselves.
   const defaultAllowFrom =