LLM/moltbot
1
0
Fork 0
mirror of https://github.com/moltbot/moltbot.git synced 2026-05-11 12:58:34 +00:00
Code Issues Packages Projects Releases Wiki Activity
Files
a577c3086310cc044243deae2ecdd344cb1e4e7f
moltbot/extensions/telegram/src/access-groups.ts
Ayaan Zaidi 53efb6747d refactor(telegram): centralize access authorization
2026-05-07 19:08:43 +05:30

73 lines
2.2 KiB
TypeScript
Raw Blame History

import type { DmPolicy, OpenClawConfig } from "openclaw/plugin-sdk/config-types";
import {
expandAllowFromWithAccessGroups,
parseAccessGroupAllowFromEntry,
} from "openclaw/plugin-sdk/security-runtime";
import {
isSenderAllowed,
normalizeAllowFrom,
normalizeDmAllowFromWithStore,
type NormalizedAllowFrom,
} from "./bot-access.js";
export async function expandTelegramAllowFromWithAccessGroups(params: {
cfg?: OpenClawConfig;
allowFrom?: Array<string | number>;
accountId?: string;
senderId?: string;
}): Promise<string[]> {
const allowFrom = (params.allowFrom ?? []).map(String);
const senderId = params.senderId?.trim() ?? "";
const expanded =
params.cfg && senderId
? await expandAllowFromWithAccessGroups({
cfg: params.cfg,
allowFrom,
channel: "telegram",
accountId: params.accountId ?? "default",
senderId,
isSenderAllowed: (candidateSenderId, allowEntries) =>
isSenderAllowed({
allow: normalizeAllowFrom(allowEntries),
senderId: candidateSenderId,
}),
})
: allowFrom;
const originalEntries = new Set(allowFrom);
const matched = expanded.some((entry) => !originalEntries.has(entry));
return matched
? expanded.filter((entry) => parseAccessGroupAllowFromEntry(entry) == null)
: expanded;
}
export async function resolveTelegramDmAllow(params: {
cfg?: OpenClawConfig;
allowFrom?: Array<string | number>;
groupAllowOverride?: Array<string | number>;
storeAllowFrom?: string[];
dmPolicy?: DmPolicy;
accountId?: string;
senderId?: string;
}): Promise<{
allowFrom?: Array<string | number>;
expandedAllowFrom: string[];
effectiveAllow: NormalizedAllowFrom;
}> {
const allowFrom = params.groupAllowOverride ?? params.allowFrom;
const expandedAllowFrom = await expandTelegramAllowFromWithAccessGroups({
cfg: params.cfg,
allowFrom,
accountId: params.accountId,
senderId: params.senderId,
});
return {
allowFrom,
expandedAllowFrom,
effectiveAllow: normalizeDmAllowFromWithStore({
allowFrom: expandedAllowFrom,
storeAllowFrom: params.storeAllowFrom,
dmPolicy: params.dmPolicy,
}),
};
}
Reference in New Issue View Git Blame Copy Permalink