Releases: contextablemark/clawg-ui
Releases · contextablemark/clawg-ui
v0.2.4
v0.2.1
Fixed
- Return HTTP 429
rate_limiterror when max pending pairing requests (3) is reached, instead of returning an empty pairing code
🤖 Generated with Claude Code
v0.2.0
Added
- Device pairing authentication - Secure per-device access control
- HMAC-signed device tokens (no master token exposure)
- Pairing approval workflow (
openclaw pairing approve clawg-ui <code>) - New CLI command:
openclaw clawg-ui devices- List approved devices
Changed
- Breaking: Direct bearer token authentication using
OPENCLAW_GATEWAY_TOKENis now deprecated and no longer supported. All clients must use device pairing.
Security
- Device tokens are HMAC-signed and do not expose the gateway's master secret
- Pending pairing requests expire after 10 minutes (max 3 per channel)
- Each device requires explicit approval by the gateway owner