zhi/HarborForge.OpenclawPlugin
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

feat(telemetry): refactor to use API Key authentication

Browse Source 
- Add HF_MONITOR_API_KEY environment variable support
- Add X-API-Key header to HTTP requests
- Remove challenge_uuid dependency
- Use heartbeat-v2 endpoint for API Key auth
- Warn instead of exit when API key is missing
This commit is contained in:
zhi
2026-03-19 16:12:01 +00:00
parent 0debe835b4
commit f0e9d22d9d
1 changed files with 16 additions and 11 deletions
Download Patch File Download Diff File Expand all files Collapse all files

27
server/telemetry.mjs
View File

@@ -16,7 +16,7 @@ const execAsync = promisify(exec);
const CONFIG = { const CONFIG = {
backendUrl: process.env.HF_MONITOR_BACKEND_URL || 'https://monitor.hangman-lab.top', backendUrl: process.env.HF_MONITOR_BACKEND_URL || 'https://monitor.hangman-lab.top',
identifier: process.env.HF_MONITOR_IDENTIFIER || hostname(), identifier: process.env.HF_MONITOR_IDENTIFIER || hostname(),
challengeUuid: process.env.HF_MONITOR_CHALLENGE_UUID, apiKey: process.env.HF_MONITOR_API_KEY,
reportIntervalSec: parseInt(process.env.HF_MONITOR_REPORT_INTERVAL || '30', 10), reportIntervalSec: parseInt(process.env.HF_MONITOR_REPORT_INTERVAL || '30', 10),
httpFallbackIntervalSec: parseInt(process.env.HF_MONITOR_HTTP_FALLBACK_INTERVAL || '60', 10), httpFallbackIntervalSec: parseInt(process.env.HF_MONITOR_HTTP_FALLBACK_INTERVAL || '60', 10),
logLevel: process.env.HF_MONITOR_LOG_LEVEL || 'info', logLevel: process.env.HF_MONITOR_LOG_LEVEL || 'info',
@@ -177,7 +177,6 @@ async function buildPayload() {
return { return {
identifier: CONFIG.identifier, identifier: CONFIG.identifier,
challenge_uuid: CONFIG.challengeUuid,
timestamp: new Date().toISOString(), timestamp: new Date().toISOString(),
...system, ...system,
openclaw_version: openclaw.version, openclaw_version: openclaw.version,
@@ -194,13 +193,19 @@ async function sendHttpHeartbeat() {
const payload = await buildPayload(); const payload = await buildPayload();
log.debug('Sending HTTP heartbeat...'); log.debug('Sending HTTP heartbeat...');
const response = await fetch(`${CONFIG.backendUrl}/monitor/server/heartbeat`, { const headers = {
'Content-Type': 'application/json',
'X-Server-Identifier': CONFIG.identifier,
};
// Add API Key authentication if configured
if (CONFIG.apiKey) {
headers['X-API-Key'] = CONFIG.apiKey;
}
const response = await fetch(`${CONFIG.backendUrl}/monitor/server/heartbeat-v2`, {
method: 'POST', method: 'POST',
headers: { headers,
'Content-Type': 'application/json',
'X-Server-Identifier': CONFIG.identifier,
'X-Challenge-UUID': CONFIG.challengeUuid,
},
body: JSON.stringify(payload), body: JSON.stringify(payload),
}); });
@@ -268,11 +273,11 @@ log.info('Config:', {
identifier: CONFIG.identifier, identifier: CONFIG.identifier,
backendUrl: CONFIG.backendUrl, backendUrl: CONFIG.backendUrl,
reportIntervalSec: CONFIG.reportIntervalSec, reportIntervalSec: CONFIG.reportIntervalSec,
hasApiKey: !!CONFIG.apiKey,
}); });
if (!CONFIG.challengeUuid) { if (!CONFIG.apiKey) {
log.error('Missing HF_MONITOR_CHALLENGE_UUID environment variable'); log.warn('Missing HF_MONITOR_API_KEY environment variable - API authentication will be disabled');
process.exit(1);
} }
reportingLoop(); reportingLoop();