openclaw/apps
Peter Steinberger 5b5a540e34
feat(android): per-gateway custom headers for gateways behind authenticating proxies (#100765)
* feat(android): support per-gateway custom headers for proxied gateway connections

Per-gateway custom request headers (Cloudflare Access-style service tokens)
for gateways behind authenticating reverse proxies. Headers are credentials:
EncryptedSharedPreferences-stored per endpoint stableId, masked in the manual
connection UI, injected on the OkHttp WebSocket upgrade at connect time via a
provider so edits apply on the next reconnect without re-pairing. Reserved
handshake headers and non-printable-ASCII are sanitized out (OkHttp throws on
them). TLS fingerprint pinning and pairing flows unchanged. Cross-gateway
isolation proven by MockWebServer upgrade-capture test.

Related: #100698

* chore(android): sync native i18n for custom header strings

* fix(android): harden gateway custom headers

* chore(android): resync native i18n inventory

* docs(changelog): defer Android release note

* fix(android): validate custom header names

* chore(android): refresh native i18n inventory
2026-07-06 17:48:57 +01:00
..
.i18n feat(android): per-gateway custom headers for gateways behind authenticating proxies (#100765) 2026-07-06 17:48:57 +01:00
android feat(android): per-gateway custom headers for gateways behind authenticating proxies (#100765) 2026-07-06 17:48:57 +01:00
ios feat(ios): read-only workspace Files browser on the Agents surface (#100767) 2026-07-06 17:47:52 +01:00
macos fix: device pairing floods stacked approval alerts for a retrying device and stale approvals no-op (#100976) 2026-07-06 17:20:06 +01:00
macos-mlx-tts fix: harden mac app computer use docs 2026-04-28 01:25:31 +01:00
shared/OpenClawKit feat(ios): read-only workspace Files browser on the Agents surface (#100767) 2026-07-06 17:47:52 +01:00
swabble chore(swabble): stop tracking Package.resolved clobbered by Xcode resolution (#100961) 2026-07-06 15:58:47 +01:00