Skip to content
CoderClaw CoderClaw

Gateway Architecture

Gateway architecture

Section titled “Gateway architecture”

Last updated: 2026-02-19

Overview

Section titled “Overview”

CoderClaw extends CoderClaw’s WebSocket gateway with Phase 2 distributed runtime capabilities:

  • A single long‑lived Gateway owns all messaging surfaces (WhatsApp via Baileys, Telegram via grammY, Slack, Discord, Signal, iMessage, WebChat).
  • Phase 2 Runtime Layer adds transport abstraction, distributed task lifecycle, and security controls.
  • Control-plane clients (macOS app, CLI, web UI, automations) connect to the Gateway over WebSocket on the configured bind host (default 127.0.0.1:18789).
  • Nodes (macOS/iOS/Android/headless) also connect over WebSocket, but declare role: node with explicit caps/commands.
  • One Gateway per host; it is the only place that opens a WhatsApp session.
  • The canvas host is served by the Gateway HTTP server under:
    • /__coderclaw__/canvas/ (agent-editable HTML/CSS/JS)
    • /__coderclaw__/a2ui/ (A2UI host) It uses the same port as the Gateway (default 18789).

Components and flows

Section titled “Components and flows”

Gateway (daemon)

Section titled “Gateway (daemon)”
  • Maintains provider connections.
  • Exposes a typed WS API (requests, responses, server‑push events).
  • Validates inbound frames against JSON Schema.
  • Emits events like agent, chat, presence, health, heartbeat, cron.
  • Phase 2: Integrates distributed task engine and security service.

Phase 2 Runtime Components

Section titled “Phase 2 Runtime Components”

Transport Abstraction Layer:

  • Protocol-agnostic interface for local/remote task execution
  • Pluggable adapters (Local, HTTP, WebSocket, gRPC)
  • Runtime status monitoring and discovery

Distributed Task Engine:

  • Formal state machine (PENDING → PLANNING → RUNNING → COMPLETED/FAILED/CANCELLED)
  • Globally unique task IDs with persistence
  • Complete audit trail and resumability
  • Task relationships and progress tracking

Security Service:

  • Multi-provider authentication (OIDC, GitHub, Google, Local)
  • Device trust levels (trusted, verified, untrusted)
  • Role-based access control (RBAC) with built-in roles
  • Granular permissions at session, agent, skill, and repo levels
  • Comprehensive audit logging

For details, see Phase 2 Documentation.

Clients (mac app / CLI / web admin)

Section titled “Clients (mac app / CLI / web admin)”
  • One WS connection per client.
  • Send requests (health, status, send, agent, system-presence).
  • Subscribe to events (tick, agent, presence, shutdown).

Nodes (macOS / iOS / Android / headless)

Section titled “Nodes (macOS / iOS / Android / headless)”
  • Connect to the same WS server with role: node.
  • Provide a device identity in connect; pairing is device‑based (role node) and approval lives in the device pairing store.
  • Expose commands like canvas.*, camera.*, screen.record, location.get.

Protocol details:

WebChat

Section titled “WebChat”
  • Static UI that uses the Gateway WS API for chat history and sends.
  • In remote setups, connects through the same SSH/Tailscale tunnel as other clients.

Connection lifecycle (single client)

Section titled “Connection lifecycle (single client)”
sequenceDiagram
    participant Client
    participant Gateway


    Client->>Gateway: req:connect
    Gateway-->>Client: res (ok)
    Note right of Gateway: or res error + close
    Note left of Client: payload=hello-ok<br>snapshot: presence + health


    Gateway-->>Client: event:presence
    Gateway-->>Client: event:tick


    Client->>Gateway: req:agent
    Gateway-->>Client: res:agent<br>ack {runId, status:"accepted"}
    Gateway-->>Client: event:agent<br>(streaming)
    Gateway-->>Client: res:agent<br>final {runId, status, summary}

Wire protocol (summary)

Section titled “Wire protocol (summary)”
  • Transport: WebSocket, text frames with JSON payloads.
  • First frame must be connect.
  • After handshake:
    • Requests: {type:"req", id, method, params}{type:"res", id, ok, payload|error}
    • Events: {type:"event", event, payload, seq?, stateVersion?}
  • If CODERCLAW_GATEWAY_TOKEN (or --token) is set, connect.params.auth.token must match or the socket closes.
  • Idempotency keys are required for side‑effecting methods (send, agent) to safely retry; the server keeps a short‑lived dedupe cache.
  • Nodes must include role: "node" plus caps/commands/permissions in connect.

Pairing + local trust

Section titled “Pairing + local trust”
  • All WS clients (operators + nodes) include a device identity on connect.
  • New device IDs require pairing approval; the Gateway issues a device token for subsequent connects.
  • Local connects (loopback or the gateway host’s own tailnet address) can be auto‑approved to keep same‑host UX smooth.
  • Non‑local connects must sign the connect.challenge nonce and require explicit approval.
  • Gateway auth (gateway.auth.*) still applies to all connections, local or remote.

Details: Gateway protocol, Pairing, Security.

Protocol typing and codegen

Section titled “Protocol typing and codegen”
  • TypeBox schemas define the protocol.
  • JSON Schema is generated from those schemas.
  • Swift models are generated from the JSON Schema.

Remote access

Section titled “Remote access”

  • Preferred: Tailscale or VPN.

  • Alternative: SSH tunnel

    Terminal window
    ssh -N -L 18789:127.0.0.1:18789 user@host

  • The same handshake + auth token apply over the tunnel.

  • TLS + optional pinning can be enabled for WS in remote setups.

Operations snapshot

Section titled “Operations snapshot”
  • Start: coderclaw gateway (foreground, logs to stdout).
  • Health: health over WS (also included in hello-ok).
  • Supervision: launchd/systemd for auto‑restart.

Invariants

Section titled “Invariants”
  • Exactly one Gateway controls a single Baileys session per host.
  • Handshake is mandatory; any non‑JSON or non‑connect first frame is a hard close.
  • Events are not replayed; clients must refresh on gaps.