clawlink-webonclaw-link.devhandles the hosted app, dashboard, pairing pages, billing routes, OAuth callbacks, and Next API routes.clawlinkonapi.claw-link.devhandles tool execution, request routing, and scheduled backend work.
CREDENTIALS KV namespace, so browser flows and execution stay in sync.
Runtime architecture
Pairing and connect flows start on claw-link.dev
You sign in to the hosted app, approve browser pairing, and connect apps from the dashboard. Hosted OAuth and provider callbacks also land here.
Connection sessions create or update exact connection rows
Every hosted connect flow is tied to a connection session. When setup finishes, ClawLink creates or updates the correct
user_integrations row, including the stable connection id, labels, provider metadata, and default-connection state.The client authenticates with its local ClawLink credential
Browser pairing stores a local ClawLink credential for the OpenClaw or Hermes client. The client uses that credential when it asks ClawLink to list tools, preview actions, or execute a tool call.
The execution worker resolves the right connection
The backend worker looks up the user, finds the target integration, and resolves the right connection row. If multiple connections exist for the same provider, ClawLink uses the default connection unless the request names a specific one.
Security
Your credentials are protected at every stage:- Encrypted at rest with AES-256-GCM — provider credentials are encrypted before storage.
- Decrypted only at execution time — credentials are decrypted only for the live provider request.
- The client stores only the ClawLink device credential locally — provider OAuth tokens and app credentials stay in ClawLink’s shared infrastructure.
- Delete is row-level for connections — connection lifecycle is tied to stable connection ids, not a one-row-per-provider assumption.
Built-in reliability
ClawLink handles the reliability concerns that would otherwise fall on you:- Retries with exponential backoff — if a third-party API returns a transient error, ClawLink retries the request automatically, waiting longer between each attempt to avoid overwhelming the service.
- Rate limit handling — when an API enforces rate limits, ClawLink manages the pacing so your agent’s requests go through without you having to think about it.
- Connection-aware routing — if one provider has multiple connected accounts, ClawLink can route through the default connection instead of guessing from a single old row.
