Use this file to discover all available pages before exploring further.

OpenAI chat completions

OpenClaw’s Gateway can serve a small OpenAI-compatible Chat Completions endpoint.

This endpoint is disabled by default. Enable it in config first.

text
POST /v1/chat/completions
Same port as the Gateway (WS + HTTP multiplex):
text
http://<gateway-host>:<port>/v1/chat/completions

When the Gateway’s OpenAI-compatible HTTP surface is enabled, it also serves:

text
GET /v1/models
text
GET /v1/models/{id}
text
POST /v1/embeddings
text
POST /v1/responses

Under the hood, requests are executed as a normal Gateway agent run (same codepath as

text

openclaw agent

), so routing/permissions/config match your Gateway.

Authentication

Uses the Gateway auth configuration.

Common HTTP auth paths:

shared-secret auth (
text
gateway.auth.mode="token"
or
text
"password"
):
text
Authorization: Bearer <token-or-password>
trusted identity-bearing HTTP auth (
text
gateway.auth.mode="trusted-proxy"
): route through the configured identity-aware proxy and let it inject the required identity headers
private-ingress open auth (
text
gateway.auth.mode="none"
): no auth header required

Notes:

When
text
gateway.auth.mode="token"
, use
text
gateway.auth.token
(or
text
OPENCLAW_GATEWAY_TOKEN
).
When
text
gateway.auth.mode="password"
, use
text
gateway.auth.password
(or
text
OPENCLAW_GATEWAY_PASSWORD
).
When
text
gateway.auth.mode="trusted-proxy"
, the HTTP request must come from a configured trusted proxy source; same-host loopback proxies require explicit
text
gateway.auth.trustedProxy.allowLoopback = true
.
If
text
gateway.auth.rateLimit
is configured and too many auth failures occur, the endpoint returns
text
429
with
text
Retry-After
.

Security boundary (important)

Treat this endpoint as a full operator-access surface for the gateway instance.

HTTP bearer auth here is not a narrow per-user scope model.
A valid Gateway token/password for this endpoint should be treated like an owner/operator credential.
Requests run through the same control-plane agent path as trusted operator actions.
There is no separate non-owner/per-user tool boundary on this endpoint; once a caller passes Gateway auth here, OpenClaw treats that caller as a trusted operator for this gateway.
For shared-secret auth modes (
text
token
and
text
password
), the endpoint restores the normal full operator defaults even if the caller sends a narrower
text
x-openclaw-scopes
header.
Trusted identity-bearing HTTP modes (for example trusted proxy auth or
text
gateway.auth.mode="none"
) honor
text
x-openclaw-scopes
when present and otherwise fall back to the normal operator default scope set.
If the target agent policy allows sensitive tools, this endpoint can use them.
Keep this endpoint on loopback/tailnet/private ingress only; do not expose it directly to the public internet.

Auth matrix:

text
gateway.auth.mode="token"
or
text
"password"
+
text
Authorization: Bearer ...
- proves possession of the shared gateway operator secret
- ignores narrower
  text
  x-openclaw-scopes
- restores the full default operator scope set:
  text
  operator.admin
  ,
  text
  operator.approvals
  ,
  text
  operator.pairing
  ,
  text
  operator.read
  ,
  text
  operator.talk.secrets
  ,
  text
  operator.write
- treats chat turns on this endpoint as owner-sender turns
trusted identity-bearing HTTP modes (for example trusted proxy auth, or
text
gateway.auth.mode="none"
on private ingress)
- authenticate some outer trusted identity or deployment boundary
- honor
  text
  x-openclaw-scopes
  when the header is present
- fall back to the normal operator default scope set when the header is absent
- only lose owner semantics when the caller explicitly narrows scopes and omits
  text
  operator.admin

See Security and Remote access.

Agent-first model contract

OpenClaw treats the OpenAI

text

model

field as an agent target, not a raw provider model id.

text
model: "openclaw"
routes to the configured default agent.
text
model: "openclaw/default"
also routes to the configured default agent.
text
model: "openclaw/<agentId>"
routes to a specific agent.

Optional request headers:

text
x-openclaw-model: <provider/model-or-bare-id>
overrides the backend model for the selected agent.
text
x-openclaw-agent-id: <agentId>
remains supported as a compatibility override.
text
x-openclaw-session-key: <sessionKey>
fully controls session routing.
text
x-openclaw-message-channel: <channel>
sets the synthetic ingress channel context for channel-aware prompts and policies.

Compatibility aliases still accepted:

text
model: "openclaw:<agentId>"
text
model: "agent:<agentId>"

Enabling the endpoint

Set

text

gateway.http.endpoints.chatCompletions.enabled

text

true


json5
{
  gateway: {
    http: {
      endpoints: {
        chatCompletions: { enabled: true },
      },
    },
  },
}

Disabling the endpoint

Set

text

gateway.http.endpoints.chatCompletions.enabled

text

false


json5
{
  gateway: {
    http: {
      endpoints: {
        chatCompletions: { enabled: false },
      },
    },
  },
}

Session behavior

By default the endpoint is stateless per request (a new session key is generated each call).

If the request includes an OpenAI

text

user

string, the Gateway derives a stable session key from it, so repeated calls can share an agent session.

Why this surface matters

This is the highest-leverage compatibility set for self-hosted frontends and tooling:

Most Open WebUI, LobeChat, and LibreChat setups expect
text
/v1/models
.
Many RAG systems expect
text
/v1/embeddings
.
Existing OpenAI chat clients can usually start with
text
/v1/chat/completions
.
More agent-native clients increasingly prefer
text
/v1/responses
.

Model list and agent routing

Streaming (SSE)

Set

text

stream: true

to receive Server-Sent Events (SSE):

text
Content-Type: text/event-stream
Each event line is
text
data: <json>
Stream ends with
text
data: [DONE]

Open WebUI quick setup

For a basic Open WebUI connection:

Base URL:
text
http://127.0.0.1:18789/v1
Docker on macOS base URL:
text
http://host.docker.internal:18789/v1
API key: your Gateway bearer token
Model:
text
openclaw/default

Expected behavior:

text
GET /v1/models
should list
text
openclaw/default
Open WebUI should use
text
openclaw/default
as the chat model id
If you want a specific backend provider/model for that agent, set the agent's normal default model or send
text
x-openclaw-model

Quick smoke:


bash
curl -sS http://127.0.0.1:18789/v1/models \
  -H 'Authorization: Bearer YOUR_TOKEN'

If that returns

text

openclaw/default

, most Open WebUI setups can connect with the same base URL and token.

Examples

Non-streaming:


bash
curl -sS http://127.0.0.1:18789/v1/chat/completions \
  -H 'Authorization: Bearer YOUR_TOKEN' \
  -H 'Content-Type: application/json' \
  -d '{
    "model": "openclaw/default",
    "messages": [{"role":"user","content":"hi"}]
  }'

Streaming:


bash
curl -N http://127.0.0.1:18789/v1/chat/completions \
  -H 'Authorization: Bearer YOUR_TOKEN' \
  -H 'Content-Type: application/json' \
  -H 'x-openclaw-model: openai/gpt-5.4' \
  -d '{
    "model": "openclaw/research",
    "stream": true,
    "messages": [{"role":"user","content":"hi"}]
  }'

List models:


bash
curl -sS http://127.0.0.1:18789/v1/models \
  -H 'Authorization: Bearer YOUR_TOKEN'

Fetch one model:


bash
curl -sS http://127.0.0.1:18789/v1/models/openclaw%2Fdefault \
  -H 'Authorization: Bearer YOUR_TOKEN'

Create embeddings:


bash
curl -sS http://127.0.0.1:18789/v1/embeddings \
  -H 'Authorization: Bearer YOUR_TOKEN' \
  -H 'Content-Type: application/json' \
  -H 'x-openclaw-model: openai/text-embedding-3-small' \
  -d '{
    "model": "openclaw/default",
    "input": ["alpha", "beta"]
  }'

Notes:

text
/v1/models
returns OpenClaw agent targets, not raw provider catalogs.
text
openclaw/default
is always present so one stable id works across environments.
Backend provider/model overrides belong in
text
x-openclaw-model
, not the OpenAI
text
model
field.
text
/v1/embeddings
supports
text
input
as a string or array of strings.

OpenClaw Docs

OpenAI chat completions

Authentication

Security boundary (important)

Agent-first model contract

Enabling the endpoint

Disabling the endpoint

Session behavior

Why this surface matters

Model list and agent routing

Streaming (SSE)

Open WebUI quick setup

Examples

Related