Files API

Capabilities
Authentication
Safety

The files API runs inside the gateway container and provides the bridge between the UI’s file browser and the agent’s git worktree on the gateway.

Capabilities

Operation	Description
List	Browse files in an agent’s branch
Read	Fetch file contents
Create	Add new files to the worktree
Edit	Update existing files
Delete	Remove files
Commit	Every write is immediately committed to git

Authentication

The API is gated by GATEWAY_AUTH_TOKEN — a pre-shared secret between the UI and gateway. Generate it with openssl rand -hex 32.

Safety

Path traversal is rejected via safe_join() — requests can’t escape the agent’s worktree.
After a successful write, the UI automatically enqueues an update command so OpenClaw reloads the agent with the changed files.

Do not expose the files API directly to the public internet. It should only be reachable by the UI server process or over a private network like Tailscale.

Docker services Command lifecycle

⌘I

Start here

Self-host

Use Your HQ

Concepts

Reference

Development

Security and troubleshooting

Files API

Capabilities

Authentication

Safety

Start here

Self-host

Use Your HQ

Concepts

Reference

Development

Security and troubleshooting

Documentation Index

​Capabilities

​Authentication

​Safety

Capabilities

Authentication

Safety