coderClaw

`coderclaw devices`

Manage device pairing requests and device-scoped tokens.

Commands

`coderclaw devices list`

List pending pairing requests and paired devices.

coderclaw devices list
coderclaw devices list --json

`coderclaw devices approve [requestId] [--latest]`

Approve a pending device pairing request. If requestId is omitted, CoderClaw automatically approves the most recent pending request.

coderclaw devices approve
coderclaw devices approve <requestId>
coderclaw devices approve --latest

`coderclaw devices reject <requestId>`

Reject a pending device pairing request.

coderclaw devices reject <requestId>

`coderclaw devices rotate --device <id> --role <role> [--scope <scope...>]`

Rotate a device token for a specific role (optionally updating scopes).

coderclaw devices rotate --device <deviceId> --role operator --scope operator.read --scope operator.write

`coderclaw devices revoke --device <id> --role <role>`

Revoke a device token for a specific role.

coderclaw devices revoke --device <deviceId> --role node

Common options

--url <url>: Gateway WebSocket URL (defaults to gateway.remote.url when configured).
--token <token>: Gateway token (if required).
--password <password>: Gateway password (password auth).
--timeout <ms>: RPC timeout.
--json: JSON output (recommended for scripting).

Note: when you set --url, the CLI does not fall back to config or environment credentials. Pass --token or --password explicitly. Missing explicit credentials is an error.

Notes

Token rotation returns a new token (sensitive). Treat it like a secret.
These commands require operator.pairing (or operator.admin) scope.

This site is open source. Improve this page.