docs/channels/tlon.md
Tlon is a decentralized messenger built on Urbit. OpenClaw connects to your Urbit ship and responds to DMs and group chat messages. Group replies require an @ mention by default, with authorization rules and an owner-approval flow layered on top.
Status: bundled plugin. DMs, group mentions, threads, rich text, image upload/download, and an owner approval system are supported. Reactions and polls are not.
Tlon ships bundled in current OpenClaw releases; packaged builds do not need a separate install.
On an older build or custom install that excludes it, install from npm:
openclaw plugins install @openclaw/tlon
Use the bare package name to track the current release tag. Pin a version (@openclaw/[email protected])
only for reproducible installs.
From a local checkout:
openclaw plugins install ./path/to/local/tlon-plugin
Details: Plugins
openclaw channels add --channel tlon --ship ~sampel-palnet --url https://your-ship-host --code lidlut-tabwed-pillex-ridrup
Or edit config directly:
{
channels: {
tlon: {
enabled: true,
ship: "~sampel-palnet",
url: "https://your-ship-host",
code: "lidlut-tabwed-pillex-ridrup",
ownerShip: "~your-main-ship", // recommended: your ship, always authorized
},
},
}
Restart the gateway after editing config directly. Then DM the bot or @ mention it in a group channel.
OpenClaw blocks private/internal hostnames and IP ranges for SSRF protection by default. If your ship runs on a private network (localhost, LAN IP, internal hostname), opt in explicitly:
{
channels: {
tlon: {
url: "http://localhost:8080",
network: {
dangerouslyAllowPrivateNetwork: true,
},
},
},
}
Applies to targets like http://localhost:8080, http://192.168.x.x:8080, and
http://my-ship.local:8080. Only enable this for a ship URL you trust; it disables SSRF
protection for that account's HTTP requests.
Pin channels manually, or turn on auto-discovery:
{
channels: {
tlon: {
groupChannels: ["chat/~host-ship/general", "chat/~host-ship/support"],
autoDiscoverChannels: true,
},
},
}
autoDiscoverChannels defaults to false when unset in config; the setup wizard defaults the
prompt to yes and writes true explicitly. With it on, OpenClaw scries joined groups on startup,
watches new channels as group invites are accepted, and rechecks every 2 minutes.
DM allowlist (empty = no DMs allowed unless the sender is ownerShip):
{
channels: {
tlon: {
dmAllowlist: ["~zod", "~nec"],
},
},
}
Group authorization defaults to restricted per channel. Set defaultAuthorizedShips for a
baseline, and override per channel nest:
{
channels: {
tlon: {
defaultAuthorizedShips: ["~zod"],
authorization: {
channelRules: {
"chat/~host-ship/general": {
mode: "restricted",
allowedShips: ["~zod", "~nec"],
},
"chat/~host-ship/announcements": {
mode: "open",
},
},
},
},
},
}
Once the bot has replied inside a thread, it keeps responding to later messages in that thread without requiring another mention.
{
channels: {
tlon: {
ownerShip: "~your-main-ship",
},
},
}
The owner ship is authorized everywhere: DM invites are always auto-accepted, group invites are
always auto-accepted, and channel messages always pass authorization. The owner does not need to
be in dmAllowlist, defaultAuthorizedShips, or groupInviteAllowlist.
When ownerShip is set, unauthorized requests do not just get dropped — they queue a pending
approval and DM the owner:
dmAllowlistgroupInviteAllowlist (when auto-accept is off, or on but the
inviter is not allowlisted)The owner replies in DM to act on a request:
| Owner reply | Effect |
|---|---|
approve / deny / block | Acts on the most recent pending approval |
approve <id> / deny <id> | Acts on a specific approval by id |
block | Also blocks the ship natively so it cannot reconnect |
unblock ~ship | Reverses a native block |
blocked | Lists currently blocked ships |
pending | Lists pending approval requests |
Without ownerShip configured, unauthorized DMs and channel mentions are just dropped and logged;
there is no approval prompt.
Auto-accept DM invites from ships already on dmAllowlist (the owner is always auto-accepted
regardless of this flag):
{
channels: {
tlon: {
autoAcceptDmInvites: true,
},
},
}
Auto-accept group invites from an allowlist (fails closed: with autoAcceptGroupInvites: true and
an empty groupInviteAllowlist, no non-owner invite is accepted):
{
channels: {
tlon: {
autoAcceptGroupInvites: true,
groupInviteAllowlist: ["~zod"],
},
},
}
Most of the settings above (dmAllowlist, groupInviteAllowlist, groupChannels,
defaultAuthorizedShips, autoDiscoverChannels, autoAcceptDmInvites,
autoAcceptGroupInvites, ownerShip, showModelSignature) are mirrored into the ship's
%settings agent (desk moltbot, bucket tlon) on first run and then read live from there,
so changes made via a Landscape client or the bundled skill's settings commands apply without a
gateway restart. channelRules and pending approvals are also persisted there as JSON. File
config stays the source of truth for values never written to the settings store.
Use with openclaw message send or cron delivery:
~sampel-palnet or dm/~sampel-palnetchat/~host-ship/channel or group:~host-ship/channelThe plugin bundles @tloncorp/tlon-skill, a CLI for
direct Urbit operations, available automatically once the plugin is installed:
| Feature | Status |
|---|---|
| Direct messages | Supported |
| Groups/channels | Supported (mention-gated by default) |
| Threads | Supported (keeps replying once it has joined) |
| Rich text | Markdown converted to Tlon's native format |
| Images | Downloaded inbound, uploaded outbound |
| Reactions | Only via the bundled skill |
| Polls | Not supported |
| Native commands | Owner-only by default |
openclaw status
openclaw gateway status
openclaw logs --follow
openclaw doctor
Common failures:
dmAllowlist and no ownerShip configured for the approval flow.ownerShip to queue an approval.network.dangerouslyAllowPrivateNetwork for local ships.Full configuration: Configuration
| Key | Meaning |
|---|---|
channels.tlon.enabled | Enable/disable channel startup. |
channels.tlon.ship | Bot's Urbit ship name (e.g. ~sampel-palnet). |
channels.tlon.url | Ship URL (e.g. https://sampel-palnet.tlon.network). |
channels.tlon.code | Ship login code. |
channels.tlon.network.dangerouslyAllowPrivateNetwork | Allow localhost/LAN ship URLs (SSRF opt-in). |
channels.tlon.ownerShip | Owner ship: always authorized, receives approval requests. |
channels.tlon.dmAllowlist | Ships allowed to DM (empty = none besides owner). |
channels.tlon.autoAcceptDmInvites | Auto-accept DMs from ships in dmAllowlist. |
channels.tlon.autoAcceptGroupInvites | Auto-accept group invites from groupInviteAllowlist. |
channels.tlon.groupInviteAllowlist | Ships whose group invites are auto-accepted. |
channels.tlon.autoDiscoverChannels | Auto-discover joined group channels (default: false). |
channels.tlon.groupChannels | Manually pinned channel nests. |
channels.tlon.defaultAuthorizedShips | Ships authorized for all channels (used when no rule matches). |
channels.tlon.authorization.channelRules | Per-channel-nest auth mode + allowlist. |
channels.tlon.showModelSignature | Append _[Generated by <model>]_ to replies. |
channels.tlon.responsePrefix | Static prefix prepended to outbound replies. |
channels.tlon.accounts.<id> | Additional named accounts (multi-ship setups). |
~your-bot-ship) unless the bot already joined that thread.