Workaround for OpenClaw Claude Access via Claude Code CLI
Workaround for Maintaining Claude Access in OpenClaw
A Reddit user has documented a workaround for maintaining Claude subscription access in OpenClaw after Anthropic cut off direct access for third-party harnesses. The method involves routing OpenClaw requests through the Claude Code CLI, which remains covered by existing Claude subscriptions.
Key Steps from the Source
The workaround requires several configuration steps:
- Install Claude Code CLI globally:
npm install -g u/anthropic-ai/claude-code - Verify installation with
claude --version - Generate a setup token by running
claude setup-tokenon a machine with a browser (not on a headless server) - Use the OAuth token (starting with
sk-ant-oat01-) with theCLAUDE_CODE_OAUTH_TOKENenvironment variable, notANTHROPIC_API_KEY - Add the token to
~/.bashrcasCLAUDE_CODE_OAUTH_TOKEN - Test the token with:
CLAUDE_CODE_OAUTH_TOKEN="<token>" claude -p "Say: TEST_OK" --output-format text(should print TEST_OK) - Update all
anthropic:*profiles in~/.openclaw/agents/main/agent/auth-profiles.jsonwith the new token using python3 - Run these OpenClaw configuration commands:
openclaw config set plugins.entries.acpx.enabled true openclaw config set plugins.entries.acpx.config.permissionMode approve-all openclaw config set acp.enabled true openclaw config set acp.backend acpx openclaw config set acp.defaultAgent claude openclaw config set 'acp.allowedAgents' '["claude"]' --json
- Create a systemd override at
~/.config/systemd/user/openclaw-gateway.service.d/claude-oauth.confwith theCLAUDE_CODE_OAUTH_TOKEN - Reload and restart the service:
systemctl --user daemon-reload && systemctl --user restart openclaw-gateway - Verify the gateway is running and authentication shows the new token
Important Notes
The source notes several critical implementation details:
- The token is an OAuth token that must be used with the
CLAUDE_CODE_OAUTH_TOKENenvironment variable - Do not run
claude setup-tokenon a headless server as it requires a browser - Do not write to
~/.claude/.credentials.jsonas it doesn't work—the environment variable is the only reliable method - Update
auth-profiles.jsondirectly with python3 instead of using the interactiveopenclaw models auth paste-tokencommand, which hangs on headless servers - The workaround adds an extra hop through the CLI, making it slightly slower
- Anthropic could patch this method in the future
📖 Read the full source: r/openclaw
👀 See Also
Master OpenClaw on Your Android Smartphone: A Comprehensive Tutorial
Curious about harnessing the potential of OpenClaw on your Android smartphone? This tutorial provides step-by-step guidance on getting started, covering essential tips and tricks from the vibrant OpenClaw community.
GitHub Repo Owners: Use Git's --author Flag to Block AI Bot Spam
Archestra fought AI comment/PR spam by exploiting GitHub's 'prior contributors' setting and Git's --author flag to whitelist real humans via a captcha-based onboarding flow.
OpenClaw: Your Ultimate Quick Reference Cheatsheet
Dive into the nitty-gritty of OpenClaw with our handy reference cheatsheet. Extract critical features and functionalities to streamline your AI coding experience.
Building a serverless AI agent platform on AWS for $0.01/month with Claude Code
A developer built a complete AWS serverless platform running AI agents for approximately $0.01/month using Claude Code over 29 hours, eliminating expensive components like NAT Gateway ($32/month) and ALB ($18/month). The project includes 233 unit tests, 35 E2E tests, and deploys with a single cdk deploy command.