feat(claw): add default permissions selector to settings tab (#1475)

## Summary

Makes permission preset selection available outside of the onboarding
flow for KiloClaw.

## Verification

- Verified the SettingsTab diff is surgical — only the new imports, the
new `PermissionPresetSection` component, and the render insertion are
changed; no formatting churn in existing code
- Could not run `pnpm typecheck` because `node_modules` are not
installed in this environment (shallow clone), but all new code follows
existing patterns (same `mutations` API, same `toast`/`Button`/`Save`
imports already used by the file)

## Visual Changes



https://github.com/user-attachments/assets/b8dbca19-6cb8-4937-9766-e84e5e432a6f



## Reviewer Notes

- The `PermissionPresetCards` shared component is intentionally kept in
the `claw/components/` directory rather than `components/shared/` since
it's only used within the claw feature
- The `selected` prop on `PermissionPresetCards` is optional — when
omitted (as in the onboarding flow), no card shows the active highlight
- There is currently no API to **read** the current exec preset from the
backend, so the settings section starts with no card selected. Users
pick a preset, then save. A future improvement could add a
`getExecPreset` query to pre-populate the selection.

Author: RSO

kiloclaw/src/durable-objects/kiloclaw-instance/index.ts

@@ -1153,6 +1153,8 @@ export class KiloClawInstance extends DurableObject<KiloClawEnv> {
     trackedImageDigest: string | null;
     googleConnected: boolean;
     gmailNotificationsEnabled: boolean;
+    execSecurity: string | null;
+    execAsk: string | null;
   }> {
     await this.loadState();
 
@@ -1189,6 +1191,8 @@ export class KiloClawInstance extends DurableObject<KiloClawEnv> {
       trackedImageDigest: this.s.trackedImageDigest,
       googleConnected: this.s.googleCredentials !== null,
       gmailNotificationsEnabled: this.s.gmailNotificationsEnabled,
+      execSecurity: this.s.execSecurity,
+      execAsk: this.s.execAsk,
     };
   }
 

src/app/(app)/claw/components/PermissionPresetCards.tsx

@@ -0,0 +1,95 @@
+'use client';
+
+import { AlertCircle, ShieldAlert, ShieldCheck } from 'lucide-react';
+import { cn } from '@/lib/utils';
+import type { ExecPreset } from './claw.types';
+
+export function PermissionPresetCards({
+  selected,
+  onSelect,
+}: {
+  selected?: ExecPreset | null;
+  onSelect: (preset: ExecPreset) => void;
+}) {
+  return (
+    <div className="grid grid-cols-1 gap-4 sm:grid-cols-2">
+      <PresetCard
+        onClick={() => onSelect('never-ask')}
+        active={selected === 'never-ask'}
+        icon={<ShieldAlert className="h-5 w-5 text-amber-400" />}
+        iconBg="bg-amber-900/50"
+        title="Allow everything"
+        description="The bot acts immediately without asking — a.k.a. YOLO mode. Best for autonomous workflows, but review what it can access first."
+        caution="Use with caution"
+      />
+      <PresetCard
+        onClick={() => onSelect('always-ask')}
+        active={selected === 'always-ask'}
+        icon={<ShieldCheck className="h-5 w-5 text-emerald-400" />}
+        iconBg="bg-emerald-900/50"
+        title="Ask for permission"
+        description="The bot pauses and asks you before taking any action. Best when you want full control over what it does."
+        badge="Recommended"
+      />
+    </div>
+  );
+}
+
+export function PresetCard({
+  onClick,
+  active,
+  icon,
+  iconBg,
+  title,
+  description,
+  badge,
+  caution,
+}: {
+  onClick: () => void;
+  active?: boolean;
+  icon: React.ReactNode;
+  iconBg: string;
+  title: string;
+  description: string;
+  badge?: string;
+  caution?: string;
+}) {
+  return (
+    <button
+      type="button"
+      onClick={onClick}
+      className={cn(
+        'relative flex cursor-pointer flex-col gap-4 rounded-xl border p-5 text-left transition-colors',
+        active
+          ? 'border-blue-500 ring-1 ring-blue-500/40'
+          : 'border-border hover:border-muted-foreground/40'
+      )}
+    >
+      {/* Top row: icon + badge */}
+      <div className="flex items-start justify-between">
+        <div className={cn('flex h-10 w-10 items-center justify-center rounded-lg', iconBg)}>
+          {icon}
+        </div>
+        {badge ? (
+          <span className="rounded-full border border-emerald-700 px-2.5 py-0.5 text-[10px] font-semibold tracking-wider text-emerald-400 uppercase">
+            {badge}
+          </span>
+        ) : null}
+      </div>
+
+      {/* Title + description */}
+      <div className="flex flex-col gap-1.5">
+        <p className="text-sm font-bold">{title}</p>
+        <p className="text-muted-foreground text-xs leading-relaxed">{description}</p>
+      </div>
+
+      {/* Caution label */}
+      {caution && (
+        <div className="flex items-center gap-1.5 text-amber-400">
+          <AlertCircle className="h-3.5 w-3.5" />
+          <span className="text-xs font-medium">{caution}</span>
+        </div>
+      )}
+    </button>
+  );
+}

src/app/(app)/claw/components/PermissionStep.tsx

@@ -1,9 +1,8 @@
 'use client';
 
-import { AlertCircle, ShieldAlert, ShieldCheck } from 'lucide-react';
-import { cn } from '@/lib/utils';
 import type { ExecPreset } from './claw.types';
 import { OnboardingStepView } from './OnboardingStepView';
+import { PermissionPresetCards } from './PermissionPresetCards';
 
 export function PermissionStep({
   instanceRunning,
@@ -20,79 +19,7 @@ export function PermissionStep({
       description="Choose how your KiloClaw bot handles actions on your behalf."
       showProvisioningBanner={!instanceRunning}
     >
-      <div className="grid grid-cols-1 gap-4 sm:grid-cols-2">
-        <PresetCard
-          onClick={() => onSelect('never-ask')}
-          icon={<ShieldAlert className="h-5 w-5 text-amber-400" />}
-          iconBg="bg-amber-900/50"
-          title="Allow everything"
-          description="The bot acts immediately without asking — a.k.a. YOLO mode. Best for autonomous workflows, but review what it can access first."
-          caution="Use with caution"
-        />
-        <PresetCard
-          onClick={() => onSelect('always-ask')}
-          icon={<ShieldCheck className="h-5 w-5 text-emerald-400" />}
-          iconBg="bg-emerald-900/50"
-          title="Ask for permission"
-          description="The bot pauses and asks you before taking any action. Best when you want full control over what it does."
-          badge="Recommended"
-        />
-      </div>
+      <PermissionPresetCards onSelect={onSelect} />
     </OnboardingStepView>
   );
 }
-
-function PresetCard({
-  onClick,
-  icon,
-  iconBg,
-  title,
-  description,
-  badge,
-  caution,
-}: {
-  onClick: () => void;
-  icon: React.ReactNode;
-  iconBg: string;
-  title: string;
-  description: string;
-  badge?: string;
-  caution?: string;
-}) {
-  return (
-    <button
-      type="button"
-      onClick={onClick}
-      className={cn(
-        'relative flex cursor-pointer flex-col gap-4 rounded-xl border p-5 text-left transition-colors',
-        'border-border hover:border-muted-foreground/40'
-      )}
-    >
-      {/* Top row: icon + badge */}
-      <div className="flex items-start justify-between">
-        <div className={cn('flex h-10 w-10 items-center justify-center rounded-lg', iconBg)}>
-          {icon}
-        </div>
-        {badge ? (
-          <span className="rounded-full border border-emerald-700 px-2.5 py-0.5 text-[10px] font-semibold tracking-wider text-emerald-400 uppercase">
-            {badge}
-          </span>
-        ) : null}
-      </div>
-
-      {/* Title + description */}
-      <div className="flex flex-col gap-1.5">
-        <p className="text-sm font-bold">{title}</p>
-        <p className="text-muted-foreground text-xs leading-relaxed">{description}</p>
-      </div>
-
-      {/* Caution label */}
-      {caution && (
-        <div className="flex items-center gap-1.5 text-amber-400">
-          <AlertCircle className="h-3.5 w-3.5" />
-          <span className="text-xs font-medium">{caution}</span>
-        </div>
-      )}
-    </button>
-  );
-}

src/app/(app)/claw/components/SettingsTab.tsx

@@ -55,6 +55,8 @@ import { ConfirmActionDialog } from './ConfirmActionDialog';
 import { PairingSection } from './PairingSection';
 import { VersionPinCard } from './VersionPinCard';
 import { WorkspaceFileEditor } from './WorkspaceFileEditor';
+import { PermissionPresetCards } from './PermissionPresetCards';
+import { type ExecPreset, configToExecPreset, execPresetToConfig } from './claw.types';
 
 type ClawMutations = ReturnType<typeof useKiloClawMutations>;
 
@@ -433,6 +435,86 @@ function GoogleAccountCard({
   );
 }
 
+// ---------------------------------------------------------------------------
+// Default Permissions section
+// ---------------------------------------------------------------------------
+
+function PermissionPresetSection({
+  isRunning,
+  status,
+  mutations,
+  onRedeploy,
+}: {
+  isRunning: boolean;
+  status: KiloClawDashboardStatus;
+  mutations: ClawMutations;
+  onRedeploy?: () => void;
+}) {
+  const currentPreset = configToExecPreset(status.execSecurity, status.execAsk);
+  const [selected, setSelected] = useState<ExecPreset | null>(currentPreset);
+  const saving = mutations.patchExecPreset.isPending || mutations.patchOpenclawConfig.isPending;
+  const dirty = selected !== null && selected !== currentPreset;
+
+  function handleSave() {
+    if (!selected) return;
+    const { security, ask } = execPresetToConfig(selected);
+
+    // Persist to durable storage (survives redeploys)
+    mutations.patchExecPreset.mutate(
+      { security, ask },
+      {
+        onError: (err: { message: string }) => toast.error(`Failed to save: ${err.message}`),
+      }
+    );
+
+    // Apply to the live openclaw.json if the instance is running
+    if (isRunning) {
+      mutations.patchOpenclawConfig.mutate(
+        { patch: { tools: { exec: { security, ask } } } },
+        {
+          onSuccess: () => {
+            toast.success('Default permissions saved. Redeploy to ensure the change persists.', {
+              duration: 8000,
+              ...(onRedeploy && {
+                action: { label: 'Redeploy', onClick: onRedeploy },
+              }),
+            });
+          },
+          onError: (err: { message: string }) =>
+            toast.error(`Saved to storage but failed to apply live: ${err.message}`),
+        }
+      );
+    } else {
+      toast.success(
+        'Default permissions saved. Start your instance and redeploy for the change to take effect.'
+      );
+    }
+  }
+
+  return (
+    <div>
+      <h2 className="text-foreground mb-3 text-base font-semibold">Default Permissions</h2>
+      <div className="rounded-lg border p-5">
+        <p className="text-muted-foreground mb-1 text-sm">
+          Choose how your bot handles actions by default. This sets the{' '}
+          <strong className="text-foreground">default permission level</strong> for all tool
+          executions.
+        </p>
+        <p className="mb-4 text-xs text-amber-400">
+          You must redeploy your instance for this change to take effect.
+        </p>
+        <PermissionPresetCards selected={selected} onSelect={setSelected} />
+        <div className="mt-4 flex justify-end">
+          <Button size="sm" disabled={!dirty || saving} onClick={handleSave}>
+            <Save className="h-4 w-4" />
+            {saving ? 'Saving...' : 'Save'}
+          </Button>
+        </div>
+      </div>
+    </div>
+  );
+}
+
 // ---------------------------------------------------------------------------
 // SettingsTab
 // ---------------------------------------------------------------------------
@@ -727,6 +809,14 @@ export function SettingsTab({
         </div>
       </div>
 
+      {/* ── Default Permissions ── */}
+      <PermissionPresetSection
+        isRunning={isRunning}
+        status={status}
+        mutations={mutations}
+        onRedeploy={onRedeploy}
+      />
+
       {/* ── Messaging Channels ── */}
       <div>
         <h2 className="text-foreground mb-3 text-base font-semibold">Messaging Channels</h2>

src/app/(app)/claw/components/claw.types.ts

@@ -17,6 +17,13 @@ export function execPresetToConfig(preset: ExecPreset): { security: string; ask:
   }
 }
 
+/** Reverse-map stored exec config values back to a preset, or null if unrecognised. */
+export function configToExecPreset(security: string | null, ask: string | null): ExecPreset | null {
+  if (security === 'full' && ask === 'off') return 'never-ask';
+  if (security === 'allowlist' && ask === 'on-miss') return 'always-ask';
+  return null;
+}
+
 /**
  * Build the openclaw.json config patch that enables a channel with its token(s).
  * The shape must match what the controller writes in config-writer.ts.

src/app/(app)/claw/components/withStatusQueryBoundary.test.ts

@@ -26,6 +26,8 @@ const baseStatus: KiloClawDashboardStatus = {
   trackedImageDigest: null,
   googleConnected: false,
   gmailNotificationsEnabled: false,
+  execSecurity: null,
+  execAsk: null,
   workerUrl: 'https://claw.kilo.ai',
 };
 

src/hooks/useKiloClaw.ts

@@ -232,7 +232,9 @@ export function useKiloClawMutations() {
         },
       })
     ),
-    patchExecPreset: useMutation(trpc.kiloclaw.patchExecPreset.mutationOptions()),
+    patchExecPreset: useMutation(
+      trpc.kiloclaw.patchExecPreset.mutationOptions({ onSuccess: invalidateStatus })
+    ),
     patchOpenclawConfig: useMutation(trpc.kiloclaw.patchOpenclawConfig.mutationOptions()),
     disconnectGoogle: useMutation(
       trpc.kiloclaw.disconnectGoogle.mutationOptions({ onSuccess: invalidateStatus })

src/lib/kiloclaw/types.ts

@@ -137,6 +137,8 @@ export type PlatformStatusResponse = {
   trackedImageDigest: string | null;
   googleConnected: boolean;
   gmailNotificationsEnabled: boolean;
+  execSecurity: string | null;
+  execAsk: string | null;
 };
 
 /** Response from GET /api/platform/debug-status (internal/admin only). */