zca-js, in-process, with no external CLI binary.
Install
Zalo Personal is an official external plugin, not bundled in core. Install it before use:- Pin a version:
openclaw plugins install @openclaw/zalouser@<version> - From a source checkout:
openclaw plugins install ./path/to/local/zalouser-plugin - Details: Plugins
Quick setup
- Install the plugin (above).
- Login (QR, on the Gateway machine):
openclaw channels login --channel zalouser- Scan the QR code with the Zalo mobile app.
- Enable the channel:
- Restart the Gateway (or finish setup).
- DM access defaults to pairing; approve the pairing code on first contact.
What it is
- Runs entirely in-process via the
zca-jslibrary (no externalzca/openzcabinary). - Uses native event listeners (
message,error) to receive inbound messages. - Sends replies directly through the JS API (text/media/link).
- Designed for “personal account” use cases where the Zalo Bot API is not available.
Naming
Channel id iszalouser to make it explicit this automates a personal Zalo user account (unofficial). zalo is reserved for a potential future official Zalo API integration.
Finding IDs (directory)
Limits
- Outbound text is chunked to 2000 characters (Zalo client limit).
- Streaming is not supported.
Access control (DMs)
channels.zalouser.dmPolicy: pairing | allowlist | open | disabled (default: pairing).
channels.zalouser.allowFrom should use stable Zalo user IDs. It can also reference static sender access groups (accessGroup:<name>). During interactive setup, entered names can be resolved to IDs using the plugin’s in-process contact lookup.
If a raw name remains in config, startup resolves it only when channels.zalouser.dangerouslyAllowNameMatching: true is enabled. Without that opt-in, runtime sender checks are ID-only and raw names are ignored for authorization.
Approve via:
openclaw pairing list zalouseropenclaw pairing approve zalouser <code>
Group access (optional)
- Default:
channels.zalouser.groupPolicy = "allowlist"(groups require an explicit allowlist entry). - Open all groups:
channels.zalouser.groupPolicy = "open". - Block all groups:
channels.zalouser.groupPolicy = "disabled". - With
groupPolicy = "allowlist":channels.zalouser.groupskeys should be stable group IDs; names resolve to IDs on startup only whenchannels.zalouser.dangerouslyAllowNameMatching: trueis enabled.channels.zalouser.groupAllowFromcontrols which senders in allowed groups can trigger the bot; static sender access groups can be referenced withaccessGroup:<name>.
- The configure wizard can prompt for group allowlists.
- Group allowlist matching is ID-only by default. Unresolved names are ignored for auth unless
channels.zalouser.dangerouslyAllowNameMatching: trueis enabled. channels.zalouser.dangerouslyAllowNameMatching: trueis a break-glass compatibility mode that re-enables mutable startup name resolution and runtime group-name matching.groupAllowFromdoes not fall back toallowFromfor normal group messages: leaving it empty on an allowlisted group opens that group to any sender. Authorized control commands (for example/new) are the exception; command sender checks fall back toallowFromwhengroupAllowFromis empty.
channels.zalouser.groups.<id>.allow is a legacy field name; current config uses enabled. openclaw doctor --fix migrates allow to enabled automatically.Group mention gating
channels.zalouser.groups.<group>.requireMentioncontrols whether group replies require a mention.- Resolution order: group id ->
group:<id>alias -> group name/slug (name-based candidates only apply whendangerouslyAllowNameMatching: true) ->*-> default (true). - Applies both to allowlisted groups and open group mode.
- Quoting a bot message counts as an implicit mention for group activation.
- Authorized control commands (for example
/new) can bypass mention gating. - When a group message is skipped because a mention is required, OpenClaw stores it as pending group history and includes it on the next processed group message.
- Group history limit:
channels.zalouser.historyLimit, thenmessages.groupChat.historyLimit, then a fallback of50.
Multi-account
Accounts map tozalouser profiles in OpenClaw state. Example:
Environment variables
Profile selection can also come from environment variables:
Profile names select the saved Zalo login credentials in OpenClaw state. Resolution order:
- Explicit
profilein config. ZALOUSER_PROFILE.ZCA_PROFILE.- The account id for non-default accounts, or
defaultfor the default account.
profile on each account in config so one environment variable does not make multiple accounts share the same login session.
Typing, reactions, and delivery acknowledgements
- OpenClaw sends a typing event before dispatching a reply (best-effort).
- Message reaction action
reactis supported forzalouserin channel actions.- Use
remove: trueto remove a specific reaction emoji from a message. - Reaction semantics: Reactions
- Use
- For inbound messages that include event metadata, OpenClaw sends delivered + seen acknowledgements (best-effort).
Troubleshooting
Login doesn’t stick:openclaw channels status --probe- Re-login:
openclaw channels logout --channel zalouser && openclaw channels login --channel zalouser
- Use numeric IDs in
allowFrom/groupAllowFromand stable group IDs ingroups. If you intentionally need exact friend/group names, enablechannels.zalouser.dangerouslyAllowNameMatching: true.
zca/CLI-based setup:
- Remove any external
zcaprocess assumptions; the channel now runs fully in-process viazca-js, with no external CLI binary.
Related
- Channels Overview - all supported channels
- Pairing - DM authentication and pairing flow
- Groups - group chat behavior and mention gating
- Channel Routing - session routing for messages
- Security - access model and hardening