fourplayers/openclaw Docker 镜像 - 轩辕镜像 | Docker 镜像高效稳定拉取服务

OpenClaw All-in-One Docker 🦞

![Docker Pulls]([***]

A ready-to-deploy Docker image for OpenClaw, the powerful open-source AI assistant that brings Claude and GPT to your favorite messaging apps. Built for ODIN Fleet and any Docker-compatible platform.

Features:

• Zero-config startup — auto-configures on first run
• HTTPS support with auto-generated or custom certificates
• Supports Anthropic and OpenAI APIs
• Connect ***, ***, ***, Slack, and more
• Persistent storage for seamless container restarts

Quick Start

bash
# 1. Configure
cp .env.example .env
# Edit .env: set your API key and gateway auth (password or token)

# 2. Build & start
docker compose up -d --build

# 3. Access Control UI
# With password: https://localhost:*** (enter password when prompted)
# With token: https://localhost:***/?token=YOUR_TOKEN

Data Persistence

OpenClaw stores all configuration and state in /home/node/.openclaw inside the container. This directory must be mounted as a volume to prevent data loss when the container is recreated.

yaml
volumes:
  - ./data:/home/node/.openclaw

This folder contains:

• openclaw.json — main configuration (gateway settings, API keys, TLS config)
• Channel credentials (*** sessions, bot tokens, etc.)
• Auto-generated TLS certificates (if enabled)

Environment Variables

Auth modes: Set OPENCLAW_GATEWAY_PASSWORD for password auth, or OPENCLAW_GATEWAY_TOKEN for token auth. If neither is set, a token is auto-generated and printed in the logs.

TLS / HTTPS

Set OPENCLAW_TLS_ENABLED=true to enable HTTPS with an auto-generated self-signed certificate.

Custom certificates (mounted):

yaml
volumes:
  - ./certs/cert.pem:/certs/cert.pem:ro
  - ./certs/key.pem:/certs/key.pem:ro

Docker Secrets:

yaml
secrets:
  - tls_cert
  - tls_key

Disable TLS:

yaml
environment:
  - OPENCLAW_TLS_ENABLED=false

SSH Access

Enable SSH for remote access and debugging. Uses public key authentication only (no passwords).

yaml
environment:
  - OPENCLAW_SSH_ENABLED=true
  - OPENCLAW_SSH_AUTHORIZED_KEYS=ssh-ed25519 AAAA... user@host
ports:
  - "2222:22"

Multiple keys (via environment):

yaml
environment:
  - OPENCLAW_SSH_ENABLED=true
  - |
    OPENCLAW_SSH_AUTHORIZED_KEYS=
    ssh-ed25519 AAAA... user1@host
    ssh-rsa AAAA... user2@host

Via mounted file:

yaml
volumes:
  - ./authorized_keys:/ssh/authorized_keys:ro

Via Docker secret:

yaml
secrets:
  - ssh_authorized_keys

Then connect: ssh -p 2222 node@<host>

OAuth (Claude.ai / Codex)

bash
# 1. Interactive setup
docker compose run --rm openclaw openclaw onboard

# 2. Set OPENCLAW_SKIP_ONBOARD=true in .env

# 3. Start
docker compose up -d

Adding Channels

bash
# *** (shows QR code)
docker compose exec -it openclaw openclaw channels login --channel ***

# ***
docker compose exec openclaw openclaw channels add --channel *** --token <BOT_TOKEN>

# ***
docker compose exec openclaw openclaw channels add --channel *** --token <BOT_TOKEN>

# Slack
docker compose exec openclaw openclaw channels add --channel slack --bot-token <xoxb-...> --app-token <xapp-...>

CLI

bash
docker compose exec openclaw openclaw health
docker compose exec openclaw openclaw channels list
docker compose exec openclaw openclaw <command>

Updating

bash
docker compose pull
docker compose up -d

Or rebuild from source:

bash
docker compose build --no-cache
docker compose up -d

Troubleshooting

bash
docker compose logs -f                 # View logs
rm -rf ./data && docker compose up -d  # Reset and re-run setup

Permission denied on ./data directory:

If you see EACCES: permission denied errors for /home/node/.openclaw/openclaw.json, fix the data directory permissions:

bash
sudo chown -R 1000:1000 ./data

The node user inside the container has UID 1000. This is common on Linux hosts where Docker creates the directory as root.