Skip to main content
The gateway now ships in the praisonai-bot package. praisonai serve gateway still works exactly as documented here; for a standalone install see praisonai-bot Migration.
Rotate the shared gateway secret and every already-connected client using the old token is force-closed within one reload cycle — no full process restart, no leaked credential left trusted. An agent connects through the gateway; if the operator later rotates the secret, the agent’s client is told to re-authenticate rather than back off.

Quick Start

1

Rotate the token in gateway.yaml

2

Trigger the hot-reload path

File watch picks the change up automatically, or send SIGHUP:
Every WS session that authenticated under the old secret closes with code 4001 and reason credentials_rotated. Sessions already on the new secret stay connected.

How It Works

At connect time the gateway stamps each authenticated session with a truncated SHA-256 fingerprint of the active secret. When the reload path notices a new auth_token, it adopts it and closes every session whose stamp doesn’t match the new fingerprint. Sessions on the new secret are left untouched. The raw secret is never logged — only the digest. The CREDENTIALS_ROTATED close reason is described in the SDK as:
The shared gateway secret this session authenticated under is no longer the active secret (an operator rotated auth_token and hot-reloaded, or otherwise revoked it). The server force-closes every session stamped with a stale secret so a leaked/revoked credential stops working within one reload cycle, without a full process restart. Clients should re-authenticate and reconnect with fresh credentials rather than backing off as if the server were down.

Configuration


Rotation Behaviour — Decision Matrix

When does rotation actually happen?

Client-Side — How to Re-authenticate

Force-closed sessions receive: Treat (4001, "credentials_rotated") as “re-authenticate with fresh credentials”not as “server is down, back off”. A well-behaved client:
  1. Reads the new secret from its own credential source (env, secrets manager, praisonai auth login).
  2. Reconnects immediately with the new token.
  3. Reports back to the operator if the fresh token also fails.

Security Notes

  • The raw auth_token is never logged, exported, or persisted by this feature — only a 16-char truncated SHA-256 stamp is kept per session for comparison.
  • When rotation adopts a new secret, it also updates GATEWAY_AUTH_TOKEN in the environment so all auth paths (HTTP, magic-link, WS) read the same value — matching Bind-Aware Auth (config wins over env).
  • If auth_token is declared but resolves to empty (e.g. an unset ${VAR}), the previous secret is kept and a warning is logged instead of silently clearing auth.
  • Loopback-only gateways (no auth_token) map to the sentinel "no-auth" — rotation is meaningless in that mode.

Common Patterns

Scheduled quarterly rotation

Rotate the referenced env var and reload — old sessions disconnect, clients re-auth with the new secret.

Suspected leak — revoke now

Every session on the leaked secret is disconnected within one reload cycle.

Coordinated cutover — adopt now, evict later

Later, flip revoke_on_secret_rotation back to true and reload to evict any laggards still on the old secret.

Best Practices

Instant revocation is the whole point. Opt out only for staged cutovers where clients need a grace window on the old secret.
Write auth_token: "12345" with quotes. The non-string coercion path exists as a safety net, not a style guide.
If you see auth_token present in reloaded config but resolved to empty; keeping the previous secret, your ${VAR} isn’t set — the old secret is still active.
4001 plus reason credentials_rotated is stable; the human-readable close message is not. Branch on the code and reason.

Gateway Config Reload

Hot-reload architecture this feature plugs into

Bind-Aware Auth

Where the shared auth_token is required at all

Gateway

Overview plus all other gateway features

Gateway Edge Protections

Other WebSocket close codes (4028, 4029) and pre-auth guards