hermes - 💡(How to fix) Fix QQ Bot private chat (C2C) button approvals always rejected as unauthorized due to chat_type mismatch (dm vs c2c) [1 pull requests]

hermes2026-05-26 09:45:07

ON THIS PAGE

Recommended Tools

×6

Utilities matched from this issue’s tags and category — try them while you read without losing context.

GitHub issue graph ai analysis

Paste a GitHub issue URL. We fetch that issue, discover linked issues from bodies/comments/timeline, collect linked pull requests, and produce a structured English report.

The report is written in English Markdown for sharing and archival.

GitHub issue URL

Helpful · Quick feedback

Error Message

Note: The debug report was generated after a temporary local fix was applied, so the gateway log may not contain the error. The log evidence shown in the Bug Description was captured before the fix.

Root Cause

Root Cause Analysis

Fix Action

Fixed

Fixed by PR: fix(qqbot): authorize dm chat_type in interaction approval (https://github.com/NousResearch/hermes-agent/pull/32752)

Code Example

WARNING Rejected unauthorized approval click for session agent:main:qqbot:dm:<OPENID> (operator=<OPENID>)

RAW_BUFFERClick to expand / collapse

Bug Description

QQ Bot private chat (C2C) inline approval keyboard buttons are always rejected as "unauthorized" and silently dropped. The agent never receives the user's decision — commands either time out or (if auto-approved) execute despite clicking "deny".

Gateway log shows:

WARNING Rejected unauthorized approval click for session agent:main:qqbot:dm:<OPENID> (operator=<OPENID>)

Steps to Reproduce

Configure QQ Bot gateway and start a private chat with the bot
Send a command that triggers dangerous-command approval (e.g., rm ~/Desktop/test.txt)
Click any of the three approval buttons (allow-once / always / deny)
The button click is silently dropped; the agent never receives the decision

Expected Behavior

Button clicks should resolve correctly: the agent thread should be unblocked with the corresponding choice (once/always/deny).

Actual Behavior

All button clicks are rejected with "Rejected unauthorized approval click" in the gateway log, regardless of which button is pressed.

Affected Component

Messaging Platform (if gateway-related)

Messaging Platform

QQ Bot

Debug Report

https://paste.rs/MAAHP

Note: The debug report was generated after a temporary local fix was applied, so the gateway log may not contain the error. The log evidence shown in the Bug Description was captured before the fix.

Operating System

Fedora 44 (KDE Plasma 6.6.4, Wayland)

Python Version

Python 3.14.4

Hermes Version

v0.14.0

Root Cause Analysis

When handling C2C (private chat) messages, the QQ Bot adapter creates the session with chat_type="dm", producing session keys like agent:main:qqbot:dm:<OPENID>. However, the interaction authorization check in _is_authorized_interaction_for_session() does not handle chat_type="dm" — it only checks for "c2c", "group", and "guild". The "dm" type falls through to return False, causing every button click to be rejected.

Code references:

gateway/platforms/qqbot/adapter.py — _handle_c2c_message sets chat_type="dm"
gateway/platforms/qqbot/adapter.py — _is_authorized_interaction_for_session only handles "c2c", "group", "guild"
gateway/session.py — build_session_key uses chat_type="dm" for private messages

Vote matrix · Quick signals

Works

Did the solution work? Tap to confirm.

Easy Fix

Was it a quick fix?

Time Saver

Did it save you time?

Blocking

Was it severely blocking?

Common Issue

Are others likely hitting this too?

Flaky / Intermittent

Is it intermittent?

Verified / Reproducible

Can you reproduce it reliably?

Still need to ship something?

×6

Another batch ranked right after the header list — different links, same matching logic.

Data

Security

Network

Code

UI/UX

Text

System

Multimedia

Protocol

API

Engineering