added axway github token

manifests/deployment.yaml

@@ -31,7 +31,6 @@ spec:
                   --gateway-port 18789 --gateway-bind lan \
                   --skip-daemon --skip-channels --skip-skills --skip-health --skip-ui
               fi
-              # Run the gateway
               exec node /app/openclaw.mjs gateway --port 18789 --bind lan
           ports:
             - name: gateway
@@ -49,7 +48,7 @@ spec:
             - name: TZ
               value: "Australia/Sydney"
             - name: NODE_OPTIONS
-              value: "--dns-result-order=ipv4first --no-network-family-autoselection --import /home/node/canvas-patch.mjs"
+              value: "--dns-result-order=ipv4first --no-network-family-autoselection"
             - name: OPENCLAW_GATEWAY_TOKEN
               value: 356a221b029c582ea983c21b8b01a6689fafb1e0182e8af7
             - name: GITHUB_TOKEN
@@ -57,6 +56,11 @@ spec:
                 secretKeyRef:
                   name: github
                   key: pat
+            - name: AXWAY_GITHUB_TOKEN
+              valueFrom:
+                secretKeyRef:
+                  name: axway-github
+                  key: token
             - name: DISCORD_BOT_TOKEN
               valueFrom:
                 secretKeyRef:
@@ -67,12 +71,46 @@ spec:
                 secretKeyRef:
                   name: minimax
                   key: token
+            - name: HOOKS_TOKEN
+              valueFrom:
+                secretKeyRef:
+                  name: hooks-token
+                  key: token
+            - name: TELEGRAM_BOT_TOKEN
+              valueFrom:
+                secretKeyRef:
+                  name: telegram-bot-token
+                  key: token
+            - name: ZAI_TOKEN
+              valueFrom:
+                secretKeyRef:
+                  name: zai
+                  key: token
+            - name: PAPRIKA_EMAIL
+              valueFrom:
+                secretKeyRef:
+                  name: paprika
+                  key: email
+            - name: PAPRIKA_PASSWORD
+              valueFrom:
+                secretKeyRef:
+                  name: paprika
+                  key: password
+            - name: NPM_TOKEN
+              valueFrom:
+                secretKeyRef:
+                  name: npm
+                  key: token
+            - name: CLAWHUB_TOKEN
+              valueFrom:
+                secretKeyRef:
+                  name: clawhub
+                  key: token
           volumeMounts:
             - name: home
               mountPath: /home/node
             - name: tmp
               mountPath: /tmp
-
       volumes:
         - name: home
           persistentVolumeClaim:

manifests/gateway-token-secret.yaml

@@ -0,0 +1,8 @@
+apiVersion: v1
+kind: Secret
+metadata:
+  name: gateway-token
+  namespace: openclaw
+type: Opaque
+data:
+  token: MzU2YTIxMWIwMjljNTgyZWE5ODNjMjFiOGIwMWE2Njg5ZmFmYjFlMDE4MmU4YWY3

manifests/hooks-token-secret.yaml

@@ -0,0 +1,8 @@
+apiVersion: v1
+kind: Secret
+metadata:
+  name: hooks-token
+  namespace: openclaw
+type: Opaque
+data:
+  token: N2IxN2JmZDU0NjBhNTFlYTIwZWY2OGZmODJjN2IwZDYwYTA0NTAyMGVmNjZlYmQ3NGJkYzkzNzAyYWIzNTdmYg==

manifests/serviceaccount-rbac.yaml

@@ -4,8 +4,6 @@ metadata:
   name: openclaw
   namespace: openclaw
 ---
-# Minimal Role/RoleBinding placeholder.
-# Adjust permissions once we know what OpenClaw needs (MCP, secrets read, etc.)
 apiVersion: rbac.authorization.k8s.io/v1
 kind: Role
 metadata:
@@ -15,6 +13,9 @@ rules:
   - apiGroups: [""]
     resources: ["pods", "pods/log"]
     verbs: ["get", "list", "watch"]
+  - apiGroups: [""]
+    resources: ["secrets"]
+    verbs: ["get", "list", "watch", "create", "update", "patch"]
 ---
 apiVersion: rbac.authorization.k8s.io/v1
 kind: RoleBinding

manifests/telegram-secret.yaml

@@ -0,0 +1,8 @@
+apiVersion: v1
+kind: Secret
+metadata:
+  name: telegram-bot-token
+  namespace: openclaw
+type: Opaque
+data:
+  token: ODMyMzE1MjY1MDpBQUc2a25mb3pkeTEyWVduakhLQzdvRXVYUDJnMXl1bDZHOA==