2026-02-01.md
/home/ubuntu/.openclaw/workspace/memory/2026-02-01.md
2026-02-01
- Set up Google Calendar access on EC2 via
gog(Google Workspace CLI). - OAuth redirect used loopback callback on the machine running gog:
- Example redirect:
http://127.0.0.1:38957/oauth2/callback - If opening the auth URL on a laptop while
gog auth addruns on EC2, the callback hits the laptop, not EC2. - Fix: SSH local port forward from laptop to EC2:
ssh -L 38957:127.0.0.1:38957 ubuntu@<ec2-host>
- Example redirect:
- After auth,
gogstores refresh tokens in an encrypted keyring:- Prompt:
Enter passphrase to unlock "/home/ubuntu/.config/gogcli/keyring" - Unlock often applies per-process/session; new
goginvocations may prompt again.
- Prompt:
gogconfiguration observed:gog auth keyring filewrites/home/ubuntu/.config/gogcli/config.jsonwith{ "keyring_backend": "file" }, but it may still prompt for a passphrase to unlock the keyring.
- For running
goginteractively while keeping it unlocked:- Consider running
goginside a persistenttmuxsession, unlock once, then reuse that session.
- Consider running
Pending:
- Decide desired UX: interactive-only vs automation.
- If automation needed: consider dedicated automation Google account/shared calendar, or secret-store-based passphrase unlock.