All apps · 0 apps
OpenClaw
Docker app from medzin's Repository
Overview
Readme
View on GitHubOpenClaw Docker Image for Unraid
This repository provides a custom Docker image for OpenClaw, designed for Unraid and other systems where file permissions on mounted volumes need to match a host UID and GID.
Key Features
- User/Group ID Mapping: Supports
PUIDandPGIDenvironment variables so OpenClaw writes appdata files as the expected host user. - Root Entrypoint: Starts as root so setup and Unraid's Tailscale container
hook can run, then drops to the mapped
nodeuser withgosu. - Tailscale State: Defaults the Unraid Tailscale hook state directory to a persistent path under OpenClaw appdata.
- Automated Updates: A workflow checks upstream OpenClaw image tags on GHCR and builds missing Docker Hub tags.
Usage
docker run -d \
--name openclaw \
-e PUID=99 \
-e PGID=100 \
-e UMASK=022 \
-e OPENCLAW_GATEWAY_TOKEN=change-me \
-p 18789:18789 \
-p 18790:18790 \
-v /mnt/user/appdata/openclaw:/home/node/.openclaw \
-v /mnt/user/appdata/openclaw/auth-profile-secrets:/home/node/.config/openclaw \
medzin/openclaw:latest
Image Channels
medzin/openclaw:latestis the standard Unraid wrapper image.medzin/openclaw:extrasincludes additional tools for agents:ripgrep,openssh-client,nmap,qrencode,imagemagick,ffmpeg,nftables, anddebugpy.
Versioned extras tags are published as <openclaw-version>-extras, for
example medzin/openclaw:1.2.3-extras.
OpenClaw refuses to bind its gateway to a container-published address without
authentication. Set OPENCLAW_GATEWAY_TOKEN or OPENCLAW_GATEWAY_PASSWORD
before exposing the WebUI port.
Environment Variables
| Variable | Description | Default |
|---|---|---|
PUID |
User ID to run the OpenClaw process as. | 99 |
PGID |
Group ID to run the OpenClaw process as. | 100 |
UMASK |
Umask for file creation. | 022 |
OPENCLAW_GATEWAY_TOKEN |
Shared token required by the gateway. | unset |
OPENCLAW_GATEWAY_PASSWORD |
Password required by the gateway. | unset |
TAILSCALE_STATE_DIR |
Persistent Tailscale hook state directory. | /home/node/.openclaw/.tailscale_state |
The image follows the upstream OpenClaw container paths:
- OpenClaw state and config:
/home/node/.openclaw - OpenClaw workspace:
/home/node/.openclaw/workspace - Auth profile secrets:
/home/node/.config/openclaw
The image also honors OpenClaw path override variables such as
OPENCLAW_HOME, OPENCLAW_STATE_DIR, OPENCLAW_CONFIG_PATH,
OPENCLAW_CONFIG_DIR, and OPENCLAW_WORKSPACE_DIR, but the Unraid template
intentionally does not expose them. If you override an internal path, update the
matching volume mount yourself.
License
This project is licensed under the MIT License - see the LICENSE file for details.
Install OpenClaw on Unraid in a few clicks.
Find OpenClaw in Community Apps on your Unraid server, review the template, and click Install. Unraid handles the Docker app or plugin setup from the published template.
Categories
Download Statistics
Related apps
Explore more like this
Explore allLinks
Details
medzin/openclawRuntime arguments
- Web UI
http://[IP]:[PORT:18789]- Network
bridge- Shell
bash- Privileged
- false
Template configuration
OpenClaw state, config, and workspace.
- Target
- /home/node/.openclaw
- Default
- /mnt/cache/appdata/openclaw
- Value
- /mnt/cache/appdata/openclaw
OpenClaw auth profile secrets directory.
- Target
- /home/node/.config/openclaw
- Default
- /mnt/cache/appdata/openclaw/auth-profile-secrets
- Value
- /mnt/cache/appdata/openclaw/auth-profile-secrets
OpenClaw gateway web interface.
- Target
- 18789
- Default
- 18789
- Value
- 18789
OpenClaw bridge port.
- Target
- 18790
- Default
- 18790
- Value
- 18790
Shared token required to connect to the OpenClaw gateway. Set this before exposing the WebUI port.
Container timezone.
- Default
- UTC
- Value
- UTC
Disable Bonjour/mDNS discovery inside the container.
- Default
- 1
- Value
- 1
Group ID for the OpenClaw process and file permissions.
- Default
- 100
- Value
- 100
User ID for the OpenClaw process and file permissions.
- Default
- 99
- Value
- 99