Docs: document secrets refs runtime and migration

2026-02-24 16:26:51 -06:00
parent cb119874dc
commit c0a3801086
19 changed files with 187 additions and 22 deletions
--- a/docs/start/wizard-cli-automation.md
+++ b/docs/start/wizard-cli-automation.md
@@ -22,6 +22,7 @@ openclaw onboard --non-interactive \
  --mode local \
  --auth-choice apiKey \
  --anthropic-api-key "$ANTHROPIC_API_KEY" \
+  --secret-input-mode plaintext \
  --gateway-port 18789 \
  --gateway-bind loopback \
  --install-daemon \
@@ -31,6 +32,18 @@ openclaw onboard --non-interactive \

 Add `--json` for a machine-readable summary.

+Use `--secret-input-mode ref` to store env-backed refs in auth profiles instead of plaintext values.
+
+Example:
+
+```bash
+openclaw onboard --non-interactive \
+  --mode local \
+  --auth-choice openai-api-key \
+  --secret-input-mode ref \
+  --accept-risk
+```
+
 ## Provider-specific examples

 <AccordionGroup>