← Back to Skills Marketplace
lafoush

Home Assistant

by Philippe Lafoucrière · GitHub ↗ · v1.0.5 · MIT-0
cross-platform ✓ Security Clean
199
Downloads
2
Stars
0
Active Installs
6
Versions
Install in OpenClaw
/install homeassistant-selora
Description
Connect Home Assistant to OpenClaw via OAuth 2.0 through Selora Connect. Authenticate and use Selora AI tools to inspect your home, create automations, and a...
README (SKILL.md)

Home Assistant MCP Setup

Connect your Home Assistant to OpenClaw. Authentication is handled via OAuth 2.0 through Selora Connect — no manual tokens needed.

Prerequisites

  1. Home Assistant 2025.1+ with the Selora AI integration installed.
  2. A Selora Connect account with your HA installation linked.
  3. OpenClaw installed.

1. Get Your MCP URL

Access URL
Local http://homeassistant.local:8123/api/selora_ai/mcp
Remote https://mcp-\x3Cid>.selorabox.com/api/selora_ai/mcp

Your remote MCP URL (including your mcp-\x3Cid>) is shown in Selora Connect once MCP remote access is enabled. Enable it to provision a SeloraBox tunnel URL.

Use your HA IP (e.g. 192.168.x.x) instead of homeassistant.local if mDNS is slow.

2. Add the MCP Server

Add the server via the CLI:

openclaw mcp set home-assistant '{"url":"https://mcp-\x3Cid>.selorabox.com/api/selora_ai/mcp"}'

Or edit ~/.openclaw/openclaw.json directly:

{
  "mcp": {
    "servers": {
      "home-assistant": {
        "url": "https://mcp-\x3Cid>.selorabox.com/api/selora_ai/mcp"
      }
    }
  }
}

For local access, use http://homeassistant.local:8123/api/selora_ai/mcp as the URL.

3. Authenticate

  1. Restart the OpenClaw gateway after editing the config.
  2. Use any tool from the server (e.g. ask "Get a snapshot of my home"). OpenClaw connects and receives a 401 Unauthorized.
  3. OpenClaw surfaces an authorization URL. Open it in a browser.
  4. Approve access on the Selora Connect consent screen.
  5. The browser redirects back to OpenClaw's callback to complete the exchange.
  6. Tokens are cached and refresh silently from then on.

The callback must reach OpenClaw's listener. If the browser and OpenClaw are on the same machine, the redirect completes automatically. If they are on different machines, see Cross-device callback mismatch below.

4. Verify

Ask your agent: "Get a snapshot of my home". You should see selora_get_home_snapshot return your entities grouped by area.

Available Tools

Read tools:

Tool Description
selora_get_home_snapshot Entity states grouped by area — call this first
selora_list_automations Selora automations with status and risk (filterable)
selora_get_automation Full detail: YAML, versions, risk
selora_validate_automation Validate and risk-assess YAML without creating
selora_list_sessions Recent chat sessions
selora_list_patterns Detected behavior patterns
selora_get_pattern Full pattern detail with linked suggestions
selora_list_suggestions Proactive suggestions with YAML previews

Mutating tools (🔒 require admin authorization):

Tool Description
selora_chat 🔒 Natural-language chat — proposes automations with YAML and risk
selora_create_automation 🔒 Create automation from YAML (disabled by default)
selora_accept_automation 🔒 Enable a pending automation
selora_delete_automation 🔒 Delete permanently
selora_accept_suggestion 🔒 Create automation from a suggestion
selora_dismiss_suggestion 🔒 Dismiss a suggestion
selora_trigger_scan 🔒 Trigger immediate suggestion scan (rate-limited 60s)

Workflows

Explore your home

  1. selora_get_home_snapshot — understand entities and areas.
  2. selora_list_automations / selora_get_automation for existing automations.

Create from YAML

  1. selora_validate_automation — check YAML and surface risk.
  2. Show normalized YAML + risk, ask user confirmation.
  3. selora_create_automation with enabled=false.
  4. selora_accept_automation after explicit approval.

Create from natural language

  1. selora_chat — describe what you want; Selora returns YAML + risk.
  2. Summarize risk, ask user confirmation.
  3. selora_create_automation or selora_accept_automation.

Act on suggestions

  1. selora_list_suggestions (optionally selora_trigger_scan first).
  2. Show suggestion details, ask user confirmation.
  3. selora_accept_suggestion or selora_dismiss_suggestion.

Safety Rules

  1. Never invent IDs — resolve from tool output only.
  2. Never mutate without explicit user confirmation.
  3. Always surface risk_assessment before mutating. High or missing risk requires a second confirmation.
  4. Create automations disabled by default.
  5. Do not skip validation for externally provided YAML.

How OAuth Works

  1. OpenClaw discovers Connect's OAuth server from the MCP endpoint's .well-known/oauth-authorization-server metadata.
  2. OpenClaw registers itself dynamically (POST /oauth/register).
  3. OpenClaw starts an authorization code flow with PKCE and surfaces an authorization URL.
  4. You open the URL and approve access on the Selora Connect consent screen.
  5. OpenClaw exchanges the code for access + refresh tokens.
  6. Tokens refresh automatically — no re-auth needed until you revoke access.

On 401 Unauthorized, OpenClaw reads the WWW-Authenticate header, attempts a token refresh, and falls back to a full OAuth flow if refresh fails. No manual re-configuration is needed.

Troubleshooting

Symptom Fix
401 Unauthorized (auth URL shown) Open the authorization URL, approve access on Selora Connect, and the flow completes automatically. If refresh fails later, OpenClaw triggers a new flow.
401 Unauthorized loop (no auth URL shown) OpenClaw's native OAuth flow is not surfacing the authorization URL — check gateway logs for 401, auth URL emission, and MCP startup failures. See Debugging with mcp-remote below.
Connection refused Verify HA is running and URL is correct
Timeout Check firewall; for remote, ensure SeloraBox tunnel is active
Tools not listed Ensure Selora AI integration is installed and enabled
Admin tools rejected Selora Connect role must be owner or member (not viewer)

Cross-device callback mismatch

The OAuth redirect targets localhost on the machine running OpenClaw. If your browser is on a different machine (e.g. OpenClaw on a server, browser on a laptop), the callback cannot reach OpenClaw's listener and the flow fails silently.

As a fallback, ask the user to copy the full callback URL (including the code and state parameters) from their browser's address bar after approving, and paste it back so the agent can complete the token exchange.

Debugging with mcp-remote

If OpenClaw keeps returning 401 without surfacing an authorization URL, use mcp-remote (requires Node.js 18+) to isolate the problem. It is not part of the normal setup — only a debugging tool.

npx -y mcp-remote https://mcp-\x3Cid>.selorabox.com/api/selora_ai/mcp

This helps verify the endpoint supports OAuth correctly and that the token exchange works end-to-end. If mcp-remote completes the flow successfully, the endpoint is working — the issue is in OpenClaw's OAuth runtime, not your HA setup.

Usage Guidance
This skill is internally consistent for connecting Home Assistant to OpenClaw via Selora Connect, but before installing you should: (1) confirm you trust Selora Connect and the selorabox remote tunnel (exposing a remote MCP URL exposes access paths to your HA instance); (2) verify HTTPS/TLS and the exact mcp-<id>.selorabox.com host shown by Selora Connect; (3) be aware OpenClaw will dynamically register an OAuth client and store access/refresh tokens — revoke access in Selora Connect if you want to disconnect; (4) ensure platform-level enforcement of the SKILL.md safety rules (explicit confirmations for mutating actions) because the instructions allow creating/enabling/deleting automations and triggering scans; and (5) test locally first (use local MCP URL) before enabling remote access. If you need higher assurance, ask for the origin/maintainer of this skill and confirmation that the platform enforces the documented admin confirmation checks.
Capability Analysis
Type: OpenClaw Skill Name: homeassistant-selora Version: 1.0.5 The skill bundle contains metadata and documentation (SKILL.md) for integrating Home Assistant with OpenClaw via the Selora AI service. It outlines a standard OAuth 2.0 authentication flow and defines tools for managing home automations. The instructions include safety guidelines for the AI agent, such as requiring explicit user confirmation for mutations and validating YAML, with no evidence of malicious intent, data exfiltration, or unauthorized execution.
Capability Tags
requires-oauth-tokenrequires-sensitive-credentials
Capability Assessment
Purpose & Capability
The SKILL.md describes connecting Home Assistant to OpenClaw through Selora Connect and the file edits/CLI commands, OAuth flow, and described read/write toolsets all align with that purpose. There are no unrelated binaries, env vars, or external services requested beyond the Selora endpoints and the OpenClaw config.
Instruction Scope
The instructions tell the operator to edit ~/.openclaw/openclaw.json, restart the gateway, and complete an OAuth flow in-browser — all expected for this integration. The skill documents mutating tools (create/accept/delete automations, trigger scans) and enforces user-confirmation safety rules; however, the actual enforcement of those rules depends on the platform. Verify that mutating actions require explicit admin authorization before use.
Install Mechanism
There is no install spec and no code files; this is instruction-only. That minimizes install risk because nothing is downloaded or written by the skill itself.
Credentials
No environment variables, credentials, or config paths are requested by the skill. OAuth is performed dynamically via the MCP endpoint and Selora Connect, which is an expected design for this integration.
Persistence & Privilege
The skill is not marked always:true. It allows autonomous model invocation by default (the platform default). Because the skill exposes mutating operations, ensure the platform or user enforces the documented safety confirmations before the agent performs changes on your Home Assistant.
How to Use
  1. Make sure OpenClaw is installed (local or Docker)
  2. Run the install command in chat: /install homeassistant-selora
  3. After installation, invoke the skill by name or use /homeassistant-selora
  4. Provide required inputs per the skill's parameter spec and get structured output
Version History
v1.0.5
- Fix HA skill MCP config format
v1.0.4
- Scope HA skill to OpenClaw only (v1.0.4)
v1.0.3
- Improve HA skill OAuth docs and OpenClaw setup
v1.0.2
- Update HA skill to v1.1.0 with streamlined docs and new tools
v1.0.1
No changes
v1.0.0
Initial version
Metadata
Slug homeassistant-selora
Version 1.0.5
License MIT-0
All-time Installs 0
Active Installs 0
Total Versions 6
Frequently Asked Questions

What is Home Assistant?

Connect Home Assistant to OpenClaw via OAuth 2.0 through Selora Connect. Authenticate and use Selora AI tools to inspect your home, create automations, and a... It is an AI Agent Skill for Claude Code / OpenClaw, with 199 downloads so far.

How do I install Home Assistant?

Run "/install homeassistant-selora" in the OpenClaw or Claude Code chat to install it in one step — no extra setup required.

Is Home Assistant free?

Yes, Home Assistant is completely free, licensed under MIT-0. You can download, install and use it at no cost.

Which platforms does Home Assistant support?

Home Assistant is cross-platform and runs anywhere OpenClaw / Claude Code is available (cross-platform).

Who created Home Assistant?

It is built and maintained by Philippe Lafoucrière (@lafoush); the current version is v1.0.5.

More Skills
self-improving agent
Captures learnings, errors, and corrections to enable continuous improvement. Use when: (1) A command or operation fails unexpectedly, (2) User corrects Clau...
⬇ 463556 · by pskoett
Skill Vetter
Security-first skill vetting for AI agents. Use before installing any skill from ClawdHub, GitHub, or other sources. Checks for red flags, permission scope, and suspicious patterns.
⬇ 259610 · by spclaudehome
Polymarket
Query Polymarket prediction markets. Check odds, find trending markets, search events, track price movements.
⬇ 232503 · by joelchance
Self-Improving + Proactive Agent
Self-reflection + Self-criticism + Self-learning + Self-organizing memory. Agent evaluates its own work, catches mistakes, and improves permanently. Use when...
⬇ 200551 · by ivangdavila
Github
Interact with GitHub using the `gh` CLI. Use `gh issue`, `gh pr`, `gh run`, and `gh api` for issues, PRs, CI runs, and advanced queries.
⬇ 191226 · by steipete
ontology
Typed knowledge graph for structured agent memory and composable skills. Use when creating/querying entities (Person, Project, Task, Event, Document), linkin...
⬇ 190235 · by oswalpalash

💬 Comments