@base44-preview/sdk 0.8.26-pr.169.4ce3986 → 0.8.27-pr.171.bb56537

package/dist/client.js

@@ -112,6 +112,16 @@ export function createClient(config) {
         appBaseUrl: normalizedAppBaseUrl,
         serverUrl,
     });
+    // Apply the access token before any module that may issue authenticated
+    // requests during construction (notably analytics, which fires an init
+    // event whose flush calls auth.me()). Without this, the first User/me
+    // request is built before setToken runs and goes out unauthenticated.
+    if (typeof window !== "undefined") {
+        const accessToken = token || getAccessToken();
+        if (accessToken) {
+            userAuthModule.setToken(accessToken);
+        }
+    }
     const userModules = {
         entities: createEntitiesModule({
             axios: axiosClient,
@@ -189,14 +199,6 @@ export function createClient(config) {
             }
         },
     };
-    // Always try to get token from localStorage or URL parameters
-    if (typeof window !== "undefined") {
-        // Get token from URL or localStorage
-        const accessToken = token || getAccessToken();
-        if (accessToken) {
-            userModules.auth.setToken(accessToken);
-        }
-    }
     // If authentication is required, verify token and redirect to login if needed
     if (requiresAuth && typeof window !== "undefined") {
         // We perform this check asynchronously to not block client creation

package/dist/modules/connectors.types.d.ts

@@ -33,27 +33,44 @@ export interface ConnectorConnectionResponse {
     connectionConfig: Record<string, string> | null;
 }
 /**
- * Connection details for an app-user connector.
+ * Connection details for an app user connector.
  */
 export interface AppUserConnectorConnectionResponse {
-    /** The OAuth access token for the end user's connection. */
+    /** The OAuth access token for the app user's connection. */
     accessToken: string;
     /** Key-value configuration for the connection, or `null` if the connector does not provide one. */
     connectionConfig: Record<string, string> | null;
 }
 /**
- * Connectors module for managing app-scoped OAuth tokens for external services.
+ * Connectors module for managing OAuth tokens for external services.
  *
- * This module allows you to retrieve OAuth access tokens for external services that the app has connected to. Connectors are app-scoped. When an app builder connects an integration like Google Calendar, Slack, or GitHub, all users of the app share that same connection.
+ * Unlike the {@link IntegrationsModule | integrations} module that provides pre-built functions, connectors give you raw OAuth tokens so you can call external service APIs directly. Use this when you need custom API interactions that the pre-built integrations do not cover.
  *
- * Unlike the integrations module that provides pre-built functions, connectors give you
- * raw OAuth tokens so you can call external service APIs directly with full control over
- * the API calls you make. This is useful when you need custom API interactions that aren't
- * covered by Base44's pre-built integrations.
+ * There are two connector types, depending on whether the token is shared across the app or specific to each user:
+ *
+ * - **[Shared connectors](#shared-connectors):** A single OAuth token shared by all app users. Best for shared service accounts.
+ * - **[App user connectors](#app-user-connectors):** Each app user has their own OAuth token. Best for actions that need to happen as the individual user.
+ *
+ * ## Shared connectors
+ *
+ * All app users share a single OAuth token. Use this for shared accounts. For example, posting to a company Slack channel or reading from a shared Google Calendar. To use a shared connector:
+ *
+ * 1. Connect the external service account in the app's Integration settings or using the [`connectors push`](/developers/references/cli/commands/connectors-push) CLI command.
+ * 2. In a backend function, call {@linkcode getConnection | getConnection()} using the service role client (`base44.asServiceRole.connectors`) with an [integration type](#available-connectors) string to retrieve the shared OAuth token.
+ * 3. Use the returned `accessToken` to call the external service's API directly. Some connectors also return a `connectionConfig` with additional values such as a subdomain for building the API URL.
+ *
+ * ## App user connectors
+ *
+ * Each signed-in app user has their own OAuth token. Use this when each user needs to act as themselves. For example, sending emails from their Gmail account or posting to their personal LinkedIn. To use an app user connector:
+ *
+ * 1. Register OAuth credentials for the service in Workspace Settings to get a **connector ID**. This requires workspace admin access.
+ * 2. From the frontend, call [connectAppUser()](#connectappuser) with the connector ID to get an authorization URL, then redirect the app user to that URL to complete the OAuth flow.
+ * 3. In a backend function, call {@linkcode getCurrentAppUserConnection | getCurrentAppUserConnection()} using the service role client (`base44.asServiceRole.connectors`) with the connector ID to retrieve the app user's token.
+ * 4. Use the returned `accessToken` to call the external service's API directly. Some connectors also return a `connectionConfig` with additional values such as a subdomain for building the API URL.
  *
  * ## Available connectors
  *
- * All connectors work through [`getConnection()`](#getconnection). Pass the integration type string and use the returned OAuth token to call the external service's API directly.
+ * All connectors listed below support both shared and app user connections. For shared connectors, pass the integration type string to {@linkcode getConnection | getConnection()}. For app user connectors, register the connector in Workspace Settings and use the connector ID with {@linkcode getCurrentAppUserConnection | getCurrentAppUserConnection()}.
  *
  * | Service | Type identifier |
  * |---|---|
@@ -81,7 +98,7 @@ export interface AppUserConnectorConnectionResponse {
  * | Google Tasks | `googletasks` |
  * | HubSpot | `hubspot` |
  * | Hugging Face | `hugging_face` |
- * | Instagram | `instagram` |
+ * | Instagram Business | `instagram` |
  * | Linear | `linear` |
  * | LinkedIn | `linkedin` |
  * | Microsoft Teams | `microsoft_teams` |
@@ -104,13 +121,9 @@ export interface AppUserConnectorConnectionResponse {
  * - **Scopes and permissions**: {@link https://docs.base44.com/Integrations/gmail-connector#gmail-scopes-and-permissions | Gmail}, {@link https://docs.base44.com/Integrations/linkedin-connector#linkedin-scopes-and-permissions | LinkedIn}, {@link https://docs.base44.com/Integrations/slack-connector#slack-scopes-and-permissions | Slack}, {@link https://docs.base44.com/Integrations/github-connector#github-scopes-and-permissions | GitHub}
  * - **Slack connector types**: {@link https://docs.base44.com/Integrations/slack-connector#about-the-slack-connectors | About the Slack connectors} explains the difference between `slack` and `slackbot`
  *
- * ## Authentication Modes
- *
- * This module is only available to use with a client in service role authentication mode, which means it can only be used in backend environments.
- *
  * ## Dynamic Types
  *
- * If you're working in a TypeScript project, you can generate types from your app's connector configurations to get autocomplete on integration type names when calling `getConnection()`. See the [Dynamic Types](/developers/references/sdk/getting-started/dynamic-types) guide to get started.
+ * If you're working in a TypeScript project, you can generate types from your app's connector configurations to get autocomplete on integration type names when calling {@link getConnection}. See the [Dynamic Types](/developers/references/sdk/getting-started/dynamic-types) guide to get started.
  */
 export interface ConnectorsModule {
     /**
@@ -118,9 +131,8 @@ export interface ConnectorsModule {
      *
      * @deprecated Use {@link getConnection} instead.
      *
-     * Returns the OAuth token string for an external service that an app builder
-     * has connected to. This token represents the connected app builder's account
-     * and can be used to make authenticated API calls to that external service on behalf of the app.
+     * Returns the OAuth token string for an external service connected to the app.
+     * This token represents the connected account and can be used to make authenticated API calls to that external service on behalf of the app.
      *
      * @param integrationType - The type of integration, such as `'googlecalendar'`, `'slack'`, `'slackbot'`, `'github'`, or `'discord'`. See [Available connectors](#available-connectors) for the full list.
      * @returns Promise resolving to the access token string.
@@ -135,11 +147,11 @@ export interface ConnectorsModule {
      * const timeMin = new Date().toISOString();
      * const url = `https://www.googleapis.com/calendar/v3/calendars/primary/events?maxResults=10&orderBy=startTime&singleEvents=true&timeMin=${timeMin}`;
      *
-     * const calendarResponse = await fetch(url, {
+     * const response = await fetch(url, {
      *   headers: { 'Authorization': `Bearer ${googleToken}` }
      * });
      *
-     * const events = await calendarResponse.json();
+     * const events = await response.json();
      * ```
      *
      * @example
@@ -151,11 +163,11 @@ export interface ConnectorsModule {
      * // List all public and private channels
      * const url = 'https://slack.com/api/conversations.list?types=public_channel,private_channel&limit=100';
      *
-     * const slackResponse = await fetch(url, {
+     * const response = await fetch(url, {
      *   headers: { 'Authorization': `Bearer ${slackToken}` }
      * });
      *
-     * const data = await slackResponse.json();
+     * const data = await response.json();
      * ```
      *
      * @example
@@ -183,7 +195,9 @@ export interface ConnectorsModule {
      */
     getAccessToken(integrationType: ConnectorIntegrationType): Promise<string>;
     /**
-     * Retrieves the OAuth access token and connection configuration for a specific [external integration type](#available-connectors).
+     * Retrieves the shared OAuth access token and connection configuration for a [shared connector](#shared-connectors) to a specific [external integration type](#available-connectors).
+     *
+     * Use this when a single shared account is connected and all app users access the same token. For per-user tokens, use [`getCurrentAppUserConnection()`](#getcurrentappuserconnection) instead.
      *
      * Some connectors require connection-specific parameters to build API calls.
      * In such cases, the returned `connectionConfig` is an object with the additional parameters. If there are no extra parameters needed for the connection, the `connectionConfig` is `null`.
@@ -197,17 +211,13 @@ export interface ConnectorsModule {
      * @example
      * ```typescript
      * // Google Calendar connection
-     * // Get Google Calendar OAuth token and fetch upcoming events
      * const { accessToken } = await base44.asServiceRole.connectors.getConnection('googlecalendar');
      *
-     * const timeMin = new Date().toISOString();
-     * const url = `https://www.googleapis.com/calendar/v3/calendars/primary/events?maxResults=10&orderBy=startTime&singleEvents=true&timeMin=${timeMin}`;
-     *
-     * const calendarResponse = await fetch(url, {
+     * const response = await fetch('https://www.googleapis.com/calendar/v3/users/me/calendarList', {
      *   headers: { Authorization: `Bearer ${accessToken}` }
      * });
      *
-     * const events = await calendarResponse.json();
+     * const { items } = await response.json();
      * ```
      *
      * @example
@@ -218,11 +228,11 @@ export interface ConnectorsModule {
      *
      * const url = 'https://slack.com/api/conversations.list?types=public_channel,private_channel&limit=100';
      *
-     * const slackResponse = await fetch(url, {
+     * const response = await fetch(url, {
      *   headers: { Authorization: `Bearer ${accessToken}` }
      * });
      *
-     * const data = await slackResponse.json();
+     * const data = await response.json();
      * ```
      *
      * @example
@@ -242,75 +252,73 @@ export interface ConnectorsModule {
      */
     getConnection(integrationType: ConnectorIntegrationType): Promise<ConnectorConnectionResponse>;
     /**
-     * Retrieves an OAuth access token for an end user's connection to a specific connector.
-     *
+     * @internal
      * @deprecated Use {@link getCurrentAppUserConnection} instead.
+     */
+    getCurrentAppUserAccessToken(connectorId: string): Promise<string>;
+    /**
+     * Retrieves the OAuth access token and connection configuration for an [app user connector](#app-user-connectors).
      *
-     * Returns the OAuth token string that belongs to the currently authenticated end user
-     * for the specified connector.
+     * The token returned is specific to the app user making the current request. For this to work, the SDK client must know which app user to act on behalf of. Use {@linkcode createClientFromRequest | createClientFromRequest()} in a Base44 backend function to create such a client. It reads the app user's JWT from the incoming request and attaches it automatically so the runtime can resolve the correct user's connection.
      *
-     * @param connectorId - The connector ID (OrgConnector database ID).
-     * @returns Promise resolving to the access token string.
+     * The connector must be registered in Workspace Settings with OAuth credentials before this method can return a connection. The app user must also have completed the OAuth flow using [connectAppUser()](#connectappuser).
+     *
+     * @param connectorId - The ID of the app user connector configured in your workspace. This is not the integration type string. You can find it on the connector's settings page in Workspace Settings.
+     * @returns Promise resolving to an {@link AppUserConnectorConnectionResponse} with `accessToken` and `connectionConfig`.
      *
      * @example
      * ```typescript
-     * // Get the end user's access token for a connector
-     * const token = await base44.asServiceRole.connectors.getCurrentAppUserAccessToken('abc123def');
+     * // Basic usage
+     * const { accessToken } = await base44.asServiceRole.connectors.getCurrentAppUserConnection('abc123def');
      *
      * const response = await fetch('https://www.googleapis.com/calendar/v3/calendars/primary/events', {
-     *   headers: { 'Authorization': `Bearer ${token}` }
+     *   headers: { Authorization: `Bearer ${accessToken}` }
      * });
-     * ```
-     */
-    getCurrentAppUserAccessToken(connectorId: string): Promise<string>;
-    /**
-     * Retrieves the OAuth access token and connection configuration for an end user's
-     * connection to a specific connector.
-     *
-     * Returns both the OAuth token and any connection-specific configuration that
-     * belongs to the currently authenticated end user for the specified connector.
      *
-     * @param connectorId - The connector ID (OrgConnector database ID).
-     * @returns Promise resolving to an {@link AppUserConnectorConnectionResponse} with `accessToken` and `connectionConfig`.
+     * const data = await response.json();
+     * ```
      *
      * @example
      * ```typescript
-     * // Get the end user's connection details for a connector
+     * // Using connectionConfig
      * const { accessToken, connectionConfig } = await base44.asServiceRole.connectors.getCurrentAppUserConnection('abc123def');
      *
-     * const response = await fetch('https://www.googleapis.com/calendar/v3/calendars/primary/events', {
-     *   headers: { 'Authorization': `Bearer ${accessToken}` }
-     * });
+     * const subdomain = connectionConfig?.subdomain;
+     * const response = await fetch(
+     *   `https://${subdomain}.example.com/api/v1/resources`,
+     *   { headers: { Authorization: `Bearer ${accessToken}` } }
+     * );
+     *
+     * const data = await response.json();
      * ```
      */
     getCurrentAppUserConnection(connectorId: string): Promise<AppUserConnectorConnectionResponse>;
 }
 /**
- * User-scoped connectors module for managing app-user OAuth connections.
+ * User-scoped connectors module for managing app user OAuth connections.
  *
- * This module provides methods for app-user OAuth flows: initiating an OAuth connection,
- * retrieving the end user's access token, and disconnecting the end user's connection.
+ * This module provides methods for app user OAuth flows: initiating an OAuth connection and disconnecting an app user's connection.
  *
  * Unlike {@link ConnectorsModule | ConnectorsModule} which manages app-scoped tokens,
- * this module manages tokens scoped to individual end users. Methods are keyed on
- * the connector ID (the OrgConnector's database ID) rather than the integration type.
+ * this module manages tokens scoped to individual app users. Methods are keyed on
+ * the connector ID, not the integration type.
  *
  * Available via `base44.connectors`.
  */
 export interface UserConnectorsModule {
     /**
-     * Initiates the app-user OAuth flow for a specific connector.
+     * Initiates the OAuth flow for an [app user connector](#app-user-connectors).
      *
-     * Returns a redirect URL that the end user should be navigated to in order to
+     * Returns a redirect URL that the app user should be navigated to in order to
      * authenticate with the external service. The scopes and integration type are
-     * derived from the connector configuration server-side.
+     * derived from the connector configuration in the backend.
      *
-     * @param connectorId - The connector ID (OrgConnector database ID).
+     * @param connectorId - The ID of the app user connector configured in your workspace. The AI builder inserts this ID into generated code when it sets up the connector flow. You can also retrieve it from the workspace connectors API.
      * @returns Promise resolving to the redirect URL string.
      *
      * @example
      * ```typescript
-     * // Start OAuth for the end user
+     * // Start OAuth for the app user
      * const redirectUrl = await base44.connectors.connectAppUser('abc123def');
      *
      * // Redirect the user to the OAuth provider
@@ -319,17 +327,17 @@ export interface UserConnectorsModule {
      */
     connectAppUser(connectorId: string): Promise<string>;
     /**
-     * Disconnects an end user's OAuth connection for a specific connector.
+     * Disconnects an app user's OAuth connection for an [app user connector](#app-user-connectors).
      *
-     * Removes the stored OAuth credentials for the currently authenticated end user's
+     * Removes the stored OAuth credentials for the currently authenticated app user's
      * connection to the specified connector.
      *
-     * @param connectorId - The connector ID (OrgConnector database ID).
+     * @param connectorId - The ID of the app user connector configured in your workspace. The AI builder inserts this ID into generated code when it sets up the connector flow. You can also retrieve it from the workspace connectors API.
      * @returns Promise resolving when the connection has been removed.
      *
      * @example
      * ```typescript
-     * // Disconnect the end user's connection
+     * // Disconnect the app user's connection
      * await base44.connectors.disconnectAppUser('abc123def');
      * ```
      */

package/dist/modules/entities.js

@@ -131,10 +131,24 @@ function createEntityHandler(axios, appId, entityName, getSocket) {
             const socket = getSocket();
             const unsubscribe = socket.subscribeToRoom(room, {
                 update_model: (msg) => {
+                    var _a;
                     const event = parseRealtimeMessage(msg.data);
                     if (!event) {
                         return;
                     }
+                    // Server signals oversize broadcasts with `_oversize: true` on
+                    // `data`. The wire payload was slimmed to fit under the realtime
+                    // transport cap, so big string fields arrive as empty strings (or
+                    // the whole record collapses to a stub). Surface this to the
+                    // developer console so they know to fetch the full record on
+                    // demand (e.g. a follow-up entities.X.get(id) call) instead of
+                    // rendering the slimmed payload directly. Skip on delete events
+                    // — the record no longer exists.
+                    if (event.type !== "delete" && ((_a = event.data) === null || _a === void 0 ? void 0 : _a._oversize)) {
+                        console.error(`[Base44 SDK] Realtime broadcast for ${entityName}#${event.id} was oversize and got slimmed for transport. ` +
+                            `Fields >10 KB are empty and the rest of the record may be a stub. ` +
+                            `Call \`entities.${entityName}.get("${event.id}")\` to fetch the full record.`);
+                    }
                     try {
                         callback(event);
                     }

package/dist/modules/entities.types.d.ts

@@ -84,6 +84,19 @@ export interface ImportResult<T = any> {
  * ```
  */
 export type SortField<T> = (keyof T & string) | `+${keyof T & string}` | `-${keyof T & string}`;
+/**
+ * Entity filter query type system.
+ *
+ * `EntityFilterQuery<T>` keeps field names tied to the entity schema while
+ * allowing Base44's documented filtering syntax. Each field can use an exact
+ * value, `null`, an array shorthand for matching any listed value, or a
+ * field-level operator object. Root-level `$and`, `$or`, and `$nor` combine
+ * nested filter queries.
+ *
+ * Operator values are typed from the field they filter where possible. For
+ * example, numeric fields accept numeric comparison values, string fields
+ * accept `$regex`, and array fields accept `$all` and `$size`.
+ */
 /**
  * Value accepted when filtering an entity field.
  *

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "@base44-preview/sdk",
-  "version": "0.8.26-pr.169.4ce3986",
+  "version": "0.8.27-pr.171.bb56537",
   "description": "JavaScript SDK for Base44 API",
   "main": "dist/index.js",
   "types": "dist/index.d.ts",