npm - @josephyan/qingflow-app-builder-mcp - Versions diffs - 0.2.0-beta.1016 → 0.2.0-beta.1017 - Mend

@josephyan/qingflow-app-builder-mcp 0.2.0-beta.1016 → 0.2.0-beta.1017

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (7) hide show

package/README.md +2 -2
package/package.json +1 -1
package/pyproject.toml +1 -1
package/src/qingflow_mcp/__init__.py +1 -1
package/src/qingflow_mcp/tools/export_tools.py +73 -7
package/src/qingflow_mcp/tools/record_tools.py +122 -7
package/src/qingflow_mcp/tools/resource_read_tools.py +20 -10

package/README.md CHANGED Viewed

@@ -3,13 +3,13 @@
 Install:
 ```bash
-npm install @josephyan/qingflow-app-builder-mcp@0.2.0-beta.1016
+npm install @josephyan/qingflow-app-builder-mcp@0.2.0-beta.1017
 ```
 Run:
 ```bash
-npx -y -p @josephyan/qingflow-app-builder-mcp@0.2.0-beta.1016 qingflow-app-builder-mcp
+npx -y -p @josephyan/qingflow-app-builder-mcp@0.2.0-beta.1017 qingflow-app-builder-mcp
 ```
 Environment:

package/package.json CHANGED Viewed

@@ -1,6 +1,6 @@
 {
   "name": "@josephyan/qingflow-app-builder-mcp",
-  "version": "0.2.0-beta.1016",
+  "version": "0.2.0-beta.1017",
   "description": "Builder MCP for Qingflow app/package/system design and staged solution workflows.",
   "license": "MIT",
   "type": "module",

package/pyproject.toml CHANGED Viewed

@@ -4,7 +4,7 @@ build-backend = "setuptools.build_meta"
 [project]
 name = "qingflow-mcp"
-version = "0.2.0b1016"
+version = "0.2.0b1017"
 description = "User-authenticated MCP server for Qingflow"
 readme = "README.md"
 license = "MIT"

package/src/qingflow_mcp/__init__.py CHANGED Viewed

@@ -5,7 +5,7 @@ from pathlib import Path
 __all__ = ["__version__"]
-_FALLBACK_VERSION = "0.2.0b1016"
+_FALLBACK_VERSION = "0.2.0b1017"
 def _resolve_local_pyproject_version() -> str | None:

package/src/qingflow_mcp/tools/export_tools.py CHANGED Viewed

@@ -11,6 +11,7 @@ from uuid import uuid4
 from mcp.server.fastmcp import FastMCP
+from ..backend_client import BackendRequestContext
 from ..config import DEFAULT_PROFILE, DEFAULT_RECORD_LIST_TYPE
 from ..errors import QingflowApiError
 from ..export_store import ExportJobStore
@@ -213,6 +214,10 @@ class ExportTools(ToolBase):
                 {
                     "created_at": started_at,
                     "profile": profile,
+                    "base_url": context.base_url,
+                    "ws_id": context.ws_id,
+                    "qf_version": context.qf_version,
+                    "qf_version_source": context.qf_version_source,
                     "app_key": normalized_app_key,
                     "view_id": resolved_view.view_id,
                     "backend_export_id": str(socket_result.get("backend_export_id") or ""),
@@ -280,7 +285,7 @@ class ExportTools(ToolBase):
                 extra={"status": "failed"},
             )
-        def runner(_session_profile, context):
+        def runner(session_profile, context):
             local_job = self._job_store.get(normalized_handle)
             if local_job is None:
                 return self._failed_export_result(
@@ -288,7 +293,13 @@ class ExportTools(ToolBase):
                     message="export_handle is missing or expired",
                     extra={"export_handle": normalized_handle, "status": "failed"},
                 )
-            snapshot = self._resolve_export_snapshot(context, local_job)
+            lookup_context = self._build_export_lookup_context(
+                profile=profile,
+                session_profile=session_profile,
+                current_context=context,
+                local_job=local_job,
+            )
+            snapshot = self._resolve_export_snapshot(lookup_context, local_job)
             return self._status_payload_from_snapshot(local_job, normalized_handle, snapshot)
         try:
@@ -316,7 +327,7 @@ class ExportTools(ToolBase):
                 extra={"status": "failed"},
             )
-        def runner(_session_profile, context):
+        def runner(session_profile, context):
             local_job = self._job_store.get(normalized_handle)
             if local_job is None:
                 return self._failed_export_result(
@@ -324,7 +335,13 @@ class ExportTools(ToolBase):
                     message="export_handle is missing or expired",
                     extra={"export_handle": normalized_handle, "status": "failed"},
                 )
-            snapshot = self._resolve_export_snapshot(context, local_job)
+            lookup_context = self._build_export_lookup_context(
+                profile=profile,
+                session_profile=session_profile,
+                current_context=context,
+                local_job=local_job,
+            )
+            snapshot = self._resolve_export_snapshot(lookup_context, local_job)
             normalized_status = str(snapshot.get("status") or "unknown")
             if normalized_status not in {"succeeded", "failed"}:
                 return self._failed_export_result(
@@ -414,7 +431,7 @@ class ExportTools(ToolBase):
                 "downloaded_files": downloaded_files,
                 "warnings": snapshot.get("warnings") or [],
                 "verification": snapshot.get("verification") or {},
-                "request_route": self.backend.describe_route(context),
+                "request_route": self.backend.describe_route(lookup_context),
             }
         try:
@@ -451,7 +468,7 @@ class ExportTools(ToolBase):
             )
         timeout_seconds = self._normalize_timeout_seconds(wait_timeout_seconds)
-        def runner(_session_profile, context):
+        def runner(session_profile, context):
             start_result = self.record_export_start(
                 profile=profile,
                 app_key=normalized_app_key,
@@ -475,7 +492,13 @@ class ExportTools(ToolBase):
                         message="export_handle is missing or expired",
                         extra={"status": "failed", "export_handle": export_handle},
                     )
-                snapshot = self._resolve_export_snapshot(context, local_job)
+                lookup_context = self._build_export_lookup_context(
+                    profile=profile,
+                    session_profile=session_profile,
+                    current_context=context,
+                    local_job=local_job,
+                )
+                snapshot = self._resolve_export_snapshot(lookup_context, local_job)
                 last_snapshot = snapshot
                 normalized_status = str(snapshot.get("status") or "unknown")
                 if normalized_status == "succeeded":
@@ -583,6 +606,49 @@ class ExportTools(ToolBase):
                 extra={"app_key": normalized_app_key, "view_id": normalized_view_id},
             )
+    def _build_export_lookup_context(
+        self,
+        *,
+        profile: str,
+        session_profile,
+        current_context: BackendRequestContext,
+        local_job: dict[str, Any],
+    ) -> BackendRequestContext:
+        stored_profile = str(local_job.get("profile") or "").strip()
+        if stored_profile and stored_profile != profile:
+            raise QingflowApiError.config_error(
+                "export_handle was created under a different profile",
+                details={
+                    "error_code": "EXPORT_HANDLE_PROFILE_MISMATCH",
+                    "expected_profile": stored_profile,
+                    "received_profile": profile,
+                },
+            )
+        stored_uid = _coerce_positive_int(local_job.get("uid"))
+        if stored_uid is not None and stored_uid != session_profile.uid:
+            raise QingflowApiError.config_error(
+                "export_handle belongs to a different authenticated user",
+                details={
+                    "error_code": "EXPORT_HANDLE_OWNER_MISMATCH",
+                    "expected_uid": stored_uid,
+                    "current_uid": session_profile.uid,
+                },
+            )
+        stored_base_url = str(local_job.get("base_url") or "").strip() or current_context.base_url
+        stored_ws_id = _coerce_positive_int(local_job.get("ws_id"))
+        stored_qf_version = str(local_job.get("qf_version") or "").strip() or current_context.qf_version
+        stored_qf_version_source = (
+            str(local_job.get("qf_version_source") or "").strip() or current_context.qf_version_source
+        )
+        return BackendRequestContext(
+            base_url=stored_base_url,
+            token=current_context.token,
+            ws_id=stored_ws_id if stored_ws_id is not None else current_context.ws_id,
+            qf_request_id=current_context.qf_request_id,
+            qf_version=stored_qf_version,
+            qf_version_source=stored_qf_version_source,
+        )
     def _resolve_export_record_scope(
         self,
         *,

package/src/qingflow_mcp/tools/record_tools.py CHANGED Viewed

@@ -2920,12 +2920,14 @@ class RecordTools(ToolBase):
             payload["category"] = error.category
         if error.backend_code is not None:
             payload["backend_code"] = error.backend_code
+        if error.request_id is not None:
+            payload["request_id"] = error.request_id
         if error.http_status is not None:
             payload["http_status"] = error.http_status
         return payload
     def _is_record_context_route_miss(self, error: QingflowApiError) -> bool:
-        if error.backend_code in {40002, 40027, 40038, 404}:
+        if error.backend_code in {40002, 40023, 40027, 40038, 404}:
             return True
         if error.http_status == 404:
             return True
@@ -3059,6 +3061,107 @@ class RecordTools(ToolBase):
             f"({get_record_list_type_label(used_list_type)})."
         ]
+    def _looks_like_generic_record_update_backend_failure(self, exc: QingflowApiError) -> bool:
+        if exc.backend_code == 500:
+            return True
+        if exc.http_status is not None and exc.http_status >= 500:
+            return True
+        normalized_message = exc.message.strip().lower()
+        return normalized_message in {"unknown error", "internal server error"}
+    def _remap_record_update_target_context_error(
+        self,
+        profile: str,
+        context,  # type: ignore[no-untyped-def]
+        *,
+        app_key: str,
+        apply_id: int,
+        exc: QingflowApiError,
+    ) -> None:
+        if not self._looks_like_generic_record_update_backend_failure(exc):
+            return
+        try:
+            candidate_routes = self._candidate_update_views(profile, context, app_key)
+            probes = self._probe_candidate_record_contexts(
+                context,
+                app_key=app_key,
+                apply_id=apply_id,
+                candidate_routes=candidate_routes,
+            )
+        except (QingflowApiError, RuntimeError):
+            return
+        if not probes or any(probe.readable for probe in probes):
+            return
+        blocker = (
+            "CURRENT_RECORD_CONTEXT_UNAVAILABLE"
+            if all(probe.transport_error for probe in probes)
+            else "NO_MATCHING_ACCESSIBLE_VIEW_FOR_RECORD"
+        )
+        recommended_next_actions = (
+            [
+                "Retry after the record becomes readable in the current workspace/profile context.",
+                "If the issue persists, verify that the current profile still has read access to this record.",
+            ]
+            if blocker == "CURRENT_RECORD_CONTEXT_UNAVAILABLE"
+            else [
+                "Use record_get or record_list to confirm the record still exists in the current workspace.",
+                "Call record_update_schema_get to inspect whether any accessible view still matches this record.",
+            ]
+        )
+        first_error_payload = next(
+            (
+                cast(JSONObject, probe.error_payload)
+                for probe in probes
+                if isinstance(probe.error_payload, dict)
+            ),
+            None,
+        )
+        backend_code = (
+            cast(int, first_error_payload.get("backend_code"))
+            if isinstance(first_error_payload, dict) and isinstance(first_error_payload.get("backend_code"), int)
+            else exc.backend_code
+        )
+        request_id = (
+            _normalize_optional_text(first_error_payload.get("request_id"))
+            if isinstance(first_error_payload, dict)
+            else None
+        ) or exc.request_id
+        http_status = (
+            cast(int, first_error_payload.get("http_status"))
+            if isinstance(first_error_payload, dict) and isinstance(first_error_payload.get("http_status"), int)
+            else exc.http_status
+        )
+        raise_tool_error(
+            QingflowApiError(
+                category="backend",
+                message=(
+                    "Direct record edit was blocked because the current record context could not be loaded from any candidate route."
+                    if blocker == "CURRENT_RECORD_CONTEXT_UNAVAILABLE"
+                    else "Direct record edit was blocked because the target record is no longer accessible in any readable view for the current profile."
+                ),
+                backend_code=backend_code,
+                request_id=request_id,
+                http_status=http_status,
+                details={
+                    "error_code": blocker,
+                    "operation": "update",
+                    "app_key": app_key,
+                    "record_id": apply_id,
+                    "blockers": [blocker],
+                    "request_route": self._request_route_payload(context),
+                    "view_probe_summary": [
+                        self._record_context_probe_summary_payload(probe)
+                        for probe in probes
+                    ],
+                    "recommended_next_actions": recommended_next_actions,
+                    "fix_hint": (
+                        "Confirm the target record still exists and remains visible in at least one accessible view before retrying the update."
+                    ),
+                },
+            )
+        )
     def _record_matches_accessible_view(
         self,
         context,  # type: ignore[no-untyped-def]
@@ -6355,12 +6458,22 @@ class RecordTools(ToolBase):
                 force_refresh_form=force_refresh_form,
             )
             self._validate_record_write(app_key, normalized_answers, apply_id=normalized_apply_id)
-            result = self.backend.request(
-                "POST",
-                context,
-                f"/app/{app_key}/apply/{normalized_apply_id}",
-                json_body={"role": role, "answers": normalized_answers},
-            )
+            try:
+                result = self.backend.request(
+                    "POST",
+                    context,
+                    f"/app/{app_key}/apply/{normalized_apply_id}",
+                    json_body={"role": role, "answers": normalized_answers},
+                )
+            except QingflowApiError as exc:
+                self._remap_record_update_target_context_error(
+                    profile,
+                    context,
+                    app_key=app_key,
+                    apply_id=normalized_apply_id,
+                    exc=exc,
+                )
+                raise
             verification = self._verify_record_write_result(
                 context,
                 app_key=app_key,
@@ -8810,6 +8923,8 @@ class RecordTools(ToolBase):
                     error_payload["request_id"] = parsed.get("request_id")
                 if isinstance(parsed.get("request_route"), dict):
                     request_route = cast(JSONObject, parsed.get("request_route"))
+                elif details_payload is not None and isinstance(details_payload.get("request_route"), dict):
+                    request_route = cast(JSONObject, details_payload.get("request_route"))
         response: JSONObject = {
             "profile": profile,
             "ws_id": None,

package/src/qingflow_mcp/tools/resource_read_tools.py CHANGED Viewed

@@ -96,7 +96,9 @@ class ResourceReadTools(ToolBase):
                 )
             )
         if system_view is not None:
-            export_capability = _view_export_capability_payload(supported=True)
+            export_capability = _view_export_capability_payload(
+                supported=_export_supported_for_view_type(system_view["view_type"])
+            )
             return self._run(
                 profile,
                 lambda session_profile, _context: {
@@ -133,13 +135,11 @@ class ResourceReadTools(ToolBase):
             )
         def runner(session_profile, context):
-            export_capability = _view_export_capability_payload(supported=True)
+            raw_view_type = None
             warnings: list[JSONObject] = []
             verification = {
                 "view_exists": True,
                 "questions_verified": True,
-                "export_route_supported": export_capability["supported"],
-                "export_permission_verified": export_capability["permission_verified"],
             }
             config = self.backend.request("GET", context, f"/view/{view_key}/viewConfig")
             base_info = self.backend.request("GET", context, f"/view/{view_key}/viewConfig/baseInfo")
@@ -161,6 +161,11 @@ class ResourceReadTools(ToolBase):
                 str(base_info.get("viewgraphType") or "").strip()
                 or str(config.get("viewgraphType") or config.get("viewType") or "").strip()
             )
+            export_capability = _view_export_capability_payload(
+                supported=_export_supported_for_view_type(raw_view_type or None)
+            )
+            verification["export_route_supported"] = export_capability["supported"]
+            verification["export_permission_verified"] = export_capability["permission_verified"]
             resolved_app_key = str(base_info.get("appKey") or config.get("appKey") or "").strip() or None
             if not resolved_app_key:
                 resolved_app_key = self._resolve_app_key_from_view_form(context=context, view_key=view_key)
@@ -176,12 +181,13 @@ class ResourceReadTools(ToolBase):
                         "message": f"view_get could not resolve app_key for `{view_id}` from view metadata; keep using the app_key from the parent app or portal context.",
                     }
                 )
-                warnings.append(
-                    {
-                        "code": "VIEW_EXPORT_APP_CONTEXT_REQUIRED",
-                        "message": f"view_get supports exporting `{view_id}`, but the export call still needs an explicit `app_key` from the parent app context.",
-                    }
-                )
+                if export_capability["supported"]:
+                    warnings.append(
+                        {
+                            "code": "VIEW_EXPORT_APP_CONTEXT_REQUIRED",
+                            "message": f"view_get supports exporting `{view_id}`, but the export call still needs an explicit `app_key` from the parent app context.",
+                        }
+                    )
             return {
                 "profile": profile,
                 "ws_id": session_profile.selected_ws_id,
@@ -493,6 +499,10 @@ def _view_export_capability_payload(*, supported: bool) -> JSONObject:
     }
+def _export_supported_for_view_type(view_type: str | None) -> bool:
+    return _analysis_supported_for_view_type(view_type)
 def _normalize_view_type(view_type: Any) -> str | None:
     value = str(view_type or "").strip()
     if not value: