@squadbase/vite-server 0.0.1-build-11 → 0.0.1-build-12

package/dist/cli/index.js

@@ -144,6 +144,152 @@ function createBigQueryClient(entry, connectionId) {
   };
 }
 
+// src/connection.ts
+import { getContext } from "hono/context-storage";
+import { getCookie } from "hono/cookie";
+var APP_SESSION_COOKIE_NAME = "__Host-squadbase-session";
+var PREVIEW_SESSION_COOKIE_NAME = "squadbase-preview-session";
+var APP_BASE_DOMAIN = "squadbase.app";
+var PREVIEW_BASE_DOMAIN = "preview.app.squadbase.dev";
+var SANDBOX_ID_ENV_NAME = "INTERNAL_SQUADBASE_SANDBOX_ID";
+var MACHINE_CREDENTIAL_ENV_NAME = "INTERNAL_SQUADBASE_OAUTH_MACHINE_CREDENTIAL";
+function resolveProxyUrl(connectionId) {
+  const connectionPath = `/_sqcore/connections/${connectionId}/request`;
+  const sandboxId = process.env[SANDBOX_ID_ENV_NAME];
+  if (sandboxId) {
+    const baseDomain2 = process.env["SQUADBASE_PREVIEW_BASE_DOMAIN"] ?? PREVIEW_BASE_DOMAIN;
+    return `https://${sandboxId}.${baseDomain2}${connectionPath}`;
+  }
+  const projectId = process.env["SQUADBASE_PROJECT_ID"];
+  if (!projectId) {
+    throw new Error(
+      "Project ID is required. Please set SQUADBASE_PROJECT_ID environment variable."
+    );
+  }
+  const baseDomain = process.env["SQUADBASE_APP_BASE_DOMAIN"] ?? APP_BASE_DOMAIN;
+  return `https://${projectId}.${baseDomain}${connectionPath}`;
+}
+function resolveAuthHeaders() {
+  const machineCredential = process.env[MACHINE_CREDENTIAL_ENV_NAME];
+  if (machineCredential) {
+    return { Authorization: `Bearer ${machineCredential}` };
+  }
+  const c = getContext();
+  const cookies = getCookie(c);
+  const previewSession = cookies[PREVIEW_SESSION_COOKIE_NAME];
+  if (previewSession) {
+    return {
+      Cookie: `${PREVIEW_SESSION_COOKIE_NAME}=${previewSession}`
+    };
+  }
+  const appSession = cookies[APP_SESSION_COOKIE_NAME];
+  if (appSession) {
+    return { Authorization: `Bearer ${appSession}` };
+  }
+  throw new Error(
+    "No authentication method available for connection proxy. Expected one of: INTERNAL_SQUADBASE_OAUTH_MACHINE_CREDENTIAL env var, preview session cookie, or app session cookie."
+  );
+}
+function connection(connectionId) {
+  return {
+    async fetch(url, options) {
+      const proxyUrl = resolveProxyUrl(connectionId);
+      const authHeaders = resolveAuthHeaders();
+      return await fetch(proxyUrl, {
+        method: "POST",
+        headers: {
+          "Content-Type": "application/json",
+          ...authHeaders
+        },
+        body: JSON.stringify({
+          url,
+          method: options?.method,
+          headers: options?.headers,
+          body: options?.body,
+          timeoutMs: options?.timeoutMs
+        })
+      });
+    }
+  };
+}
+
+// src/connector-client/bigquery-oauth.ts
+var MAX_RESULTS = 1e4;
+var POLL_INTERVAL_MS = 1e3;
+var POLL_TIMEOUT_MS = 12e4;
+function flattenRows(fields, rows) {
+  return rows.map((row) => {
+    const obj = {};
+    for (let i = 0; i < fields.length; i++) {
+      obj[fields[i].name] = row.f[i].v;
+    }
+    return obj;
+  });
+}
+function createBigQueryOAuthClient(entry, connectionId) {
+  const projectId = resolveEnvVar(entry, "project-id", connectionId);
+  const baseUrl = `https://bigquery.googleapis.com/bigquery/v2/projects/${projectId}`;
+  return {
+    async query(sql) {
+      const conn = connection(connectionId);
+      const res = await conn.fetch(`${baseUrl}/queries`, {
+        method: "POST",
+        body: {
+          query: sql,
+          useLegacySql: false,
+          maxResults: MAX_RESULTS
+        }
+      });
+      if (!res.ok) {
+        const text = await res.text().catch(() => res.statusText);
+        throw new Error(`BigQuery query failed: HTTP ${res.status} ${text}`);
+      }
+      let data = await res.json();
+      if (data.errors?.length) {
+        throw new Error(
+          `BigQuery query error: ${data.errors.map((e) => e.message).join("; ")}`
+        );
+      }
+      if (!data.jobComplete) {
+        const jobId = data.jobReference.jobId;
+        const location = data.jobReference.location;
+        const deadline = Date.now() + POLL_TIMEOUT_MS;
+        while (!data.jobComplete) {
+          if (Date.now() > deadline) {
+            throw new Error(
+              `BigQuery query timed out after ${POLL_TIMEOUT_MS / 1e3}s (jobId: ${jobId})`
+            );
+          }
+          await new Promise((r) => setTimeout(r, POLL_INTERVAL_MS));
+          const params = new URLSearchParams({
+            maxResults: String(MAX_RESULTS)
+          });
+          if (location) params.set("location", location);
+          const pollRes = await conn.fetch(
+            `${baseUrl}/queries/${jobId}?${params}`,
+            { method: "GET" }
+          );
+          if (!pollRes.ok) {
+            const text = await pollRes.text().catch(() => pollRes.statusText);
+            throw new Error(
+              `BigQuery poll failed: HTTP ${pollRes.status} ${text}`
+            );
+          }
+          data = await pollRes.json();
+          if (data.errors?.length) {
+            throw new Error(
+              `BigQuery query error: ${data.errors.map((e) => e.message).join("; ")}`
+            );
+          }
+        }
+      }
+      const fields = data.schema?.fields ?? [];
+      const rawRows = data.rows ?? [];
+      return { rows: flattenRows(fields, rawRows) };
+    }
+  };
+}
+
 // src/connector-client/snowflake.ts
 function createSnowflakeClient(entry, connectionId) {
   const accountIdentifier = resolveEnvVar(entry, "account", connectionId);
@@ -156,7 +302,7 @@ function createSnowflakeClient(entry, connectionId) {
     async query(sql) {
       const snowflake = (await import("snowflake-sdk")).default;
       snowflake.configure({ logLevel: "ERROR" });
-      const connection = snowflake.createConnection({
+      const connection2 = snowflake.createConnection({
         account: accountIdentifier,
         username: user,
         role,
@@ -165,13 +311,13 @@ function createSnowflakeClient(entry, connectionId) {
         privateKey
       });
       await new Promise((resolve, reject) => {
-        connection.connect((err) => {
+        connection2.connect((err) => {
           if (err) reject(new Error(`Snowflake connect failed: ${err.message}`));
           else resolve();
         });
       });
       const rows = await new Promise((resolve, reject) => {
-        connection.execute({
+        connection2.execute({
           sqlText: sql,
           complete: (err, _stmt, rows2) => {
             if (err) reject(new Error(`Snowflake query failed: ${err.message}`));
@@ -179,7 +325,7 @@ function createSnowflakeClient(entry, connectionId) {
           }
         });
       });
-      connection.destroy((err) => {
+      connection2.destroy((err) => {
         if (err) console.warn(`[connector-client] Snowflake destroy error: ${err.message}`);
       });
       return { rows };
@@ -385,6 +531,9 @@ function createConnectorRegistry() {
       return { client: createSnowflakeClient(entry, connectionId), connectorSlug };
     }
     if (connectorSlug === "bigquery") {
+      if (entry.connector.authType === "oauth") {
+        return { client: createBigQueryOAuthClient(entry, connectionId), connectorSlug };
+      }
       return { client: createBigQueryClient(entry, connectionId), connectorSlug };
     }
     if (connectorSlug === "athena") {

package/dist/index.js

@@ -69,6 +69,152 @@ function createBigQueryClient(entry, connectionId) {
   };
 }
 
+// src/connection.ts
+import { getContext } from "hono/context-storage";
+import { getCookie } from "hono/cookie";
+var APP_SESSION_COOKIE_NAME = "__Host-squadbase-session";
+var PREVIEW_SESSION_COOKIE_NAME = "squadbase-preview-session";
+var APP_BASE_DOMAIN = "squadbase.app";
+var PREVIEW_BASE_DOMAIN = "preview.app.squadbase.dev";
+var SANDBOX_ID_ENV_NAME = "INTERNAL_SQUADBASE_SANDBOX_ID";
+var MACHINE_CREDENTIAL_ENV_NAME = "INTERNAL_SQUADBASE_OAUTH_MACHINE_CREDENTIAL";
+function resolveProxyUrl(connectionId) {
+  const connectionPath = `/_sqcore/connections/${connectionId}/request`;
+  const sandboxId = process.env[SANDBOX_ID_ENV_NAME];
+  if (sandboxId) {
+    const baseDomain2 = process.env["SQUADBASE_PREVIEW_BASE_DOMAIN"] ?? PREVIEW_BASE_DOMAIN;
+    return `https://${sandboxId}.${baseDomain2}${connectionPath}`;
+  }
+  const projectId = process.env["SQUADBASE_PROJECT_ID"];
+  if (!projectId) {
+    throw new Error(
+      "Project ID is required. Please set SQUADBASE_PROJECT_ID environment variable."
+    );
+  }
+  const baseDomain = process.env["SQUADBASE_APP_BASE_DOMAIN"] ?? APP_BASE_DOMAIN;
+  return `https://${projectId}.${baseDomain}${connectionPath}`;
+}
+function resolveAuthHeaders() {
+  const machineCredential = process.env[MACHINE_CREDENTIAL_ENV_NAME];
+  if (machineCredential) {
+    return { Authorization: `Bearer ${machineCredential}` };
+  }
+  const c = getContext();
+  const cookies = getCookie(c);
+  const previewSession = cookies[PREVIEW_SESSION_COOKIE_NAME];
+  if (previewSession) {
+    return {
+      Cookie: `${PREVIEW_SESSION_COOKIE_NAME}=${previewSession}`
+    };
+  }
+  const appSession = cookies[APP_SESSION_COOKIE_NAME];
+  if (appSession) {
+    return { Authorization: `Bearer ${appSession}` };
+  }
+  throw new Error(
+    "No authentication method available for connection proxy. Expected one of: INTERNAL_SQUADBASE_OAUTH_MACHINE_CREDENTIAL env var, preview session cookie, or app session cookie."
+  );
+}
+function connection(connectionId) {
+  return {
+    async fetch(url, options) {
+      const proxyUrl = resolveProxyUrl(connectionId);
+      const authHeaders = resolveAuthHeaders();
+      return await fetch(proxyUrl, {
+        method: "POST",
+        headers: {
+          "Content-Type": "application/json",
+          ...authHeaders
+        },
+        body: JSON.stringify({
+          url,
+          method: options?.method,
+          headers: options?.headers,
+          body: options?.body,
+          timeoutMs: options?.timeoutMs
+        })
+      });
+    }
+  };
+}
+
+// src/connector-client/bigquery-oauth.ts
+var MAX_RESULTS = 1e4;
+var POLL_INTERVAL_MS = 1e3;
+var POLL_TIMEOUT_MS = 12e4;
+function flattenRows(fields, rows) {
+  return rows.map((row) => {
+    const obj = {};
+    for (let i = 0; i < fields.length; i++) {
+      obj[fields[i].name] = row.f[i].v;
+    }
+    return obj;
+  });
+}
+function createBigQueryOAuthClient(entry, connectionId) {
+  const projectId = resolveEnvVar(entry, "project-id", connectionId);
+  const baseUrl = `https://bigquery.googleapis.com/bigquery/v2/projects/${projectId}`;
+  return {
+    async query(sql) {
+      const conn = connection(connectionId);
+      const res = await conn.fetch(`${baseUrl}/queries`, {
+        method: "POST",
+        body: {
+          query: sql,
+          useLegacySql: false,
+          maxResults: MAX_RESULTS
+        }
+      });
+      if (!res.ok) {
+        const text = await res.text().catch(() => res.statusText);
+        throw new Error(`BigQuery query failed: HTTP ${res.status} ${text}`);
+      }
+      let data = await res.json();
+      if (data.errors?.length) {
+        throw new Error(
+          `BigQuery query error: ${data.errors.map((e) => e.message).join("; ")}`
+        );
+      }
+      if (!data.jobComplete) {
+        const jobId = data.jobReference.jobId;
+        const location = data.jobReference.location;
+        const deadline = Date.now() + POLL_TIMEOUT_MS;
+        while (!data.jobComplete) {
+          if (Date.now() > deadline) {
+            throw new Error(
+              `BigQuery query timed out after ${POLL_TIMEOUT_MS / 1e3}s (jobId: ${jobId})`
+            );
+          }
+          await new Promise((r) => setTimeout(r, POLL_INTERVAL_MS));
+          const params = new URLSearchParams({
+            maxResults: String(MAX_RESULTS)
+          });
+          if (location) params.set("location", location);
+          const pollRes = await conn.fetch(
+            `${baseUrl}/queries/${jobId}?${params}`,
+            { method: "GET" }
+          );
+          if (!pollRes.ok) {
+            const text = await pollRes.text().catch(() => pollRes.statusText);
+            throw new Error(
+              `BigQuery poll failed: HTTP ${pollRes.status} ${text}`
+            );
+          }
+          data = await pollRes.json();
+          if (data.errors?.length) {
+            throw new Error(
+              `BigQuery query error: ${data.errors.map((e) => e.message).join("; ")}`
+            );
+          }
+        }
+      }
+      const fields = data.schema?.fields ?? [];
+      const rawRows = data.rows ?? [];
+      return { rows: flattenRows(fields, rawRows) };
+    }
+  };
+}
+
 // src/connector-client/snowflake.ts
 function createSnowflakeClient(entry, connectionId) {
   const accountIdentifier = resolveEnvVar(entry, "account", connectionId);
@@ -310,6 +456,9 @@ function createConnectorRegistry() {
       return { client: createSnowflakeClient(entry, connectionId), connectorSlug };
     }
     if (connectorSlug === "bigquery") {
+      if (entry.connector.authType === "oauth") {
+        return { client: createBigQueryOAuthClient(entry, connectionId), connectorSlug };
+      }
       return { client: createBigQueryClient(entry, connectionId), connectorSlug };
     }
     if (connectorSlug === "athena") {
@@ -1235,75 +1384,6 @@ app4.get("/runtime-data", (c) => {
 });
 var pages_default = app4;
 
-// src/connection.ts
-import { getContext } from "hono/context-storage";
-import { getCookie } from "hono/cookie";
-var APP_SESSION_COOKIE_NAME = "__Host-squadbase-session";
-var PREVIEW_SESSION_COOKIE_NAME = "squadbase-preview-session";
-var APP_BASE_DOMAIN = "squadbase.app";
-var PREVIEW_BASE_DOMAIN = "preview.app.squadbase.dev";
-var SANDBOX_ID_ENV_NAME = "INTERNAL_SQUADBASE_SANDBOX_ID";
-var MACHINE_CREDENTIAL_ENV_NAME = "INTERNAL_SQUADBASE_OAUTH_MACHINE_CREDENTIAL";
-function resolveProxyUrl(connectionId) {
-  const connectionPath = `/_sqcore/connections/${connectionId}/request`;
-  const sandboxId = process.env[SANDBOX_ID_ENV_NAME];
-  if (sandboxId) {
-    const baseDomain2 = process.env["SQUADBASE_PREVIEW_BASE_DOMAIN"] ?? PREVIEW_BASE_DOMAIN;
-    return `https://${sandboxId}.${baseDomain2}${connectionPath}`;
-  }
-  const projectId = process.env["SQUADBASE_PROJECT_ID"];
-  if (!projectId) {
-    throw new Error(
-      "Project ID is required. Please set SQUADBASE_PROJECT_ID environment variable."
-    );
-  }
-  const baseDomain = process.env["SQUADBASE_APP_BASE_DOMAIN"] ?? APP_BASE_DOMAIN;
-  return `https://${projectId}.${baseDomain}${connectionPath}`;
-}
-function resolveAuthHeaders() {
-  const machineCredential = process.env[MACHINE_CREDENTIAL_ENV_NAME];
-  if (machineCredential) {
-    return { Authorization: `Bearer ${machineCredential}` };
-  }
-  const c = getContext();
-  const cookies = getCookie(c);
-  const previewSession = cookies[PREVIEW_SESSION_COOKIE_NAME];
-  if (previewSession) {
-    return {
-      Cookie: `${PREVIEW_SESSION_COOKIE_NAME}=${previewSession}`
-    };
-  }
-  const appSession = cookies[APP_SESSION_COOKIE_NAME];
-  if (appSession) {
-    return { Authorization: `Bearer ${appSession}` };
-  }
-  throw new Error(
-    "No authentication method available for connection proxy. Expected one of: INTERNAL_SQUADBASE_OAUTH_MACHINE_CREDENTIAL env var, preview session cookie, or app session cookie."
-  );
-}
-function connection(connectionId) {
-  return {
-    async fetch(url, options) {
-      const proxyUrl = resolveProxyUrl(connectionId);
-      const authHeaders = resolveAuthHeaders();
-      return await fetch(proxyUrl, {
-        method: "POST",
-        headers: {
-          "Content-Type": "application/json",
-          ...authHeaders
-        },
-        body: JSON.stringify({
-          url,
-          method: options?.method,
-          headers: options?.headers,
-          body: options?.body,
-          timeoutMs: options?.timeoutMs
-        })
-      });
-    }
-  };
-}
-
 // src/index.ts
 var apiApp = new Hono5();
 apiApp.use("/*", contextStorage());

package/dist/main.js

@@ -69,6 +69,152 @@ function createBigQueryClient(entry, connectionId) {
   };
 }
 
+// src/connection.ts
+import { getContext } from "hono/context-storage";
+import { getCookie } from "hono/cookie";
+var APP_SESSION_COOKIE_NAME = "__Host-squadbase-session";
+var PREVIEW_SESSION_COOKIE_NAME = "squadbase-preview-session";
+var APP_BASE_DOMAIN = "squadbase.app";
+var PREVIEW_BASE_DOMAIN = "preview.app.squadbase.dev";
+var SANDBOX_ID_ENV_NAME = "INTERNAL_SQUADBASE_SANDBOX_ID";
+var MACHINE_CREDENTIAL_ENV_NAME = "INTERNAL_SQUADBASE_OAUTH_MACHINE_CREDENTIAL";
+function resolveProxyUrl(connectionId) {
+  const connectionPath = `/_sqcore/connections/${connectionId}/request`;
+  const sandboxId = process.env[SANDBOX_ID_ENV_NAME];
+  if (sandboxId) {
+    const baseDomain2 = process.env["SQUADBASE_PREVIEW_BASE_DOMAIN"] ?? PREVIEW_BASE_DOMAIN;
+    return `https://${sandboxId}.${baseDomain2}${connectionPath}`;
+  }
+  const projectId = process.env["SQUADBASE_PROJECT_ID"];
+  if (!projectId) {
+    throw new Error(
+      "Project ID is required. Please set SQUADBASE_PROJECT_ID environment variable."
+    );
+  }
+  const baseDomain = process.env["SQUADBASE_APP_BASE_DOMAIN"] ?? APP_BASE_DOMAIN;
+  return `https://${projectId}.${baseDomain}${connectionPath}`;
+}
+function resolveAuthHeaders() {
+  const machineCredential = process.env[MACHINE_CREDENTIAL_ENV_NAME];
+  if (machineCredential) {
+    return { Authorization: `Bearer ${machineCredential}` };
+  }
+  const c = getContext();
+  const cookies = getCookie(c);
+  const previewSession = cookies[PREVIEW_SESSION_COOKIE_NAME];
+  if (previewSession) {
+    return {
+      Cookie: `${PREVIEW_SESSION_COOKIE_NAME}=${previewSession}`
+    };
+  }
+  const appSession = cookies[APP_SESSION_COOKIE_NAME];
+  if (appSession) {
+    return { Authorization: `Bearer ${appSession}` };
+  }
+  throw new Error(
+    "No authentication method available for connection proxy. Expected one of: INTERNAL_SQUADBASE_OAUTH_MACHINE_CREDENTIAL env var, preview session cookie, or app session cookie."
+  );
+}
+function connection(connectionId) {
+  return {
+    async fetch(url, options) {
+      const proxyUrl = resolveProxyUrl(connectionId);
+      const authHeaders = resolveAuthHeaders();
+      return await fetch(proxyUrl, {
+        method: "POST",
+        headers: {
+          "Content-Type": "application/json",
+          ...authHeaders
+        },
+        body: JSON.stringify({
+          url,
+          method: options?.method,
+          headers: options?.headers,
+          body: options?.body,
+          timeoutMs: options?.timeoutMs
+        })
+      });
+    }
+  };
+}
+
+// src/connector-client/bigquery-oauth.ts
+var MAX_RESULTS = 1e4;
+var POLL_INTERVAL_MS = 1e3;
+var POLL_TIMEOUT_MS = 12e4;
+function flattenRows(fields, rows) {
+  return rows.map((row) => {
+    const obj = {};
+    for (let i = 0; i < fields.length; i++) {
+      obj[fields[i].name] = row.f[i].v;
+    }
+    return obj;
+  });
+}
+function createBigQueryOAuthClient(entry, connectionId) {
+  const projectId = resolveEnvVar(entry, "project-id", connectionId);
+  const baseUrl = `https://bigquery.googleapis.com/bigquery/v2/projects/${projectId}`;
+  return {
+    async query(sql) {
+      const conn = connection(connectionId);
+      const res = await conn.fetch(`${baseUrl}/queries`, {
+        method: "POST",
+        body: {
+          query: sql,
+          useLegacySql: false,
+          maxResults: MAX_RESULTS
+        }
+      });
+      if (!res.ok) {
+        const text = await res.text().catch(() => res.statusText);
+        throw new Error(`BigQuery query failed: HTTP ${res.status} ${text}`);
+      }
+      let data = await res.json();
+      if (data.errors?.length) {
+        throw new Error(
+          `BigQuery query error: ${data.errors.map((e) => e.message).join("; ")}`
+        );
+      }
+      if (!data.jobComplete) {
+        const jobId = data.jobReference.jobId;
+        const location = data.jobReference.location;
+        const deadline = Date.now() + POLL_TIMEOUT_MS;
+        while (!data.jobComplete) {
+          if (Date.now() > deadline) {
+            throw new Error(
+              `BigQuery query timed out after ${POLL_TIMEOUT_MS / 1e3}s (jobId: ${jobId})`
+            );
+          }
+          await new Promise((r) => setTimeout(r, POLL_INTERVAL_MS));
+          const params = new URLSearchParams({
+            maxResults: String(MAX_RESULTS)
+          });
+          if (location) params.set("location", location);
+          const pollRes = await conn.fetch(
+            `${baseUrl}/queries/${jobId}?${params}`,
+            { method: "GET" }
+          );
+          if (!pollRes.ok) {
+            const text = await pollRes.text().catch(() => pollRes.statusText);
+            throw new Error(
+              `BigQuery poll failed: HTTP ${pollRes.status} ${text}`
+            );
+          }
+          data = await pollRes.json();
+          if (data.errors?.length) {
+            throw new Error(
+              `BigQuery query error: ${data.errors.map((e) => e.message).join("; ")}`
+            );
+          }
+        }
+      }
+      const fields = data.schema?.fields ?? [];
+      const rawRows = data.rows ?? [];
+      return { rows: flattenRows(fields, rawRows) };
+    }
+  };
+}
+
 // src/connector-client/snowflake.ts
 function createSnowflakeClient(entry, connectionId) {
   const accountIdentifier = resolveEnvVar(entry, "account", connectionId);
@@ -310,6 +456,9 @@ function createConnectorRegistry() {
       return { client: createSnowflakeClient(entry, connectionId), connectorSlug };
     }
     if (connectorSlug === "bigquery") {
+      if (entry.connector.authType === "oauth") {
+        return { client: createBigQueryOAuthClient(entry, connectionId), connectorSlug };
+      }
       return { client: createBigQueryClient(entry, connectionId), connectorSlug };
     }
     if (connectorSlug === "athena") {
@@ -973,10 +1122,6 @@ app4.get("/runtime-data", (c) => {
 });
 var pages_default = app4;
 
-// src/connection.ts
-import { getContext } from "hono/context-storage";
-import { getCookie } from "hono/cookie";
-
 // src/index.ts
 var apiApp = new Hono5();
 apiApp.use("/*", contextStorage());

package/dist/vite-plugin.js

@@ -70,6 +70,152 @@ function createBigQueryClient(entry, connectionId) {
   };
 }
 
+// src/connection.ts
+import { getContext } from "hono/context-storage";
+import { getCookie } from "hono/cookie";
+var APP_SESSION_COOKIE_NAME = "__Host-squadbase-session";
+var PREVIEW_SESSION_COOKIE_NAME = "squadbase-preview-session";
+var APP_BASE_DOMAIN = "squadbase.app";
+var PREVIEW_BASE_DOMAIN = "preview.app.squadbase.dev";
+var SANDBOX_ID_ENV_NAME = "INTERNAL_SQUADBASE_SANDBOX_ID";
+var MACHINE_CREDENTIAL_ENV_NAME = "INTERNAL_SQUADBASE_OAUTH_MACHINE_CREDENTIAL";
+function resolveProxyUrl(connectionId) {
+  const connectionPath = `/_sqcore/connections/${connectionId}/request`;
+  const sandboxId = process.env[SANDBOX_ID_ENV_NAME];
+  if (sandboxId) {
+    const baseDomain2 = process.env["SQUADBASE_PREVIEW_BASE_DOMAIN"] ?? PREVIEW_BASE_DOMAIN;
+    return `https://${sandboxId}.${baseDomain2}${connectionPath}`;
+  }
+  const projectId = process.env["SQUADBASE_PROJECT_ID"];
+  if (!projectId) {
+    throw new Error(
+      "Project ID is required. Please set SQUADBASE_PROJECT_ID environment variable."
+    );
+  }
+  const baseDomain = process.env["SQUADBASE_APP_BASE_DOMAIN"] ?? APP_BASE_DOMAIN;
+  return `https://${projectId}.${baseDomain}${connectionPath}`;
+}
+function resolveAuthHeaders() {
+  const machineCredential = process.env[MACHINE_CREDENTIAL_ENV_NAME];
+  if (machineCredential) {
+    return { Authorization: `Bearer ${machineCredential}` };
+  }
+  const c = getContext();
+  const cookies = getCookie(c);
+  const previewSession = cookies[PREVIEW_SESSION_COOKIE_NAME];
+  if (previewSession) {
+    return {
+      Cookie: `${PREVIEW_SESSION_COOKIE_NAME}=${previewSession}`
+    };
+  }
+  const appSession = cookies[APP_SESSION_COOKIE_NAME];
+  if (appSession) {
+    return { Authorization: `Bearer ${appSession}` };
+  }
+  throw new Error(
+    "No authentication method available for connection proxy. Expected one of: INTERNAL_SQUADBASE_OAUTH_MACHINE_CREDENTIAL env var, preview session cookie, or app session cookie."
+  );
+}
+function connection(connectionId) {
+  return {
+    async fetch(url, options) {
+      const proxyUrl = resolveProxyUrl(connectionId);
+      const authHeaders = resolveAuthHeaders();
+      return await fetch(proxyUrl, {
+        method: "POST",
+        headers: {
+          "Content-Type": "application/json",
+          ...authHeaders
+        },
+        body: JSON.stringify({
+          url,
+          method: options?.method,
+          headers: options?.headers,
+          body: options?.body,
+          timeoutMs: options?.timeoutMs
+        })
+      });
+    }
+  };
+}
+
+// src/connector-client/bigquery-oauth.ts
+var MAX_RESULTS = 1e4;
+var POLL_INTERVAL_MS = 1e3;
+var POLL_TIMEOUT_MS = 12e4;
+function flattenRows(fields, rows) {
+  return rows.map((row) => {
+    const obj = {};
+    for (let i = 0; i < fields.length; i++) {
+      obj[fields[i].name] = row.f[i].v;
+    }
+    return obj;
+  });
+}
+function createBigQueryOAuthClient(entry, connectionId) {
+  const projectId = resolveEnvVar(entry, "project-id", connectionId);
+  const baseUrl = `https://bigquery.googleapis.com/bigquery/v2/projects/${projectId}`;
+  return {
+    async query(sql) {
+      const conn = connection(connectionId);
+      const res = await conn.fetch(`${baseUrl}/queries`, {
+        method: "POST",
+        body: {
+          query: sql,
+          useLegacySql: false,
+          maxResults: MAX_RESULTS
+        }
+      });
+      if (!res.ok) {
+        const text = await res.text().catch(() => res.statusText);
+        throw new Error(`BigQuery query failed: HTTP ${res.status} ${text}`);
+      }
+      let data = await res.json();
+      if (data.errors?.length) {
+        throw new Error(
+          `BigQuery query error: ${data.errors.map((e) => e.message).join("; ")}`
+        );
+      }
+      if (!data.jobComplete) {
+        const jobId = data.jobReference.jobId;
+        const location = data.jobReference.location;
+        const deadline = Date.now() + POLL_TIMEOUT_MS;
+        while (!data.jobComplete) {
+          if (Date.now() > deadline) {
+            throw new Error(
+              `BigQuery query timed out after ${POLL_TIMEOUT_MS / 1e3}s (jobId: ${jobId})`
+            );
+          }
+          await new Promise((r) => setTimeout(r, POLL_INTERVAL_MS));
+          const params = new URLSearchParams({
+            maxResults: String(MAX_RESULTS)
+          });
+          if (location) params.set("location", location);
+          const pollRes = await conn.fetch(
+            `${baseUrl}/queries/${jobId}?${params}`,
+            { method: "GET" }
+          );
+          if (!pollRes.ok) {
+            const text = await pollRes.text().catch(() => pollRes.statusText);
+            throw new Error(
+              `BigQuery poll failed: HTTP ${pollRes.status} ${text}`
+            );
+          }
+          data = await pollRes.json();
+          if (data.errors?.length) {
+            throw new Error(
+              `BigQuery query error: ${data.errors.map((e) => e.message).join("; ")}`
+            );
+          }
+        }
+      }
+      const fields = data.schema?.fields ?? [];
+      const rawRows = data.rows ?? [];
+      return { rows: flattenRows(fields, rawRows) };
+    }
+  };
+}
+
 // src/connector-client/snowflake.ts
 function createSnowflakeClient(entry, connectionId) {
   const accountIdentifier = resolveEnvVar(entry, "account", connectionId);
@@ -82,7 +228,7 @@ function createSnowflakeClient(entry, connectionId) {
     async query(sql) {
       const snowflake = (await import("snowflake-sdk")).default;
       snowflake.configure({ logLevel: "ERROR" });
-      const connection = snowflake.createConnection({
+      const connection2 = snowflake.createConnection({
         account: accountIdentifier,
         username: user,
         role,
@@ -91,13 +237,13 @@ function createSnowflakeClient(entry, connectionId) {
         privateKey
       });
       await new Promise((resolve, reject) => {
-        connection.connect((err) => {
+        connection2.connect((err) => {
           if (err) reject(new Error(`Snowflake connect failed: ${err.message}`));
           else resolve();
         });
       });
       const rows = await new Promise((resolve, reject) => {
-        connection.execute({
+        connection2.execute({
           sqlText: sql,
           complete: (err, _stmt, rows2) => {
             if (err) reject(new Error(`Snowflake query failed: ${err.message}`));
@@ -105,7 +251,7 @@ function createSnowflakeClient(entry, connectionId) {
           }
         });
       });
-      connection.destroy((err) => {
+      connection2.destroy((err) => {
         if (err) console.warn(`[connector-client] Snowflake destroy error: ${err.message}`);
       });
       return { rows };
@@ -311,6 +457,9 @@ function createConnectorRegistry() {
       return { client: createSnowflakeClient(entry, connectionId), connectorSlug };
     }
     if (connectorSlug === "bigquery") {
+      if (entry.connector.authType === "oauth") {
+        return { client: createBigQueryOAuthClient(entry, connectionId), connectorSlug };
+      }
       return { client: createBigQueryClient(entry, connectionId), connectorSlug };
     }
     if (connectorSlug === "athena") {

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "@squadbase/vite-server",
-  "version": "0.0.1-build-11",
+  "version": "0.0.1-build-12",
   "type": "module",
   "exports": {
     ".": {