@squadbase/vite-server 0.1.11-dev.0c78963 → 0.1.12-dev.8860f37

package/dist/connectors/tableau.js

@@ -0,0 +1,879 @@
+// ../connectors/src/parameter-definition.ts
+var ParameterDefinition = class {
+  slug;
+  name;
+  description;
+  envVarBaseKey;
+  type;
+  secret;
+  required;
+  constructor(config) {
+    this.slug = config.slug;
+    this.name = config.name;
+    this.description = config.description;
+    this.envVarBaseKey = config.envVarBaseKey;
+    this.type = config.type;
+    this.secret = config.secret;
+    this.required = config.required;
+  }
+  /**
+   * Get the parameter value from a ConnectorConnectionObject.
+   */
+  getValue(connection2) {
+    const param = connection2.parameters.find(
+      (p) => p.parameterSlug === this.slug
+    );
+    if (!param || param.value == null) {
+      throw new Error(
+        `Parameter "${this.slug}" not found or has no value in connection "${connection2.id}"`
+      );
+    }
+    return param.value;
+  }
+  /**
+   * Try to get the parameter value. Returns undefined if not found (for optional params).
+   */
+  tryGetValue(connection2) {
+    const param = connection2.parameters.find(
+      (p) => p.parameterSlug === this.slug
+    );
+    if (!param || param.value == null) return void 0;
+    return param.value;
+  }
+};
+
+// ../connectors/src/connectors/tableau/parameters.ts
+var parameters = {
+  serverUrl: new ParameterDefinition({
+    slug: "server-url",
+    name: "Tableau Server URL",
+    description: "Base URL of your Tableau Cloud / Server instance (no trailing slash). Examples: https://us-east-1.online.tableau.com, https://prod-useast-a.online.tableau.com, https://tableau.example.com.",
+    envVarBaseKey: "TABLEAU_SERVER_URL",
+    type: "text",
+    secret: false,
+    required: true
+  }),
+  siteContentUrl: new ParameterDefinition({
+    slug: "site-content-url",
+    name: "Site Content URL",
+    description: "The site's content URL (the value after '/site/' in the Tableau URL). On Tableau Cloud this is required (e.g. 'mycompany'). On Tableau Server the Default site uses an empty string \u2014 pass an empty string explicitly.",
+    envVarBaseKey: "TABLEAU_SITE_CONTENT_URL",
+    type: "text",
+    secret: false,
+    required: true
+  }),
+  patName: new ParameterDefinition({
+    slug: "pat-name",
+    name: "Personal Access Token Name",
+    description: "Name of the Personal Access Token (PAT) generated under Account Settings > Personal Access Tokens. The owning user's site role determines the API permissions.",
+    envVarBaseKey: "TABLEAU_PAT_NAME",
+    type: "text",
+    secret: false,
+    required: true
+  }),
+  patSecret: new ParameterDefinition({
+    slug: "pat-secret",
+    name: "Personal Access Token Secret",
+    description: "Secret value shown once when the PAT is created. Tokens expire after 15 days of inactivity (default) and must be rotated regularly.",
+    envVarBaseKey: "TABLEAU_PAT_SECRET",
+    type: "text",
+    secret: true,
+    required: true
+  }),
+  apiVersion: new ParameterDefinition({
+    slug: "api-version",
+    name: "REST API Version",
+    description: "Optional Tableau REST API version (e.g., '3.28'). Defaults to '3.28' which works with current Tableau Cloud and recent Tableau Server releases. Use the version listed at https://help.tableau.com/current/api/rest_api/en-us/REST/rest_api_concepts_versions.htm if you need to pin.",
+    envVarBaseKey: "TABLEAU_API_VERSION",
+    type: "text",
+    secret: false,
+    required: false
+  })
+};
+
+// ../connectors/src/connectors/tableau/sdk/index.ts
+var DEFAULT_API_VERSION = "3.28";
+function createClient(params) {
+  const serverUrl = params[parameters.serverUrl.slug];
+  const siteContentUrl = params[parameters.siteContentUrl.slug];
+  const patName = params[parameters.patName.slug];
+  const patSecret = params[parameters.patSecret.slug];
+  const apiVersion = params[parameters.apiVersion.slug] || DEFAULT_API_VERSION;
+  if (!serverUrl || siteContentUrl == null || !patName || !patSecret) {
+    throw new Error(
+      `tableau: missing required parameters: ${parameters.serverUrl.slug}, ${parameters.siteContentUrl.slug}, ${parameters.patName.slug}, ${parameters.patSecret.slug}`
+    );
+  }
+  const baseUrl = `${serverUrl.replace(/\/$/, "")}/api/${apiVersion}`;
+  let session = null;
+  async function signIn2() {
+    const res = await fetch(`${baseUrl}/auth/signin`, {
+      method: "POST",
+      headers: {
+        "Content-Type": "application/json",
+        Accept: "application/json"
+      },
+      body: JSON.stringify({
+        credentials: {
+          personalAccessTokenName: patName,
+          personalAccessTokenSecret: patSecret,
+          site: { contentUrl: siteContentUrl }
+        }
+      })
+    });
+    if (!res.ok) {
+      const body = await res.text();
+      throw new Error(`tableau: sign-in failed (${res.status}): ${body}`);
+    }
+    const data = await res.json();
+    return {
+      authToken: data.credentials.token,
+      siteId: data.credentials.site.id,
+      userId: data.credentials.user.id,
+      expiresAt: Date.now() + 30 * 60 * 1e3
+    };
+  }
+  async function ensureSession() {
+    if (session && session.expiresAt > Date.now() + 6e4) {
+      return session;
+    }
+    session = await signIn2();
+    return session;
+  }
+  async function request(path2, init) {
+    const s = await ensureSession();
+    const resolvedPath = path2.replace(/\{siteId\}/g, s.siteId).replace(/^([^/])/, "/$1");
+    const url = `${baseUrl}${resolvedPath}`;
+    const headers = new Headers(init?.headers);
+    headers.set("X-Tableau-Auth", s.authToken);
+    if (!headers.has("Accept")) headers.set("Accept", "application/json");
+    if (!headers.has("Content-Type") && init?.body) {
+      headers.set("Content-Type", "application/json");
+    }
+    return fetch(url, { ...init, headers });
+  }
+  async function getJson(path2) {
+    const res = await request(path2);
+    if (!res.ok) {
+      const body = await res.text();
+      throw new Error(`tableau: GET ${path2} failed (${res.status}): ${body}`);
+    }
+    return await res.json();
+  }
+  function buildListQuery(options) {
+    const qs = new URLSearchParams();
+    if (options?.pageSize != null) qs.set("pageSize", String(options.pageSize));
+    if (options?.pageNumber != null)
+      qs.set("pageNumber", String(options.pageNumber));
+    if (options?.filter) qs.set("filter", options.filter);
+    if (options?.sort) qs.set("sort", options.sort);
+    const query = qs.toString();
+    return query ? `?${query}` : "";
+  }
+  return {
+    request,
+    async getSession() {
+      const s = await ensureSession();
+      return { authToken: s.authToken, siteId: s.siteId, userId: s.userId };
+    },
+    async listProjects(options) {
+      return getJson(
+        `/sites/{siteId}/projects${buildListQuery(options)}`
+      );
+    },
+    async listWorkbooks(options) {
+      return getJson(
+        `/sites/{siteId}/workbooks${buildListQuery(options)}`
+      );
+    },
+    async listViewsForWorkbook(workbookId) {
+      return getJson(
+        `/sites/{siteId}/workbooks/${encodeURIComponent(workbookId)}/views`
+      );
+    },
+    async listDatasources(options) {
+      return getJson(
+        `/sites/{siteId}/datasources${buildListQuery(options)}`
+      );
+    },
+    async getViewData(viewId) {
+      const res = await request(
+        `/sites/{siteId}/views/${encodeURIComponent(viewId)}/data`,
+        { headers: { Accept: "*/*" } }
+      );
+      if (!res.ok) {
+        const body = await res.text();
+        throw new Error(
+          `tableau: getViewData failed (${res.status}): ${body}`
+        );
+      }
+      return res.text();
+    }
+  };
+}
+
+// ../connectors/src/connector-onboarding.ts
+var ConnectorOnboarding = class {
+  /** Phase 1: Connection setup instructions (optional — some connectors don't need this) */
+  connectionSetupInstructions;
+  /** Phase 2: Data overview instructions */
+  dataOverviewInstructions;
+  constructor(config) {
+    this.connectionSetupInstructions = config.connectionSetupInstructions;
+    this.dataOverviewInstructions = config.dataOverviewInstructions;
+  }
+  getConnectionSetupPrompt(language) {
+    return this.connectionSetupInstructions?.[language] ?? null;
+  }
+  getDataOverviewInstructions(language) {
+    return this.dataOverviewInstructions[language];
+  }
+};
+
+// ../connectors/src/connector-tool.ts
+var ConnectorTool = class {
+  name;
+  description;
+  inputSchema;
+  outputSchema;
+  _execute;
+  constructor(config) {
+    this.name = config.name;
+    this.description = config.description;
+    this.inputSchema = config.inputSchema;
+    this.outputSchema = config.outputSchema;
+    this._execute = config.execute;
+  }
+  createTool(connections, config) {
+    return {
+      description: this.description,
+      inputSchema: this.inputSchema,
+      outputSchema: this.outputSchema,
+      execute: (input) => this._execute(input, connections, config)
+    };
+  }
+};
+
+// ../connectors/src/connector-plugin.ts
+var ConnectorPlugin = class _ConnectorPlugin {
+  slug;
+  authType;
+  name;
+  description;
+  iconUrl;
+  parameters;
+  releaseFlag;
+  proxyPolicy;
+  experimentalAttributes;
+  categories;
+  onboarding;
+  systemPrompt;
+  tools;
+  query;
+  checkConnection;
+  constructor(config) {
+    this.slug = config.slug;
+    this.authType = config.authType;
+    this.name = config.name;
+    this.description = config.description;
+    this.iconUrl = config.iconUrl;
+    this.parameters = config.parameters;
+    this.releaseFlag = config.releaseFlag;
+    this.proxyPolicy = config.proxyPolicy;
+    this.experimentalAttributes = config.experimentalAttributes;
+    this.categories = config.categories ?? [];
+    this.onboarding = config.onboarding;
+    this.systemPrompt = config.systemPrompt;
+    this.tools = config.tools;
+    this.query = config.query;
+    this.checkConnection = config.checkConnection;
+  }
+  get connectorKey() {
+    return _ConnectorPlugin.deriveKey(this.slug, this.authType);
+  }
+  /**
+   * Create tools for connections that belong to this connector.
+   * Filters connections by connectorKey internally.
+   * Returns tools keyed as `${connectorKey}_${toolName}`.
+   */
+  createTools(connections, config, opts) {
+    const myConnections = connections.filter(
+      (c) => _ConnectorPlugin.deriveKey(c.connector.slug, c.connector.authType) === this.connectorKey
+    );
+    const result = {};
+    for (const t of Object.values(this.tools)) {
+      const tool = t.createTool(myConnections, config);
+      const originalToModelOutput = tool.toModelOutput;
+      result[`${this.connectorKey}_${t.name}`] = {
+        ...tool,
+        toModelOutput: async (options) => {
+          if (!originalToModelOutput) {
+            return opts.truncateOutput(options.output);
+          }
+          const modelOutput = await originalToModelOutput(options);
+          if (modelOutput.type === "text" || modelOutput.type === "json") {
+            return opts.truncateOutput(modelOutput.value);
+          }
+          return modelOutput;
+        }
+      };
+    }
+    return result;
+  }
+  static deriveKey(slug, authType) {
+    if (authType) return `${slug}-${authType}`;
+    const LEGACY_NULL_AUTH_TYPE_MAP = {
+      // user-password
+      "postgresql": "user-password",
+      "mysql": "user-password",
+      "clickhouse": "user-password",
+      "kintone": "user-password",
+      "squadbase-db": "user-password",
+      // service-account
+      "snowflake": "service-account",
+      "bigquery": "service-account",
+      "google-analytics": "service-account",
+      "google-calendar": "service-account",
+      "aws-athena": "service-account",
+      "redshift": "service-account",
+      // api-key
+      "databricks": "api-key",
+      "dbt": "api-key",
+      "airtable": "api-key",
+      "openai": "api-key",
+      "gemini": "api-key",
+      "anthropic": "api-key",
+      "wix-store": "api-key"
+    };
+    const fallbackAuthType = LEGACY_NULL_AUTH_TYPE_MAP[slug];
+    if (fallbackAuthType) return `${slug}-${fallbackAuthType}`;
+    return slug;
+  }
+};
+
+// ../connectors/src/auth-types.ts
+var AUTH_TYPES = {
+  OAUTH: "oauth",
+  API_KEY: "api-key",
+  JWT: "jwt",
+  SERVICE_ACCOUNT: "service-account",
+  PAT: "pat",
+  USER_PASSWORD: "user-password"
+};
+
+// ../connectors/src/connectors/tableau/setup.ts
+var tableauOnboarding = new ConnectorOnboarding({
+  connectionSetupInstructions: {
+    en: `Follow these steps to verify the Tableau PAT connection.
+
+1. Call \`tableau_request\` with \`method: "GET"\` and \`path: "/sites/{siteId}/projects?pageSize=5"\` to list a few projects on the signed-in site
+2. If the call fails with HTTP 401, ask the user to confirm the PAT name/secret and that the Site Content URL matches the site where the PAT was issued (Tableau Cloud sites are case-sensitive)
+
+#### Constraints
+- **Do NOT mutate Tableau resources during setup** (no publish/update/delete). Only the project listing above is allowed
+- The literal placeholder \`{siteId}\` in the path is automatically replaced with the session's site ID \u2014 do NOT hardcode the ID`,
+    ja: `Tableau PAT \u30B3\u30CD\u30AF\u30B7\u30E7\u30F3\u306E\u30BB\u30C3\u30C8\u30A2\u30C3\u30D7\u306F\u4EE5\u4E0B\u306E\u624B\u9806\u3067\u884C\u3063\u3066\u304F\u3060\u3055\u3044\u3002
+
+1. \`tableau_request\` \u3092 \`method: "GET"\`\u3001\`path: "/sites/{siteId}/projects?pageSize=5"\` \u3067\u547C\u3073\u51FA\u3057\u3001\u30B5\u30A4\u30F3\u30A4\u30F3\u5148\u30B5\u30A4\u30C8\u306E\u30D7\u30ED\u30B8\u30A7\u30AF\u30C8\u3092\u3044\u304F\u3064\u304B\u53D6\u5F97\u3059\u308B
+2. HTTP 401 \u3067\u5931\u6557\u3057\u305F\u5834\u5408\u306F\u3001PAT \u540D/\u30B7\u30FC\u30AF\u30EC\u30C3\u30C8\u304A\u3088\u3073 Site Content URL \u304C PAT \u767A\u884C\u30B5\u30A4\u30C8\u3068\u4E00\u81F4\u3057\u3066\u3044\u308B\u304B\u3092\u30E6\u30FC\u30B6\u30FC\u306B\u78BA\u8A8D\u3059\u308B\u3088\u3046\u4F1D\u3048\u308B\uFF08Tableau Cloud \u306E\u30B5\u30A4\u30C8\u540D\u306F\u5927\u6587\u5B57\u5C0F\u6587\u5B57\u3092\u533A\u5225\uFF09
+
+#### \u5236\u7D04
+- **\u30BB\u30C3\u30C8\u30A2\u30C3\u30D7\u4E2D\u306B Tableau \u30EA\u30BD\u30FC\u30B9\u3092\u5909\u66F4\u3057\u306A\u3044\u3053\u3068**\uFF08publish/update/delete \u4E0D\u53EF\uFF09\u3002\u4E0A\u8A18\u306E\u30D7\u30ED\u30B8\u30A7\u30AF\u30C8\u4E00\u89A7\u53D6\u5F97\u306E\u307F\u8A31\u53EF
+- \u30D1\u30B9\u5185\u306E\u30D7\u30EC\u30FC\u30B9\u30DB\u30EB\u30C0\u30FC \`{siteId}\` \u306F\u30BB\u30C3\u30B7\u30E7\u30F3\u306E\u30B5\u30A4\u30C8 ID \u3067\u81EA\u52D5\u7F6E\u63DB\u3055\u308C\u307E\u3059 \u2014 ID \u3092\u30CF\u30FC\u30C9\u30B3\u30FC\u30C9\u3057\u306A\u3044\u3053\u3068`
+  },
+  dataOverviewInstructions: {
+    en: `1. Call tableau_request with GET /sites/{siteId}/projects to list projects
+2. Call tableau_request with GET /sites/{siteId}/workbooks?pageSize=20 to list workbooks
+3. For a target workbook, call tableau_request with GET /sites/{siteId}/workbooks/{workbookId}/views to list its views
+4. Call tableau_request with GET /sites/{siteId}/datasources?pageSize=20 to list published data sources`,
+    ja: `1. tableau_request \u3067 GET /sites/{siteId}/projects \u3092\u547C\u3073\u51FA\u3057\u3001\u30D7\u30ED\u30B8\u30A7\u30AF\u30C8\u4E00\u89A7\u3092\u53D6\u5F97
+2. tableau_request \u3067 GET /sites/{siteId}/workbooks?pageSize=20 \u3092\u547C\u3073\u51FA\u3057\u3001\u30EF\u30FC\u30AF\u30D6\u30C3\u30AF\u4E00\u89A7\u3092\u53D6\u5F97
+3. \u5BFE\u8C61\u30EF\u30FC\u30AF\u30D6\u30C3\u30AF\u306B\u3064\u3044\u3066 tableau_request \u3067 GET /sites/{siteId}/workbooks/{workbookId}/views \u3092\u547C\u3073\u51FA\u3057\u3001\u30D3\u30E5\u30FC\u4E00\u89A7\u3092\u53D6\u5F97
+4. tableau_request \u3067 GET /sites/{siteId}/datasources?pageSize=20 \u3092\u547C\u3073\u51FA\u3057\u3001\u516C\u958B\u30C7\u30FC\u30BF\u30BD\u30FC\u30B9\u4E00\u89A7\u3092\u53D6\u5F97`
+  }
+});
+
+// ../connectors/src/connectors/tableau/tools/request.ts
+import { z } from "zod";
+var DEFAULT_API_VERSION2 = "3.28";
+var REQUEST_TIMEOUT_MS = 6e4;
+var sessionCache = /* @__PURE__ */ new Map();
+function buildBaseUrl(serverUrl, apiVersion) {
+  return `${serverUrl.replace(/\/$/, "")}/api/${apiVersion}`;
+}
+async function signIn(serverUrl, apiVersion, siteContentUrl, patName, patSecret) {
+  const url = `${buildBaseUrl(serverUrl, apiVersion)}/auth/signin`;
+  const body = {
+    credentials: {
+      personalAccessTokenName: patName,
+      personalAccessTokenSecret: patSecret,
+      site: { contentUrl: siteContentUrl }
+    }
+  };
+  const res = await fetch(url, {
+    method: "POST",
+    headers: {
+      "Content-Type": "application/json",
+      Accept: "application/json"
+    },
+    body: JSON.stringify(body)
+  });
+  if (!res.ok) {
+    const errorText = await res.text().catch(() => res.statusText);
+    throw new Error(
+      `Tableau sign-in failed: HTTP ${res.status} ${errorText}`
+    );
+  }
+  const data = await res.json();
+  return {
+    authToken: data.credentials.token,
+    siteId: data.credentials.site.id,
+    userId: data.credentials.user.id,
+    expiresAt: Date.now() + 30 * 60 * 1e3
+  };
+}
+async function getSession(serverUrl, apiVersion, siteContentUrl, patName, patSecret) {
+  const cacheKey = `${serverUrl}|${siteContentUrl}|${patName}`;
+  const cached = sessionCache.get(cacheKey);
+  if (cached && cached.expiresAt > Date.now() + 6e4) {
+    return cached;
+  }
+  const session = await signIn(
+    serverUrl,
+    apiVersion,
+    siteContentUrl,
+    patName,
+    patSecret
+  );
+  sessionCache.set(cacheKey, session);
+  return session;
+}
+var inputSchema = z.object({
+  toolUseIntent: z.string().optional().describe(
+    "Brief description of what you intend to accomplish with this tool call"
+  ),
+  connectionId: z.string().describe("ID of the Tableau connection to use"),
+  method: z.enum(["GET", "POST", "PUT", "DELETE"]).describe(
+    "HTTP method. GET for listing/reading, POST for creating, PUT for updates, DELETE for removal."
+  ),
+  path: z.string().describe(
+    "API path appended to {serverUrl}/api/{apiVersion} (e.g., '/sites/{siteId}/projects', '/sites/{siteId}/workbooks/{workbookId}', '/sites/{siteId}/views/{viewId}/data'). The {siteId} placeholder is automatically replaced with the signed-in site ID."
+  ),
+  queryParams: z.record(z.string(), z.string()).optional().describe(
+    "Query parameters to append (e.g., { pageSize: '100', filter: 'name:eq:Sales' }). Tableau supports field filtering via 'fields' and sorting via 'sort'."
+  ),
+  body: z.record(z.string(), z.unknown()).optional().describe(
+    "JSON request body for POST/PUT (Tableau also accepts XML, but JSON is recommended with Accept: application/json)."
+  )
+});
+var outputSchema = z.discriminatedUnion("success", [
+  z.object({
+    success: z.literal(true),
+    status: z.number(),
+    data: z.unknown()
+  }),
+  z.object({
+    success: z.literal(false),
+    error: z.string()
+  })
+]);
+var requestTool = new ConnectorTool({
+  name: "request",
+  description: `Send authenticated requests to the Tableau REST API.
+The tool signs in once with the configured Personal Access Token (PAT) to obtain an X-Tableau-Auth token (cached per connection), then forwards the request with the token attached.
+All paths are relative to {serverUrl}/api/{apiVersion}. Use the literal placeholder \`{siteId}\` in the path \u2014 it is automatically substituted with the site ID returned from sign-in.
+Accept and Content-Type headers default to application/json so list responses come back as JSON instead of Tableau's default XML.`,
+  inputSchema,
+  outputSchema,
+  async execute({ connectionId, method, path: path2, queryParams, body }, connections) {
+    const connection2 = connections.find((c) => c.id === connectionId);
+    if (!connection2) {
+      return {
+        success: false,
+        error: `Connection ${connectionId} not found`
+      };
+    }
+    console.log(
+      `[connector-request] tableau/${connection2.name}: ${method} ${path2}`
+    );
+    try {
+      const serverUrl = parameters.serverUrl.getValue(connection2);
+      const siteContentUrl = parameters.siteContentUrl.getValue(connection2);
+      const patName = parameters.patName.getValue(connection2);
+      const patSecret = parameters.patSecret.getValue(connection2);
+      const apiVersion = parameters.apiVersion.tryGetValue(connection2) || DEFAULT_API_VERSION2;
+      const session = await getSession(
+        serverUrl,
+        apiVersion,
+        siteContentUrl,
+        patName,
+        patSecret
+      );
+      const resolvedPath = path2.trim().replace(/\{siteId\}/g, session.siteId).replace(/^([^/])/, "/$1");
+      let url = `${buildBaseUrl(serverUrl, apiVersion)}${resolvedPath}`;
+      if (queryParams) {
+        const searchParams = new URLSearchParams(queryParams);
+        url += `?${searchParams.toString()}`;
+      }
+      const controller = new AbortController();
+      const timeout = setTimeout(() => controller.abort(), REQUEST_TIMEOUT_MS);
+      try {
+        const init = {
+          method,
+          headers: {
+            "X-Tableau-Auth": session.authToken,
+            Accept: "application/json",
+            "Content-Type": "application/json"
+          },
+          signal: controller.signal
+        };
+        if (body !== void 0) {
+          init.body = JSON.stringify(body);
+        }
+        const response = await fetch(url, init);
+        const text = await response.text();
+        const data = text ? (() => {
+          try {
+            return JSON.parse(text);
+          } catch {
+            return text;
+          }
+        })() : null;
+        if (!response.ok) {
+          const errorMessage = data && typeof data === "object" && "error" in data ? JSON.stringify(data.error) : typeof data === "string" && data ? data : `HTTP ${response.status} ${response.statusText}`;
+          return { success: false, error: errorMessage };
+        }
+        return { success: true, status: response.status, data };
+      } finally {
+        clearTimeout(timeout);
+      }
+    } catch (err) {
+      const msg = err instanceof Error ? err.message : String(err);
+      return { success: false, error: msg };
+    }
+  }
+});
+
+// ../connectors/src/connectors/tableau/index.ts
+var tools = { request: requestTool };
+var tableauConnector = new ConnectorPlugin({
+  slug: "tableau",
+  authType: AUTH_TYPES.PAT,
+  name: "Tableau",
+  description: "Connect to Tableau Cloud or Tableau Server via a Personal Access Token (PAT). Use it to enumerate projects, workbooks, views, and data sources, and to pull view data.",
+  iconUrl: "https://upload.wikimedia.org/wikipedia/commons/4/4b/Tableau_Logo.png",
+  parameters,
+  releaseFlag: { dev1: true, dev2: false, prod: false },
+  categories: ["other"],
+  onboarding: tableauOnboarding,
+  systemPrompt: {
+    en: `### Tools
+
+- \`tableau_request\`: The only way to call the Tableau REST API. Use it for projects, workbooks, views, data sources, users, and permissions. The tool signs in once with the configured PAT to obtain an \`X-Tableau-Auth\` token (cached), then forwards each request with the token attached. Use the literal \`{siteId}\` placeholder in the path \u2014 it is replaced with the session's site ID automatically.
+
+### Business Logic
+
+The business logic type for this connector is "typescript". Use the connector SDK in your handler. Do NOT read credentials from environment variables.
+
+SDK methods (client created via \`connection(connectionId)\`):
+- \`client.request(path, init?)\` \u2014 low-level authenticated fetch (path is appended to \`{serverUrl}/api/{apiVersion}\`; \`{siteId}\` is substituted)
+- \`client.getSession()\` \u2014 sign in (if needed) and return \`{ authToken, siteId, userId }\`
+- \`client.listProjects(options?)\` / \`client.listWorkbooks(options?)\` / \`client.listDatasources(options?)\`
+- \`client.listViewsForWorkbook(workbookId)\`
+- \`client.getViewData(viewId)\` \u2014 returns the view's underlying data as CSV text
+
+\`\`\`ts
+import type { Context } from "hono";
+import { connection } from "@squadbase/vite-server/connectors/tableau";
+
+const tableau = connection("<connectionId>");
+
+export default async function handler(c: Context) {
+  const { pageSize = 20 } = await c.req.json<{ pageSize?: number }>();
+  const { workbooks, pagination } = await tableau.listWorkbooks({ pageSize });
+  return c.json({
+    workbooks: workbooks.workbook,
+    totalAvailable: Number(pagination.totalAvailable),
+  });
+}
+\`\`\`
+
+### Tableau REST API Reference
+
+- Base URL: \`{serverUrl}/api/{apiVersion}\` (default version 3.28; see https://help.tableau.com/current/api/rest_api/en-us/REST/rest_api_concepts_versions.htm)
+- Authentication: Sign-in with a PAT returns \`X-Tableau-Auth\` token, site ID, and user ID. Sessions expire after ~240 minutes idle on Tableau Cloud
+- Response format: JSON when \`Accept: application/json\` is sent (default); otherwise Tableau returns XML
+- Pagination: \`?pageSize=&pageNumber=\` query params with \`pagination\` object in response
+
+#### Common Endpoints
+- POST \`/auth/signin\` \u2014 sign in (handled automatically)
+- POST \`/auth/signout\` \u2014 sign out
+- GET \`/sites/{siteId}/projects\` \u2014 list projects
+- GET \`/sites/{siteId}/workbooks\` \u2014 list workbooks (supports \`filter\`, \`sort\`)
+- GET \`/sites/{siteId}/workbooks/{workbookId}\` \u2014 get a workbook
+- GET \`/sites/{siteId}/workbooks/{workbookId}/views\` \u2014 list views in a workbook
+- GET \`/sites/{siteId}/views/{viewId}/data\` \u2014 get view data as CSV
+- GET \`/sites/{siteId}/views/{viewId}/image\` \u2014 get view as PNG
+- GET \`/sites/{siteId}/views/{viewId}/pdf\` \u2014 get view as PDF
+- GET \`/sites/{siteId}/datasources\` \u2014 list published data sources
+- GET \`/sites/{siteId}/users\` \u2014 list users
+- GET \`/sites/{siteId}/groups\` \u2014 list groups
+
+#### Filter Syntax
+- \`filter=name:eq:Sales\` \u2014 exact match
+- \`filter=name:in:[Sales,Marketing]\` \u2014 set membership
+- \`filter=updatedAt:gte:2024-01-01T00:00:00Z\` \u2014 comparison operators (gt/gte/lt/lte)
+- Combine: \`filter=ownerName:eq:alice,tags:in:[finance]\``,
+    ja: `### \u30C4\u30FC\u30EB
+
+- \`tableau_request\`: Tableau REST API \u3092\u547C\u3073\u51FA\u3059\u552F\u4E00\u306E\u624B\u6BB5\u3067\u3059\u3002\u30D7\u30ED\u30B8\u30A7\u30AF\u30C8\u3001\u30EF\u30FC\u30AF\u30D6\u30C3\u30AF\u3001\u30D3\u30E5\u30FC\u3001\u30C7\u30FC\u30BF\u30BD\u30FC\u30B9\u3001\u30E6\u30FC\u30B6\u30FC\u3001\u6A29\u9650\u306A\u3069\u306B\u4F7F\u7528\u3057\u307E\u3059\u3002\u8A2D\u5B9A\u3055\u308C\u305F PAT \u3067\u4E00\u5EA6\u30B5\u30A4\u30F3\u30A4\u30F3\u3057\u3066 \`X-Tableau-Auth\` \u30C8\u30FC\u30AF\u30F3\u3092\u53D6\u5F97 (\u30AD\u30E3\u30C3\u30B7\u30E5) \u3057\u3001\u5404\u30EA\u30AF\u30A8\u30B9\u30C8\u306B\u305D\u306E\u30C8\u30FC\u30AF\u30F3\u3092\u4ED8\u3051\u3066\u9001\u4FE1\u3057\u307E\u3059\u3002\u30D1\u30B9\u5185\u306B\u306F \`{siteId}\` \u30D7\u30EC\u30FC\u30B9\u30DB\u30EB\u30C0\u30FC\u3092\u4F7F\u3063\u3066\u304F\u3060\u3055\u3044 \u2014 \u30BB\u30C3\u30B7\u30E7\u30F3\u306E\u30B5\u30A4\u30C8 ID \u3067\u81EA\u52D5\u7F6E\u63DB\u3055\u308C\u307E\u3059\u3002
+
+### Business Logic
+
+\u3053\u306E\u30B3\u30CD\u30AF\u30BF\u306E\u30D3\u30B8\u30CD\u30B9\u30ED\u30B8\u30C3\u30AF\u30BF\u30A4\u30D7\u306F "typescript" \u3067\u3059\u3002\u30CF\u30F3\u30C9\u30E9\u5185\u3067\u306F\u30B3\u30CD\u30AF\u30BF SDK \u3092\u4F7F\u7528\u3057\u3066\u304F\u3060\u3055\u3044\u3002\u74B0\u5883\u5909\u6570\u304B\u3089\u8A8D\u8A3C\u60C5\u5831\u3092\u8AAD\u307F\u53D6\u3089\u306A\u3044\u3067\u304F\u3060\u3055\u3044\u3002
+
+SDK \u30E1\u30BD\u30C3\u30C9 (\`connection(connectionId)\` \u3067\u4F5C\u6210\u3057\u305F\u30AF\u30E9\u30A4\u30A2\u30F3\u30C8):
+- \`client.request(path, init?)\` \u2014 \u4F4E\u30EC\u30D9\u30EB\u8A8D\u8A3C\u4ED8\u304D fetch (path \u306F \`{serverUrl}/api/{apiVersion}\` \u306B\u8FFD\u52A0\u3055\u308C\u3001\`{siteId}\` \u306F\u7F6E\u63DB\u3055\u308C\u307E\u3059)
+- \`client.getSession()\` \u2014 \u30B5\u30A4\u30F3\u30A4\u30F3 (\u5FC5\u8981\u306A\u3089) \u3057\u3066 \`{ authToken, siteId, userId }\` \u3092\u8FD4\u3059
+- \`client.listProjects(options?)\` / \`client.listWorkbooks(options?)\` / \`client.listDatasources(options?)\`
+- \`client.listViewsForWorkbook(workbookId)\`
+- \`client.getViewData(viewId)\` \u2014 \u30D3\u30E5\u30FC\u306E\u30C7\u30FC\u30BF\u3092 CSV \u30C6\u30AD\u30B9\u30C8\u3067\u8FD4\u3059
+
+\`\`\`ts
+import type { Context } from "hono";
+import { connection } from "@squadbase/vite-server/connectors/tableau";
+
+const tableau = connection("<connectionId>");
+
+export default async function handler(c: Context) {
+  const { pageSize = 20 } = await c.req.json<{ pageSize?: number }>();
+  const { workbooks, pagination } = await tableau.listWorkbooks({ pageSize });
+  return c.json({
+    workbooks: workbooks.workbook,
+    totalAvailable: Number(pagination.totalAvailable),
+  });
+}
+\`\`\`
+
+### Tableau REST API \u30EA\u30D5\u30A1\u30EC\u30F3\u30B9
+
+- \u30D9\u30FC\u30B9 URL: \`{serverUrl}/api/{apiVersion}\` (\u30C7\u30D5\u30A9\u30EB\u30C8\u30D0\u30FC\u30B8\u30E7\u30F3 3.28; https://help.tableau.com/current/api/rest_api/en-us/REST/rest_api_concepts_versions.htm)
+- \u8A8D\u8A3C: PAT \u3067\u30B5\u30A4\u30F3\u30A4\u30F3\u3059\u308B\u3068 \`X-Tableau-Auth\` \u30C8\u30FC\u30AF\u30F3\u3001\u30B5\u30A4\u30C8 ID\u3001\u30E6\u30FC\u30B6\u30FC ID \u304C\u8FD4\u3055\u308C\u308B\u3002Tableau Cloud \u3067\u306F\u7D04 240 \u5206\u306E\u30A2\u30A4\u30C9\u30EB\u3067\u30BB\u30C3\u30B7\u30E7\u30F3\u5931\u52B9
+- \u30EC\u30B9\u30DD\u30F3\u30B9\u5F62\u5F0F: \`Accept: application/json\` \u3092\u9001\u308B\u3068 JSON (\u30C7\u30D5\u30A9\u30EB\u30C8)\u3002\u9001\u3089\u306A\u3044\u5834\u5408\u306F XML
+- \u30DA\u30FC\u30B8\u30CD\u30FC\u30B7\u30E7\u30F3: \`?pageSize=&pageNumber=\` \u30AF\u30A8\u30EA\u3002\u30EC\u30B9\u30DD\u30F3\u30B9\u306B \`pagination\` \u30AA\u30D6\u30B8\u30A7\u30AF\u30C8
+
+#### \u4E3B\u8981\u30A8\u30F3\u30C9\u30DD\u30A4\u30F3\u30C8
+- POST \`/auth/signin\` \u2014 \u30B5\u30A4\u30F3\u30A4\u30F3 (\u81EA\u52D5\u51E6\u7406)
+- POST \`/auth/signout\` \u2014 \u30B5\u30A4\u30F3\u30A2\u30A6\u30C8
+- GET \`/sites/{siteId}/projects\` \u2014 \u30D7\u30ED\u30B8\u30A7\u30AF\u30C8\u4E00\u89A7
+- GET \`/sites/{siteId}/workbooks\` \u2014 \u30EF\u30FC\u30AF\u30D6\u30C3\u30AF\u4E00\u89A7 (\`filter\`, \`sort\` \u5BFE\u5FDC)
+- GET \`/sites/{siteId}/workbooks/{workbookId}\` \u2014 \u30EF\u30FC\u30AF\u30D6\u30C3\u30AF\u53D6\u5F97
+- GET \`/sites/{siteId}/workbooks/{workbookId}/views\` \u2014 \u30EF\u30FC\u30AF\u30D6\u30C3\u30AF\u5185\u306E\u30D3\u30E5\u30FC\u4E00\u89A7
+- GET \`/sites/{siteId}/views/{viewId}/data\` \u2014 \u30D3\u30E5\u30FC\u30C7\u30FC\u30BF\u3092 CSV \u3067\u53D6\u5F97
+- GET \`/sites/{siteId}/views/{viewId}/image\` \u2014 \u30D3\u30E5\u30FC\u3092 PNG \u3067\u53D6\u5F97
+- GET \`/sites/{siteId}/views/{viewId}/pdf\` \u2014 \u30D3\u30E5\u30FC\u3092 PDF \u3067\u53D6\u5F97
+- GET \`/sites/{siteId}/datasources\` \u2014 \u516C\u958B\u30C7\u30FC\u30BF\u30BD\u30FC\u30B9\u4E00\u89A7
+- GET \`/sites/{siteId}/users\` \u2014 \u30E6\u30FC\u30B6\u30FC\u4E00\u89A7
+- GET \`/sites/{siteId}/groups\` \u2014 \u30B0\u30EB\u30FC\u30D7\u4E00\u89A7
+
+#### \u30D5\u30A3\u30EB\u30BF\u69CB\u6587
+- \`filter=name:eq:Sales\` \u2014 \u5B8C\u5168\u4E00\u81F4
+- \`filter=name:in:[Sales,Marketing]\` \u2014 \u96C6\u5408\u306B\u542B\u307E\u308C\u308B
+- \`filter=updatedAt:gte:2024-01-01T00:00:00Z\` \u2014 \u6BD4\u8F03\u6F14\u7B97\u5B50 (gt/gte/lt/lte)
+- \u7D44\u307F\u5408\u308F\u305B: \`filter=ownerName:eq:alice,tags:in:[finance]\``
+  },
+  tools,
+  async checkConnection(params) {
+    const serverUrl = params[parameters.serverUrl.slug];
+    const siteContentUrl = params[parameters.siteContentUrl.slug];
+    const patName = params[parameters.patName.slug];
+    const patSecret = params[parameters.patSecret.slug];
+    const apiVersion = params[parameters.apiVersion.slug] || "3.28";
+    if (!serverUrl || siteContentUrl == null || !patName || !patSecret) {
+      return {
+        success: false,
+        error: "Missing required parameters: server-url, site-content-url, pat-name, pat-secret"
+      };
+    }
+    try {
+      const res = await fetch(
+        `${serverUrl.replace(/\/$/, "")}/api/${apiVersion}/auth/signin`,
+        {
+          method: "POST",
+          headers: {
+            "Content-Type": "application/json",
+            Accept: "application/json"
+          },
+          body: JSON.stringify({
+            credentials: {
+              personalAccessTokenName: patName,
+              personalAccessTokenSecret: patSecret,
+              site: { contentUrl: siteContentUrl }
+            }
+          })
+        }
+      );
+      if (!res.ok) {
+        const errorText = await res.text().catch(() => res.statusText);
+        return {
+          success: false,
+          error: `Tableau sign-in failed: HTTP ${res.status} ${errorText}`
+        };
+      }
+      return { success: true };
+    } catch (error) {
+      return {
+        success: false,
+        error: error instanceof Error ? error.message : String(error)
+      };
+    }
+  }
+});
+
+// src/connectors/create-connector-sdk.ts
+import { readFileSync } from "fs";
+import path from "path";
+
+// src/connector-client/env.ts
+function resolveEnvVar(entry, key, connectionId) {
+  const envVarName = entry.envVars[key];
+  if (!envVarName) {
+    throw new Error(`Connection "${connectionId}" is missing envVars mapping for key "${key}"`);
+  }
+  const value = process.env[envVarName];
+  if (!value) {
+    throw new Error(`Environment variable "${envVarName}" (for connection "${connectionId}", key "${key}") is not set`);
+  }
+  return value;
+}
+function resolveEnvVarOptional(entry, key) {
+  const envVarName = entry.envVars[key];
+  if (!envVarName) return void 0;
+  return process.env[envVarName] || void 0;
+}
+
+// src/connector-client/proxy-fetch.ts
+import { getContext } from "hono/context-storage";
+import { getCookie } from "hono/cookie";
+var APP_SESSION_COOKIE_NAME = "__Host-squadbase-session";
+function normalizeHeaders(input) {
+  const out = {};
+  if (!input) return out;
+  new Headers(input).forEach((value, key) => {
+    out[key] = value;
+  });
+  return out;
+}
+function createSandboxProxyFetch(connectionId) {
+  return async (input, init) => {
+    const token = process.env.INTERNAL_SQUADBASE_OAUTH_MACHINE_CREDENTIAL;
+    const sandboxId = process.env.INTERNAL_SQUADBASE_SANDBOX_ID;
+    if (!token || !sandboxId) {
+      throw new Error(
+        "Connection proxy is not configured. Please check your deployment settings."
+      );
+    }
+    const originalUrl = typeof input === "string" ? input : input instanceof URL ? input.href : input.url;
+    const originalMethod = init?.method ?? "GET";
+    const originalBody = init?.body ? JSON.parse(init.body) : void 0;
+    const baseDomain = process.env["SQUADBASE_PREVIEW_BASE_DOMAIN"] ?? "preview.app.squadbase.dev";
+    const proxyUrl = `https://${sandboxId}.${baseDomain}/_sqcore/connections/${connectionId}/request`;
+    return fetch(proxyUrl, {
+      method: "POST",
+      headers: {
+        "Content-Type": "application/json",
+        Authorization: `Bearer ${token}`
+      },
+      body: JSON.stringify({
+        url: originalUrl,
+        method: originalMethod,
+        headers: normalizeHeaders(init?.headers),
+        body: originalBody
+      })
+    });
+  };
+}
+function createDeployedAppProxyFetch(connectionId) {
+  const projectId = process.env["SQUADBASE_PROJECT_ID"];
+  if (!projectId) {
+    throw new Error(
+      "Connection proxy is not configured. Please check your deployment settings."
+    );
+  }
+  const baseDomain = process.env["SQUADBASE_APP_BASE_DOMAIN"] ?? "squadbase.app";
+  const proxyUrl = `https://${projectId}.${baseDomain}/_sqcore/connections/${connectionId}/request`;
+  return async (input, init) => {
+    const originalUrl = typeof input === "string" ? input : input instanceof URL ? input.href : input.url;
+    const originalMethod = init?.method ?? "GET";
+    const originalBody = init?.body ? JSON.parse(init.body) : void 0;
+    const c = getContext();
+    const appSession = getCookie(c, APP_SESSION_COOKIE_NAME);
+    if (!appSession) {
+      throw new Error(
+        "No authentication method available for connection proxy."
+      );
+    }
+    return fetch(proxyUrl, {
+      method: "POST",
+      headers: {
+        "Content-Type": "application/json",
+        Authorization: `Bearer ${appSession}`
+      },
+      body: JSON.stringify({
+        url: originalUrl,
+        method: originalMethod,
+        headers: normalizeHeaders(init?.headers),
+        body: originalBody
+      })
+    });
+  };
+}
+function createProxyFetch(connectionId) {
+  if (process.env.INTERNAL_SQUADBASE_SANDBOX_ID) {
+    return createSandboxProxyFetch(connectionId);
+  }
+  return createDeployedAppProxyFetch(connectionId);
+}
+
+// src/connectors/create-connector-sdk.ts
+function loadConnectionsSync() {
+  const filePath = process.env.CONNECTIONS_PATH ?? path.join(process.cwd(), ".squadbase/connections.json");
+  try {
+    const raw = readFileSync(filePath, "utf-8");
+    return JSON.parse(raw);
+  } catch {
+    return {};
+  }
+}
+function createConnectorSdk(plugin, createClient2) {
+  return (connectionId) => {
+    const connections = loadConnectionsSync();
+    const entry = connections[connectionId];
+    if (!entry) {
+      throw new Error(
+        `Connection "${connectionId}" not found in .squadbase/connections.json`
+      );
+    }
+    if (entry.connector.slug !== plugin.slug) {
+      throw new Error(
+        `Connection "${connectionId}" is not a ${plugin.slug} connection (got "${entry.connector.slug}")`
+      );
+    }
+    const params = {};
+    for (const param of Object.values(plugin.parameters)) {
+      if (param.required) {
+        params[param.slug] = resolveEnvVar(entry, param.slug, connectionId);
+      } else {
+        const val = resolveEnvVarOptional(entry, param.slug);
+        if (val !== void 0) params[param.slug] = val;
+      }
+    }
+    return createClient2(params, createProxyFetch(connectionId));
+  };
+}
+
+// src/connectors/entries/tableau.ts
+var connection = createConnectorSdk(tableauConnector, createClient);
+export {
+  connection
+};