@squadbase/vite-server 0.1.12-dev.a9ac647 → 0.1.17-dev.3b633bb

package/dist/connectors/semrush.js

@@ -1,48 +1,60 @@
+var __getOwnPropNames = Object.getOwnPropertyNames;
+var __esm = (fn, res) => function __init() {
+  return fn && (res = (0, fn[__getOwnPropNames(fn)[0]])(fn = 0)), res;
+};
+
 // ../connectors/src/parameter-definition.ts
-var ParameterDefinition = class {
-  slug;
-  name;
-  description;
-  envVarBaseKey;
-  type;
-  secret;
-  required;
-  constructor(config) {
-    this.slug = config.slug;
-    this.name = config.name;
-    this.description = config.description;
-    this.envVarBaseKey = config.envVarBaseKey;
-    this.type = config.type;
-    this.secret = config.secret;
-    this.required = config.required;
-  }
-  /**
-   * Get the parameter value from a ConnectorConnectionObject.
-   */
-  getValue(connection2) {
-    const param = connection2.parameters.find(
-      (p) => p.parameterSlug === this.slug
-    );
-    if (!param || param.value == null) {
-      throw new Error(
-        `Parameter "${this.slug}" not found or has no value in connection "${connection2.id}"`
-      );
-    }
-    return param.value;
-  }
-  /**
-   * Try to get the parameter value. Returns undefined if not found (for optional params).
-   */
-  tryGetValue(connection2) {
-    const param = connection2.parameters.find(
-      (p) => p.parameterSlug === this.slug
-    );
-    if (!param || param.value == null) return void 0;
-    return param.value;
+var ParameterDefinition;
+var init_parameter_definition = __esm({
+  "../connectors/src/parameter-definition.ts"() {
+    "use strict";
+    ParameterDefinition = class {
+      slug;
+      name;
+      description;
+      envVarBaseKey;
+      type;
+      secret;
+      required;
+      constructor(config) {
+        this.slug = config.slug;
+        this.name = config.name;
+        this.description = config.description;
+        this.envVarBaseKey = config.envVarBaseKey;
+        this.type = config.type;
+        this.secret = config.secret;
+        this.required = config.required;
+      }
+      /**
+       * Get the parameter value from a ConnectorConnectionObject.
+       */
+      getValue(connection2) {
+        const param = connection2.parameters.find(
+          (p) => p.parameterSlug === this.slug
+        );
+        if (!param || param.value == null) {
+          throw new Error(
+            `Parameter "${this.slug}" not found or has no value in connection "${connection2.id}"`
+          );
+        }
+        return param.value;
+      }
+      /**
+       * Try to get the parameter value. Returns undefined if not found (for optional params).
+       */
+      tryGetValue(connection2) {
+        const param = connection2.parameters.find(
+          (p) => p.parameterSlug === this.slug
+        );
+        if (!param || param.value == null) return void 0;
+        return param.value;
+      }
+    };
   }
-};
+});
 
 // ../connectors/src/connectors/semrush/parameters.ts
+init_parameter_definition();
 var parameters = {
   apiKey: new ParameterDefinition({
     slug: "api-key",
@@ -236,6 +248,28 @@ var ConnectorPlugin = class _ConnectorPlugin {
   tools;
   query;
   checkConnection;
+  /**
+   * SQPD-1212: Logic-based, rule-driven connection setup. Connectors that
+   * implement this expose a step-by-step exploration flow (database/schema/
+   * table/etc. discovery) that the dashboard backend drives via the
+   * `/connections/:connectionId/setup` endpoint. Implement by delegating to
+   * `runSetupFlow` from `setup-flow.ts`.
+   */
+  setup;
+  /**
+   * Opt-out of the default "verify before save" behavior on connection
+   * creation. The backend invokes `checkConnection` synchronously while
+   * creating the connection and aborts (no row inserted) if it fails — this
+   * flag disables that for connectors where the check cannot succeed pre-save:
+   *
+   *   - `squadbase-db` populates `connection-url` only after Neon provisioning
+   *   - OAuth connectors require an OAuth-aware proxyFetch keyed by the
+   *     connectionId, which doesn't exist until the row is saved
+   *
+   * Exceptions are the explicit position; new credential-input connectors get
+   * the default verify-on-create behavior without opt-in.
+   */
+  skipConnectionCheckOnCreate;
   constructor(config) {
     this.slug = config.slug;
     this.authType = config.authType;
@@ -252,6 +286,8 @@ var ConnectorPlugin = class _ConnectorPlugin {
     this.tools = config.tools;
     this.query = config.query;
     this.checkConnection = config.checkConnection;
+    this.setup = config.setup;
+    this.skipConnectionCheckOnCreate = config.skipConnectionCheckOnCreate;
   }
   get connectorKey() {
     return _ConnectorPlugin.deriveKey(this.slug, this.authType);
@@ -316,6 +352,76 @@ var ConnectorPlugin = class _ConnectorPlugin {
   }
 };
 
+// ../connectors/src/setup-flow.ts
+async function runSetupFlow(flow, params, ctx, config) {
+  const runtime = {
+    params,
+    language: ctx.language,
+    config
+  };
+  let state = flow.initialState();
+  let answerIdx = 0;
+  const pendingParameterUpdates = [];
+  for (const step of flow.steps) {
+    const ans = ctx.answers[answerIdx];
+    if (ans && ans.questionSlug === step.slug) {
+      state = step.applyAnswer(state, ans.answer);
+      if (step.toParameterUpdates) {
+        pendingParameterUpdates.push(...step.toParameterUpdates(state));
+      }
+      answerIdx += 1;
+      continue;
+    }
+    const resolvedAllowFreeText = step.allowFreeText !== void 0 ? step.allowFreeText : true;
+    if (step.type === "text") {
+      if (step.fetchOptions) {
+        const options2 = await step.fetchOptions(state, runtime);
+        if (options2.length === 0) {
+          continue;
+        }
+      }
+      return {
+        type: "nextQuestion",
+        questionSlug: step.slug,
+        question: step.question[ctx.language],
+        questionType: "text",
+        allowFreeText: resolvedAllowFreeText,
+        ...pendingParameterUpdates.length > 0 && {
+          parameterUpdates: pendingParameterUpdates
+        }
+      };
+    }
+    const options = step.fetchOptions ? await step.fetchOptions(state, runtime) : [];
+    if (options.length === 0) {
+      continue;
+    }
+    return {
+      type: "nextQuestion",
+      questionSlug: step.slug,
+      question: step.question[ctx.language],
+      questionType: step.type,
+      options,
+      allowFreeText: resolvedAllowFreeText,
+      ...pendingParameterUpdates.length > 0 && {
+        parameterUpdates: pendingParameterUpdates
+      }
+    };
+  }
+  const dataInvestigationResult = await flow.finalize(state, runtime);
+  return {
+    type: "fulfilled",
+    dataInvestigationResult,
+    ...pendingParameterUpdates.length > 0 && {
+      parameterUpdates: pendingParameterUpdates
+    }
+  };
+}
+async function resolveSetupSelection(params) {
+  const { selected, allSentinel, fetchAll, limit } = params;
+  const resolved = selected.includes(allSentinel) ? await fetchAll() : selected.filter((v) => v !== allSentinel);
+  return resolved.slice(0, limit);
+}
+
 // ../connectors/src/auth-types.ts
 var AUTH_TYPES = {
   OAUTH: "oauth",
@@ -511,6 +617,439 @@ var semrushOnboarding = new ConnectorOnboarding({
   }
 });
 
+// ../connectors/src/connectors/semrush/utils.ts
+var BASE_URL3 = "https://api.semrush.com";
+var PROJECTS_BASE_URL = `${BASE_URL3}/management/v1`;
+function projectsApiFetch(params, path2, init) {
+  const apiKey = params[parameters.apiKey.slug];
+  if (!apiKey) {
+    throw new Error(
+      `semrush: missing required parameter: ${parameters.apiKey.slug}`
+    );
+  }
+  const trimmedPath = path2.startsWith("/") ? path2 : `/${path2}`;
+  const url = new URL(`${PROJECTS_BASE_URL}${trimmedPath}`);
+  if (!url.searchParams.has("key")) {
+    url.searchParams.set("key", apiKey);
+  }
+  const headers = new Headers(init?.headers);
+  if (!headers.has("Accept")) headers.set("Accept", "application/json");
+  return fetch(url.toString(), { ...init, headers });
+}
+async function reportFetch(params, query) {
+  const apiKey = params[parameters.apiKey.slug];
+  if (!apiKey) {
+    throw new Error(
+      `semrush: missing required parameter: ${parameters.apiKey.slug}`
+    );
+  }
+  const url = new URL(`${BASE_URL3}/`);
+  for (const [k, v] of Object.entries(query)) {
+    url.searchParams.set(k, v);
+  }
+  url.searchParams.set("key", apiKey);
+  const res = await fetch(url.toString());
+  const text = await res.text();
+  if (text.startsWith("ERROR ")) throw new Error(text.trim());
+  return parseSemicolonCsv(text);
+}
+async function backlinksFetch(params, query) {
+  const apiKey = params[parameters.apiKey.slug];
+  if (!apiKey) {
+    throw new Error(
+      `semrush: missing required parameter: ${parameters.apiKey.slug}`
+    );
+  }
+  const url = new URL(`${BASE_URL3}/analytics/v1/`);
+  for (const [k, v] of Object.entries(query)) {
+    url.searchParams.set(k, v);
+  }
+  url.searchParams.set("key", apiKey);
+  const res = await fetch(url.toString());
+  const text = await res.text();
+  if (text.startsWith("ERROR ")) throw new Error(text.trim());
+  return parseSemicolonCsv(text);
+}
+function parseSemicolonCsv(raw) {
+  const lines = raw.trim().split("\n").filter(Boolean);
+  if (lines.length === 0) return { columns: [], rows: [] };
+  const columns = lines[0].split(";");
+  const rows = lines.slice(1).map((line) => {
+    const values = line.split(";");
+    const row = {};
+    for (let i = 0; i < columns.length; i++) {
+      row[columns[i]] = values[i] ?? "";
+    }
+    return row;
+  });
+  return { columns, rows };
+}
+
+// ../connectors/src/connectors/semrush/setup-flow.ts
+var ALL_PROJECTS = "__ALL_PROJECTS__";
+var SEMRUSH_SETUP_MAX_PROJECTS = 10;
+var SEMRUSH_DATABASES = [
+  { value: "us", label: "United States" },
+  { value: "uk", label: "United Kingdom" },
+  { value: "ca", label: "Canada" },
+  { value: "au", label: "Australia" },
+  { value: "de", label: "Germany" },
+  { value: "fr", label: "France" },
+  { value: "es", label: "Spain" },
+  { value: "it", label: "Italy" },
+  { value: "br", label: "Brazil" },
+  { value: "jp", label: "Japan" },
+  { value: "in", label: "India" },
+  { value: "ru", label: "Russia" },
+  { value: "nl", label: "Netherlands" },
+  { value: "se", label: "Sweden" },
+  { value: "mx", label: "Mexico" },
+  { value: "kr", label: "South Korea" },
+  { value: "sg", label: "Singapore" },
+  { value: "hk", label: "Hong Kong" },
+  { value: "tw", label: "Taiwan" }
+];
+var REPORT_TYPE_LABELS = {
+  domain_overview: {
+    en: "Domain Overview (rank, traffic, keyword count)",
+    ja: "Domain Overview (\u30E9\u30F3\u30AF\u30FB\u30C8\u30E9\u30D5\u30A3\u30C3\u30AF\u30FB\u30AD\u30FC\u30EF\u30FC\u30C9\u6570)"
+  },
+  organic_search: {
+    en: "Organic Search (top organic keywords)",
+    ja: "Organic Search (\u4E0A\u4F4D\u30AA\u30FC\u30AC\u30CB\u30C3\u30AF\u30AD\u30FC\u30EF\u30FC\u30C9)"
+  },
+  paid_search: {
+    en: "Paid Search (top paid keywords)",
+    ja: "Paid Search (\u4E0A\u4F4D\u6709\u6599\u30AD\u30FC\u30EF\u30FC\u30C9)"
+  },
+  backlinks: {
+    en: "Backlinks (referring domains, backlink count)",
+    ja: "Backlinks (\u53C2\u7167\u30C9\u30E1\u30A4\u30F3\u30FB\u88AB\u30EA\u30F3\u30AF\u6570)"
+  }
+};
+var REPORT_TYPE_VALUES = [
+  "domain_overview",
+  "organic_search",
+  "paid_search",
+  "backlinks"
+];
+function projectId(p) {
+  const raw = p.project_id ?? p.id;
+  return raw == null ? "" : String(raw);
+}
+function projectName(p) {
+  return p.project_name ?? p.name ?? p.domain ?? p.url ?? projectId(p);
+}
+function projectDomain(p) {
+  return p.domain ?? p.domain_unicode ?? p.url ?? "";
+}
+function projectCreatedAt(p) {
+  return p.created_at ?? p.date_created ?? "";
+}
+async function fetchProjects(params) {
+  let res;
+  try {
+    res = await projectsApiFetch(params, "/projects");
+  } catch (err) {
+    return {
+      ok: false,
+      error: err instanceof Error ? err.message : String(err)
+    };
+  }
+  if (!res.ok) {
+    const body2 = await res.text().catch(() => res.statusText);
+    return {
+      ok: false,
+      error: `HTTP ${res.status} ${body2 || res.statusText}`
+    };
+  }
+  let body;
+  try {
+    body = await res.json();
+  } catch (err) {
+    return {
+      ok: false,
+      error: err instanceof Error ? err.message : String(err)
+    };
+  }
+  const projects = Array.isArray(body) ? body : Array.isArray(body?.projects) ? body.projects : Array.isArray(body?.data) ? body.data : [];
+  return { ok: true, projects };
+}
+function formatNumber(n) {
+  return n.toLocaleString("en-US");
+}
+async function fetchDomainOverview(params, domain, database) {
+  const sections = [];
+  try {
+    const report = await reportFetch(params, {
+      type: "domain_ranks",
+      domain,
+      database
+    });
+    if (report.rows.length === 0) {
+      sections.push("_No data found for this domain._", "");
+      return sections;
+    }
+    const row = report.rows[0];
+    sections.push("| Metric | Value |");
+    sections.push("|--------|-------|");
+    sections.push(
+      `| Rank | ${row["Rank"] ?? "-"} |`,
+      `| Organic Keywords | ${formatNumber(Number(row["Organic Keywords"]) || 0)} |`,
+      `| Organic Traffic | ${formatNumber(Number(row["Organic Traffic"]) || 0)} |`,
+      `| Organic Cost | $${formatNumber(Number(row["Organic Cost"]) || 0)} |`,
+      `| Adwords Keywords | ${formatNumber(Number(row["Adwords Keywords"]) || 0)} |`,
+      `| Adwords Traffic | ${formatNumber(Number(row["Adwords Traffic"]) || 0)} |`,
+      `| Adwords Cost | $${formatNumber(Number(row["Adwords Cost"]) || 0)} |`
+    );
+    sections.push("");
+  } catch (err) {
+    sections.push(
+      `_Error: ${err instanceof Error ? err.message : String(err)}_`,
+      ""
+    );
+  }
+  return sections;
+}
+async function fetchOrganicSearch(params, domain, database) {
+  return fetchKeywordReport(params, "domain_organic", domain, database);
+}
+async function fetchPaidSearch(params, domain, database) {
+  return fetchKeywordReport(params, "domain_adwords", domain, database);
+}
+async function fetchKeywordReport(params, type, domain, database) {
+  const sections = [];
+  try {
+    const report = await reportFetch(params, {
+      type,
+      domain,
+      database,
+      display_limit: "5"
+    });
+    if (report.rows.length === 0) {
+      sections.push("_No data found._", "");
+      return sections;
+    }
+    sections.push(...renderCsvTable(report, 5));
+    sections.push("");
+  } catch (err) {
+    sections.push(
+      `_Error: ${err instanceof Error ? err.message : String(err)}_`,
+      ""
+    );
+  }
+  return sections;
+}
+async function fetchBacklinks(params, domain) {
+  const sections = [];
+  try {
+    const report = await backlinksFetch(params, {
+      type: "backlinks_overview",
+      target: domain,
+      target_type: "root_domain"
+    });
+    if (report.rows.length === 0) {
+      sections.push("_No backlink data found._", "");
+      return sections;
+    }
+    const row = report.rows[0];
+    sections.push("| Metric | Value |");
+    sections.push("|--------|-------|");
+    for (const col of report.columns) {
+      sections.push(`| ${col} | ${formatNumber(Number(row[col]) || 0)} |`);
+    }
+    sections.push("");
+  } catch (err) {
+    sections.push(
+      `_Error: ${err instanceof Error ? err.message : String(err)}_`,
+      ""
+    );
+  }
+  return sections;
+}
+function renderCsvTable(report, maxRows) {
+  const cols = report.columns;
+  const rows = report.rows.slice(0, maxRows);
+  const lines = [];
+  lines.push(`| ${cols.join(" | ")} |`);
+  lines.push(`|${cols.map(() => "---").join("|")}|`);
+  for (const row of rows) {
+    const cells = cols.map((c) => (row[c] ?? "").replace(/\|/g, "\\|"));
+    lines.push(`| ${cells.join(" | ")} |`);
+  }
+  return lines;
+}
+var semrushSetupFlow = {
+  initialState: () => ({}),
+  steps: [
+    {
+      slug: "domain",
+      type: "select",
+      allowFreeText: true,
+      question: {
+        ja: "\u5206\u6790\u5BFE\u8C61\u306E\u30C9\u30E1\u30A4\u30F3\u3092\u9078\u629E\u307E\u305F\u306F\u5165\u529B\u3057\u3066\u304F\u3060\u3055\u3044",
+        en: "Select or enter the domain to analyze"
+      },
+      async fetchOptions(_state, rt) {
+        const result = await fetchProjects(rt.params);
+        if (!result.ok || result.projects.length === 0) return [];
+        const seen = /* @__PURE__ */ new Set();
+        const options = [];
+        for (const p of result.projects) {
+          const d = projectDomain(p);
+          if (d && !seen.has(d)) {
+            seen.add(d);
+            options.push({
+              value: d,
+              label: `${d} (${projectName(p)})`
+            });
+          }
+        }
+        return options;
+      },
+      applyAnswer: (state, answer) => ({ ...state, domain: answer[0] })
+    },
+    {
+      slug: "database",
+      type: "select",
+      allowFreeText: false,
+      question: {
+        ja: "\u30EA\u30FC\u30B8\u30E7\u30F3\u3092\u9078\u629E\u3057\u3066\u304F\u3060\u3055\u3044\uFF08\u5BFE\u8C61\u30C9\u30E1\u30A4\u30F3\u306E\u4E3B\u8981\u5E02\u5834\uFF09",
+        en: "Select the region (primary market for the target domain)"
+      },
+      async fetchOptions() {
+        return SEMRUSH_DATABASES.map((db) => ({
+          value: db.value,
+          label: `${db.label} (${db.value})`
+        }));
+      },
+      applyAnswer: (state, answer) => ({ ...state, database: answer[0] })
+    },
+    {
+      slug: "reportTypes",
+      type: "multiSelect",
+      question: {
+        ja: "\u63A2\u7D22\u3059\u308B\u30EC\u30DD\u30FC\u30C8\u7A2E\u5225\u3092\u9078\u3093\u3067\u304F\u3060\u3055\u3044\uFF08\u8907\u6570\u9078\u629E\u53EF\uFF09",
+        en: "Select report types to explore (multi-select allowed)"
+      },
+      async fetchOptions(_state, rt) {
+        return REPORT_TYPE_VALUES.map((value) => ({
+          value,
+          label: REPORT_TYPE_LABELS[value][rt.language]
+        }));
+      },
+      applyAnswer: (state, answer) => ({ ...state, reportTypes: answer })
+    },
+    {
+      slug: "projects",
+      type: "multiSelect",
+      question: {
+        ja: "\u5BFE\u8C61\u306E Semrush \u30D7\u30ED\u30B8\u30A7\u30AF\u30C8\u3092\u9078\u3093\u3067\u304F\u3060\u3055\u3044\uFF08\u8907\u6570\u9078\u629E\u53EF\uFF09",
+        en: "Select target Semrush projects (multi-select allowed)"
+      },
+      async fetchOptions(_state, rt) {
+        const result = await fetchProjects(rt.params);
+        if (!result.ok || result.projects.length === 0) {
+          return [];
+        }
+        const options = result.projects.map((p) => {
+          const id = projectId(p);
+          if (!id) return null;
+          return { value: id, label: projectName(p) };
+        }).filter(
+          (opt) => opt !== null
+        );
+        if (options.length === 0) return [];
+        return [
+          {
+            value: ALL_PROJECTS,
+            label: rt.language === "ja" ? "\u3059\u3079\u3066\u306E\u30D7\u30ED\u30B8\u30A7\u30AF\u30C8" : "All projects"
+          },
+          ...options
+        ];
+      },
+      applyAnswer: (state, answer) => ({ ...state, projects: answer })
+    }
+  ],
+  async finalize(state, rt) {
+    if (!state.domain || !state.database || !state.reportTypes) {
+      throw new Error("Semrush setup: incomplete state on finalize");
+    }
+    const domain = state.domain;
+    const database = state.database;
+    const selected = state.reportTypes.filter(
+      (r) => REPORT_TYPE_VALUES.includes(r)
+    );
+    const sections = [
+      "## Semrush",
+      "",
+      `**Domain:** ${domain}`,
+      `**Region:** ${database}`,
+      ""
+    ];
+    for (const reportType of selected) {
+      sections.push(
+        `### ${REPORT_TYPE_LABELS[reportType].en}`,
+        ""
+      );
+      switch (reportType) {
+        case "domain_overview":
+          sections.push(
+            ...await fetchDomainOverview(rt.params, domain, database)
+          );
+          break;
+        case "organic_search":
+          sections.push(
+            ...await fetchOrganicSearch(rt.params, domain, database)
+          );
+          break;
+        case "paid_search":
+          sections.push(
+            ...await fetchPaidSearch(rt.params, domain, database)
+          );
+          break;
+        case "backlinks":
+          sections.push(...await fetchBacklinks(rt.params, domain));
+          break;
+      }
+    }
+    if (state.projects?.length) {
+      const result = await fetchProjects(rt.params);
+      if (result.ok) {
+        const projectByIdMap = /* @__PURE__ */ new Map();
+        for (const p of result.projects) {
+          const id = projectId(p);
+          if (id) projectByIdMap.set(id, p);
+        }
+        const targetIds = await resolveSetupSelection({
+          selected: state.projects,
+          allSentinel: ALL_PROJECTS,
+          fetchAll: async () => result.projects.map((p) => projectId(p)).filter((id) => id),
+          limit: SEMRUSH_SETUP_MAX_PROJECTS
+        });
+        if (targetIds.length > 0) {
+          sections.push("### Projects", "");
+          sections.push("| Project | Domain | Created |");
+          sections.push("|---------|--------|---------|");
+          for (const id of targetIds) {
+            const p = projectByIdMap.get(id);
+            if (!p) {
+              sections.push(`| ${id} | - | - |`);
+              continue;
+            }
+            const name = projectName(p).replace(/\|/g, "\\|");
+            const dom = projectDomain(p).replace(/\|/g, "\\|") || "-";
+            const created = projectCreatedAt(p) || "-";
+            sections.push(`| ${name} | ${dom} | ${created} |`);
+          }
+          sections.push("");
+        }
+      }
+    }
+    return sections.join("\n");
+  }
+};
+
 // ../connectors/src/connectors/semrush/index.ts
 var tools = { request: requestTool };
 var semrushConnector = new ConnectorPlugin({
@@ -732,6 +1271,7 @@ API \u30E6\u30CB\u30C3\u30C8\u6B8B\u91CF\u306E\u78BA\u8A8D\uFF08\u7121\u6599\u30
 - \u5C65\u6B74\u30A8\u30F3\u30C9\u30DD\u30A4\u30F3\u30C8\u306E\u65E5\u4ED8\u306F\u5FC5\u305A\u6708\u306E15\u65E5\uFF08\`YYYYMM15\`\uFF09`
   },
   tools,
+  setup: (params, ctx, config) => runSetupFlow(semrushSetupFlow, params, ctx, config),
   async checkConnection(params) {
     try {
       const apiKey = params["api-key"];
@@ -790,6 +1330,7 @@ function resolveEnvVarOptional(entry, key) {
 import { getContext } from "hono/context-storage";
 import { getCookie } from "hono/cookie";
 var APP_SESSION_COOKIE_NAME = "__Host-squadbase-session";
+var TABLEAU_SESSION_SENTINEL_URL = "squadbase://tableau-session/";
 function normalizeHeaders(input) {
   const out = {};
   if (!input) return out;
@@ -798,6 +1339,11 @@ function normalizeHeaders(input) {
   });
   return out;
 }
+function extractInputUrl(input) {
+  if (typeof input === "string") return input;
+  if (input instanceof URL) return input.href;
+  return input.url;
+}
 function createSandboxProxyFetch(connectionId) {
   return async (input, init) => {
     const token = process.env.INTERNAL_SQUADBASE_OAUTH_MACHINE_CREDENTIAL;
@@ -807,10 +1353,17 @@ function createSandboxProxyFetch(connectionId) {
         "Connection proxy is not configured. Please check your deployment settings."
       );
     }
-    const originalUrl = typeof input === "string" ? input : input instanceof URL ? input.href : input.url;
+    const originalUrl = extractInputUrl(input);
+    const baseDomain = process.env["SQUADBASE_PREVIEW_BASE_DOMAIN"] ?? "preview.app.squadbase.dev";
+    if (originalUrl === TABLEAU_SESSION_SENTINEL_URL) {
+      const sessionUrl = `https://${sandboxId}.${baseDomain}/_sqcore/connections/${connectionId}/tableau-session`;
+      return fetch(sessionUrl, {
+        method: "POST",
+        headers: { Authorization: `Bearer ${token}` }
+      });
+    }
     const originalMethod = init?.method ?? "GET";
     const originalBody = init?.body ? JSON.parse(init.body) : void 0;
-    const baseDomain = process.env["SQUADBASE_PREVIEW_BASE_DOMAIN"] ?? "preview.app.squadbase.dev";
     const proxyUrl = `https://${sandboxId}.${baseDomain}/_sqcore/connections/${connectionId}/request`;
     return fetch(proxyUrl, {
       method: "POST",
@@ -828,18 +1381,17 @@ function createSandboxProxyFetch(connectionId) {
   };
 }
 function createDeployedAppProxyFetch(connectionId) {
-  const projectId = process.env["SQUADBASE_PROJECT_ID"];
-  if (!projectId) {
+  const projectId2 = process.env["SQUADBASE_PROJECT_ID"];
+  if (!projectId2) {
     throw new Error(
       "Connection proxy is not configured. Please check your deployment settings."
     );
   }
   const baseDomain = process.env["SQUADBASE_APP_BASE_DOMAIN"] ?? "squadbase.app";
-  const proxyUrl = `https://${projectId}.${baseDomain}/_sqcore/connections/${connectionId}/request`;
+  const proxyUrl = `https://${projectId2}.${baseDomain}/_sqcore/connections/${connectionId}/request`;
+  const sessionUrl = `https://${projectId2}.${baseDomain}/_sqcore/connections/${connectionId}/tableau-session`;
   return async (input, init) => {
-    const originalUrl = typeof input === "string" ? input : input instanceof URL ? input.href : input.url;
-    const originalMethod = init?.method ?? "GET";
-    const originalBody = init?.body ? JSON.parse(init.body) : void 0;
+    const originalUrl = extractInputUrl(input);
     const c = getContext();
     const appSession = getCookie(c, APP_SESSION_COOKIE_NAME);
     if (!appSession) {
@@ -847,6 +1399,14 @@ function createDeployedAppProxyFetch(connectionId) {
         "No authentication method available for connection proxy."
       );
     }
+    if (originalUrl === TABLEAU_SESSION_SENTINEL_URL) {
+      return fetch(sessionUrl, {
+        method: "POST",
+        headers: { Authorization: `Bearer ${appSession}` }
+      });
+    }
+    const originalMethod = init?.method ?? "GET";
+    const originalBody = init?.body ? JSON.parse(init.body) : void 0;
     return fetch(proxyUrl, {
       method: "POST",
       headers: {