@squadbase/vite-server 0.1.3-dev.13 → 0.1.3-dev.14

package/dist/connectors/google-drive-oauth.js

@@ -462,7 +462,7 @@ var googleDriveOauthConnector = new ConnectorPlugin({
   authType: AUTH_TYPES.OAUTH,
   name: "Google Drive",
   description: "Connect to Google Drive for file management, sharing, and collaboration using OAuth.",
-  iconUrl: "https://images.ctfassets.net/9ncizv60xc5y/4GJX5yQTogUgar1buWxXbv/4b43a65353319c508111489f834d22c4/google_drive.png",
+  iconUrl: "https://images.ctfassets.net/9ncizv60xc5y/7rOUJhO4dDKRYirBqCYzxI/48e9a5b85f0b4c6f9a3d7e2c1b8a5f4d/google-drive.svg",
   parameters,
   releaseFlag: { dev1: true, dev2: false, prod: false },
   onboarding: googleDriveOnboarding,

package/dist/connectors/google-drive.js

@@ -510,7 +510,7 @@ var googleDriveConnector = new ConnectorPlugin({
   authType: AUTH_TYPES.SERVICE_ACCOUNT,
   name: "Google Drive",
   description: "Connect to Google Drive for file management, sharing, and collaboration using a service account.",
-  iconUrl: "https://images.ctfassets.net/9ncizv60xc5y/4GJX5yQTogUgar1buWxXbv/4b43a65353319c508111489f834d22c4/google_drive.png",
+  iconUrl: "https://images.ctfassets.net/9ncizv60xc5y/7rOUJhO4dDKRYirBqCYzxI/48e9a5b85f0b4c6f9a3d7e2c1b8a5f4d/google-drive.svg",
   parameters,
   releaseFlag: { dev1: true, dev2: false, prod: false },
   onboarding: googleDriveOnboarding,

package/dist/connectors/google-slides-oauth.js

@@ -429,7 +429,7 @@ var googleSlidesOauthConnector = new ConnectorPlugin({
   authType: AUTH_TYPES.OAUTH,
   name: "Google Slides",
   description: "Connect to Google Slides for presentation data access and creation using OAuth.",
-  iconUrl: "https://images.ctfassets.net/9ncizv60xc5y/4oyF4yTRpemMA43X49masx/e1582d25e3b4c9a63ba83df2147c1968/google_slide.png",
+  iconUrl: "https://images.ctfassets.net/9ncizv60xc5y/5g0LJMwN28s2OhJbYU9CxC/71f1abfb40c89e5a6b5e3a3ad83b5a73/google-slides.svg",
   parameters,
   releaseFlag: { dev1: true, dev2: false, prod: false },
   onboarding: googleSlidesOnboarding,

package/dist/connectors/google-slides.js

@@ -64,6 +64,15 @@ var parameters = {
     type: "text",
     secret: false,
     required: false
+  }),
+  sharedDriveId: new ParameterDefinition({
+    slug: "shared-drive-id",
+    name: "Shared Drive ID",
+    description: "The ID of the Google Shared Drive where new presentations will be created. Required for service accounts that do not have their own Drive storage. You can find the ID in the Shared Drive URL: https://drive.google.com/drive/folders/{sharedDriveId}",
+    envVarBaseKey: "GOOGLE_SLIDES_SHARED_DRIVE_ID",
+    type: "text",
+    secret: false,
+    required: false
   })
 };
 
@@ -81,7 +90,8 @@ function extractPresentationId(urlOrId) {
 // ../connectors/src/connectors/google-slides/sdk/index.ts
 var TOKEN_URL = "https://oauth2.googleapis.com/token";
 var SLIDES_BASE_URL = "https://slides.googleapis.com/v1/presentations";
-var SCOPE = "https://www.googleapis.com/auth/presentations";
+var DRIVE_FILES_URL = "https://www.googleapis.com/drive/v3/files";
+var SCOPE = "https://www.googleapis.com/auth/presentations https://www.googleapis.com/auth/drive";
 function base64url(input) {
   const buf = typeof input === "string" ? Buffer.from(input) : input;
   return buf.toString("base64url");
@@ -108,6 +118,7 @@ function createClient(params) {
   const serviceAccountKeyJsonBase64 = params[parameters.serviceAccountKeyJsonBase64.slug];
   const presentationUrl = params[parameters.presentationUrl.slug];
   const defaultPresentationId = presentationUrl ? extractPresentationId(presentationUrl) : void 0;
+  const sharedDriveId = params[parameters.sharedDriveId.slug] || void 0;
   if (!serviceAccountKeyJsonBase64) {
     throw new Error(
       `google-slides: missing required parameter: ${parameters.serviceAccountKeyJsonBase64.slug}`
@@ -216,6 +227,36 @@ function createClient(params) {
       return await response.json();
     },
     async createPresentation(title) {
+      if (sharedDriveId) {
+        const driveResponse = await authenticatedFetch(
+          `${DRIVE_FILES_URL}?supportsAllDrives=true`,
+          {
+            method: "POST",
+            body: JSON.stringify({
+              name: title,
+              mimeType: "application/vnd.google-apps.presentation",
+              parents: [sharedDriveId]
+            })
+          }
+        );
+        if (!driveResponse.ok) {
+          const body = await driveResponse.text();
+          throw new Error(
+            `google-slides: createPresentation (Drive API) failed (${driveResponse.status}): ${body}`
+          );
+        }
+        const driveFile = await driveResponse.json();
+        const slidesResponse = await authenticatedFetch(
+          `${SLIDES_BASE_URL}/${driveFile.id}`
+        );
+        if (!slidesResponse.ok) {
+          const body = await slidesResponse.text();
+          throw new Error(
+            `google-slides: getPresentation after create failed (${slidesResponse.status}): ${body}`
+          );
+        }
+        return await slidesResponse.json();
+      }
       const response = await authenticatedFetch(SLIDES_BASE_URL, {
         method: "POST",
         body: JSON.stringify({ title })
@@ -405,7 +446,10 @@ Authentication is handled automatically using a service account.
       );
       const auth = new GoogleAuth({
         credentials,
-        scopes: ["https://www.googleapis.com/auth/presentations"]
+        scopes: [
+          "https://www.googleapis.com/auth/presentations",
+          "https://www.googleapis.com/auth/drive"
+        ]
       });
       const token = await auth.getAccessToken();
       if (!token) {
@@ -458,7 +502,7 @@ var googleSlidesConnector = new ConnectorPlugin({
   authType: AUTH_TYPES.SERVICE_ACCOUNT,
   name: "Google Slides",
   description: "Connect to Google Slides for presentation data access and creation using a service account.",
-  iconUrl: "https://images.ctfassets.net/9ncizv60xc5y/4oyF4yTRpemMA43X49masx/e1582d25e3b4c9a63ba83df2147c1968/google_slide.png",
+  iconUrl: "https://images.ctfassets.net/9ncizv60xc5y/5g0LJMwN28s2OhJbYU9CxC/71f1abfb40c89e5a6b5e3a3ad83b5a73/google-slides.svg",
   parameters,
   releaseFlag: { dev1: true, dev2: false, prod: false },
   onboarding: googleSlidesOnboarding,

package/dist/connectors/linkedin-ads.js

@@ -42,98 +42,14 @@ var ParameterDefinition = class {
   }
 };
 
-// ../connectors/src/connectors/linkedin-ads/parameters.ts
-var parameters = {
-  accessToken: new ParameterDefinition({
-    slug: "access-token",
-    name: "Access Token",
-    description: "A LinkedIn Marketing API access token. Obtainable from the LinkedIn Developer Portal token generator or via OAuth 2.0 authorization code flow.",
-    envVarBaseKey: "LINKEDIN_ADS_ACCESS_TOKEN",
-    type: "text",
-    secret: true,
-    required: true
-  }),
-  adAccountId: new ParameterDefinition({
-    slug: "ad-account-id",
-    name: "Ad Account ID",
-    description: "The LinkedIn ad account ID (numeric). Found in Campaign Manager under Account Assets. The URN format urn:li:sponsoredAccount:{id} is constructed automatically.",
-    envVarBaseKey: "LINKEDIN_ADS_AD_ACCOUNT_ID",
-    type: "text",
-    secret: false,
-    required: false
-  })
-};
-
 // ../connectors/src/connectors/linkedin-ads/sdk/index.ts
 var BASE_URL = "https://api.linkedin.com/rest/";
-var LINKEDIN_VERSION = "202603";
-function createClient(params, fetchFn = fetch) {
-  const accessToken = params[parameters.accessToken.slug];
-  const defaultAdAccountId = params[parameters.adAccountId.slug] ?? "";
-  if (!accessToken) {
-    throw new Error(
-      `linkedin-ads: missing required parameter: ${parameters.accessToken.slug}`
-    );
-  }
-  function getHeaders(extra) {
-    return {
-      Authorization: `Bearer ${accessToken}`,
-      "LinkedIn-Version": LINKEDIN_VERSION,
-      "X-Restli-Protocol-Version": "2.0.0",
-      "Content-Type": "application/json",
-      ...extra
-    };
-  }
+function createClient(_params, fetchFn = fetch) {
   function request(path2, init) {
-    const resolvedPath = defaultAdAccountId ? path2.replace(/\{adAccountId\}/g, defaultAdAccountId) : path2;
-    const url = `${BASE_URL}${resolvedPath}`;
-    const headers = new Headers(init?.headers);
-    for (const [k, v] of Object.entries(getHeaders())) {
-      if (!headers.has(k)) {
-        headers.set(k, v);
-      }
-    }
-    return fetchFn(url, { ...init, headers });
+    const url = `${BASE_URL}${path2}`;
+    return fetchFn(url, init);
   }
-  async function getAnalytics(queryParams) {
-    const searchParams = new URLSearchParams({ q: "analytics", ...queryParams });
-    const url = `${BASE_URL}adAnalytics?${searchParams.toString()}`;
-    const response = await fetchFn(url, {
-      method: "GET",
-      headers: getHeaders()
-    });
-    if (!response.ok) {
-      const body = await response.text();
-      throw new Error(
-        `linkedin-ads: getAnalytics failed (${response.status}): ${body}`
-      );
-    }
-    const data = await response.json();
-    return data.elements ?? [];
-  }
-  async function listAdAccounts() {
-    const url = `${BASE_URL}adAccounts?q=search&search=(status:(values:List(ACTIVE)))&pageSize=100`;
-    const response = await fetchFn(url, {
-      method: "GET",
-      headers: getHeaders()
-    });
-    if (!response.ok) {
-      const body = await response.text();
-      throw new Error(
-        `linkedin-ads: listAdAccounts failed (${response.status}): ${body}`
-      );
-    }
-    const data = await response.json();
-    return (data.elements ?? []).map((a) => ({
-      adAccountId: String(a.id ?? ""),
-      name: a.name ?? String(a.id ?? "")
-    }));
-  }
-  return {
-    request,
-    getAnalytics,
-    listAdAccounts
-  };
+  return { request };
 }
 
 // ../connectors/src/connector-onboarding.ts
@@ -248,13 +164,45 @@ var AUTH_TYPES = {
 
 // ../connectors/src/connectors/linkedin-ads/tools/list-ad-accounts.ts
 import { z } from "zod";
+var BASE_URL2 = "https://api.linkedin.com/rest/";
+var LINKEDIN_VERSION = "202603";
 var REQUEST_TIMEOUT_MS = 6e4;
-var LINKEDIN_VERSION2 = "202603";
+var cachedToken = null;
+async function getProxyToken(config) {
+  if (cachedToken && cachedToken.expiresAt > Date.now() + 6e4) {
+    return cachedToken.token;
+  }
+  const url = `${config.appApiBaseUrl}/v0/database/${config.projectId}/environment/${config.environmentId}/oauth-request-proxy-token`;
+  const res = await fetch(url, {
+    method: "POST",
+    headers: {
+      "Content-Type": "application/json",
+      "x-api-key": config.appApiKey,
+      "project-id": config.projectId
+    },
+    body: JSON.stringify({
+      sandboxId: config.sandboxId,
+      issuedBy: "coding-agent"
+    })
+  });
+  if (!res.ok) {
+    const errorText = await res.text().catch(() => res.statusText);
+    throw new Error(
+      `Failed to get proxy token: HTTP ${res.status} ${errorText}`
+    );
+  }
+  const data = await res.json();
+  cachedToken = {
+    token: data.token,
+    expiresAt: new Date(data.expiresAt).getTime()
+  };
+  return data.token;
+}
 var inputSchema = z.object({
   toolUseIntent: z.string().optional().describe(
     "Brief description of what you intend to accomplish with this tool call"
   ),
-  connectionId: z.string().describe("ID of the LinkedIn Ads connection to use")
+  connectionId: z.string().describe("ID of the LinkedIn Ads OAuth connection to use")
 });
 var outputSchema = z.discriminatedUnion("success", [
   z.object({
@@ -273,10 +221,10 @@ var outputSchema = z.discriminatedUnion("success", [
 ]);
 var listAdAccountsTool = new ConnectorTool({
   name: "listAdAccounts",
-  description: "List LinkedIn ad accounts accessible with the current access token.",
+  description: "List LinkedIn ad accounts accessible with the current OAuth credentials.",
   inputSchema,
   outputSchema,
-  async execute({ connectionId }, connections) {
+  async execute({ connectionId }, connections, config) {
     const connection2 = connections.find((c) => c.id === connectionId);
     if (!connection2) {
       return {
@@ -288,18 +236,25 @@ var listAdAccountsTool = new ConnectorTool({
       `[connector-request] linkedin-ads/${connection2.name}: listAdAccounts`
     );
     try {
-      const accessToken = parameters.accessToken.getValue(connection2);
-      const url = "https://api.linkedin.com/rest/adAccounts?q=search&search=(status:(values:List(ACTIVE)))&pageSize=100";
+      const token = await getProxyToken(config.oauthProxy);
+      const proxyUrl = `https://${config.oauthProxy.sandboxId}.${config.oauthProxy.previewBaseDomain}/_sqcore/connections/${connectionId}/request`;
       const controller = new AbortController();
       const timeout = setTimeout(() => controller.abort(), REQUEST_TIMEOUT_MS);
       try {
-        const response = await fetch(url, {
-          method: "GET",
+        const response = await fetch(proxyUrl, {
+          method: "POST",
           headers: {
-            Authorization: `Bearer ${accessToken}`,
-            "LinkedIn-Version": LINKEDIN_VERSION2,
-            "X-Restli-Protocol-Version": "2.0.0"
+            "Content-Type": "application/json",
+            Authorization: `Bearer ${token}`
           },
+          body: JSON.stringify({
+            url: `${BASE_URL2}adAccounts?q=search&search=(status:(values:List(ACTIVE)))&pageSize=100`,
+            method: "GET",
+            headers: {
+              "LinkedIn-Version": LINKEDIN_VERSION,
+              "X-Restli-Protocol-Version": "2.0.0"
+            }
+          }),
           signal: controller.signal
         });
         const data = await response.json();
@@ -326,10 +281,10 @@ var listAdAccountsTool = new ConnectorTool({
 var listAdAccountsToolName = `linkedin-ads_${listAdAccountsTool.name}`;
 var linkedinAdsOnboarding = new ConnectorOnboarding({
   connectionSetupInstructions: {
-    ja: `\u4EE5\u4E0B\u306E\u624B\u9806\u3067LinkedIn\u5E83\u544A\u30B3\u30CD\u30AF\u30B7\u30E7\u30F3\u306E\u30BB\u30C3\u30C8\u30A2\u30C3\u30D7\u3092\u884C\u3063\u3066\u304F\u3060\u3055\u3044\u3002
+    ja: `\u4EE5\u4E0B\u306E\u624B\u9806\u3067LinkedIn\u5E83\u544A (OAuth) \u30B3\u30CD\u30AF\u30B7\u30E7\u30F3\u306E\u30BB\u30C3\u30C8\u30A2\u30C3\u30D7\u3092\u884C\u3063\u3066\u304F\u3060\u3055\u3044\u3002
 
-1. \`${listAdAccountsToolName}\` \u3092\u547C\u3073\u51FA\u3057\u3066\u3001\u30A2\u30AF\u30BB\u30B9\u30C8\u30FC\u30AF\u30F3\u3067\u30A2\u30AF\u30BB\u30B9\u53EF\u80FD\u306A\u5E83\u544A\u30A2\u30AB\u30A6\u30F3\u30C8\u4E00\u89A7\u3092\u53D6\u5F97\u3059\u308B
-2. \u30A8\u30E9\u30FC\u304C\u767A\u751F\u3057\u305F\u5834\u5408\u306F\u30E6\u30FC\u30B6\u30FC\u306B\u30A2\u30AF\u30BB\u30B9\u30C8\u30FC\u30AF\u30F3\u306E\u78BA\u8A8D\u3092\u4F9D\u983C\u3059\u308B
+1. \`${listAdAccountsToolName}\` \u3092\u547C\u3073\u51FA\u3057\u3066\u3001OAuth\u3067\u30A2\u30AF\u30BB\u30B9\u53EF\u80FD\u306A\u5E83\u544A\u30A2\u30AB\u30A6\u30F3\u30C8\u4E00\u89A7\u3092\u53D6\u5F97\u3059\u308B
+2. \u30A8\u30E9\u30FC\u304C\u767A\u751F\u3057\u305F\u5834\u5408\u306F\u30E6\u30FC\u30B6\u30FC\u306BOAuth\u63A5\u7D9A\u306E\u78BA\u8A8D\u3092\u4F9D\u983C\u3059\u308B
 3. \`updateConnectionParameters\` \u3092\u547C\u3073\u51FA\u3059:
    - \`parameterSlug\`: \`"ad-account-id"\`
    - \`options\`: \u5E83\u544A\u30A2\u30AB\u30A6\u30F3\u30C8\u4E00\u89A7\u3002\u5404 option \u306E \`label\` \u306F \`\u30A2\u30AB\u30A6\u30F3\u30C8\u540D (id: \u30A2\u30AB\u30A6\u30F3\u30C8ID)\` \u306E\u5F62\u5F0F\u3001\`value\` \u306F\u30A2\u30AB\u30A6\u30F3\u30C8ID
@@ -342,10 +297,10 @@ var linkedinAdsOnboarding = new ConnectorOnboarding({
 #### \u5236\u7D04
 - **\u30BB\u30C3\u30C8\u30A2\u30C3\u30D7\u4E2D\u306B\u30EC\u30DD\u30FC\u30C8\u30C7\u30FC\u30BF\u3092\u53D6\u5F97\u3057\u306A\u3044\u3053\u3068**\u3002\u5B9F\u884C\u3057\u3066\u3088\u3044\u306E\u306F\u4E0A\u8A18\u624B\u9806\u3067\u6307\u5B9A\u3055\u308C\u305F\u30E1\u30BF\u30C7\u30FC\u30BF\u53D6\u5F97\u306E\u307F
 - \u30C4\u30FC\u30EB\u9593\u306F1\u6587\u3060\u3051\u66F8\u3044\u3066\u5373\u6B21\u306E\u30C4\u30FC\u30EB\u547C\u3073\u51FA\u3057\u3002\u4E0D\u8981\u306A\u8AAC\u660E\u306F\u7701\u7565\u3057\u3001\u52B9\u7387\u7684\u306B\u9032\u3081\u308B`,
-    en: `Follow these steps to set up the LinkedIn Ads connection.
+    en: `Follow these steps to set up the LinkedIn Ads (OAuth) connection.
 
-1. Call \`${listAdAccountsToolName}\` to get the list of ad accounts accessible with the access token
-2. If an error occurs, ask the user to verify their access token
+1. Call \`${listAdAccountsToolName}\` to get the list of ad accounts accessible with the OAuth credentials
+2. If an error occurs, ask the user to verify their OAuth connection
 3. Call \`updateConnectionParameters\`:
    - \`parameterSlug\`: \`"ad-account-id"\`
    - \`options\`: The ad account list. Each option's \`label\` should be \`Account Name (id: accountId)\`, \`value\` should be the account ID
@@ -369,19 +324,63 @@ var linkedinAdsOnboarding = new ConnectorOnboarding({
   }
 });
 
+// ../connectors/src/connectors/linkedin-ads/parameters.ts
+var parameters = {
+  adAccountId: new ParameterDefinition({
+    slug: "ad-account-id",
+    name: "Ad Account ID",
+    description: "The LinkedIn ad account ID (numeric). Found in Campaign Manager under Account Assets. The URN format urn:li:sponsoredAccount:{id} is constructed automatically.",
+    envVarBaseKey: "LINKEDIN_ADS_AD_ACCOUNT_ID",
+    type: "text",
+    secret: false,
+    required: false
+  })
+};
+
 // ../connectors/src/connectors/linkedin-ads/tools/request.ts
 import { z as z2 } from "zod";
-var BASE_URL2 = "https://api.linkedin.com/rest/";
-var LINKEDIN_VERSION3 = "202603";
+var BASE_URL3 = "https://api.linkedin.com/rest/";
+var LINKEDIN_VERSION2 = "202603";
 var REQUEST_TIMEOUT_MS2 = 6e4;
+var cachedToken2 = null;
+async function getProxyToken2(config) {
+  if (cachedToken2 && cachedToken2.expiresAt > Date.now() + 6e4) {
+    return cachedToken2.token;
+  }
+  const url = `${config.appApiBaseUrl}/v0/database/${config.projectId}/environment/${config.environmentId}/oauth-request-proxy-token`;
+  const res = await fetch(url, {
+    method: "POST",
+    headers: {
+      "Content-Type": "application/json",
+      "x-api-key": config.appApiKey,
+      "project-id": config.projectId
+    },
+    body: JSON.stringify({
+      sandboxId: config.sandboxId,
+      issuedBy: "coding-agent"
+    })
+  });
+  if (!res.ok) {
+    const errorText = await res.text().catch(() => res.statusText);
+    throw new Error(
+      `Failed to get proxy token: HTTP ${res.status} ${errorText}`
+    );
+  }
+  const data = await res.json();
+  cachedToken2 = {
+    token: data.token,
+    expiresAt: new Date(data.expiresAt).getTime()
+  };
+  return data.token;
+}
 var inputSchema2 = z2.object({
   toolUseIntent: z2.string().optional().describe(
     "Brief description of what you intend to accomplish with this tool call"
   ),
-  connectionId: z2.string().describe("ID of the LinkedIn Ads connection to use"),
+  connectionId: z2.string().describe("ID of the LinkedIn Ads OAuth connection to use"),
   method: z2.enum(["GET", "POST", "DELETE"]).describe("HTTP method"),
   path: z2.string().describe(
-    "API path appended to https://api.linkedin.com/rest/ (e.g., 'adAccounts/{adAccountId}/adCampaigns'). {adAccountId} is automatically replaced with the configured ad account ID."
+    "API path appended to https://api.linkedin.com/rest/ (e.g., 'adAccounts/{adAccountId}/adCampaigns'). {adAccountId} is automatically replaced with the connection's ad account ID."
   ),
   queryParams: z2.record(z2.string(), z2.string()).optional().describe("Query parameters to append to the URL"),
   body: z2.record(z2.string(), z2.unknown()).optional().describe("Request body (JSON). For partial updates, use the patch format: { patch: { $set: { ... } } }")
@@ -400,12 +399,12 @@ var outputSchema2 = z2.discriminatedUnion("success", [
 var requestTool = new ConnectorTool({
   name: "request",
   description: `Send authenticated requests to the LinkedIn Marketing API (REST).
-Authentication is handled via the configured access token.
+Authentication is handled automatically via OAuth proxy.
 {adAccountId} in the path is automatically replaced with the connection's ad account ID.
-Required headers (Authorization, LinkedIn-Version, X-Restli-Protocol-Version) are set automatically.`,
+Required headers (LinkedIn-Version, X-Restli-Protocol-Version) are set automatically.`,
   inputSchema: inputSchema2,
   outputSchema: outputSchema2,
-  async execute({ connectionId, method, path: path2, queryParams, body }, connections) {
+  async execute({ connectionId, method, path: path2, queryParams, body }, connections, config) {
     const connection2 = connections.find((c) => c.id === connectionId);
     if (!connection2) {
       return {
@@ -417,31 +416,38 @@ Required headers (Authorization, LinkedIn-Version, X-Restli-Protocol-Version) ar
       `[connector-request] linkedin-ads/${connection2.name}: ${method} ${path2}`
     );
     try {
-      const accessToken = parameters.accessToken.getValue(connection2);
       const adAccountId = parameters.adAccountId.tryGetValue(connection2) ?? "";
       const resolvedPath = adAccountId ? path2.replace(/\{adAccountId\}/g, adAccountId) : path2;
-      let url = `${BASE_URL2}${resolvedPath}`;
+      let url = `${BASE_URL3}${resolvedPath}`;
       if (queryParams && Object.keys(queryParams).length > 0) {
         const params = new URLSearchParams(queryParams);
         const separator = url.includes("?") ? "&" : "?";
         url = `${url}${separator}${params.toString()}`;
       }
+      const token = await getProxyToken2(config.oauthProxy);
+      const proxyUrl = `https://${config.oauthProxy.sandboxId}.${config.oauthProxy.previewBaseDomain}/_sqcore/connections/${connectionId}/request`;
       const controller = new AbortController();
       const timeout = setTimeout(() => controller.abort(), REQUEST_TIMEOUT_MS2);
       try {
-        const headers = {
-          Authorization: `Bearer ${accessToken}`,
-          "LinkedIn-Version": LINKEDIN_VERSION3,
-          "X-Restli-Protocol-Version": "2.0.0",
-          "Content-Type": "application/json"
+        const additionalHeaders = {
+          "LinkedIn-Version": LINKEDIN_VERSION2,
+          "X-Restli-Protocol-Version": "2.0.0"
         };
         if (body && "patch" in body) {
-          headers["X-RestLi-Method"] = "PARTIAL_UPDATE";
+          additionalHeaders["X-RestLi-Method"] = "PARTIAL_UPDATE";
         }
-        const response = await fetch(url, {
-          method,
-          headers,
-          ...(method === "POST" || method === "DELETE") && body ? { body: JSON.stringify(body) } : {},
+        const response = await fetch(proxyUrl, {
+          method: "POST",
+          headers: {
+            "Content-Type": "application/json",
+            Authorization: `Bearer ${token}`
+          },
+          body: JSON.stringify({
+            url,
+            method,
+            headers: additionalHeaders,
+            ...(method === "POST" || method === "DELETE") && body ? { body: JSON.stringify(body) } : {}
+          }),
           signal: controller.signal
         });
         if (response.status === 204) {
@@ -471,17 +477,25 @@ var tools = {
 };
 var linkedinAdsConnector = new ConnectorPlugin({
   slug: "linkedin-ads",
-  authType: AUTH_TYPES.API_KEY,
+  authType: AUTH_TYPES.OAUTH,
   name: "LinkedIn Ads",
-  description: "Connect to LinkedIn Ads (Marketing API) for advertising campaign data and reporting using an access token.",
+  description: "Connect to LinkedIn Ads (Marketing API) for advertising campaign data and reporting using OAuth.",
   iconUrl: "https://images.ctfassets.net/9ncizv60xc5y/3x7xd9pVJkRFY7ADIg4ycq/b94720e34cb081e9ae45dfde799a59cd/LinkedIn_icon.svg.png",
   parameters,
   releaseFlag: { dev1: true, dev2: false, prod: false },
   onboarding: linkedinAdsOnboarding,
+  proxyPolicy: {
+    allowlist: [
+      {
+        host: "api.linkedin.com",
+        methods: ["GET", "POST", "DELETE"]
+      }
+    ]
+  },
   systemPrompt: {
     en: `### Tools
 
-- \`linkedin-ads_request\`: Send authenticated requests to the LinkedIn Marketing API (REST). The {adAccountId} placeholder in paths is automatically replaced. Authentication is configured via the access token parameter. Required headers (Authorization, LinkedIn-Version, X-Restli-Protocol-Version) are set automatically.
+- \`linkedin-ads_request\`: Send authenticated requests to the LinkedIn Marketing API (REST). The {adAccountId} placeholder in paths is automatically replaced. Authentication is handled automatically via OAuth proxy. Required headers (LinkedIn-Version, X-Restli-Protocol-Version) are set automatically.
 - \`linkedin-ads_listAdAccounts\`: List accessible LinkedIn ad accounts. Use this during setup to discover available accounts.
 
 ### LinkedIn Marketing API Reference
@@ -568,25 +582,13 @@ import { connection } from "@squadbase/vite-server/connectors/linkedin-ads";
 
 const linkedin = connection("<connectionId>");
 
-// Get analytics for an ad account
-const analytics = await linkedin.getAnalytics({
-  pivot: "CAMPAIGN",
-  timeGranularity: "MONTHLY",
-  "dateRange": "(start:(year:2025,month:1,day:1))",
-  accounts: "List(urn%3Ali%3AsponsoredAccount%3A{adAccountId})",
-  fields: "impressions,clicks,costInLocalCurrency,dateRange,pivotValues",
-});
-
-// List ad accounts
-const accounts = await linkedin.listAdAccounts();
-
 // Get campaigns
 const res = await linkedin.request("adAccounts/{adAccountId}/adCampaigns?q=search&search=(status:(values:List(ACTIVE)))");
 const data = await res.json();
 \`\`\``,
     ja: `### \u30C4\u30FC\u30EB
 
-- \`linkedin-ads_request\`: LinkedIn Marketing API\uFF08REST\uFF09\u3078\u8A8D\u8A3C\u6E08\u307F\u30EA\u30AF\u30A8\u30B9\u30C8\u3092\u9001\u4FE1\u3057\u307E\u3059\u3002\u30D1\u30B9\u5185\u306E{adAccountId}\u30D7\u30EC\u30FC\u30B9\u30DB\u30EB\u30C0\u30FC\u306F\u81EA\u52D5\u7684\u306B\u7F6E\u63DB\u3055\u308C\u307E\u3059\u3002\u8A8D\u8A3C\u306F\u30A2\u30AF\u30BB\u30B9\u30C8\u30FC\u30AF\u30F3\u30D1\u30E9\u30E1\u30FC\u30BF\u3067\u8A2D\u5B9A\u3055\u308C\u307E\u3059\u3002\u5FC5\u9808\u30D8\u30C3\u30C0\u30FC\uFF08Authorization\u3001LinkedIn-Version\u3001X-Restli-Protocol-Version\uFF09\u306F\u81EA\u52D5\u8A2D\u5B9A\u3055\u308C\u307E\u3059\u3002
+- \`linkedin-ads_request\`: LinkedIn Marketing API\uFF08REST\uFF09\u3078\u8A8D\u8A3C\u6E08\u307F\u30EA\u30AF\u30A8\u30B9\u30C8\u3092\u9001\u4FE1\u3057\u307E\u3059\u3002\u30D1\u30B9\u5185\u306E{adAccountId}\u30D7\u30EC\u30FC\u30B9\u30DB\u30EB\u30C0\u30FC\u306F\u81EA\u52D5\u7684\u306B\u7F6E\u63DB\u3055\u308C\u307E\u3059\u3002\u8A8D\u8A3C\u306FOAuth\u30D7\u30ED\u30AD\u30B7\u7D4C\u7531\u3067\u81EA\u52D5\u7684\u306B\u51E6\u7406\u3055\u308C\u307E\u3059\u3002\u5FC5\u9808\u30D8\u30C3\u30C0\u30FC\uFF08LinkedIn-Version\u3001X-Restli-Protocol-Version\uFF09\u306F\u81EA\u52D5\u8A2D\u5B9A\u3055\u308C\u307E\u3059\u3002
 - \`linkedin-ads_listAdAccounts\`: \u30A2\u30AF\u30BB\u30B9\u53EF\u80FD\u306ALinkedIn\u5E83\u544A\u30A2\u30AB\u30A6\u30F3\u30C8\u306E\u4E00\u89A7\u3092\u53D6\u5F97\u3057\u307E\u3059\u3002\u30BB\u30C3\u30C8\u30A2\u30C3\u30D7\u6642\u306B\u5229\u7528\u53EF\u80FD\u306A\u30A2\u30AB\u30A6\u30F3\u30C8\u3092\u78BA\u8A8D\u3059\u308B\u305F\u3081\u306B\u4F7F\u7528\u3057\u307E\u3059\u3002
 
 ### LinkedIn Marketing API \u30EA\u30D5\u30A1\u30EC\u30F3\u30B9
@@ -673,38 +675,19 @@ import { connection } from "@squadbase/vite-server/connectors/linkedin-ads";
 
 const linkedin = connection("<connectionId>");
 
-// \u5E83\u544A\u30A2\u30AB\u30A6\u30F3\u30C8\u306E\u30A2\u30CA\u30EA\u30C6\u30A3\u30AF\u30B9\u3092\u53D6\u5F97
-const analytics = await linkedin.getAnalytics({
-  pivot: "CAMPAIGN",
-  timeGranularity: "MONTHLY",
-  "dateRange": "(start:(year:2025,month:1,day:1))",
-  accounts: "List(urn%3Ali%3AsponsoredAccount%3A{adAccountId})",
-  fields: "impressions,clicks,costInLocalCurrency,dateRange,pivotValues",
-});
-
-// \u5E83\u544A\u30A2\u30AB\u30A6\u30F3\u30C8\u4E00\u89A7\u3092\u53D6\u5F97
-const accounts = await linkedin.listAdAccounts();
-
 // \u30AD\u30E3\u30F3\u30DA\u30FC\u30F3\u3092\u53D6\u5F97
 const res = await linkedin.request("adAccounts/{adAccountId}/adCampaigns?q=search&search=(status:(values:List(ACTIVE)))");
 const data = await res.json();
 \`\`\``
   },
   tools,
-  async checkConnection(params) {
-    const accessToken = params[parameters.accessToken.slug];
-    if (!accessToken) {
-      return {
-        success: false,
-        error: "Access token is required"
-      };
-    }
+  async checkConnection(_params, config) {
+    const { proxyFetch } = config;
     try {
       const url = "https://api.linkedin.com/rest/adAccounts?q=search&search=(status:(values:List(ACTIVE)))&pageSize=1";
-      const res = await fetch(url, {
+      const res = await proxyFetch(url, {
         method: "GET",
         headers: {
-          Authorization: `Bearer ${accessToken}`,
           "LinkedIn-Version": "202603",
           "X-Restli-Protocol-Version": "2.0.0"
         }

package/dist/connectors/{google-ads-oauth.d.ts → mixpanel.d.ts}

@@ -1,5 +1,5 @@
 import * as _squadbase_connectors_sdk from '@squadbase/connectors/sdk';
 
-declare const connection: (connectionId: string) => _squadbase_connectors_sdk.GoogleAdsConnectorSdk;
+declare const connection: (connectionId: string) => _squadbase_connectors_sdk.MixpanelConnectorSdk;
 
 export { connection };