@squadbase/vite-server 0.1.3-dev.9 → 0.1.4-dev.0

package/dist/connectors/kintone-api-token.js

@@ -61,6 +61,15 @@ var parameters = {
     type: "text",
     secret: true,
     required: true
+  }),
+  appId: new ParameterDefinition({
+    slug: "app-id",
+    name: "kintone App ID",
+    description: "The numeric ID of the kintone app this token is scoped to (visible in the app URL: https://{subdomain}.cybozu.com/k/{appId}/). API tokens are always scoped to a single app.",
+    envVarBaseKey: "KINTONE_APP_ID",
+    type: "text",
+    secret: false,
+    required: true
   })
 };
 
@@ -68,19 +77,58 @@ var parameters = {
 function createClient(params) {
   const baseUrl = params[parameters.baseUrl.slug];
   const apiToken = params[parameters.apiToken.slug];
-  if (!baseUrl || !apiToken) {
-    const required = [parameters.baseUrl.slug, parameters.apiToken.slug];
-    const missing = required.filter((s) => !params[s]);
+  const appId = params[parameters.appId.slug];
+  const required = [
+    parameters.baseUrl.slug,
+    parameters.apiToken.slug,
+    parameters.appId.slug
+  ];
+  const missing = required.filter((s) => !params[s]);
+  if (missing.length > 0) {
     throw new Error(
       `kintone: missing required parameters: ${missing.join(", ")}`
     );
   }
+  let _restClient = null;
+  async function getRestClient() {
+    if (!_restClient) {
+      const { KintoneRestAPIClient } = await import("@kintone/rest-api-client");
+      _restClient = new KintoneRestAPIClient({
+        baseUrl,
+        auth: { apiToken }
+      });
+    }
+    return _restClient;
+  }
   return {
+    appId,
     request(path2, init) {
       const url = `${baseUrl.replace(/\/+$/, "")}${path2}`;
       const headers = new Headers(init?.headers);
       headers.set("X-Cybozu-API-Token", apiToken);
       return fetch(url, { ...init, headers });
+    },
+    async getRecords(targetAppId, options) {
+      const client = await getRestClient();
+      const result = await client.record.getRecords({
+        app: targetAppId ?? appId,
+        query: options?.query,
+        fields: options?.fields,
+        totalCount: options?.totalCount
+      });
+      return {
+        records: result.records,
+        totalCount: result.totalCount ? Number(result.totalCount) : null
+      };
+    },
+    async getRecord(appIdOrRecordId, recordId) {
+      const client = await getRestClient();
+      const [targetAppId, targetRecordId] = recordId === void 0 ? [appId, appIdOrRecordId] : [appIdOrRecordId, recordId];
+      const result = await client.record.getRecord({
+        app: targetAppId,
+        id: targetRecordId
+      });
+      return { record: result.record };
     }
   };
 }
@@ -167,21 +215,58 @@ var ConnectorPlugin = class _ConnectorPlugin {
    * Filters connections by connectorKey internally.
    * Returns tools keyed as `${connectorKey}_${toolName}`.
    */
-  createTools(connections, config) {
+  createTools(connections, config, opts) {
     const myConnections = connections.filter(
       (c) => _ConnectorPlugin.deriveKey(c.connector.slug, c.connector.authType) === this.connectorKey
     );
     const result = {};
     for (const t of Object.values(this.tools)) {
-      result[`${this.connectorKey}_${t.name}`] = t.createTool(
-        myConnections,
-        config
-      );
+      const tool = t.createTool(myConnections, config);
+      const originalToModelOutput = tool.toModelOutput;
+      result[`${this.connectorKey}_${t.name}`] = {
+        ...tool,
+        toModelOutput: async (options) => {
+          if (!originalToModelOutput) {
+            return opts.truncateOutput(options.output);
+          }
+          const modelOutput = await originalToModelOutput(options);
+          if (modelOutput.type === "text" || modelOutput.type === "json") {
+            return opts.truncateOutput(modelOutput.value);
+          }
+          return modelOutput;
+        }
+      };
     }
     return result;
   }
   static deriveKey(slug, authType) {
-    return authType ? `${slug}-${authType}` : slug;
+    if (authType) return `${slug}-${authType}`;
+    const LEGACY_NULL_AUTH_TYPE_MAP = {
+      // user-password
+      "postgresql": "user-password",
+      "mysql": "user-password",
+      "clickhouse": "user-password",
+      "kintone": "user-password",
+      "squadbase-db": "user-password",
+      // service-account
+      "snowflake": "service-account",
+      "bigquery": "service-account",
+      "google-analytics": "service-account",
+      "google-calendar": "service-account",
+      "aws-athena": "service-account",
+      "redshift": "service-account",
+      // api-key
+      "databricks": "api-key",
+      "dbt": "api-key",
+      "airtable": "api-key",
+      "openai": "api-key",
+      "gemini": "api-key",
+      "anthropic": "api-key",
+      "wix-store": "api-key"
+    };
+    const fallbackAuthType = LEGACY_NULL_AUTH_TYPE_MAP[slug];
+    if (fallbackAuthType) return `${slug}-${fallbackAuthType}`;
+    return slug;
   }
 };
 
@@ -198,23 +283,49 @@ var AUTH_TYPES = {
 // ../connectors/src/connectors/kintone-api-token/setup.ts
 var kintoneApiTokenOnboarding = new ConnectorOnboarding({
   dataOverviewInstructions: {
-    en: `1. Call kintone-api-token_request with GET apps.json to list available apps
-2. For key apps, call kintone-api-token_request with GET app/form/fields.json?app={appId} to get field definitions
-3. Call kintone-api-token_request with GET records.json?app={appId}&query=limit 5 to sample records`,
-    ja: `1. kintone-api-token_request \u3067 GET apps.json \u3092\u547C\u3073\u51FA\u3057\u3001\u5229\u7528\u53EF\u80FD\u306A\u30A2\u30D7\u30EA\u4E00\u89A7\u3092\u53D6\u5F97
-2. \u4E3B\u8981\u30A2\u30D7\u30EA\u306B\u3064\u3044\u3066 kintone-api-token_request \u3067 GET app/form/fields.json?app={appId} \u3092\u547C\u3073\u51FA\u3057\u3001\u30D5\u30A3\u30FC\u30EB\u30C9\u5B9A\u7FA9\u3092\u53D6\u5F97
-3. kintone-api-token_request \u3067 GET records.json?app={appId}&query=limit 5 \u3092\u547C\u3073\u51FA\u3057\u3001\u30EC\u30B3\u30FC\u30C9\u3092\u30B5\u30F3\u30D7\u30EA\u30F3\u30B0`
+    en: `Each connection is scoped to a single kintone app (configured via the "app-id" parameter). The request tool auto-injects the configured app id, so you do NOT need to specify "app=" in paths or "app" in bodies. apps.json is NOT available with API Token auth.
+
+1. Call kintone-api-key_request with GET app.json to fetch the scoped app's metadata (name, description, creator)
+2. Call kintone-api-key_request with GET app/form/fields.json to get field definitions
+3. Call kintone-api-key_request with GET records.json with query=limit 5 to sample records`,
+    ja: `\u5404\u63A5\u7D9A\u306F1\u3064\u306Ekintone\u30A2\u30D7\u30EA\u306B\u30B9\u30B3\u30FC\u30D7\u3055\u308C\u3066\u3044\u307E\u3059\uFF08"app-id" \u30D1\u30E9\u30E1\u30FC\u30BF\u3067\u8A2D\u5B9A\uFF09\u3002request \u30C4\u30FC\u30EB\u306F\u8A2D\u5B9A\u3055\u308C\u305F\u30A2\u30D7\u30EAID\u3092\u81EA\u52D5\u6CE8\u5165\u3059\u308B\u305F\u3081\u3001\u30D1\u30B9\u306B "app=" \u3084 body \u306B "app" \u3092\u6307\u5B9A\u3059\u308B\u5FC5\u8981\u306F\u3042\u308A\u307E\u305B\u3093\u3002API Token \u8A8D\u8A3C\u3067\u306F apps.json \u306F\u5229\u7528\u3067\u304D\u307E\u305B\u3093\u3002
+
+1. kintone-api-key_request \u3067 GET app.json \u3092\u547C\u3073\u51FA\u3057\u3001\u30B9\u30B3\u30FC\u30D7\u5BFE\u8C61\u30A2\u30D7\u30EA\u306E\u30E1\u30BF\u60C5\u5831\uFF08\u30A2\u30D7\u30EA\u540D\u3001\u8AAC\u660E\u3001\u4F5C\u6210\u8005\uFF09\u3092\u53D6\u5F97
+2. kintone-api-key_request \u3067 GET app/form/fields.json \u3092\u547C\u3073\u51FA\u3057\u3001\u30D5\u30A3\u30FC\u30EB\u30C9\u5B9A\u7FA9\u3092\u53D6\u5F97
+3. kintone-api-key_request \u3067 GET records.json \u3092 query=limit 5 \u3067\u547C\u3073\u51FA\u3057\u3001\u30EC\u30B3\u30FC\u30C9\u3092\u30B5\u30F3\u30D7\u30EA\u30F3\u30B0`
   }
 });
 
 // ../connectors/src/connectors/kintone-api-token/tools/request.ts
 import { z } from "zod";
 var REQUEST_TIMEOUT_MS = 6e4;
+var APP_PARAM_KEY_BY_ENDPOINT = {
+  "app.json": "id"
+};
+var DEFAULT_APP_PARAM_KEY = "app";
+function injectAppIntoPath(path2, appId) {
+  const [head, query = ""] = path2.split("?", 2);
+  const endpoint = head.toLowerCase();
+  const paramKey = APP_PARAM_KEY_BY_ENDPOINT[endpoint] ?? DEFAULT_APP_PARAM_KEY;
+  const params = new URLSearchParams(query);
+  if (!params.has(paramKey)) {
+    params.set(paramKey, appId);
+  }
+  const serialized = params.toString();
+  return serialized ? `${head}?${serialized}` : head;
+}
+function injectAppIntoBody(body, appId) {
+  if (!body) return body;
+  if ("app" in body) return body;
+  return { app: appId, ...body };
+}
 var inputSchema = z.object({
   toolUseIntent: z.string().optional().describe("Brief description of what you intend to accomplish with this tool call"),
   connectionId: z.string().describe("ID of the kintone connection to use"),
   method: z.enum(["GET", "POST", "PUT", "DELETE"]).describe("HTTP method"),
-  path: z.string().describe("API path (e.g., 'apps.json', 'records.json?app=1&query=...')"),
+  path: z.string().describe(
+    "API path (e.g., 'app.json', 'app/form/fields.json', 'records.json?query=limit 5'). The connection's app id is auto-injected; you do not need to include 'app=' in the query string. 'apps.json' is not supported with API Token auth."
+  ),
   body: z.record(z.string(), z.unknown()).optional().describe("Request body (JSON)")
 });
 var outputSchema = z.discriminatedUnion("success", [
@@ -243,20 +354,31 @@ Authentication is handled automatically using the API token.`,
     try {
       const baseUrl = parameters.baseUrl.getValue(connection2);
       const apiToken = parameters.apiToken.getValue(connection2);
-      const url = `${baseUrl.replace(/\/+$/, "")}/k/v1/${path2}`;
+      const appId = parameters.appId.getValue(connection2);
+      const normalizedPath = path2.replace(/^\/+/, "");
+      const pathHead = normalizedPath.split("?")[0] ?? "";
+      if (/^apps\.json$/i.test(pathHead)) {
+        return {
+          success: false,
+          error: `kintone API tokens are scoped to a single app and cannot list apps. This connection is scoped to app ${appId}. Use app-specific endpoints (e.g., app.json, app/form/fields.json, records.json).`
+        };
+      }
+      const injectedPath = injectAppIntoPath(normalizedPath, appId);
+      const injectedBody = injectAppIntoBody(body, appId);
+      const url = `${baseUrl.replace(/\/+$/, "")}/k/v1/${injectedPath}`;
       const controller = new AbortController();
       const timeout = setTimeout(() => controller.abort(), REQUEST_TIMEOUT_MS);
       try {
         const headers = {
           "X-Cybozu-API-Token": apiToken
         };
-        if (body) {
+        if (injectedBody) {
           headers["Content-Type"] = "application/json";
         }
         const response = await fetch(url, {
           method,
           headers,
-          body: body ? JSON.stringify(body) : void 0,
+          body: injectedBody ? JSON.stringify(injectedBody) : void 0,
           signal: controller.signal
         });
         const data = await response.json();
@@ -291,98 +413,150 @@ var kintoneApiTokenConnector = new ConnectorPlugin({
   systemPrompt: {
     en: `### Tools
 
-- \`kintone-api-key_request\`: The only way to call the kintone REST API. Use it to list apps, get field definitions, query records, and create/update records. Authentication (API Token) and base URL are configured automatically. API tokens are scoped per app \u2014 combine multiple tokens with commas to access multiple apps.
+- \`kintone-api-key_request\`: The only way to call the kintone REST API. Use it to fetch app metadata/field definitions and read/write records. Authentication (API Token), base URL, and the connection's app id are configured automatically. Each connection is scoped to exactly one app (kintone API tokens are per-app).
 
-### kintone REST API Reference
+### App scoping (important)
 
-#### List Apps
-- GET apps.json
-
-### Get Field Definitions
-- GET app/form/fields.json?app={appId}
-
-### Get Records
-- GET records.json?app={appId}&query={query}
-- Query example: records.json?app=1&query=updatedTime > "2024-01-01" order by recordNumber asc limit 100
-
-#### Add Record
-- POST record.json
-- Body: { "app": 1, "record": { "fieldName": { "value": "value" } } }
-
-#### kintone Query Syntax
-- Comparison: fieldName = "value", fieldName > 100
-- Operators: and, or, not
-- Sort: order by fieldName asc/desc
-- Limit: limit 100 offset 0
-- String: like "partial match"
+- Each connection is scoped to one app, configured via the "app-id" parameter.
+- The request tool auto-injects the configured app id:
+  - Query string: adds \`app=<appId>\` to paths like \`records.json\`, \`app/form/fields.json\`, etc. when missing. For \`app.json\` (app metadata), adds \`id=<appId>\` instead.
+  - Request body: adds \`"app": <appId>\` to POST/PUT bodies when missing.
+- You do NOT need to include "app=" in paths or "app" in bodies \u2014 it is handled for you.
+- \`apps.json\` (list all apps) is NOT callable with API Token auth.
 
 ### Business Logic
 
-The business logic type for this connector is "typescript". Write handler code using the connector SDK shown below. Do NOT access credentials directly from environment variables.
+The business logic type for this connector is "typescript". Use the connector SDK in your handler. Do NOT read credentials from environment variables.
 
-#### Example
+SDK surface (client created via \`connection(connectionId)\`):
+- \`client.appId\` \u2014 the numeric app id this connection is scoped to
+- \`client.request(path, init?)\` \u2014 low-level authenticated fetch (pass \`?app=\${client.appId}\` yourself)
+- \`client.getRecords(appId?, options?)\` \u2014 fetch records; if \`appId\` is omitted, the connection's app id is used
+- \`client.getRecord(appIdOrRecordId, recordId?)\` \u2014 fetch a single record; if called with one argument it is treated as the record id and the connection's app id is used
 
 \`\`\`ts
-import { connection } from "@squadbase/vite-server/connectors/kintone-api-key";
+import type { Context } from "hono";
+import { connection } from "@squadbase/vite-server/connectors/kintone-api-token";
 
 const kintone = connection("<connectionId>");
 
-// Authenticated fetch (returns standard Response)
-const res = await kintone.request("/k/v1/records.json?app=1&query=limit 10");
-const data = await res.json();
+export default async function handler(c: Context) {
+  const { status = "Active" } = await c.req.json<{ status?: string }>();
+
+  const { records, totalCount } = await kintone.getRecords(undefined, {
+    query: \`status = "\${status}" order by updatedTime desc limit 100\`,
+    fields: ["$id", "name", "email", "status", "updatedTime"],
+    totalCount: true,
+  });
+
+  return c.json({
+    totalCount,
+    rows: records.map((r) => ({
+      id: r.$id.value,
+      name: r.name?.value,
+      email: r.email?.value,
+      status: r.status?.value,
+      updatedTime: r.updatedTime?.value,
+    })),
+  });
+}
+\`\`\`
 
-await kintone.request("/k/v1/record.json", {
-  method: "POST",
-  body: JSON.stringify({ app: 1, record: { title: { value: "Hello" } } }),
-});
-\`\`\``,
-    ja: `### \u30C4\u30FC\u30EB
+### kintone REST API Reference
 
-- \`kintone-api-key_request\`: kintone REST API\u3092\u547C\u3073\u51FA\u3059\u552F\u4E00\u306E\u624B\u6BB5\u3067\u3059\u3002\u30A2\u30D7\u30EA\u4E00\u89A7\u306E\u53D6\u5F97\u3001\u30D5\u30A3\u30FC\u30EB\u30C9\u5B9A\u7FA9\u306E\u53D6\u5F97\u3001\u30EC\u30B3\u30FC\u30C9\u306E\u691C\u7D22\u3001\u30EC\u30B3\u30FC\u30C9\u306E\u4F5C\u6210\u30FB\u66F4\u65B0\u306B\u4F7F\u7528\u3057\u307E\u3059\u3002\u8A8D\u8A3C\uFF08API\u30C8\u30FC\u30AF\u30F3\uFF09\u3068\u30D9\u30FC\u30B9URL\u306F\u81EA\u52D5\u7684\u306B\u8A2D\u5B9A\u3055\u308C\u307E\u3059\u3002API\u30C8\u30FC\u30AF\u30F3\u306F\u30A2\u30D7\u30EA\u3054\u3068\u306B\u30B9\u30B3\u30FC\u30D7\u3055\u308C\u3066\u3044\u307E\u3059 \u2014 \u8907\u6570\u306E\u30A2\u30D7\u30EA\u306B\u30A2\u30AF\u30BB\u30B9\u3059\u308B\u5834\u5408\u306F\u30AB\u30F3\u30DE\u533A\u5207\u308A\u3067\u30C8\u30FC\u30AF\u30F3\u3092\u7D44\u307F\u5408\u308F\u305B\u3066\u304F\u3060\u3055\u3044\u3002
+#### Get App Metadata
+- \`GET app.json\`   \u2192 returns { appId, name, description, createdAt, modifiedAt, creator, ... }
 
-### kintone REST API \u30EA\u30D5\u30A1\u30EC\u30F3\u30B9
+#### Get Field Definitions
+- \`GET app/form/fields.json\`
 
-#### \u30A2\u30D7\u30EA\u4E00\u89A7\u306E\u53D6\u5F97
-- GET apps.json
+#### Get Records
+- \`GET records.json?query={query}\`
+- Query example: \`records.json?query=updatedTime > "2024-01-01" order by recordNumber asc limit 100\`
 
-### \u30D5\u30A3\u30FC\u30EB\u30C9\u5B9A\u7FA9\u306E\u53D6\u5F97
-- GET app/form/fields.json?app={appId}
+#### Add Record
+- \`POST record.json\`
+- Body: \`{ "record": { "fieldName": { "value": "value" } } }\`
 
-### \u30EC\u30B3\u30FC\u30C9\u306E\u53D6\u5F97
-- GET records.json?app={appId}&query={query}
-- \u30AF\u30A8\u30EA\u4F8B: records.json?app=1&query=updatedTime > "2024-01-01" order by recordNumber asc limit 100
+#### kintone Query Syntax
+- Comparison: \`fieldName = "value"\`, \`fieldName > 100\`
+- Operators: \`and\`, \`or\`, \`not\`
+- Sort: \`order by fieldName asc/desc\`
+- Limit: \`limit 100 offset 0\`
+- String: \`like "partial match"\``,
+    ja: `### \u30C4\u30FC\u30EB
 
-#### \u30EC\u30B3\u30FC\u30C9\u306E\u8FFD\u52A0
-- POST record.json
-- Body: { "app": 1, "record": { "fieldName": { "value": "value" } } }
+- \`kintone-api-key_request\`: kintone REST API\u3092\u547C\u3073\u51FA\u3059\u552F\u4E00\u306E\u624B\u6BB5\u3067\u3059\u3002\u30A2\u30D7\u30EA\u306E\u30E1\u30BF\u60C5\u5831\u30FB\u30D5\u30A3\u30FC\u30EB\u30C9\u5B9A\u7FA9\u306E\u53D6\u5F97\u3001\u30EC\u30B3\u30FC\u30C9\u306E\u8AAD\u307F\u66F8\u304D\u306B\u4F7F\u7528\u3057\u307E\u3059\u3002\u8A8D\u8A3C\uFF08API\u30C8\u30FC\u30AF\u30F3\uFF09\u3001\u30D9\u30FC\u30B9URL\u3001\u304A\u3088\u3073\u63A5\u7D9A\u306E\u30A2\u30D7\u30EAID\u306F\u81EA\u52D5\u7684\u306B\u8A2D\u5B9A\u3055\u308C\u307E\u3059\u3002\u5404\u63A5\u7D9A\u306F\u3061\u3087\u3046\u30691\u3064\u306E\u30A2\u30D7\u30EA\u306B\u30B9\u30B3\u30FC\u30D7\u3055\u308C\u3066\u3044\u307E\u3059\uFF08kintone API\u30C8\u30FC\u30AF\u30F3\u306F\u30A2\u30D7\u30EA\u5358\u4F4D\u306E\u305F\u3081\uFF09\u3002
 
-#### kintone \u30AF\u30A8\u30EA\u69CB\u6587
-- \u6BD4\u8F03: fieldName = "value", fieldName > 100
-- \u6F14\u7B97\u5B50: and, or, not
-- \u30BD\u30FC\u30C8: order by fieldName asc/desc
-- \u5236\u9650: limit 100 offset 0
-- \u6587\u5B57\u5217: like "\u90E8\u5206\u4E00\u81F4"
+### \u30A2\u30D7\u30EA\u30B9\u30B3\u30FC\u30D7\uFF08\u91CD\u8981\uFF09
+
+- \u5404\u63A5\u7D9A\u306F1\u3064\u306E\u30A2\u30D7\u30EA\u306B\u30B9\u30B3\u30FC\u30D7\u3055\u308C\u3066\u3044\u307E\u3059\uFF08"app-id" \u30D1\u30E9\u30E1\u30FC\u30BF\u3067\u8A2D\u5B9A\uFF09\u3002
+- request \u30C4\u30FC\u30EB\u306F\u8A2D\u5B9A\u3055\u308C\u305F\u30A2\u30D7\u30EAID\u3092\u81EA\u52D5\u6CE8\u5165\u3057\u307E\u3059:
+  - \u30AF\u30A8\u30EA\u6587\u5B57\u5217: \`records.json\` \u3084 \`app/form/fields.json\` \u7B49\u306E\u30D1\u30B9\u306B \`app=\` \u304C\u7121\u3051\u308C\u3070 \`app=<appId>\` \u3092\u4ED8\u4E0E\u3057\u307E\u3059\u3002\`app.json\`\uFF08\u30A2\u30D7\u30EA\u30E1\u30BF\u60C5\u5831\uFF09\u306E\u5834\u5408\u306F\u4EE3\u308F\u308A\u306B \`id=<appId>\` \u3092\u4ED8\u4E0E\u3057\u307E\u3059\u3002
+  - \u30EA\u30AF\u30A8\u30B9\u30C8\u30DC\u30C7\u30A3: POST/PUT \u306E\u30DC\u30C7\u30A3\u306B \`"app"\` \u304C\u7121\u3051\u308C\u3070\u81EA\u52D5\u7684\u306B\u8FFD\u52A0\u3057\u307E\u3059\u3002
+- \u30D1\u30B9\u306B "app=" \u3084\u30DC\u30C7\u30A3\u306B "app" \u3092\u660E\u793A\u3059\u308B\u5FC5\u8981\u306F\u3042\u308A\u307E\u305B\u3093 \u2014 \u81EA\u52D5\u3067\u51E6\u7406\u3055\u308C\u307E\u3059\u3002
+- \`apps.json\`\uFF08\u5168\u30A2\u30D7\u30EA\u4E00\u89A7\uFF09\u306F API Token \u8A8D\u8A3C\u3067\u306F\u547C\u3073\u51FA\u305B\u307E\u305B\u3093\u3002
 
 ### Business Logic
 
-\u3053\u306E\u30B3\u30CD\u30AF\u30BF\u306E\u30D3\u30B8\u30CD\u30B9\u30ED\u30B8\u30C3\u30AF\u30BF\u30A4\u30D7\u306F "typescript" \u3067\u3059\u3002\u4EE5\u4E0B\u306B\u793A\u3059\u30B3\u30CD\u30AF\u30BFSDK\u3092\u4F7F\u7528\u3057\u3066\u30CF\u30F3\u30C9\u30E9\u30B3\u30FC\u30C9\u3092\u8A18\u8FF0\u3057\u3066\u304F\u3060\u3055\u3044\u3002\u74B0\u5883\u5909\u6570\u304B\u3089\u76F4\u63A5\u8A8D\u8A3C\u60C5\u5831\u306B\u30A2\u30AF\u30BB\u30B9\u3057\u306A\u3044\u3067\u304F\u3060\u3055\u3044\u3002
+\u3053\u306E\u30B3\u30CD\u30AF\u30BF\u306E\u30D3\u30B8\u30CD\u30B9\u30ED\u30B8\u30C3\u30AF\u30BF\u30A4\u30D7\u306F "typescript" \u3067\u3059\u3002\u30CF\u30F3\u30C9\u30E9\u5185\u3067\u306F\u30B3\u30CD\u30AF\u30BFSDK\u3092\u4F7F\u7528\u3057\u3066\u304F\u3060\u3055\u3044\u3002\u74B0\u5883\u5909\u6570\u304B\u3089\u8A8D\u8A3C\u60C5\u5831\u3092\u8AAD\u307F\u53D6\u3089\u306A\u3044\u3067\u304F\u3060\u3055\u3044\u3002
 
-#### Example
+SDK\uFF08\`connection(connectionId)\` \u3067\u4F5C\u6210\u3057\u305F\u30AF\u30E9\u30A4\u30A2\u30F3\u30C8\uFF09:
+- \`client.appId\` \u2014 \u3053\u306E\u63A5\u7D9A\u304C\u30B9\u30B3\u30FC\u30D7\u3055\u308C\u3066\u3044\u308B\u30A2\u30D7\u30EAID
+- \`client.request(path, init?)\` \u2014 \u4F4E\u30EC\u30D9\u30EB\u306E\u8A8D\u8A3C\u4ED8\u304Dfetch\uFF08\`?app=\${client.appId}\` \u306F\u81EA\u5206\u3067\u4ED8\u3051\u308B\uFF09
+- \`client.getRecords(appId?, options?)\` \u2014 \`appId\` \u3092\u7701\u7565\u3059\u308B\u3068\u63A5\u7D9A\u306E\u30A2\u30D7\u30EAID\u304C\u4F7F\u308F\u308C\u307E\u3059
+- \`client.getRecord(appIdOrRecordId, recordId?)\` \u2014 \u5F15\u65701\u3064\u3067\u547C\u3076\u3068\u305D\u308C\u3092\u30EC\u30B3\u30FC\u30C9ID\u3068\u3057\u3066\u6271\u3044\u3001\u63A5\u7D9A\u306E\u30A2\u30D7\u30EAID\u3092\u4F7F\u3044\u307E\u3059
 
 \`\`\`ts
-import { connection } from "@squadbase/vite-server/connectors/kintone-api-key";
+import type { Context } from "hono";
+import { connection } from "@squadbase/vite-server/connectors/kintone-api-token";
 
 const kintone = connection("<connectionId>");
 
-// Authenticated fetch (returns standard Response)
-const res = await kintone.request("/k/v1/records.json?app=1&query=limit 10");
-const data = await res.json();
+export default async function handler(c: Context) {
+  const { status = "Active" } = await c.req.json<{ status?: string }>();
+
+  const { records, totalCount } = await kintone.getRecords(undefined, {
+    query: \`status = "\${status}" order by updatedTime desc limit 100\`,
+    fields: ["$id", "name", "email", "status", "updatedTime"],
+    totalCount: true,
+  });
+
+  return c.json({
+    totalCount,
+    rows: records.map((r) => ({
+      id: r.$id.value,
+      name: r.name?.value,
+      email: r.email?.value,
+      status: r.status?.value,
+      updatedTime: r.updatedTime?.value,
+    })),
+  });
+}
+\`\`\`
 
-await kintone.request("/k/v1/record.json", {
-  method: "POST",
-  body: JSON.stringify({ app: 1, record: { title: { value: "Hello" } } }),
-});
-\`\`\``
+### kintone REST API \u30EA\u30D5\u30A1\u30EC\u30F3\u30B9
+
+#### \u30A2\u30D7\u30EA\u30E1\u30BF\u60C5\u5831\u306E\u53D6\u5F97
+- \`GET app.json\`   \u2192 { appId, name, description, createdAt, modifiedAt, creator, ... } \u3092\u8FD4\u3059
+
+#### \u30D5\u30A3\u30FC\u30EB\u30C9\u5B9A\u7FA9\u306E\u53D6\u5F97
+- \`GET app/form/fields.json\`
+
+#### \u30EC\u30B3\u30FC\u30C9\u306E\u53D6\u5F97
+- \`GET records.json?query={query}\`
+- \u30AF\u30A8\u30EA\u4F8B: \`records.json?query=updatedTime > "2024-01-01" order by recordNumber asc limit 100\`
+
+#### \u30EC\u30B3\u30FC\u30C9\u306E\u8FFD\u52A0
+- \`POST record.json\`
+- Body: \`{ "record": { "fieldName": { "value": "value" } } }\`
+
+#### kintone \u30AF\u30A8\u30EA\u69CB\u6587
+- \u6BD4\u8F03: \`fieldName = "value"\`, \`fieldName > 100\`
+- \u6F14\u7B97\u5B50: \`and\`, \`or\`, \`not\`
+- \u30BD\u30FC\u30C8: \`order by fieldName asc/desc\`
+- \u5236\u9650: \`limit 100 offset 0\`
+- \u6587\u5B57\u5217: \`like "\u90E8\u5206\u4E00\u81F4"\``
   },
   tools
 });

package/dist/connectors/kintone.js

@@ -224,21 +224,58 @@ var ConnectorPlugin = class _ConnectorPlugin {
    * Filters connections by connectorKey internally.
    * Returns tools keyed as `${connectorKey}_${toolName}`.
    */
-  createTools(connections, config) {
+  createTools(connections, config, opts) {
     const myConnections = connections.filter(
       (c) => _ConnectorPlugin.deriveKey(c.connector.slug, c.connector.authType) === this.connectorKey
     );
     const result = {};
     for (const t of Object.values(this.tools)) {
-      result[`${this.connectorKey}_${t.name}`] = t.createTool(
-        myConnections,
-        config
-      );
+      const tool = t.createTool(myConnections, config);
+      const originalToModelOutput = tool.toModelOutput;
+      result[`${this.connectorKey}_${t.name}`] = {
+        ...tool,
+        toModelOutput: async (options) => {
+          if (!originalToModelOutput) {
+            return opts.truncateOutput(options.output);
+          }
+          const modelOutput = await originalToModelOutput(options);
+          if (modelOutput.type === "text" || modelOutput.type === "json") {
+            return opts.truncateOutput(modelOutput.value);
+          }
+          return modelOutput;
+        }
+      };
     }
     return result;
   }
   static deriveKey(slug, authType) {
-    return authType ? `${slug}-${authType}` : slug;
+    if (authType) return `${slug}-${authType}`;
+    const LEGACY_NULL_AUTH_TYPE_MAP = {
+      // user-password
+      "postgresql": "user-password",
+      "mysql": "user-password",
+      "clickhouse": "user-password",
+      "kintone": "user-password",
+      "squadbase-db": "user-password",
+      // service-account
+      "snowflake": "service-account",
+      "bigquery": "service-account",
+      "google-analytics": "service-account",
+      "google-calendar": "service-account",
+      "aws-athena": "service-account",
+      "redshift": "service-account",
+      // api-key
+      "databricks": "api-key",
+      "dbt": "api-key",
+      "airtable": "api-key",
+      "openai": "api-key",
+      "gemini": "api-key",
+      "anthropic": "api-key",
+      "wix-store": "api-key"
+    };
+    const fallbackAuthType = LEGACY_NULL_AUTH_TYPE_MAP[slug];
+    if (fallbackAuthType) return `${slug}-${fallbackAuthType}`;
+    return slug;
   }
 };