@tetrascience-npm/tetrascience-react-ui 0.4.0-beta.8.1 → 0.4.0

package/dist/server.js

@@ -0,0 +1,266 @@
+import { TDPClient as T } from "@tetrascience-npm/ts-connectors-sdk";
+import { I as i } from "./exceptions-jCQ6h5C8.js";
+import { M as $, P as z, a as G, Q as L } from "./exceptions-jCQ6h5C8.js";
+import { buildSnowflakeProvider as m } from "./providers/snowflake.js";
+import { SnowflakeProvider as H } from "./providers/snowflake.js";
+import { buildDatabricksProvider as y } from "./providers/databricks.js";
+import { DatabricksProvider as K } from "./providers/databricks.js";
+import { getTdpAthenaProvider as P } from "./providers/athena.js";
+import { AthenaProvider as X } from "./providers/athena.js";
+const C = 60, p = 1e3, k = 5 * C * p;
+class E {
+  baseUrlOverride;
+  connectorId;
+  orgSlug;
+  tokenCache;
+  tokenRefreshThresholdMs;
+  tdpClient;
+  constructor(e = {}) {
+    this.baseUrlOverride = e.baseUrl, this.connectorId = process.env.CONNECTOR_ID, this.orgSlug = process.env.ORG_SLUG, this.tokenCache = /* @__PURE__ */ new Map(), this.tokenRefreshThresholdMs = e.tokenRefreshThresholdMs || k, this.tdpClient = null;
+  }
+  /**
+   * Get the base URL for TDP API calls.
+   * Throws an error if not configured (either via config.baseUrl or TDP_ENDPOINT env var).
+   */
+  getBaseUrl() {
+    const e = this.baseUrlOverride || process.env.TDP_ENDPOINT;
+    if (!e)
+      throw new Error("TDP base URL not configured. Set TDP_ENDPOINT environment variable or pass baseUrl in config.");
+    return e;
+  }
+  /**
+   * Decode JWT payload without verifying signature.
+   * Used only for reading expiration times for cache invalidation.
+   * Signature verification is NOT performed here.
+   */
+  decodeJwtPayload(e) {
+    try {
+      const r = e.split(".");
+      if (r.length !== 3)
+        return console.warn("Invalid JWT token format"), null;
+      const o = r[1].replace(/-/g, "+").replace(/_/g, "/"), a = o.padEnd(o.length + (4 - o.length % 4) % 4, "=");
+      return JSON.parse(Buffer.from(a, "base64").toString("utf-8"));
+    } catch (r) {
+      return console.warn("Error decoding JWT token:", r), null;
+    }
+  }
+  /** Check if payload is expiring within the refresh threshold */
+  isPayloadExpiringSoon(e) {
+    if (!e.exp)
+      return console.warn("JWT token has no expiration claim"), !0;
+    const r = e.exp * p, n = Date.now() + this.tokenRefreshThresholdMs;
+    return r <= n;
+  }
+  /** Get valid cached token if not expiring */
+  getValidUserJwt(e) {
+    const r = this.tokenCache.get(e);
+    return r && !this.isPayloadExpiringSoon(r.payload) ? r.token : (r && this.tokenCache.delete(e), null);
+  }
+  /** Initialize or get TDP client */
+  async getTdpClient() {
+    if (this.tdpClient !== null)
+      return this.tdpClient;
+    if (!this.connectorId || !this.orgSlug)
+      throw new Error("Missing required configuration: CONNECTOR_ID or ORG_SLUG");
+    const e = this.getBaseUrl();
+    try {
+      const r = new T({
+        tdpEndpoint: e,
+        connectorId: this.connectorId,
+        orgSlug: this.orgSlug,
+        artifactType: "data-app"
+      });
+      return await r.init(), this.tdpClient = r, this.tdpClient;
+    } catch (r) {
+      throw console.error("Failed to initialize TDP client:", r), r;
+    }
+  }
+  /** Retrieve JWT from connector K/V store using getValues (calls getConnectorData internally) */
+  async getJwtFromTokenRefInternal(e) {
+    const r = await this.getTdpClient();
+    try {
+      const n = await r.getValues([e]);
+      if (n && n.length > 0 && n[0]?.jwt) {
+        const o = n[0].jwt, a = this.decodeJwtPayload(o);
+        return a && this.tokenCache.set(e, { token: o, payload: a }), o;
+      }
+      console.error(`No JWT found for key '${e}' in connector store`);
+    } catch (n) {
+      console.error("Error retrieving JWT token:", n);
+    }
+    return null;
+  }
+  /** Resolve ts-token-ref to full JWT token (with caching) */
+  async getJwtFromTokenRef(e) {
+    if (!e || !this.orgSlug)
+      return console.warn("Missing required parameters for JWT token retrieval"), null;
+    const r = this.getValidUserJwt(e);
+    return r || this.getJwtFromTokenRefInternal(e);
+  }
+  /** Get token from cookies (ts-auth-token or resolved ts-token-ref) */
+  async getUserToken(e) {
+    const r = e["ts-auth-token"] || process.env.TS_AUTH_TOKEN;
+    if (r)
+      return r;
+    const n = e["ts-token-ref"];
+    if (n && this.connectorId) {
+      const o = await this.getJwtFromTokenRef(n);
+      if (o)
+        return o;
+      console.warn("Failed to resolve ts-token-ref to JWT token");
+    } else n && console.error("Connector ID not configured");
+    return console.warn("No valid authentication token found"), null;
+  }
+  /**
+   * Get user token from an Express request object.
+   * This is the primary method for Express middleware integration.
+   *
+   * @example
+   * ```typescript
+   * import { jwtManager } from '@tetrascience-npm/tetrascience-react-ui/server';
+   *
+   * app.use(async (req, res, next) => {
+   *   const token = await jwtManager.getTokenFromExpressRequest(req);
+   *   req.tdpAuth = { token, orgSlug: process.env.ORG_SLUG };
+   *   next();
+   * });
+   * ```
+   */
+  async getTokenFromExpressRequest(e) {
+    return this.getUserToken(e.cookies || {});
+  }
+  /** Clear the token cache */
+  clearCache() {
+    this.tokenCache.clear();
+  }
+}
+const _ = new E();
+function I(t, e) {
+  if (typeof t != "object" || t === null)
+    throw new i(
+      `Invalid provider configuration at index ${e}: expected an object`
+    );
+  const r = t;
+  if (typeof r.name != "string")
+    throw new i(
+      `Invalid provider configuration at index ${e}: 'name' must be a string`
+    );
+  if (typeof r.type != "string")
+    throw new i(
+      `Invalid provider configuration at index ${e}: 'type' must be a string`
+    );
+  if (typeof r.fields != "object" || r.fields === null)
+    throw new i(
+      `Invalid provider configuration at index ${e}: 'fields' must be an object`
+    );
+  return {
+    name: r.name,
+    type: r.type,
+    iconUrl: typeof r.iconUrl == "string" ? r.iconUrl : void 0,
+    fields: r.fields
+  };
+}
+function b(t) {
+  try {
+    const e = JSON.parse(t);
+    if (!Array.isArray(e))
+      throw new i(
+        "Invalid provider configuration: expected an array of provider configurations"
+      );
+    return e.map(I);
+  } catch (e) {
+    throw e instanceof i ? e : new i(
+      `Invalid provider configuration JSON in DATA_APP_PROVIDER_CONFIG: ${e instanceof Error ? e.message : String(e)}`
+    );
+  }
+}
+async function R(t, e = {}) {
+  const r = e.providerConfigOverride || process.env.DATA_APP_PROVIDER_CONFIG;
+  if (r)
+    return b(r);
+  if (!t.isInitialized)
+    throw new Error(
+      "TDPClient is not initialized. Call await client.init() before using getProviderConfigurations."
+    );
+  const n = e.connectorId || process.env.CONNECTOR_ID;
+  if (!n)
+    return console.warn(
+      "Environment variable CONNECTOR_ID is not set. Unable to fetch providers."
+    ), [];
+  const o = t.config.orgSlug, f = (await t.api.dataApps.getOrganizationBySlug(o)).id, u = await t.api.dataApps.getContainerDataApp(n), c = [];
+  for (const g of u.providers) {
+    const s = await t.api.dataApps.getProviderById(
+      g.id,
+      f
+    ), l = {};
+    for (const d of s.secrets) {
+      const v = d.name, w = process.env[d.envName];
+      l[v] = w;
+    }
+    const h = {
+      name: s.name,
+      type: s.type,
+      iconUrl: s.iconUrl,
+      fields: l
+    };
+    c.push(h);
+  }
+  return c;
+}
+function J(t) {
+  return t.map((e) => ({
+    name: e.name,
+    type: e.type,
+    iconUrl: e.iconUrl ?? null,
+    availableFields: Object.keys(e.fields)
+  }));
+}
+function A(t, e) {
+  return t.find((r) => r.name === e);
+}
+function M(t, e) {
+  return t.filter((r) => r.type === e);
+}
+function x(t) {
+  return t.map((e) => e.name);
+}
+function F(t) {
+  return [...new Set(t.map((e) => e.type))];
+}
+async function j(t) {
+  switch (t.type) {
+    case "snowflake":
+      return m(t);
+    case "databricks":
+      return y(t);
+    case "athena":
+      return P();
+    default:
+      throw new i(
+        `Unsupported provider type: ${t.type}`
+      );
+  }
+}
+export {
+  X as AthenaProvider,
+  K as DatabricksProvider,
+  i as InvalidProviderConfigurationError,
+  E as JwtTokenManager,
+  $ as MissingTableError,
+  z as ProviderConnectionError,
+  G as ProviderError,
+  L as QueryError,
+  H as SnowflakeProvider,
+  y as buildDatabricksProvider,
+  j as buildProvider,
+  m as buildSnowflakeProvider,
+  A as getProviderByName,
+  R as getProviderConfigurations,
+  J as getProviderInfoList,
+  x as getProviderNames,
+  F as getProviderTypes,
+  M as getProvidersByType,
+  P as getTdpAthenaProvider,
+  _ as jwtManager
+};
+//# sourceMappingURL=server.js.map

package/dist/server.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"server.js","sources":["../src/server/auth/JwtTokenManager.ts","../src/server/providers/getProviderConfigurations.ts","../src/server/providers/providerDiscovery.ts","../src/server/providers/buildProvider.ts"],"sourcesContent":["/**\n * JWT Token Manager for TetraScience Data Apps\n *\n * Handles authentication token retrieval from Express request cookies,\n * supporting both direct JWT tokens (ts-auth-token) and token references\n * (ts-token-ref) that are resolved via the connector K/V store.\n *\n * Note: This manager does not perform cryptographic verification of JWT signatures.\n * Signature verification is the responsibility of the consuming application or\n * the upstream authentication layer. The JWT payload is decoded only to read\n * expiration times for cache invalidation.\n */\n\nimport { TDPClient } from \"@tetrascience-npm/ts-connectors-sdk\";\n\n/** Configuration options for JwtTokenManager */\nexport interface JwtTokenManagerConfig {\n  baseUrl?: string;\n  tokenRefreshThresholdMs?: number;\n}\n\n/** Cookie dictionary type - matches Express req.cookies */\nexport interface CookieDict {\n  [key: string]: string;\n}\n\n/** Express-like request interface (works with Express, Koa, etc.) */\nexport interface ExpressRequestLike {\n  cookies?: CookieDict;\n}\n\n/** JWT payload structure */\ninterface JwtPayload {\n  exp?: number;\n  iat?: number;\n  [key: string]: unknown;\n}\n\n/** Cached token entry storing both raw token and parsed payload */\ninterface CachedTokenEntry {\n  token: string;\n  payload: JwtPayload;\n}\n\n/** Number of seconds in a minute */\nconst SECONDS_PER_MINUTE = 60;\n/** Milliseconds per second */\nconst MS_PER_SECOND = 1000;\nconst DEFAULT_TOKEN_REFRESH_THRESHOLD_MS = 5 * SECONDS_PER_MINUTE * MS_PER_SECOND; // 5 minutes\n\n/**\n * Manages JWT token retrieval from request cookies.\n * Supports both ts-auth-token (direct JWT) and ts-token-ref (resolved via connector store).\n */\nexport class JwtTokenManager {\n  private baseUrlOverride: string | undefined;\n  private connectorId: string | undefined;\n  private orgSlug: string | undefined;\n  private tokenCache: Map<string, CachedTokenEntry>;\n  private tokenRefreshThresholdMs: number;\n  private tdpClient: TDPClient | null;\n\n  constructor(config: JwtTokenManagerConfig = {}) {\n    this.baseUrlOverride = config.baseUrl;\n    this.connectorId = process.env.CONNECTOR_ID;\n    this.orgSlug = process.env.ORG_SLUG;\n    this.tokenCache = new Map();\n    this.tokenRefreshThresholdMs = config.tokenRefreshThresholdMs || DEFAULT_TOKEN_REFRESH_THRESHOLD_MS;\n    this.tdpClient = null;\n  }\n\n  /**\n   * Get the base URL for TDP API calls.\n   * Throws an error if not configured (either via config.baseUrl or TDP_ENDPOINT env var).\n   */\n  private getBaseUrl(): string {\n    const baseUrl = this.baseUrlOverride || process.env.TDP_ENDPOINT;\n    if (!baseUrl) {\n      throw new Error(\"TDP base URL not configured. Set TDP_ENDPOINT environment variable or pass baseUrl in config.\");\n    }\n    return baseUrl;\n  }\n\n  /**\n   * Decode JWT payload without verifying signature.\n   * Used only for reading expiration times for cache invalidation.\n   * Signature verification is NOT performed here.\n   */\n  private decodeJwtPayload(token: string): JwtPayload | null {\n    try {\n      const parts = token.split(\".\");\n      if (parts.length !== 3) {\n        console.warn(\"Invalid JWT token format\");\n        return null;\n      }\n\n      const payload = parts[1];\n      const base64 = payload.replace(/-/g, \"+\").replace(/_/g, \"/\");\n      const paddedBase64 = base64.padEnd(base64.length + ((4 - (base64.length % 4)) % 4), \"=\");\n\n      // Use Buffer.from for Node.js compatibility (atob not available in all runtimes)\n      return JSON.parse(Buffer.from(paddedBase64, \"base64\").toString(\"utf-8\"));\n    } catch (error) {\n      console.warn(\"Error decoding JWT token:\", error);\n      return null;\n    }\n  }\n\n  /** Check if payload is expiring within the refresh threshold */\n  private isPayloadExpiringSoon(payload: JwtPayload): boolean {\n    if (!payload.exp) {\n      console.warn(\"JWT token has no expiration claim\");\n      return true;\n    }\n\n    const expiryTimeMs = payload.exp * MS_PER_SECOND;\n    const refreshTimeMs = Date.now() + this.tokenRefreshThresholdMs;\n    return expiryTimeMs <= refreshTimeMs;\n  }\n\n  /** Get valid cached token if not expiring */\n  private getValidUserJwt(tokenRef: string): string | null {\n    const cached = this.tokenCache.get(tokenRef);\n    if (cached && !this.isPayloadExpiringSoon(cached.payload)) {\n      return cached.token;\n    }\n    // Clean up expired entry to prevent unbounded cache growth\n    if (cached) {\n      // TODO: If data apps become high-traffic, consider enhancing with\n      // an LRU cache (e.g., lru-cache package) to purge stale entries automatically\n      this.tokenCache.delete(tokenRef);\n    }\n    return null;\n  }\n\n  /** Initialize or get TDP client */\n  private async getTdpClient(): Promise<TDPClient> {\n    if (this.tdpClient !== null) {\n      return this.tdpClient;\n    }\n\n    if (!this.connectorId || !this.orgSlug) {\n      throw new Error(\"Missing required configuration: CONNECTOR_ID or ORG_SLUG\");\n    }\n\n    // getBaseUrl() throws if TDP_ENDPOINT not configured - let it propagate\n    const baseUrl = this.getBaseUrl();\n\n    try {\n      const client = new TDPClient({\n        tdpEndpoint: baseUrl,\n        connectorId: this.connectorId,\n        orgSlug: this.orgSlug,\n        artifactType: \"data-app\",\n      });\n\n      await client.init();\n      // Only assign after successful initialization to allow retry on failure\n      this.tdpClient = client;\n      return this.tdpClient;\n    } catch (error) {\n      // Log init errors but rethrow so callers know something went wrong\n      console.error(\"Failed to initialize TDP client:\", error);\n      throw error;\n    }\n  }\n\n  /** Retrieve JWT from connector K/V store using getValues (calls getConnectorData internally) */\n  private async getJwtFromTokenRefInternal(tokenRef: string): Promise<string | null> {\n    // getTdpClient() throws on config errors - let those propagate\n    const tdpClient = await this.getTdpClient();\n\n    try {\n      // getValues returns array of values for the given keys\n      // Each value is expected to have a jwt property: { jwt: \"...\" }\n      const values = await tdpClient.getValues([tokenRef]);\n\n      if (values && values.length > 0 && values[0]?.jwt) {\n        const jwtToken = values[0].jwt;\n        // Parse and cache both the raw token and its payload to avoid repeated decoding\n        const payload = this.decodeJwtPayload(jwtToken);\n        if (payload) {\n          this.tokenCache.set(tokenRef, { token: jwtToken, payload });\n        }\n        return jwtToken;\n      }\n\n      console.error(`No JWT found for key '${tokenRef}' in connector store`);\n    } catch (error) {\n      console.error(\"Error retrieving JWT token:\", error);\n    }\n\n    return null;\n  }\n\n  /** Resolve ts-token-ref to full JWT token (with caching) */\n  async getJwtFromTokenRef(tokenRef: string): Promise<string | null> {\n    if (!tokenRef || !this.orgSlug) {\n      console.warn(\"Missing required parameters for JWT token retrieval\");\n      return null;\n    }\n\n    const cachedUserToken = this.getValidUserJwt(tokenRef);\n    if (cachedUserToken) {\n      return cachedUserToken;\n    }\n\n    return this.getJwtFromTokenRefInternal(tokenRef);\n  }\n\n  /** Get token from cookies (ts-auth-token or resolved ts-token-ref) */\n  async getUserToken(cookies: CookieDict): Promise<string | null> {\n    // Prefer ts-auth-token or TS_AUTH_TOKEN env var (latter is for local dev testing)\n    const authToken = cookies[\"ts-auth-token\"] || process.env.TS_AUTH_TOKEN;\n    if (authToken) {\n      return authToken;\n    }\n\n    // Try to resolve ts-token-ref\n    const tokenRef = cookies[\"ts-token-ref\"];\n    if (tokenRef && this.connectorId) {\n      const jwtToken = await this.getJwtFromTokenRef(tokenRef);\n      if (jwtToken) {\n        return jwtToken;\n      }\n      console.warn(\"Failed to resolve ts-token-ref to JWT token\");\n    } else if (tokenRef) {\n      console.error(\"Connector ID not configured\");\n    }\n\n    console.warn(\"No valid authentication token found\");\n    return null;\n  }\n\n  /**\n   * Get user token from an Express request object.\n   * This is the primary method for Express middleware integration.\n   *\n   * @example\n   * ```typescript\n   * import { jwtManager } from '@tetrascience-npm/tetrascience-react-ui/server';\n   *\n   * app.use(async (req, res, next) => {\n   *   const token = await jwtManager.getTokenFromExpressRequest(req);\n   *   req.tdpAuth = { token, orgSlug: process.env.ORG_SLUG };\n   *   next();\n   * });\n   * ```\n   */\n  async getTokenFromExpressRequest(req: ExpressRequestLike): Promise<string | null> {\n    // Handle missing cookies gracefully (e.g., if cookie-parser middleware not installed)\n    return this.getUserToken(req.cookies || {});\n  }\n\n  /** Clear the token cache */\n  clearCache(): void {\n    this.tokenCache.clear();\n  }\n}\n\n/**\n * Global singleton instance.\n *\n * Note: This instance is created when the module is imported. Configuration\n * that depends on environment variables (CONNECTOR_ID, ORG_SLUG, TDP_ENDPOINT)\n * is read at module load time. Ensure these environment\n * variables are set before importing this module.\n *\n * If you need different configuration at runtime, create a new JwtTokenManager\n * instance instead of using this singleton.\n */\nexport const jwtManager = new JwtTokenManager();\n","/**\n * Get Provider Configurations\n *\n * TypeScript equivalent of get_provider_configurations from\n * ts-lib-ui-kit-streamlit/tetrascience/data_app_providers/provider.py\n *\n * Retrieves data app provider configurations either from environment variable\n * override or by fetching from the TDP API.\n */\n\nimport { InvalidProviderConfigurationError } from \"./exceptions\";\n\nimport type {\n  GetProviderConfigurationsOptions,\n  ProviderConfiguration,\n} from \"./types\";\nimport type { TDPClient } from \"@tetrascience-npm/ts-connectors-sdk\";\n\n// Re-export for backwards compatibility\nexport { InvalidProviderConfigurationError };\n\n/**\n * Validates and parses a single provider configuration object.\n * @internal\n */\nfunction validateProviderConfigItem(\n  item: unknown,\n  index: number,\n): ProviderConfiguration {\n  if (typeof item !== \"object\" || item === null) {\n    throw new InvalidProviderConfigurationError(\n      `Invalid provider configuration at index ${index}: expected an object`,\n    );\n  }\n\n  const obj = item as Record<string, unknown>;\n\n  if (typeof obj.name !== \"string\") {\n    throw new InvalidProviderConfigurationError(\n      `Invalid provider configuration at index ${index}: 'name' must be a string`,\n    );\n  }\n  if (typeof obj.type !== \"string\") {\n    throw new InvalidProviderConfigurationError(\n      `Invalid provider configuration at index ${index}: 'type' must be a string`,\n    );\n  }\n  if (typeof obj.fields !== \"object\" || obj.fields === null) {\n    throw new InvalidProviderConfigurationError(\n      `Invalid provider configuration at index ${index}: 'fields' must be an object`,\n    );\n  }\n\n  return {\n    name: obj.name,\n    type: obj.type,\n    iconUrl: typeof obj.iconUrl === \"string\" ? obj.iconUrl : undefined,\n    fields: obj.fields as Record<string, string | undefined>,\n  } satisfies ProviderConfiguration;\n}\n\n/**\n * Parses provider configurations from a JSON config string.\n * @internal\n */\nfunction parseProviderConfigOverride(\n  configStr: string,\n): ProviderConfiguration[] {\n  try {\n    const parsed = JSON.parse(configStr);\n\n    // Validate it's an array\n    if (!Array.isArray(parsed)) {\n      throw new InvalidProviderConfigurationError(\n        \"Invalid provider configuration: expected an array of provider configurations\",\n      );\n    }\n\n    // Validate each entry has required fields\n    return parsed.map(validateProviderConfigItem);\n  } catch (e) {\n    if (e instanceof InvalidProviderConfigurationError) {\n      throw e;\n    }\n    throw new InvalidProviderConfigurationError(\n      `Invalid provider configuration JSON in DATA_APP_PROVIDER_CONFIG: ${e instanceof Error ? e.message : String(e)}`,\n    );\n  }\n}\n\n/**\n * Get the provider configurations.\n *\n * There are two ways to get the provider configurations:\n * 1. If the environment variable `DATA_APP_PROVIDER_CONFIG` is set or\n *    providerConfigOverride is provided, the provider configurations are read from it.\n * 2. If the environment variable `CONNECTOR_ID` is set or connectorId is provided,\n *    the provider configurations are fetched from TDP. The secrets are read from\n *    environment variables.\n * 3. If neither of the above is set, an empty array is returned.\n *\n * Option 1 is used for local development to specify the provider configurations directly.\n * Option 2 is used in production to fetch the provider configurations from TDP.\n *\n * @param client - Initialized TDPClient instance (call client.init() first)\n * @param options - Optional configuration overrides\n * @returns Array of provider configurations\n * @throws {InvalidProviderConfigurationError} If provider config JSON is invalid\n * @throws {Error} If TDPClient is not initialized\n *\n * @example\n * ```typescript\n * import { TDPClient } from '@tetrascience-npm/ts-connectors-sdk';\n * import { getProviderConfigurations } from '@tetrascience-npm/tetrascience-react-ui/server';\n *\n * // Initialize TDPClient with user's JWT token\n * // Other fields (tdpEndpoint, connectorId, orgSlug) are read from environment variables\n * const client = new TDPClient({\n *   authToken: userJwtToken, // from jwtManager.getTokenFromExpressRequest(req)\n *   artifactType: \"data-app\",\n * });\n * await client.init();\n *\n * const providers = await getProviderConfigurations(client);\n *\n * for (const provider of providers) {\n *   console.log(`Provider: ${provider.name} (${provider.type})`);\n * }\n * ```\n */\nexport async function getProviderConfigurations(\n  client: TDPClient,\n  options: GetProviderConfigurationsOptions = {},\n): Promise<ProviderConfiguration[]> {\n  // Check for override from options or environment variable\n  const configStr =\n    options.providerConfigOverride || process.env.DATA_APP_PROVIDER_CONFIG;\n\n  if (configStr) {\n    return parseProviderConfigOverride(configStr);\n  }\n\n  // Ensure TDPClient is initialized\n  if (!client.isInitialized) {\n    throw new Error(\n      \"TDPClient is not initialized. Call await client.init() before using getProviderConfigurations.\",\n    );\n  }\n\n  // Get connector ID from options or environment variable\n  const connectorId = options.connectorId || process.env.CONNECTOR_ID;\n\n  if (!connectorId) {\n    console.warn(\n      \"Environment variable CONNECTOR_ID is not set. Unable to fetch providers.\",\n    );\n    return [];\n  }\n\n  // Get orgId from organization lookup (needed for getProviderById)\n  const orgSlug = client.config.orgSlug;\n  const organization = await client.api!.dataApps.getOrganizationBySlug(orgSlug);\n  const orgId = organization.id;\n\n  // Fetch container data app from TDP\n  const containerApp = await client.api!.dataApps.getContainerDataApp(connectorId);\n\n  // Get provider configurations with secrets from environment variables\n  const providerConfigurations: ProviderConfiguration[] = [];\n\n  for (const minimalProvider of containerApp.providers) {\n    // Get full provider with secret names\n    const provider = await client.api!.dataApps.getProviderById(\n      minimalProvider.id,\n      orgId,\n    );\n\n    // Build fields from environment variables\n    // Use secret.name as the key (canonical field name like \"user\", \"password\", \"server_hostname\")\n    // and read the value from the environment variable specified by secret.envName\n    const fields: Record<string, string | undefined> = {};\n    for (const secret of provider.secrets) {\n      const fieldName = secret.name;\n      const secretValue = process.env[secret.envName];\n      fields[fieldName] = secretValue;\n    }\n\n    const config: ProviderConfiguration = {\n      name: provider.name,\n      type: provider.type,\n      iconUrl: provider.iconUrl,\n      fields,\n    };\n\n    providerConfigurations.push(config);\n  }\n\n  return providerConfigurations;\n}\n\n","/**\n * Provider Discovery Helpers\n *\n * Convenience functions for common provider discovery patterns in data apps.\n * These operate on the ProviderConfiguration[] returned by getProviderConfigurations()\n * and make it easy to populate dropdowns, find providers by name/type, and\n * list available providers without exposing secrets.\n */\n\nimport type { ProviderConfiguration, ProviderInfo } from \"./types\";\n\n/**\n * Extract display-friendly provider information from full configurations.\n *\n * Returns a list of {@link ProviderInfo} objects containing name, type,\n * iconUrl, and the names of available connection fields — suitable for\n * populating UI dropdowns and selection lists without exposing secret values.\n *\n * @param configs - Array of provider configurations from getProviderConfigurations()\n * @returns Array of display-friendly provider info objects\n *\n * @example\n * ```typescript\n * const configs = await getProviderConfigurations(client);\n * const providerList = getProviderInfoList(configs);\n * // [{ name: \"my-snowflake\", type: \"snowflake\", iconUrl: \"...\", availableFields: [\"user\", \"password\", \"account\"] }, ...]\n * ```\n */\nexport function getProviderInfoList(\n  configs: ProviderConfiguration[],\n): ProviderInfo[] {\n  return configs.map((config) => ({\n    name: config.name,\n    type: config.type,\n    iconUrl: config.iconUrl ?? null,\n    availableFields: Object.keys(config.fields),\n  }));\n}\n\n/**\n * Find a provider configuration by name.\n *\n * @param configs - Array of provider configurations from getProviderConfigurations()\n * @param name - The provider name to search for (case-sensitive)\n * @returns The matching provider configuration, or undefined if not found\n *\n * @example\n * ```typescript\n * const configs = await getProviderConfigurations(client);\n * const snowflake = getProviderByName(configs, \"my-snowflake-provider\");\n * if (snowflake) {\n *   const provider = await buildProvider(snowflake);\n * }\n * ```\n */\nexport function getProviderByName(\n  configs: ProviderConfiguration[],\n  name: string,\n): ProviderConfiguration | undefined {\n  return configs.find((config) => config.name === name);\n}\n\n/**\n * Find all provider configurations of a given type.\n *\n * @param configs - Array of provider configurations from getProviderConfigurations()\n * @param type - The provider type to filter by (e.g., \"snowflake\", \"databricks\", \"athena\")\n * @returns Array of matching provider configurations (may be empty)\n *\n * @example\n * ```typescript\n * const configs = await getProviderConfigurations(client);\n * const snowflakeProviders = getProvidersByType(configs, \"snowflake\");\n * for (const config of snowflakeProviders) {\n *   console.log(`Found Snowflake provider: ${config.name}`);\n * }\n * ```\n */\nexport function getProvidersByType(\n  configs: ProviderConfiguration[],\n  type: string,\n): ProviderConfiguration[] {\n  return configs.filter((config) => config.type === type);\n}\n\n/**\n * Get the names of all attached providers.\n *\n * @param configs - Array of provider configurations from getProviderConfigurations()\n * @returns Array of provider names\n *\n * @example\n * ```typescript\n * const configs = await getProviderConfigurations(client);\n * const names = getProviderNames(configs);\n * // [\"my-snowflake\", \"my-databricks\", \"my-athena\"]\n * ```\n */\nexport function getProviderNames(configs: ProviderConfiguration[]): string[] {\n  return configs.map((config) => config.name);\n}\n\n/**\n * Get the unique provider types available.\n *\n * @param configs - Array of provider configurations from getProviderConfigurations()\n * @returns Array of unique provider type strings\n *\n * @example\n * ```typescript\n * const configs = await getProviderConfigurations(client);\n * const types = getProviderTypes(configs);\n * // [\"snowflake\", \"databricks\"]\n * ```\n */\nexport function getProviderTypes(configs: ProviderConfiguration[]): string[] {\n  return [...new Set(configs.map((config) => config.type))];\n}\n\n","/**\n * Build Provider Factory\n *\n * TypeScript equivalent of build_provider from\n * ts-lib-ui-kit-streamlit/tetrascience/data_app_providers/provider.py\n */\n\nimport { getTdpAthenaProvider } from \"./AthenaProvider\";\nimport {\n  buildDatabricksProvider,\n} from \"./DatabricksProvider\";\nimport { InvalidProviderConfigurationError } from \"./getProviderConfigurations\";\nimport {\n  buildSnowflakeProvider,\n} from \"./SnowflakeProvider\";\n\nimport type { AthenaProvider} from \"./AthenaProvider\";\nimport type {\n  DatabricksProvider} from \"./DatabricksProvider\";\nimport type {\n  SnowflakeProvider} from \"./SnowflakeProvider\";\nimport type { ProviderConfiguration } from \"./types\";\n\n/**\n * Union type of all supported data providers\n */\nexport type DataProvider =\n  | SnowflakeProvider\n  | DatabricksProvider\n  | AthenaProvider;\n\n/**\n * Build a data provider from the configuration\n *\n * The return type is a union of specific provider types. More provider types\n * may be added in the future.\n *\n * @param config - Provider configuration\n * @returns Promise resolving to the appropriate data provider\n * @throws {InvalidProviderConfigurationError} If the provider type is not supported\n *\n * @example\n * ```typescript\n * import { TDPClient } from '@tetrascience-npm/ts-connectors-sdk';\n * import { buildProvider, getProviderConfigurations } from '@tetrascience-npm/tetrascience-react-ui/server';\n *\n * // Other fields (tdpEndpoint, connectorId, orgSlug) are read from environment variables\n * const client = new TDPClient({\n *   authToken: userJwt,\n *   artifactType: \"data-app\",\n * });\n * await client.init();\n * const configs = await getProviderConfigurations(client);\n *\n * const snowflakeConfig = configs.find(c => c.type === 'snowflake');\n * if (snowflakeConfig) {\n *   const provider = await buildProvider(snowflakeConfig);\n *   const results = await provider.query('SELECT * FROM my_table');\n * }\n * ```\n */\nexport async function buildProvider(\n  config: ProviderConfiguration,\n): Promise<DataProvider> {\n  switch (config.type) {\n    case \"snowflake\":\n      return buildSnowflakeProvider(config);\n    case \"databricks\":\n      return buildDatabricksProvider(config);\n    case \"athena\":\n      // For Athena, we typically use the TDP Athena provider\n      return getTdpAthenaProvider();\n    default:\n      throw new InvalidProviderConfigurationError(\n        `Unsupported provider type: ${config.type}`,\n      );\n  }\n}\n\n"],"names":["SECONDS_PER_MINUTE","MS_PER_SECOND","DEFAULT_TOKEN_REFRESH_THRESHOLD_MS","JwtTokenManager","config","baseUrl","token","parts","base64","paddedBase64","error","payload","expiryTimeMs","refreshTimeMs","tokenRef","cached","client","TDPClient","tdpClient","values","jwtToken","cachedUserToken","cookies","authToken","req","jwtManager","validateProviderConfigItem","item","index","InvalidProviderConfigurationError","obj","parseProviderConfigOverride","configStr","parsed","getProviderConfigurations","options","connectorId","orgSlug","orgId","containerApp","providerConfigurations","minimalProvider","provider","fields","secret","fieldName","secretValue","getProviderInfoList","configs","getProviderByName","name","getProvidersByType","type","getProviderNames","getProviderTypes","buildProvider","buildSnowflakeProvider","buildDatabricksProvider","getTdpAthenaProvider"],"mappings":";;;;;;;;;AA6CA,MAAMA,IAAqB,IAErBC,IAAgB,KAChBC,IAAqC,IAAIF,IAAqBC;AAM7D,MAAME,EAAgB;AAAA,EACnB;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,EAER,YAAYC,IAAgC,IAAI;AAC9C,SAAK,kBAAkBA,EAAO,SAC9B,KAAK,cAAc,QAAQ,IAAI,cAC/B,KAAK,UAAU,QAAQ,IAAI,UAC3B,KAAK,iCAAiB,IAAA,GACtB,KAAK,0BAA0BA,EAAO,2BAA2BF,GACjE,KAAK,YAAY;AAAA,EACnB;AAAA;AAAA;AAAA;AAAA;AAAA,EAMQ,aAAqB;AAC3B,UAAMG,IAAU,KAAK,mBAAmB,QAAQ,IAAI;AACpD,QAAI,CAACA;AACH,YAAM,IAAI,MAAM,+FAA+F;AAEjH,WAAOA;AAAA,EACT;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EAOQ,iBAAiBC,GAAkC;AACzD,QAAI;AACF,YAAMC,IAAQD,EAAM,MAAM,GAAG;AAC7B,UAAIC,EAAM,WAAW;AACnB,uBAAQ,KAAK,0BAA0B,GAChC;AAIT,YAAMC,IADUD,EAAM,CAAC,EACA,QAAQ,MAAM,GAAG,EAAE,QAAQ,MAAM,GAAG,GACrDE,IAAeD,EAAO,OAAOA,EAAO,UAAW,IAAKA,EAAO,SAAS,KAAM,GAAI,GAAG;AAGvF,aAAO,KAAK,MAAM,OAAO,KAAKC,GAAc,QAAQ,EAAE,SAAS,OAAO,CAAC;AAAA,IACzE,SAASC,GAAO;AACd,qBAAQ,KAAK,6BAA6BA,CAAK,GACxC;AAAA,IACT;AAAA,EACF;AAAA;AAAA,EAGQ,sBAAsBC,GAA8B;AAC1D,QAAI,CAACA,EAAQ;AACX,qBAAQ,KAAK,mCAAmC,GACzC;AAGT,UAAMC,IAAeD,EAAQ,MAAMV,GAC7BY,IAAgB,KAAK,IAAA,IAAQ,KAAK;AACxC,WAAOD,KAAgBC;AAAA,EACzB;AAAA;AAAA,EAGQ,gBAAgBC,GAAiC;AACvD,UAAMC,IAAS,KAAK,WAAW,IAAID,CAAQ;AAC3C,WAAIC,KAAU,CAAC,KAAK,sBAAsBA,EAAO,OAAO,IAC/CA,EAAO,SAGZA,KAGF,KAAK,WAAW,OAAOD,CAAQ,GAE1B;AAAA,EACT;AAAA;AAAA,EAGA,MAAc,eAAmC;AAC/C,QAAI,KAAK,cAAc;AACrB,aAAO,KAAK;AAGd,QAAI,CAAC,KAAK,eAAe,CAAC,KAAK;AAC7B,YAAM,IAAI,MAAM,0DAA0D;AAI5E,UAAMT,IAAU,KAAK,WAAA;AAErB,QAAI;AACF,YAAMW,IAAS,IAAIC,EAAU;AAAA,QAC3B,aAAaZ;AAAA,QACb,aAAa,KAAK;AAAA,QAClB,SAAS,KAAK;AAAA,QACd,cAAc;AAAA,MAAA,CACf;AAED,mBAAMW,EAAO,KAAA,GAEb,KAAK,YAAYA,GACV,KAAK;AAAA,IACd,SAASN,GAAO;AAEd,oBAAQ,MAAM,oCAAoCA,CAAK,GACjDA;AAAA,IACR;AAAA,EACF;AAAA;AAAA,EAGA,MAAc,2BAA2BI,GAA0C;AAEjF,UAAMI,IAAY,MAAM,KAAK,aAAA;AAE7B,QAAI;AAGF,YAAMC,IAAS,MAAMD,EAAU,UAAU,CAACJ,CAAQ,CAAC;AAEnD,UAAIK,KAAUA,EAAO,SAAS,KAAKA,EAAO,CAAC,GAAG,KAAK;AACjD,cAAMC,IAAWD,EAAO,CAAC,EAAE,KAErBR,IAAU,KAAK,iBAAiBS,CAAQ;AAC9C,eAAIT,KACF,KAAK,WAAW,IAAIG,GAAU,EAAE,OAAOM,GAAU,SAAAT,GAAS,GAErDS;AAAA,MACT;AAEA,cAAQ,MAAM,yBAAyBN,CAAQ,sBAAsB;AAAA,IACvE,SAASJ,GAAO;AACd,cAAQ,MAAM,+BAA+BA,CAAK;AAAA,IACpD;AAEA,WAAO;AAAA,EACT;AAAA;AAAA,EAGA,MAAM,mBAAmBI,GAA0C;AACjE,QAAI,CAACA,KAAY,CAAC,KAAK;AACrB,qBAAQ,KAAK,qDAAqD,GAC3D;AAGT,UAAMO,IAAkB,KAAK,gBAAgBP,CAAQ;AACrD,WAAIO,KAIG,KAAK,2BAA2BP,CAAQ;AAAA,EACjD;AAAA;AAAA,EAGA,MAAM,aAAaQ,GAA6C;AAE9D,UAAMC,IAAYD,EAAQ,eAAe,KAAK,QAAQ,IAAI;AAC1D,QAAIC;AACF,aAAOA;AAIT,UAAMT,IAAWQ,EAAQ,cAAc;AACvC,QAAIR,KAAY,KAAK,aAAa;AAChC,YAAMM,IAAW,MAAM,KAAK,mBAAmBN,CAAQ;AACvD,UAAIM;AACF,eAAOA;AAET,cAAQ,KAAK,6CAA6C;AAAA,IAC5D,OAAWN,KACT,QAAQ,MAAM,6BAA6B;AAG7C,mBAAQ,KAAK,qCAAqC,GAC3C;AAAA,EACT;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EAiBA,MAAM,2BAA2BU,GAAiD;AAEhF,WAAO,KAAK,aAAaA,EAAI,WAAW,CAAA,CAAE;AAAA,EAC5C;AAAA;AAAA,EAGA,aAAmB;AACjB,SAAK,WAAW,MAAA;AAAA,EAClB;AACF;AAaO,MAAMC,IAAa,IAAItB,EAAA;ACtP9B,SAASuB,EACPC,GACAC,GACuB;AACvB,MAAI,OAAOD,KAAS,YAAYA,MAAS;AACvC,UAAM,IAAIE;AAAA,MACR,2CAA2CD,CAAK;AAAA,IAAA;AAIpD,QAAME,IAAMH;AAEZ,MAAI,OAAOG,EAAI,QAAS;AACtB,UAAM,IAAID;AAAA,MACR,2CAA2CD,CAAK;AAAA,IAAA;AAGpD,MAAI,OAAOE,EAAI,QAAS;AACtB,UAAM,IAAID;AAAA,MACR,2CAA2CD,CAAK;AAAA,IAAA;AAGpD,MAAI,OAAOE,EAAI,UAAW,YAAYA,EAAI,WAAW;AACnD,UAAM,IAAID;AAAA,MACR,2CAA2CD,CAAK;AAAA,IAAA;AAIpD,SAAO;AAAA,IACL,MAAME,EAAI;AAAA,IACV,MAAMA,EAAI;AAAA,IACV,SAAS,OAAOA,EAAI,WAAY,WAAWA,EAAI,UAAU;AAAA,IACzD,QAAQA,EAAI;AAAA,EAAA;AAEhB;AAMA,SAASC,EACPC,GACyB;AACzB,MAAI;AACF,UAAMC,IAAS,KAAK,MAAMD,CAAS;AAGnC,QAAI,CAAC,MAAM,QAAQC,CAAM;AACvB,YAAM,IAAIJ;AAAA,QACR;AAAA,MAAA;AAKJ,WAAOI,EAAO,IAAIP,CAA0B;AAAA,EAC9C,SAAS,GAAG;AACV,UAAI,aAAaG,IACT,IAEF,IAAIA;AAAA,MACR,oEAAoE,aAAa,QAAQ,EAAE,UAAU,OAAO,CAAC,CAAC;AAAA,IAAA;AAAA,EAElH;AACF;AA0CA,eAAsBK,EACpBlB,GACAmB,IAA4C,IACV;AAElC,QAAMH,IACJG,EAAQ,0BAA0B,QAAQ,IAAI;AAEhD,MAAIH;AACF,WAAOD,EAA4BC,CAAS;AAI9C,MAAI,CAAChB,EAAO;AACV,UAAM,IAAI;AAAA,MACR;AAAA,IAAA;AAKJ,QAAMoB,IAAcD,EAAQ,eAAe,QAAQ,IAAI;AAEvD,MAAI,CAACC;AACH,mBAAQ;AAAA,MACN;AAAA,IAAA,GAEK,CAAA;AAIT,QAAMC,IAAUrB,EAAO,OAAO,SAExBsB,KADe,MAAMtB,EAAO,IAAK,SAAS,sBAAsBqB,CAAO,GAClD,IAGrBE,IAAe,MAAMvB,EAAO,IAAK,SAAS,oBAAoBoB,CAAW,GAGzEI,IAAkD,CAAA;AAExD,aAAWC,KAAmBF,EAAa,WAAW;AAEpD,UAAMG,IAAW,MAAM1B,EAAO,IAAK,SAAS;AAAA,MAC1CyB,EAAgB;AAAA,MAChBH;AAAA,IAAA,GAMIK,IAA6C,CAAA;AACnD,eAAWC,KAAUF,EAAS,SAAS;AACrC,YAAMG,IAAYD,EAAO,MACnBE,IAAc,QAAQ,IAAIF,EAAO,OAAO;AAC9C,MAAAD,EAAOE,CAAS,IAAIC;AAAA,IACtB;AAEA,UAAM1C,IAAgC;AAAA,MACpC,MAAMsC,EAAS;AAAA,MACf,MAAMA,EAAS;AAAA,MACf,SAASA,EAAS;AAAA,MAClB,QAAAC;AAAA,IAAA;AAGF,IAAAH,EAAuB,KAAKpC,CAAM;AAAA,EACpC;AAEA,SAAOoC;AACT;AC1KO,SAASO,EACdC,GACgB;AAChB,SAAOA,EAAQ,IAAI,CAAC5C,OAAY;AAAA,IAC9B,MAAMA,EAAO;AAAA,IACb,MAAMA,EAAO;AAAA,IACb,SAASA,EAAO,WAAW;AAAA,IAC3B,iBAAiB,OAAO,KAAKA,EAAO,MAAM;AAAA,EAAA,EAC1C;AACJ;AAkBO,SAAS6C,EACdD,GACAE,GACmC;AACnC,SAAOF,EAAQ,KAAK,CAAC5C,MAAWA,EAAO,SAAS8C,CAAI;AACtD;AAkBO,SAASC,EACdH,GACAI,GACyB;AACzB,SAAOJ,EAAQ,OAAO,CAAC5C,MAAWA,EAAO,SAASgD,CAAI;AACxD;AAeO,SAASC,EAAiBL,GAA4C;AAC3E,SAAOA,EAAQ,IAAI,CAAC5C,MAAWA,EAAO,IAAI;AAC5C;AAeO,SAASkD,EAAiBN,GAA4C;AAC3E,SAAO,CAAC,GAAG,IAAI,IAAIA,EAAQ,IAAI,CAAC5C,MAAWA,EAAO,IAAI,CAAC,CAAC;AAC1D;ACxDA,eAAsBmD,EACpBnD,GACuB;AACvB,UAAQA,EAAO,MAAA;AAAA,IACb,KAAK;AACH,aAAOoD,EAAuBpD,CAAM;AAAA,IACtC,KAAK;AACH,aAAOqD,EAAwBrD,CAAM;AAAA,IACvC,KAAK;AAEH,aAAOsD,EAAA;AAAA,IACT;AACE,YAAM,IAAI7B;AAAA,QACR,8BAA8BzB,EAAO,IAAI;AAAA,MAAA;AAAA,EAC3C;AAEN;"}

package/dist/{providers/types-Ck4uFaGp.d.ts → snowflake.d.ts}

@@ -1,82 +1,125 @@
-/**
- * Provider Exceptions
- *
- * TypeScript equivalents of the Python exceptions from
- * ts-lib-ui-kit-streamlit/tetrascience/data_app_providers/exceptions.py
- */
-/**
- * Base class for provider errors
- */
-declare class ProviderError extends Error {
-    constructor(message: string);
-}
-/**
- * Raised when a table is missing in the database
- */
-declare class MissingTableError extends ProviderError {
-    constructor(message: string);
-}
-/**
- * Raised when a query fails
- */
-declare class QueryError extends ProviderError {
-    constructor(message: string);
-}
-/**
- * Raised when connecting to a provider fails
- */
-declare class ProviderConnectionError extends ProviderError {
-    constructor(message: string);
-}
-/**
- * Raised when the provider configuration is invalid
- */
-declare class InvalidProviderConfigurationError extends ProviderError {
-    constructor(message: string);
-}
-
-/**
- * Data App Provider Types
- *
- * TypeScript equivalents of the Python ProviderConfiguration Pydantic models
- * from ts-lib-ui-kit-streamlit/tetrascience/data_app_providers/provider_typing.py
- */
-/**
- * Configuration model for data providers.
- *
- * This interface represents the configuration needed to connect to various
- * database providers (Snowflake, Databricks, Athena, Benchling, etc.)
- * attached to a data app.
- */
-interface ProviderConfiguration {
-    /** Human-readable name of the provider */
-    name: string;
-    /** Provider type (snowflake, databricks, benchling, custom, etc.) */
-    type: string;
-    /** Optional URL to the provider's icon */
-    iconUrl?: string;
-    /** Dictionary containing connection details and credentials */
-    fields: Record<string, string | undefined>;
-}
-/**
- * Standardized query result from data providers.
- *
- * This interface provides a consistent shape for query results across
- * all provider types (Snowflake, Databricks, Athena), with optional
- * metadata for API responses.
- */
-interface QueryResult {
-    /** Array of row objects returned by the query */
-    data: Array<Record<string, unknown>>;
-    /** Number of rows returned */
-    rowCount: number;
-    /** Name of the provider that executed the query */
-    provider?: string;
-    /** Whether this is mock/demo data */
-    mock?: boolean;
-    /** Optional message (e.g., for errors or warnings) */
-    message?: string;
-}
-
-export { InvalidProviderConfigurationError as I, MissingTableError as M, QueryError as Q, ProviderConnectionError as a, ProviderError as b };
-export type { ProviderConfiguration as P, QueryResult as c };
+import { Connection } from 'snowflake-sdk';
+
+/**
+ * Build a Snowflake data provider from the configuration
+ *
+ * @param config - Provider configuration
+ * @returns Promise resolving to Snowflake data provider
+ * @throws {InvalidProviderConfigurationError} If snowflake-sdk is not installed or config is invalid
+ */
+export declare function buildSnowflakeProvider(config: ProviderConfiguration): Promise<SnowflakeProvider>;
+
+/**
+ * Raised when the provider configuration is invalid
+ */
+export declare class InvalidProviderConfigurationError extends ProviderError {
+    constructor(message: string);
+}
+
+/**
+ * Raised when a table is missing in the database
+ */
+export declare class MissingTableError extends ProviderError {
+    constructor(message: string);
+}
+
+/**
+ * Data App Provider Types
+ *
+ * TypeScript equivalents of the Python ProviderConfiguration Pydantic models
+ * from ts-lib-ui-kit-streamlit/tetrascience/data_app_providers/provider_typing.py
+ */
+/**
+ * Configuration model for data providers.
+ *
+ * This interface represents the configuration needed to connect to various
+ * database providers (Snowflake, Databricks, Athena, Benchling, etc.)
+ * attached to a data app.
+ */
+export declare interface ProviderConfiguration {
+    /** Human-readable name of the provider */
+    name: string;
+    /** Provider type (snowflake, databricks, benchling, custom, etc.) */
+    type: string;
+    /** Optional URL to the provider's icon */
+    iconUrl?: string;
+    /** Dictionary containing connection details and credentials */
+    fields: Record<string, string | undefined>;
+}
+
+/**
+ * Raised when connecting to a provider fails
+ */
+export declare class ProviderConnectionError extends ProviderError {
+    constructor(message: string);
+}
+
+/**
+ * Provider Exceptions
+ *
+ * TypeScript equivalents of the Python exceptions from
+ * ts-lib-ui-kit-streamlit/tetrascience/data_app_providers/exceptions.py
+ */
+/**
+ * Base class for provider errors
+ */
+export declare class ProviderError extends Error {
+    constructor(message: string);
+}
+
+/**
+ * Raised when a query fails
+ */
+export declare class QueryError extends ProviderError {
+    constructor(message: string);
+}
+
+/**
+ * Standardized query result from data providers.
+ *
+ * This interface provides a consistent shape for query results across
+ * all provider types (Snowflake, Databricks, Athena), with optional
+ * metadata for API responses.
+ */
+export declare interface QueryResult {
+    /** Array of row objects returned by the query */
+    data: Array<Record<string, unknown>>;
+    /** Number of rows returned */
+    rowCount: number;
+    /** Name of the provider that executed the query */
+    provider?: string;
+    /** Whether this is mock/demo data */
+    mock?: boolean;
+    /** Optional message (e.g., for errors or warnings) */
+    message?: string;
+}
+
+declare type SnowflakeConnection = Connection;
+
+/**
+ * Snowflake data provider
+ */
+export declare class SnowflakeProvider {
+    private connection;
+    /**
+     * Initialize the Snowflake data provider
+     *
+     * @param connection - Snowflake connection
+     */
+    constructor(connection: SnowflakeConnection);
+    /**
+     * Query the Snowflake database
+     *
+     * @param sqlText - SQL query to execute
+     * @param params - Parameters to pass to the query. For positional binds, use an array.
+     *                 For named binds, use an object with keys matching the bind variable names.
+     * @returns Promise resolving to array of row objects
+     */
+    query(sqlText: string, params?: Record<string, unknown> | unknown[]): Promise<Array<Record<string, unknown>>>;
+    /**
+     * Close the Snowflake connection
+     */
+    close(): Promise<void>;
+}
+
+export { }

package/dist/vite.svg

@@ -0,0 +1 @@
+<svg xmlns="http://www.w3.org/2000/svg" xmlns:xlink="http://www.w3.org/1999/xlink" aria-hidden="true" role="img" class="iconify iconify--logos" width="31.88" height="32" preserveAspectRatio="xMidYMid meet" viewBox="0 0 256 257"><defs><linearGradient id="IconifyId1813088fe1fbc01fb466" x1="-.828%" x2="57.636%" y1="7.652%" y2="78.411%"><stop offset="0%" stop-color="#41D1FF"></stop><stop offset="100%" stop-color="#BD34FE"></stop></linearGradient><linearGradient id="IconifyId1813088fe1fbc01fb467" x1="43.376%" x2="50.316%" y1="2.242%" y2="89.03%"><stop offset="0%" stop-color="#FFEA83"></stop><stop offset="8.333%" stop-color="#FFDD35"></stop><stop offset="100%" stop-color="#FFA800"></stop></linearGradient></defs><path fill="url(#IconifyId1813088fe1fbc01fb466)" d="M255.153 37.938L134.897 252.976c-2.483 4.44-8.862 4.466-11.382.048L.875 37.958c-2.746-4.814 1.371-10.646 6.827-9.67l120.385 21.517a6.537 6.537 0 0 0 2.322-.004l117.867-21.483c5.438-.991 9.574 4.796 6.877 9.62Z"></path><path fill="url(#IconifyId1813088fe1fbc01fb467)" d="M185.432.063L96.44 17.501a3.268 3.268 0 0 0-2.634 3.014l-5.474 92.456a3.268 3.268 0 0 0 3.997 3.378l24.777-5.718c2.318-.535 4.413 1.507 3.936 3.838l-7.361 36.047c-.495 2.426 1.782 4.5 4.151 3.78l15.304-4.649c2.372-.72 4.652 1.36 4.15 3.788l-11.698 56.621c-.732 3.542 3.979 5.473 5.943 2.437l1.313-2.028l72.516-144.72c1.215-2.423-.88-5.186-3.54-4.672l-25.505 4.922c-2.396.462-4.435-1.77-3.759-4.114l16.646-57.705c.677-2.35-1.37-4.583-3.769-4.113Z"></path></svg>