Postman

import { z } from 'zod'; import { PostmanAPIClient, ContentType } from '../clients/postman.js'; import { IsomorphicHeaders, CallToolResult } from '@modelcontextprotocol/sdk/types.js'; import { ServerContext, asMcpError, McpError } from './utils/toolHelpers.js'; export const method = 'putCollection'; export const description = "Replaces the contents of a collection using the [Postman Collection v2.1.0 schema format](https://schema.postman.com/collection/json/v2.1.0/draft-07/docs/index.html). Include the collection's ID values in the request body. If you do not, the endpoint removes the existing items and creates new items.\n\nTo perform an update asynchronously, use the \\`Prefer\\` header with the \\`respond-async\\` value. When performing an async update, this endpoint returns a HTTP \\`202 Accepted\\` response.\n\n**Note:**\n\n- The maximum collection size this endpoint accepts cannot exceed 100 MB.\n- If you don't include the collection items' ID values from the request body, the endpoint **removes** the existing items and recreates the items with new ID values.\n- To copy another collection's contents to the given collection, remove all ID values before you pass it in this endpoint. If you do not, this endpoint returns an error. These values include the \\`id\\`, \\`uid\\`, and \\`postman_id\\` values.\n- For protocol profile behavior, refer to Postman's [Protocol Profile Behavior documentation](https://github.com/postmanlabs/postman-runtime/blob/develop/docs/protocol-profile-behavior.md).\n"; export const parameters = z.object({ collectionId: z .string() .describe( 'The collection ID must be in the form <OWNER_ID>-<UUID> (e.g. 12345-33823532ab9e41c9b6fd12d0fd459b8b).' ), Prefer: z .literal('respond-async') .describe('The `respond-async` header to perform the update asynchronously.') .optional(), collection: z .object({ info: z .object({ name: z.string().describe("The collection's name."), _postman_id: z .string() .describe( "The collection's Postman ID. This field exists for Postman Collection Format v1 compatibility." ) .optional(), description: z.string().describe("The collection's description.").optional(), schema: z .literal('https://schema.getpostman.com/json/collection/v2.1.0/collection.json') .describe( 'The "https://schema.getpostman.com/json/collection/v2.1.0/collection.json" Postman Collection Format v2.1.0 schema.' ), updatedAt: z .string() .datetime({ offset: true }) .describe('The date and time when the collection was last updated.') .optional(), createdat: z .string() .datetime({ offset: true }) .describe('The date and time when the collection was created.') .optional(), lastUpdatedBy: z .string() .describe('The user ID of the person who last updated the collection.') .optional(), uid: z.string().describe("The collection's unique ID.").optional(), }) .describe('Information about the collection.'), item: z.array( z .object({ id: z.string().describe("The collection item's ID."), name: z.string().describe("The item's name.").optional(), description: z.string().nullable().describe("The item's description.").optional(), variable: z .array( z .object({ id: z .string() .describe("The variable's ID. Doesn't apply to collection-level variables.") .optional(), key: z.string().describe("The variable's key (name).").optional(), description: z .string() .max(512) .describe("The variable's description.") .optional(), value: z .union([z.string(), z.boolean(), z.number().int()]) .describe("The key's value.") .optional(), disabled: z .boolean() .describe( "If true, the variable is not enabled. Doesn't apply to path parameter variables." ) .default(false), }) .describe('Information about the variable.') ) .describe( "A list of the collection's [variables](https://learning.postman.com/docs/sending-requests/variables/variables/). Make certain not to include sensitive information in variables." ) .optional(), event: z .array( z .object({ id: z.string().describe("The event's ID.").optional(), listen: z .enum(['test', 'prerequest']) .describe('The `prerequest` (pre-request) or `test` (post-response) value.'), script: z .object({ id: z.string().describe("The script's ID.").optional(), type: z .string() .describe('The type of script. For example, `text/javascript`.') .optional(), exec: z .array(z.string().nullable()) .describe( 'A list of script strings, where each line represents a line of code. Separate lines makes it easy to track script changes.' ) .optional(), }) .describe( 'Information about the Javascript code that can be used to to perform setup or teardown operations in a response.' ) .optional(), }) .describe("Information about the collection's events.") ) .describe( 'A list of scripts configured to run when specific events occur. These scripts can be referenced in the collection by their ID.' ) .optional(), request: z .object({ url: z .union([ z.string().nullable().describe("The request's raw URL."), z.object({ raw: z.string().describe("The request's raw URL.").optional(), protocol: z.string().describe('The request protocol.').optional(), host: z.array(z.string().nullable()).describe("The host's URL.").optional(), path: z .array(z.string()) .describe("A list of the URL's path components.") .optional(), port: z .string() .describe( "The URL's port number. An empty value indicates port `80` (http) or `443` (https)." ) .optional(), query: z .array( z.object({ key: z .string() .nullable() .describe("The query parameter's key.") .optional(), value: z.string().nullable().describe("The key's value.").optional(), disabled: z .boolean() .describe("If true, the query parameter isn't sent with the request.") .default(false), description: z .string() .nullable() .describe("The query parameter's description.") .optional(), }) ) .describe( 'A list of query parameters. These are the query string parts of the URL, parsed as separate variables.' ) .optional(), }), ]) .describe('Information about the URL.') .optional(), auth: z .object({ type: z .enum([ 'basic', 'bearer', 'apikey', 'digest', 'oauth1', 'oauth2', 'hawk', 'awsv4', 'ntlm', 'edgegrid', 'jwt', 'asap', ]) .describe('The authorization type.'), apikey: z .array( z .object({ key: z.string().describe("The auth method's key value."), value: z .union([z.string(), z.array(z.record(z.string(), z.unknown()))]) .describe("The key's value.") .optional(), type: z .enum(['string', 'boolean', 'number', 'array', 'object', 'any']) .describe("The value's type.") .optional(), }) .describe( 'Information about the supported Postman [authorization type](https://learning.postman.com/docs/sending-requests/authorization/authorization-types/).' ) ) .describe("The API key's authentication information.") .optional(), awsv4: z .array( z .object({ key: z.string().describe("The auth method's key value."), value: z .union([z.string(), z.array(z.record(z.string(), z.unknown()))]) .describe("The key's value.") .optional(), type: z .enum(['string', 'boolean', 'number', 'array', 'object', 'any']) .describe("The value's type.") .optional(), }) .describe( 'Information about the supported Postman [authorization type](https://learning.postman.com/docs/sending-requests/authorization/authorization-types/).' ) ) .describe( 'The attributes for [AWS Signature](https://learning.postman.com/docs/sending-requests/authorization/aws-signature/) authentication.' ) .optional(), basic: z .array( z .object({ key: z.string().describe("The auth method's key value."), value: z .union([z.string(), z.array(z.record(z.string(), z.unknown()))]) .describe("The key's value.") .optional(), type: z .enum(['string', 'boolean', 'number', 'array', 'object', 'any']) .describe("The value's type.") .optional(), }) .describe( 'Information about the supported Postman [authorization type](https://learning.postman.com/docs/sending-requests/authorization/authorization-types/).' ) ) .describe( 'The attributes for [Basic Auth](https://learning.postman.com/docs/sending-requests/authorization/authorization-types/#basic-auth).' ) .optional(), bearer: z .array( z .object({ key: z.string().describe("The auth method's key value."), value: z .union([z.string(), z.array(z.record(z.string(), z.unknown()))]) .describe("The key's value.") .optional(), type: z .enum(['string', 'boolean', 'number', 'array', 'object', 'any']) .describe("The value's type.") .optional(), }) .describe( 'Information about the supported Postman [authorization type](https://learning.postman.com/docs/sending-requests/authorization/authorization-types/).' ) ) .describe( 'The attributes for [Bearer Token](https://learning.postman.com/docs/sending-requests/authorization/authorization-types/#bearer-token) authentication.' ) .optional(), digest: z .array( z .object({ key: z.string().describe("The auth method's key value."), value: z .union([z.string(), z.array(z.record(z.string(), z.unknown()))]) .describe("The key's value.") .optional(), type: z .enum(['string', 'boolean', 'number', 'array', 'object', 'any']) .describe("The value's type.") .optional(), }) .describe( 'Information about the supported Postman [authorization type](https://learning.postman.com/docs/sending-requests/authorization/authorization-types/).' ) ) .describe( 'The attributes for [Digest](https://learning.postman.com/docs/sending-requests/authorization/digest-auth/) access authentication.' ) .optional(), edgegrid: z .array( z .object({ key: z.string().describe("The auth method's key value."), value: z .union([z.string(), z.array(z.record(z.string(), z.unknown()))]) .describe("The key's value.") .optional(), type: z .enum(['string', 'boolean', 'number', 'array', 'object', 'any']) .describe("The value's type.") .optional(), }) .describe( 'Information about the supported Postman [authorization type](https://learning.postman.com/docs/sending-requests/authorization/authorization-types/).' ) ) .describe( 'The attributes for [Akamai Edgegrid](https://learning.postman.com/docs/sending-requests/authorization/akamai-edgegrid/) authentication.' ) .optional(), hawk: z .array( z .object({ key: z.string().describe("The auth method's key value."), value: z .union([z.string(), z.array(z.record(z.string(), z.unknown()))]) .describe("The key's value.") .optional(), type: z .enum(['string', 'boolean', 'number', 'array', 'object', 'any']) .describe("The value's type.") .optional(), }) .describe( 'Information about the supported Postman [authorization type](https://learning.postman.com/docs/sending-requests/authorization/authorization-types/).' ) ) .describe( 'The attributes for [Hawk](https://learning.postman.com/docs/sending-requests/authorization/hawk-authentication/) authentication.' ) .optional(), ntlm: z .array( z .object({ key: z.string().describe("The auth method's key value."), value: z .union([z.string(), z.array(z.record(z.string(), z.unknown()))]) .describe("The key's value.") .optional(), type: z .enum(['string', 'boolean', 'number', 'array', 'object', 'any']) .describe("The value's type.") .optional(), }) .describe( 'Information about the supported Postman [authorization type](https://learning.postman.com/docs/sending-requests/authorization/authorization-types/).' ) ) .describe( 'The attributes for [NTLM](https://learning.postman.com/docs/sending-requests/authorization/ntlm-authentication/) authentication.' ) .optional(), oauth1: z .array( z .object({ key: z.string().describe("The auth method's key value."), value: z .union([z.string(), z.array(z.record(z.string(), z.unknown()))]) .describe("The key's value.") .optional(), type: z .enum(['string', 'boolean', 'number', 'array', 'object', 'any']) .describe("The value's type.") .optional(), }) .describe( 'Information about the supported Postman [authorization type](https://learning.postman.com/docs/sending-requests/authorization/authorization-types/).' ) ) .describe( 'The attributes for [OAuth1](https://learning.postman.com/docs/sending-requests/authorization/oauth-10/) authentication.' ) .optional(), oauth2: z .array( z .object({ key: z.string().describe("The auth method's key value."), value: z .union([z.string(), z.array(z.record(z.string(), z.unknown()))]) .describe("The key's value.") .optional(), type: z .enum(['string', 'boolean', 'number', 'array', 'object', 'any']) .describe("The value's type.") .optional(), }) .describe( 'Information about the supported Postman [authorization type](https://learning.postman.com/docs/sending-requests/authorization/authorization-types/).' ) ) .describe( 'The attributes for [OAuth2](https://learning.postman.com/docs/sending-requests/authorization/oauth-20/) authentication.' ) .optional(), jwt: z .array( z .object({ key: z.string().describe("The auth method's key value."), value: z .union([z.string(), z.array(z.record(z.string(), z.unknown()))]) .describe("The key's value.") .optional(), type: z .enum(['string', 'boolean', 'number', 'array', 'object', 'any']) .describe("The value's type.") .optional(), }) .describe( 'Information about the supported Postman [authorization type](https://learning.postman.com/docs/sending-requests/authorization/authorization-types/).' ) ) .describe( 'The attributes for JWT (JSON Web Token). Includes the `payload`, `secret`, `algorithm`, `addTokenTo`, and `headerPrefix` properties.' ) .optional(), asap: z .array( z .object({ key: z.string().describe("The auth method's key value."), value: z .union([z.string(), z.array(z.record(z.string(), z.unknown()))]) .describe("The key's value.") .optional(), type: z .enum(['string', 'boolean', 'number', 'array', 'object', 'any']) .describe("The value's type.") .optional(), }) .describe( 'Information about the supported Postman [authorization type](https://learning.postman.com/docs/sending-requests/authorization/authorization-types/).' ) ) .describe( 'The attributes for ASAP (Atlassian S2S Authentication Protocol). Includes the `kid`, `aud`, `iss`, `alg`, `privateKey`, and `claims` properties.' ) .optional(), }) .describe( 'The [authorization type supported by Postman](https://learning.postman.com/docs/sending-requests/authorization/authorization-types/).' ) .optional(), method: z.string().describe("The request's standard HTTP method.").optional(), description: z .string() .nullable() .describe("The request's description.") .optional(), header: z .array( z .object({ key: z .string() .describe( "The header's key, such as `Content-Type` or `X-Custom-Header`." ), value: z.string().describe("The header key's value."), description: z .string() .nullable() .describe("The header's description.") .optional(), }) .describe('Information about the header.') ) .describe('A list of headers.') .optional(), body: z .object({ mode: z .enum(['raw', 'urlencoded', 'formdata', 'file', 'graphql']) .describe('The data associated with the request.') .optional(), raw: z .string() .describe( 'If the `mode` value is `raw`, the raw content of the request body.' ) .optional(), urlencoded: z .array( z.object({ key: z.string().describe('The key value.'), value: z.string().describe("The key's value.").optional(), description: z .string() .nullable() .describe("The key's description.") .optional(), }) ) .describe('A list of x-www-form-encoded key/value pairs.') .optional(), formdata: z .array( z.record(z.string(), z.unknown()).and( z.union([ z.object({ key: z.string().describe('The key value.').optional(), value: z.string().describe("The key's value.").optional(), type: z.literal('text').describe('The `text` value.').optional(), contentType: z .string() .describe('The form-data Content-Type header.') .optional(), description: z .string() .nullable() .describe("The key's description.") .optional(), }), z.object({ key: z.string().describe('The key value.').optional(), src: z .unknown() .superRefine((x, ctx) => { const schemas = [z.string().nullable(), z.array(z.string())]; const errors = schemas.reduce<z.ZodError[]>( (errors, schema) => ((result) => result.error ? [...errors, result.error] : errors)( schema.safeParse(x) ), [] ); if (schemas.length - errors.length !== 1) { ctx.addIssue({ path: ctx.path, code: 'invalid_union', unionErrors: errors, message: 'Invalid input: Should pass single schema', }); } }) .optional(), type: z.literal('file').describe('The `file` value.').optional(), contentType: z .string() .describe('The form-data Content-Type header.') .optional(), description: z .string() .nullable() .describe("The key's description.") .optional(), }), ]) ) ) .describe( 'If the `mode` value is `formdata`, then a list of form-data key/pair values.' ) .optional(), file: z .object({ src: z .string() .nullable() .describe( 'The name of the file to upload (not its path). A null value indicates that no file is selected as a part of the request body.' ) .optional(), }) .describe( 'If the `mode` value is `file`, an object containing the file request information.' ) .optional(), graphql: z .object({ query: z.string().describe('The GraphQL query.').optional(), variables: z .string() .nullable() .describe('The GraphQL query variables, in JSON format.') .optional(), }) .describe( 'If the `mode` value is `graphql`, an object containing the GraphQL request information.' ) .optional(), options: z .record(z.string(), z.unknown()) .describe('Additional configurations and options set for various modes.') .optional(), }) .describe("Information about the collection's request body.") .optional(), }) .describe('Information about the collection request.') .optional(), response: z .array(z.unknown().describe("Information about the request's response.")) .describe("A list of the collection's responses.") .optional(), protocolProfileBehavior: z .object({ strictSSL: z .boolean() .describe('If true, enables certificate verification.') .optional(), followRedirects: z .boolean() .describe('If true, follow HTTP 3xx responses as redirects.') .optional(), maxRedirects: z .number() .describe('The maximum number of redirects to follow.') .optional(), disableBodyPruning: z .boolean() .describe( 'If true, disables request body pruning for the GET, COPY, HEAD, PURGE, and UNLOCK methods.' ) .optional(), disableUrlEncoding: z .boolean() .describe( 'If true, disables the percent encoding of auth, path, query, and fragment URL segments.' ) .optional(), disabledSystemHeaders: z .object({ 'cache-control': z.boolean().optional(), 'postman-token': z.boolean().optional(), 'content-type': z.boolean().optional(), 'content-length': z.boolean().optional(), 'accept-encoding': z.boolean().optional(), connection: z.boolean().optional(), host: z.boolean().optional(), }) .describe('Disable the system headers which are added implicitly.') .optional(), insecureHTTPParser: z .boolean() .describe( 'If true, uses an insecure HTTP parser that accepts invalid HTTP headers.' ) .optional(), followOriginalHttpMethod: z .boolean() .describe( 'If true, redirects with the original HTTP method. Redirects with the GET HTTP method by default.' ) .optional(), followAuthorizationHeader: z .boolean() .describe( 'If true, retains the `authorization` header when a redirect happens to a different hostname.' ) .optional(), protocolVersion: z .enum(['http1', 'http2', 'auto']) .describe( 'The HTTP protocol version to use. Supports the `http1`, `http2`, and `auto` values.' ) .optional(), removeRefererHeaderOnRedirect: z .boolean() .describe('If true, removes the `referer` header when a redirect happens.') .optional(), tlsPreferServerCiphers: z .boolean() .describe( "If true, uses the server's cipher suite order instead of the client's during negotiation." ) .optional(), tlsDisabledProtocols: z .array(z.string()) .describe('The SSL and TLS protocol versions to disable during negotiation.') .optional(), tlsCipherSelection: z .array(z.string()) .describe( 'The order of cipher suites that the SSL server profile uses to establish a secure connection.' ) .optional(), }) .describe( 'The [settings](https://learning.postman.com/docs/sending-requests/create-requests/request-settings/) used to alter the [Protocol Profile Behavior](https://github.com/postmanlabs/postman-runtime/blob/develop/docs/protocol-profile-behavior.md) of sending a request.' ) .optional(), uid: z.string().describe("The collection item's unique ID.").optional(), }) .describe('Information about the collection request or folder.') ), event: z .array( z .object({ id: z.string().describe("The event's ID.").optional(), listen: z .enum(['test', 'prerequest']) .describe('The `prerequest` (pre-request) or `test` (post-response) value.'), script: z .object({ id: z.string().describe("The script's ID.").optional(), type: z .string() .describe('The type of script. For example, `text/javascript`.') .optional(), exec: z .array(z.string().nullable()) .describe( 'A list of script strings, where each line represents a line of code. Separate lines makes it easy to track script changes.' ) .optional(), }) .describe( 'Information about the Javascript code that can be used to to perform setup or teardown operations in a response.' ) .optional(), }) .describe("Information about the collection's events.") ) .describe( 'A list of scripts configured to run when specific events occur. These scripts can be referenced in the collection by their ID.' ) .optional(), variable: z .array( z .object({ id: z .string() .describe("The variable's ID. Doesn't apply to collection-level variables.") .optional(), key: z.string().describe("The variable's key (name).").optional(), description: z.string().max(512).describe("The variable's description.").optional(), value: z .union([z.string(), z.boolean(), z.number().int()]) .describe("The key's value.") .optional(), disabled: z .boolean() .describe( "If true, the variable is not enabled. Doesn't apply to path parameter variables." ) .default(false), }) .describe('Information about the variable.') ) .describe( "A list of the collection's [variables](https://learning.postman.com/docs/sending-requests/variables/variables/). Make certain not to include sensitive information in variables." ) .optional(), auth: z .object({ type: z .enum([ 'basic', 'bearer', 'apikey', 'digest', 'oauth1', 'oauth2', 'hawk', 'awsv4', 'ntlm', 'edgegrid', 'jwt', 'asap', ]) .describe('The authorization type.'), apikey: z .array( z .object({ key: z.string().describe("The auth method's key value."), value: z .union([z.string(), z.array(z.record(z.string(), z.unknown()))]) .describe("The key's value.") .optional(), type: z .enum(['string', 'boolean', 'number', 'array', 'object', 'any']) .describe("The value's type.") .optional(), }) .describe( 'Information about the supported Postman [authorization type](https://learning.postman.com/docs/sending-requests/authorization/authorization-types/).' ) ) .describe("The API key's authentication information.") .optional(), awsv4: z .array( z .object({ key: z.string().describe("The auth method's key value."), value: z .union([z.string(), z.array(z.record(z.string(), z.unknown()))]) .describe("The key's value.") .optional(), type: z .enum(['string', 'boolean', 'number', 'array', 'object', 'any']) .describe("The value's type.") .optional(), }) .describe( 'Information about the supported Postman [authorization type](https://learning.postman.com/docs/sending-requests/authorization/authorization-types/).' ) ) .describe( 'The attributes for [AWS Signature](https://learning.postman.com/docs/sending-requests/authorization/aws-signature/) authentication.' ) .optional(), basic: z .array( z .object({ key: z.string().describe("The auth method's key value."), value: z .union([z.string(), z.array(z.record(z.string(), z.unknown()))]) .describe("The key's value.") .optional(), type: z .enum(['string', 'boolean', 'number', 'array', 'object', 'any']) .describe("The value's type.") .optional(), }) .describe( 'Information about the supported Postman [authorization type](https://learning.postman.com/docs/sending-requests/authorization/authorization-types/).' ) ) .describe( 'The attributes for [Basic Auth](https://learning.postman.com/docs/sending-requests/authorization/authorization-types/#basic-auth).' ) .optional(), bearer: z .array( z .object({ key: z.string().describe("The auth method's key value."), value: z .union([z.string(), z.array(z.record(z.string(), z.unknown()))]) .describe("The key's value.") .optional(), type: z .enum(['string', 'boolean', 'number', 'array', 'object', 'any']) .describe("The value's type.") .optional(), }) .describe( 'Information about the supported Postman [authorization type](https://learning.postman.com/docs/sending-requests/authorization/authorization-types/).' ) ) .describe( 'The attributes for [Bearer Token](https://learning.postman.com/docs/sending-requests/authorization/authorization-types/#bearer-token) authentication.' ) .optional(), digest: z .array( z .object({ key: z.string().describe("The auth method's key value."), value: z .union([z.string(), z.array(z.record(z.string(), z.unknown()))]) .describe("The key's value.") .optional(), type: z .enum(['string', 'boolean', 'number', 'array', 'object', 'any']) .describe("The value's type.") .optional(), }) .describe( 'Information about the supported Postman [authorization type](https://learning.postman.com/docs/sending-requests/authorization/authorization-types/).' ) ) .describe( 'The attributes for [Digest](https://learning.postman.com/docs/sending-requests/authorization/digest-auth/) access authentication.' ) .optional(), edgegrid: z .array( z .object({ key: z.string().describe("The auth method's key value."), value: z .union([z.string(), z.array(z.record(z.string(), z.unknown()))]) .describe("The key's value.") .optional(), type: z .enum(['string', 'boolean', 'number', 'array', 'object', 'any']) .describe("The value's type.") .optional(), }) .describe( 'Information about the supported Postman [authorization type](https://learning.postman.com/docs/sending-requests/authorization/authorization-types/).' ) ) .describe( 'The attributes for [Akamai Edgegrid](https://learning.postman.com/docs/sending-requests/authorization/akamai-edgegrid/) authentication.' ) .optional(), hawk: z .array( z .object({ key: z.string().describe("The auth method's key value."), value: z .union([z.string(), z.array(z.record(z.string(), z.unknown()))]) .describe("The key's value.") .optional(), type: z .enum(['string', 'boolean', 'number', 'array', 'object', 'any']) .describe("The value's type.") .optional(), }) .describe( 'Information about the supported Postman [authorization type](https://learning.postman.com/docs/sending-requests/authorization/authorization-types/).' ) ) .describe( 'The attributes for [Hawk](https://learning.postman.com/docs/sending-requests/authorization/hawk-authentication/) authentication.' ) .optional(), ntlm: z .array( z .object({ key: z.string().describe("The auth method's key value."), value: z .union([z.string(), z.array(z.record(z.string(), z.unknown()))]) .describe("The key's value.") .optional(), type: z .enum(['string', 'boolean', 'number', 'array', 'object', 'any']) .describe("The value's type.") .optional(), }) .describe( 'Information about the supported Postman [authorization type](https://learning.postman.com/docs/sending-requests/authorization/authorization-types/).' ) ) .describe( 'The attributes for [NTLM](https://learning.postman.com/docs/sending-requests/authorization/ntlm-authentication/) authentication.' ) .optional(), oauth1: z .array( z .object({ key: z.string().describe("The auth method's key value."), value: z .union([z.string(), z.array(z.record(z.string(), z.unknown()))]) .describe("The key's value.") .optional(), type: z .enum(['string', 'boolean', 'number', 'array', 'object', 'any']) .describe("The value's type.") .optional(), }) .describe( 'Information about the supported Postman [authorization type](https://learning.postman.com/docs/sending-requests/authorization/authorization-types/).' ) ) .describe( 'The attributes for [OAuth1](https://learning.postman.com/docs/sending-requests/authorization/oauth-10/) authentication.' ) .optional(), oauth2: z .array( z .object({ key: z.string().describe("The auth method's key value."), value: z .union([z.string(), z.array(z.record(z.string(), z.unknown()))]) .describe("The key's value.") .optional(), type: z .enum(['string', 'boolean', 'number', 'array', 'object', 'any']) .describe("The value's type.") .optional(), }) .describe( 'Information about the supported Postman [authorization type](https://learning.postman.com/docs/sending-requests/authorization/authorization-types/).' ) ) .describe( 'The attributes for [OAuth2](https://learning.postman.com/docs/sending-requests/authorization/oauth-20/) authentication.' ) .optional(), jwt: z .array( z .object({ key: z.string().describe("The auth method's key value."), value: z .union([z.string(), z.array(z.record(z.string(), z.unknown()))]) .describe("The key's value.") .optional(), type: z .enum(['string', 'boolean', 'number', 'array', 'object', 'any']) .describe("The value's type.") .optional(), }) .describe( 'Information about the supported Postman [authorization type](https://learning.postman.com/docs/sending-requests/authorization/authorization-types/).' ) ) .describe( 'The attributes for JWT (JSON Web Token). Includes the `payload`, `secret`, `algorithm`, `addTokenTo`, and `headerPrefix` properties.' ) .optional(), asap: z .array( z .object({ key: z.string().describe("The auth method's key value."), value: z .union([z.string(), z.array(z.record(z.string(), z.unknown()))]) .describe("The key's value.") .optional(), type: z .enum(['string', 'boolean', 'number', 'array', 'object', 'any']) .describe("The value's type.") .optional(), }) .describe( 'Information about the supported Postman [authorization type](https://learning.postman.com/docs/sending-requests/authorization/authorization-types/).' ) ) .describe( 'The attributes for ASAP (Atlassian S2S Authentication Protocol). Includes the `kid`, `aud`, `iss`, `alg`, `privateKey`, and `claims` properties.' ) .optional(), }) .describe( 'The [authorization type supported by Postman](https://learning.postman.com/docs/sending-requests/authorization/authorization-types/).' ) .optional(), protocolProfileBehavior: z .object({ strictSSL: z.boolean().describe('If true, enables certificate verification.').optional(), followRedirects: z .boolean() .describe('If true, follow HTTP 3xx responses as redirects.') .optional(), maxRedirects: z .number() .describe('The maximum number of redirects to follow.') .optional(), disableBodyPruning: z .boolean() .describe( 'If true, disables request body pruning for the GET, COPY, HEAD, PURGE, and UNLOCK methods.' ) .optional(), disableUrlEncoding: z .boolean() .describe( 'If true, disables the percent encoding of auth, path, query, and fragment URL segments.' ) .optional(), disabledSystemHeaders: z .object({ 'cache-control': z.boolean().optional(), 'postman-token': z.boolean().optional(), 'content-type': z.boolean().optional(), 'content-length': z.boolean().optional(), 'accept-encoding': z.boolean().optional(), connection: z.boolean().optional(), host: z.boolean().optional(), }) .describe('Disable the system headers which are added implicitly.') .optional(), insecureHTTPParser: z .boolean() .describe('If true, uses an insecure HTTP parser that accepts invalid HTTP headers.') .optional(), followOriginalHttpMethod: z .boolean() .describe( 'If true, redirects with the original HTTP method. Redirects with the GET HTTP method by default.' ) .optional(), followAuthorizationHeader: z .boolean() .describe( 'If true, retains the `authorization` header when a redirect happens to a different hostname.' ) .optional(), protocolVersion: z .enum(['http1', 'http2', 'auto']) .describe( 'The HTTP protocol version to use. Supports the `http1`, `http2`, and `auto` values.' ) .optional(), removeRefererHeaderOnRedirect: z .boolean() .describe('If true, removes the `referer` header when a redirect happens.') .optional(), tlsPreferServerCiphers: z .boolean() .describe( "If true, uses the server's cipher suite order instead of the client's during negotiation." ) .optional(), tlsDisabledProtocols: z .array(z.string()) .describe('The SSL and TLS protocol versions to disable during negotiation.') .optional(), tlsCipherSelection: z .array(z.string()) .describe( 'The order of cipher suites that the SSL server profile uses to establish a secure connection.' ) .optional(), }) .describe( 'The [settings](https://learning.postman.com/docs/sending-requests/create-requests/request-settings/) used to alter the [Protocol Profile Behavior](https://github.com/postmanlabs/postman-runtime/blob/develop/docs/protocol-profile-behavior.md) of sending a request.' ) .optional(), }) .optional(), }); export const annotations = { title: "Replaces the contents of a collection using the [Postman Collection v2.1.0 schema format](https://schema.postman.com/collection/json/v2.1.0/draft-07/docs/index.html). Include the collection's ID values in the request body. If you do not, the endpoint removes the existing items and creates new items.\n\nTo perform an update asynchronously, use the \\`Prefer\\` header with the \\`respond-async\\` value. When performing an async update, this endpoint returns a HTTP \\`202 Accepted\\` response.\n\n**Note:**\n\n- The maximum collection size this endpoint accepts cannot exceed 100 MB.\n- If you don't include the collection items' ID values from the request body, the endpoint **removes** the existing items and recreates the items with new ID values.\n- To copy another collection's contents to the given collection, remove all ID values before you pass it in this endpoint. If you do not, this endpoint returns an error. These values include the \\`id\\`, \\`uid\\`, and \\`postman_id\\` values.\n- For protocol profile behavior, refer to Postman's [Protocol Profile Behavior documentation](https://github.com/postmanlabs/postman-runtime/blob/develop/docs/protocol-profile-behavior.md).\n", readOnlyHint: false, destructiveHint: false, idempotentHint: true, }; export async function handler( args: z.infer<typeof parameters>, extra: { client: PostmanAPIClient; headers?: IsomorphicHeaders; serverContext?: ServerContext } ): Promise<CallToolResult> { try { const endpoint = `/collections/${args.collectionId}`; const query = new URLSearchParams(); const url = query.toString() ? `${endpoint}?${query.toString()}` : endpoint; const bodyPayload: any = {}; if (args.collection !== undefined) bodyPayload.collection = args.collection; const options: any = { body: JSON.stringify(bodyPayload), contentType: ContentType.Json, headers: extra.headers, }; const result = await extra.client.put(url, options); return { content: [ { type: 'text', text: `${typeof result === 'string' ? result : JSON.stringify(result, null, 2)}`, }, ], }; } catch (e: unknown) { if (e instanceof McpError) { throw e; } throw asMcpError(e); } }