projects / scpubgit/Q-Branch.git / blame
? search:
summary | shortlog | log | commit | commitdiff | tree
blob | history | HEAD
additional fixups for top-level-ness and oddities
[scpubgit/Q-Branch.git] / lib / SQL / Abstract.pm
CommitLineData
96449e8e 1package SQL::Abstract; # see doc at end of file
2
96449e8e 3use strict;
4use warnings;
9d9d5bd6 5use Carp ();
312d830b 6use List::Util ();
7use Scalar::Util ();
96449e8e 8
0da0fe34 9use Exporter 'import';
10our @EXPORT_OK = qw(is_plain_value is_literal_value);
11
12BEGIN {
13 if ($] < 5.009_005) {
14 require MRO::Compat;
15 }
16 else {
17 require mro;
18 }
843a94b5 19
20 *SQL::Abstract::_ENV_::DETECT_AUTOGENERATED_STRINGIFICATION = $ENV{SQLA_ISVALUE_IGNORE_AUTOGENERATED_STRINGIFICATION}
21 ? sub () { 0 }
22 : sub () { 1 }
23 ;
0da0fe34 24}
25
96449e8e 26#======================================================================
27# GLOBALS
28#======================================================================
29
dc6afcf8 30our $VERSION = '1.86';
7479e27e 31
22f1a437 32# This would confuse some packagers
c520207b 33$VERSION = eval $VERSION if $VERSION =~ /_/; # numify for warning-free dev releases
96449e8e 34
35our $AUTOLOAD;
36
37# special operators (-in, -between). May be extended/overridden by user.
38# See section WHERE: BUILTIN SPECIAL OPERATORS below for implementation
39my @BUILTIN_SPECIAL_OPS = (
f663e672 40 {regex => qr/^ (?: not \s )? between $/ix, handler => sub { die "NOPE" }},
41 {regex => qr/^ (?: not \s )? in $/ix, handler => sub { die "NOPE" }},
87c8e45b 42 {regex => qr/^ is (?: \s+ not )? $/ix, handler => sub { die "NOPE" }},
96449e8e 43);
44
45#======================================================================
46# DEBUGGING AND ERROR REPORTING
47#======================================================================
48
49sub _debug {
50 return unless $_[0]->{debug}; shift; # a little faster
51 my $func = (caller(1))[3];
52 warn "[$func] ", @_, "\n";
53}
54
55sub belch (@) {
56 my($func) = (caller(1))[3];
9d9d5bd6 57 Carp::carp "[$func] Warning: ", @_;
96449e8e 58}
59
60sub puke (@) {
61 my($func) = (caller(1))[3];
9d9d5bd6 62 Carp::croak "[$func] Fatal: ", @_;
96449e8e 63}
64
0da0fe34 65sub is_literal_value ($) {
66 ref $_[0] eq 'SCALAR' ? [ ${$_[0]} ]
67 : ( ref $_[0] eq 'REF' and ref ${$_[0]} eq 'ARRAY' ) ? [ @${ $_[0] } ]
0da0fe34 68 : undef;
69}
70
71# FIXME XSify - this can be done so much more efficiently
72sub is_plain_value ($) {
73 no strict 'refs';
966200cc 74 ! length ref $_[0] ? \($_[0])
0da0fe34 75 : (
76 ref $_[0] eq 'HASH' and keys %{$_[0]} == 1
77 and
78 exists $_[0]->{-value}
966200cc 79 ) ? \($_[0]->{-value})
0da0fe34 80 : (
a1c9e0ff 81 # reuse @_ for even moar speedz
82 defined ( $_[1] = Scalar::Util::blessed $_[0] )
0da0fe34 83 and
84 # deliberately not using Devel::OverloadInfo - the checks we are
85 # intersted in are much more limited than the fullblown thing, and
86 # this is a very hot piece of code
87 (
e8d729d4 88 # simply using ->can('(""') can leave behind stub methods that
89 # break actually using the overload later (see L<perldiag/Stub
90 # found while resolving method "%s" overloading "%s" in package
91 # "%s"> and the source of overload::mycan())
44e54b41 92 #
0da0fe34 93 # either has stringification which DBI SHOULD prefer out of the box
a1c9e0ff 94 grep { *{ (qq[${_}::(""]) }{CODE} } @{ $_[2] = mro::get_linear_isa( $_[1] ) }
0da0fe34 95 or
20e178a8 96 # has nummification or boolification, AND fallback is *not* disabled
0da0fe34 97 (
843a94b5 98 SQL::Abstract::_ENV_::DETECT_AUTOGENERATED_STRINGIFICATION
99 and
20e178a8 100 (
101 grep { *{"${_}::(0+"}{CODE} } @{$_[2]}
102 or
103 grep { *{"${_}::(bool"}{CODE} } @{$_[2]}
104 )
0da0fe34 105 and
106 (
107 # no fallback specified at all
a1c9e0ff 108 ! ( ($_[3]) = grep { *{"${_}::()"}{CODE} } @{$_[2]} )
0da0fe34 109 or
110 # fallback explicitly undef
a1c9e0ff 111 ! defined ${"$_[3]::()"}
0da0fe34 112 or
113 # explicitly true
a1c9e0ff 114 !! ${"$_[3]::()"}
0da0fe34 115 )
116 )
117 )
966200cc 118 ) ? \($_[0])
0da0fe34 119 : undef;
120}
121
122
96449e8e 123
124#======================================================================
125# NEW
126#======================================================================
127
128sub new {
129 my $self = shift;
130 my $class = ref($self) || $self;
131 my %opt = (ref $_[0] eq 'HASH') ? %{$_[0]} : @_;
132
133 # choose our case by keeping an option around
134 delete $opt{case} if $opt{case} && $opt{case} ne 'lower';
135
136 # default logic for interpreting arrayrefs
ef559da3 137 $opt{logic} = $opt{logic} ? uc $opt{logic} : 'OR';
96449e8e 138
139 # how to return bind vars
96449e8e 140 $opt{bindtype} ||= 'normal';
141
142 # default comparison is "=", but can be overridden
143 $opt{cmp} ||= '=';
144
3af02ccb 145 # try to recognize which are the 'equality' and 'inequality' ops
3cdadcbe 146 # (temporary quickfix (in 2007), should go through a more seasoned API)
147 $opt{equality_op} = qr/^( \Q$opt{cmp}\E | \= )$/ix;
148 $opt{inequality_op} = qr/^( != | <> )$/ix;
149
150 $opt{like_op} = qr/^ (is\s+)? r?like $/xi;
151 $opt{not_like_op} = qr/^ (is\s+)? not \s+ r?like $/xi;
96449e8e 152
153 # SQL booleans
154 $opt{sqltrue} ||= '1=1';
155 $opt{sqlfalse} ||= '0=1';
156
9d48860e 157 # special operators
30af97c5 158 $opt{special_ops} ||= [];
159
b6251592 160 # regexes are applied in order, thus push after user-defines
96449e8e 161 push @{$opt{special_ops}}, @BUILTIN_SPECIAL_OPS;
162
dd1d0dbf 163 if ($class =~ /^DBIx::Class::SQLMaker/) {
164 push @{$opt{special_ops}}, our $DBIC_Compat_Op ||= {
165 regex => qr/^(?:ident|value)$/i, handler => sub { die "NOPE" }
166 };
167 }
168
9d48860e 169 # unary operators
59f23b3d 170 $opt{unary_ops} ||= [];
59f23b3d 171
3af02ccb 172 # rudimentary sanity-check for user supplied bits treated as functions/operators
b6251592 173 # If a purported function matches this regular expression, an exception is thrown.
174 # Literal SQL is *NOT* subject to this check, only functions (and column names
175 # when quoting is not in effect)
96449e8e 176
b6251592 177 # FIXME
178 # need to guard against ()'s in column names too, but this will break tons of
179 # hacks... ideas anyone?
180 $opt{injection_guard} ||= qr/
181 \;
182 |
183 ^ \s* go \s
184 /xmi;
96449e8e 185
b07681b1 186 $opt{node_types} = +{
187 map +("-$_" => '_render_'.$_),
188 qw(op func value bind ident literal)
189 };
190
ec19b759 191 $opt{expand_unary} = {};
192
b6251592 193 return bless \%opt, $class;
194}
96449e8e 195
e175845b 196sub sqltrue { +{ -literal => [ $_[0]->{sqltrue} ] } }
197sub sqlfalse { +{ -literal => [ $_[0]->{sqlfalse} ] } }
170e6c33 198
199sub _assert_pass_injection_guard {
200 if ($_[1] =~ $_[0]->{injection_guard}) {
201 my $class = ref $_[0];
202 puke "Possible SQL injection attempt '$_[1]'. If this is indeed a part of the "
203 . "desired SQL use literal SQL ( \'...' or \[ '...' ] ) or supply your own "
204 . "{injection_guard} attribute to ${class}->new()"
205 }
206}
207
208
96449e8e 209#======================================================================
210# INSERT methods
211#======================================================================
212
213sub insert {
02288357 214 my $self = shift;
215 my $table = $self->_table(shift);
216 my $data = shift || return;
217 my $options = shift;
96449e8e 218
219 my $method = $self->_METHOD_FOR_refkind("_insert", $data);
02288357 220 my ($sql, @bind) = $self->$method($data);
96449e8e 221 $sql = join " ", $self->_sqlcase('insert into'), $table, $sql;
02288357 222
e82e648a 223 if ($options->{returning}) {
ca4f826a 224 my ($s, @b) = $self->_insert_returning($options);
e82e648a 225 $sql .= $s;
226 push @bind, @b;
02288357 227 }
228
96449e8e 229 return wantarray ? ($sql, @bind) : $sql;
230}
231
60f3fd3f 232# So that subclasses can override INSERT ... RETURNING separately from
233# UPDATE and DELETE (e.g. DBIx::Class::SQLMaker::Oracle does this)
b17a3ece 234sub _insert_returning { shift->_returning(@_) }
235
95904db5 236sub _returning {
e82e648a 237 my ($self, $options) = @_;
6b1fe79d 238
e82e648a 239 my $f = $options->{returning};
240
ff96fdd4 241 my ($sql, @bind) = $self->_render_expr(
242 $self->_expand_maybe_list_expr($f, undef, -ident)
243 );
244 return wantarray
245 ? $self->_sqlcase(' returning ') . $sql
246 : ($self->_sqlcase(' returning ').$sql, @bind);
6b1fe79d 247}
248
96449e8e 249sub _insert_HASHREF { # explicit list of fields and then values
250 my ($self, $data) = @_;
251
252 my @fields = sort keys %$data;
253
fe3ae272 254 my ($sql, @bind) = $self->_insert_values($data);
96449e8e 255
256 # assemble SQL
257 $_ = $self->_quote($_) foreach @fields;
258 $sql = "( ".join(", ", @fields).") ".$sql;
259
260 return ($sql, @bind);
261}
262
263sub _insert_ARRAYREF { # just generate values(?,?) part (no list of fields)
264 my ($self, $data) = @_;
265
266 # no names (arrayref) so can't generate bindtype
267 $self->{bindtype} ne 'columns'
268 or belch "can't do 'columns' bindtype when called with arrayref";
269
19b6ccce 270 my (@values, @all_bind);
271 foreach my $value (@$data) {
272 my ($values, @bind) = $self->_insert_value(undef, $value);
273 push @values, $values;
274 push @all_bind, @bind;
275 }
276 my $sql = $self->_sqlcase('values')." ( ".join(", ", @values)." )";
277 return ($sql, @all_bind);
fe3ae272 278}
279
280sub _insert_ARRAYREFREF { # literal SQL with bind
281 my ($self, $data) = @_;
282
283 my ($sql, @bind) = @${$data};
284 $self->_assert_bindval_matches_bindtype(@bind);
285
286 return ($sql, @bind);
287}
288
289
290sub _insert_SCALARREF { # literal SQL without bind
291 my ($self, $data) = @_;
292
293 return ($$data);
294}
295
296sub _insert_values {
297 my ($self, $data) = @_;
298
96449e8e 299 my (@values, @all_bind);
fe3ae272 300 foreach my $column (sort keys %$data) {
19b6ccce 301 my ($values, @bind) = $self->_insert_value($column, $data->{$column});
302 push @values, $values;
303 push @all_bind, @bind;
304 }
305 my $sql = $self->_sqlcase('values')." ( ".join(", ", @values)." )";
306 return ($sql, @all_bind);
307}
96449e8e 308
19b6ccce 309sub _insert_value {
310 my ($self, $column, $v) = @_;
96449e8e 311
720ca4f7 312 return $self->_render_expr(
313 $self->_expand_insert_value($column, $v)
314 );
315}
96449e8e 316
720ca4f7 317sub _expand_insert_value {
318 my ($self, $column, $v) = @_;
96449e8e 319
720ca4f7 320 if (ref($v) eq 'ARRAY') {
321 if ($self->{array_datatypes}) {
322 return +{ -bind => [ $column, $v ] };
323 }
324 my ($sql, @bind) = @$v;
325 $self->_assert_bindval_matches_bindtype(@bind);
326 return +{ -literal => $v };
327 }
328 if (ref($v) eq 'HASH') {
329 if (grep !/^-/, keys %$v) {
330 belch "HASH ref as bind value in insert is not supported";
331 return +{ -bind => [ $column, $v ] };
332 }
333 }
334 if (!defined($v)) {
335 return +{ -bind => [ $column, undef ] };
336 }
337 local our $Cur_Col_Meta = $column;
338 return $self->_expand_expr($v);
96449e8e 339}
340
341
96449e8e 342
343#======================================================================
344# UPDATE methods
345#======================================================================
346
347
348sub update {
95904db5 349 my $self = shift;
350 my $table = $self->_table(shift);
351 my $data = shift || return;
352 my $where = shift;
353 my $options = shift;
96449e8e 354
355 # first build the 'SET' part of the sql statement
96449e8e 356 puke "Unsupported data type specified to \$sql->update"
357 unless ref $data eq 'HASH';
358
9ade906e 359 my ($sql, @all_bind) = $self->_update_set_values($data);
a9e94508 360 $sql = $self->_sqlcase('update ') . $table . $self->_sqlcase(' set ')
9ade906e 361 . $sql;
362
363 if ($where) {
364 my($where_sql, @where_bind) = $self->where($where);
365 $sql .= $where_sql;
366 push @all_bind, @where_bind;
367 }
368
369 if ($options->{returning}) {
370 my ($returning_sql, @returning_bind) = $self->_update_returning($options);
371 $sql .= $returning_sql;
372 push @all_bind, @returning_bind;
373 }
374
375 return wantarray ? ($sql, @all_bind) : $sql;
376}
377
378sub _update_set_values {
379 my ($self, $data) = @_;
380
89690da2 381 return $self->_render_expr(
382 $self->_expand_update_set_values($data),
383 );
384}
96449e8e 385
89690da2 386sub _expand_update_set_values {
387 my ($self, $data) = @_;
388 $self->_expand_maybe_list_expr( [
389 map {
390 my ($k, $set) = @$_;
c4ed66f4 391 $set = { -bind => $_ } unless defined $set;
89690da2 392 +{ -op => [ '=', { -ident => $k }, $set ] };
393 }
394 map {
395 my $k = $_;
396 my $v = $data->{$k};
397 (ref($v) eq 'ARRAY'
398 ? ($self->{array_datatypes}
399 ? [ $k, +{ -bind => [ $k, $v ] } ]
400 : [ $k, +{ -literal => $v } ])
401 : do {
402 local our $Cur_Col_Meta = $k;
403 [ $k, $self->_expand_expr($v) ]
404 }
405 );
406 } sort keys %$data
407 ] );
96449e8e 408}
409
60f3fd3f 410# So that subclasses can override UPDATE ... RETURNING separately from
411# INSERT and DELETE
20bb2ad5 412sub _update_returning { shift->_returning(@_) }
96449e8e 413
414
415
416#======================================================================
417# SELECT
418#======================================================================
419
420
421sub select {
422 my $self = shift;
423 my $table = $self->_table(shift);
424 my $fields = shift || '*';
425 my $where = shift;
426 my $order = shift;
427
daa4ccdd 428 my ($fields_sql, @bind) = $self->_select_fields($fields);
96449e8e 429
daa4ccdd 430 my ($where_sql, @where_bind) = $self->where($where, $order);
431 push @bind, @where_bind;
432
433 my $sql = join(' ', $self->_sqlcase('select'), $fields_sql,
96449e8e 434 $self->_sqlcase('from'), $table)
435 . $where_sql;
436
9d48860e 437 return wantarray ? ($sql, @bind) : $sql;
96449e8e 438}
439
daa4ccdd 440sub _select_fields {
441 my ($self, $fields) = @_;
de63ce57 442 return $fields unless ref($fields);
27592e2b 443 return $self->_render_expr(
444 $self->_expand_maybe_list_expr($fields, undef, '-ident')
445 );
daa4ccdd 446}
447
96449e8e 448#======================================================================
449# DELETE
450#======================================================================
451
452
453sub delete {
85327cd5 454 my $self = shift;
455 my $table = $self->_table(shift);
456 my $where = shift;
457 my $options = shift;
96449e8e 458
459 my($where_sql, @bind) = $self->where($where);
a9e94508 460 my $sql = $self->_sqlcase('delete from ') . $table . $where_sql;
96449e8e 461
85327cd5 462 if ($options->{returning}) {
ca4f826a 463 my ($returning_sql, @returning_bind) = $self->_delete_returning($options);
85327cd5 464 $sql .= $returning_sql;
465 push @bind, @returning_bind;
466 }
467
9d48860e 468 return wantarray ? ($sql, @bind) : $sql;
96449e8e 469}
470
60f3fd3f 471# So that subclasses can override DELETE ... RETURNING separately from
472# INSERT and UPDATE
85327cd5 473sub _delete_returning { shift->_returning(@_) }
474
475
96449e8e 476
477#======================================================================
478# WHERE: entry point
479#======================================================================
480
481
482
483# Finally, a separate routine just to handle WHERE clauses
484sub where {
485 my ($self, $where, $order) = @_;
486
7ad12721 487 local $self->{convert_where} = $self->{convert};
488
96449e8e 489 # where ?
e175845b 490 my ($sql, @bind) = defined($where)
491 ? $self->_recurse_where($where)
492 : (undef);
417dd15e 493 $sql = (defined $sql and length $sql) ? $self->_sqlcase(' where ') . "( $sql )" : '';
96449e8e 494
495 # order by?
496 if ($order) {
26fe4d30 497 my ($order_sql, @order_bind) = $self->_order_by($order);
498 $sql .= $order_sql;
499 push @bind, @order_bind;
96449e8e 500 }
501
9d48860e 502 return wantarray ? ($sql, @bind) : $sql;
96449e8e 503}
504
a2cd381d 505sub _expand_expr {
2558b622 506 my ($self, $expr, $logic, $default_scalar_to) = @_;
507 local our $Default_Scalar_To = $default_scalar_to if $default_scalar_to;
3ae10d16 508 our $Expand_Depth ||= 0; local $Expand_Depth = $Expand_Depth + 1;
252518da 509 return undef unless defined($expr);
59588695 510 if (ref($expr) eq 'HASH') {
511 if (keys %$expr > 1) {
512 $logic ||= 'and';
77617257 513 return +{ -op => [
514 $logic,
59588695 515 map $self->_expand_expr_hashpair($_ => $expr->{$_}, $logic),
516 sort keys %$expr
517 ] };
518 }
1c0c0f41 519 return { -literal => [ '' ] } unless keys %$expr;
59588695 520 return $self->_expand_expr_hashpair(%$expr, $logic);
a2cd381d 521 }
08264f40 522 if (ref($expr) eq 'ARRAY') {
99a65fa8 523 my $logic = lc($logic || $self->{logic});
08264f40 524 $logic eq 'and' or $logic eq 'or' or puke "unknown logic: $logic";
525
1c0c0f41 526 #my @expr = @$expr;
527 my @expr = grep {
528 (ref($_) eq 'ARRAY' and @$_)
529 or (ref($_) eq 'HASH' and %$_)
530 or 1
531 } @$expr;
08264f40 532
533 my @res;
534
535 while (my ($el) = splice @expr, 0, 1) {
536 puke "Supplying an empty left hand side argument is not supported in array-pairs"
537 unless defined($el) and length($el);
538 my $elref = ref($el);
539 if (!$elref) {
dd1d0dbf 540 local $Expand_Depth = 0;
08264f40 541 push(@res, $self->_expand_expr({ $el, shift(@expr) }));
542 } elsif ($elref eq 'ARRAY') {
543 push(@res, $self->_expand_expr($el)) if @$el;
ec857800 544 } elsif (my $l = is_literal_value($el)) {
545 push @res, { -literal => $l };
08264f40 546 } elsif ($elref eq 'HASH') {
dd1d0dbf 547 local $Expand_Depth = 0;
1b630cfe 548 push @res, $self->_expand_expr($el) if %$el;
08264f40 549 } else {
da4a0964 550 die "notreached";
08264f40 551 }
552 }
2143604f 553 return { -op => [ $logic, @res ] };
08264f40 554 }
ca3da680 555 if (my $literal = is_literal_value($expr)) {
556 return +{ -literal => $literal };
557 }
99a65fa8 558 if (!ref($expr) or Scalar::Util::blessed($expr)) {
2558b622 559 if (my $d = $Default_Scalar_To) {
560 return +{ $d => $expr };
561 }
99a65fa8 562 if (my $m = our $Cur_Col_Meta) {
563 return +{ -bind => [ $m, $expr ] };
564 }
252518da 565 return +{ -value => $expr };
566 }
252518da 567 die "notreached";
a2cd381d 568}
96449e8e 569
0fc68377 570my $Nest_Warned = 0;
74156ee9 571
59588695 572sub _expand_expr_hashpair {
573 my ($self, $k, $v, $logic) = @_;
d13725da 574 unless (defined($k) and length($k)) {
2d64004f 575 if (defined($k) and my $literal = is_literal_value($v)) {
d13725da 576 belch 'Hash-pairs consisting of an empty string with a literal are deprecated, and will be removed in 2.0: use -and => [ $literal ] instead';
2d64004f 577 return { -literal => $literal };
d13725da 578 }
579 puke "Supplying an empty left hand side argument is not supported";
580 }
ef071fad 581 if ($k =~ /^-/) {
99a65fa8 582 $self->_assert_pass_injection_guard($k =~ /^-(.*)$/s);
583 if ($k =~ s/ [_\s]? \d+ $//x ) {
584 belch 'Use of [and|or|nest]_N modifiers is deprecated and will be removed in SQLA v2.0. '
585 . "You probably wanted ...-and => [ $k => COND1, $k => COND2 ... ]";
586 }
ef071fad 587 if ($k eq '-nest') {
0fc68377 588 # DBIx::Class requires a nest warning to be emitted once but the private
589 # method it overrode to do so no longer exists
590 if (ref($self) =~ /^DBIx::Class::SQLMaker/) {
591 unless ($Nest_Warned) {
592 belch(
593 "-nest in search conditions is deprecated, you most probably wanted:\n"
594 .q|{..., -and => [ \%cond0, \@cond1, \'cond2', \[ 'cond3', [ col => bind ] ], etc. ], ... }|
595 );
596 $Nest_Warned = 1;
597 }
598 }
ef071fad 599 return $self->_expand_expr($v);
600 }
6ab1562a 601 if ($k eq '-bool') {
602 if (ref($v)) {
603 return $self->_expand_expr($v);
604 }
605 puke "-bool => undef not supported" unless defined($v);
606 return { -ident => $v };
607 }
99a65fa8 608 if ($k eq '-not') {
0c7e3af0 609 return { -op => [ 'not', $self->_expand_expr($v) ] };
99a65fa8 610 }
ce3bc4b0 611 if (my ($rest) = $k =~/^-not[_ ](.*)$/) {
0c7e3af0 612 return +{ -op => [
613 'not',
99a65fa8 614 $self->_expand_expr_hashpair("-${rest}", $v, $logic)
0c7e3af0 615 ] };
ce3bc4b0 616 }
99a65fa8 617 if (my ($logic) = $k =~ /^-(and|or)$/i) {
dd2d5bf7 618 if (ref($v) eq 'HASH') {
619 return $self->_expand_expr($v, $logic);
620 }
99a65fa8 621 if (ref($v) eq 'ARRAY') {
622 return $self->_expand_expr($v, $logic);
623 }
dd2d5bf7 624 }
99a65fa8 625 {
626 my $op = $k;
627 $op =~ s/^-// if length($op) > 1;
628
629 # top level special ops are illegal in general
3ae10d16 630 # note that, arguably, if it makes no sense at top level, it also
631 # makes no sense on the other side of an = sign or similar but DBIC
632 # gets disappointingly upset if I disallow it
633 if (
634 (our $Expand_Depth) == 1
635 and List::Util::first { $op =~ $_->{regex} } @{$self->{special_ops}}
636 ) {
637 puke "Illegal use of top-level '-$op'"
638 }
96a8d74a 639 if (my $us = List::Util::first { $op =~ $_->{regex} } @{$self->{unary_ops}}) {
640 return { -op => [ $op, $v ] };
641 }
99a65fa8 642 }
643 if ($k eq '-value' and my $m = our $Cur_Col_Meta) {
644 return +{ -bind => [ $m, $v ] };
645 }
ec19b759 646 if (my $custom = $self->{expand_unary}{$k}) {
647 return $self->$custom($v);
648 }
b07681b1 649 if ($self->{node_types}{$k}) {
99a65fa8 650 return { $k => $v };
d13725da 651 }
711892b1 652 if (
653 ref($v) eq 'HASH'
654 and keys %$v == 1
655 and (keys %$v)[0] =~ /^-/
656 ) {
657 my ($func) = $k =~ /^-(.*)$/;
3ae10d16 658 if (List::Util::first { $func =~ $_->{regex} } @{$self->{special_ops}}) {
659 return +{ -op => [ $func, $self->_expand_expr($v) ] };
660 }
711892b1 661 return +{ -func => [ $func, $self->_expand_expr($v) ] };
662 }
663 if (!ref($v) or is_literal_value($v)) {
99a65fa8 664 return +{ -op => [ $k =~ /^-(.*)$/, $self->_expand_expr($v) ] };
59588695 665 }
99a65fa8 666 }
667 if (
668 !defined($v)
669 or (
670 ref($v) eq 'HASH'
671 and exists $v->{-value}
672 and not defined $v->{-value}
673 )
674 ) {
675 return $self->_expand_expr_hashpair($k => { $self->{cmp} => undef });
676 }
677 if (!ref($v) or Scalar::Util::blessed($v)) {
ec19b759 678 my $d = our $Default_Scalar_To;
99a65fa8 679 return +{
680 -op => [
681 $self->{cmp},
682 { -ident => $k },
ec19b759 683 ($d ? { $d => $v } : { -bind => [ $k, $v ] })
99a65fa8 684 ]
685 };
686 }
687 if (ref($v) eq 'HASH') {
688 if (keys %$v > 1) {
e175845b 689 return { -op => [
690 'and',
99a65fa8 691 map $self->_expand_expr_hashpair($k => { $_ => $v->{$_} }),
692 sort keys %$v
693 ] };
694 }
dd1d0dbf 695 return { -literal => [ '' ] } unless keys %$v;
99a65fa8 696 my ($vk, $vv) = %$v;
697 $vk =~ s/^-//;
698 $vk = lc($vk);
699 $self->_assert_pass_injection_guard($vk);
700 if ($vk =~ s/ [_\s]? \d+ $//x ) {
701 belch 'Use of [and|or|nest]_N modifiers is deprecated and will be removed in SQLA v2.0. '
702 . "You probably wanted ...-and => [ -$vk => COND1, -$vk => COND2 ... ]";
703 }
704 if ($vk =~ /^(?:not[ _])?between$/) {
705 local our $Cur_Col_Meta = $k;
706 my @rhs = map $self->_expand_expr($_),
707 ref($vv) eq 'ARRAY' ? @$vv : $vv;
708 unless (
709 (@rhs == 1 and ref($rhs[0]) eq 'HASH' and $rhs[0]->{-literal})
710 or
711 (@rhs == 2 and defined($rhs[0]) and defined($rhs[1]))
712 ) {
713 puke "Operator '${\uc($vk)}' requires either an arrayref with two defined values or expressions, or a single literal scalarref/arrayref-ref";
b5b18861 714 }
99a65fa8 715 return +{ -op => [
716 join(' ', split '_', $vk),
717 { -ident => $k },
718 @rhs
719 ] }
720 }
721 if ($vk =~ /^(?:not[ _])?in$/) {
722 if (my $literal = is_literal_value($vv)) {
723 my ($sql, @bind) = @$literal;
724 my $opened_sql = $self->_open_outer_paren($sql);
10d07c4e 725 return +{ -op => [
99a65fa8 726 $vk, { -ident => $k },
727 [ { -literal => [ $opened_sql, @bind ] } ]
10d07c4e 728 ] };
729 }
99a65fa8 730 my $undef_err =
731 'SQL::Abstract before v1.75 used to generate incorrect SQL when the '
732 . "-${\uc($vk)} operator was given an undef-containing list: !!!AUDIT YOUR CODE "
733 . 'AND DATA!!! (the upcoming Data::Query-based version of SQL::Abstract '
734 . 'will emit the logically correct SQL instead of raising this exception)'
735 ;
736 puke("Argument passed to the '${\uc($vk)}' operator can not be undefined")
737 if !defined($vv);
738 my @rhs = map $self->_expand_expr($_),
739 map { ref($_) ? $_ : { -bind => [ $k, $_ ] } }
740 map { defined($_) ? $_: puke($undef_err) }
741 (ref($vv) eq 'ARRAY' ? @$vv : $vv);
e175845b 742 return $self->${\($vk =~ /^not/ ? 'sqltrue' : 'sqlfalse')} unless @rhs;
99a65fa8 743
744 return +{ -op => [
745 join(' ', split '_', $vk),
746 { -ident => $k },
747 \@rhs
748 ] };
749 }
750 if ($vk eq 'ident') {
02b8fe35 751 if (! defined $vv or (ref($vv) and ref($vv) eq 'ARRAY')) {
752 puke "-$vk requires a single plain scalar argument (a quotable identifier) or an arrayref of identifier parts";
f7778474 753 }
99a65fa8 754 return +{ -op => [
755 $self->{cmp},
756 { -ident => $k },
757 { -ident => $vv }
758 ] };
759 }
760 if ($vk eq 'value') {
761 return $self->_expand_expr_hashpair($k, undef) unless defined($vv);
762 return +{ -op => [
763 $self->{cmp},
764 { -ident => $k },
765 { -bind => [ $k, $vv ] }
766 ] };
767 }
768 if ($vk =~ /^is(?:[ _]not)?$/) {
769 puke "$vk can only take undef as argument"
770 if defined($vv)
771 and not (
772 ref($vv) eq 'HASH'
773 and exists($vv->{-value})
774 and !defined($vv->{-value})
775 );
776 $vk =~ s/_/ /g;
777 return +{ -op => [ $vk.' null', { -ident => $k } ] };
778 }
779 if ($vk =~ /^(and|or)$/) {
780 if (ref($vv) eq 'HASH') {
e62fe58a 781 return +{ -op => [
782 $vk,
99a65fa8 783 map $self->_expand_expr_hashpair($k, { $_ => $vv->{$_} }),
784 sort keys %$vv
7d7868d1 785 ] };
786 }
e28d9b13 787 }
30af97c5 788 if (my $us = List::Util::first { $vk =~ $_->{regex} } @{$self->{special_ops}}) {
99a65fa8 789 return { -op => [ $vk, { -ident => $k }, $vv ] };
7dbe1183 790 }
96a8d74a 791 if (my $us = List::Util::first { $vk =~ $_->{regex} } @{$self->{unary_ops}}) {
792 return { -op => [
793 $self->{cmp},
794 { -ident => $k },
795 { -op => [ $vk, $vv ] }
796 ] };
797 }
99a65fa8 798 if (ref($vv) eq 'ARRAY') {
799 my ($logic, @values) = (
800 (defined($vv->[0]) and $vv->[0] =~ /^-(and|or)$/i)
801 ? @$vv
802 : (-or => @$vv)
803 );
804 if (
805 $vk =~ $self->{inequality_op}
806 or join(' ', split '_', $vk) =~ $self->{not_like_op}
807 ) {
808 if (lc($logic) eq '-or' and @values > 1) {
809 my $op = uc join ' ', split '_', $vk;
810 belch "A multi-element arrayref as an argument to the inequality op '$op' "
811 . 'is technically equivalent to an always-true 1=1 (you probably wanted '
812 . "to say ...{ \$inequality_op => [ -and => \@values ] }... instead)"
813 ;
814 }
ef071fad 815 }
b3cb13e8 816 unless (@values) {
817 # try to DWIM on equality operators
818 my $op = join ' ', split '_', $vk;
819 return
e175845b 820 $op =~ $self->{equality_op} ? $self->sqlfalse
821 : $op =~ $self->{like_op} ? belch("Supplying an empty arrayref to '@{[ uc $op]}' is deprecated") && $self->sqlfalse
822 : $op =~ $self->{inequality_op} ? $self->sqltrue
823 : $op =~ $self->{not_like_op} ? belch("Supplying an empty arrayref to '@{[ uc $op]}' is deprecated") && $self->sqltrue
b3cb13e8 824 : puke "operator '$op' applied on an empty array (field '$k')";
825 }
63c97a0b 826 return +{ -op => [
827 $logic =~ /^-(.*)$/,
99a65fa8 828 map $self->_expand_expr_hashpair($k => { $vk => $_ }),
829 @values
830 ] };
831 }
832 if (
833 !defined($vv)
834 or (
835 ref($vv) eq 'HASH'
836 and exists $vv->{-value}
837 and not defined $vv->{-value}
838 )
839 ) {
840 my $op = join ' ', split '_', $vk;
841 my $is =
842 $op =~ /^not$/i ? 'is not' # legacy
843 : $op =~ $self->{equality_op} ? 'is'
844 : $op =~ $self->{like_op} ? belch("Supplying an undefined argument to '@{[ uc $op]}' is deprecated") && 'is'
845 : $op =~ $self->{inequality_op} ? 'is not'
846 : $op =~ $self->{not_like_op} ? belch("Supplying an undefined argument to '@{[ uc $op]}' is deprecated") && 'is not'
847 : puke "unexpected operator '$op' with undef operand";
848 return +{ -op => [ $is.' null', { -ident => $k } ] };
849 }
850 local our $Cur_Col_Meta = $k;
851 return +{ -op => [
852 $vk,
853 { -ident => $k },
854 $self->_expand_expr($vv)
855 ] };
856 }
857 if (ref($v) eq 'ARRAY') {
e175845b 858 return $self->sqlfalse unless @$v;
99a65fa8 859 $self->_debug("ARRAY($k) means distribute over elements");
860 my $this_logic = (
861 $v->[0] =~ /^-((?:and|or))$/i
862 ? ($v = [ @{$v}[1..$#$v] ], $1)
863 : ($self->{logic} || 'or')
864 );
cba28f66 865 return +{ -op => [
866 $this_logic,
867 map $self->_expand_expr({ $k => $_ }, $this_logic), @$v
868 ] };
99a65fa8 869 }
870 if (my $literal = is_literal_value($v)) {
871 unless (length $k) {
872 belch 'Hash-pairs consisting of an empty string with a literal are deprecated, and will be removed in 2.0: use -and => [ $literal ] instead';
873 return \$literal;
874 }
875 my ($sql, @bind) = @$literal;
876 if ($self->{bindtype} eq 'columns') {
877 for (@bind) {
6fb2bd90 878 $self->_assert_bindval_matches_bindtype($_);
aa8d7bdb 879 }
331e2209 880 }
99a65fa8 881 return +{ -literal => [ $self->_quote($k).' '.$sql, @bind ] };
331e2209 882 }
99a65fa8 883 die "notreached";
59588695 884}
885
e175845b 886sub _render_expr {
887 my ($self, $expr) = @_;
888 my ($k, $v, @rest) = %$expr;
889 die "No" if @rest;
b07681b1 890 if (my $meth = $self->{node_types}{$k}) {
181dcebf 891 return $self->$meth($v);
e175845b 892 }
893 die "notreached: $k";
894}
895
96449e8e 896sub _recurse_where {
897 my ($self, $where, $logic) = @_;
898
99a65fa8 899#print STDERR Data::Dumper::Concise::Dumper([ $where, $logic ]);
900
5492d4c2 901 # Special case: top level simple string treated as literal
902
903 my $where_exp = (ref($where)
904 ? $self->_expand_expr($where, $logic)
905 : { -literal => [ $where ] });
1c0c0f41 906#::Dwarn([ EXPANDED => $where_exp ]);
a2cd381d 907
99a65fa8 908#print STDERR Data::Dumper::Concise::Dumper([ EXP => $where_exp ]);
909
96449e8e 910 # dispatch on appropriate method according to refkind of $where
e175845b 911# my $method = $self->_METHOD_FOR_refkind("_where", $where_exp);
912
913# my ($sql, @bind) = $self->$method($where_exp, $logic);
311b2151 914
e175845b 915 my ($sql, @bind) = defined($where_exp) ? $self->_render_expr($where_exp) : (undef);
abe1a491 916 # DBIx::Class used to call _recurse_where in scalar context
917 # something else might too...
918 if (wantarray) {
919 return ($sql, @bind);
920 }
921 else {
922 belch "Calling _recurse_where in scalar context is deprecated and will go away before 2.0";
923 return $sql;
924 }
96449e8e 925}
926
181dcebf 927sub _render_ident {
928 my ($self, $ident) = @_;
cc422895 929
9cf28dfb 930 return $self->_convert($self->_quote($ident));
cc422895 931}
932
181dcebf 933sub _render_value {
934 my ($self, $value) = @_;
cc422895 935
52511ae3 936 return ($self->_convert('?'), $self->_bindtype(undef, $value));
cc422895 937}
938
c452734e 939my %unop_postfix = map +($_ => 1),
940 'is null', 'is not null',
941 'asc', 'desc',
942;
d13725da 943
b5b18861 944my %special = (
945 (map +($_ => do {
946 my $op = $_;
947 sub {
948 my ($self, $args) = @_;
949 my ($left, $low, $high) = @$args;
950 my ($rhsql, @rhbind) = do {
951 if (@$args == 2) {
952 puke "Single arg to between must be a literal"
953 unless $low->{-literal};
954 @{$low->{-literal}}
955 } else {
e56dd780 956 my ($l, $h) = map [ $self->_render_expr($_) ], $low, $high;
b5b18861 957 (join(' ', $l->[0], $self->_sqlcase('and'), $h->[0]),
958 @{$l}[1..$#$l], @{$h}[1..$#$h])
959 }
960 };
e56dd780 961 my ($lhsql, @lhbind) = $self->_render_expr($left);
b5b18861 962 return (
963 join(' ', '(', $lhsql, $self->_sqlcase($op), $rhsql, ')'),
964 @lhbind, @rhbind
965 );
966 }
967 }), 'between', 'not between'),
10d07c4e 968 (map +($_ => do {
969 my $op = $_;
970 sub {
971 my ($self, $args) = @_;
972 my ($lhs, $rhs) = @$args;
973 my @in_bind;
974 my @in_sql = map {
0ce981f8 975 my ($sql, @bind) = $self->_render_expr($_);
10d07c4e 976 push @in_bind, @bind;
977 $sql;
978 } @$rhs;
0ce981f8 979 my ($lhsql, @lbind) = $self->_render_expr($lhs);
10d07c4e 980 return (
981 $lhsql.' '.$self->_sqlcase($op).' ( '
982 .join(', ', @in_sql)
983 .' )',
984 @lbind, @in_bind
985 );
986 }
987 }), 'in', 'not in'),
b5b18861 988);
989
181dcebf 990sub _render_op {
991 my ($self, $v) = @_;
d13725da 992 my ($op, @args) = @$v;
993 $op =~ s/^-// if length($op) > 1;
cba28f66 994 $op = lc($op);
b5b18861 995 if (my $h = $special{$op}) {
996 return $self->$h(\@args);
997 }
3ae10d16 998 my $us = List::Util::first { $op =~ $_->{regex} } @{$self->{special_ops}};
999 if ($us and @args > 1) {
99a65fa8 1000 puke "Special op '${op}' requires first value to be identifier"
1001 unless my ($k) = map $_->{-ident}, grep ref($_) eq 'HASH', $args[0];
dd1d0dbf 1002 local our $Expand_Depth = 1;
99a65fa8 1003 return $self->${\($us->{handler})}($k, $op, $args[1]);
1004 }
96a8d74a 1005 if (my $us = List::Util::first { $op =~ $_->{regex} } @{$self->{unary_ops}}) {
1006 return $self->${\($us->{handler})}($op, $args[0]);
1007 }
99a65fa8 1008 my $final_op = $op =~ /^(?:is|not)_/ ? join(' ', split '_', $op) : $op;
2143604f 1009 if (@args == 1 and $op !~ /^(and|or)$/) {
ec857800 1010 my ($expr_sql, @bind) = $self->_render_expr($args[0]);
d13725da 1011 my $op_sql = $self->_sqlcase($final_op);
1012 my $final_sql = (
1013 $unop_postfix{lc($final_op)}
1014 ? "${expr_sql} ${op_sql}"
1015 : "${op_sql} ${expr_sql}"
1016 );
3ae10d16 1017 return (($op eq 'not' || $us ? '('.$final_sql.')' : $final_sql), @bind);
1c0c0f41 1018 #} elsif (@args == 0) {
1019 # return '';
16d9289c 1020 } else {
1c0c0f41 1021 my @parts = grep length($_->[0]), map [ $self->_render_expr($_) ], @args;
1022 return '' unless @parts;
230812fc 1023 my $is_andor = !!($op =~ /^(and|or)$/);
1024 return @{$parts[0]} if $is_andor and @parts == 1;
1025 my ($final_sql) = map +($is_andor ? "( ${_} )" : $_), join(
2f9c5405 1026 ($final_op eq ',' ? '' : ' ').$self->_sqlcase($final_op).' ',
77617257 1027 map $_->[0], @parts
1028 );
99a65fa8 1029 return (
77617257 1030 $final_sql,
16d9289c 1031 map @{$_}[1..$#$_], @parts
99a65fa8 1032 );
d13725da 1033 }
1034 die "unhandled";
1035}
1036
181dcebf 1037sub _render_func {
1038 my ($self, $rest) = @_;
711892b1 1039 my ($func, @args) = @$rest;
1040 my @arg_sql;
1041 my @bind = map {
1042 my @x = @$_;
1043 push @arg_sql, shift @x;
1044 @x
0f199fce 1045 } map [ $self->_render_expr($_) ], @args;
711892b1 1046 return ($self->_sqlcase($func).'('.join(', ', @arg_sql).')', @bind);
1047}
1048
181dcebf 1049sub _render_bind {
1050 my ($self, $bind) = @_;
d13725da 1051 return ($self->_convert('?'), $self->_bindtype(@$bind));
1052}
1053
181dcebf 1054sub _render_literal {
1055 my ($self, $literal) = @_;
465d43fd 1056 $self->_assert_bindval_matches_bindtype(@{$literal}[1..$#$literal]);
aa8d7bdb 1057 return @$literal;
1058}
1059
4a1f01a3 1060# Some databases (SQLite) treat col IN (1, 2) different from
1061# col IN ( (1, 2) ). Use this to strip all outer parens while
1062# adding them back in the corresponding method
1063sub _open_outer_paren {
1064 my ($self, $sql) = @_;
a5f91feb 1065
ca4f826a 1066 while (my ($inner) = $sql =~ /^ \s* \( (.*) \) \s* $/xs) {
a5f91feb 1067
1068 # there are closing parens inside, need the heavy duty machinery
1069 # to reevaluate the extraction starting from $sql (full reevaluation)
ca4f826a 1070 if ($inner =~ /\)/) {
a5f91feb 1071 require Text::Balanced;
1072
1073 my (undef, $remainder) = do {
1074 # idiotic design - writes to $@ but *DOES NOT* throw exceptions
1075 local $@;
ca4f826a 1076 Text::Balanced::extract_bracketed($sql, '()', qr/\s*/);
a5f91feb 1077 };
1078
1079 # the entire expression needs to be a balanced bracketed thing
1080 # (after an extract no remainder sans trailing space)
1081 last if defined $remainder and $remainder =~ /\S/;
1082 }
1083
1084 $sql = $inner;
1085 }
1086
1087 $sql;
4a1f01a3 1088}
1089
96449e8e 1090
96449e8e 1091#======================================================================
1092# ORDER BY
1093#======================================================================
1094
33177570 1095sub _expand_order_by {
96449e8e 1096 my ($self, $arg) = @_;
1097
33177570 1098 return unless defined($arg) and not (ref($arg) eq 'ARRAY' and !@$arg);
2b6158af 1099
4325df6a 1100 my $expander = sub {
1101 my ($self, $dir, $expr) = @_;
52ca537e 1102 my @to_expand = ref($expr) eq 'ARRAY' ? @$expr : $expr;
1103 foreach my $arg (@to_expand) {
1104 if (
1105 ref($arg) eq 'HASH'
1106 and keys %$arg > 1
1107 and grep /^-(asc|desc)$/, keys %$arg
1108 ) {
1109 puke "ordering direction hash passed to order by must have exactly one key (-asc or -desc)";
1110 }
1111 }
4325df6a 1112 my @exp = map +(defined($dir) ? { -op => [ $dir => $_ ] } : $_),
74156ee9 1113 map $self->_expand_expr($_, undef, -ident),
1114 map ref($_) eq 'ARRAY' ? @$_ : $_, @to_expand;
4325df6a 1115 return (@exp > 1 ? { -op => [ ',', @exp ] } : $exp[0]);
1116 };
18c743c8 1117
ec19b759 1118 local @{$self->{expand_unary}}{qw(-asc -desc)} = (
1119 sub { shift->$expander(asc => @_) },
1120 sub { shift->$expander(desc => @_) },
1121 );
f267b646 1122
33177570 1123 return $self->$expander(undef, $arg);
1124}
1125
1126sub _order_by {
1127 my ($self, $arg) = @_;
1128
1129 return '' unless defined(my $expanded = $self->_expand_order_by($arg));
4325df6a 1130
1131 my ($sql, @bind) = $self->_render_expr($expanded);
1132
1133 my $final_sql = $self->_sqlcase(' order by ').$sql;
1134
1135 return wantarray ? ($final_sql, @bind) : $final_sql;
f267b646 1136}
1137
2e3cc357 1138# _order_by no longer needs to call this so doesn't but DBIC uses it.
1139
33177570 1140sub _order_by_chunks {
1141 my ($self, $arg) = @_;
1142
1143 return () unless defined(my $expanded = $self->_expand_order_by($arg));
1144
2e3cc357 1145 return $self->_chunkify_order_by($expanded);
1146}
1147
1148sub _chunkify_order_by {
1149 my ($self, $expanded) = @_;
1b630cfe 1150
dd1d0dbf 1151 return grep length, $self->_render_expr($expanded)
1b630cfe 1152 if $expanded->{-ident} or @{$expanded->{-literal}||[]} == 1;
1153
33177570 1154 for ($expanded) {
1155 if (ref() eq 'HASH' and my $op = $_->{-op}) {
1156 if ($op->[0] eq ',') {
2e3cc357 1157 return map $self->_chunkify_order_by($_), @{$op}[1..$#$op];
33177570 1158 }
1159 }
1160 return [ $self->_render_expr($_) ];
1161 }
1162}
1163
96449e8e 1164#======================================================================
1165# DATASOURCE (FOR NOW, JUST PLAIN TABLE OR LIST OF TABLES)
1166#======================================================================
1167
1168sub _table {
1169 my $self = shift;
1170 my $from = shift;
7ad12721 1171 ($self->_render_expr(
8476c6a3 1172 $self->_expand_maybe_list_expr($from, undef, -ident)
7ad12721 1173 ))[0];
96449e8e 1174}
1175
1176
1177#======================================================================
1178# UTILITY FUNCTIONS
1179#======================================================================
1180
8476c6a3 1181sub _expand_maybe_list_expr {
1182 my ($self, $expr, $logic, $default) = @_;
bba04f52 1183 my $e = do {
1184 if (ref($expr) eq 'ARRAY') {
1185 return { -op => [
8476c6a3 1186 ',', map $self->_expand_expr($_, $logic, $default), @$expr
bba04f52 1187 ] } if @$expr > 1;
1188 $expr->[0]
1189 } else {
1190 $expr
1191 }
1192 };
1193 return $self->_expand_expr($e, $logic, $default);
8476c6a3 1194}
1195
955e77ca 1196# highly optimized, as it's called way too often
96449e8e 1197sub _quote {
955e77ca 1198 # my ($self, $label) = @_;
96449e8e 1199
955e77ca 1200 return '' unless defined $_[1];
955e77ca 1201 return ${$_[1]} if ref($_[1]) eq 'SCALAR';
d3162b5c 1202 puke 'Identifier cannot be hashref' if ref($_[1]) eq 'HASH';
96449e8e 1203
d3162b5c 1204 unless ($_[0]->{quote_char}) {
1205 if (ref($_[1]) eq 'ARRAY') {
1206 return join($_[0]->{name_sep}||'.', @{$_[1]});
1207 } else {
1208 $_[0]->_assert_pass_injection_guard($_[1]);
1209 return $_[1];
1210 }
1211 }
96449e8e 1212
07d7c35c 1213 my $qref = ref $_[0]->{quote_char};
439834d3 1214 my ($l, $r) =
1215 !$qref ? ($_[0]->{quote_char}, $_[0]->{quote_char})
1216 : ($qref eq 'ARRAY') ? @{$_[0]->{quote_char}}
1217 : puke "Unsupported quote_char format: $_[0]->{quote_char}";
1218
46be4313 1219 my $esc = $_[0]->{escape_char} || $r;
96449e8e 1220
07d7c35c 1221 # parts containing * are naturally unquoted
d3162b5c 1222 return join(
1223 $_[0]->{name_sep}||'',
1224 map +(
1225 $_ eq '*'
1226 ? $_
1227 : do { (my $n = $_) =~ s/(\Q$esc\E|\Q$r\E)/$esc$1/g; $l . $n . $r }
1228 ),
1229 (ref($_[1]) eq 'ARRAY'
1230 ? @{$_[1]}
1231 : (
1232 $_[0]->{name_sep}
1233 ? split (/\Q$_[0]->{name_sep}\E/, $_[1] )
1234 : $_[1]
1235 )
1236 )
955e77ca 1237 );
96449e8e 1238}
1239
1240
1241# Conversion, if applicable
d7c862e0 1242sub _convert {
07d7c35c 1243 #my ($self, $arg) = @_;
7ad12721 1244 if ($_[0]->{convert_where}) {
1245 return $_[0]->_sqlcase($_[0]->{convert_where}) .'(' . $_[1] . ')';
96449e8e 1246 }
07d7c35c 1247 return $_[1];
96449e8e 1248}
1249
1250# And bindtype
d7c862e0 1251sub _bindtype {
07d7c35c 1252 #my ($self, $col, @vals) = @_;
07d7c35c 1253 # called often - tighten code
1254 return $_[0]->{bindtype} eq 'columns'
1255 ? map {[$_[1], $_]} @_[2 .. $#_]
1256 : @_[2 .. $#_]
1257 ;
96449e8e 1258}
1259
fe3ae272 1260# Dies if any element of @bind is not in [colname => value] format
1261# if bindtype is 'columns'.
1262sub _assert_bindval_matches_bindtype {
c94a6c93 1263# my ($self, @bind) = @_;
1264 my $self = shift;
fe3ae272 1265 if ($self->{bindtype} eq 'columns') {
c94a6c93 1266 for (@_) {
1267 if (!defined $_ || ref($_) ne 'ARRAY' || @$_ != 2) {
3a06278c 1268 puke "bindtype 'columns' selected, you need to pass: [column_name => bind_value]"
fe3ae272 1269 }
1270 }
1271 }
1272}
1273
96449e8e 1274sub _join_sql_clauses {
1275 my ($self, $logic, $clauses_aref, $bind_aref) = @_;
1276
1277 if (@$clauses_aref > 1) {
1278 my $join = " " . $self->_sqlcase($logic) . " ";
1279 my $sql = '( ' . join($join, @$clauses_aref) . ' )';
1280 return ($sql, @$bind_aref);
1281 }
1282 elsif (@$clauses_aref) {
1283 return ($clauses_aref->[0], @$bind_aref); # no parentheses
1284 }
1285 else {
1286 return (); # if no SQL, ignore @$bind_aref
1287 }
1288}
1289
1290
1291# Fix SQL case, if so requested
1292sub _sqlcase {
96449e8e 1293 # LDNOTE: if $self->{case} is true, then it contains 'lower', so we
1294 # don't touch the argument ... crooked logic, but let's not change it!
07d7c35c 1295 return $_[0]->{case} ? $_[1] : uc($_[1]);
96449e8e 1296}
1297
1298
1299#======================================================================
1300# DISPATCHING FROM REFKIND
1301#======================================================================
1302
1303sub _refkind {
1304 my ($self, $data) = @_;
96449e8e 1305
955e77ca 1306 return 'UNDEF' unless defined $data;
1307
1308 # blessed objects are treated like scalars
1309 my $ref = (Scalar::Util::blessed $data) ? '' : ref $data;
1310
1311 return 'SCALAR' unless $ref;
1312
1313 my $n_steps = 1;
1314 while ($ref eq 'REF') {
96449e8e 1315 $data = $$data;
955e77ca 1316 $ref = (Scalar::Util::blessed $data) ? '' : ref $data;
1317 $n_steps++ if $ref;
96449e8e 1318 }
1319
848556bc 1320 return ($ref||'SCALAR') . ('REF' x $n_steps);
96449e8e 1321}
1322
1323sub _try_refkind {
1324 my ($self, $data) = @_;
1325 my @try = ($self->_refkind($data));
1326 push @try, 'SCALAR_or_UNDEF' if $try[0] eq 'SCALAR' || $try[0] eq 'UNDEF';
1327 push @try, 'FALLBACK';
955e77ca 1328 return \@try;
96449e8e 1329}
1330
1331sub _METHOD_FOR_refkind {
1332 my ($self, $meth_prefix, $data) = @_;
f39eaa60 1333
1334 my $method;
955e77ca 1335 for (@{$self->_try_refkind($data)}) {
f39eaa60 1336 $method = $self->can($meth_prefix."_".$_)
1337 and last;
1338 }
1339
1340 return $method || puke "cannot dispatch on '$meth_prefix' for ".$self->_refkind($data);
96449e8e 1341}
1342
1343
1344sub _SWITCH_refkind {
1345 my ($self, $data, $dispatch_table) = @_;
1346
f39eaa60 1347 my $coderef;
955e77ca 1348 for (@{$self->_try_refkind($data)}) {
f39eaa60 1349 $coderef = $dispatch_table->{$_}
1350 and last;
1351 }
1352
1353 puke "no dispatch entry for ".$self->_refkind($data)
1354 unless $coderef;
1355
96449e8e 1356 $coderef->();
1357}
1358
1359
1360
1361
1362#======================================================================
1363# VALUES, GENERATE, AUTOLOAD
1364#======================================================================
1365
1366# LDNOTE: original code from nwiger, didn't touch code in that section
1367# I feel the AUTOLOAD stuff should not be the default, it should
1368# only be activated on explicit demand by user.
1369
1370sub values {
1371 my $self = shift;
1372 my $data = shift || return;
1373 puke "Argument to ", __PACKAGE__, "->values must be a \\%hash"
1374 unless ref $data eq 'HASH';
bab725ce 1375
1376 my @all_bind;
ca4f826a 1377 foreach my $k (sort keys %$data) {
bab725ce 1378 my $v = $data->{$k};
1379 $self->_SWITCH_refkind($v, {
9d48860e 1380 ARRAYREF => sub {
bab725ce 1381 if ($self->{array_datatypes}) { # array datatype
1382 push @all_bind, $self->_bindtype($k, $v);
1383 }
1384 else { # literal SQL with bind
1385 my ($sql, @bind) = @$v;
1386 $self->_assert_bindval_matches_bindtype(@bind);
1387 push @all_bind, @bind;
1388 }
1389 },
1390 ARRAYREFREF => sub { # literal SQL with bind
1391 my ($sql, @bind) = @${$v};
1392 $self->_assert_bindval_matches_bindtype(@bind);
1393 push @all_bind, @bind;
1394 },
1395 SCALARREF => sub { # literal SQL without bind
1396 },
1397 SCALAR_or_UNDEF => sub {
1398 push @all_bind, $self->_bindtype($k, $v);
1399 },
1400 });
1401 }
1402
1403 return @all_bind;
96449e8e 1404}
1405
1406sub generate {
1407 my $self = shift;
1408
1409 my(@sql, @sqlq, @sqlv);
1410
1411 for (@_) {
1412 my $ref = ref $_;
1413 if ($ref eq 'HASH') {
1414 for my $k (sort keys %$_) {
1415 my $v = $_->{$k};
1416 my $r = ref $v;
1417 my $label = $self->_quote($k);
1418 if ($r eq 'ARRAY') {
fe3ae272 1419 # literal SQL with bind
1420 my ($sql, @bind) = @$v;
1421 $self->_assert_bindval_matches_bindtype(@bind);
96449e8e 1422 push @sqlq, "$label = $sql";
fe3ae272 1423 push @sqlv, @bind;
96449e8e 1424 } elsif ($r eq 'SCALAR') {
fe3ae272 1425 # literal SQL without bind
96449e8e 1426 push @sqlq, "$label = $$v";
9d48860e 1427 } else {
96449e8e 1428 push @sqlq, "$label = ?";
1429 push @sqlv, $self->_bindtype($k, $v);
1430 }
1431 }
1432 push @sql, $self->_sqlcase('set'), join ', ', @sqlq;
1433 } elsif ($ref eq 'ARRAY') {
1434 # unlike insert(), assume these are ONLY the column names, i.e. for SQL
1435 for my $v (@$_) {
1436 my $r = ref $v;
fe3ae272 1437 if ($r eq 'ARRAY') { # literal SQL with bind
1438 my ($sql, @bind) = @$v;
1439 $self->_assert_bindval_matches_bindtype(@bind);
1440 push @sqlq, $sql;
1441 push @sqlv, @bind;
1442 } elsif ($r eq 'SCALAR') { # literal SQL without bind
96449e8e 1443 # embedded literal SQL
1444 push @sqlq, $$v;
9d48860e 1445 } else {
96449e8e 1446 push @sqlq, '?';
1447 push @sqlv, $v;
1448 }
1449 }
1450 push @sql, '(' . join(', ', @sqlq) . ')';
1451 } elsif ($ref eq 'SCALAR') {
1452 # literal SQL
1453 push @sql, $$_;
1454 } else {
1455 # strings get case twiddled
1456 push @sql, $self->_sqlcase($_);
1457 }
1458 }
1459
1460 my $sql = join ' ', @sql;
1461
1462 # this is pretty tricky
1463 # if ask for an array, return ($stmt, @bind)
1464 # otherwise, s/?/shift @sqlv/ to put it inline
1465 if (wantarray) {
1466 return ($sql, @sqlv);
1467 } else {
1468 1 while $sql =~ s/\?/my $d = shift(@sqlv);
1469 ref $d ? $d->[1] : $d/e;
1470 return $sql;
1471 }
1472}
1473
1474
1475sub DESTROY { 1 }
1476
1477sub AUTOLOAD {
1478 # This allows us to check for a local, then _form, attr
1479 my $self = shift;
1480 my($name) = $AUTOLOAD =~ /.*::(.+)/;
1481 return $self->generate($name, @_);
1482}
1483
14841;
1485
1486
1487
1488__END__
32eab2da 1489
1490=head1 NAME
1491
1492SQL::Abstract - Generate SQL from Perl data structures
1493
1494=head1 SYNOPSIS
1495
1496 use SQL::Abstract;
1497
1498 my $sql = SQL::Abstract->new;
1499
85783f3c 1500 my($stmt, @bind) = $sql->select($source, \@fields, \%where, $order);
32eab2da 1501
1502 my($stmt, @bind) = $sql->insert($table, \%fieldvals || \@values);
1503
1504 my($stmt, @bind) = $sql->update($table, \%fieldvals, \%where);
1505
1506 my($stmt, @bind) = $sql->delete($table, \%where);
1507
1508 # Then, use these in your DBI statements
1509 my $sth = $dbh->prepare($stmt);
1510 $sth->execute(@bind);
1511
1512 # Just generate the WHERE clause
85783f3c 1513 my($stmt, @bind) = $sql->where(\%where, $order);
32eab2da 1514
1515 # Return values in the same order, for hashed queries
1516 # See PERFORMANCE section for more details
1517 my @bind = $sql->values(\%fieldvals);
1518
1519=head1 DESCRIPTION
1520
1521This module was inspired by the excellent L<DBIx::Abstract>.
1522However, in using that module I found that what I really wanted
1523to do was generate SQL, but still retain complete control over my
1524statement handles and use the DBI interface. So, I set out to
1525create an abstract SQL generation module.
1526
1527While based on the concepts used by L<DBIx::Abstract>, there are
1528several important differences, especially when it comes to WHERE
1529clauses. I have modified the concepts used to make the SQL easier
1530to generate from Perl data structures and, IMO, more intuitive.
1531The underlying idea is for this module to do what you mean, based
1532on the data structures you provide it. The big advantage is that
1533you don't have to modify your code every time your data changes,
1534as this module figures it out.
1535
1536To begin with, an SQL INSERT is as easy as just specifying a hash
1537of C<key=value> pairs:
1538
1539 my %data = (
1540 name => 'Jimbo Bobson',
1541 phone => '123-456-7890',
1542 address => '42 Sister Lane',
1543 city => 'St. Louis',
1544 state => 'Louisiana',
1545 );
1546
1547The SQL can then be generated with this:
1548
1549 my($stmt, @bind) = $sql->insert('people', \%data);
1550
1551Which would give you something like this:
1552
1553 $stmt = "INSERT INTO people
1554 (address, city, name, phone, state)
1555 VALUES (?, ?, ?, ?, ?)";
1556 @bind = ('42 Sister Lane', 'St. Louis', 'Jimbo Bobson',
1557 '123-456-7890', 'Louisiana');
1558
1559These are then used directly in your DBI code:
1560
1561 my $sth = $dbh->prepare($stmt);
1562 $sth->execute(@bind);
1563
96449e8e 1564=head2 Inserting and Updating Arrays
1565
1566If your database has array types (like for example Postgres),
1567activate the special option C<< array_datatypes => 1 >>
9d48860e 1568when creating the C<SQL::Abstract> object.
96449e8e 1569Then you may use an arrayref to insert and update database array types:
1570
1571 my $sql = SQL::Abstract->new(array_datatypes => 1);
1572 my %data = (
1573 planets => [qw/Mercury Venus Earth Mars/]
1574 );
9d48860e 1575
96449e8e 1576 my($stmt, @bind) = $sql->insert('solar_system', \%data);
1577
1578This results in:
1579
1580 $stmt = "INSERT INTO solar_system (planets) VALUES (?)"
1581
1582 @bind = (['Mercury', 'Venus', 'Earth', 'Mars']);
1583
1584
1585=head2 Inserting and Updating SQL
1586
1587In order to apply SQL functions to elements of your C<%data> you may
1588specify a reference to an arrayref for the given hash value. For example,
1589if you need to execute the Oracle C<to_date> function on a value, you can
1590say something like this:
32eab2da 1591
1592 my %data = (
1593 name => 'Bill',
3ae1c5e2 1594 date_entered => \[ "to_date(?,'MM/DD/YYYY')", "03/02/2003" ],
9d48860e 1595 );
32eab2da 1596
1597The first value in the array is the actual SQL. Any other values are
1598optional and would be included in the bind values array. This gives
1599you:
1600
1601 my($stmt, @bind) = $sql->insert('people', \%data);
1602
9d48860e 1603 $stmt = "INSERT INTO people (name, date_entered)
32eab2da 1604 VALUES (?, to_date(?,'MM/DD/YYYY'))";
1605 @bind = ('Bill', '03/02/2003');
1606
1607An UPDATE is just as easy, all you change is the name of the function:
1608
1609 my($stmt, @bind) = $sql->update('people', \%data);
1610
1611Notice that your C<%data> isn't touched; the module will generate
1612the appropriately quirky SQL for you automatically. Usually you'll
1613want to specify a WHERE clause for your UPDATE, though, which is
1614where handling C<%where> hashes comes in handy...
1615
96449e8e 1616=head2 Complex where statements
1617
32eab2da 1618This module can generate pretty complicated WHERE statements
1619easily. For example, simple C<key=value> pairs are taken to mean
1620equality, and if you want to see if a field is within a set
1621of values, you can use an arrayref. Let's say we wanted to
1622SELECT some data based on this criteria:
1623
1624 my %where = (
1625 requestor => 'inna',
1626 worker => ['nwiger', 'rcwe', 'sfz'],
1627 status => { '!=', 'completed' }
1628 );
1629
1630 my($stmt, @bind) = $sql->select('tickets', '*', \%where);
1631
1632The above would give you something like this:
1633
1634 $stmt = "SELECT * FROM tickets WHERE
1635 ( requestor = ? ) AND ( status != ? )
1636 AND ( worker = ? OR worker = ? OR worker = ? )";
1637 @bind = ('inna', 'completed', 'nwiger', 'rcwe', 'sfz');
1638
1639Which you could then use in DBI code like so:
1640
1641 my $sth = $dbh->prepare($stmt);
1642 $sth->execute(@bind);
1643
1644Easy, eh?
1645
0da0fe34 1646=head1 METHODS
32eab2da 1647
13cc86af 1648The methods are simple. There's one for every major SQL operation,
32eab2da 1649and a constructor you use first. The arguments are specified in a
13cc86af 1650similar order for each method (table, then fields, then a where
32eab2da 1651clause) to try and simplify things.
1652
32eab2da 1653=head2 new(option => 'value')
1654
1655The C<new()> function takes a list of options and values, and returns
1656a new B<SQL::Abstract> object which can then be used to generate SQL
1657through the methods below. The options accepted are:
1658
1659=over
1660
1661=item case
1662
1663If set to 'lower', then SQL will be generated in all lowercase. By
1664default SQL is generated in "textbook" case meaning something like:
1665
1666 SELECT a_field FROM a_table WHERE some_field LIKE '%someval%'
1667
96449e8e 1668Any setting other than 'lower' is ignored.
1669
32eab2da 1670=item cmp
1671
1672This determines what the default comparison operator is. By default
1673it is C<=>, meaning that a hash like this:
1674
1675 %where = (name => 'nwiger', email => 'nate@wiger.org');
1676
1677Will generate SQL like this:
1678
1679 WHERE name = 'nwiger' AND email = 'nate@wiger.org'
1680
1681However, you may want loose comparisons by default, so if you set
1682C<cmp> to C<like> you would get SQL such as:
1683
1684 WHERE name like 'nwiger' AND email like 'nate@wiger.org'
1685
3af02ccb 1686You can also override the comparison on an individual basis - see
32eab2da 1687the huge section on L</"WHERE CLAUSES"> at the bottom.
1688
96449e8e 1689=item sqltrue, sqlfalse
1690
1691Expressions for inserting boolean values within SQL statements.
6e0c6552 1692By default these are C<1=1> and C<1=0>. They are used
1693by the special operators C<-in> and C<-not_in> for generating
1694correct SQL even when the argument is an empty array (see below).
96449e8e 1695
32eab2da 1696=item logic
1697
1698This determines the default logical operator for multiple WHERE
7cac25e6 1699statements in arrays or hashes. If absent, the default logic is "or"
1700for arrays, and "and" for hashes. This means that a WHERE
32eab2da 1701array of the form:
1702
1703 @where = (
9d48860e 1704 event_date => {'>=', '2/13/99'},
1705 event_date => {'<=', '4/24/03'},
32eab2da 1706 );
1707
7cac25e6 1708will generate SQL like this:
32eab2da 1709
1710 WHERE event_date >= '2/13/99' OR event_date <= '4/24/03'
1711
1712This is probably not what you want given this query, though (look
1713at the dates). To change the "OR" to an "AND", simply specify:
1714
1715 my $sql = SQL::Abstract->new(logic => 'and');
1716
1717Which will change the above C<WHERE> to:
1718
1719 WHERE event_date >= '2/13/99' AND event_date <= '4/24/03'
1720
96449e8e 1721The logic can also be changed locally by inserting
be21dde3 1722a modifier in front of an arrayref:
96449e8e 1723
9d48860e 1724 @where = (-and => [event_date => {'>=', '2/13/99'},
7cac25e6 1725 event_date => {'<=', '4/24/03'} ]);
96449e8e 1726
1727See the L</"WHERE CLAUSES"> section for explanations.
1728
32eab2da 1729=item convert
1730
1731This will automatically convert comparisons using the specified SQL
1732function for both column and value. This is mostly used with an argument
1733of C<upper> or C<lower>, so that the SQL will have the effect of
1734case-insensitive "searches". For example, this:
1735
1736 $sql = SQL::Abstract->new(convert => 'upper');
1737 %where = (keywords => 'MaKe iT CAse inSeNSItive');
1738
1739Will turn out the following SQL:
1740
1741 WHERE upper(keywords) like upper('MaKe iT CAse inSeNSItive')
1742
1743The conversion can be C<upper()>, C<lower()>, or any other SQL function
1744that can be applied symmetrically to fields (actually B<SQL::Abstract> does
1745not validate this option; it will just pass through what you specify verbatim).
1746
1747=item bindtype
1748
1749This is a kludge because many databases suck. For example, you can't
1750just bind values using DBI's C<execute()> for Oracle C<CLOB> or C<BLOB> fields.
1751Instead, you have to use C<bind_param()>:
1752
1753 $sth->bind_param(1, 'reg data');
1754 $sth->bind_param(2, $lots, {ora_type => ORA_CLOB});
1755
1756The problem is, B<SQL::Abstract> will normally just return a C<@bind> array,
1757which loses track of which field each slot refers to. Fear not.
1758
1759If you specify C<bindtype> in new, you can determine how C<@bind> is returned.
1760Currently, you can specify either C<normal> (default) or C<columns>. If you
1761specify C<columns>, you will get an array that looks like this:
1762
1763 my $sql = SQL::Abstract->new(bindtype => 'columns');
1764 my($stmt, @bind) = $sql->insert(...);
1765
1766 @bind = (
1767 [ 'column1', 'value1' ],
1768 [ 'column2', 'value2' ],
1769 [ 'column3', 'value3' ],
1770 );
1771
1772You can then iterate through this manually, using DBI's C<bind_param()>.
e3f9dff4 1773
32eab2da 1774 $sth->prepare($stmt);
1775 my $i = 1;
1776 for (@bind) {
1777 my($col, $data) = @$_;
1778 if ($col eq 'details' || $col eq 'comments') {
1779 $sth->bind_param($i, $data, {ora_type => ORA_CLOB});
1780 } elsif ($col eq 'image') {
1781 $sth->bind_param($i, $data, {ora_type => ORA_BLOB});
1782 } else {
1783 $sth->bind_param($i, $data);
1784 }
1785 $i++;
1786 }
1787 $sth->execute; # execute without @bind now
1788
1789Now, why would you still use B<SQL::Abstract> if you have to do this crap?
1790Basically, the advantage is still that you don't have to care which fields
1791are or are not included. You could wrap that above C<for> loop in a simple
1792sub called C<bind_fields()> or something and reuse it repeatedly. You still
1793get a layer of abstraction over manual SQL specification.
1794
3ae1c5e2 1795Note that if you set L</bindtype> to C<columns>, the C<\[ $sql, @bind ]>
deb148a2 1796construct (see L</Literal SQL with placeholders and bind values (subqueries)>)
1797will expect the bind values in this format.
1798
32eab2da 1799=item quote_char
1800
1801This is the character that a table or column name will be quoted
9d48860e 1802with. By default this is an empty string, but you could set it to
32eab2da 1803the character C<`>, to generate SQL like this:
1804
1805 SELECT `a_field` FROM `a_table` WHERE `some_field` LIKE '%someval%'
1806
96449e8e 1807Alternatively, you can supply an array ref of two items, the first being the left
1808hand quote character, and the second the right hand quote character. For
1809example, you could supply C<['[',']']> for SQL Server 2000 compliant quotes
1810that generates SQL like this:
1811
1812 SELECT [a_field] FROM [a_table] WHERE [some_field] LIKE '%someval%'
1813
9d48860e 1814Quoting is useful if you have tables or columns names that are reserved
96449e8e 1815words in your database's SQL dialect.
32eab2da 1816
46be4313 1817=item escape_char
1818
1819This is the character that will be used to escape L</quote_char>s appearing
1820in an identifier before it has been quoted.
1821
80790166 1822The parameter default in case of a single L</quote_char> character is the quote
46be4313 1823character itself.
1824
1825When opening-closing-style quoting is used (L</quote_char> is an arrayref)
9de2bd86 1826this parameter defaults to the B<closing (right)> L</quote_char>. Occurrences
46be4313 1827of the B<opening (left)> L</quote_char> within the identifier are currently left
1828untouched. The default for opening-closing-style quotes may change in future
1829versions, thus you are B<strongly encouraged> to specify the escape character
1830explicitly.
1831
32eab2da 1832=item name_sep
1833
1834This is the character that separates a table and column name. It is
1835necessary to specify this when the C<quote_char> option is selected,
1836so that tables and column names can be individually quoted like this:
1837
1838 SELECT `table`.`one_field` FROM `table` WHERE `table`.`other_field` = 1
1839
b6251592 1840=item injection_guard
1841
1842A regular expression C<qr/.../> that is applied to any C<-function> and unquoted
1843column name specified in a query structure. This is a safety mechanism to avoid
1844injection attacks when mishandling user input e.g.:
1845
1846 my %condition_as_column_value_pairs = get_values_from_user();
1847 $sqla->select( ... , \%condition_as_column_value_pairs );
1848
1849If the expression matches an exception is thrown. Note that literal SQL
1850supplied via C<\'...'> or C<\['...']> is B<not> checked in any way.
1851
1852Defaults to checking for C<;> and the C<GO> keyword (TransactSQL)
1853
96449e8e 1854=item array_datatypes
32eab2da 1855
9d48860e 1856When this option is true, arrayrefs in INSERT or UPDATE are
1857interpreted as array datatypes and are passed directly
96449e8e 1858to the DBI layer.
1859When this option is false, arrayrefs are interpreted
1860as literal SQL, just like refs to arrayrefs
1861(but this behavior is for backwards compatibility; when writing
1862new queries, use the "reference to arrayref" syntax
1863for literal SQL).
32eab2da 1864
32eab2da 1865
96449e8e 1866=item special_ops
32eab2da 1867
9d48860e 1868Takes a reference to a list of "special operators"
96449e8e 1869to extend the syntax understood by L<SQL::Abstract>.
1870See section L</"SPECIAL OPERATORS"> for details.
32eab2da 1871
59f23b3d 1872=item unary_ops
1873
9d48860e 1874Takes a reference to a list of "unary operators"
59f23b3d 1875to extend the syntax understood by L<SQL::Abstract>.
1876See section L</"UNARY OPERATORS"> for details.
1877
32eab2da 1878
32eab2da 1879
96449e8e 1880=back
32eab2da 1881
02288357 1882=head2 insert($table, \@values || \%fieldvals, \%options)
32eab2da 1883
1884This is the simplest function. You simply give it a table name
1885and either an arrayref of values or hashref of field/value pairs.
1886It returns an SQL INSERT statement and a list of bind values.
96449e8e 1887See the sections on L</"Inserting and Updating Arrays"> and
1888L</"Inserting and Updating SQL"> for information on how to insert
1889with those data types.
32eab2da 1890
02288357 1891The optional C<\%options> hash reference may contain additional
1892options to generate the insert SQL. Currently supported options
1893are:
1894
1895=over 4
1896
1897=item returning
1898
1899Takes either a scalar of raw SQL fields, or an array reference of
1900field names, and adds on an SQL C<RETURNING> statement at the end.
1901This allows you to return data generated by the insert statement
1902(such as row IDs) without performing another C<SELECT> statement.
1903Note, however, this is not part of the SQL standard and may not
1904be supported by all database engines.
1905
1906=back
1907
95904db5 1908=head2 update($table, \%fieldvals, \%where, \%options)
32eab2da 1909
1910This takes a table, hashref of field/value pairs, and an optional
86298391 1911hashref L<WHERE clause|/WHERE CLAUSES>. It returns an SQL UPDATE function and a list
32eab2da 1912of bind values.
96449e8e 1913See the sections on L</"Inserting and Updating Arrays"> and
1914L</"Inserting and Updating SQL"> for information on how to insert
1915with those data types.
32eab2da 1916
95904db5 1917The optional C<\%options> hash reference may contain additional
1918options to generate the update SQL. Currently supported options
1919are:
1920
1921=over 4
1922
1923=item returning
1924
1925See the C<returning> option to
1926L<insert|/insert($table, \@values || \%fieldvals, \%options)>.
1927
1928=back
1929
96449e8e 1930=head2 select($source, $fields, $where, $order)
32eab2da 1931
9d48860e 1932This returns a SQL SELECT statement and associated list of bind values, as
be21dde3 1933specified by the arguments:
32eab2da 1934
96449e8e 1935=over
32eab2da 1936
96449e8e 1937=item $source
32eab2da 1938
9d48860e 1939Specification of the 'FROM' part of the statement.
96449e8e 1940The argument can be either a plain scalar (interpreted as a table
1941name, will be quoted), or an arrayref (interpreted as a list
1942of table names, joined by commas, quoted), or a scalarref
063097a3 1943(literal SQL, not quoted).
32eab2da 1944
96449e8e 1945=item $fields
32eab2da 1946
9d48860e 1947Specification of the list of fields to retrieve from
96449e8e 1948the source.
1949The argument can be either an arrayref (interpreted as a list
9d48860e 1950of field names, will be joined by commas and quoted), or a
96449e8e 1951plain scalar (literal SQL, not quoted).
521647e7 1952Please observe that this API is not as flexible as that of
1953the first argument C<$source>, for backwards compatibility reasons.
32eab2da 1954
96449e8e 1955=item $where
32eab2da 1956
96449e8e 1957Optional argument to specify the WHERE part of the query.
1958The argument is most often a hashref, but can also be
9d48860e 1959an arrayref or plain scalar --
96449e8e 1960see section L<WHERE clause|/"WHERE CLAUSES"> for details.
32eab2da 1961
96449e8e 1962=item $order
32eab2da 1963
96449e8e 1964Optional argument to specify the ORDER BY part of the query.
9d48860e 1965The argument can be a scalar, a hashref or an arrayref
96449e8e 1966-- see section L<ORDER BY clause|/"ORDER BY CLAUSES">
1967for details.
32eab2da 1968
96449e8e 1969=back
32eab2da 1970
32eab2da 1971
85327cd5 1972=head2 delete($table, \%where, \%options)
32eab2da 1973
86298391 1974This takes a table name and optional hashref L<WHERE clause|/WHERE CLAUSES>.
32eab2da 1975It returns an SQL DELETE statement and list of bind values.
1976
85327cd5 1977The optional C<\%options> hash reference may contain additional
1978options to generate the delete SQL. Currently supported options
1979are:
1980
1981=over 4
1982
1983=item returning
1984
1985See the C<returning> option to
1986L<insert|/insert($table, \@values || \%fieldvals, \%options)>.
1987
1988=back
1989
85783f3c 1990=head2 where(\%where, $order)
32eab2da 1991
1992This is used to generate just the WHERE clause. For example,
1993if you have an arbitrary data structure and know what the
1994rest of your SQL is going to look like, but want an easy way
1995to produce a WHERE clause, use this. It returns an SQL WHERE
1996clause and list of bind values.
1997
32eab2da 1998
1999=head2 values(\%data)
2000
2001This just returns the values from the hash C<%data>, in the same
2002order that would be returned from any of the other above queries.
2003Using this allows you to markedly speed up your queries if you
2004are affecting lots of rows. See below under the L</"PERFORMANCE"> section.
2005
32eab2da 2006=head2 generate($any, 'number', $of, \@data, $struct, \%types)
2007
2008Warning: This is an experimental method and subject to change.
2009
2010This returns arbitrarily generated SQL. It's a really basic shortcut.
2011It will return two different things, depending on return context:
2012
2013 my($stmt, @bind) = $sql->generate('create table', \$table, \@fields);
2014 my $stmt_and_val = $sql->generate('create table', \$table, \@fields);
2015
2016These would return the following:
2017
2018 # First calling form
2019 $stmt = "CREATE TABLE test (?, ?)";
2020 @bind = (field1, field2);
2021
2022 # Second calling form
2023 $stmt_and_val = "CREATE TABLE test (field1, field2)";
2024
2025Depending on what you're trying to do, it's up to you to choose the correct
2026format. In this example, the second form is what you would want.
2027
2028By the same token:
2029
2030 $sql->generate('alter session', { nls_date_format => 'MM/YY' });
2031
2032Might give you:
2033
2034 ALTER SESSION SET nls_date_format = 'MM/YY'
2035
2036You get the idea. Strings get their case twiddled, but everything
2037else remains verbatim.
2038
0da0fe34 2039=head1 EXPORTABLE FUNCTIONS
2040
2041=head2 is_plain_value
2042
2043Determines if the supplied argument is a plain value as understood by this
2044module:
2045
2046=over
2047
2048=item * The value is C<undef>
2049
2050=item * The value is a non-reference
2051
2052=item * The value is an object with stringification overloading
2053
2054=item * The value is of the form C<< { -value => $anything } >>
2055
2056=back
2057
9de2bd86 2058On failure returns C<undef>, on success returns a B<scalar> reference
966200cc 2059to the original supplied argument.
0da0fe34 2060
843a94b5 2061=over
2062
2063=item * Note
2064
2065The stringification overloading detection is rather advanced: it takes
2066into consideration not only the presence of a C<""> overload, but if that
2067fails also checks for enabled
2068L<autogenerated versions of C<"">|overload/Magic Autogeneration>, based
2069on either C<0+> or C<bool>.
2070
2071Unfortunately testing in the field indicates that this
2072detection B<< may tickle a latent bug in perl versions before 5.018 >>,
2073but only when very large numbers of stringifying objects are involved.
2074At the time of writing ( Sep 2014 ) there is no clear explanation of
2075the direct cause, nor is there a manageably small test case that reliably
2076reproduces the problem.
2077
2078If you encounter any of the following exceptions in B<random places within
2079your application stack> - this module may be to blame:
2080
2081 Operation "ne": no method found,
2082 left argument in overloaded package <something>,
2083 right argument in overloaded package <something>
2084
2085or perhaps even
2086
2087 Stub found while resolving method "???" overloading """" in package <something>
2088
2089If you fall victim to the above - please attempt to reduce the problem
2090to something that could be sent to the L<SQL::Abstract developers
1f490ae4 2091|DBIx::Class/GETTING HELP/SUPPORT>
843a94b5 2092(either publicly or privately). As a workaround in the meantime you can
2093set C<$ENV{SQLA_ISVALUE_IGNORE_AUTOGENERATED_STRINGIFICATION}> to a true
2094value, which will most likely eliminate your problem (at the expense of
2095not being able to properly detect exotic forms of stringification).
2096
2097This notice and environment variable will be removed in a future version,
2098as soon as the underlying problem is found and a reliable workaround is
2099devised.
2100
2101=back
2102
0da0fe34 2103=head2 is_literal_value
2104
2105Determines if the supplied argument is a literal value as understood by this
2106module:
2107
2108=over
2109
2110=item * C<\$sql_string>
2111
2112=item * C<\[ $sql_string, @bind_values ]>
2113
0da0fe34 2114=back
2115
9de2bd86 2116On failure returns C<undef>, on success returns an B<array> reference
966200cc 2117containing the unpacked version of the supplied literal SQL and bind values.
0da0fe34 2118
32eab2da 2119=head1 WHERE CLAUSES
2120
96449e8e 2121=head2 Introduction
2122
32eab2da 2123This module uses a variation on the idea from L<DBIx::Abstract>. It
2124is B<NOT>, repeat I<not> 100% compatible. B<The main logic of this
2125module is that things in arrays are OR'ed, and things in hashes
2126are AND'ed.>
2127
2128The easiest way to explain is to show lots of examples. After
2129each C<%where> hash shown, it is assumed you used:
2130
2131 my($stmt, @bind) = $sql->where(\%where);
2132
2133However, note that the C<%where> hash can be used directly in any
2134of the other functions as well, as described above.
2135
96449e8e 2136=head2 Key-value pairs
2137
32eab2da 2138So, let's get started. To begin, a simple hash:
2139
2140 my %where = (
2141 user => 'nwiger',
2142 status => 'completed'
2143 );
2144
2145Is converted to SQL C<key = val> statements:
2146
2147 $stmt = "WHERE user = ? AND status = ?";
2148 @bind = ('nwiger', 'completed');
2149
2150One common thing I end up doing is having a list of values that
2151a field can be in. To do this, simply specify a list inside of
2152an arrayref:
2153
2154 my %where = (
2155 user => 'nwiger',
2156 status => ['assigned', 'in-progress', 'pending'];
2157 );
2158
2159This simple code will create the following:
9d48860e 2160
32eab2da 2161 $stmt = "WHERE user = ? AND ( status = ? OR status = ? OR status = ? )";
2162 @bind = ('nwiger', 'assigned', 'in-progress', 'pending');
2163
9d48860e 2164A field associated to an empty arrayref will be considered a
7cac25e6 2165logical false and will generate 0=1.
8a68b5be 2166
b864ba9b 2167=head2 Tests for NULL values
2168
2169If the value part is C<undef> then this is converted to SQL <IS NULL>
2170
2171 my %where = (
2172 user => 'nwiger',
2173 status => undef,
2174 );
2175
2176becomes:
2177
2178 $stmt = "WHERE user = ? AND status IS NULL";
2179 @bind = ('nwiger');
2180
e9614080 2181To test if a column IS NOT NULL:
2182
2183 my %where = (
2184 user => 'nwiger',
2185 status => { '!=', undef },
2186 );
cc422895 2187
6e0c6552 2188=head2 Specific comparison operators
96449e8e 2189
32eab2da 2190If you want to specify a different type of operator for your comparison,
2191you can use a hashref for a given column:
2192
2193 my %where = (
2194 user => 'nwiger',
2195 status => { '!=', 'completed' }
2196 );
2197
2198Which would generate:
2199
2200 $stmt = "WHERE user = ? AND status != ?";
2201 @bind = ('nwiger', 'completed');
2202
2203To test against multiple values, just enclose the values in an arrayref:
2204
96449e8e 2205 status => { '=', ['assigned', 'in-progress', 'pending'] };
2206
f2d5020d 2207Which would give you:
96449e8e 2208
2209 "WHERE status = ? OR status = ? OR status = ?"
2210
2211
2212The hashref can also contain multiple pairs, in which case it is expanded
32eab2da 2213into an C<AND> of its elements:
2214
2215 my %where = (
2216 user => 'nwiger',
2217 status => { '!=', 'completed', -not_like => 'pending%' }
2218 );
2219
2220 # Or more dynamically, like from a form
2221 $where{user} = 'nwiger';
2222 $where{status}{'!='} = 'completed';
2223 $where{status}{'-not_like'} = 'pending%';
2224
2225 # Both generate this
2226 $stmt = "WHERE user = ? AND status != ? AND status NOT LIKE ?";
2227 @bind = ('nwiger', 'completed', 'pending%');
2228
96449e8e 2229
32eab2da 2230To get an OR instead, you can combine it with the arrayref idea:
2231
2232 my %where => (
2233 user => 'nwiger',
1a6f2a03 2234 priority => [ { '=', 2 }, { '>', 5 } ]
32eab2da 2235 );
2236
2237Which would generate:
2238
1a6f2a03 2239 $stmt = "WHERE ( priority = ? OR priority > ? ) AND user = ?";
2240 @bind = ('2', '5', 'nwiger');
32eab2da 2241
44b9e502 2242If you want to include literal SQL (with or without bind values), just use a
13cc86af 2243scalar reference or reference to an arrayref as the value:
44b9e502 2244
2245 my %where = (
2246 date_entered => { '>' => \["to_date(?, 'MM/DD/YYYY')", "11/26/2008"] },
2247 date_expires => { '<' => \"now()" }
2248 );
2249
2250Which would generate:
2251
13cc86af 2252 $stmt = "WHERE date_entered > to_date(?, 'MM/DD/YYYY') AND date_expires < now()";
44b9e502 2253 @bind = ('11/26/2008');
2254
96449e8e 2255
2256=head2 Logic and nesting operators
2257
2258In the example above,
2259there is a subtle trap if you want to say something like
32eab2da 2260this (notice the C<AND>):
2261
2262 WHERE priority != ? AND priority != ?
2263
2264Because, in Perl you I<can't> do this:
2265
13cc86af 2266 priority => { '!=' => 2, '!=' => 1 }
32eab2da 2267
2268As the second C<!=> key will obliterate the first. The solution
2269is to use the special C<-modifier> form inside an arrayref:
2270
9d48860e 2271 priority => [ -and => {'!=', 2},
96449e8e 2272 {'!=', 1} ]
2273
32eab2da 2274
2275Normally, these would be joined by C<OR>, but the modifier tells it
2276to use C<AND> instead. (Hint: You can use this in conjunction with the
2277C<logic> option to C<new()> in order to change the way your queries
2278work by default.) B<Important:> Note that the C<-modifier> goes
2279B<INSIDE> the arrayref, as an extra first element. This will
2280B<NOT> do what you think it might:
2281
2282 priority => -and => [{'!=', 2}, {'!=', 1}] # WRONG!
2283
2284Here is a quick list of equivalencies, since there is some overlap:
2285
2286 # Same
2287 status => {'!=', 'completed', 'not like', 'pending%' }
2288 status => [ -and => {'!=', 'completed'}, {'not like', 'pending%'}]
2289
2290 # Same
2291 status => {'=', ['assigned', 'in-progress']}
2292 status => [ -or => {'=', 'assigned'}, {'=', 'in-progress'}]
2293 status => [ {'=', 'assigned'}, {'=', 'in-progress'} ]
2294
e3f9dff4 2295
2296
be21dde3 2297=head2 Special operators: IN, BETWEEN, etc.
96449e8e 2298
32eab2da 2299You can also use the hashref format to compare a list of fields using the
2300C<IN> comparison operator, by specifying the list as an arrayref:
2301
2302 my %where = (
2303 status => 'completed',
2304 reportid => { -in => [567, 2335, 2] }
2305 );
2306
2307Which would generate:
2308
2309 $stmt = "WHERE status = ? AND reportid IN (?,?,?)";
2310 @bind = ('completed', '567', '2335', '2');
2311
9d48860e 2312The reverse operator C<-not_in> generates SQL C<NOT IN> and is used in
96449e8e 2313the same way.
2314
6e0c6552 2315If the argument to C<-in> is an empty array, 'sqlfalse' is generated
be21dde3 2316(by default: C<1=0>). Similarly, C<< -not_in => [] >> generates
2317'sqltrue' (by default: C<1=1>).
6e0c6552 2318
e41c3bdd 2319In addition to the array you can supply a chunk of literal sql or
2320literal sql with bind:
6e0c6552 2321
e41c3bdd 2322 my %where = {
2323 customer => { -in => \[
2324 'SELECT cust_id FROM cust WHERE balance > ?',
2325 2000,
2326 ],
2327 status => { -in => \'SELECT status_codes FROM states' },
2328 };
6e0c6552 2329
e41c3bdd 2330would generate:
2331
2332 $stmt = "WHERE (
2333 customer IN ( SELECT cust_id FROM cust WHERE balance > ? )
2334 AND status IN ( SELECT status_codes FROM states )
2335 )";
2336 @bind = ('2000');
2337
0dfd2442 2338Finally, if the argument to C<-in> is not a reference, it will be
2339treated as a single-element array.
e41c3bdd 2340
2341Another pair of operators is C<-between> and C<-not_between>,
96449e8e 2342used with an arrayref of two values:
32eab2da 2343
2344 my %where = (
2345 user => 'nwiger',
2346 completion_date => {
2347 -not_between => ['2002-10-01', '2003-02-06']
2348 }
2349 );
2350
2351Would give you:
2352
2353 WHERE user = ? AND completion_date NOT BETWEEN ( ? AND ? )
2354
e41c3bdd 2355Just like with C<-in> all plausible combinations of literal SQL
2356are possible:
2357
2358 my %where = {
2359 start0 => { -between => [ 1, 2 ] },
2360 start1 => { -between => \["? AND ?", 1, 2] },
2361 start2 => { -between => \"lower(x) AND upper(y)" },
9d48860e 2362 start3 => { -between => [
e41c3bdd 2363 \"lower(x)",
2364 \["upper(?)", 'stuff' ],
2365 ] },
2366 };
2367
2368Would give you:
2369
2370 $stmt = "WHERE (
2371 ( start0 BETWEEN ? AND ? )
2372 AND ( start1 BETWEEN ? AND ? )
2373 AND ( start2 BETWEEN lower(x) AND upper(y) )
2374 AND ( start3 BETWEEN lower(x) AND upper(?) )
2375 )";
2376 @bind = (1, 2, 1, 2, 'stuff');
2377
2378
9d48860e 2379These are the two builtin "special operators"; but the
be21dde3 2380list can be expanded: see section L</"SPECIAL OPERATORS"> below.
96449e8e 2381
59f23b3d 2382=head2 Unary operators: bool
97a920ef 2383
2384If you wish to test against boolean columns or functions within your
2385database you can use the C<-bool> and C<-not_bool> operators. For
2386example to test the column C<is_user> being true and the column
827bb0eb 2387C<is_enabled> being false you would use:-
97a920ef 2388
2389 my %where = (
2390 -bool => 'is_user',
2391 -not_bool => 'is_enabled',
2392 );
2393
2394Would give you:
2395
277b5d3f 2396 WHERE is_user AND NOT is_enabled
97a920ef 2397
0b604e9d 2398If a more complex combination is required, testing more conditions,
2399then you should use the and/or operators:-
2400
2401 my %where = (
2402 -and => [
2403 -bool => 'one',
23401b81 2404 -not_bool => { two=> { -rlike => 'bar' } },
2405 -not_bool => { three => [ { '=', 2 }, { '>', 5 } ] },
0b604e9d 2406 ],
2407 );
2408
2409Would give you:
2410
23401b81 2411 WHERE
2412 one
2413 AND
2414 (NOT two RLIKE ?)
2415 AND
2416 (NOT ( three = ? OR three > ? ))
97a920ef 2417
2418
107b72f1 2419=head2 Nested conditions, -and/-or prefixes
96449e8e 2420
32eab2da 2421So far, we've seen how multiple conditions are joined with a top-level
2422C<AND>. We can change this by putting the different conditions we want in
2423hashes and then putting those hashes in an array. For example:
2424
2425 my @where = (
2426 {
2427 user => 'nwiger',
2428 status => { -like => ['pending%', 'dispatched'] },
2429 },
2430 {
2431 user => 'robot',
2432 status => 'unassigned',
2433 }
2434 );
2435
2436This data structure would create the following:
2437
2438 $stmt = "WHERE ( user = ? AND ( status LIKE ? OR status LIKE ? ) )
2439 OR ( user = ? AND status = ? ) )";
2440 @bind = ('nwiger', 'pending', 'dispatched', 'robot', 'unassigned');
2441
107b72f1 2442
48d9f5f8 2443Clauses in hashrefs or arrayrefs can be prefixed with an C<-and> or C<-or>
be21dde3 2444to change the logic inside:
32eab2da 2445
2446 my @where = (
2447 -and => [
2448 user => 'nwiger',
48d9f5f8 2449 [
2450 -and => [ workhrs => {'>', 20}, geo => 'ASIA' ],
2451 -or => { workhrs => {'<', 50}, geo => 'EURO' },
32eab2da 2452 ],
2453 ],
2454 );
2455
2456That would yield:
2457
13cc86af 2458 $stmt = "WHERE ( user = ?
2459 AND ( ( workhrs > ? AND geo = ? )
2460 OR ( workhrs < ? OR geo = ? ) ) )";
2461 @bind = ('nwiger', '20', 'ASIA', '50', 'EURO');
107b72f1 2462
cc422895 2463=head3 Algebraic inconsistency, for historical reasons
107b72f1 2464
7cac25e6 2465C<Important note>: when connecting several conditions, the C<-and->|C<-or>
2466operator goes C<outside> of the nested structure; whereas when connecting
2467several constraints on one column, the C<-and> operator goes
be21dde3 2468C<inside> the arrayref. Here is an example combining both features:
7cac25e6 2469
2470 my @where = (
2471 -and => [a => 1, b => 2],
2472 -or => [c => 3, d => 4],
2473 e => [-and => {-like => 'foo%'}, {-like => '%bar'} ]
2474 )
2475
2476yielding
2477
9d48860e 2478 WHERE ( ( ( a = ? AND b = ? )
2479 OR ( c = ? OR d = ? )
7cac25e6 2480 OR ( e LIKE ? AND e LIKE ? ) ) )
2481
107b72f1 2482This difference in syntax is unfortunate but must be preserved for
be21dde3 2483historical reasons. So be careful: the two examples below would
107b72f1 2484seem algebraically equivalent, but they are not
2485
a948b1fe 2486 { col => [ -and =>
2487 { -like => 'foo%' },
2488 { -like => '%bar' },
2489 ] }
be21dde3 2490 # yields: WHERE ( ( col LIKE ? AND col LIKE ? ) )
107b72f1 2491
a948b1fe 2492 [ -and =>
2493 { col => { -like => 'foo%' } },
2494 { col => { -like => '%bar' } },
2495 ]
be21dde3 2496 # yields: WHERE ( ( col LIKE ? OR col LIKE ? ) )
107b72f1 2497
7cac25e6 2498
cc422895 2499=head2 Literal SQL and value type operators
96449e8e 2500
cc422895 2501The basic premise of SQL::Abstract is that in WHERE specifications the "left
2502side" is a column name and the "right side" is a value (normally rendered as
2503a placeholder). This holds true for both hashrefs and arrayref pairs as you
2504see in the L</WHERE CLAUSES> examples above. Sometimes it is necessary to
2505alter this behavior. There are several ways of doing so.
e9614080 2506
cc422895 2507=head3 -ident
2508
2509This is a virtual operator that signals the string to its right side is an
2510identifier (a column name) and not a value. For example to compare two
2511columns you would write:
32eab2da 2512
e9614080 2513 my %where = (
2514 priority => { '<', 2 },
cc422895 2515 requestor => { -ident => 'submitter' },
e9614080 2516 );
2517
2518which creates:
2519
2520 $stmt = "WHERE priority < ? AND requestor = submitter";
2521 @bind = ('2');
2522
cc422895 2523If you are maintaining legacy code you may see a different construct as
2524described in L</Deprecated usage of Literal SQL>, please use C<-ident> in new
2525code.
2526
2527=head3 -value
e9614080 2528
cc422895 2529This is a virtual operator that signals that the construct to its right side
2530is a value to be passed to DBI. This is for example necessary when you want
2531to write a where clause against an array (for RDBMS that support such
2532datatypes). For example:
e9614080 2533
32eab2da 2534 my %where = (
cc422895 2535 array => { -value => [1, 2, 3] }
32eab2da 2536 );
2537
cc422895 2538will result in:
32eab2da 2539
cc422895 2540 $stmt = 'WHERE array = ?';
2541 @bind = ([1, 2, 3]);
32eab2da 2542
cc422895 2543Note that if you were to simply say:
32eab2da 2544
2545 my %where = (
cc422895 2546 array => [1, 2, 3]
32eab2da 2547 );
2548
3af02ccb 2549the result would probably not be what you wanted:
cc422895 2550
2551 $stmt = 'WHERE array = ? OR array = ? OR array = ?';
2552 @bind = (1, 2, 3);
2553
2554=head3 Literal SQL
96449e8e 2555
cc422895 2556Finally, sometimes only literal SQL will do. To include a random snippet
2557of SQL verbatim, you specify it as a scalar reference. Consider this only
2558as a last resort. Usually there is a better way. For example:
96449e8e 2559
2560 my %where = (
cc422895 2561 priority => { '<', 2 },
2562 requestor => { -in => \'(SELECT name FROM hitmen)' },
96449e8e 2563 );
2564
cc422895 2565Would create:
96449e8e 2566
cc422895 2567 $stmt = "WHERE priority < ? AND requestor IN (SELECT name FROM hitmen)"
2568 @bind = (2);
2569
2570Note that in this example, you only get one bind parameter back, since
2571the verbatim SQL is passed as part of the statement.
2572
2573=head4 CAVEAT
2574
2575 Never use untrusted input as a literal SQL argument - this is a massive
2576 security risk (there is no way to check literal snippets for SQL
2577 injections and other nastyness). If you need to deal with untrusted input
2578 use literal SQL with placeholders as described next.
96449e8e 2579
cc422895 2580=head3 Literal SQL with placeholders and bind values (subqueries)
96449e8e 2581
2582If the literal SQL to be inserted has placeholders and bind values,
2583use a reference to an arrayref (yes this is a double reference --
2584not so common, but perfectly legal Perl). For example, to find a date
2585in Postgres you can use something like this:
2586
2587 my %where = (
3ae1c5e2 2588 date_column => \[ "= date '2008-09-30' - ?::integer", 10 ]
96449e8e 2589 )
2590
2591This would create:
2592
d2a8fe1a 2593 $stmt = "WHERE ( date_column = date '2008-09-30' - ?::integer )"
96449e8e 2594 @bind = ('10');
2595
deb148a2 2596Note that you must pass the bind values in the same format as they are returned
85783f3c 2597by L<where|/where(\%where, $order)>. This means that if you set L</bindtype>
1f490ae4 2598to C<columns>, you must provide the bind values in the
2599C<< [ column_meta => value ] >> format, where C<column_meta> is an opaque
2600scalar value; most commonly the column name, but you can use any scalar value
2601(including references and blessed references), L<SQL::Abstract> will simply
2602pass it through intact. So if C<bindtype> is set to C<columns> the above
2603example will look like:
deb148a2 2604
2605 my %where = (
3ae1c5e2 2606 date_column => \[ "= date '2008-09-30' - ?::integer", [ {} => 10 ] ]
deb148a2 2607 )
96449e8e 2608
2609Literal SQL is especially useful for nesting parenthesized clauses in the
be21dde3 2610main SQL query. Here is a first example:
96449e8e 2611
2612 my ($sub_stmt, @sub_bind) = ("SELECT c1 FROM t1 WHERE c2 < ? AND c3 LIKE ?",
2613 100, "foo%");
2614 my %where = (
2615 foo => 1234,
2616 bar => \["IN ($sub_stmt)" => @sub_bind],
2617 );
2618
be21dde3 2619This yields:
96449e8e 2620
9d48860e 2621 $stmt = "WHERE (foo = ? AND bar IN (SELECT c1 FROM t1
96449e8e 2622 WHERE c2 < ? AND c3 LIKE ?))";
2623 @bind = (1234, 100, "foo%");
2624
9d48860e 2625Other subquery operators, like for example C<"E<gt> ALL"> or C<"NOT IN">,
96449e8e 2626are expressed in the same way. Of course the C<$sub_stmt> and
9d48860e 2627its associated bind values can be generated through a former call
96449e8e 2628to C<select()> :
2629
2630 my ($sub_stmt, @sub_bind)
9d48860e 2631 = $sql->select("t1", "c1", {c2 => {"<" => 100},
96449e8e 2632 c3 => {-like => "foo%"}});
2633 my %where = (
2634 foo => 1234,
2635 bar => \["> ALL ($sub_stmt)" => @sub_bind],
2636 );
2637
2638In the examples above, the subquery was used as an operator on a column;
9d48860e 2639but the same principle also applies for a clause within the main C<%where>
be21dde3 2640hash, like an EXISTS subquery:
96449e8e 2641
9d48860e 2642 my ($sub_stmt, @sub_bind)
96449e8e 2643 = $sql->select("t1", "*", {c1 => 1, c2 => \"> t0.c0"});
48d9f5f8 2644 my %where = ( -and => [
96449e8e 2645 foo => 1234,
48d9f5f8 2646 \["EXISTS ($sub_stmt)" => @sub_bind],
2647 ]);
96449e8e 2648
2649which yields
2650
9d48860e 2651 $stmt = "WHERE (foo = ? AND EXISTS (SELECT * FROM t1
96449e8e 2652 WHERE c1 = ? AND c2 > t0.c0))";
2653 @bind = (1234, 1);
2654
2655
9d48860e 2656Observe that the condition on C<c2> in the subquery refers to
be21dde3 2657column C<t0.c0> of the main query: this is I<not> a bind
9d48860e 2658value, so we have to express it through a scalar ref.
96449e8e 2659Writing C<< c2 => {">" => "t0.c0"} >> would have generated
2660C<< c2 > ? >> with bind value C<"t0.c0"> ... not exactly
2661what we wanted here.
2662
96449e8e 2663Finally, here is an example where a subquery is used
2664for expressing unary negation:
2665
9d48860e 2666 my ($sub_stmt, @sub_bind)
96449e8e 2667 = $sql->where({age => [{"<" => 10}, {">" => 20}]});
2668 $sub_stmt =~ s/^ where //i; # don't want "WHERE" in the subclause
2669 my %where = (
2670 lname => {like => '%son%'},
48d9f5f8 2671 \["NOT ($sub_stmt)" => @sub_bind],
96449e8e 2672 );
2673
2674This yields
2675
2676 $stmt = "lname LIKE ? AND NOT ( age < ? OR age > ? )"
2677 @bind = ('%son%', 10, 20)
2678
cc422895 2679=head3 Deprecated usage of Literal SQL
2680
2681Below are some examples of archaic use of literal SQL. It is shown only as
2682reference for those who deal with legacy code. Each example has a much
2683better, cleaner and safer alternative that users should opt for in new code.
2684
2685=over
2686
2687=item *
2688
2689 my %where = ( requestor => \'IS NOT NULL' )
2690
2691 $stmt = "WHERE requestor IS NOT NULL"
2692
2693This used to be the way of generating NULL comparisons, before the handling
2694of C<undef> got formalized. For new code please use the superior syntax as
2695described in L</Tests for NULL values>.
96449e8e 2696
cc422895 2697=item *
2698
2699 my %where = ( requestor => \'= submitter' )
2700
2701 $stmt = "WHERE requestor = submitter"
2702
2703This used to be the only way to compare columns. Use the superior L</-ident>
2704method for all new code. For example an identifier declared in such a way
2705will be properly quoted if L</quote_char> is properly set, while the legacy
2706form will remain as supplied.
2707
2708=item *
2709
2710 my %where = ( is_ready => \"", completed => { '>', '2012-12-21' } )
2711
2712 $stmt = "WHERE completed > ? AND is_ready"
2713 @bind = ('2012-12-21')
2714
2715Using an empty string literal used to be the only way to express a boolean.
2716For all new code please use the much more readable
2717L<-bool|/Unary operators: bool> operator.
2718
2719=back
96449e8e 2720
2721=head2 Conclusion
2722
32eab2da 2723These pages could go on for a while, since the nesting of the data
2724structures this module can handle are pretty much unlimited (the
2725module implements the C<WHERE> expansion as a recursive function
2726internally). Your best bet is to "play around" with the module a
2727little to see how the data structures behave, and choose the best
2728format for your data based on that.
2729
2730And of course, all the values above will probably be replaced with
2731variables gotten from forms or the command line. After all, if you
2732knew everything ahead of time, you wouldn't have to worry about
2733dynamically-generating SQL and could just hardwire it into your
2734script.
2735
86298391 2736=head1 ORDER BY CLAUSES
2737
9d48860e 2738Some functions take an order by clause. This can either be a scalar (just a
18710f60 2739column name), a hashref of C<< { -desc => 'col' } >> or C<< { -asc => 'col' }
2740>>, a scalarref, an arrayref-ref, or an arrayref of any of the previous
2741forms. Examples:
1cfa1db3 2742
8c15b421 2743 Given | Will Generate
18710f60 2744 ---------------------------------------------------------------
8c15b421 2745 |
2746 'colA' | ORDER BY colA
2747 |
2748 [qw/colA colB/] | ORDER BY colA, colB
2749 |
2750 {-asc => 'colA'} | ORDER BY colA ASC
2751 |
2752 {-desc => 'colB'} | ORDER BY colB DESC
2753 |
2754 ['colA', {-asc => 'colB'}] | ORDER BY colA, colB ASC
2755 |
2756 { -asc => [qw/colA colB/] } | ORDER BY colA ASC, colB ASC
2757 |
2758 \'colA DESC' | ORDER BY colA DESC
2759 |
2760 \[ 'FUNC(colA, ?)', $x ] | ORDER BY FUNC(colA, ?)
2761 | /* ...with $x bound to ? */
2762 |
bd805d85 2763 [ | ORDER BY
2764 { -asc => 'colA' }, | colA ASC,
2765 { -desc => [qw/colB/] }, | colB DESC,
2766 { -asc => [qw/colC colD/] },| colC ASC, colD ASC,
2767 \'colE DESC', | colE DESC,
2768 \[ 'FUNC(colF, ?)', $x ], | FUNC(colF, ?)
2769 ] | /* ...with $x bound to ? */
18710f60 2770 ===============================================================
86298391 2771
96449e8e 2772
2773
2774=head1 SPECIAL OPERATORS
2775
e3f9dff4 2776 my $sqlmaker = SQL::Abstract->new(special_ops => [
3a2e1a5e 2777 {
2778 regex => qr/.../,
e3f9dff4 2779 handler => sub {
2780 my ($self, $field, $op, $arg) = @_;
2781 ...
3a2e1a5e 2782 },
2783 },
2784 {
2785 regex => qr/.../,
2786 handler => 'method_name',
e3f9dff4 2787 },
2788 ]);
2789
9d48860e 2790A "special operator" is a SQL syntactic clause that can be
e3f9dff4 2791applied to a field, instead of a usual binary operator.
be21dde3 2792For example:
e3f9dff4 2793
2794 WHERE field IN (?, ?, ?)
2795 WHERE field BETWEEN ? AND ?
2796 WHERE MATCH(field) AGAINST (?, ?)
96449e8e 2797
e3f9dff4 2798Special operators IN and BETWEEN are fairly standard and therefore
3a2e1a5e 2799are builtin within C<SQL::Abstract> (as the overridable methods
2800C<_where_field_IN> and C<_where_field_BETWEEN>). For other operators,
2801like the MATCH .. AGAINST example above which is specific to MySQL,
2802you can write your own operator handlers - supply a C<special_ops>
2803argument to the C<new> method. That argument takes an arrayref of
2804operator definitions; each operator definition is a hashref with two
2805entries:
96449e8e 2806
e3f9dff4 2807=over
2808
2809=item regex
2810
2811the regular expression to match the operator
96449e8e 2812
e3f9dff4 2813=item handler
2814
3a2e1a5e 2815Either a coderef or a plain scalar method name. In both cases
2816the expected return is C<< ($sql, @bind) >>.
2817
2818When supplied with a method name, it is simply called on the
13cc86af 2819L<SQL::Abstract> object as:
3a2e1a5e 2820
ca4f826a 2821 $self->$method_name($field, $op, $arg)
3a2e1a5e 2822
2823 Where:
2824
3a2e1a5e 2825 $field is the LHS of the operator
13cc86af 2826 $op is the part that matched the handler regex
3a2e1a5e 2827 $arg is the RHS
2828
2829When supplied with a coderef, it is called as:
2830
2831 $coderef->($self, $field, $op, $arg)
2832
e3f9dff4 2833
2834=back
2835
9d48860e 2836For example, here is an implementation
e3f9dff4 2837of the MATCH .. AGAINST syntax for MySQL
2838
2839 my $sqlmaker = SQL::Abstract->new(special_ops => [
9d48860e 2840
e3f9dff4 2841 # special op for MySql MATCH (field) AGAINST(word1, word2, ...)
9d48860e 2842 {regex => qr/^match$/i,
e3f9dff4 2843 handler => sub {
2844 my ($self, $field, $op, $arg) = @_;
2845 $arg = [$arg] if not ref $arg;
2846 my $label = $self->_quote($field);
2847 my ($placeholder) = $self->_convert('?');
2848 my $placeholders = join ", ", (($placeholder) x @$arg);
2849 my $sql = $self->_sqlcase('match') . " ($label) "
2850 . $self->_sqlcase('against') . " ($placeholders) ";
2851 my @bind = $self->_bindtype($field, @$arg);
2852 return ($sql, @bind);
2853 }
2854 },
9d48860e 2855
e3f9dff4 2856 ]);
96449e8e 2857
2858
59f23b3d 2859=head1 UNARY OPERATORS
2860
112b5232 2861 my $sqlmaker = SQL::Abstract->new(unary_ops => [
59f23b3d 2862 {
2863 regex => qr/.../,
2864 handler => sub {
2865 my ($self, $op, $arg) = @_;
2866 ...
2867 },
2868 },
2869 {
2870 regex => qr/.../,
2871 handler => 'method_name',
2872 },
2873 ]);
2874
9d48860e 2875A "unary operator" is a SQL syntactic clause that can be
59f23b3d 2876applied to a field - the operator goes before the field
2877
2878You can write your own operator handlers - supply a C<unary_ops>
2879argument to the C<new> method. That argument takes an arrayref of
2880operator definitions; each operator definition is a hashref with two
2881entries:
2882
2883=over
2884
2885=item regex
2886
2887the regular expression to match the operator
2888
2889=item handler
2890
2891Either a coderef or a plain scalar method name. In both cases
2892the expected return is C<< $sql >>.
2893
2894When supplied with a method name, it is simply called on the
13cc86af 2895L<SQL::Abstract> object as:
59f23b3d 2896
ca4f826a 2897 $self->$method_name($op, $arg)
59f23b3d 2898
2899 Where:
2900
2901 $op is the part that matched the handler regex
2902 $arg is the RHS or argument of the operator
2903
2904When supplied with a coderef, it is called as:
2905
2906 $coderef->($self, $op, $arg)
2907
2908
2909=back
2910
2911
32eab2da 2912=head1 PERFORMANCE
2913
2914Thanks to some benchmarking by Mark Stosberg, it turns out that
2915this module is many orders of magnitude faster than using C<DBIx::Abstract>.
2916I must admit this wasn't an intentional design issue, but it's a
2917byproduct of the fact that you get to control your C<DBI> handles
2918yourself.
2919
2920To maximize performance, use a code snippet like the following:
2921
2922 # prepare a statement handle using the first row
2923 # and then reuse it for the rest of the rows
2924 my($sth, $stmt);
2925 for my $href (@array_of_hashrefs) {
2926 $stmt ||= $sql->insert('table', $href);
2927 $sth ||= $dbh->prepare($stmt);
2928 $sth->execute($sql->values($href));
2929 }
2930
2931The reason this works is because the keys in your C<$href> are sorted
2932internally by B<SQL::Abstract>. Thus, as long as your data retains
2933the same structure, you only have to generate the SQL the first time
2934around. On subsequent queries, simply use the C<values> function provided
2935by this module to return your values in the correct order.
2936
b864ba9b 2937However this depends on the values having the same type - if, for
2938example, the values of a where clause may either have values
2939(resulting in sql of the form C<column = ?> with a single bind
2940value), or alternatively the values might be C<undef> (resulting in
2941sql of the form C<column IS NULL> with no bind value) then the
2942caching technique suggested will not work.
96449e8e 2943
32eab2da 2944=head1 FORMBUILDER
2945
2946If you use my C<CGI::FormBuilder> module at all, you'll hopefully
2947really like this part (I do, at least). Building up a complex query
2948can be as simple as the following:
2949
2950 #!/usr/bin/perl
2951
46dc2f3e 2952 use warnings;
2953 use strict;
2954
32eab2da 2955 use CGI::FormBuilder;
2956 use SQL::Abstract;
2957
2958 my $form = CGI::FormBuilder->new(...);
2959 my $sql = SQL::Abstract->new;
2960
2961 if ($form->submitted) {
2962 my $field = $form->field;
2963 my $id = delete $field->{id};
2964 my($stmt, @bind) = $sql->update('table', $field, {id => $id});
2965 }
2966
2967Of course, you would still have to connect using C<DBI> to run the
2968query, but the point is that if you make your form look like your
2969table, the actual query script can be extremely simplistic.
2970
2971If you're B<REALLY> lazy (I am), check out C<HTML::QuickTable> for
9d48860e 2972a fast interface to returning and formatting data. I frequently
32eab2da 2973use these three modules together to write complex database query
2974apps in under 50 lines.
2975
af733667 2976=head1 HOW TO CONTRIBUTE
2977
2978Contributions are always welcome, in all usable forms (we especially
2979welcome documentation improvements). The delivery methods include git-
2980or unified-diff formatted patches, GitHub pull requests, or plain bug
2981reports either via RT or the Mailing list. Contributors are generally
2982granted full access to the official repository after their first several
2983patches pass successful review.
2984
2985This project is maintained in a git repository. The code and related tools are
2986accessible at the following locations:
d8cc1792 2987
2988=over
2989
af733667 2990=item * Official repo: L<git://git.shadowcat.co.uk/dbsrgits/SQL-Abstract.git>
2991
2992=item * Official gitweb: L<http://git.shadowcat.co.uk/gitweb/gitweb.cgi?p=dbsrgits/SQL-Abstract.git>
2993
2994=item * GitHub mirror: L<https://github.com/dbsrgits/sql-abstract>
d8cc1792 2995
af733667 2996=item * Authorized committers: L<ssh://dbsrgits@git.shadowcat.co.uk/SQL-Abstract.git>
d8cc1792 2997
2998=back
32eab2da 2999
96449e8e 3000=head1 CHANGES
3001
3002Version 1.50 was a major internal refactoring of C<SQL::Abstract>.
3003Great care has been taken to preserve the I<published> behavior
3004documented in previous versions in the 1.* family; however,
9d48860e 3005some features that were previously undocumented, or behaved
96449e8e 3006differently from the documentation, had to be changed in order
3007to clarify the semantics. Hence, client code that was relying
9d48860e 3008on some dark areas of C<SQL::Abstract> v1.*
96449e8e 3009B<might behave differently> in v1.50.
32eab2da 3010
be21dde3 3011The main changes are:
d2a8fe1a 3012
96449e8e 3013=over
32eab2da 3014
9d48860e 3015=item *
32eab2da 3016
3ae1c5e2 3017support for literal SQL through the C<< \ [ $sql, @bind ] >> syntax.
96449e8e 3018
3019=item *
3020
145fbfc8 3021support for the { operator => \"..." } construct (to embed literal SQL)
3022
3023=item *
3024
9c37b9c0 3025support for the { operator => \["...", @bind] } construct (to embed literal SQL with bind values)
3026
3027=item *
3028
96449e8e 3029optional support for L<array datatypes|/"Inserting and Updating Arrays">
3030
9d48860e 3031=item *
96449e8e 3032
be21dde3 3033defensive programming: check arguments
96449e8e 3034
3035=item *
3036
3037fixed bug with global logic, which was previously implemented
7cac25e6 3038through global variables yielding side-effects. Prior versions would
96449e8e 3039interpret C<< [ {cond1, cond2}, [cond3, cond4] ] >>
3040as C<< "(cond1 AND cond2) OR (cond3 AND cond4)" >>.
3041Now this is interpreted
3042as C<< "(cond1 AND cond2) OR (cond3 OR cond4)" >>.
3043
96449e8e 3044
3045=item *
3046
3047fixed semantics of _bindtype on array args
3048
9d48860e 3049=item *
96449e8e 3050
3051dropped the C<_anoncopy> of the %where tree. No longer necessary,
3052we just avoid shifting arrays within that tree.
3053
3054=item *
3055
3056dropped the C<_modlogic> function
3057
3058=back
32eab2da 3059
32eab2da 3060=head1 ACKNOWLEDGEMENTS
3061
3062There are a number of individuals that have really helped out with
3063this module. Unfortunately, most of them submitted bugs via CPAN
3064so I have no idea who they are! But the people I do know are:
3065
9d48860e 3066 Ash Berlin (order_by hash term support)
b643abe1 3067 Matt Trout (DBIx::Class support)
32eab2da 3068 Mark Stosberg (benchmarking)
3069 Chas Owens (initial "IN" operator support)
3070 Philip Collins (per-field SQL functions)
3071 Eric Kolve (hashref "AND" support)
3072 Mike Fragassi (enhancements to "BETWEEN" and "LIKE")
3073 Dan Kubb (support for "quote_char" and "name_sep")
f5aab26e 3074 Guillermo Roditi (patch to cleanup "IN" and "BETWEEN", fix and tests for _order_by)
48d9f5f8 3075 Laurent Dami (internal refactoring, extensible list of special operators, literal SQL)
dbdf7648 3076 Norbert Buchmuller (support for literal SQL in hashpair, misc. fixes & tests)
e96c510a 3077 Peter Rabbitson (rewrite of SQLA::Test, misc. fixes & tests)
02288357 3078 Oliver Charles (support for "RETURNING" after "INSERT")
32eab2da 3079
3080Thanks!
3081
32eab2da 3082=head1 SEE ALSO
3083
86298391 3084L<DBIx::Class>, L<DBIx::Abstract>, L<CGI::FormBuilder>, L<HTML::QuickTable>.
32eab2da 3085
32eab2da 3086=head1 AUTHOR
3087
b643abe1 3088Copyright (c) 2001-2007 Nathan Wiger <nwiger@cpan.org>. All Rights Reserved.
3089
3090This module is actively maintained by Matt Trout <mst@shadowcatsystems.co.uk>
32eab2da 3091
abe72f94 3092For support, your best bet is to try the C<DBIx::Class> users mailing list.
3093While not an official support venue, C<DBIx::Class> makes heavy use of
3094C<SQL::Abstract>, and as such list members there are very familiar with
3095how to create queries.
3096
0d067ded 3097=head1 LICENSE
3098
d988ab87 3099This module is free software; you may copy this under the same
3100terms as perl itself (either the GNU General Public License or
3101the Artistic License)
32eab2da 3102
3103=cut
Unnamed repository; edit this file 'description' to name the repository.