[civicrm-core.git] / CRM / Utils / SQL / Select.php

<?php

/**
 * Dear God Why Do I Have To Write This (Dumb SQL Builder)
 *
 * Usage:
 * $select = new CRM_Utils_SQL_Select('civicrm_activity act');
 * $select
 *     ->join('absence', 'inner join civicrm_activity absence on absence.id = act.source_record_id')
 *     ->where('activity_type_id = #type', array('#type' => 234))
 *     ->where('status_id IN (#statuses)', array('#statuses' => array(1,2,3))
 *     ->where('subject like @subj', array('@subj' => '%hello%'))
 *     ->where('!dynamicColumn = 1', array('!dynamicColumn' => 'coalesce(is_active,0)'))
 *     ->where('!column = @value', array(
 *        '!column' => $customField->column_name,
 *        '@value' => $form['foo']
 *      ))
 * echo $select->toSQL();
 *
 * Design principles:
 *  - Portable
 *    - No knowledge of the underlying SQL API (except for escaping -- CRM_Core_DAO::escapeString)
 *    - No knowledge of the underlying data model
 *    - Single file
 *  - SQL clauses correspond to PHP functions ($select->where("foo_id=123"))
 *  - Variable escaping is concise and controllable based on prefixes, eg
 *    - similar to Drupal's t()
 *    - use "@varname" to insert the escaped value
 *    - use "!varname" to insert raw (unescaped) values
 *    - use "#varname" to insert a numerical value (these are validated but not escaped)
 *    - to disable any preprocessing, simply omit the variable list
 *  - Variables may be individual values or arrays; arrays are imploded with commas
 *  - Conditionals are AND'd; if you need OR's, do it yourself
 *  - Use classes/functions with documentation (rather than undocumented array-trees)
 */
class CRM_Utils_SQL_Select {
  private $selects = array();
  private $from;
  private $joins = array();
  private $wheres = array();
  private $groupBys = array();
  private $havings = array();
  private $orderBys = array();
  private $limit = NULL;
  private $offset = NULL;

  /**
   * Create a new SELECT query.
   *
   * @param string $from
   *   Table-name and optional alias.
   * @return CRM_Utils_SQL_Select
   */
  public static function from($from) {
    return new self($from);
  }

  /**
   * Create a new SELECT query.
   *
   * @param string $from
   *   Table-name and optional alias.
   */
  public function __construct($from) {
    $this->from = $from;
  }

  /**
   * Add a new JOIN clause.
   *
   * @param string $name
   *   The effective alias of the joined table.
   * @param string $expr
   *   The complete join expression (eg "INNER JOIN mytable myalias ON mytable.id = maintable.foo_id").
   * @param array|null $args
   * @return CRM_Utils_SQL_Select
   */
  public function join($name, $expr, $args = NULL) {
    $this->joins[$name] = $this->interpolate($expr, $args);
    return $this;
  }

  /**
   * Specify the column(s)/value(s) to return by adding to the SELECT clause
   *
   * @param string|array $exprs list of SQL expressions
   * @param null|array $args use NULL to disable interpolation; use an array of variables to enable
   * @return CRM_Utils_SQL_Select
   */
  public function select($exprs, $args = NULL) {
    $exprs = (array) $exprs;
    foreach ($exprs as $expr) {
      $this->selects[$expr] = $this->interpolate($expr, $args);
    }
    return $this;
  }

  /**
   * Limit results by adding extra condition(s) to the WHERE clause
   *
   * @param string|array $exprs list of SQL expressions
   * @param null|array $args use NULL to disable interpolation; use an array of variables to enable
   * @return CRM_Utils_SQL_Select
   */
  public function where($exprs, $args = NULL) {
    $exprs = (array) $exprs;
    foreach ($exprs as $expr) {
      $this->wheres[$expr] = $this->interpolate($expr, $args);
    }
    return $this;
  }

  /**
   * Group results by adding extra items to the GROUP BY clause.
   *
   * @param string|array $exprs list of SQL expressions
   * @param null|array $args use NULL to disable interpolation; use an array of variables to enable
   * @return CRM_Utils_SQL_Select
   */
  public function groupBy($exprs, $args = NULL) {
    $exprs = (array) $exprs;
    foreach ($exprs as $expr) {
      $this->groupBys[$expr] = $this->interpolate($expr, $args);
    }
    return $this;
  }

  /**
   * Limit results by adding extra condition(s) to the HAVING clause
   *
   * @param string|array $exprs list of SQL expressions
   * @param null|array $args use NULL to disable interpolation; use an array of variables to enable
   * @return CRM_Utils_SQL_Select
   */
  public function having($exprs, $args = NULL) {
    $exprs = (array) $exprs;
    foreach ($exprs as $expr) {
      $this->havings[$expr] = $this->interpolate($expr, $args);
    }
    return $this;
  }

  /**
   * Sort results by adding extra items to the ORDER BY clause.
   *
   * @param string|array $exprs list of SQL expressions
   * @param null|array $args use NULL to disable interpolation; use an array of variables to enable
   * @return CRM_Utils_SQL_Select
   */
  public function orderBy($exprs, $args = NULL) {
    $exprs = (array) $exprs;
    foreach ($exprs as $expr) {
      $this->orderBys[$expr] = $this->interpolate($expr, $args);
    }
    return $this;
  }

  /**
   * Set a limit on the number of records to return.
   *
   * @param int $limit
   * @param int $offset
   * @return CRM_Utils_SQL_Select
   * @throws CRM_Core_Exception
   */
  public function limit($limit, $offset = 0) {
    if ($limit !== NULL && !is_numeric($limit)) {
      throw new CRM_Core_Exception("Illegal limit");
    }
    if ($offset !== NULL && !is_numeric($offset)) {
      throw new CRM_Core_Exception("Illegal offset");
    }
    $this->limit = $limit;
    $this->offset = $offset;
    return $this;
  }

  /**
   * Given a string like "field_name = @value", replace "@value" with an escaped SQL string
   *
   * @param $expr SQL expression
   * @param null|array $args a list of values to insert into the SQL expression; keys are prefix-coded:
   *   prefix '@' => escape SQL
   *   prefix '#' => literal number, skip escaping but do validation
   *   prefix '!' => literal, skip escaping and validation
   *   if a value is an array, then it will be imploded
   *
   * PHP NULL's will be treated as SQL NULL's. The PHP string "null" will be treated as a string.
   *
   * @throws CRM_Core_Exception
   * @return string
   *   SQL expression
   */
  public function interpolate($expr, $args) {
    if ($args === NULL) {
      return $expr;
    }
    else {
      foreach (array_keys($args) as $key) {
        $values = is_array($args[$key]) ? $args[$key] : array($args[$key]);
        if ($key{0} == '@') {
          $parts = array_map(array($this, 'escapeString'), $values);
          $args[$key] = implode(', ', $parts);
        }
        elseif ($key{0} == '!') {
          $args[$key] = implode(', ', $values);
        }
        elseif ($key{0} == '#') {
          foreach ($values as $valueKey => $value) {
            if ($value === NULL) {
              $values[$valueKey] = 'NULL';
            }
            elseif (!is_numeric($value)) {
              //throw new API_Exception("Failed encoding non-numeric value" . var_export(array($key => $args[$key]), TRUE));
              throw new CRM_Core_Exception("Failed encoding non-numeric value");
            }
          }
          $args[$key] = implode(', ', $values);
        }
        else {
          throw new CRM_Core_Exception("Bad SQL parameter key: $key");
        }
      }
      return strtr($expr, $args);
    }
  }

  /**
   * @param string|NULL $value
   * @return string
   *   SQL expression, e.g. "it\'s great" (with-quotes) or NULL (without-quotes)
   */
  protected function escapeString($value) {
    return $value === NULL ? 'NULL' : '"' . CRM_Core_DAO::escapeString($value) . '"';
  }

  /**
   * @return string
   *   SQL statement
   */
  public function toSQL() {
    if ($this->selects) {
      $sql = 'SELECT ' . implode(', ', $this->selects) . "\n";
    }
    else {
      $sql = 'SELECT *' . "\n";
    }
    $sql .= 'FROM ' . $this->from . "\n";
    foreach ($this->joins as $join) {
      $sql .= $join . "\n";
    }
    if ($this->wheres) {
      $sql .= 'WHERE (' . implode(') AND (', $this->wheres) . ")\n";
    }
    if ($this->groupBys) {
      $sql .= 'GROUP BY ' . implode(', ', $this->groupBys) . "\n";
    }
    if ($this->havings) {
      $sql .= 'HAVING (' . implode(') AND (', $this->havings) . ")\n";
    }
    if ($this->orderBys) {
      $sql .= 'ORDER BY ' . implode(', ', $this->orderBys) . "\n";
    }
    if ($this->limit !== NULL) {
      $sql .= 'LIMIT ' . $this->limit . "\n";
      if ($this->offset !== NULL) {
        $sql .= 'OFFSET ' . $this->offset . "\n";
      }
    }
    return $sql;
  }

}
Commit	Line	Data
e2b5e5b1 TO	1	<?php
	2
	3	/**
	4	* Dear God Why Do I Have To Write This (Dumb SQL Builder)
	5	*
	6	* Usage:
	7	* $select = new CRM_Utils_SQL_Select('civicrm_activity act');
	8	* $select
	9	* ->join('absence', 'inner join civicrm_activity absence on absence.id = act.source_record_id')
	10	* ->where('activity_type_id = #type', array('#type' => 234))
	11	* ->where('status_id IN (#statuses)', array('#statuses' => array(1,2,3))
	12	* ->where('subject like @subj', array('@subj' => '%hello%'))
	13	* ->where('!dynamicColumn = 1', array('!dynamicColumn' => 'coalesce(is_active,0)'))
	14	* ->where('!column = @value', array(
	15	* '!column' => $customField->column_name,
	16	* '@value' => $form['foo']
	17	* ))
	18	* echo $select->toSQL();
	19	*
	20	* Design principles:
	21	* - Portable
	22	* - No knowledge of the underlying SQL API (except for escaping -- CRM_Core_DAO::escapeString)
	23	* - No knowledge of the underlying data model
	24	* - Single file
	25	* - SQL clauses correspond to PHP functions ($select->where("foo_id=123"))
	26	* - Variable escaping is concise and controllable based on prefixes, eg
	27	* - similar to Drupal's t()
	28	* - use "@varname" to insert the escaped value
	29	* - use "!varname" to insert raw (unescaped) values
	30	* - use "#varname" to insert a numerical value (these are validated but not escaped)
	31	* - to disable any preprocessing, simply omit the variable list
	32	* - Variables may be individual values or arrays; arrays are imploded with commas
	33	* - Conditionals are AND'd; if you need OR's, do it yourself
c3a8e3e5	34	* - Use classes/functions with documentation (rather than undocumented array-trees)
e2b5e5b1 TO	35	*/
	36	class CRM_Utils_SQL_Select {
	37	private $selects = array();
	38	private $from;
	39	private $joins = array();
	40	private $wheres = array();
	41	private $groupBys = array();
	42	private $havings = array();
	43	private $orderBys = array();
c3a8e3e5 TO	44	private $limit = NULL;
c3a8e3e5 TO	45	private $offset = NULL;
e2b5e5b1 TO	46
e2b5e5b1 TO	47	/**
fe482240	48	* Create a new SELECT query.
e2b5e5b1	49	*
77855840 TO	50	* @param string $from
77855840 TO	51	* Table-name and optional alias.
e2b5e5b1 TO	52	* @return CRM_Utils_SQL_Select
	53	*/
	54	public static function from($from) {
	55	return new self($from);
	56	}
	57
c3a8e3e5	58	/**
fe482240	59	* Create a new SELECT query.
c3a8e3e5	60	*
77855840 TO	61	* @param string $from
77855840 TO	62	* Table-name and optional alias.
c3a8e3e5	63	*/
e2b5e5b1 TO	64	public function __construct($from) {
	65	$this->from = $from;
	66	}
	67
c3a8e3e5	68	/**
fe482240	69	* Add a new JOIN clause.
c3a8e3e5	70	*
77855840 TO	71	* @param string $name
	72	* The effective alias of the joined table.
	73	* @param string $expr
	74	* The complete join expression (eg "INNER JOIN mytable myalias ON mytable.id = maintable.foo_id").
c3a8e3e5 TO	75	* @param array\|null $args
	76	* @return CRM_Utils_SQL_Select
	77	*/
e2b5e5b1 TO	78	public function join($name, $expr, $args = NULL) {
	79	$this->joins[$name] = $this->interpolate($expr, $args);
	80	return $this;
	81	}
	82
	83	/**
c3a8e3e5 TO	84	* Specify the column(s)/value(s) to return by adding to the SELECT clause
c3a8e3e5 TO	85	*
e2b5e5b1 TO	86	* @param string\|array $exprs list of SQL expressions
	87	* @param null\|array $args use NULL to disable interpolation; use an array of variables to enable
	88	* @return CRM_Utils_SQL_Select
	89	*/
	90	public function select($exprs, $args = NULL) {
	91	$exprs = (array) $exprs;
	92	foreach ($exprs as $expr) {
	93	$this->selects[$expr] = $this->interpolate($expr, $args);
	94	}
	95	return $this;
	96	}
	97
	98	/**
c3a8e3e5 TO	99	* Limit results by adding extra condition(s) to the WHERE clause
c3a8e3e5 TO	100	*
e2b5e5b1 TO	101	* @param string\|array $exprs list of SQL expressions
	102	* @param null\|array $args use NULL to disable interpolation; use an array of variables to enable
	103	* @return CRM_Utils_SQL_Select
	104	*/
	105	public function where($exprs, $args = NULL) {
	106	$exprs = (array) $exprs;
	107	foreach ($exprs as $expr) {
	108	$this->wheres[$expr] = $this->interpolate($expr, $args);
	109	}
	110	return $this;
	111	}
	112
	113	/**
fe482240	114	* Group results by adding extra items to the GROUP BY clause.
c3a8e3e5	115	*
e2b5e5b1 TO	116	* @param string\|array $exprs list of SQL expressions
	117	* @param null\|array $args use NULL to disable interpolation; use an array of variables to enable
	118	* @return CRM_Utils_SQL_Select
	119	*/
	120	public function groupBy($exprs, $args = NULL) {
	121	$exprs = (array) $exprs;
	122	foreach ($exprs as $expr) {
	123	$this->groupBys[$expr] = $this->interpolate($expr, $args);
	124	}
	125	return $this;
	126	}
	127
	128	/**
c3a8e3e5 TO	129	* Limit results by adding extra condition(s) to the HAVING clause
c3a8e3e5 TO	130	*
e2b5e5b1 TO	131	* @param string\|array $exprs list of SQL expressions
	132	* @param null\|array $args use NULL to disable interpolation; use an array of variables to enable
	133	* @return CRM_Utils_SQL_Select
	134	*/
	135	public function having($exprs, $args = NULL) {
	136	$exprs = (array) $exprs;
	137	foreach ($exprs as $expr) {
	138	$this->havings[$expr] = $this->interpolate($expr, $args);
	139	}
	140	return $this;
	141	}
	142
	143	/**
fe482240	144	* Sort results by adding extra items to the ORDER BY clause.
c3a8e3e5	145	*
e2b5e5b1 TO	146	* @param string\|array $exprs list of SQL expressions
	147	* @param null\|array $args use NULL to disable interpolation; use an array of variables to enable
	148	* @return CRM_Utils_SQL_Select
	149	*/
	150	public function orderBy($exprs, $args = NULL) {
	151	$exprs = (array) $exprs;
	152	foreach ($exprs as $expr) {
	153	$this->orderBys[$expr] = $this->interpolate($expr, $args);
	154	}
	155	return $this;
	156	}
	157
c3a8e3e5	158	/**
fe482240	159	* Set a limit on the number of records to return.
c3a8e3e5 TO	160	*
	161	* @param int $limit
	162	* @param int $offset
	163	* @return CRM_Utils_SQL_Select
	164	* @throws CRM_Core_Exception
	165	*/
	166	public function limit($limit, $offset = 0) {
	167	if ($limit !== NULL && !is_numeric($limit)) {
	168	throw new CRM_Core_Exception("Illegal limit");
	169	}
	170	if ($offset !== NULL && !is_numeric($offset)) {
	171	throw new CRM_Core_Exception("Illegal offset");
	172	}
	173	$this->limit = $limit;
	174	$this->offset = $offset;
	175	return $this;
	176	}
	177
e2b5e5b1 TO	178	/**
	179	* Given a string like "field_name = @value", replace "@value" with an escaped SQL string
	180	*
acb1052e	181	* @param $expr SQL expression
e2b5e5b1 TO	182	* @param null\|array $args a list of values to insert into the SQL expression; keys are prefix-coded:
	183	* prefix '@' => escape SQL
	184	* prefix '#' => literal number, skip escaping but do validation
	185	* prefix '!' => literal, skip escaping and validation
	186	* if a value is an array, then it will be imploded
	187	*
	188	* PHP NULL's will be treated as SQL NULL's. The PHP string "null" will be treated as a string.
	189	*
77b97be7	190	* @throws CRM_Core_Exception
a6c01b45 CW	191	* @return string
a6c01b45 CW	192	* SQL expression
e2b5e5b1 TO	193	*/
	194	public function interpolate($expr, $args) {
	195	if ($args === NULL) {
	196	return $expr;
	197	}
	198	else {
	199	foreach (array_keys($args) as $key) {
	200	$values = is_array($args[$key]) ? $args[$key] : array($args[$key]);
	201	if ($key{0} == '@') {
	202	$parts = array_map(array($this, 'escapeString'), $values);
	203	$args[$key] = implode(', ', $parts);
	204	}
	205	elseif ($key{0} == '!') {
	206	$args[$key] = implode(', ', $values);
	207	}
	208	elseif ($key{0} == '#') {
	209	foreach ($values as $valueKey => $value) {
	210	if ($value === NULL) {
	211	$values[$valueKey] = 'NULL';
	212	}
	213	elseif (!is_numeric($value)) {
	214	//throw new API_Exception("Failed encoding non-numeric value" . var_export(array($key => $args[$key]), TRUE));
	215	throw new CRM_Core_Exception("Failed encoding non-numeric value");
	216	}
	217	}
	218	$args[$key] = implode(', ', $values);
	219	}
	220	else {
	221	throw new CRM_Core_Exception("Bad SQL parameter key: $key");
	222	}
	223	}
	224	return strtr($expr, $args);
	225	}
	226	}
	227
c3a8e3e5 TO	228	/**
c3a8e3e5 TO	229	* @param string\|NULL $value
a6c01b45 CW	230	* @return string
a6c01b45 CW	231	* SQL expression, e.g. "it\'s great" (with-quotes) or NULL (without-quotes)
c3a8e3e5	232	*/
e2b5e5b1 TO	233	protected function escapeString($value) {
	234	return $value === NULL ? 'NULL' : '"' . CRM_Core_DAO::escapeString($value) . '"';
	235	}
	236
	237	/**
a6c01b45 CW	238	* @return string
a6c01b45 CW	239	* SQL statement
e2b5e5b1 TO	240	*/
	241	public function toSQL() {
	242	if ($this->selects) {
	243	$sql = 'SELECT ' . implode(', ', $this->selects) . "\n";
	244	}
	245	else {
	246	$sql = 'SELECT *' . "\n";
	247	}
	248	$sql .= 'FROM ' . $this->from . "\n";
	249	foreach ($this->joins as $join) {
	250	$sql .= $join . "\n";
	251	}
	252	if ($this->wheres) {
	253	$sql .= 'WHERE (' . implode(') AND (', $this->wheres) . ")\n";
	254	}
	255	if ($this->groupBys) {
	256	$sql .= 'GROUP BY ' . implode(', ', $this->groupBys) . "\n";
	257	}
	258	if ($this->havings) {
	259	$sql .= 'HAVING (' . implode(') AND (', $this->havings) . ")\n";
	260	}
	261	if ($this->orderBys) {
	262	$sql .= 'ORDER BY ' . implode(', ', $this->orderBys) . "\n";
	263	}
c3a8e3e5 TO	264	if ($this->limit !== NULL) {
	265	$sql .= 'LIMIT ' . $this->limit . "\n";
	266	if ($this->offset !== NULL) {
	267	$sql .= 'OFFSET ' . $this->offset . "\n";
	268	}
	269	}
e2b5e5b1 TO	270	return $sql;
e2b5e5b1 TO	271	}
96025800	272
e2b5e5b1	273	}