axum-sql-viewer 0.1.5

A development tool for viewing SQL tables in web browsers, easily integrable as an Axum layer
Documentation 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114

//! Raw SQL query execution endpoint

use axum::{
    extract::State,
    http::StatusCode,
    response::{IntoResponse, Json, Response},
};
use std::sync::Arc;

use crate::database::traits::DatabaseProvider;
use crate::schema::{QueryRequest, QueryResult};

/// Handler for POST /api/query
///
/// Executes a raw SQL query and returns the results.
///
/// # Security Warning
///
/// This endpoint allows executing ANY SQL statement including INSERT, UPDATE, DELETE.
/// It should only be used in development environments!
///
/// Request body:
/// ```json
/// {
///   "sql": "SELECT * FROM users LIMIT 10"
/// }
/// ```
///
/// Response (successful SELECT):
/// ```json
/// {
///   "columns": ["id", "name", "email"],
///   "rows": [...],
///   "affectedRows": 0,
///   "executionTimeMilliseconds": 12,
///   "error": null
/// }
/// ```
///
/// Response (successful INSERT/UPDATE/DELETE):
/// ```json
/// {
///   "columns": [],
///   "rows": [],
///   "affectedRows": 5,
///   "executionTimeMilliseconds": 8,
///   "error": null
/// }
/// ```
///
/// Response (error):
/// ```json
/// {
///   "columns": [],
///   "rows": [],
///   "affectedRows": 0,
///   "executionTimeMilliseconds": 0,
///   "error": "near \"SELCT\": syntax error"
/// }
/// ```
///
/// # Arguments
///
/// * `database` - Database provider from state
/// * `request` - JSON request containing SQL query to execute
///
/// # Returns
///
/// JSON response containing query results or error information
pub async fn execute_query_handler<DB: DatabaseProvider>(
    State(database): State<Arc<DB>>,
    Json(request): Json<QueryRequest>,
) -> Response {
    // Log the query execution attempt (be careful with sensitive data in production)
    eprintln!("Executing SQL query: {}", request.sql);

    match database.execute_query(&request.sql).await {
        Ok(result) => {
            // Check if there was an error in the result
            if result.error.is_some() {
                // Query execution failed, return bad request
                (StatusCode::BAD_REQUEST, Json(result)).into_response()
            } else {
                // Query executed successfully
                (StatusCode::OK, Json(result)).into_response()
            }
        }
        Err(error) => {
            eprintln!("Failed to execute query: {}", error);

            // Return appropriate status code based on error type
            let status = if error.to_string().contains("timeout") {
                StatusCode::REQUEST_TIMEOUT
            } else if error.to_string().contains("too large") || error.to_string().contains("TooManyRows") {
                StatusCode::PAYLOAD_TOO_LARGE
            } else {
                StatusCode::BAD_REQUEST
            };

            // Return error as part of QueryResult structure
            (
                status,
                Json(QueryResult {
                    columns: vec![],
                    rows: vec![],
                    affected_rows: 0,
                    execution_time_milliseconds: 0,
                    error: Some(error.to_string()),
                }),
            )
                .into_response()
        }
    }
}