mssql-value-serializer 0.1.2

Convert Rust values into SQL Server-compatible literal expressions, enabling dynamic SQL generation without parameter count limitations.
Documentation 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83

mssql-value-serializer
====================

[![CI](https://github.com/magiclen/mssql-value-serializer/actions/workflows/ci.yml/badge.svg)](https://github.com/magiclen/mssql-value-serializer/actions/workflows/ci.yml)

Convert Rust values into SQL Server-compatible literal expressions, enabling dynamic SQL generation without parameter count limitations.

Prepared statements are commonly used to improve performance and security. By separating the SQL command from the data values, the database can cache execution plans and protect against SQL injection. Each variable passed to the query becomes a parameter, allowing safe reuse of the same statement with different values. However, because SQL Server enforces a strict 2100-parameter limit, queries that bind large collections of parameters—such as long `IN` lists or bulk inserts—can easily exceed this cap and trigger the **too many parameters** error.

## Usage

```rust
use mssql_value_serializer::{SqlServerLiteralWrapper, SqlServerLiteralDynWrapper, SqlServerLiteralForValueListWrapper};

let sql = format!("
    SELECT
        *
    FROM
        [table]
    WHERE
        [name] = {name}
", name = SqlServerLiteralWrapper::new("David"));

assert_eq!("
    SELECT
        *
    FROM
        [table]
    WHERE
        [name] = N'David'
", sql);

let sql = format!("
    SELECT
        *
    FROM
        [table]
    WHERE
        [name] = {name}
", name = SqlServerCharWrapper::new("David")); // use `SqlServerCharWrapper` to format a value into a non-Unicode character string

assert_eq!("
    SELECT
        *
    FROM
        [table]
    WHERE
        [name] = 'David'
", sql);

let sql = format!("
    INSERT INTO [table]([id], [name], [disabled])
        VALUES
            ({values})
", values = SqlServerLiteralForValueListWrapper::new(vec![SqlServerLiteralDynWrapper::from(2u32), SqlServerLiteralDynWrapper::from("David"), SqlServerLiteralDynWrapper::from(false)]));

assert_eq!("
    INSERT INTO [table]([id], [name], [disabled])
        VALUES
            (2, N'David', 0)
", sql);
```

## Optional Features

* `serde`: Implements `serde::Serialize` for wrapper types, enabling SQL Server literal serialization behavior.
* `chrono` or `time`: Adds support for SQL Server date and time types.
    * `chrono` and `stable-local`: If your local timezone does not observe daylight saving time (DST), enable this feature to use a fixed offset for `DateTime<Local>`, improving formatting performance.
* `rust_decimal` or `bigdecimal`: Adds support for SQL Server decimal/numeric types.
* `num-bigint`: Adds support for SQL Server decimal/numeric types (only integers).
* `uuid`: Adds support for SQL Server UNIQUEIDENTIFIER type.

## Crates.io

https://crates.io/crates/mssql-value-serializer

## Documentation

https://docs.rs/mssql-value-serializer

## License

[MIT](LICENSE)