real-time-sqlx 0.1.1

Real-time SQLx backend for Tauri
Documentation 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189

use std::{fmt, iter::repeat};

/// Utility function to format a list of displayable items with a specific
/// separator
///
/// Example:
/// 1, 2, 3, condition1 OR condition2 OR condition3
#[inline]
pub(crate) fn format_list<T: fmt::Display>(items: &[T], separator: &str) -> String {
    items
        .iter()
        .map(|item| format!("{}", item).to_string())
        .collect::<Vec<String>>()
        .join(separator)
}

/// Utility function to format an iterator of displayable items with a
/// specific separator
///
/// Example:
/// 1, 2, 3, condition1 OR condition2 OR condition3
#[inline]
pub(crate) fn format_iter<T: fmt::Display, I: IntoIterator<Item = T>>(
    items: I,
    separator: &str,
) -> String {
    items
        .into_iter()
        .map(|item| format!("{}", item).to_string())
        .collect::<Vec<String>>()
        .join(separator)
}

/// Create an owned vector of keys from a JSON object.
/// The vector is not actually "ordered", rather it enables reading the values
/// of multiple similar objects always in the same order for SQL insertion.
#[inline]
pub(crate) fn ordered_keys(object: &serde_json::Map<String, serde_json::Value>) -> Vec<String> {
    object.keys().map(|key| (*key).clone()).collect()
}

/// Convert a string with '?' placeholders to numbered '$1' placeholderss
#[inline]
pub(crate) fn to_numbered_placeholders(query: &str) -> String {
    let mut result = String::new();
    let mut counter = 1;

    for c in query.chars() {
        if c == '?' {
            result.push_str(&format!("${counter}"));
            counter += 1;
        } else {
            result.push(c);
        }
    }

    result
}

/// Create a placeholder string (?, ?, ?) for a given count of placeholders,
/// for one value
#[inline]
pub(crate) fn placeholders(count: usize) -> String {
    let str_placeholders = repeat("?".to_string())
        .take(count)
        .collect::<Vec<String>>()
        .join(", ");

    format!("({str_placeholders})")
}

/// Create a placeholder string (?, ?, ?), (?, ?, ?), (?, ?, ?) for a given
/// count of placeholders, for n values
#[inline]
pub(crate) fn repeat_placeholders(count: usize, n_repeat: usize) -> String {
    repeat(placeholders(count))
        .take(n_repeat)
        .collect::<Vec<String>>()
        .join(", ")
}

/// Sanitize table and column names to avoid SQL injection
/// Only letters, numbers and underscores are allowed. No spaces
#[inline]
pub(crate) fn sanitize_identifier(str: &str) -> String {
    str.replace(|c: char| !c.is_alphanumeric() && c != '_', "")
}

/// Generate an UPDATE statement from a table name and a list of keys
#[inline]
pub(crate) fn update_statement(table: &str, keys: &[String]) -> String {
    let table = sanitize_identifier(table);
    let columns = keys
        .iter()
        .map(|key| format!("\"{}\" = ?", sanitize_identifier(key)))
        .collect::<Vec<String>>()
        .join(", ");

    format!("UPDATE {table} SET {columns} WHERE id = ? RETURNING *")
}

/// Generate an INSERT statement from a table name and a list of keys
#[inline]
pub(crate) fn insert_statement(table: &str, keys: &[String]) -> String {
    let table = sanitize_identifier(table);
    let values_placeholders = placeholders(keys.len());
    let columns = format_iter(keys.iter().map(|s| sanitize_identifier(s)), ", ");

    format!("INSERT INTO {table} ({columns}) VALUES {values_placeholders} RETURNING *")
}

/// Generate an INSERT statement from a table name and a list of keys
/// to insert multiple rows at once
#[inline]
pub(crate) fn insert_many_statement(table: &str, keys: &[String], n_rows: usize) -> String {
    let table = sanitize_identifier(table);
    let values_placeholders = repeat_placeholders(keys.len(), n_rows);
    let columns = format_iter(keys.iter().map(|s| sanitize_identifier(s)), ", ");

    format!("INSERT INTO {table} ({columns}) VALUES {values_placeholders} RETURNING *")
}

/// Generate a DELETE statement from a table name and an id
#[inline]
pub(crate) fn delete_statement(table: &str) -> String {
    let table = sanitize_identifier(table);

    format!("DELETE FROM {table} WHERE id = ? RETURNING *")
}

/// SQL-like implementation of the LIKE operator
/// '_' matches any single character
/// '%' matches zero or more characters
pub(crate) fn sql_like(filter: &str, value: &str) -> bool {
    // Helper function to perform recursive pattern matching
    fn match_helper(f: &[char], v: &[char]) -> bool {
        match (f, v) {
            // If both filter and value are empty, it's a match
            ([], []) => true,

            // If filter has '%', it can match zero or more characters
            ([first, rest @ ..], value) if *first == '%' => {
                // Match zero characters or keep consuming value characters
                match_helper(rest, value) || (!value.is_empty() && match_helper(f, &value[1..]))
            }

            // If filter has '_', it matches exactly one character if value is not empty
            ([first, rest @ ..], [_, v_rest @ ..]) if *first == '_' => match_helper(rest, v_rest),

            // If the current characters of both filter and value match, proceed
            ([first, rest @ ..], [v_first, v_rest @ ..]) if first == v_first => {
                match_helper(rest, v_rest)
            }

            // If nothing matches, return false
            _ => false,
        }
    }

    // Convert both filter and value to character slices for easier handling
    match_helper(
        &filter.chars().collect::<Vec<_>>(),
        &value.chars().collect::<Vec<_>>(),
    )
}

/// SQL-like implementation of the ILIKE operator
pub(crate) fn sql_ilike(filter: &str, value: &str) -> bool {
    sql_like(&filter.to_lowercase(), &value.to_lowercase())
}

#[cfg(test)]
mod test_utils {
    use super::sql_like;

    #[test]
    /// The sql_like function was generated with ChatGPT
    /// This test guarantees that the function works as expected
    fn test_sql_like() {
        assert!(sql_like("he_lo", "hello"));
        assert!(sql_like("h%o", "hello"));
        assert!(!sql_like("h%o", "hi"));
        assert!(sql_like("%", "anything"));
        assert!(sql_like("_____", "12345"));
        assert!(sql_like("_%_", "abc"));
        assert!(sql_like("h_llo", "hello"));
        assert!(!sql_like("he_lo", "heeeelo"));
    }
}