Category: Database (CGI)
Author/Contact Info Michael K. Neylon ([mailto://mneylon-pm@masemware.com|mneylon-pm@masemware.com])
Description: In Leashing DBI, a discussion on how to clean up all the DBI calls in typical database-accessing programs were discussed. One suggestion I made was to use a class grouped all the SQL calls into one place, making it easy to separate them. That got me to thinking of how to implement this, and the following is a first attempt at such. Please see the perldoc for this for usage info.

I do plan on submitting this to CPAN when I have sufficient feedback on improvements, so any comments or other suggestions are highly appreciated!!!

The version I post below is 0.01. Updates will be posted over this.

Name change is only to reflect that DBI:: is reserved, and all additions should go to DBIx::. 

#!/usr/bin/perl -w

package DBIx::Pretty;


#=====================================================================
+========
#
# $Id: Pretty.pm,v 0.1 2001/07/01 01:57:49 mneylon Exp $
# $Revision: 0.1 $
# $Author: mneylon $
# $Date: 2001/07/01 01:57:49 $
# $Log: Pretty.pm,v $
# Revision 0.1  2001/07/01 01:57:49  mneylon
#
# Initial revision
#
#
#=====================================================================
+========

use strict;
use DBI;
use Carp;

use vars qw( $AUTOLOAD ) ;

BEGIN {
    use Exporter   ();
    use vars       qw($VERSION @ISA @EXPORT %EXPORT_TAGS);
    $VERSION     = sprintf( "%d.%02d", '$Revision: 0.1 $' =~ /\s(\d+)\
+.(\d+)/ );
    @ISA         = qw( Exporter );
    @EXPORT      = qw( add_sql );
    %EXPORT_TAGS = ( );
}

sub new {
    my $class = shift;
    my $dbi = shift;
    croak "DBI::Pretty requires a valid DBI object"
      unless $dbi;
    my $hash = shift || {};

    my $self = { dbi => $dbi,
         calls => {} };
    bless $self, $class;
    
    add_sql( $self, $hash );
    
    return $self;
}

sub DESTROY {
    # Nothing to do!
}

sub add_sql
{
    my $self = shift;
    croak "First argument must be a DBI::Pretty object" 
      unless $self->isa( "DBI::Pretty" );
    my $hash = shift || {};
    foreach my $key ( keys %$hash ) {
    next if $key eq "DESTROY";        # Safety purposes
    next if $key !~ /\w+/;            # Let's not screw up perl
    my %sqlhash = _process_sql_statement( $hash->{ $key } );
    $self->{ calls }->{ $key } = \%sqlhash;
    }
}


sub _process_sql_statement
{
    my $sql = shift || "";
    
    my %nq_hash;
    my %q_hash;
    
    # For non-quoted placeholders, we simply need to identify them
    
    foreach ( $sql =~ /\$(\w+)/g ) {
    $nq_hash{ "\$$_" } = $_;
    }
    
    # For the quoted characters, we want to strip that from the 
    # sql statement, and note the order that it was in.  Since
    # the same keyword may be used multiple times, we use a 
    # array here to store positions.
    
    my $order = 0;
    while ( $sql =~ s/\?(\w+)/\?/ ) {
    $q_hash{ $1 } ||= [];
    push @{$q_hash{ $1 }}, $order++;
    }
    
    my %fhash = ( sql        => $sql,
          non_quoted => \%nq_hash,
          quoted     => \%q_hash
        );
    return %fhash;
}

# it's magic time!

sub AUTOLOAD {
    my $self = shift;
    my $type = ref( $self )
      or croak "$self is not an object!";
    
    return if $AUTOLOAD eq 'DESTROY';
    
    my $name = $AUTOLOAD;
    $name =~ s/.*://;     # Strip all but necessary
    
    croak "No method $name defined yet in $type"
      unless ( exists $self->{ calls }->{ $name } );
    
    my $arghash = shift || {};
    
    # Now, we prepare the call to DBI's functions:

    my $statement = $self->{ calls }->{ $name }->{ sql };

    
    # So that "$tex" doesn't subsitute for "$text", sort from 
    # longest to shorted variable name and process in that order
    my @sorted_by_length_keys = 
      sort { length $b <=> length $a } 
      keys %{ $self->{ calls }->{ $name }->{ non_quoted } };
    
    foreach my $nq ( @sorted_by_length_keys ) {
    my $replace = $arghash->{ 
        $self->{ calls }->{ $name }->{ non_quoted }->{ $nq } };
    $statement =~ s/\Q$nq\E/$replace/eg;   # in case we duplicate
    }

    # The statement should now be clear of anything beyond placeholder
+s,
    # so now we just need to arrange the objects passed in order
    
    my @args;
    foreach my $q ( keys %{ $self->{ calls }->{ $name }->{ quoted } } 
+) {
    foreach my $pos 
      ( @{ $self->{ calls }->{ $name }->{ quoted }->{ $q } } ) {
          $args[ $pos ] = $arghash->{ $q };
      }
    }
    
    # Finally, we have the statement and arguments ready! Call the DBI
    # stuff!
    my $sth = $self->{ dbi }->prepare( $statement );
    return if DBI::errstr;
    $sth->execute( @args ) or die DBI::errstr;
    return if DBI::errstr;
    return $sth;
}

42;

__END__

=pod

=head1 NAME

DBIx::Pretty - 'Cleans up' calls to DBI functions
  
=head1 SYNOPSIS

    use DBI;
    use DBIx::Pretty;

    my $dbi->connect($method, $user, $pass );

    my $dbp = DBI::Pretty->new( $dbi ,
        { CUSTOMER_SELECT=>
             'SELECT $fields FROM customers WHERE $field LIKE ?value',
          CUSTOMER_UPDATE=>
             'UPDATE customers SET balance=?new_balance WHERE custID =
+ ?id' }
      );

    my $sth = $dbp->CUSTOMER_SELECT(
        { fields => 'custID, name',
          field  => 'name',
          value  => '?Wall' } ) or die DBI::errstr;

    my $sth2 = $dbp->CUSTOMER_UPDATE( 
        { new_balance => 10000,
          custID      => 101 } ) or die DBI::errstr;

=head1 DESCRIPTION

While the DBI modules is nearly a requirement in any modern perl progr
+ammer's 
toolbox, the code that is generated when using DBI can become message 
+and
hard to follow.  For example, a typical DBI call may be something like
+:

    my $sth = $dbi->prepare(
        "SELECT custID, name, balance FROM customers WHERE balance > ?
+" )
        or die DBI::errstr;
    $sth->execute( $balance_min ) or die DBI::errstr;

While this is direct, it is rather looming on the code itself, and wit
+h
the addition of placeholders, it may be confusing for future maintaine
+rs
of code.  In addition, sometimes many SQL statements will be used in t
+he
code that only vary slightly, such as changing which fields to return
or the order to return them in.

C<DBIx::Pretty> attempts to overcome this with two steps: first, all S
+QL calls
are defined at one point in one class object, such that the SQL don't 
clutter the code.  Secondly, the SQL statements are allowed to define 
'meta-variables', which can be replaced just prior to the execute() ca
+ll;
these not only can be placeholder variables, but can also be parts of 
SQL code that may change depending on the part of the code that you ar
+e in.
For example, a meta-SQL statement that can be used is as follows.

    'SELECT $fields FROM $table WHERE $column=?value'

Note that there are two types of meta-variables.  Variables that are p
+receeded
with a '?' (or in RE terms: /\?\w+/) are considered as placeholders, a
+nd the
standard method of using DBI to quote the data that goes into these wi
+ll be
used.  Variables that are preceeded by a '$' are considered as non-quo
+ted
variables; the values will be substituted before the call to prepare()
+ 
is used.  B<Consider yourself warned!> : Because these values are not
quoted, you should absolutely make sure that the values that you pass
into these non-quoted variables are untainted.  B<Any problems you inc
+ure
for ignoring this advice are your own fault!>  These non-quoted variab
+les 
are ideal for passing in field lists, column names, or other more spec
+ific
SQL portions of the code, as opposed to values that are in WHERE or SE
+T 
clauses.  Note that because the non-quoted variables start with '$', y
+ou
B<must> define these meta-SQL statements either with single quotes (or
+ q()),
or with double quotes and escaping the '$' characters (or qq()) (unles
+s, 
of course, you DO want to have interpolation taking place before the S
+QL 
strings are passed to DBI::Pretty's internals!)

The use of C<DBIx::Pretty> is straightforward.  The constructor of the
+ class
requires an existing database connection ($dbi), and an optional hashr
+ef.  
Each hash element consists of an identifier (which must be /\w+/) as t
+he key
and the meta-SQL statement as the identifier.  Once the class object i
+s
created, you can then call the entire DBI process/execute sequence for
a given SQL statement by $dbp->IDENTIFIER, where IDENTIFIER is the 
identifier previous given in the hash above.  The argument to this 
dynamic function, if needed, is a hashref; the keys of the hash are 
the meta-variable names (sans '?' or '$') from above, and the values
are what are to be used in the SQL statement.  This dynamic function
will either return an STH object, ready for use via fetchrow() for exa
+mple,
or will return undef; any errors from the DBI calls will be in their
usual place in the DBI classes (read: DBI::errstr).

C<add_sql> can be used to add new SQL statements to the DBIx::Pretty o
+bject
after it has been created; the argument here should also be a hashref 
created in the same fashion as above.

=head1 HISTORY

    $Date: 2001/07/01 01:57:49 $

    $Log: Pretty.pm,v $
    Revision 0.1  2001/07/01 01:57:49  mneylon

    Initial revision


=head1 AUTHOR

This package was written by Michael K. Neylon

=head1 COPYRIGHT

Copyright 2001 by Michael K. Neylon

=head1 LICENSE

This program is Copyright 2001 by Michael K. Neylon.

Permission is hereby granted, free of charge, to any person obtaining 
+a
copy of this software and associated documentation files (the "Softwar
+e"),
to deal in the Software without restriction, including without limitat
+ion
the rights to use, copy, modify, merge, publish, distribute, sublicens
+e,
and/or sell copies of the Software, and to permit persons to whom the
Software is furnished to do so, subject to the following conditions:

The above copyright notice and this permission notice shall be include
+d
in all copies or substantial portions of the Software.

THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRES
+S OR
IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILIT
+Y,
FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHAL
+L
THE AUTHOR BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER LIABILITY,
WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM, OUT
OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN
THE SOFTWARE.


=cut
Replies are listed 'Best First'.
Re: DBI::Pretty
by mugwumpjism (Hermit) on Jul 01, 2001 at 14:27 UTC

    I've seen this approach to "removing" SQL from code before. You're not actually achieving much.

    1. you still need to write/port the SQL to other databases, if you are doing a lot of queries this is a problem.
    2. and all your SQL ends up in one place which is a nightmare for management in larger programming projects; it needs to be closest to where it is being used and independant.
    3. You still are stuck if you want to represent complex ideas such as members that are lists, sets, etc.
    4. Every time you want to do a simple query you have to edit that central list!

    Here's the real Perl code to do what you do in your POD, using Tangram:

    # return an object representing the "remote" object, ie the
# one in the object store
my $remote_customer = $db->remote("Customer");

# get all customers whose name is like ?Wall
my (@objs) =
    $db->select( $remote_customer,
                 $remote_customer->{name}->like("?Wall") );

# set the first one's balance to 10000
$obj[0]->{balance} = 10000;
$db->store($obj[0]);

    [download]

    Other things:

    I would change:

        croak "DBI::Pretty requires a valid DBI object"
      unless $dbi;

    [download]

    to:

        croak "DBI::Pretty requires a valid DBI object"
      unless (ref $dbi and $dbi->isa("DBI"));

    [download]

    Wouldn't it also be cleaner to write:

    sub new($$;$) {
    my ($class, $dbi, $hash) = (@_);
    croak "DBI::Pretty requires a valid DBI object"
      unless $dbi;
    $hash ||= {};

    [download]

    instead of:

    sub new {
    my $class = shift;
    my $dbi = shift;
    croak "DBI::Pretty requires a valid DBI object"
      unless $dbi;
    my $hash = shift || {};

    [download]
[reply]
[d/l]
[select]
      Your points are quite valid, and by no means am I suggesting that this module would be the end-all to DBI programming.

      The thing that I was trying to do with this was (as indicated in the thread noted) to separate out SQL from programming logic as one tries to do with HTML and programming logic. Yes, I know SQL/logic are more closely tied, but I've found that once I've gotten most of the program logic down, I hardly touch the SQL from that point. SQL statements tend to be 'static' (regardless of placeholders), so isolating them once programming is done is not unreasonable.

      As for other SQL engines and the idea of lists or sets, all you are giving DBI::Pretty are plain text SQL statements and a DBI handler; as you probably know what you are doing with what database, any problems with SQL statements not carrying over is your own fault; DBI::Pretty isn't trying to recreate a standard DBI. And as long as you can write the SQL to handle sets or lists, there's no reason why this doesn't work with it. You'll still be needing to use placeholders and the like.

      I'm not offering DBI::Pretty as a placebo; I don't expect to see a "Use DBI::Pretty or die()" thread on PM anytime soon. But based on the indicated thread, there does seem to be a vested interest in cleaning SQL calls. Tangram is one approach as you've got above, though I've not used it myself; looking over the docs, it's more to rid the SQL-nature of database calls into a more OOP-type of way. Here, I assume that you still want to have SQL around, but not as embedded in the program as is typically done. What I believe DBI::Pretty offers is a way to develop SQL/DBI calls that are not only easier to read, but offer a way to genralize common SQL calls (eg "SELECT $fields FROM..." can be used assume the rest is the same with any number of combinations of $fields), as well as possibly helping to relieve maintainence nightmares. I have no expectations of where this might go; it was mostly built for curiosity's sake (and now I know how to use AUTOLOAD as well, which is a plus).

      Dr. Michael K. Neylon - mneylon-pm@masemware.com || "You've left the lens cap of your mind on again, Pinky" - The Brain
[reply]
        check out Class::DBI and Ima::DBI by Schwern, on CPAN. I think they'll do exactly what you want.
[reply]
Re: DBI::Pretty
by DrZaius (Monk) on Jul 01, 2001 at 23:54 UTC
    I'd add one thing to your module: the ability to use different sources for your SQL queries.

    For example, when doing a web site where I work, we create an sql directory next to the web root. The queries all go into individual files with a .sql extension. We have perl module similar to yours but it doesn't take the DBI object, so you end up with calls like this: 

    my $sth = $dbi->prepare($sql->customer_update);

    [download]
    Now, this doesn't work too well for utility scripts as it is hard to define a central location for sql queries. I would recommend developing a way to store sql queries in the DATA block as well.

    Just some thoughts.

[reply]
[d/l]

Back to Code Catacombs