npm - @digitalwalletcorp/sql-builder - Versions diffs - 1.1.0 → 1.2.1 - Mend

@digitalwalletcorp/sql-builder 1.1.0 → 1.2.1

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (14) hide show

package/README.md +43 -0
package/lib/abstract-syntax-tree.d.ts +62 -0
package/lib/abstract-syntax-tree.js +347 -0
package/lib/abstract-syntax-tree.js.map +1 -0
package/lib/common.d.ts +8 -0
package/lib/common.js +24 -0
package/lib/common.js.map +1 -0
package/lib/sql-builder.d.ts +39 -0
package/lib/sql-builder.js +209 -72
package/lib/sql-builder.js.map +1 -1
package/package.json +3 -2
package/src/abstract-syntax-tree.ts +319 -0
package/src/common.ts +19 -0
package/src/sql-builder.ts +57 -79

package/src/abstract-syntax-tree.ts ADDED Viewed

@@ -0,0 +1,319 @@
+import * as common from './common';
+type Token =
+  | { type: 'IDENTIFIER'; value: string } // 例: param, length
+  | { type: 'OPERATOR'; value: string }   // 例: >, &&, ===, !=
+  | { type: 'NUMBER'; value: number }     // 例: 100.123
+  | { type: 'BOOLEAN'; value: boolean }   // 例: true, false
+  | { type: 'STRING'; value: string }     // 例: 'abc'
+  | { type: 'NULL'; value: null }
+  | { type: 'UNDEFINED', value: undefined }
+  | { type: 'PARENTHESIS'; value: '(' | ')' };
+// 演算子の優先順位と結合性 (より長い演算子を先に定義)
+const PRECEDENCE: {
+  [op: string]: {
+    precedence: number;
+    associativity: 'left' | 'right'
+  }
+} = {
+  '||': { precedence: 1, associativity: 'left' },
+  '&&': { precedence: 2, associativity: 'left' },
+  '==': { precedence: 3, associativity: 'left' },
+  '!=': { precedence: 3, associativity: 'left' },
+  '===': { precedence: 3, associativity: 'left' },
+  '!==': { precedence: 3, associativity: 'left' },
+  '<': { precedence: 4, associativity: 'left' },
+  '<=': { precedence: 4, associativity: 'left' },
+  '>': { precedence: 4, associativity: 'left' },
+  '>=': { precedence: 4, associativity: 'left' },
+  '!': { precedence: 5, associativity: 'right' } // 単項演算子は高優先度
+};
+/**
+ * SQLBuilderの条件文(*IF*)で指定された条件文字列を解析するためのAST。
+ * JavaScriptの文法をカバーするものではなく、SQLBuilderで利用可能な限定的な構文のみサポートする。
+ */
+export class AbstractSyntaxTree {
+  /**
+   * 与えられた条件文字列を構文解析し、entityに対する条件として成立するか評価する
+   *
+   * @param {string} condition "params != null && params.length > 10" のような条件
+   * @param {Record<string, any>} entity
+   * @returns {boolean}
+   */
+  public evaluateCondition(condition: string, entity: Record<string, any>): boolean {
+    try {
+      const tokens = this.tokenize(condition); // トークン化
+      const rpnTokens = this.shuntingYard(tokens); // RPN変換
+      const result = this.evaluateRpn(rpnTokens, entity); // 評価
+      return result;
+    } catch (error) {
+      console.error('Error evaluating condition:', condition, entity, error);
+      throw error;
+    }
+  }
+  /**
+   * 与えられた条件文字列をトークンに分割する
+   *
+   * @param {string} condition
+   * @returns {Token[]}
+   */
+  public tokenize(condition: string): Token[] {
+    const tokens: Token[] = [];
+    let i = 0;
+    while (i < condition.length) {
+      const char = condition[i];
+      // 空白をスキップ
+      if (/\s/.test(char)) {
+        i++;
+        continue;
+      }
+      // 演算子 (長いものからチェック)
+      // 3桁定義
+      const chunk3 = condition.substring(i, i + 3);
+      switch (chunk3) {
+        case '===':
+        case '!==':
+          tokens.push({ type: 'OPERATOR', value: chunk3 });
+          i += 3;
+          continue;
+        default:
+      }
+      // 2桁定義
+      const chunk2 = condition.substring(i, i + 2);
+      switch (chunk2) {
+        case '==':
+        case '!=':
+        case '<=':
+        case '>=':
+        case '&&':
+        case '||':
+          tokens.push({ type: 'OPERATOR', value: chunk2 });
+          i += 2;
+          continue;
+        default:
+      }
+      // 1桁定義
+      const chunk1 = char;
+      switch (chunk1) {
+        case '>':
+        case '<':
+        case '!':
+        case '=':
+          tokens.push({ type: 'OPERATOR', value: chunk1 });
+          i += 1;
+          continue;
+        // case '.':
+        //   tokens.push({ type: 'IDENTIFIER', value: chunk1 }); // '.'も識別子の一部として扱う
+        //   i += 1;
+        //   continue;
+        case '(':
+        case ')':
+          tokens.push({ type: 'PARENTHESIS', value: chunk1 });
+          i += 1;
+          continue;
+        default:
+      }
+      const reststring = condition.substring(i); // 現在のインデックスから末尾までの文字列
+      // 数値リテラル
+      const numMatch = reststring.match(/^-?\d+(\.\d+)?/);
+      if (numMatch) {
+        tokens.push({ type: 'NUMBER', value: parseFloat(numMatch[0]) });
+        i += numMatch[0].length;
+        continue;
+      }
+      // 文字列リテラル
+      switch (chunk1) {
+        case '\'':
+        case '"':
+          const quote = chunk1;
+          let j = i + 1;
+          let strValue = '';
+          while (j < condition.length && condition[j] !== quote) {
+            // エスケープ文字の処理 (\' や \\) は必要に応じて追加
+            if (condition[j] === '\\' && j + 1 < condition.length) {
+                strValue += condition[j+1];
+                j += 2;
+            } else {
+                strValue += condition[j];
+                j++;
+            }
+          }
+          if (condition[j] === quote) {
+            tokens.push({ type: 'STRING', value: strValue });
+            i = j + 1;
+            continue;
+          } else {
+            // クォートが閉じられていない
+            throw new Error('Unterminated string literal');
+          }
+        default:
+      }
+      // 識別子 (変数名, true, false, null, undefined, length)
+      const identMatch = reststring.match(/^[a-zA-Z_][a-zA-Z0-9_.]*/); // ドットを含む識別子
+      if (identMatch) {
+        const ident = identMatch[0];
+        switch (ident) {
+          case 'true':
+            tokens.push({ type: 'BOOLEAN', value: true });
+            break;
+          case 'false':
+            tokens.push({ type: 'BOOLEAN', value: false });
+            break;
+          case 'null':
+            tokens.push({ type: 'NULL', value: null });
+            break;
+          case 'undefined':
+            tokens.push({ type: 'UNDEFINED', value: undefined });
+            break;
+          default:
+            tokens.push({ type: 'IDENTIFIER', value: ident }); // プロパティ名
+        }
+        i += ident.length;
+        continue;
+      }
+      // 未知の文字
+      throw new Error(`Unexpected character in condition: ${char} at index ${i}`);
+    }
+    return tokens;
+  }
+  /**
+   * Shunting Yardアルゴリズムで構文を逆ポーランド記法(Reverse Polish Notation)に変換する
+   *
+   * @param {Token[]} tokens
+   * @returns {Token[]}
+   */
+  private shuntingYard(tokens: Token[]): Token[] {
+    const output: Token[] = [];
+    const operatorStack: (Token & { value: string })[] = [];
+    for (const token of tokens) {
+      switch (token.type) {
+        case 'NUMBER':
+        case 'BOOLEAN':
+        case 'NULL':
+        case 'UNDEFINED':
+        case 'STRING':
+        case 'IDENTIFIER':
+          output.push(token);
+          break;
+        case 'OPERATOR':
+          const op1 = token;
+          while (operatorStack.length) {
+            const op2 = operatorStack[operatorStack.length - 1];
+            // 括弧内は処理しない
+            if (op2.value === '(') {
+              break;
+            }
+            // 優先順位のルールに従う
+            if (PRECEDENCE[op1.value].associativity === 'left'
+                && PRECEDENCE[op1.value].precedence <= PRECEDENCE[op2.value].precedence) {
+              output.push(operatorStack.pop()!);
+            } else {
+              break;
+            }
+          }
+          operatorStack.push(op1);
+          break;
+        case 'PARENTHESIS':
+          if (token.value === '(') {
+            operatorStack.push(token);
+          } else if (token.value === ')') {
+            let foundLeftParen = false;
+            while (operatorStack.length > 0) {
+              const op = operatorStack.pop()!;
+              if ('value' in op && op.value === '(') {
+                foundLeftParen = true;
+                break;
+              }
+              output.push(op);
+            }
+            if (!foundLeftParen) {
+              throw new Error('Mismatched parentheses');
+            }
+          }
+          break;
+        // default:
+      }
+    }
+    while (operatorStack.length) {
+      const op = operatorStack.pop()!;
+      if ('value' in op && (op.value === '(' || op.value === ')')) {
+        throw new Error('Mismatched parentheses');
+      }
+      output.push(op);
+    }
+    return output;
+  }
+  /**
+   * 逆ポーランド記法(Reverse Polish Notation)のトークンを評価する
+   *
+   * @param {Token[]} rpnTokens
+   * @param {Record<string, any>} entity
+   * @returns {boolean}
+   */
+  private evaluateRpn(rpnTokens: Token[], entity: Record<string, any>): boolean {
+    const stack: any[] = [];
+    for (const token of rpnTokens) {
+      switch (token.type) {
+        case 'NUMBER':
+        case 'BOOLEAN':
+        case 'STRING':
+        case 'NULL':
+        case 'UNDEFINED':
+          stack.push(token.value);
+          break;
+        case 'IDENTIFIER':
+          stack.push(common.getProperty(entity, token.value));
+          break;
+        case 'OPERATOR':
+          // 単項演算子 '!'
+          if (token.value === '!') {
+            const operand = stack.pop();
+            stack.push(!operand);
+            break;
+          }
+          // 二項演算子
+          const right = stack.pop();
+          const left = stack.pop();
+          switch (token.value) {
+            case '==': stack.push(left == right); break;
+            case '!=': stack.push(left != right); break;
+            case '===': stack.push(left === right); break;
+            case '!==': stack.push(left !== right); break;
+            case '<': stack.push(left < right); break;
+            case '<=': stack.push(left <= right); break;
+            case '>': stack.push(left > right); break;
+            case '>=': stack.push(left >= right); break;
+            case '&&': stack.push(left && right); break;
+            case '||': stack.push(left || right); break;
+            default: throw new Error(`Unknown operator: ${token.value}`);
+          }
+          break;
+        // default:
+      }
+    }
+    if (stack.length !== 1) {
+      throw new Error('Invalid expression');
+    }
+    return !!stack[0];
+  }
+}

package/src/common.ts ADDED Viewed

@@ -0,0 +1,19 @@
+/**
+ * entityで指定したオブジェクトからドットで連結されたプロパティキーに該当する値を取得する
+ *
+ * @param {Record<string, any>} entity
+ * @param {string} property
+ * @returns {any}
+ */
+export function getProperty(entity: Record<string, any>, property: string): any {
+  const propertyPath = property.split('.');
+  let value = entity;
+  for (const prop of propertyPath) {
+    if (value && value.hasOwnProperty(prop)) {
+      value = value[prop];
+    } else {
+      return undefined;
+    }
+  }
+  return value;
+}

package/src/sql-builder.ts CHANGED Viewed

@@ -1,3 +1,6 @@
+import * as common from './common';
+import { AbstractSyntaxTree } from './abstract-syntax-tree';
 type TagType = 'BEGIN' | 'IF' | 'FOR' | 'END' | 'BIND';
 type ExtractValueType<T extends 'string' | 'array' | 'object'>
   = T extends 'string'
@@ -164,57 +167,56 @@ export class SQLBuilder {
     /**
      * 「\/* *\/」で囲まれたすべての箇所を抽出
      */
-    const rootMatcher = template.match(this.REGEX_TAG_PATTERN);
+    const matches = template.matchAll(this.REGEX_TAG_PATTERN);
     // まず最初にREGEX_TAG_PATTERNで解析した情報をそのままフラットにTagContextの配列に格納
     let pos = 0;
     const tagContexts: TagContext[] = [];
-    if (rootMatcher) {
-      for (const matchContent of rootMatcher) {
-        const index = template.indexOf(matchContent, pos);
-        pos = index + 1;
-        const tagContext: TagContext = {
-          type: null as unknown as TagType,
-          match: matchContent,
-          contents: '',
-          startIndex: index,
-          endIndex: index + matchContent.length,
-          sub: [],
-          parent: null,
-          status: 0
-        };
-        switch (true) {
-          case matchContent === '/*BEGIN*/': {
-            tagContext.type = 'BEGIN';
-            break;
-          }
-          case matchContent.startsWith('/*IF'): {
-            tagContext.type = 'IF';
-            const contentMatcher = matchContent.match(/^\/\*IF\s+(.*?)\*\/$/);
-            tagContext.contents = contentMatcher && contentMatcher[1] || '';
-            break;
-          }
-          case matchContent.startsWith('/*FOR'): {
-            tagContext.type = 'FOR';
-            const contentMatcher = matchContent.match(/^\/\*FOR\s+(.*?)\*\/$/);
-            tagContext.contents = contentMatcher && contentMatcher[1] || '';
-            break;
-          }
-          case matchContent === '/*END*/': {
-            tagContext.type = 'END';
-            break;
-          }
-          default: {
-            tagContext.type = 'BIND';
-            const contentMatcher = matchContent.match(/\/\*(.*?)\*\//);
-            tagContext.contents = contentMatcher && contentMatcher[1] || '';
-            // ダミー値の終了位置をendIndexに設定
-            const dummyEndIndex = this.getDummyParamEndIndex(template, tagContext);
-            tagContext.endIndex = dummyEndIndex;
-          }
+    for (const match of matches) {
+      const matchContent = match[0];
+      const index = match.index;
+      pos = index + 1;
+      const tagContext: TagContext = {
+        type: 'BIND', // ダミーの初期値。後続処理で適切なタイプに変更する。
+        match: matchContent,
+        contents: '',
+        startIndex: index,
+        endIndex: index + matchContent.length,
+        sub: [],
+        parent: null,
+        status: 0
+      };
+      switch (true) {
+        case matchContent === '/*BEGIN*/': {
+          tagContext.type = 'BEGIN';
+          break;
+        }
+        case matchContent.startsWith('/*IF'): {
+          tagContext.type = 'IF';
+          const contentMatcher = matchContent.match(/^\/\*IF\s+(.*?)\*\/$/);
+          tagContext.contents = contentMatcher && contentMatcher[1] || '';
+          break;
+        }
+        case matchContent.startsWith('/*FOR'): {
+          tagContext.type = 'FOR';
+          const contentMatcher = matchContent.match(/^\/\*FOR\s+(.*?)\*\/$/);
+          tagContext.contents = contentMatcher && contentMatcher[1] || '';
+          break;
+        }
+        case matchContent === '/*END*/': {
+          tagContext.type = 'END';
+          break;
+        }
+        default: {
+          tagContext.type = 'BIND';
+          const contentMatcher = matchContent.match(/\/\*(.*?)\*\//);
+          tagContext.contents = contentMatcher && contentMatcher[1] || '';
+          // ダミー値の終了位置をendIndexに設定
+          const dummyEndIndex = this.getDummyParamEndIndex(template, tagContext);
+          tagContext.endIndex = dummyEndIndex;
         }
-        tagContexts.push(tagContext);
       }
+      tagContexts.push(tagContext);
     }
     // できあがったTagContextの配列から、BEGEN、IFの場合は次の対応するENDが出てくるまでをsubに入れ直して構造化し、
@@ -326,7 +328,10 @@ export class SQLBuilder {
             for (const value of array) {
               // 再帰呼び出しによりposが進むので、ループのたびにposを戻す必要がある
               pos.index = tagContext.endIndex;
-              result += this.parse(pos, template, { [bindName]: value }, tagContext.sub, options);
+              result += this.parse(pos, template, {
+                ...entity,
+                [bindName]: value
+              }, tagContext.sub, options);
               // FORループするときは各行で改行する
               result += '\n';
             }
@@ -353,7 +358,7 @@ export class SQLBuilder {
         case 'BIND': {
           result += template.substring(pos.index, tagContext.startIndex);
           pos.index = tagContext.endIndex;
-          const value = this.getProperty(entity, tagContext.contents);
+          const value = common.getProperty(entity, tagContext.contents);
           switch (options?.bindType) {
             case 'postgres': {
               // PostgreSQL形式の場合、$Nでバインドパラメータを展開
@@ -405,7 +410,7 @@ export class SQLBuilder {
             default: {
               // generateSQLの場合
               const escapedValue = this.extractValue(tagContext.contents, entity);
-              result += value == null ? '' : escapedValue;
+              result += escapedValue ?? '';
             }
           }
           break;
@@ -499,42 +504,15 @@ export class SQLBuilder {
    */
   private evaluateCondition(condition: string, entity: Record<string, any>): boolean {
     try {
-      const evaluate = new Function('entity', `
-        with (entity) {
-          try {
-            return ${condition};
-          } catch(error) {
-            return false;
-          }
-        }`
-      );
-      return !!evaluate(entity);
+      const ast = new AbstractSyntaxTree();
+      const result = ast.evaluateCondition(condition, entity);
+      return result;
     } catch (error) {
       console.warn('Error evaluating condition:', condition, entity, error);
       return false;
     }
   }
-  /**
-   * entityで指定したオブジェクトからドットで連結されたプロパティキーに該当する値を取得する
-   *
-   * @param {Record<string, any>} entity
-   * @param {string} property
-   * @returns {any}
-   */
-  private getProperty(entity: Record<string, any>, property: string): any {
-    const propertyPath = property.split('.');
-    let value = entity;
-    for (const prop of propertyPath) {
-      if (value && value.hasOwnProperty(prop)) {
-        value = value[prop];
-      } else {
-        return undefined;
-      }
-    }
-    return value;
-  }
   /**
    * entityからparamで指定した値を文字列で取得する
    * entityの値がstringの場合、SQLインジェクションの危険のある文字はエスケープする
@@ -557,7 +535,7 @@ export class SQLBuilder {
     responseType?: T
   }): ExtractValueType<T> {
     try {
-      const value = this.getProperty(entity, property);
+      const value = common.getProperty(entity, property);
       let result = '';
       switch (options?.responseType) {
         case 'array':