@truto/sqlite-builder 2.0.2-canary.11 → 2.0.2-canary.13

package/README.md

@@ -1,225 +1,225 @@
 
-// Interpolate it directly into a sql template — no sql.raw() needed. The
-// filter's placeholders and values are collected automatically and stay aligned.
-const query = sql`
-  SELECT * FROM users
-  WHERE ${result}
-`
+// Dynamic column selection (simplified with array support)
+const columns = ['id', 'name', 'email']
+const selectQuery = sql`SELECT ${sql.ident(columns)} FROM users`
+
+// Alternative approach for more complex column expressions
+const complexColumns = [
+  sql.ident('id'),
+  sql.ident('name'),
+  sql.raw('UPPER(email) as email_upper'),
+]
+const complexQuery = sql`SELECT ${sql.join(complexColumns)} FROM users`
 ```
 
-### Supported Operators
+### Dynamic Queries with JSON Filters
 
-| Operator Family           | JSON Form                             | SQL Fragment                             | Description                         |
-| ------------------------- | ------------------------------------- | ---------------------------------------- | ----------------------------------- |
-| **Equality**              | `"field": value`                      | `"field" = ?`                            | Direct value comparison             |
-| **Inequality**            | `"field": { "ne": value }`            | `"field" <> ?`                           | Not equal comparison                |
-| **Comparison**            | `"field": { "gt": value }`            | `"field" > ?`                            | Greater than, gte, lt, lte          |
-| **Set Membership**        | `"field": { "in": [1, 2, 3] }`        | `"field" IN (?,?,?)`                     | Value in array                      |
-| **Negative Set**          | `"field": { "nin": [1, 2] }`          | `"field" NOT IN (?,?)`                   | Value not in array                  |
-| **NULL Checks**           | `"field": { "exists": false }`        | `"field" IS NULL`                        | Check for NULL/NOT NULL             |
-| **LIKE Patterns**         | `"field": { "like": "john%" }`        | `"field" LIKE ?`                         | Pattern matching                    |
-| **Case-insensitive LIKE** | `"field": { "ilike": "%DOE%" }`       | `"field" LIKE ? COLLATE NOCASE`          | Case-insensitive patterns           |
-| **Regular Expressions**   | `"field": { "regex": "^[A-Z]+" }`     | `"field" REGEXP ?`                       | Regex patterns (requires extension) |
-| **Logical AND**           | `"and": [filter1, filter2]`           | `(filter1 AND filter2)`                  | All conditions must match           |
-| **Logical OR**            | `"or": [filter1, filter2]`            | `(filter1 OR filter2)`                   | Any condition must match            |
-| **JSON Path**             | `"profile.email": "test@example.com"` | `json_extract("profile", '$.email') = ?` | Query JSON column fields            |
-| **Alias Blocks**          | `"$alias": { "field": value }`        | `alias."field" = ?`                      | Table/alias qualified fields        |
+```typescript
+import { sql, compileFilter } from '@truto/sqlite-builder'
+
+// API endpoint that accepts JSON filter
+app.get('/api/users', (req, res) => {
+  // User sends filter as JSON
+  const filter = req.body.filter || {}
+
+  // Safely compile to SQL and interpolate directly. Filter values and the
+  // LIMIT value are collected in order into query.values.
+  const query = sql`
+    SELECT id, name, email, created_at
+    FROM users
+    WHERE ${compileFilter(filter)}
+    ORDER BY created_at DESC
+    LIMIT ${req.query.limit || 20}
+  `
+
+  const users = db.prepare(query.text).all(...query.values)
+  res.json(users)
+})
+
+// Example API calls:
+// POST /api/users { "filter": { "status": "ACTIVE", "age": { "gte": 18 } } }
+// POST /api/users { "filter": { "or": [{ "role": "ADMIN" }, { "verified": true }] } }
+```
 
-### Filter Examples
+### Array Identifiers & Qualified Identifiers
 
-#### Basic Operations
+The `sql.ident()` function supports simple identifiers, qualified identifiers (table.column), arrays, and mixed arrays with SQL fragments:
 
 ```typescript
-// Equality and comparison
-const filter1 = {
-  status: 'ACTIVE',
-  age: { gte: 18, lt: 65 },
-  score: { gt: 80, lte: 100 },
-}
-// SQL: (("status" = ? AND "age" >= ? AND "age" < ? AND "score" > ? AND "score" <= ?))
-
-// Set membership
-const filter2 = {
-  role: { in: ['ADMIN', 'EDITOR'] },
-  department: { nin: ['ARCHIVED', 'DELETED'] },
-}
-// SQL: (("role" IN (?,?) AND "department" NOT IN (?,?)))
+// ✅ Simple identifiers
+const table = 'users'
+const column = 'name'
+const simpleQuery = sql`SELECT ${sql.ident(column)} FROM ${sql.ident(table)}`
+// Result: SELECT "name" FROM "users"
+
+// ✅ Qualified identifiers (table.column)
+const qualifiedQuery = sql`SELECT ${sql.ident('u.name')}, ${sql.ident('p.title')} FROM users u JOIN posts p ON u.id = p.user_id`
+// Result: SELECT "u"."name", "p"."title" FROM users u JOIN posts p ON u.id = p.user_id
+
+// ✅ Pure identifier arrays (clean and concise)
+const columns = ['id', 'name', 'email', 'created_at']
+const arrayQuery = sql`SELECT ${sql.ident(columns)} FROM users`
+// Result: SELECT "id", "name", "email", "created_at" FROM users
+
+// ✅ Mixed qualified and simple identifiers in arrays
+const mixedColumns = ['u.id', 'name', 'u.email', 'p.title', 'created_at']
+const mixedQuery = sql`SELECT ${sql.ident(mixedColumns)} FROM users u LEFT JOIN posts p ON u.id = p.user_id`
+// Result: SELECT "u"."id", "name", "u"."email", "p"."title", "created_at" FROM users u LEFT JOIN posts p ON u.id = p.user_id
+
+// ✅ NEW: Mixed arrays with identifiers and SQL fragments
+const mixedColumns = [
+  'id',
+  'name',
+  sql.raw('UPPER(email) as email_upper'),
+  sql.raw('COUNT(*) as total'),
+]
+const mixedQuery = sql`SELECT ${sql.ident(mixedColumns)} FROM users GROUP BY id, name, email`
+// Result: SELECT "id", "name", UPPER(email) as email_upper, COUNT(*) as total FROM users GROUP BY id, name, email
+
+// ✅ Mixed arrays with parameterized fragments
+const status = 'premium'
+const dynamicColumns = [
+  'id',
+  'name',
+  sql`CASE WHEN status = ${status} THEN 'Premium User' ELSE 'Regular User' END as user_type`,
+  sql.raw('created_at'),
+]
+const parameterizedQuery = sql`SELECT ${sql.ident(dynamicColumns)} FROM users WHERE active = ${true}`
+// Combines identifiers, raw SQL, and parameterized values seamlessly
+
+// ✅ Works great for INSERT statements
+const insertData = { name: 'John', email: 'john@example.com', age: 30 }
+const insertColumns = Object.keys(insertData)
+const insertValues = Object.values(insertData)
+const insertQuery = sql`
+  INSERT INTO users (${sql.ident(insertColumns)}) 
+  VALUES (${insertValues[0]}, ${insertValues[1]}, ${insertValues[2]})
+`
 
-// NULL checks
-const filter3 = {
-  email: { exists: true }, // IS NOT NULL
-  deleted_at: { exists: false }, // IS NULL
+// ✅ Dynamic column selection
+const userFields = ['name', 'email']
+const includeTimestamps = true
+if (includeTimestamps) {
+  userFields.push('created_at', 'updated_at')
 }
-// SQL: (("email" IS NOT NULL AND "deleted_at" IS NULL))
+const dynamicQuery = sql`SELECT ${sql.ident(userFields)} FROM users`
+
+// 🆚 OLD: Manual joining approach (still works, but much more verbose)
+const oldWay = sql`SELECT ${sql.join([
+  sql.ident('id'),
+  sql.ident('name'),
+  sql.raw('UPPER(email) as email_upper'),
+])} FROM users`
 ```
 
-#### Pattern Matching
+### Complex Joins
 
 ```typescript
-// LIKE patterns
-const filter4 = {
-  username: { like: 'john%' }, // Starts with 'john'
-  email: { ilike: '%@EXAMPLE.COM%' }, // Case-insensitive contains
-}
-// SQL: (("username" LIKE ? AND "email" LIKE ? COLLATE NOCASE))
+const getUsersWithPosts = sql`
+  SELECT 
+    ${sql.ident('u')}.id,
+    ${sql.ident('u')}.name,
+    COUNT(${sql.ident('p')}.id) as post_count
+  FROM ${sql.ident('users')} u
+  LEFT JOIN ${sql.ident('posts')} p ON u.id = p.user_id
+  WHERE u.created_at > ${startDate}
+    AND u.status IN ${sql.in(['active', 'premium'])}
+  GROUP BY u.id
+  HAVING post_count > ${minPosts}
+  ORDER BY post_count DESC
+  LIMIT ${limit}
+`
 
-// Regular expressions (requires REGEXP extension)
-const filter5 = {
-  email: { regex: '^[A-Za-z0-9._%+-]+@[A-Za-z0-9.-]+\\.[A-Za-z]{2,}$' },
-  phone: { regex: '^\\+1[0-9]{10}$' },
-}
-// SQL: (("email" REGEXP ? AND "phone" REGEXP ?))
+// For simpler cases, you can use array identifiers directly
+const getUsers = sql`
+  SELECT ${sql.ident(['id', 'name', 'email', 'created_at'])}
+  FROM ${sql.ident('users')}
+  WHERE status = ${'active'}
+`
 ```
 
-#### Logical Operators
+### Transactions
 
 ```typescript
-// AND operator (explicit)
-const filter6 = {
-  and: [
-    { status: 'ACTIVE' },
-    { age: { gte: 18 } },
-    { country: { in: ['US', 'CA', 'GB'] } },
-  ],
-}
-// SQL: ((("status" = ?) AND ("age" >= ?) AND ("country" IN (?,?,?))))
-
-// OR operator
-const filter7 = {
-  or: [
-    { age: { lt: 18 } }, // Minors
-    { age: { gte: 65 } }, // Seniors
-  ],
-}
-// SQL: ((("age" < ?) OR ("age" >= ?)))
-
-// Mixed AND/OR logic
-const filter8 = {
-  status: 'ACTIVE', // Implicit AND
-  or: [{ tags: { ilike: '%urgent%' } }, { priority: { gte: 8 } }],
-}
-// SQL: (((("tags" LIKE ? COLLATE NOCASE) OR ("priority" >= ?)) AND ("status" = ?)))
+// Works great with better-sqlite3 transactions
+const insertUsers = db.transaction((users) => {
+  const stmt = db.prepare(
+    sql`
+    INSERT INTO users (name, email) 
+    VALUES (?, ?)
+  `.text,
+  )
+
+  for (const user of users) {
+    const { values } = sql`${user.name}, ${user.email}`
+    stmt.run(...values)
+  }
+})
+
+insertUsers([
+  { name: 'Alice', email: 'alice@example.com' },
+  { name: 'Bob', email: 'bob@example.com' },
+])
 ```
 
-#### JSON Path Querying
+## 🧪 Testing
 
-For SQLite JSON columns, use dot notation to query nested fields:
+```bash
+# Run tests
+bun run test
 
-```typescript
-// Query JSON fields
-const filter9 = {
-  'profile.email': { regex: '.*@example\\.org$' },
-  'profile.age': { gte: 21 },
-  'settings.theme': { in: ['dark', 'light'] },
-  'metadata.tags': { exists: true },
-}
-// SQL: ((json_extract("profile", '$.email') REGEXP ? AND
-//        json_extract("profile", '$.age') >= ? AND
-//        json_extract("settings", '$.theme') IN (?,?) AND
-//        json_extract("metadata", '$.tags') IS NOT NULL))
-
-// Complex nested JSON query
-const filter10 = {
-  and: [
-    { 'user.profile.email': { regex: '.*@company\\.com$' } },
-    { or: [{ 'user.role': 'ADMIN' }, { 'user.permissions.canEdit': true }] },
-  ],
-}
+# Run tests in watch mode
+bun run dev
+
+# Run tests with coverage
+bun run test:coverage
+
+# Run tests with UI
+bun run test:ui
 ```
 
-#### Qualified Filters for JOINs
+## 🤝 Contributing
 
-For complex queries involving multiple tables or aliases, use **alias blocks** with keys starting with `$`:
+We welcome contributions! Please see our [Contributing Guide](CONTRIBUTING.md) for details.
 
-```typescript
-// Basic alias usage
-const joinFilter = {
-  // Main table fields (no prefix)
-  status: 'ACTIVE',
-  age: { gte: 18, lt: 65 },
-
-  // Table alias 't2'
-  $t2: {
-    column_in_table_2: { gte: 100 },
-    'stats.avg': { lt: 10 }, // JSON path in aliased table
-  },
-
-  // Table alias 'orders'
-  $orders: {
-    amount: { gt: 500 },
-    status: { in: ['completed', 'shipped'] },
-  },
-}
+### Development Setup
 
-const result = compileFilter(joinFilter)
-// SQL: ((("status" = ?) AND ("age" >= ? AND "age" < ?) AND
-//        ((t2."column_in_table_2" >= ?) AND (json_extract(t2."stats", '$.avg') < ?)) AND
-//        ((orders."amount" > ?) AND (orders."status" IN (?,?)))))
+```bash
+git clone https://github.com/truto/truto-sqlite-builder.git
+cd truto-sqlite-builder
+bun install
+bun run dev  # Start tests in watch mode
 ```
 
-**Alias Block Rules:**
+### Release Process
 
-- **Alias names**: Must be valid SQL identifiers (`[A-Za-z_][A-Za-z0-9_]*`)
-- **Prefixing**: All fields in alias blocks get prefixed with `alias.`
-- **JSON paths**: Work seamlessly with aliases: `json_extract(alias."column", '$.path')`
-- **Combination**: Alias blocks are AND-combined with root fields and each other
-- **Order**: Regular fields processed first, then alias blocks
+We use [changesets](https://github.com/changesets/changesets) for version management:
 
-```typescript
-// Complex alias example with logical operators
-const complexJoinFilter = {
-  // Primary table conditions
-  user_status: 'ACTIVE',
-
-  // User profile table
-  $profile: {
-    verified: true,
-    'preferences.notifications': { ne: false },
-    or: [{ subscription_type: 'premium' }, { credits: { gte: 100 } }],
-  },
-
-  // Orders table with complex conditions
-  $orders: {
-    and: [
-      { created_at: { gte: '2024-01-01' } },
-      { or: [{ total_amount: { gt: 1000 } }, { item_count: { gte: 5 } }] },
-    ],
-  },
-}
+```bash
+# Add a changeset
+bunx changeset
 
-// Use in JOIN queries
-const query = sql`
-  SELECT u.id, u.name, p.subscription_type, o.total_amount
-  FROM users u
-  JOIN profiles p ON u.id = p.user_id  
-  JOIN orders o ON u.id = o.user_id
-  WHERE ${compileFilter(complexJoinFilter)}
-`
+# Release
+bunx changeset version
+bun run build
+git commit -am "Release"
+git push --follow-tags
 ```
 
-**Security & Validation:**
+## 🔒 Security Policy
 
-```typescript
-// ✅ Valid alias identifiers
-$users: { name: 'John' }        // Simple identifier
-$user_profiles: { age: 25 }     // Underscore allowed
-$_temp: { status: 'active' }    // Starting underscore allowed
-
-// ❌ Invalid alias identifiers (will throw SyntaxError)
-$123invalid: { ... }            // Cannot start with number
-$'invalid-alias': { ... }       // Hyphens not allowed
-$'table.alias': { ... }         // Dots not allowed in alias name
-```
+If you discover a security vulnerability, please email eng@truto.one or create an issue.
 
-**Integration with Complex Queries:**
+## 📄 License
 
-```typescript
-// Real-world JOIN example
-const userOrderFilter = {
-  // Users table
-  active: true,
-  email: { exists: true },
-
-  // User profiles
-  $profiles: {
-    'settings.email_notifications': true,
+MIT © [Truto](https://github.com/trutohq)
+
+## 💡 Inspiration
+
+This library was inspired by:
+
+- [sql-template-strings](https://github.com/felixfbecker/sql-template-strings)
+- [slonik](https://github.com/gajus/slonik)
+- [Postgres.js](https://github.com/porsager/postgres)
+
+Built with ❤️ for the SQLite community.

package/package.json

@@ -1 +1 @@
-{"name":"@truto/sqlite-builder","version":"2.0.2-canary.11","description":"debug canary","license":"MIT","main":"index.js"}
+{"name":"@truto/sqlite-builder","version":"2.0.2-canary.13","description":"debug canary","license":"MIT","main":"index.js"}