Support conditional subquery operator for SafeQuery and SafeSql

Author: fluentfuture

mug-errorprone/src/test/java/com/google/mu/errorprone/StringFormatPlaceholderNamesCheckTest.java

@@ -232,27 +232,27 @@ public void trailingSpacesNotAllowed() {
   }
 
   @Test
-  public void trailingSpacesBeforeEqualSignIgnored() {
+  public void equalSignBeforeArrow() {
     helper
         .addSourceLines(
             "Test.java",
             "import com.google.mu.util.StringFormat;",
             "class Test {",
             "  private static final StringFormat FORMAT =",
-            "      new StringFormat(\"{shows_id => id,}\");",
+            "      new StringFormat(\"{pattern=a->b}\");",
             "}")
         .doTest();
   }
 
   @Test
-  public void trailingSpacesBeforeArrowIgnored() {
+  public void trailingSpacesBeforeArrowSignIgnored() {
     helper
         .addSourceLines(
             "Test.java",
             "import com.google.mu.util.StringFormat;",
             "class Test {",
             "  private static final StringFormat FORMAT =",
-            "      new StringFormat(\"{shows_id -> id,}\");",
+            "      new StringFormat(\"{only_active -> status = 'ACTIVE'}\");",
             "}")
         .doTest();
   }

mug-guava/src/main/java/com/google/mu/safesql/SafeQuery.java

@@ -16,11 +16,13 @@
 
 import static com.google.common.base.CharMatcher.anyOf;
 import static com.google.common.base.CharMatcher.javaIsoControl;
+import static com.google.common.base.CharMatcher.whitespace;
 import static com.google.common.base.Preconditions.checkArgument;
 import static com.google.common.base.Preconditions.checkNotNull;
 import static com.google.mu.safesql.InternalCollectors.skippingEmpty;
 import static com.google.mu.safesql.TrustedTypes.TRUSTED_SQL_TYPE_NAME;
 import static com.google.mu.safesql.TrustedTypes.isTrusted;
+import static com.google.mu.util.Substring.first;
 import static com.google.mu.util.Substring.prefix;
 import static com.google.mu.util.Substring.suffix;
 import static java.util.stream.Collectors.collectingAndThen;
@@ -68,6 +70,13 @@
  * injection. It can be used for databases that don't support JDBC parameterization, or if you
  * prefer dynamic SQL over parameterization for debugging reasons etc.
  *
+ * <p>API Note: it's common that a piece of the query needs to be conditionally guarded, you can use
+ * the conditional query operator {@code ->} in the placeholder, for example:
+ *
+ * <pre>{@code
+ * SafeQuery.of("SELECT {shows_id -> id,} name FROM tbl", showsId());
+ * }</pre>
+ *
  * <p>This class is Android compatible.
  *
  * @since 7.0
@@ -423,6 +432,23 @@ protected SafeQuery translateLiteral(Substring.Match placeholder, Object value)
 
     private String fillInPlaceholder(Substring.Match placeholder, Object value) {
       validatePlaceholder(placeholder);
+      Substring.Match conditional = first("->").in(placeholder.skip(1, 1).toString()).orElse(null);
+      if (conditional != null) {
+        checkArgument(
+            !placeholder.isImmediatelyBetween("`", "`"),
+            "boolean placeholder {%s->} shouldn't be backtick quoted",
+            conditional.before());
+        checkArgument(
+            value != null,
+            "boolean placeholder {%s->} cannot be used with a null value",
+            conditional.before());
+        checkArgument(
+            value instanceof Boolean,
+            "boolean placeholder {%s->} can only be used with a boolean value; %s encountered.",
+            conditional.before(),
+            value.getClass().getName());
+        return (Boolean) value ? whitespace().trimFrom(conditional.after()) : "";
+      }
       if (value instanceof Iterable) {
         Iterable<?> iterable = skipEmptySubqueries((Iterable<?>) value);
         if (placeholder.isImmediatelyBetween("`", "`")) { // If backquoted, it's a list of symbols

mug-guava/src/main/java/com/google/mu/safesql/SafeSql.java

@@ -15,6 +15,7 @@
 package com.google.mu.safesql;
 
 import static com.google.common.base.CharMatcher.breakingWhitespace;
+import static com.google.common.base.CharMatcher.whitespace;
 import static com.google.common.base.Preconditions.checkArgument;
 import static com.google.common.base.Preconditions.checkNotNull;
 import static com.google.common.base.Preconditions.checkState;
@@ -183,6 +184,23 @@
  * convenience methods, {@code statement.setObject(1, "%" + criteria.firstName().get() + "%")}
  * will be called to populate the PreparedStatement.
  *
+ * <dl><dt><STRONG>Trivial Conditional Subqueries</STRONG></dt></dl>
+ *
+ * SafeSql's template syntax is designed to avoid control flows that could obfuscate SQL. Instead,
+ * complex control flow such as {@code if-else}, nested {@code if}, loops etc. should be performed
+ * in Java and passed in as subqueries.
+ *
+ * <p>That said, for trivial conditional subqueries such as selecting a column only if a flag is
+ * enabled, you can use the special conditional subquery operator {@code ->} in the template:
+ *
+ * <pre>{@code
+ *   SafeSql sql = SafeSql.of(
+ *       "SELECT {shows_email -> email,} name FROM Users", showsEmail());
+ * }</pre>
+ *
+ * The text after the {@code ->} operator is the conditional subquery that's only included if
+ * {@code showEmail()} returns true.
+ *
  * <dl><dt><STRONG>Parameterize by Column Names or Table Names</STRONG></dt></dl>
  *
  * Sometimes you may wish to parameterize by table names, column names etc.
@@ -456,6 +474,27 @@ public static Template<SafeSql> template(@CompileTimeConstant String template) {
       class SqlWriter {
         void writePlaceholder(Substring.Match placeholder, Object value) {
           String paramName = rejectQuestionMark(placeholder.skip(1, 1).toString().trim());
+          Substring.Match conditional = first("->").in(paramName).orElse(null);
+          if (conditional != null) {
+            checkArgument(
+                !placeholder.isImmediatelyBetween("`", "`"),
+                "boolean placeholder {%s->} shouldn't be backtick quoted",
+                conditional.before());
+            checkArgument(
+                value != null,
+                "boolean placeholder {%s->} cannot be used with a null value",
+                conditional.before());
+            checkArgument(
+                value instanceof Boolean,
+                "boolean placeholder {%s->} can only be used with a boolean value; %s encountered.",
+                conditional.before(),
+                value.getClass().getName());
+            builder.appendSql(texts.pop());
+            if ((Boolean) value) {
+              builder.appendSql(whitespace().trimFrom(conditional.after()));
+            }
+            return;
+          }
           if (value instanceof Iterable) {
             Iterator<?> elements = ((Iterable<?>) value).iterator();
             checkArgument(elements.hasNext(), "%s cannot be empty list", placeholder);

mug-guava/src/test/java/com/google/mu/safesql/SafeQueryTest.java

@@ -142,6 +142,51 @@ public void booleanPlaceholder() {
         .isEqualTo(SafeQuery.of("SELECT * FROM tbl WHERE status in (TRUE, FALSE)"));
   }
 
+  @Test
+  public void conditionalOperator_evaluateToTrue() {
+    boolean showsId = true;
+    assertThat(SafeQuery.of("SELECT {shows_id->id,} name FROM tbl", showsId))
+        .isEqualTo(SafeQuery.of("SELECT id, name FROM tbl"));
+  }
+
+  @Test
+  public void conditionalOperator_evaluateToFalse() {
+    boolean showsId = false;
+    assertThat(SafeQuery.of("SELECT {shows_id->id,} name FROM tbl", showsId))
+        .isEqualTo(SafeQuery.of("SELECT  name FROM tbl"));
+  }
+
+  @Test
+  public void conditionalOperator_nonBooleanArg_disallowed() {
+    IllegalArgumentException thrown =
+        assertThrows(
+            IllegalArgumentException.class,
+            () -> SafeQuery.of("SELECT {shows_id->id,} name FROM tbl", SafeQuery.of("showsId")));
+    assertThat(thrown).hasMessageThat().contains("{shows_id->");
+    assertThat(thrown).hasMessageThat().contains("SafeQuery");
+  }
+
+  @Test
+  public void conditionalOperator_nullArg_disallowed() {
+    Boolean showsId = null;
+    IllegalArgumentException thrown =
+        assertThrows(
+            IllegalArgumentException.class,
+            () -> SafeQuery.of("SELECT {shows_id->id,} name FROM tbl", showsId));
+    assertThat(thrown).hasMessageThat().contains("{shows_id->");
+    assertThat(thrown).hasMessageThat().contains("null");
+  }
+
+  @Test
+  public void conditionalOperator_cannotBeBacktickQuoted() {
+    IllegalArgumentException thrown =
+        assertThrows(
+            IllegalArgumentException.class,
+            () -> SafeQuery.of("SELECT `{shows_id->id}` name FROM tbl", true));
+    assertThat(thrown).hasMessageThat().contains("{shows_id->");
+    assertThat(thrown).hasMessageThat().contains("backtick quoted");
+  }
+
   @Test
   @SuppressWarnings("SafeQueryArgsCheck")
   public void charPlaceholder_notAllowed() {

mug-guava/src/test/java/com/google/mu/safesql/SafeSqlTest.java

@@ -44,6 +44,58 @@ public void singleIntParameter() {
     assertThat(sql.getParameters()).containsExactly(123);
   }
 
+  @Test
+  public void singleBoolParameter() {
+    SafeSql sql = SafeSql.of("select {bool}", true);
+    assertThat(sql.toString()).isEqualTo("select ?");
+    assertThat(sql.getParameters()).containsExactly(true);
+  }
+
+  @Test
+  public void conditionalOperator_evaluateToTrue() {
+    boolean showsId = true;
+    assertThat(SafeSql.of("SELECT {shows_id->id,} name FROM tbl", showsId))
+        .isEqualTo(SafeSql.of("SELECT id, name FROM tbl"));
+  }
+
+  @Test
+  public void conditionalOperator_evaluateToFalse() {
+    boolean showsId = false;
+    assertThat(SafeSql.of("SELECT {shows_id->id,} name FROM tbl", showsId))
+        .isEqualTo(SafeSql.of("SELECT  name FROM tbl"));
+  }
+
+  @Test
+  public void conditionalOperator_nonBooleanArg_disallowed() {
+    IllegalArgumentException thrown =
+        assertThrows(
+            IllegalArgumentException.class,
+            () -> SafeSql.of("SELECT {shows_id->id,} name FROM tbl", SafeQuery.of("showsId")));
+    assertThat(thrown).hasMessageThat().contains("{shows_id->");
+    assertThat(thrown).hasMessageThat().contains("SafeQuery");
+  }
+
+  @Test
+  public void conditionalOperator_nullArg_disallowed() {
+    Boolean showsId = null;
+    IllegalArgumentException thrown =
+        assertThrows(
+            IllegalArgumentException.class,
+            () -> SafeSql.of("SELECT {shows_id->id,} name FROM tbl", showsId));
+    assertThat(thrown).hasMessageThat().contains("{shows_id->");
+    assertThat(thrown).hasMessageThat().contains("null");
+  }
+
+  @Test
+  public void conditionalOperator_cannotBeBacktickQuoted() {
+    IllegalArgumentException thrown =
+        assertThrows(
+            IllegalArgumentException.class,
+            () -> SafeSql.of("SELECT `{shows_id->id}` name FROM tbl", true));
+    assertThat(thrown).hasMessageThat().contains("{shows_id->");
+    assertThat(thrown).hasMessageThat().contains("backtick quoted");
+  }
+
   @Test
   public void backquotedEnumParameter() {
     SafeSql sql = SafeSql.of(