Magical sql
operator 🪄
When working with an ORM library, there may be cases where you find it challenging to write a specific query using the provided ORM syntax. In such situations, you can resort to using raw queries, which involve constructing a query as a raw string. However, raw queries often lack the benefits of type safety and query parameterization.
To address this, many libraries have introduced the concept of an sql
template. This template
allows you to write more type-safe and parameterized queries, enhancing the overall safety and
flexibility of your code. Drizzle, being a powerful ORM library, also supports the sql template.
With Drizzle’s sql
template, you can go even further in crafting queries. If you encounter
difficulties in writing an entire query using the library’s query builder, you can selectively
use the sql
template within specific sections of the Drizzle query. This flexibility enables you
to employ the sql template in partial SELECT statements, WHERE clauses, ORDER BY clauses, HAVING
clauses, GROUP BY clauses, and even in relational query builders.
By leveraging the capabilities of the sql template in Drizzle, you can maintain the advantages of type safety and query parameterization while achieving the desired query structure and complexity. This empowers you to create more robust and maintainable code within your application.
sql“ template
One of the most common usages you may encounter in other ORMs as well
is the ability to use sql
queries as-is for raw queries.
It will generate the current query
Any tables and columns provided to the sql parameter are automatically mapped to their corresponding SQL syntax with escaped names for tables, and the escaped table names are appended to column names.
Additionally, any dynamic parameters such as ${id}
will be mapped to the $1 placeholder,
and the corresponding values will be moved to an array of values that are passed separately to the database.
This approach effectively prevents any potential SQL Injection vulnerabilities.
sql<T>
Please note that sql<T>
does not perform any runtime mapping. The type you define using sql<T>
is
purely a helper for Drizzle. It is important to understand that there is no feasible way to
determine the exact type dynamically, as SQL queries can be highly versatile and customizable.
You can define a custom type in Drizzle to be used in places where fields require a specific type other than unknown
.
This feature is particularly useful in partial select queries, ensuring consistent typing for selected fields:
sql``.mapWith()
For the cases you need to make a runtime mapping for values passed from database driver to drizzle you can use .mapWith()
This function accepts different values, that will map response in runtime.
You can replicate a specific column mapping strategy as long as the interface inside mapWith is the same interface that is implemented by Column.
You can also pass your own implementation for the DriverValueDecoder
interface:
sql``.as<T>()
In different cases, it can sometimes be challenging to determine how to name a custom field that you want to use. You may encounter situations where you need to explicitly specify an alias for a field that will be selected. This can be particularly useful when dealing with complex queries.
To address these scenarios, we have introduced a helpful .as('alias_name')
helper, which allows
you to define an alias explicitly. By utilizing this feature, you can provide a clear and meaningful
name for the field, making your queries more intuitive and readable.
sql.raw()
There are cases where you may not need to create parameterized values from input or map tables/columns to escaped ones.
Instead, you might simply want to generate queries as they are. For such situations, we provide the sql.raw()
function.
The sql.raw()
function allows you to include raw SQL statements within your queries without any additional processing or escaping.
This can be useful when you have pre-constructed SQL statements or when you need to incorporate complex or dynamic
SQL code directly into your queries.
You can also utilize sql.raw()
within the sql function, enabling you to include any raw string
without escaping it through the main sql
template function.
By using sql.raw()
inside the sql
function, you can incorporate unescaped raw strings
directly into your queries. This can be particularly useful when you have specific
SQL code or expressions that should remain untouched by the template function’s automatic escaping or modification.
sql.fromList()
The sql
template generates sql chunks, which are arrays of SQL parts that will be concatenated
into the query and params after applying the SQL to the database or query in Drizzle.
In certain scenarios, you may need to aggregate these chunks into an array using custom business logic and then concatenate them into a single SQL statement that can be passed to the database or query. For such cases, the fromList function can be quite useful.
The fromList function allows you to combine multiple SQL chunks into a single SQL statement. You can use it to aggregate and concatenate the individual SQL parts according to your specific requirements and then obtain a unified SQL query that can be executed.
sql.join()
Indeed, the sql.join
function serves a similar purpose to the fromList helper.
However, it provides additional flexibility when it comes to handling spaces between
SQL chunks or specifying custom separators for concatenating the SQL chunks.
With sql.join
, you can concatenate SQL chunks together using a specified separator.
This separator can be any string or character that you want to insert between the chunks.
This is particularly useful when you have specific requirements for formatting or delimiting the SQL chunks. By specifying a custom separator, you can achieve the desired structure and formatting in the final SQL query.
sql.append()
If you have already generated SQL using the sql
template, you can achieve the same behavior as fromList
by using the append function to directly add a new chunk to the generated SQL.
By using the append function, you can dynamically add additional SQL chunks to the existing SQL string, effectively concatenating them together. This allows you to incorporate custom logic or business rules for aggregating the chunks into the final SQL query.
sql.empty()
By using sql.empty(), you can start with a blank SQL object and then dynamically append SQL chunks to it as needed. This allows you to construct the SQL query incrementally, applying custom logic or conditions to determine the contents of each chunk.
Once you have initialized the SQL object using sql.empty(), you can take advantage of the full range of sql template features such as parameterization, composition, and escaping. This empowers you to construct the SQL query in a flexible and controlled manner, adapting it to your specific requirements.
Convert sql
to string and params
In all the previous examples, you observed the usage of SQL template syntax in TypeScript along with the generated SQL output.
If you need to obtain the query string and corresponding parameters generated from the SQL template, you must specify the database dialect you intend to generate the query for. Different databases have varying syntax for parameterization and escaping, so selecting the appropriate dialect is crucial.
Once you have chosen the dialect, you can utilize the corresponding implementation’s functionality to convert the SQL template into the desired query string and parameter format. This ensures compatibility with the specific database system you are working with.
sql
select
You can use the sql functionality in partial select queries as well. Partial select queries allow you to retrieve specific fields or columns from a table rather than fetching the entire row.
For more detailed information about partial select queries, you can refer to the Core API documentation available at Core API docs.
Select different custom fields from table
Here you can see a usage for sql<T>
, sql``.mapWith()
, sql``.as<T>()
.
sql
in where
Indeed, Drizzle provides a set of available expressions that you can use within the sql template. However, it is true that databases often have a wider range of expressions available, including those provided through extensions or other means.
To ensure flexibility and enable you to utilize any expressions that are not natively supported by Drizzle, you have the freedom to write the SQL template directly using the sql function. This allows you to leverage the full power of SQL and incorporate any expressions or functionalities specific to your target database.
By using the sql template, you are not restricted to only the predefined expressions in Drizzle. Instead, you can express complex queries and incorporate any supported expressions that the underlying database system provides.
Filtering by id
but with sql
Advanced fulltext search where statement
sql
in orderBy
The sql
template can indeed be used in the ORDER BY clause when you need specific functionality for ordering that is not
available in Drizzle, but you prefer not to resort to raw SQL.
sql
in having and groupBy
The sql
template can indeed be used in the HAVING and GROUP BY clauses when you need specific functionality for ordering that is not
available in Drizzle, but you prefer not to resort to raw SQL.