sql escaping backslashes seen as a syntax error

Question

sql escaping backslashes seen as a syntax error

Clément Hallet Oct '15

Created Oct '15	Last Reply Oct '15	Replies 1	Views 426	Votes 0

Clément Hallet 5.7k

Oct '15

Hi,

I'm trying to add a field to the request by using aliases in the columns function (it is not documented but seen here as available)

$this->modelsManager->createBuilder()
  ->addFrom('User')
  ->leftJoin('UserDisable', 'User.id = UserDisable.user_id')
  ->columns(array('User.*', 'User.disabled' => 'UserDisable.user_id IS NOT NULL'))
  ->getQuery()
  ->execute();

leading to an error :

Syntax error, unexpected token DOT, near to 'disabled FROM [User] LEFT JOIN [UserDisable] ON User.id = UserDisable.user_id', when parsing: SELECT User.*, UserDisable.user_id IS NOT NULL AS User.disabled FROM [User] LEFT JOIN [UserDisable] ON User.id = UserDisable.user_id

This one is perfectly expected as it would be the same from the SQL engine.

Though, the right way to do it in SQL would be to add escaping backquotes :

$this->modelsManager->createBuilder()
  ->addFrom('User')
  ->leftJoin('UserDisable', 'User.id = UserDisable.user_id')
  ->columns(array('User.*', '`User.disabled`' => 'UserDisable.user_id IS NOT NULL'))
  ->getQuery()
  ->execute();

But unfortunately, it seems they are not recognized by the ORM :

Scanning error before 'User.disabled` F...' when parsing: SELECT User.*, UserDisable.user_id IS NOT NULL AS `User.disabled` FROM [User] LEFT JOIN [UserDisable] ON User.id = UserDisable.user_id

Would there be an other way to do it, or to specify the query scanner this characters are allowed ?

Andres Gutierrez
34.6k

Accepted
answer

edited Oct '15
Oct '15

This way:

[User].[disabled]

However, those words don't look like they need escaping, in this case if you check the generated sql you will see that all identifiers are properly escaped according to the database system used

Clément Hallet · Answer 1 · 2015-10-05T06:02:31-07:00

might be a duplicate of https://forum.phalcon.io/discussion/8673/escaping-special-keywords-in-phql, sorry

Clément Hallet · Answer 2 · 2015-10-05T06:13:53-07:00

phalcon escaping chars are not working as well :

$this->modelsManager->createBuilder()
  ->addFrom('User')
  ->leftJoin('UserDisable', 'User.id = UserDisable.user_id')
  ->columns(array('User.*', '[User.disabled]' => 'UserDisable.user_id IS NOT NULL'))
  ->getQuery()
  ->execute();

  Scanning error before 'User.disabled] F...' when parsing: SELECT User.*, UserDisable.user_id IS NOT NULL AS [User.disabled] FROM [User] LEFT JOIN [UserDisable] ON User.id = UserDisable.user_id

$this->modelsManager->createBuilder()
  ->addFrom('User')
  ->leftJoin('UserDisable', 'User.id = UserDisable.user_id')
  ->columns(array('User.*', '[`]User.disabled[`]' => 'UserDisable.user_id IS NOT NULL'))
  ->getQuery()
  ->execute();

  Scanning error before '`]User.disabled[...' when parsing: SELECT User.*, UserDisable.user_id IS NOT NULL AS [`]User.disabled[`] FROM [User] LEFT JOIN [UserDisable] ON User.id = UserDisable.user_id

So back to the question : can I use backslashes ` as part of the sql query ?

Clément Hallet · Answer 3 · 2015-10-08T11:06:44-07:00

Clément Hallet
5.7k

Oct '15

Thanks, that looks the most straight way, I should have try it ;)