{var%20f='http://v.t.sina.com.cn/share/share.php?appkey=1515056452',u=z||d.location,p=['&url=',e(u),'&title=',e(t||d.title),'&source=',e(r),'&sourceUrl=',e(l),'&content=',c||'gb2312','&pic=',e(p||'')].join('');function%20a(){if(!window.open([f,p].join(''),'mb',['toolbar=0,status=0,resizable=1,width=440,height=430,left=',(s.width-440)/2,',top=',(s.height-430)/2].join('')))u.href=[f,p].join('');};if(/Firefox/.test(navigator.userAgent))setTimeout(a,0);else%20a();})(screen,document,encodeURIComponent,'','','https://www.manongdao.com/data/attach/logo/logo.png', '推荐 SAY GOODBYE 的问题《How to parse / tokenize an SQL statement in Node.j》','https://www.manongdao.com/q-471443.html','页面编码gb2312|utf-8默认gb2312'));){kind=link}
I'm looking for a way to parse / tokenize SQL statement within a Node.js application, in order to:
- Tokenize all the "basics" SQL keywords defined in the ISO/IEC 9075 standard or here.
- Validate the SQL syntax.
- Find out what the query is gonna do (e.g. read or write?).
Do you have any solution or advises peeps?
Linked: Any Javascript/Jquery Library To validate SQL statment?
I've done research and I found out some ways to do it:
Using existing node.js libraries
I did a Google search and I didn't found a consensual and popular library to use. I found those ones:
- simple-sql-parser (22 stars on github, 16 daily download on npm)
- Supports only SELECT, INSERT, UPDATE and DELETE
- There is a v2 branch on the road
- sql-parser (90 stars on github, 6 daily downloads on npm)
- Only supports basic SELECT statements
- Based on jison
- sqljs (17 stars on github, 5 daily downloads on npm)
- v0.0.0-3, under development... No documentation at all :)
Unfortunately, none of those libraries seams to be complete and trustful.
Doing it myself based on a node.js low level tokenizer library
I can do it my self with a low level tokenizer library like:
- jison (1,457 stars on github, 240 daily downloads on npm)
- tokenizer (44 stars on github, 10 daily downloads on npm)
Doing it myself based on existing Javascript code beautifier
CodeMirror is a pretty cool Javascript library (browser side) that can recognize SQL keywords, strings, etc. Check ou the demo.
I can build a node.js library tokenizer based on CodeMirror. The SQL mode is here on github, I can maybe adapt it to get tokens within a node application.
PS: CodeMirror have 5,046 stars on github and is well maintained.
I figured out that there are 2 distinct problems: Tokenization and Syntax validation (which is related to tokenization).
I made myself a SQL tokenizer for Node.js based on the SQL mode of the excellent CodeMirror (5,046 stars on github, well maintained). CodeMirror's SQL mode take in charge "generic" SQL and some SQL particularities like MSSQL, MySQL, PL/SQL, Cassandra, Hive and MariaDB.
When my project will be mature enough, I will (probably) put it public on GitHub and let you know.
About the SQL syntax validation, I found no JavaScript tool (or open source project to adapt in JS) yet...
Good luck.
You didn't mention which SQL, but most of the production SQL languages are huge (check out PL/SQL ignoring the Ada part), complicated and not the same so you'll have to worry about dialect variants, too. You are facing building a full SQL front end to do what you want; the incompleteness of other parsers you found is a hint about the level of effort it takes to do this.
After you get the parser part right, then you'll have to do a symbol table and type analysis (meaning of every symbol) before you can begin to find out what a SQL query reads or writes (consider determining columns read by SELECT * from .. ...).
I understand there are commercial SQL parsers out there. You might consider using one of those.
I recently published the
sql-astpackage, which parses SQL scripts and returns an array of AST nodes. (I couldn't find anything similar that's maintained)It's very limited at the moment. I've only implemented what I need from it. If you have time, please contribute. I've tried hard to make the codebase understandable.
Give it a star if you're interested in seeing it developed further. I will update this answer as the library is improved.
You can look at the SQLite/WebSQL JavaScript parser and Jison grammar file, which can be used for verification tool.
Now it supports full SQLite/WebSQL syntax, and can be modified for other SQL syntax.
If you want to develop your own SQL parser, I'll recommend a PEG design parser. I've used a PEG parser for a compile-to-js/compile-to-c language, and it resulted into a much clear and easy to mantain code. Check: https://github.com/luciotato/LiteScript
You can start from LiteScript parser if: a) this parser is a important part of your application, b) eventually you'll need native-exe-speed parsing.
But if this is not a important part of the application you're developing, contributing to a existent specific sql parser could be the best choice.