seb-c / kiss-orm Goto Github PK

View Code? Open in Web Editor NEW

470.0 5.0 4.0 282 KB

An extremely simple and explicit ORM for TypeScript

License: MIT License

TypeScript 100.00%

kiss-orm's Introduction

Kiss-ORM

Introduction
Compatibility
Basics
Getting started
Events
Cascade
Scoping
Soft delete
Migrations
Relationships
Eager loading for relationships
Autoloading relationships
Advanced typings
Transactions

Introduction

Kiss-ORM is a new, very opinionated ORM for TypeScript. Here is a description of it's design philosophy:

No query builder (you can use the full power and expressiveness of SQL)
Security: Kiss-ORM allows you to write and concatenate SQL queries without worrying about SQL injections
Fully tested
Sane dependency-injection (and dependencies!)
Data-mapper pattern rather than active-record
Immutability of the objects
No magic. Everything is explicit. No database operation is done unless explicitly requested.
Proper separation of concerns for your repositories
Simplicity: the architecture is ridiculously simple. If you need complex operations, you have the freedom to write it without worries.
No mappings: Kiss-ORM always assumes that the column and JS properties have the same name.

Compatibility

Kiss-ORM is compatible with the following databases:

PostgreSQL, via the pg, pg-format and pg-pool packages that you need to install
MySQL, via the mysql package that you need to install (experimental support)
SQLite, via the sqlite package that you need to install (experimental support)

Basics

Kiss-ORM uses the template-strings tagging feature to secure all the queries.

Here is the basic query syntax:

database.query(sql`
    SELECT *
    FROM "Users"
    WHERE "email" = ${unsafeInputs.email}
    AND "password" = CRYPT(${unsafeInputs.password})
`);

Did you notice the sql tag? This internally transforms the query safely into something like this:

{
    query: 'SELECT * FROM "Users" WHERE "email" = $1 AND "password" = CRYPT($2)',
    params: ['[email protected]', '123456'],
}

For security reasons, the query method does not accept raw strings, so you cannot forget to use the sql tag.

You can also safely include and concatenate queries:

const conditions = sql`"role" = ${'admin'} AND "blocked" = ${false}`;
database.query(sql`SELECT * FROM "Users" WHERE ${conditions};`);

Result:

{
    query: 'SELECT * FROM "Users" WHERE "role" = $1 AND "blocked" = $2',
    params: ['admin', false],
}

Getting started

Installation:

    npm install kiss-orm --save

import {
    sql,
    PgSqlDatabase,
    CrudRepository,
} from 'kiss-orm';

class UserModel {
    public readonly id!: number;
    public readonly email!: string;
    public readonly isBlocked!: boolean;

    // Nullable fields are converted to `null`, not `undefined`.
    public readonly emailVerificationCode!: string|null;
}

class UserRepository extends CrudRepository<UserModel> {
    constructor(database: PgSqlDatabase) {
        super({
            database,
            table: 'Users',
            primaryKey: 'id',
            model: UserModel,
        });
    }
}

// [...]

const db = new PgSqlDatabase({
    // https://node-postgres.com/api/client#new-clientconfig-object
    // https://node-postgres.com/api/pool#new-poolconfig-object
});

// Note: You can alternatively inject a Pool object to the `PgSqlDatabase` constructor if you need.

const repository = new UserRepository(db);

const user = await repository.get(2);
const blockedUsers: User[] = await repository.search(
    sql`"isBlocked" OR "email" LIKE ${'%@' + bannedDomain}`,
    sql`"email" ASC`,
);

const updatedUser = await repository.update(user, {
    isBlocked: false,
});

const newUser = await repository.create({
    email: '[email protected]',
    isBlocked: false,
    emailVerificationCode: null,
});

await repository.delete(user);

await db.disconnect();

Events

There is no specific feature for the events, because the repositories allows you to do it in an explicit way:

class UsersRepository extends CrudRepository<UserModel> {
    public async create(attributes: any): Promise<UserModel> {
        doSomeThingBeforeInsert();
        const user = await super.create(attributes);
        doSomeThingAfterInsert();
        return user;
    }

    public async update(user: UserModel, attributes: any): Promise<UserModel> {
        doSomeThingBeforeUpdate();
        const newUser = await super.update(user, attributes);
        doSomeThingAfterUpdate();
        return newUser;
    }

    public async delete(user: UserModel) {
        doSomeThingBeforeDelete();
        await super.delete(user);
        doSomeThingAfterDelete();
    }
}

Cascade

Cascade operations are not supported by Kiss-ORM, but your database engine does it pretty well already :) .

If you have more complex or specific needs, you will have to specifically implement it with the proper transactions.

Scoping

Scoping allows you to apply a global filter to all SELECT queries.

class AdminUsersRepository extends CrudRepository<UserModel> {
    constructor(database: PgSqlDatabase) {
        super({
            // [...]
            scope: sql`"role" = 'admin'`,
        });
    }
}

Soft delete

Soft-delete can be implemented with the scoping feature

class UsersRepository extends CrudRepository<UserModel> {
    constructor(database: PgSqlDatabase) {
        super({
            // [...]
            scope: sql`NOT("deletedFlag")`,
        });
    }
}

When you do this, the delete method will still trigger a database DELETE operation. If you want to change this behaviour, you can override it:

class UsersRepository extends CrudRepository<UserModel> {
    public async delete(user: UserModel) {
        await this.update(user, { deletedFlag: true });
    }
}

Migrations

Kiss-ORM comes with a simple migration system. You can execute this whenever you want (when your server starts for example). Since this is a Javascript object, you can choose to organize your migrations however you want (for example import it for a big unique file, or split it).

await db.migrate({
    'createUserTable': sql`
        CREATE TABLE "User" (
            "id" UUID PRIMARY KEY NOT NULL,
            "email" TEXT NOT NULL
        );
    `,
    'addUserEmailIndex': sql`
        CREATE UNIQUE INDEX "User_email_index" ON "User"("email");
    `,
});

Relationships

Relationships are defined in the repositories and must be explicitly loaded

one-to-one

class RoleModel {
    // [...]
}

class UserModel {
    // [...]
    public readonly roleId!: number;

    public role?: RoleModel;
}

class RoleRepository extends CrudRepository<RoleModel> {
    // [...]
}

class UserRepository extends CrudRepository<UserModel> {
    // [...]
    async loadRoleRelationship(user: UserModel): Promise<UserModel> {
        return this.createModelFromAttributes({
            ...user,
            role: await (new RoleRepository(this.database)).get(user.roleId),
        });
    }
}

const repository = new UserRepository(database);
let user = await repository.get(1);
// Currently. user.role is `undefined`. You explicitly need to load it
user = await repository.loadRoleRelationship(user);
// `user.role` is now populated with a `RoleModel`.

one-to-many

class RoleModel {
    // [...]
    public users?: ReadonlyArray<UserModel>;
}

class RoleRepository extends CrudRepository<RoleModel> {
    // [...]
    async loadUsersRelationship(role: RoleModel): Promise<RoleModel> {
        return this.createModelFromAttributes({
            ...role,
            users: await (new UserRepository(this.database)).search(sql`"roleId" = ${role.id}`),
        });
    }
}

const repository = new RoleRepository(database);
let role = await repository.get(1);
role = await repository.loadUsersRelationship(role);
// role.users is now populated with an array of `UserModel`

many-to-many

class ArticleModel {
    // [...]
    public readonly authors?: ReadonlyArray<UserModel>;
}

class UserModel {
    // [...]
    public readonly articles?: ReadonlyArray<ArticleModel>;
}

class ArticleRepository extends CrudRepository<ArticleModel> {
    // [...]
    async loadAuthorsRelationship(article: ArticleModel): Promise<ArticleModel> {
        return this.createModelFromAttributes({
            ...article,
            authors: await (new UserRepository(this.database)).search(sql`
                "id" IN (
                    SELECT "userId"
                    FROM "ArticleAuthors"
                    WHERE "articleId" = ${article.id}
                )
            `),
        });
    }
}

class UserRepository extends CrudRepository<UserModel> {
    // [...]
    async loadArticlesRelationship(user: UserModel): Promise<UserModel> {
        return this.createModelFromAttributes({
            ...user,
            articles: await (new AuthorRepository(this.database)).search(sql`
                "id" IN (
                    SELECT "articleId"
                    FROM "ArticleAuthors"
                    WHERE "userId" = ${user.id}
                )
            `),
        });
    }
}

const repository = new UserRepository(database);
let user = await repository.get(1);
user = await repository.loadArticlesRelationship(user);
// `user.articles` is now populated with an array of `ArticleModel`.

const repository = new ArticleRepository(database);
let article = await repository.get(1);
article = await repository.loadAuthorsRelationship(article);
// `user.authors` is now populated with an array of `UserModel`.

Eager loading for relationships

Kiss-ORM only supports lazy-loading (on-demand). If you need something more complex, you should implement the queries specifically.

Autoloading relationships

class UserRepository extends CrudRepository<UserModel> {
    // [...]

    // This function is called everytime an object is created by Kiss-ORM
    // I don't recommend to do this because it will result in a lot of unnecessary queries...
    protected async createModelFromAttributes(attributes: any): Promise<UserModel> {
        const user = super.createModelFromAttributes(attributes);
        await this.loadRoleRelationship(user);
        await this.loadArticlesRelationship(user);
        return user;
    }
}

Advanced typings

By default, the type of the primary key (for the get method) and the parameters of the create and update methods is any, but you can specify it.

When you are using a serial / auto-increment id, you should not specify the id in the properties list.

class UserRepository extends CrudRepository<
    UserModel, // Object returned by the methods
    { email: string, isBlocked: boolean },
    number, // Type of the primary key (id)
> {
    // [...]
}

Handling uuids or automatically filled columns is a bit more tricky, but possible:

type UserParams = {
    uuid: SqlQuery,
    email: string,
    // [...]
    createdAt: Date,
};

type AllowedUserParams = Omit<UserParams, 'id' | 'createdAt'>;

export default class User extends CrudRepository<UserModel, UserParams, string> {
    // [...]

    async create (attributes: AllowedUserParams): Promise<UserModel> {
        return super.create({
            ...attributes,
            uuid: sql`gen_random_uuid()`,
            createdAt: new Date(),
        });
    }
}

Transactions

The sequence method can be used to run transactions. It ensures that all the queries are done on the same connection and that the connection is dedicated (no other async process can execute a query on this connection during the sequence).

await database.sequence(async sequenceDb => {
    await sequenceDb.query(sql`BEGIN;`);
    // [...]
    await sequenceDb.query(sql`COMMIT;`);
});

Note: On SQLite, the sequence function does not give the same guarantees. Since SQLite is local and runs with a single process without a pool of connections, this function is just a wrapper for serialize.

kiss-orm's People

Contributors

Stargazers

Watchers

Forkers

zeta1999 cybernetics mmoo301 akylas

kiss-orm's Issues

How do you handle nullable/optional fields in Create?

I have a model that has a number of nullable fields that should be optional to pass when calling create on the repository:

class UserReportModel {
  public readonly id!: number;
  public readonly projectId!: string;
  public readonly createdAt!: Date;
  public readonly description?: string;
  public readonly version?: string;
}

The id is a serial so I'm doing the suggested removing it from params:

type UserReportParams = Omit<UserReportModel, 'id'>;

class UserReportRepository extends CrudRepository<UserReportModel, UserReportParams, number> {
  constructor(database: PgSqlDatabase) {
    super({
      database,
      table: 'UserReport',
      primaryKey: 'id',
      model: UserReportModel,
    });
  }
}

When I go to create I get type errors:

  await userReportRepository.create({
    projectId: report.ProjectIdentifier,
    createdAt: new Date(),
    description: report.Summary
  });

(property) description: string
Type 'string | undefined' is not assignable to type 'string'.
  Type 'undefined' is not assignable to type 'string'.

Looks like because the create attributes are Required here:
https://github.com/Seb-C/kiss-orm/blob/master/src/Repositories/CrudRepository.ts#L97

Please add support for sqlite and sql.js

To use it in Ionic mobile apps
Thanks

Fix the `update` method loosing relationships

Currently, the update method returns a new object with the new attributes from the database (immutable pattern).

However, since the introduction of the relationships, there is a bug because doing an update after loading a relationship would return an object without the relationships, which is unexpected.

Add a default value to `sqlJoin`

It would be useful for the current sqlJoin function (SqlQuery.join) to have a default value for the second argument (separator) since I expect it to be a comma most of the time.

Eager-loading

During a discussion on HN I had an interesting idea on how to implement a basic but useful eager-loading in kiss-orm.

I want to see what can be achieved.

https://news.ycombinator.com/item?id=24371160

CrudRepository is postgres only

here you use RETURNING which for example wont work with sqlite.
Is CrudRepository meant to be postgres only?

PgSqlDatabase always loaded

If you use the lib in its current state PgSqlDatabase is always loaded. It is an issue when you dont use it but use another Database.
In my case my app cant load because of deep dependencies of postgres which wont work in my environment.
I tried to import what i needed using kiss-orm/dist/Queries/SqlQuery to try and prevent the require of PgSqlDatabase here but it wont work because you require the index here
So could you not import/export from index.ts ? Or if you prefer not import .. from anywhere else?

Add MySQL support

Consider moving the `pg` package to a peer-dependency

For the v2.0.0, which will be able to have other databases.

Update dependencies

Since I am introducing breaking changes in the future v2.0.0, I want to also update all dependencies to the latest versions.

es2017 build

Could you make you plugin compatible with es2017?
You could use rollup to do that. It is pretty easy to setup build for esm and es5
https://stackoverflow.com/questions/63441311/rollup-esm-and-umd-builds-with-typescript-plugin-and-declarations-not-possible

Add a changelog

I want to implement a basic CHANGELOG file (including the history until now)

Improve the documentation about handling `null` values

While answering #8, I just noticed that the documentation lacked information about the handling of nullable values with TypeScript, so I want to improve that.

Design flaw with the sequence method

Currently, the sequence method guarantees the integrity of a transaction:

await this.database.sequence(async query => {
    await query(sql`BEGIN;`);
    await query(sql`INSERT INTO ...;`);
    // [...]
    await query(sql`COMMIT;`);
});

However, this is only true as long as the given query function is used. Directly using the database or the repository methods would cause the query to be executed outside the scope of the sequence:

await this.database.sequence(async query => {
    await query(sql`BEGIN;`);
    await this.create(/* ... */);
    await query(sql`COMMIT;`);
});

Can't use parameter when searching JSONB column

Hi, I'm trying to use a parameter to search a JSONB column (named fields in this case) that has an array of name/value objects.

If I specify the value I'm searching for directly it works:

  const results = await db.query(sql`
select * from "UserReport" where "fields" @> '[{"Name": "Category", "Value": "Performance"}]'
  `);

But when I try to use a parameter to specify what I'm searching for I get an error.

  const results = await db.query(sql`
select * from "UserReport" where "fields" @> '[{"Name": "Category", "Value": "${req.query.category}"}]'
  `);```

error: bind message supplies 1 parameters, but prepared statement "" requires 0```

Error directly from the db:

db_1      | 2020-12-28 04:03:24.099 UTC [74] ERROR:  bind message supplies 1 parameters, but prepared statement "" requires 0
db_1      | 2020-12-28 04:03:24.099 UTC [74] STATEMENT:
db_1      |     select * from "UserReport" where "fields" @> '[{"Name": "Category", "Value": "$1"}]'
db_1      |

I've done quite a bit of different quoting alternatives and also made sure all the parameters are there by logging them out in the queryPoolOrClient function and they're there so I'm not sure what's going on.

Thanks for the package and taking a look!

Add a CI script to run the tests

Recommend Projects

React

A declarative, efficient, and flexible JavaScript library for building user interfaces.
Vue.js

🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
Typescript

TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
TensorFlow

An Open Source Machine Learning Framework for Everyone
Django

The Web framework for perfectionists with deadlines.
Laravel

A PHP framework for web artisans
D3

Bring data to life with SVG, Canvas and HTML. 📊📈🎉

Recommend Topics

javascript

JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
web

Some thing interesting about web. New door for the world.
server

A server is a program made to process requests and deliver data to clients.
Machine learning

Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
Visualization

Some thing interesting about visualization, use data art
Game

Some thing interesting about game, make everyone happy.

Recommend Org

Facebook

We are working to build community through open source technology. NB: members must have two-factor auth.
Microsoft

Open source projects and samples from Microsoft.
Google

Google ❤️ Open Source for everyone.
Alibaba

Alibaba Open Source for everyone
D3

Data-Driven Documents codes.
Tencent

China tencent open source team.