Comment ambiguous

Author: fogelito

src/Database/Validator/AsQuery.php

@@ -0,0 +1,85 @@
+<?php
+
+namespace Utopia\Database\Validator;
+
+use Utopia\Validator;
+
+class AsQuery extends Validator
+{
+    protected string $message = '"as" must contain at most 64 chars. Valid chars are a-z, A-Z, 0-9, and underscore.';
+
+    /**
+     * @param string $attribute
+     */
+    public function __construct(
+        private readonly string $attribute,
+    )
+    {
+
+    }
+
+    /**
+     * Validator Description.
+     * @return string
+     */
+    public function getDescription(): string
+    {
+        return $this->message;
+    }
+
+    /**
+     * Is valid.
+     * Returns true if valid or false if not.
+     * @param mixed $value
+     * @return bool
+     */
+    public function isValid($value): bool
+    {
+        if (! \is_string($value)) {
+            return false;
+        }
+
+        if (empty($value)) {
+            return true;
+        }
+
+        if (! preg_match('/^[a-zA-Z0-9_]+$/', $value)) {
+            return false;
+        }
+
+        if (\mb_strlen($value) >= 64) {
+            return false;
+        }
+
+        if($this->attribute === '*'){
+            $this->message = 'Invalid "as" on attribute "*"';
+            return false;
+        }
+
+        return true;
+    }
+
+    /**
+     * Is array
+     *
+     * Function will return true if object is array.
+     *
+     * @return bool
+     */
+    public function isArray(): bool
+    {
+        return false;
+    }
+
+    /**
+     * Get Type
+     *
+     * Returns validator type.
+     *
+     * @return string
+     */
+    public function getType(): string
+    {
+        return self::TYPE_STRING;
+    }
+}

src/Database/Validator/Queries/V2.php

@@ -8,6 +8,7 @@
 use Utopia\Database\Query;
 use Utopia\Database\QueryContext;
 use Utopia\Database\Validator\Alias as AliasValidator;
+use Utopia\Database\Validator\AsQuery as AsValidator;
 use Utopia\Database\Validator\Datetime as DatetimeValidator;
 use Utopia\Database\Validator\Query\Cursor;
 use Utopia\Database\Validator\Query\Limit;
@@ -134,6 +135,8 @@ public function isValid($value, string $scope = ''): bool
                 throw new \Exception('Queries count is greater than '.$this->maxQueriesCount);
             }
 
+            $ambiguous = [];
+            $duplications = [];
             foreach ($value as $query) {
                 if (!$query instanceof Query) {
                     try {
@@ -212,8 +215,6 @@ public function isValid($value, string $scope = ''): bool
                     case Query::TYPE_INNER_JOIN:
                     case Query::TYPE_LEFT_JOIN:
                     case Query::TYPE_RIGHT_JOIN:
-                        var_dump('=== Query::TYPE_JOIN ===');
-                        var_dump($query);
                         $this->validateFilterQueries($query);
 
                         if (! self::isValid($query->getValues(), 'joins')) {
@@ -233,8 +234,6 @@ public function isValid($value, string $scope = ''): bool
                             throw new \Exception('Invalid query: Relations are only valid within joins.');
                         }
 
-                        var_dump('=== Query::TYPE_RELATION ===');
-                        var_dump($query);
                         $this->validateAttributeExist($query->getAttribute(), $query->getAlias());
                         $this->validateAttributeExist($query->getAttributeRight(), $query->getRightAlias());
 
@@ -254,8 +253,43 @@ public function isValid($value, string $scope = ''): bool
 
                         break;
                     case Query::TYPE_SELECT:
+                        $validator = new AsValidator($query->getAttribute());
+
+                        if (! $validator->isValid($query->getAs())) {
+                            throw new \Exception('Invalid Query Select: '.$validator->getDescription());
+                        }
+
                         $this->validateSelect($query);
 
+                        if($query->getAttribute() === '*'){
+                            $collection = $this->context->getCollectionByAlias($query->getAlias());
+                            $attributes = $this->schema[$collection->getId()];
+                            foreach ($attributes as $attribute){
+                                if (($duplications[$query->getAlias()][$attribute['$id']] ?? false) === true){
+                                    //throw new \Exception('Ambiguous column using "*" for "'.$query->getAlias().'.'.$attribute['$id'].'"');
+                                }
+
+                                $duplications[$query->getAlias()][$attribute['$id']] = true;
+                            }
+                        } else {
+                            if (($duplications[$query->getAlias()][$query->getAttribute()] ?? false) === true){
+                                //throw new \Exception('Duplicate Query Select on "'.$query->getAlias().'.'.$query->getAttribute().'"');
+                            }
+                            $duplications[$query->getAlias()][$query->getAttribute()] = true;
+                        }
+
+                        if (!empty($query->getAs())){
+                            $needle = $query->getAs();
+                        } else {
+                            $needle = $query->getAttribute(); // todo: convert internal attribute from $id => _id
+                        }
+
+                        if (in_array($needle, $ambiguous)){
+                            //throw new \Exception('Invalid Query Select: ambiguous column "'.$needle.'"');
+                        }
+
+                        $ambiguous[] = $needle;
+
                         break;
                     case Query::TYPE_ORDER_ASC:
                     case Query::TYPE_ORDER_DESC:
@@ -274,6 +308,7 @@ public function isValid($value, string $scope = ''): bool
                         throw new \Exception('Invalid query: Method not found ');
                 }
             }
+
         } catch (\Throwable $e) {
             $this->message = $e->getMessage();
             var_dump($this->message);
@@ -336,6 +371,13 @@ protected function isEmpty(array $values): bool
      */
     protected function validateAttributeExist(string $attributeId, string $alias): void
     {
+        /**
+         * This is for making query::select('$permissions')) pass
+         */
+        if($attributeId === '$permissions' || $attributeId === '$collection'){
+            return;
+        }
+
         var_dump('=== validateAttributeExist');
 
         //        if (\str_contains($attributeId, '.')) {
@@ -507,82 +549,44 @@ protected function validateValues(string $attributeId, string $alias, array $val
      */
     public function validateSelect(Query $query): void
     {
+        $asValidator = new AsValidator($query->getAttribute());
+        if (! $asValidator->isValid($query->getAs())) {
+            throw new \Exception('Query '.\ucfirst($query->getMethod()).': '.$asValidator->getDescription());
+        }
+
         $internalKeys = \array_map(
             fn ($attr) => $attr['$id'],
             Database::INTERNAL_ATTRIBUTES
         );
 
-        foreach ($query->getValues() as $attribute) {
-            $alias = Query::DEFAULT_ALIAS; // todo: Fix this
+        $attribute = $query->getAttribute();
 
-            var_dump($attribute);
+        if ($attribute === '*') {
+            return;
+        }
 
-            /**
-             * Special symbols with `dots`
-             */
+        if (\in_array($attribute, $internalKeys)) {
+            //return;
+        }
+
+        $alias = $query->getAlias();
+
+        if (\str_contains($attribute, '.')) {
             if (\str_contains($attribute, '.')) {
                 try {
+                    /**
+                     * Special symbols with `dots`
+                     */
                     $this->validateAttributeExist($attribute, $alias);
-
-                    continue;
-
                 } catch (\Throwable $e) {
                     /**
                      * For relationships, just validate the top level.
                      * Will validate each nested level during the recursive calls.
                      */
                     $attribute = \explode('.', $attribute)[0];
+                    $this->validateAttributeExist($attribute, $alias);
                 }
             }
-
-            /**
-             * Skip internal attributes
-             */
-            if (\in_array($attribute, $internalKeys)) {
-                continue;
-            }
-
-            if ($attribute === '*') {
-                continue;
-            }
-
-            $this->validateAttributeExist($attribute, $alias);
-        }
-    }
-
-    /**
-     * @throws \Exception
-     */
-    public function validateSelections(Query $query): void
-    {
-        $internalKeys = \array_map(fn ($attr) => $attr['$id'], Database::INTERNAL_ATTRIBUTES);
-
-        $alias = $query->getAlias();
-        $attribute = $query->getAttribute();
-
-        /**
-         * Special symbols with `dots`
-         */
-        if (\str_contains($attribute, '.')) {
-            try {
-                $this->validateAttributeExist($attribute, $alias);
-
-                return;
-            } catch (\Throwable $e) {
-                /**
-                 * For relationships, just validate the top level.
-                 * Will validate each nested level during the recursive calls.
-                 */
-                $attribute = \explode('.', $attribute)[0];
-            }
-        }
-
-        if (\in_array($attribute, $internalKeys)) {
-            return;
-        }
-
-        if ($attribute === '*') {
-            return;
         }
 
         $this->validateAttributeExist($attribute, $alias);

tests/e2e/Adapter/Base.php

@@ -18,11 +18,11 @@
 
 abstract class Base extends TestCase
 {
+    //use JoinsTests;
     use CollectionTests;
     use DocumentTests;
     use AttributeTests;
     use IndexTests;
-    use JoinsTests;
     use PermissionTests;
     use RelationshipTests;
     use GeneralTests;