Skip to content

FIREFLY-59: Filtering fail when value contains semicolon #828

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Merged
merged 2 commits into from
Jun 26, 2019
Merged

FIREFLY-59: Filtering fail when value contains semicolon #828

Show file tree
Hide file tree
Changes from all commits
Commits
Show all changes
2 commits
Select commit Hold shift + click to select a range
4b3ba27
FIREFLY-59: Filtering fail when value contains semicolon
loitly Jun 20, 2019
7cf323a
FIREFLY-59: fix IpacTableTest failing
loitly Jun 20, 2019
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
6 changes: 4 additions & 2 deletions src/firefly/java/edu/caltech/ipac/firefly/data/TableServerRequest.java
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -20,6 +20,7 @@ public class TableServerRequest extends ServerRequest implements Serializable, C

public static final String TBL_FILE_PATH = "tblFilePath"; // this meta if exists contains source of the data
public static final String TBL_FILE_TYPE = "tblFileType"; // this meta if exists contains storage type, ipac, h2, sqlite, etc
public static final String FILTER_SEP = "_AND_"; // need to match what's defined in FilterInfo.js

public static final String TBL_ID = "tbl_id";
public static final String TITLE = "title";
Expand All @@ -42,6 +43,7 @@ public class TableServerRequest extends ServerRequest implements Serializable, C
private Map<String, String> metaInfo;
private transient Map<String, String> metaOptions; // options to apply for this request. it will not persist nor returned to the client


public TableServerRequest() {
}

Expand Down Expand Up @@ -251,12 +253,12 @@ public int hashCode() {

public static List<String> parseFilters(String s) {
if (StringUtils.isEmpty(s)) return null;
String[] filters = s.split(";");
String[] filters = s.split(FILTER_SEP);
return Arrays.asList(filters);
}

public static String toFilterStr(List<String> l) {
return StringUtils.toString(l,";");
return StringUtils.toString(l,FILTER_SEP);
}

/**
Expand Down
22 changes: 13 additions & 9 deletions src/firefly/java/edu/caltech/ipac/firefly/server/db/BaseDbAdapter.java
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -132,16 +132,20 @@ public String selectPart(TableServerRequest treq) {
public String wherePart(TableServerRequest treq) {
String where = "";
if (treq.getFilters() != null && treq.getFilters().size() > 0) {
where = "";
for (String cond :treq.getFilters()) {
if (cond.matches("(?i).* LIKE .*(\\\\_|\\\\%|\\\\\\\\).*")) { // search for LIKE with \_, \%, or \\ in the condition.
// for LIKE, to search for '%', '\' or '_' itself, an escape character must also be specified using the ESCAPE clause
cond += " ESCAPE '\\'";
}
String[] parts = StringUtils.groupMatch("(.+) IN (.+)", cond, Pattern.CASE_INSENSITIVE);
if (parts != null && cond.contains(NULL_TOKEN)) {
cond = String.format("%s OR %s IS NULL", cond.replace(NULL_TOKEN, NULL_TOKEN.substring(1)), parts[0]);
}
cond = Arrays.stream(cond.split("(?i)(?= and | or )")) // because each filter may contains multiple conditions... apply cleanup logic to each one.
.map(eCond -> {
if (eCond.matches("(?i).* LIKE .*(\\\\_|\\\\%|\\\\\\\\).*")) { // search for LIKE with \_, \%, or \\ in the condition.
// for LIKE, to search for '%', '\' or '_' itself, an escape character must also be specified using the ESCAPE clause
eCond += " ESCAPE '\\'";
}
String[] parts = StringUtils.groupMatch("(.+) IN (.+)", eCond, Pattern.CASE_INSENSITIVE);
if (parts != null && eCond.contains(NULL_TOKEN)) {
eCond = String.format("%s OR %s IS NULL", eCond.replace(NULL_TOKEN, NULL_TOKEN.substring(1)), parts[0]);
}
return eCond;
}).collect(Collectors.joining(""));

if (where.length() > 0) {
where += " and ";
}
Expand Down
138 changes: 87 additions & 51 deletions src/firefly/js/tables/FilterInfo.js
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -11,20 +11,27 @@ const operators = /(!=|>=|<=|<|>|=| like | in | is not | is )/i;

export const FILTER_CONDITION_TTIPS =
`Valid values are one of (=, >, <, !=, >=, <=, LIKE, IS, IS NOT) followed by a value separated by a space.
Or 'IN', followed by a list of values separated by commas.
Examples: > 12345; != 3000; IN a,b,c,d`;
Or 'IN', followed by a list of values separated by commas.
You may combine conditions with either 'and' or 'or'.
Examples: > 12345 or != 3000 and IN a,b,c,d`;

export const FILTER_TTIPS =
`Conditional statements in the form of "column_name" operator value separated by semicolon.
* operator is one of =, >, <, !=, >=, <=, LIKE, IN, IS, IS NOT
* column_name must be enclosed in double quotes
* string value must be enclosed in single quotes
* when IN is used, enclose the values in parentheses
Examples: "ra" > 12345; "color" != 'blue'; "band" IN (1,2,3)
* you may combine conditions with either 'and' or 'or'
* grouping by parentheses is not supported at the moment
Examples: "ra" > 12345 and "color" != 'blue' or "band" IN (1,2,3)
`;

export const NULL_TOKEN = '%NULL'; // need to match DbAdapter.NULL_TOKEN

const COND_SEP = new RegExp('( and | or )', 'i');
const FILTER_SEP = '_AND_'; // internal use need to match what's defined in TableServerRequest.FILTER_SEP


/**
* return [column_name, operator, value] triplet.
* @param {string} input
Expand Down Expand Up @@ -71,12 +78,17 @@ export class FilterInfo {
*/
static parse(filterString) {
const filterInfo = new FilterInfo();
filterString && filterString.split(';').forEach( (v) => {
const [cname, op, val] = parseInput(v, {removeQuotes: true});
if (cname && op) {
filterInfo.addFilter(cname, `${op} ${val}`);
if (filterString) {
filterString.split(FILTER_SEP).forEach( (filter) => {
const parts = filter.split(COND_SEP);
for (let i = 0; i < parts.length; i+=2) {
const [cname, op, val] = parseInput(parts[i], {removeQuotes: true});
if (cname && op) {
filterInfo.addFilter(cname, `${op} ${val}`, parts[i-1]);
}
}
});
}
return filterInfo;
}

Expand All @@ -89,18 +101,20 @@ export class FilterInfo {
*/
static autoCorrectFilter(filterInfo, columns) {
if (filterInfo) {
const filters = filterInfo.split(';').map( (v) => {
const [cname, op, val] = parseInput(v);
if (!cname) return v;
let isNumeric = false;
if (columns) {
const col = columns.find((c) => c.name === cname);
// assume all expressions are numeric
isNumeric = !col || isNumericType(col);
const parts = filterInfo.split(COND_SEP);
for (let i = 0; i < parts.length; i += 2) {
const [cname, op, val] = parseInput(parts[i]);
if (cname) {
let isNumeric = false;
if (columns) {
const col = columns.find((c) => c.name === cname);
// assume all expressions are numeric
isNumeric = !col || isNumericType(col);
}
parts[i] = `${cname} ${autoCorrectCondition(op + ' ' + val, isNumeric)}`;
}
return `${cname} ${autoCorrectCondition(op + ' ' + val, isNumeric)}`;
});
return filters.join(';');
}
return parts.join('');
} else {
return filterInfo;
}
Expand All @@ -112,10 +126,14 @@ export class FilterInfo {
* @returns {boolean}
*/
static isConditionValid(conditions) {
return !conditions || conditions.split(';').reduce( (rval, v) => {
const [cname, op, val] = parseInput(v);
return Boolean(rval && op && val && !cname);
}, true);
if (conditions) {
const parts = conditions.split(COND_SEP);
for (let i = 0; i < parts.length; i += 2) {
const [cname, op, val] = parseInput(parts[i]);
if (cname || !op || !val) return false;
}
}
return true;
}

/**
Expand Down Expand Up @@ -148,23 +166,24 @@ export class FilterInfo {
* @returns {Array.<boolean, string>} isValid plus an error message if isValid is false.
*/
static isValid(filterInfo, columns = []) {
const rval = [true, ''];
const allowCols = columns.concat({name:'ROW_IDX'});
if (filterInfo && filterInfo.trim().length > 0) {
return filterInfo.split(';').reduce( ([isValid, msg], v) => {
const [cname] = parseInput(v);
if (filterInfo) {
let msg = '';
const parts = filterInfo.split(COND_SEP);
for (let i = 0; i < parts.length; i += 2) {
const [cname] = parseInput(parts[i]);
if (!cname) {
msg += `\n"${v}" is not a valid filter.`;
} else if (!allowCols.some( (c) => c.name === cname)) {
const expr = new Expression(cname, allowCols.map((s)=>s.name));
if (!expr.isValid()) {
msg += `\n"${v}" unrecognized column or expression.\n`;
}
msg += `\n"${parts[i]}" is not a valid filter.`;
} else if (!allowCols.some( (c) => c.name === cname)) {
const expr = new Expression(cname, allowCols.map((s)=>s.name));
if (!expr.isValid()) {
msg += `\n"${parts[i]}" unrecognized column or expression.\n`;
}
return [!msg, msg];
}, rval);
}
if (msg) return [false, msg];
}
} else {
return rval;
return [true, ''];
}
}

Expand Down Expand Up @@ -276,35 +295,45 @@ export class FilterInfo {



apply(f) {

}


serialize(formatKey) {
if (!formatKey) {
// add quotes to key if it does not contains quotes
formatKey = (k) => k.includes('"') ? k : `"${k}"`;
}

return Object.entries(this.filters)
.map(([k,v]) => v.split(';')
.filter((f) => f)
.map( (f) => `${formatKey(k)} ${f}`)
.join(';'))
.join(';');
.map(([k,v]) => {
const parts = v.split(COND_SEP);
for (let i = 0; i < parts.length; i += 2) {
parts[i] = `${formatKey(k)} ${parts[i]}`;
}
return parts.join('');
}).join(FILTER_SEP);
}

/**
* add additional conditions to the given column.
* @param colName
* @param conditions
* @param andOr logical operator to prepend to this filter. defautls to 'and'
*/
addFilter(colName, conditions) {
this.filters[colName] = !this.filters[colName] ? conditions : `${this.filters[colName]}; ${conditions}`;
addFilter(colName, conditions, andOr=' and ') {
this.filters[colName] = !this.filters[colName] ? conditions : `${this.filters[colName]}${andOr}${conditions}`;
}

setFilter(colName, conditions) {
Reflect.deleteProperty(this.filters, colName);
if (conditions) {
conditions.split(';').forEach( (v) => {
const [, op, val] = parseInput(v);
if (op) this.addFilter(colName, `${op} ${val}`);
});
const parts = conditions.split(COND_SEP);
for (let i = 0; i < parts.length; i += 2) {
const [, op, val] = parseInput(parts[i]);
if (op) this.addFilter(colName, `${op} ${val}`, parts[i-1]);
}
}
}

Expand Down Expand Up @@ -388,17 +417,21 @@ function likeToRegexp(text) {

/**
* Attempt to auto-correct the given condition(s).
* @param {string} conditions one or more conditions, separated by ';'
* @param {string} conditions one or more conditions, separated by COND_SEP
* @param {string} tbl_id table ID.
* @param {string} cname column name.
* @returns {string}
*/
function autoCorrectConditions(conditions, tbl_id, cname) {
const isNumeric = isNumericType(getColumn(getTblById(tbl_id), cname));
if (conditions) {
return conditions.split(';') // separate them into parts
.map( (v) => autoCorrectCondition(v, isNumeric)) // auto correct if needed
.join(';'); // put them back
const parts = conditions.split(COND_SEP);
for (let i = 0; i < parts.length; i += 2) { // separate them into parts
parts[i] = autoCorrectCondition(parts[i], isNumeric); // auto correct if needed
}
return parts.join(''); // put them back
} else {
return conditions;
}
}

Expand Down Expand Up @@ -468,9 +501,12 @@ function autoCorrectCondition(v, isNumeric=false) {
case '<=':
val = isNumeric && !isNaN(val) ? val : encloseString(val);
break;
case 'is':
case 'is not':
val = 'NULL';
break;

default:
return '';
}
return `${op} ${val}`;
}
Expand Down
3 changes: 2 additions & 1 deletion src/firefly/test/edu/caltech/ipac/firefly/server/util/tables/IpacTableTest.java
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -26,6 +26,7 @@
import java.io.IOException;
import java.util.Arrays;

import static edu.caltech.ipac.firefly.data.TableServerRequest.FILTER_SEP;
import static edu.caltech.ipac.table.JsonTableUtil.getMetaFromAllMeta;

/**
Expand Down Expand Up @@ -84,7 +85,7 @@ public void testJsonTableUtil() throws IOException {
// the request
Assert.assertEquals("meta-info", "test-meta-value", JsonTableUtil.getPathValue(json, "request", TableServerRequest.META_INFO, "test-meta"));
Assert.assertEquals("sort-info", "ASC,ra,dec", JsonTableUtil.getPathValue(json, "request", TableServerRequest.SORT_INFO));
Assert.assertEquals("filter-into", "ra > 0;dec > 0", JsonTableUtil.getPathValue(json, "request", TableServerRequest.FILTERS));
Assert.assertEquals("filter-into", "ra > 0" + FILTER_SEP + "dec > 0", JsonTableUtil.getPathValue(json, "request", TableServerRequest.FILTERS));
Assert.assertEquals("decimate-info", "decimate=ra,dec,1234,0.5,,,,,-1", JsonTableUtil.getPathValue(json, "request", DecimateInfo.DECIMATE_TAG));

// tableMeta
Expand Down