Where to keep queries

rkolbe

So I have a web app I'm working on and I am wondering what all of you do for SQL queries and where you store them.

I am using PHPs PDO class and currently am building on a MySQL backend.

I have many queries that I will run at different sections of my code. I want to keep everything centralized (the queries) but am unsure (design wise) where to store them. I was thinking of putting all of the queries in an associative array so that they could be accessed by their name such as:

$sql = array('GET_ALL_USERS' => 'SELECT FROM users', 'SELECT_USER' => 'SELECT FROM users WHERE id = ?');

Is there a better practiced way I should go about?

bradgrafelman

Perhaps using a stored procedure would make sense here?

nemonoman

A technique I use is to make these sorts of queries into functions, which I store in a single file (i.e 'include "queries.php"😉.

function username($id){
 return "SELECT name FROM users WHERE id=$id";
}

$usernameresult=mysql_query(username($id));

Roger_Ramjet

Since you are using PDO one assumes you are using prepared statements so a function is not really going to suit. Now you can store those statements any number of ways; in an array, as simple string vars, or even as individual query classes.

Probably individual strings is the least complex solution and it requires less processing than using an associative array just to store the same query strings.

<?php   // queries.php
$query1 = "SELECT col1, col2, col3 FROM table1 WHERE col1 = ?";
$query2 = "SELECT col1, col2 FROM table1 INNER JOIN table2 WHERE col1 = ? AND col2 = ?";
?>

<?php  // page1.php
require_once('dbclass.php');
require_once('queries.php');

// connect etc

$params = array($_POST['id']);
$stmt = $db->prepare($query1);
$stmt->execute($params);

Now I personally a PDO prepared statement class that I use for this: just pass the query string and params array to the class and call the other methods to return results, rowcount etc.

rkolbe

Roger Ramjet,

That is where I am going with this all...I was just curious as to what other people do and if there was a "better" way to store the queries.

Thanks!

MarkR

Storing the queries centrally in this manner appears to confer no particular advantage.

Personally I'd do them as and when it was required, and not store the SQL text in a central place.

Creating views in SQL however is a good idea. Views enable you to build "saved queries", thus simplifying the SQL you need to use in the application.

My rule would be to use views if you seemed to be doing queries which needed it, but not go over the top: One good tip is never create a view of a view (This leads to problems upgrading your scripts).

Views are stored in the database but don't store any data themselves, so they can safely be migrated by dropping them all and recreating them all on upgrade. This process can be automated by your installer if your build process mandates it.

Mark

rkolbe

MarkR wrote:
Storing the queries centrally in this manner appears to confer no particular advantage.

Personally I'd do them as and when it was required, and not store the SQL text in a central place.

Creating views in SQL however is a good idea. Views enable you to build "saved queries", thus simplifying the SQL you need to use in the application.

My rule would be to use views if you seemed to be doing queries which needed it, but not go over the top: One good tip is never create a view of a view (This leads to problems upgrading your scripts).

Views are stored in the database but don't store any data themselves, so they can safely be migrated by dropping them all and recreating them all on upgrade. This process can be automated by your installer if your build process mandates it.

Mark

I am trying to put all my queries in a single place for ease of change if needed. I too was debating on if this is a good idea or not. Even now I still do not know.

MarkR

There is no advantage in putting the queries in a central location "for ease of change".

A query is an integral part of the routine which it's used by - changing the query without the code around it is usually not helpful.

It seems better to keep the query with the code it's used for.

I'm still in favour of using views - you can keep some of your queries in the database this way and still use them sensibly in your code.

It is necessary for every change to be tested thoroughly in the context of the release it's going to be deployed as part of. Not doing so will result in faults.

I can't see how keeping queries centrally lends itself towards easier maintenance.

Mark

Roger_Ramjet

MarkR wrote:
A query is an integral part of the routine which it's used by -

No it is not, or should not be. Can't be bothered to rehearse all the arguments on this subject so I'll just give an example:

I have a reporting app that passes the query resultset, both from standard and ad-hoc reports, to a tabulation class that generates the html table inc pagination, js sorting and detail links as appropriate. The same query results could equally be passed to a class that produced bar charts or pie graphs, or be parsed into an xml doc, etc.

for more info on this subject search for:
data abstraction
code reuse
loosely-coupled systems
OOP

rkolbe

MarkR wrote:
There is no advantage in putting the queries in a central location "for ease of change".

A query is an integral part of the routine which it's used by - changing the query without the code around it is usually not helpful.

It seems better to keep the query with the code it's used for.

I'm still in favour of using views - you can keep some of your queries in the database this way and still use them sensibly in your code.

It is necessary for every change to be tested thoroughly in the context of the release it's going to be deployed as part of. Not doing so will result in faults.

I can't see how keeping queries centrally lends itself towards easier maintenance.

Mark

What if you had 13,000 lines of code to sift through (...I don't, but just an example here). What if, currently your app works for MySQL only and soon you are transfering over to MS SQL and you need to make sure your SQL works on both systems?

I would think looking in 1 place would be easier to maintain than sorting through your code...no matter how neatly written it is or organized.