Loading...
image
Following on from yesterdays first part looking at Data Access Layers in Classic ASP, in this article I discuss the design decisions for my own Dynamic SQL class which attempts to emulate ORM type functionality using VBScript and Classic ASP.

Ongoing Projects

Microcyte Content Management System
Microcyte is a PHP/javascript based website Content Management System. Its main feature is direct inline in-place editing of content.
image
Snatch (Mac OS X)
Snatch is a website scraping tool which can be used to retrieve links, images and email addresses from a given webpage and linked pages.
image
Distribution (Mac OS X)
Distributions is a mailing list management tool for Mac OS X. It features support for Multiple Classifications and some CRM functions.
image
??? (Mac OS X)
This is a new project I am working on for OS X (leopard). more soon!
image

Opinions & Views

image Previous | Next image

Cloud Hosting
You may already have heard of Cloud Computing, Cloud Hosting is an exciting extension of this relatively new area.
Back Online!
I'm now back online after an outage in America caused my Hosting Provider some downtime.
Batch WMA conversion for iTunes
Recently I had to convert a shed load on WMA's to work with iTunes on a Mac, heres how I did it at no cost.
MicroCyte - The Database Question
As I work towards the 2.0 release of MicroCyte I wonder whether I should scrap XML/static files in favor of a database?
Review - iMac 24 inch
I've recently had the opportunity make extensive use of a 24" iMac 2.8Ghz, here's what I thought!
Gig Review - Nizlopi
Recently I went to see Nizlopi perform at the Norwich arts centre, here's what I thought
MicroCyte Released
MicroCyte has been released! head on over to microcyte.co.uk to checkout the demo and download your copy!
Microcyte Gets Firefox Support
Very soon Firefox 3 will be released. This update will mean support for Microcyte CMS.
Site Update - Big things coming
Regulars may have noticed that the site has been quiet for the last few days, click through to find out why!
Microcyte gets comments engine
In the last couple of days I've implemented a comments plugin for my Microcyte CMS
Implementing a Dynamic SQL module
In Part 3 of building a DAL in Classic ASP I look at how I implemented my Dynamic SQL module to fulfull my DAL requirements
Dynamic SQL as a Data Access Layer
In part 2 of building a DAL in Classic ASP I look at how to create a functional Dynamic SQL module.
Data Access Layers in Classic ASP
Classic ASP is not known for its rich data access tools, so I look at how you can build a strong Data Access Layer.
Scripting languages vs frameworks
Are there compelling reasons for an old school scripting house to move to a new fangled framework?
HTML 5 working draft announced
After 9 months of work, the W3C has published the first working draft of HTML 5.
Increasing turnover with e-shots
E-shots can help drive targeted traffic to your website, but how do you avoid making them look like SPAM?
Introduction to A/B testing
A/B testing can be used to dramically increase conversions on your e-commerce site. Here is basic overview.
Security - Social Engineering
In the final part of 'how websites get hacked' I'm going to look at Social Engineering, the non technical hack.
Security - XSS and SQL injection
In part 2 of 'how sites get hacked' we look at XSS and SQL Injection
Security - how sites get hacked
In this brief primer we look at how websites get hacked and what to do to protect yourself (part 1)
MacBook Air - the morning after
After the hype has cooled down, what are the pro's and con's of the new Apple MacBook Air
Macbook air 300 pounds more expensive
Opinion: why is the Macbook Air a full 300 pounds (600 dollars) more expensive than in the US?

Dynamic SQL as a Data Access Layer

In the last part I talked about traditional Data Access Layers (DALs) and their benefits in web application development. I also talked about the benefits of using a dynamic SQL module instead of the usual ORM and stub classes in the case of classic ASP. In this part I'm going to talk about the actual implementation of the dynamic SQL module.
 
Classy
As anyone who has used VBScript and Classic ASP will know, VBScript's support for object oriented programming is 'tacked on' at best and superfluous at worst. However, there are some times when you want to encapsulate code into an easily transported package and VBScript classes are still a fairly good way of doing this. Because I wanted my dynamic SQL module to be re-usable across as many projects as possible I decided to make it into a self contained class called DataAccess.
 
DataAccess had a number of public and private members. I decided that the public members should be the class interface and the private members should enclose the mechanics of the class (the actual 'doing code') generally this is all good OOP practice. I left some configuration properties at the top of the class so I could easily set the database connection details, database name, table prefixes, location of the configuration file, etc.
 
Validation
Perhaps the biggest technical hurdle was deciding how to deal with data validation. I liked the principle of stub classes where validation is set specifically per table and field in a class whose members and functions mirror the table structure, but I always felt the implementation was too verbose. I wanted a resource that my class could check every time it was asked to modify a value in the database. In that way I can handle field level validation, no matter what code is using the class, where the input is coming from and where the output is going to.
 
In the end I plumped for a flat configuration file which was descriptive in nature but fairly concise and functional. Each line of the file contained a name of a table and field and a set of validation rules which can be applied to it. It looks something like this:
 
members[email]=validatesMandatory
members[password]=validatesMandatory members[email]=validatesMandatory|validatesRegEx:(regex in here)
 
In this example, the 'members' represents the table name and the item in square brackets represents the fields within the table, on the other side of the equals sign is a list of pipe (|) separated rules. Validation rules were defined to check for mandatory values, number values, regular expression matches and unique values.
 
Class interface
So now I've got my configuration file, how do I get data in and out of my class? This also took quite a bit of consideration. I wanted to achieve several main things easily:
  • A function to add a new record from a collection of data
  • A function to update a record from a collection of data
  • A function to update a field in a record with a new value
  • A function to get data from a field in a record
  • A function to return a good ol'fashioned recordset object from a table.
I also wanted to be about to get data from across table joins without having to write reams of SQL, so I needed a short hand syntax to specify what I wanted the class to return. After some consideration I decided to use the familiar 'dot' notation to specify what I wanted to update, modify and return. This meant I could do table joins quite painlessly, the following are all examples of class calls:
  • find(recid, "products.categories.name")
  • create(product, request.form)
  • update(recid, product, myProductDataCollection)
  • updateField(recid, "products.delivery_info.timescale", "two weeks")
As you can see, this represents some quite complex behavior with not a line of SQL in sight. In the find example, each part of the path represents a table, apart from the last bit which is the field I want to return. If the last part isn't a field name but is instead a table name then the function returns a recordset instead. The function uses a starting record id to work its way across from the first table onwards.
 
The create and update functions accept a collection of data which can then be compared against the validation rules and accepted or rejected. The updateField function takes a single value, starting record id and 'dot' notated path to the value you want to update, again the values are validated before they are accepted or rejected.
 
Next Time
So now you can see what I was aiming to achieve, you might want to know how I achieved it. In the next part I'll discuss some implementation details of the DataAccess class and how it was able to fulfill the complex behavior outlined above.