ikvm
diff --git a/‎APIJSON-Java-Server/APIJSONDemo/src/main/java/apijson/demo/server/DemoObjectParser.java‎
Lines changed: 2 additions & 2 deletions b/‎APIJSON-Java-Server/APIJSONDemo/src/main/java/apijson/demo/server/DemoObjectParser.java‎
Lines changed: 2 additions & 2 deletions
diff --git a/‎APIJSON-Java-Server/APIJSONDemo/src/main/java/apijson/demo/server/DemoParser.java‎
Lines changed: 2 additions & 2 deletions b/‎APIJSON-Java-Server/APIJSONDemo/src/main/java/apijson/demo/server/DemoParser.java‎
Lines changed: 2 additions & 2 deletions
diff --git a/‎APIJSON-Java-Server/APIJSONDemo/src/main/java/apijson/demo/server/DemoSQLConfig.java‎
Lines changed: 9 additions & 1 deletion b/‎APIJSON-Java-Server/APIJSONDemo/src/main/java/apijson/demo/server/DemoSQLConfig.java‎
Lines changed: 9 additions & 1 deletion
diff --git a/‎APIJSON-Java-Server/APIJSONLibrary/src/main/java/zuo/biao/apijson/JSONObject.java‎
Lines changed: 0 additions & 2 deletions b/‎APIJSON-Java-Server/APIJSONLibrary/src/main/java/zuo/biao/apijson/JSONObject.java‎
Lines changed: 0 additions & 2 deletions
diff --git a/‎APIJSON-Java-Server/APIJSONLibrary/src/main/java/zuo/biao/apijson/server/AbstractObjectParser.java‎
Lines changed: 88 additions & 54 deletions b/‎APIJSON-Java-Server/APIJSONLibrary/src/main/java/zuo/biao/apijson/server/AbstractObjectParser.java‎
Lines changed: 88 additions & 54 deletions
@@ -45,8 +45,8 @@ public abstract class DemoObjectParser extends AbstractObjectParser {
 	 * @param name
 	 * @throws Exception 
 	 */
-	public DemoObjectParser(HttpSession session, @NotNull JSONObject request, String parentPath, String name, SQLConfig arrayConfig) throws Exception {
-		super(request, parentPath, name, arrayConfig);
+	public DemoObjectParser(HttpSession session, @NotNull JSONObject request, String parentPath, String name, SQLConfig arrayConfig, boolean isSubquery) throws Exception {
+		super(request, parentPath, name, arrayConfig, isSubquery);
 	}
 
 	@Override
 
@@ -84,9 +84,9 @@ public Object onFunctionParse(JSONObject json, String fun) throws Exception {
 
 
 	@Override
-	public DemoObjectParser createObjectParser(JSONObject request, String parentPath, String name, SQLConfig arrayConfig) throws Exception {
+	public DemoObjectParser createObjectParser(JSONObject request, String parentPath, String name, SQLConfig arrayConfig, boolean isSubquery) throws Exception {
 
-		return new DemoObjectParser(session, request, parentPath, name, arrayConfig) {
+		return new DemoObjectParser(session, request, parentPath, name, arrayConfig, isSubquery) {
 
 			//TODO 删除，onPUTArrayParse改用MySQL函数JSON_ADD, JSON_REMOVE等
 			@Override
 
@@ -25,6 +25,7 @@
 import zuo.biao.apijson.server.AbstractSQLConfig;
 import zuo.biao.apijson.server.Join;
 import zuo.biao.apijson.server.SQLConfig;
+import zuo.biao.apijson.server.Subquery;
 
 
 /**SQL配置
@@ -59,7 +60,13 @@ public String getSchema() {
 		return StringUtil.isEmpty(s, true) ? "sys" : s; //TODO 改成你自己的
 	}
 
-	
+	@Override
+	public String getSubqueryString(Subquery subquery) throws Exception {
+		//TODO 用 SQLExecutor 的 preparedStatement 返回的
+//		String range = subquery.getRange();
+//		return (range  == null || range.isEmpty() ? "" : range) + "(" + subquery.getConfig().getSQL(false) + ") ";
+		throw new UnsupportedOperationException("未解决 SQL 注入，暂不支持");
+	}
 
 	public DemoSQLConfig() {
 		this(RequestMethod.GET);
@@ -75,6 +82,7 @@ public DemoSQLConfig(RequestMethod method, int count, int page) {
 	}
 
 
+
 	/**获取SQL配置
 	 * @param table
 	 * @param request
 
@@ -130,7 +130,6 @@ public JSONObject setUserIdIn(List<Object> list) {
 	public static final String KEY_SCHEMA = "@schema"; //数据库，Table在非默认schema内时需要声明
 	public static final String KEY_COLUMN = "@column"; //查询的Table字段或SQL函数
 	public static final String KEY_FROM = "@from"; //FROM语句
-	public static final String KEY_SQL = "@sql"; //SQL语句
 	public static final String KEY_COMBINE = "@combine"; //条件组合，每个条件key前面可以放&,|,!逻辑关系  "id!{},&sex,!name&$"
 	public static final String KEY_GROUP = "@group"; //分组方式
 	public static final String KEY_HAVING = "@having"; //聚合函数条件，一般和@group一起用
@@ -144,7 +143,6 @@ public JSONObject setUserIdIn(List<Object> list) {
 		TABLE_KEY_LIST.add(KEY_SCHEMA);
 		TABLE_KEY_LIST.add(KEY_COLUMN);
 		TABLE_KEY_LIST.add(KEY_FROM);
-		TABLE_KEY_LIST.add(KEY_SQL);
 		TABLE_KEY_LIST.add(KEY_COMBINE);
 		TABLE_KEY_LIST.add(KEY_GROUP);
 		TABLE_KEY_LIST.add(KEY_HAVING);
 
@@ -15,7 +15,6 @@
 package zuo.biao.apijson.server;
 
 import static zuo.biao.apijson.JSONObject.KEY_COMBINE;
-import static zuo.biao.apijson.JSONObject.KEY_SQL;
 import static zuo.biao.apijson.JSONObject.KEY_CORRECT;
 import static zuo.biao.apijson.JSONObject.KEY_DROP;
 import static zuo.biao.apijson.JSONObject.KEY_TRY;
@@ -63,6 +62,7 @@ public AbstractObjectParser setParser(Parser<?> parser) {
 	protected JSONObject request;//不用final是为了recycle
 	protected String parentPath;//不用final是为了recycle
 	protected SQLConfig arrayConfig;//不用final是为了recycle
+	protected boolean isSubquery;
 
 	protected final int type;
 	protected final List<Join> joinList;
@@ -77,21 +77,21 @@ public AbstractObjectParser setParser(Parser<?> parser) {
 	 */
 	protected final boolean drop;
 	protected final JSONObject correct;
-	protected final JSONObject sql;
 
 	/**for single object
 	 * @param parentPath
 	 * @param request
 	 * @param name
 	 * @throws Exception 
 	 */
-	public AbstractObjectParser(@NotNull JSONObject request, String parentPath, String name, SQLConfig arrayConfig) throws Exception {
+	public AbstractObjectParser(@NotNull JSONObject request, String parentPath, String name, SQLConfig arrayConfig, boolean isSubquery) throws Exception {
 		if (request == null) {
 			throw new IllegalArgumentException(TAG + ".ObjectParser  request == null!!!");
 		}
 		this.request = request;
 		this.parentPath = parentPath;
 		this.arrayConfig = arrayConfig;
+		this.isSubquery = isSubquery;
 
 		this.type = arrayConfig == null ? 0 : arrayConfig.getType();
 		this.joinList = arrayConfig == null ? null : arrayConfig.getJoinList();
@@ -104,18 +104,15 @@ public AbstractObjectParser(@NotNull JSONObject request, String parentPath, Stri
 			this.tri = false;
 			this.drop = false;
 			this.correct = null;
-			this.sql = null;
 		}
 		else {
 			this.tri = request.getBooleanValue(KEY_TRY);
 			this.drop = request.getBooleanValue(KEY_DROP);
 			this.correct = request.getJSONObject(KEY_CORRECT);
-			this.sql = request.getJSONObject(KEY_SQL);
 
 			request.remove(KEY_TRY);
 			request.remove(KEY_DROP);
 			request.remove(KEY_CORRECT);
-			request.remove(KEY_SQL);
 
 			try {
 				parseCorrect();
@@ -281,7 +278,7 @@ public AbstractObjectParser parse() throws Exception {
 					key = entry.getKey();
 
 					try {
-						if (value instanceof JSONObject && key.startsWith("@") == false) {//JSONObject，往下一级提取
+						if (value instanceof JSONObject && key.startsWith("@") == false  && key.endsWith("@") == false) {//JSONObject，往下一级提取
 							if (childMap != null) {//添加到childMap，最后再解析
 								childMap.put(key, (JSONObject)value);
 							}
@@ -331,51 +328,91 @@ else if (method == PUT && value instanceof JSONArray
 	@Override
 	public boolean onParse(@NotNull String key, @NotNull Object value) throws Exception {
 		if (key.endsWith("@")) {//StringUtil.isPath((String) value)) {
-			if (value instanceof String == false) {
-				throw new IllegalArgumentException("\"key@\": 后面必须为依赖路径String！");
-			}
-			//						System.out.println("getObject  key.endsWith(@) >> parseRelation = " + parseRelation);
-			String replaceKey = key.substring(0, key.length() - 1);//key{}@ getRealKey
-			String targetPath = AbstractParser.getValuePath(type == TYPE_ITEM
-					? path : parentPath, new String((String) value));
-
-			//先尝试获取，尽量保留缺省依赖路径，这样就不需要担心路径改变
-			Object target = onReferenceParse(targetPath);
-			Log.i(TAG, "onParse targetPath = " + targetPath + "; target = " + target);
-
-			if (target == null) {//String#equals(null)会出错
-				Log.d(TAG, "onParse  target == null  >>  continue;");
-				return true;
-			}
-			if (target instanceof Map) { //target可能是从requestObject里取出的 {}
-				Log.d(TAG, "onParse  target instanceof Map  >>  continue;");
-				return false;
+			
+			if (value instanceof JSONObject) { // SQL 子查询对象，JSONObject -> SQLConfig.getSQL
+				String replaceKey = key.substring(0, key.length() - 1);//key{}@ getRealKey
+				
+				JSONObject subquery = (JSONObject) value;
+				String range = subquery.getString("range");
+				if (range != null && "any".equals(range) == false && "all".equals(range) == false) {
+					throw new IllegalArgumentException("子查询 " + path + "/" + key + ":{ range:value } 中 value 只能为 [any, all] 中的一个！");
+				}
+
+				
+				JSONArray arr = parser.onArrayParse(subquery, AbstractParser.getAbsPath(path, replaceKey), replaceKey, true);
+				
+				JSONObject obj = arr == null || arr.isEmpty() ? null : arr.getJSONObject(0);
+
+				String from = subquery.getString("from");
+				JSONObject arrObj = obj.getJSONObject(from);
+				if (arrObj == null) {
+					throw new IllegalArgumentException("子查询 " + path + "/" + key + ":{ from:value } 中 value 对应的数组对象不存在！");
+				}
+//				
+				SQLConfig cfg = arrObj == null ? null : (SQLConfig) arrObj.get(AbstractParser.KEY_CONFIG);
+				
+				Subquery s = new Subquery();
+				s.setPath(parentPath);
+				s.setOriginKey(key);
+				s.setOriginValue(subquery);
+
+				s.setRange(range);
+				s.setKey(replaceKey);
+				s.setConfig(cfg);
+				
+				parser.putQueryResult(AbstractParser.getAbsPath(path, key), s); //字符串引用保证不了安全性 parser.getSQL(cfg));
+
+				key = replaceKey;
+				value = s; //(range == null || range.isEmpty() ? "" : "range") + "(" + cfg.getSQL(false) + ") ";
 			}
-			if (targetPath.equals(target)) {//必须valuePath和保证getValueByPath传进去的一致！
-				Log.d(TAG, "onParse  targetPath.equals(target)  >>");
-
-				//非查询关键词 @key 不影响查询，直接跳过
-				if (isTable && (key.startsWith("@") == false || JSONRequest.TABLE_KEY_LIST.contains(key))) {
-					Log.e(TAG, "onParse  isTable && (key.startsWith(@) == false"
-							+ " || JSONRequest.TABLE_KEY_LIST.contains(key)) >>  return null;");
-					return false;//获取不到就不用再做无效的query了。不考虑 Table:{Table:{}}嵌套
-				} else {
-					Log.d(TAG, "onParse  isTable(table) == false >> continue;");
-					return true;//舍去，对Table无影响
+			else if (value instanceof String) { // 引用赋值路径
+
+				//						System.out.println("getObject  key.endsWith(@) >> parseRelation = " + parseRelation);
+				String replaceKey = key.substring(0, key.length() - 1);//key{}@ getRealKey
+				String targetPath = AbstractParser.getValuePath(type == TYPE_ITEM
+						? path : parentPath, new String((String) value));
+
+				//先尝试获取，尽量保留缺省依赖路径，这样就不需要担心路径改变
+				Object target = onReferenceParse(targetPath);
+				Log.i(TAG, "onParse targetPath = " + targetPath + "; target = " + target);
+
+				if (target == null) {//String#equals(null)会出错
+					Log.d(TAG, "onParse  target == null  >>  continue;");
+					return true;
 				}
-			} 
+				if (target instanceof Map) { //target可能是从requestObject里取出的 {}
+					Log.d(TAG, "onParse  target instanceof Map  >>  continue;");
+					return false;
+				}
+				if (targetPath.equals(target)) {//必须valuePath和保证getValueByPath传进去的一致！
+					Log.d(TAG, "onParse  targetPath.equals(target)  >>");
+
+					//非查询关键词 @key 不影响查询，直接跳过
+					if (isTable && (key.startsWith("@") == false || JSONRequest.TABLE_KEY_LIST.contains(key))) {
+						Log.e(TAG, "onParse  isTable && (key.startsWith(@) == false"
+								+ " || JSONRequest.TABLE_KEY_LIST.contains(key)) >>  return null;");
+						return false;//获取不到就不用再做无效的query了。不考虑 Table:{Table:{}}嵌套
+					} else {
+						Log.d(TAG, "onParse  isTable(table) == false >> continue;");
+						return true;//舍去，对Table无影响
+					}
+				} 
 
+				//直接替换原来的key@:path为key:target
+				Log.i(TAG, "onParse    >>  key = replaceKey; value = target;");
+				key = replaceKey;
+				value = target;
+				Log.d(TAG, "onParse key = " + key + "; value = " + value);
+			}
+			else {
+				throw new IllegalArgumentException(path + "/" + key + ":value 中 value 必须为 依赖路径String 或 SQL子查询JSONObject ！");
+			}
 
-			//直接替换原来的key@:path为key:target
-			Log.i(TAG, "onParse    >>  key = replaceKey; value = target;");
-			key = replaceKey;
-			value = target;
-			Log.d(TAG, "onParse key = " + key + "; value = " + value);
 		}
 
 		if (key.endsWith("()")) {
 			if (value instanceof String == false) {
-				throw new IllegalArgumentException(path + "/" + key + ":function() 后面必须为函数String！");
+				throw new IllegalArgumentException(path + "/" + key + ":value 中 value 必须为函数String！");
 			}
 
 			String k = key.substring(0, key.length() - 2);
@@ -439,7 +476,7 @@ public JSON onChildParse(int index, String key, JSONObject value) throws Excepti
 						+ "数组 []:{} 中第一个 key:{} 必须是主表 TableKey:{} ！不能为 arrayKey[]:{} ！");
 			}
 
-			child = parser.onArrayParse(value, path, key);
+			child = parser.onArrayParse(value, path, key, isSubquery);
 			isEmpty = child == null || ((JSONArray) child).isEmpty();
 		}
 		else {//APIJSON Object
@@ -448,7 +485,7 @@ public JSON onChildParse(int index, String key, JSONObject value) throws Excepti
 						+ "数组 []:{} 中每个 key:{} 都必须是表 TableKey:{} 或 数组 arrayKey[]:{} ！");
 			}
 
-			child = parser.onObjectParse(value, path, key, isMain ? arrayConfig.setType(SQLConfig.TYPE_ITEM_CHILD_0) : null);
+			child = parser.onObjectParse(value, path, key, isMain ? arrayConfig.setType(SQLConfig.TYPE_ITEM_CHILD_0) : null, isSubquery);
 
 			isEmpty = child == null || ((JSONObject) child).isEmpty();
 			if (isFirst && isEmpty) {
@@ -543,14 +580,14 @@ public AbstractObjectParser setSQLConfig(int count, int page, int position) thro
 		if (isTable == false) {
 			return this;
 		}
-		
+
 		if (sqlConfig == null) {
 			sqlConfig = newSQLConfig();
 		}
 		sqlConfig.setCount(count).setPage(page).setPosition(position);
-		
+
 		parser.onVerifyRole(sqlConfig);
-		
+
 		return this;
 	}
 
@@ -683,8 +720,8 @@ public Object onReferenceParse(@NotNull String path) {
 
 	@Override
 	public JSONObject onSQLExecute() throws Exception {
-		JSONObject result = parser.executeSQL(sqlConfig);
-		if (result != null) {
+		JSONObject result = parser.executeSQL(sqlConfig, isSubquery);
+		if (isSubquery == false && result != null) {
 			parser.putQueryResult(path, result);//解决获取关联数据时requestObject里不存在需要的关联数据
 		}
 		return result;
@@ -713,9 +750,6 @@ public void recycle() {
 		if (correct != null) {
 			request.put(KEY_CORRECT, correct);
 		}
-		if (sql != null) {
-			request.put(KEY_SQL, sql);
-		}
 
 
 		corrected = null;