Postgres Node: Effective way to Upsert (Insert or Update)

arjones · February 13, 2021, 12:51pm

Hi,
I’m using Postgres Node to Insert into a Table and it works fine, as my use case evolved I need to Upsert (Insert if missing or Updating if value already exists) and I’m having trouble with escaping fields.

To use Query operation it is necessary to interpolate strings, so if a name contains ' it will fail, also there is a special case when de value is null and should be replaced by NULL without quotes.

I’m writing a simple .replace() regex to deal with those cases, but seems error prone and hacky. Is there a better way to achieve this?

Example SQL statement:

INSERT INTO users (user_id, fullname, created_at)
VALUES('{{$json["user_id"]}}','{{$json["fullname"].replace(/'/g, '\'\'')}}', {{$json["created_at"]}}) 
ON CONFLICT (user_id) 
DO NOTHING
RETURNING user_id;

A future feature request would be support pg-promise > ParameterizedQuery, so all escaping and type handling could be delegated to the driver.

A possible implementation using ParameterizedQuery will result on this SQL:

INSERT INTO users (user_id, fullname, created_at)
VALUES($1, $2, $3) 
ON CONFLICT (user_id) 
DO NOTHING
RETURNING user_id;

I’m leaving a workflow as reference:

Thanks!

arjones · February 13, 2021, 8:25pm

If someone else, need to solve this, I created this functionItem which handles escaping most of scenarios I tried.

It copy each key and generate the escapes needed for psql, so if you have a key/field called name, it will generate a __name that can be used on your SQL syntax:

arjones · February 20, 2021, 4:50am

Hi there!
I just created a PR implementing pg-promise > ParameterizedQuery solution.

Hope you’ll find it useful:
https://github.com/n8n-io/n8n/pull/1471

jan · February 20, 2021, 9:23am

Great, thanks a lot for the PR! We will check it out soon.