Piotr Rodak

Good practices - database programming, unit testing

Jason Brimhall wrote today on his blog that new book, Defensive Database Programming, written by Alex Kuznetsov (blog) is coming to bookstores. Alex writes about various techniques that make your code safer to run. SQL injection is not the only one vulnerability the code may be exposed to. Some other include inconsistent search patterns, unsupported character sets, locale settings, issues that may occur during high concurrency conditions, logic that breaks when certain conditions are not met. The book covers these issues and provides examples how to write code to diminish chances of failure. Another good thing is that it is free, and you can download it from RedGate’s page.

Database code is often written ad hoc, by programmers who do not necessarily have in-depth knowledge of the database engine. There is poor error handling, careless usage of data types, resulting in implicit conversions at run time, cursors and loops and many other flavours. Apart from this, the code is very often tested only in a very rudimentary way, for a few (at most) parameter combinations and developers rarely take edge conditions into account.

It is quite easy to improve stored procedure coding standards by following just a few simple ideas. I find these most important:

• Parameter validation – ensure that your procedure or batch operates on parameters within expected ranges. If certain value must not be null or empty string, check for it before you apply it into a query, you’ll save some resources. Of course this doesn’t mean that you shouldn’t have proper check constraints on your columns.
• Error handling – along with the parameter validation it is a good practice to throw an error if some validation fails. If you write a procedure that adds new contact to database, it doesn’t make sense if its last name is empty. If you throw an error saying ‘Contact’s name must not be empty’, it will be much easier to debug and fix the problem if it occurs.
• Testing – write unit tests that will ensure that your code works. Since there is no reasonable and easy way to write tests in T-SQL, you can use higher level framework, like NUnit for .NET. I find it sufficient in many cases to write a few tests straight in the T-SQL, wrapped in begin tran .. rollback blocks. These tests verify that the procedure works in expected way for parameters. These tests do not mimic exactly unit testing frameworks and do not have the Assert functionality. They let you though see at first glance if your code works for given set of parameters or not.
• Proper naming of constraints and indexes – it helps a lot if you can associate name of the constraint with particular table without having to shuffle through sys.objects view.

Let’s have a look at little example.

Let’s assume that we have table that defines some feeds we handle in the system. Feeds can have lots of properties, but for our example I will use only FeedName, FeedCategory which describes category of feed and FeedType, which defines how the feed is processed.

First approach to the code as follows:

   1: create table FeedCategory

   2: (

   3:     CategoryId int identity(1, 1) not null primary key,

   4:     CategoryName varchar(128)

   5: )

   6: go

   7: create table Feed

   8: (

   9:     FeedId int identity(1, 1) not null primary key,

  10:     FeedName varchar(128) not null check (len(FeedName) > 0),

  11:     FeedCategory int not null references FeedCategory(CategoryId),

  12:     FeedType char(2)

  13: )

  14: go

  15: create procedure AddNewFeed

  16: (

  17:     @FeedName varchar(128),

  18:     @FeedCategoryName varchar(128),

  19:     @FeedType char(2)

  20: )

  21: as

  22: begin

  23:     declare @CategoryId int

  24:     select @CategoryId = CategoryId from FeedCategory where CategoryName = @FeedCategoryName

  25:  

  26:     insert Feed(FeedName, FeedCategory, FeedType)

  27:     values (@FeedName, @CategoryId, @FeedType)

  28: end

  29:  

  30: go

Now it' looks kind of OK, let’s write a test.

First test that I will write is to check what happens if the FeedName is invalid:

   1: begin tran

   2:     raiserror('Add new feed, empty feed name', 10, 1) with nowait;

   3:     insert FeedCategory (CategoryName) values('Maintenance feeds')

   4:     exec AddNewFeed @FeedName = '', @FeedCategoryName = 'Maintenance feeds', @FeedType='FS'

   5: rollback

   6: go

As you see, tests are built in simple way. All test code is wrapped in begin tran – rollback block. First line after the beginning of transaction outputs test description, so you can see which test fails or succeeds. If you run the above test, an error message is returned:

   1: Add new feed, empty feed name

   2:  

   3: (1 row(s) affected)

   4: Msg 547, Level 16, State 0, Procedure AddNewFeed, Line 12

   5: The INSERT statement conflicted with the CHECK constraint "CK__Feed__FeedName__2F650636". The conflict occurred in database "testdb", table "dbo.Feed", column 'FeedName'.

   6: The statement has been terminated.

I don’t like this error message. Look how ugly the name of the CHECK constraint is. Let’s have a look what can be done about this.

If you change the name of the constraint to something more meaningful, like in the following code,

   1: create table Feed

   2: (

   3:     FeedId int identity(1, 1) not null primary key,

   4:     FeedName varchar(128) not null,

   5:     FeedCategory int not null references FeedCategory(CategoryId),

   6:     FeedType char(2),

   7:     constraint CHK_Feed_FeedNameNotEmpty check (len(FeedName) > 0)

   8: )

you will get better error message:

   1: Add new feed, empty feed name

   2:  

   3: (1 row(s) affected)

   4: Msg 547, Level 16, State 0, Procedure AddNewFeed, Line 12

   5: The INSERT statement conflicted with the CHECK constraint "CHK_Feed_FeedNameNotEmpty". The conflict occurred in database "testdb", table "dbo.Feed", column 'FeedName'.

   6: The statement has been terminated.

Well, this looks better, but in my opinion, it is still lacking elegance.

To fix this, you can modify the procedure:

   1: create procedure AddNewFeed

   2: (

   3:     @FeedName varchar(128),

   4:     @FeedCategoryName varchar(128),

   5:     @FeedType char(2)

   6: )

   7: as

   8: begin

   9:     begin try

  10:         if isnull(@FeedName, '') = ''

  11:             raiserror('Feed name must not be empty', 16, 1)

  12:  

  13:         declare @CategoryId int

  14:         select @CategoryId = CategoryId from FeedCategory where CategoryName = @FeedCategoryName

  15:  

  16:         insert Feed(FeedName, FeedCategory, FeedType)

  17:         values (@FeedName, @CategoryId, @FeedType)

  18:     end try

  19:     begin catch

  20:         declare @err varchar(2000)

  21:         set @err = 'Exception in '  + error_procedure() + ', error line '+convert(varchar, error_line())+': ' + error_message()

  22:         raiserror(@err, 16, 1)

  23:     end catch

  24: end

Now the error message looks like this:

   1: Add new feed, empty feed name

   2:  

   3: (1 row(s) affected)

   4: Msg 50000, Level 16, State 1, Procedure AddNewFeed, Line 23

   5: Exception in AddNewFeed, error line 12: Feed name must not be empty

   1: --assert like test

   2: begin tran

   3:     begin try

   4:         raiserror('-- ================= --', 10, 1) with nowait;

   5:         raiserror('Test 1: Add new feed, empty feed name', 10, 1) with nowait;

   6:         insert FeedCategory (CategoryName) values('Maintenance feeds')

   7:         exec AddNewFeed @FeedName = '', @FeedCategoryName = 'Maintenance feeds', @FeedType='FS'

   8:         raiserror('FAIL', 16, 1) --Assert.Fail. We shouldn't be here.

   9:     end try

  10:     begin catch

  11:         declare @err varchar(2000)

  12:         set @err = error_message()

  13:         if @err like '%Feed name must not be empty%' --is it expected exception?

  14:             raiserror('Test succeeded.', 10, 1) with nowait;

  15:         else

  16:             raiserror('Test failed: %s', 16, 1, @err);

  17:     end catch

  18: rollback

   1: create procedure AddNewFeed

   2: (

   3:     @FeedName varchar(128),

   4:     @FeedCategoryName varchar(128),

   5:     @FeedType char(2)

   6: )

   7: as

   8: begin

   9:     begin try

  10:         if isnull(@FeedName, '') = ''

  11:             raiserror('Feed name must not be empty', 16, 1)

  12:  

  13:         declare @CategoryId int

  14:         select @CategoryId = CategoryId from FeedCategory where CategoryName = @FeedCategoryName

  15:  

  16:         if @CategoryId is null

  17:             raiserror('Invalid feed category name', 16, 1)

  18:         

  19:         insert Feed(FeedName, FeedCategory, FeedType)

  20:         values (@FeedName, @CategoryId, @FeedType)

  21:     end try

  22:     begin catch

  23:         declare @err varchar(2000)

  24:         set @err = 'Exception in '  + error_procedure() + ', error line '+convert(varchar, error_line())+': ' + error_message()

  25:         raiserror(@err, 16, 1)

  13:         if @err like '%Invalid feed category name%' --is it expected exception?

  26:     end catch

  27: end

Please notice lines 16 and 17 in this snippet. I detect the fact that particular category name could not be found in FeedCategory table and throw appropriate error.

One of aspects of unit testing is that each unit test should test only one condition. We could modify Test 1 to cover invalid category name situation, but we will write new test, so both cases are logically separated.

   1:  

   2: begin tran

   3:     begin try

   4:         raiserror('-- ================= --', 10, 1) with nowait;

   5:         raiserror('Test 2: Add new feed, invalid category name', 10, 1) with nowait;

   6:         insert FeedCategory (CategoryName) values('Maintenance feeds') --insert category

   7:         exec AddNewFeed @FeedName = 'Feed 1', @FeedCategoryName = 'No such category', @FeedType='FS'

   8:         raiserror('FAIL', 16, 1) --Assert.Fail. We shouldn't be here.

   9:     end try

  10:     begin catch

  11:         declare @err varchar(2000)

  12:         set @err = error_message()

  13:         if @err like '%Invalid feed category name%' --is it expected exception?

  14:             raiserror('Test succeeded.', 10, 1) with nowait;

  15:         else

  16:             raiserror('Test failed: %s', 16, 1, @err);

  17:     end catch

  18: rollback

As you see in the line 13, I changed the expected error message to test invalid category name. If this exception is thrown, test succeeds.

   1: -- ================= --

   2: Test 2: Add new feed, invalid category name

   3:  

   4: (1 row(s) affected)

   5: Test succeeded.

The penultimate audit trigger framework

So, it’s time to see what I came up with after some time of playing with COLUMNS_UPDATED() and bitmasks. The first part of this miniseries describes the mechanics of the encoding which columns are updated within DML operation.

The task I was faced with was to prepare an audit framework that will be fairly easy to use. The audited tables were to be the ones directly modified by user applications, not the ones heavily used by batch or ETL processes. The framework consists of several tables and procedures. All these objects belong to Audit schema, to separate them from other objects in database. This means that you will have to either modify the framework script or create Audit schema in your database.

Internet is full of dreams of generic audit triggers. Developers look for magic trigger that will know how to handle table structure and will be easy to set up, and they will not have to modify code of the trigger for each table separately. Is it possible? Yes, but unfortunately, generic trigger approach has its drawbacks. Code that is too generic, will have to perform many operations at the time when the trigger is fired, what will affect performance. I decided to write a framework that will create triggers in generic way, but they will be crafted for particular tables they are created on.

I will describe how the framework works later in this post, lets for now list objects that the framework consists of:

• Audit.tAuditGroup – table that stores data related to particular DML operations, like table schema and name, user friendly name (for reporting purposes), change date and credentials of the principal who caused the trigger to filre
• Audit.tAuditDetails – This table stores primary key information for the changed rows and old and new values for all columns belonging to the audited table.
• Audit.vAudit – view that joins the above tables providing comprehensive information about audited data.
• Audit.tIgnoreColumns – table where you can specify column names that you don’t want to be audited – because there may be no point of auditing them. I added two names, UpdateDate and RowID as an example, but in general, if you leave this table empty, all columns will be audited.
• Audit.tUserFriendlyLabels – Sometimes it is nice to have some meaningful or at least less cryptic names when a report is displayed. This table allows for mapping audited table names to some more user friendly labels, so you can display them as ‘Account value modification’ rather than dbo.tAccount. This table also has a DML trigger attached to insert and update events that outputs message reminding that trigger has to be regenerated to reflect the changes. I will explain this a bit later.
• Audit.ptrig_GenericAudit – this procedure is called from every trigger generated by Audit framework. It takes a few parameters and requires existence of two tables, #ins and #del, which are populated from inserted and deleted pseudo-tables.
• Audit.pCreateAuditTrigger – this is procedure to create audit trigger on a table. You pass table schema and name to the procedure, and name of the trigger is derived from these parameters.
• Audit.pDropAuditTrigger – this procedure removes trigger from a table with specified schema and name.
• Audit.vAuditTriggers – this view simply lists all audit triggers defined in the database. It may be useful to create a quick report with all audited tables without having to dig through scripted code.

How it works?

I decided to move as much as possible of work to the creation stage of the trigger. The procedure Audit.pCreateAuditTrigger gathers some metadata information about the table and generates actual trigger code. This dynamic code includes call to the Audit.ptrig_GenericAudit procedure, and static information is passed to it in parameters. This static information includes fragment of SQL used in join clause between deleted and inserted tables and primary key information.

select	@JoinClause = coalesce(@JoinClause + ' and', ' on') + ' i.' + c.COLUMN_NAME + ' = d.' + c.COLUMN_NAME,
			-- Get primary key select for insert - T-SQL version
			@PrimaryKey = coalesce(@PrimaryKey + ' and ','') + '[' + c.COLUMN_NAME + ']' +
			case when cols.CHARACTER_MAXIMUM_LENGTH is not null then
			' = ''''''''''''+convert(varchar(1000), coalesce(q.I_' + c.COLUMN_NAME + ', q.D_' + c.COLUMN_NAME + '))+''''''''''''' 
			when cols.DATETIME_PRECISION is not null then
			' = ''''+convert(varchar(23), coalesce(q.I_' + c.COLUMN_NAME +', q.D_' + c.COLUMN_NAME + '), 121)+''''' 
			else
			' = ''''+convert(varchar(1000),coalesce(q.I_' + c.COLUMN_NAME +', q.D_' + c.COLUMN_NAME + '))+''''' 
			end 
	from	INFORMATION_SCHEMA.TABLE_CONSTRAINTS pk inner join INFORMATION_SCHEMA.KEY_COLUMN_USAGE c
			on c.TABLE_NAME = pk.TABLE_NAME and c.TABLE_SCHEMA = pk.TABLE_SCHEMA and c.CONSTRAINT_NAME = pk.CONSTRAINT_NAME
			inner join INFORMATION_SCHEMA.COLUMNS cols on cols.TABLE_NAME = c.TABLE_NAME 
						and cols.TABLE_SCHEMA = c.TABLE_SCHEMA and cols.COLUMN_NAME = c.COLUMN_NAME
	where 	pk.TABLE_NAME = @TableName and pk.TABLE_SCHEMA = @TableSchemaName
		and	CONSTRAINT_TYPE = 'PRIMARY KEY'

Initially I thought it might be useful to store the primary key information as XML fragment, but eventually I decided to code it as fragment of WHERE clause – all columns belonging to the primary key are joined by AND operator.

So to create a trigger on a table, you simply call

exec Audit.pCreateAuditTrigger 'Sales', 'SalesTerritory'

and to drop the trigger, call

exec Audit.pDropAuditTrigger 'Sales', 'SalesTerritory'

The above code creates trigger [Sales].[trgAudit_SalesTerritory] on the table Sales.SalesTerritory. When you look at the code of the generated trigger, you will see that the primary key fragment doesn’t contain any particular values but rather cryptic column references, and the reason is, that this fragment itself is used by dynamic SQL code in Audit.ptrig_GenericAudit.

exec Audit.ptrig_GenericAudit @UserName, @TableSchemaName, @TableName, @TableObjectId, 

@OperationType, @UTCUpdateDate, @ColumnsUpdated, 

' on i.TerritoryID = d.TerritoryID', 

'[TerritoryID] = ''+convert(varchar(1000),coalesce(q.I_TerritoryID, q.D_TerritoryID))+'''

, 'Sales territory'
 

Parameters passed to Audit.ptrig_GenericAudit are as follow:

• UserName - contains name of the principal who triggered the operation,
• TableSchemaName – name of the schema audited table is in
• TableName – name of the table
• TableObjectId – object id of the audited table
• Operation – single character code for insert, update or delete
• UTCUpdateDate – UTC date and time of the operation
• ColumnsUpdated – bitmask of the updated columns
• JoinClauseFragment – fragment of the dynamic sql that joins inserted and deleted tables on primary key columns
• PrimaryKeyFragment – fragment of sql that allows for identification of the audited row
• FriendlyName – label to display on a report, if there is need.

The framework supports composite primary keys. The resulting generated primary key code is converted to varchar(1000). If you need to have nvarchar data in the key, you have to modify the code to take this into account and modify the PK column in Audit.tAuditDetails. If your primary key can’t fit in 1000 characters, you can also change length of the PK column, but probably also think about design of the table – such long keys are usually sign that something went wrong during the design stage and you should consider shorter surrogate keys.

Let’s have a look how the Audit.ptrig_GenericAudit looks like:

	create procedure Audit.ptrig_GenericAudit
	(	@UserName sysname,
		@TableSchemaName sysname,
		@TableName sysname,
		@TableObjectId int, --id of the table in sys.objects
		@Operation char(1),
		@UTCUpdateDate datetime,
		@ColumnsUpdated varbinary(100), 
		@JoinClauseFragment nvarchar(3000), --fragment of SQL to append to the dynamic SQL to join inserted and deleted
		@PrimaryKeyFragment nvarchar(3000), --fragment that defines primary key. Values are retrieved in dynamic SQL.,
		@FriendlyName nvarchar(255) --user friendly name to appear on the screen
	)
	as
	begin
		/** 20100413 Piotr Rodak:	This procedure implements generic auditing code. It is called from triggers		***/
		/**						Procedure requires two temporary tables #ins and #del to exist. These have be	***/
		/**						populated with inserted and deleted pseudotables data in triggers before the	***/
		/**						procedure is called																***/

	declare @bit int ,
			@field int ,
			@maxfield int ,
			@char int ,
			@fieldname nvarchar(128) ,
			@sql nvarchar(max), 
			@selectList nvarchar(max), --script fragment with column names in the first part of unpivot query
			@crossapplyList nvarchar(max), --fragment for cross apply part of the unpivot query
			@ErrorMsg varchar(200), --error message that can be passed from internal sql
			@params nvarchar(200) -- common parameters of the query
		declare @ChangeId bigint
		
		
		--initialize parameters definition	
		set @params = '@ChangeId bigint, @ErrorMsg varchar(600) output'

		--select @ColumnsUpdated
		begin try
			--get new id for the change
/**1**/		insert Audit.tAuditGroup(Operation, TableSchema, TableName, Label, UTCUpdateDate, UserName)
			values (@Operation, @TableSchemaName, @TableName, @FriendlyName, @UTCUpdateDate, @UserName)
			set @ChangeId = scope_identity()
	
			;with column_updated_bytesCTE --divide bitmask into bytes. this query requires number table Admin.tTally in the database
			as
			(
				select number ByteNumber, convert(binary(1), 
				substring(@ColumnsUpdated, number, 1)) [ByteValue] 
				from Admin.tTally
				where number <= datalength(@ColumnsUpdated)
			),
			columnsCTE as --return columns belonging to table @TableObjectId, calculate appropriate bit masks
			(
				select column_id, [name] column_name, ByteNumber, ByteValue, 
						power(2, (a.column_id - 1) % 8) BitMask
				from sys.columns a inner join 
					column_updated_bytesCTE b 
						on ((a.column_id - 1) / 8) + 1 = b.ByteNumber
				where a.object_id = @TableObjectId
			)
			,
			updatedColumnIdsCTE as --get updated column ids, remove columns we don't want to audit (non core)
			(
				select c.column_id, convert(nvarchar(128), column_name) column_name, 
				case when ByteValue & BitMask > 0 then N'1' else N'0' end IsColumnChanged
					from columnsCTE c
					--where ByteValue & BitMask > 0 --commented out because even unchanged columns have to be audited
				where column_name not in 
					(select ColumnName from Audit.tIgnoreColumns where TableSchema is null 
						union all
					select ColumnName from Audit.tIgnoreColumns 
						where TableSchema = @TableSchemaName and TableName = @TableName )
			
			)
/**2**/			select 
				@selectList = coalesce(@selectList + N', ', N'') +
					N'convert(sql_variant, d.['  + column_name + ']) [D_' + column_name + N'], ' +
					N'convert(sql_variant, i.['  + column_name + ']) [I_' + column_name + N'], ' + 
					IsColumnChanged + N' [IsColumnChanged_' + column_name + N']' + nchar(10),
				
				@crossapplyList = coalesce(@crossapplyList + N' union all ' + nchar(10), '') + 
				N'select ''' + column_name + N''', [D_' + column_name + N']' + N', [I_' + column_name + N'], ' + N'[IsColumnChanged_' + column_name + N']'
			from updatedColumnIdsCTE 
			
			

			if(@@rowcount > 0)
			begin
				--print '@PrimaryKeyFragment= ' + @PrimaryKeyFragment
				
/**3**/				set @selectList = @selectList + 
					N'from #ins i full outer join #del d' + @JoinClauseFragment + N') q' + nchar(10) +
					N'cross apply ' 
				set @crossapplyList = N'( ' + nchar(10) + @crossApplyList + nchar(10) + N') unp(ColumnName, OldColumnValue, NewColumnValue, IsColumnChanged)'
				
				select @sql = 
					N'begin try ' + nchar(10) + 
					N'insert Audit.tAuditDetails (ChangeID, PK, FieldName, OldValue, NewValue, IsColumnChanged)' + nchar(10) +
					N'select @ChangeId, PK, ColumnName, OldColumnValue, NewColumnValue, IsColumnChanged' + nchar(10) +
					N'from ( select ''' + @PrimaryKeyFragment + N''' [PK], ColumnName, OldColumnValue, NewColumnValue, IsColumnChanged from '+ + nchar(10) + 
					N'( select ' + nchar(10) +
					@selectList + nchar(10) +
					@crossapplyList + nchar(10) + N') outerQry' + nchar(10) +
					N'end try' + nchar(10) + 
					N'begin catch' + nchar(10) + 
						N'set @ErrorMsg = ''Audit error: '' + error_message() + '' ('' + convert(varchar, error_number()) + '')''' + nchar(10) +
						N'print ''dsql Error: '' + @ErrorMsg' + nchar(10) +
					N'end catch'
				--print @sql
				exec sp_executesql @sql, @params, @ChangeId, @ErrorMsg output
				if @ErrorMsg is not null --rethrow error if message not empty
					raiserror(@ErrorMsg, 16, 1)
			end

		end try
		begin catch
			declare @err nvarchar(1000)
			set @err = N'Procedure ' + error_procedure() + N': Error occured ('+ convert(nvarchar, error_number()) + N'): ' + error_message()
			raiserror(@err, 16, 1) with nowait;
		end catch
	end

There are three important stages of execution in this procedure.

/**1**/ – The DML operation is recorded and its id is retrieved to @ChangeId variable. This value is used subsequently in the ‘details’ table. After this insert, bitmap processing already discussed in my previous post takes place.

/**2**/ – The COLUMNS_UPDATED bitmap calculations result with data I can use to generate list of changed columns. This is place where you can decide if you want to save only changed columns, or rather everything. In my case, I store everything, and I have flag IsColumnUpdated that indicates if a column was updated during the DML operation. Please note that even if columns value hasn’t changed, but it was in the SET part of the UPDATE query, this flag will be set to 1. This means that you may want to additionally filter audit data to remove columns whose values didn’t change from the report.

/**3**/ – In this part of the procedure final sql code is put together. As you may notice (you can uncomment print @sql statement to see the generated code) I use cross apply operator in the query. The reason is that my initial approach proved to be quite slow and depended on the number of processed columns. I begun with the code posted by Nigel Rivett some time ago. The code worked, but I didn’t like the idea of having a loop in the trigger, and also the bitmap calculations are based on ordinal_position column. The ordinal_position works only if you don’t remove any columns from the table (unless you remove last column each time). So I changed the loop code to set-based code, which did more or less the same job. As you may notice, the code joins inserted and deleted tables for each of the columns. if you have 5 columns, it’s OK. If you have 50 – it is less than OK. I came across the performance issue and looked for a solution for a while. I realized that to improve performance I need to join the inserted and deleted tables rather once per operation than for every column. So unpivot was the answer. This is not a very well known table operator, and this is a pity, because it can be really useful in many cases. I wonder, why there is practically no documentation about it in Books Online.

The problem with unpivot operator is that if the rotated columns contain null values, they are removed from the resulting rowset. There is an excellent discussion of this operator published some time ago by Brad Schultz: part 1 and part 2. It turns out that unpivot can be successfully replaced with cross apply, which gives you ability to include nulls to the resulting rowset.

I uncommented the print statement in the generated code and ran the update statement:

update Sales.SalesTerritory set [Name] = 'Northwest 1' where TerritoryId = 1

The generated code is as follows:

begin try 
insert Audit.tAuditDetails (ChangeID, PK, FieldName, OldValue, NewValue, IsColumnChanged)
select @ChangeId, PK, ColumnName, OldColumnValue, NewColumnValue, IsColumnChanged
from ( select '[TerritoryID] = '+convert(varchar(1000),coalesce(q.I_TerritoryID, q.D_TerritoryID))+'' [PK], ColumnName, OldColumnValue, NewColumnValue, IsColumnChanged from 
( select 
convert(sql_variant, d.[TerritoryID]) [D_TerritoryID], convert(sql_variant, i.[TerritoryID]) [I_TerritoryID], 0 [IsColumnChanged_TerritoryID]
, convert(sql_variant, d.[Name]) [D_Name], convert(sql_variant, i.[Name]) [I_Name], 1 [IsColumnChanged_Name]
, convert(sql_variant, d.[CountryRegionCode]) [D_CountryRegionCode], convert(sql_variant, i.[CountryRegionCode]) [I_CountryRegionCode], 0 [IsColumnChanged_CountryRegionCode]
, convert(sql_variant, d.[Group]) [D_Group], convert(sql_variant, i.[Group]) [I_Group], 0 [IsColumnChanged_Group]
, convert(sql_variant, d.[SalesYTD]) [D_SalesYTD], convert(sql_variant, i.[SalesYTD]) [I_SalesYTD], 0 [IsColumnChanged_SalesYTD]
, convert(sql_variant, d.[SalesLastYear]) [D_SalesLastYear], convert(sql_variant, i.[SalesLastYear]) [I_SalesLastYear], 0 [IsColumnChanged_SalesLastYear]
, convert(sql_variant, d.[CostYTD]) [D_CostYTD], convert(sql_variant, i.[CostYTD]) [I_CostYTD], 0 [IsColumnChanged_CostYTD]
, convert(sql_variant, d.[CostLastYear]) [D_CostLastYear], convert(sql_variant, i.[CostLastYear]) [I_CostLastYear], 0 [IsColumnChanged_CostLastYear]
, convert(sql_variant, d.[rowguid]) [D_rowguid], convert(sql_variant, i.[rowguid]) [I_rowguid], 0 [IsColumnChanged_rowguid]
, convert(sql_variant, d.[ModifiedDate]) [D_ModifiedDate], convert(sql_variant, i.[ModifiedDate]) [I_ModifiedDate], 0 [IsColumnChanged_ModifiedDate]
from #ins i full outer join #del d on i.TerritoryID = d.TerritoryID) q
cross apply 
( 
select 'TerritoryID', [D_TerritoryID], [I_TerritoryID], [IsColumnChanged_TerritoryID] union all 
select 'Name', [D_Name], [I_Name], [IsColumnChanged_Name] union all 
select 'CountryRegionCode', [D_CountryRegionCode], [I_CountryRegionCode], [IsColumnChanged_CountryRegionCode] union all 
select 'Group', [D_Group], [I_Group], [IsColumnChanged_Group] union all 
select 'SalesYTD', [D_SalesYTD], [I_SalesYTD], [IsColumnChanged_SalesYTD] union all 
select 'SalesLastYear', [D_SalesLastYear], [I_SalesLastYear], [IsColumnChanged_SalesLastYear] union all 
select 'CostYTD', [D_CostYTD], [I_CostYTD], [IsColumnChanged_CostYTD] union all 
select 'CostLastYear', [D_CostLastYear], [I_CostLastYear], [IsColumnChanged_CostLastYear] union all 
select 'rowguid', [D_rowguid], [I_rowguid], [IsColumnChanged_rowguid] union all 
select 'ModifiedDate', [D_ModifiedDate], [I_ModifiedDate], [IsColumnChanged_ModifiedDate]
) unp(ColumnName, OldColumnValue, NewColumnValue, IsColumnChanged)
) outerQry
end try
begin catch
set @ErrorMsg = 'Audit error: ' + error_message() + ' (' + convert(varchar, error_number()) + ')'
print 'dsql Error: ' + @ErrorMsg
end catch

As you see, the generated code joins deleted and inserted tables (copied to respective temporary tables) only once per query, and cross apply operator is used to unpivot the columns to name value pairs. The result of the update is in the following table:

select * from Audit.vAudit

As you can see all column values are stored in the audit table. You can easily change this if you choose to do so, but in my case, this was the requirement. To help identify changed columns, there is IsColumnChang

ed column in the view. Mind though, that if you run update statement that touches a column within the SET clause, it will be reported as changed even if there was no actual change of the value.

TODO – the framework doesn’t support LOB types, as there is no explicit conversion to sql_variant data type. If you need LOB types to be audited, you can convert them to corresponding “short” types, like varchar(8000) and nvarchar(4000), but you may lose some data with such conversion. The other option would be to create separate LOB audit columns to keep these values.

I attach script that installs the framework, you can download it using this link.

Be careful when running it twice, because it removes audit tables and any information that is stored in them.

This would conclude this post and the audit framework miniseries. Please feel free to add any comments you have below.