System DesignACID Properties

ACID Properties: The Pillars of Transactional Integrity

LevelIntermediate

Duration75 mins

TopicACID Properties

2 / 5

Consistency: Valid State Transitions

The Inviolable Contract

Consider a banking system where account balances can go negative, an inventory system where quantities become negative, or a social network where users can follow themselves infinitely. These absurdities represent consistency violations—states that are technically possible to represent in a database but are fundamentally invalid according to business rules.

Consistency in ACID is the property that ensures every transaction takes the database from one valid state to another valid state. It's the guardian of correctness, the enforcer of business rules, and the keeper of invariants that define what 'makes sense' in your data model.

But here's what makes consistency uniquely complex: unlike Atomicity, Isolation, and Durability (which are entirely the database's responsibility), Consistency is a shared responsibility between the database and the application. The database provides mechanisms; the application must use them correctly.

What You Will Learn

This page explores consistency from the ground up: the formal definition, the critical distinction between database consistency and application consistency, the constraint mechanisms databases provide (primary keys, foreign keys, check constraints, triggers), referential integrity rules, and the deep interconnections between consistency and the other ACID properties. You'll understand both what databases guarantee and what remains your responsibility.

Defining Consistency: Two Perspectives

Consistency in ACID has a specific, formal meaning that's often confused with other uses of the term 'consistency' in distributed systems. Let's be precise:

ACID Consistency (What This Page Covers):

A transaction is consistent if, assuming the database starts in a valid state, it leaves the database in a valid state after the transaction completes. 'Valid state' means all defined integrity constraints, triggers, and cascades have been satisfied.

Distributed Systems Consistency (Different Concept):

In distributed systems (CAP theorem, eventual consistency), 'consistency' refers to whether all nodes see the same data at the same time. This is NOT what ACID consistency means—that's more related to ACID's Isolation property.

For this discussion, we focus exclusively on ACID consistency: the guarantee that transactions preserve data validity.

Consistency: ACID vs Distributed Systems
Aspect	ACID Consistency	Distributed Consistency
Focus	Data validity and business rules	Data visibility across nodes
Concern	Is the data correct?	Is the data the same everywhere?
Guarantee	Invariants are preserved	All readers see the same write
Enforcement	Constraints, triggers, application logic	Replication protocols, consensus
Example failure	Negative inventory count	Node A shows balance $100, Node B shows $200

Terminology Warning

When system design interviews mention 'consistency,' always clarify what type they mean. ACID Consistency, CAP Consistency, Read Consistency, and Eventual Consistency are all different concepts with different implications. Conflating them leads to fundamental misunderstandings.

The Consistency Invariant

At the heart of consistency is the concept of an invariant—a property that must always be true about the data. Invariants define the 'rules of the world' your database represents.

Examples of Invariants:

Banking System:

The sum of all account balances equals the total money in the system (conservation of money)
No account balance can be negative (unless it's a line of credit)
Every transaction must have equal debits and credits (double-entry bookkeeping)

E-commerce System:

Available inventory ≥ 0 for every product
Order totals must equal sum of line items
Every order must have at least one line item

Social Network:

A user cannot follow themselves
Follower counts must match the actual number of follow relationships
Every post must have a valid author

Invariant Example: Conservation of Money
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
-- Invariant: Total money in system is conserved
-- Before any transaction, this query returns X
-- After any valid transaction, it must still return X
-- (unless we're explicitly depositing/withdrawing from outside)
 
SELECT SUM(balance) AS total_money
FROM accounts;
 
-- A transfer transaction preserves this invariant:
BEGIN TRANSACTION;
  UPDATE accounts SET balance = balance - 100 WHERE id = 'A';  -- -100
  UPDATE accounts SET balance = balance + 100 WHERE id = 'B';  -- +100
COMMIT;                                                         -- Net: 0
 
-- An invalid transaction would violate it:
BEGIN TRANSACTION;
  UPDATE accounts SET balance = balance - 100 WHERE id = 'A';  -- -100
  -- Oops, forgot to credit!
COMMIT;                                                         -- Net: -100 ❌
 
-- This is why we wrap related operations in transactions
-- CONSISTENCY + ATOMICITY together prevent partial updates

The Consistency Contract:

The database promises: "If you give me data that satisfies the invariants and write transactions that, if executed completely, would maintain those invariants, then after every committed transaction the invariants will still hold."

Notice the conditions: the database isn't magic. If you start with invalid data, or write transactions that violate invariants when executed completely, the database can't save you. It can only enforce the constraints you define and ensure atomicity of your transaction logic.

Database-Level Constraint Mechanisms

Databases provide multiple mechanisms to enforce consistency automatically. These constraints are evaluated at transaction commit time (or earlier), and if any constraint is violated, the entire transaction is aborted.

1. Primary Key Constraints

Every table should have a primary key—a column or set of columns that uniquely identifies each row. Primary keys enforce entity integrity: each thing in the database is distinct and identifiable.

Primary Key Constraints
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
-- Primary key ensures no two users have the same ID
CREATE TABLE users (
    id          UUID PRIMARY KEY DEFAULT gen_random_uuid(),
    email       VARCHAR(255),
    created_at  TIMESTAMP DEFAULT CURRENT_TIMESTAMP
);
 
-- Attempting to insert duplicate ID fails
INSERT INTO users (id, email) VALUES ('abc-123', 'alice@example.com');
INSERT INTO users (id, email) VALUES ('abc-123', 'bob@example.com');
-- ERROR: duplicate key value violates unique constraint "users_pkey"
 
-- Composite primary keys for relationship tables
CREATE TABLE order_items (
    order_id    UUID NOT NULL,
    product_id  UUID NOT NULL,
    quantity    INTEGER NOT NULL,
    PRIMARY KEY (order_id, product_id)  -- Combination must be unique
);

2. Unique Constraints

Beyond primary keys, unique constraints ensure that specific columns (or combinations) have distinct values across all rows. Unlike primary keys, columns with unique constraints can contain NULL (in most databases, multiple NULLs are allowed).

Unique Constraints
1
2
3
4
5
6
7
8
9
10
11
12
-- Email must be unique across all users
ALTER TABLE users ADD CONSTRAINT users_email_unique UNIQUE (email);
 
-- Attempting duplicate email fails
INSERT INTO users (email) VALUES ('alice@example.com');
INSERT INTO users (email) VALUES ('alice@example.com');
-- ERROR: duplicate key value violates unique constraint "users_email_unique"
 
-- Partial unique constraints (PostgreSQL)
-- Only enforce uniqueness for non-deleted records
CREATE UNIQUE INDEX users_email_active ON users (email) 
WHERE deleted_at IS NULL;

3. Foreign Key Constraints

Foreign keys enforce referential integrity—ensuring that references between tables are always valid. You cannot create an order for a non-existent customer, nor delete a customer who has orders (depending on the action specified).

Foreign Key Constraints
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
CREATE TABLE orders (
    id          UUID PRIMARY KEY,
    customer_id UUID NOT NULL,
    total       DECIMAL(10, 2) NOT NULL,
    
    -- Enforce referential integrity
    CONSTRAINT fk_orders_customer 
        FOREIGN KEY (customer_id) 
        REFERENCES customers(id)
        ON DELETE RESTRICT    -- Prevent deleting customer with orders
        ON UPDATE CASCADE     -- Update order if customer ID changes
);
 
-- Referential actions:
-- RESTRICT:   Prevent the parent operation (default)
-- CASCADE:    Apply the same operation to child rows
-- SET NULL:   Set child FK to NULL (column must allow NULL)
-- SET DEFAULT: Set child FK to its default value
-- NO ACTION:  Similar to RESTRICT, but checked at end of transaction

Other Constraint Types

•NOT NULL — Column cannot contain NULL values. Essential for required fields.
•CHECK Constraints — Arbitrary boolean expressions that must be true. E.g., CHECK (age >= 0 AND age <= 150).
•EXCLUSION Constraints (PostgreSQL) — Ensure that specified columns have no conflicting values. Powerful for scheduling, ranges.
•Domain Constraints — Custom data types with built-in validation. E.g., a 'positive_integer' domain that rejects negatives.

Check Constraints: Business Rules in SQL

Check constraints allow you to enforce arbitrary business rules directly in the database. They're evaluated whenever a row is inserted or updated, and violations abort the transaction.

Advantages of Database-Level Check Constraints:

Inescapable — No application bug, API bypass, or direct database access can violate them
Documented — The schema serves as documentation of business rules
Consistent — All applications see the same enforcement
Fast — Evaluated in the database engine, no round-trip overhead

Comprehensive Check Constraints
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
CREATE TABLE products (
    id              UUID PRIMARY KEY,
    name            VARCHAR(255) NOT NULL,
    price           DECIMAL(10, 2) NOT NULL,
    discount_price  DECIMAL(10, 2),
    quantity        INTEGER NOT NULL,
    status          VARCHAR(50) NOT NULL,
    weight_kg       DECIMAL(8, 3),
    
    -- Price must be positive
    CONSTRAINT chk_price_positive 
        CHECK (price > 0),
    
    -- Discount price must be less than regular price
    CONSTRAINT chk_discount_valid 
        CHECK (discount_price IS NULL OR discount_price < price),
    
    -- Quantity cannot be negative
    CONSTRAINT chk_quantity_non_negative 
        CHECK (quantity >= 0),
    
    -- Status must be one of predefined values
    CONSTRAINT chk_status_valid 
        CHECK (status IN ('draft', 'active', 'discontinued', 'out_of_stock')),
    
    -- Weight must be positive if specified
    CONSTRAINT chk_weight_positive 
        CHECK (weight_kg IS NULL OR weight_kg > 0),
    
    -- Complex multi-column constraint
    -- If status is 'active', must have quantity > 0
    CONSTRAINT chk_active_has_stock 
        CHECK (status != 'active' OR quantity > 0)
);
 
-- Attempting invalid data fails immediately
INSERT INTO products (id, name, price, quantity, status)
VALUES (gen_random_uuid(), 'Widget', -10.00, 5, 'active');
-- ERROR: new row for relation "products" violates check constraint "chk_price_positive"

Check Constraint Limitations

Check constraints are row-level—they can only reference columns in the current row. They cannot query other tables or reference other rows. For cross-row or cross-table validations, you need triggers or application logic. Example: 'User can have maximum 3 active subscriptions' requires counting rows, which check constraints cannot do.

Triggers for Complex Consistency Rules

When constraints aren't expressive enough, triggers provide arbitrary programmable logic that executes automatically before or after data modifications. Triggers can enforce complex invariants that span multiple tables or rows.

When to Use Triggers:

Cross-row validation (e.g., 'maximum 3 items per user')
Cross-table validation (e.g., 'total must match sum of line items')
Maintaining derived data (e.g., 'update order total when line item changes')
Audit logging that must never be bypassed

Trigger: Maintaining Order Totals
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
-- Invariant: orders.total must equal sum of order_items.subtotal
-- Trigger ensures this is always true
 
CREATE OR REPLACE FUNCTION update_order_total()
RETURNS TRIGGER AS $$
DECLARE
    new_total DECIMAL(10, 2);
BEGIN
    -- Calculate the correct total
    SELECT COALESCE(SUM(quantity * unit_price), 0)
    INTO new_total
    FROM order_items
    WHERE order_id = COALESCE(NEW.order_id, OLD.order_id);
    
    -- Update the order
    UPDATE orders 
    SET total = new_total
    WHERE id = COALESCE(NEW.order_id, OLD.order_id);
    
    RETURN NEW;
END;
$$ LANGUAGE plpgsql;
 
-- Trigger on INSERT, UPDATE, or DELETE of order_items
CREATE TRIGGER trg_update_order_total
AFTER INSERT OR UPDATE OR DELETE ON order_items
FOR EACH ROW
EXECUTE FUNCTION update_order_total();
 
-- Now ANY change to order_items automatically updates the order total
-- This invariant cannot be violated by any application code

Trigger: Enforcing Business Limit
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
-- Invariant: Users can have at most 5 active projects
CREATE OR REPLACE FUNCTION check_project_limit()
RETURNS TRIGGER AS $$
DECLARE
    active_count INTEGER;
BEGIN
    -- Only check on INSERT or when status becomes 'active'
    IF TG_OP = 'INSERT' OR 
       (TG_OP = 'UPDATE' AND NEW.status = 'active' AND OLD.status != 'active') THEN
        
        SELECT COUNT(*) INTO active_count
        FROM projects
        WHERE user_id = NEW.user_id 
        AND status = 'active';
        
        -- Include the new row in count for insert
        IF TG_OP = 'INSERT' AND NEW.status = 'active' THEN
            active_count := active_count + 1;
        END IF;
        
        IF active_count > 5 THEN
            RAISE EXCEPTION 'User cannot have more than 5 active projects. Current: %', active_count
                USING ERRCODE = 'check_violation';
        END IF;
    END IF;
    
    RETURN NEW;
END;
$$ LANGUAGE plpgsql;
 
CREATE TRIGGER trg_check_project_limit
BEFORE INSERT OR UPDATE ON projects
FOR EACH ROW
EXECUTE FUNCTION check_project_limit();

Trigger Performance Considerations

Triggers execute synchronously within the transaction. Complex trigger logic can significantly impact performance, especially on high-volume tables. Triggers that query other large tables are particularly problematic. Always benchmark trigger performance and consider whether application-level validation or eventual consistency might be more appropriate for non-critical invariants.

Application-Level Consistency Responsibility

Here's the truth that database purists sometimes overlook: not all consistency can or should be enforced in the database. Many business rules are:

Too complex to express in SQL constraints or triggers
Subject to frequent change (requiring schema migrations)
Dependent on external state (other services, time of day, user permissions)
Performance-prohibitive at the database level

These rules become application-level consistency—the application's responsibility to enforce.

Database-Level Enforcement

•Primary key uniqueness
•Foreign key relationships
•Simple value constraints (ranges, enums)
•NOT NULL requirements
•Cross-column constraints on same row
•Critical invariants that must never break

Application-Level Enforcement

•Cross-service validation
•Rate limiting and quotas
•Permission and authorization checks
•Complex business workflows
•Time-dependent rules
•Rules requiring external API calls

Application-Level Consistency Example
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
// Complex business rule that can't easily live in database
async function createSubscription(userId: string, planId: string) {
  // Check external payment service
  const paymentMethod = await stripeClient.getDefaultPaymentMethod(userId);
  if (!paymentMethod) {
    throw new Error('No valid payment method on file');
  }
  
  // Check business rules against external state
  const plan = await prisma.plan.findUnique({ where: { id: planId } });
  if (plan.isEnterprise && !await hasEnterpriseLicense(userId)) {
    throw new Error('Enterprise license required for this plan');
  }
  
  // Check time-dependent rule
  if (plan.isPromotional && !isPromotionActive(plan.promotionCode)) {
    throw new Error('This promotional plan has expired');
  }
  
  // Check quota across services
  const currentSeats = await getActiveSeatsFromHRSystem(userId);
  if (currentSeats > plan.maxSeats) {
    throw new Error(`Plan allows ${plan.maxSeats} seats but you have ${currentSeats}`);
  }
  
  // All checks passed—now we can create in database
  // The database enforces what it can (FK to valid plan, etc.)
  return prisma.subscription.create({
    data: { userId, planId, status: 'active' }
  });
}

Defense in Depth

The best approach is defense in depth: put what you can in the database, but always validate in the application too. Database constraints catch bugs that slip through application code. Application validation catches issues that can't be expressed as constraints. Together, they form a robust defense against data corruption.

Consistency's Relationship with Other ACID Properties

Consistency doesn't exist in isolation—it depends on the other ACID properties to function correctly, and they depend on it. Understanding these interdependencies is crucial for system design.

Consistency + Atomicity:

Without atomicity, consistency is impossible to guarantee. Consider a bank transfer that debits one account and credits another. If the operation is interrupted halfway:

The debit succeeds, violating the 'conservation of money' invariant
The system is now in an invalid state
Atomicity's all-or-nothing guarantee prevents this by rolling back the partial debit

Consistency + Isolation:

Isolation protects consistency during concurrent access. Without isolation:

Two transactions might read the same inventory count: 5
Both decrement it to 4 and write back
Final count: 4, but we sold 2 items. Inventory consistency is violated!
Isolation ensures transactions see a consistent view and don't interfere destructively

Consistency + Durability:

Durability ensures that once a transaction commits (having achieved a consistent state), that consistency persists across failures:

Without durability, a crash could lose committed data
The database could recover to an inconsistent state
Durability guarantees the consistent state survives crashes

ACID Properties Interdependency
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
┌──────────────────────────────────────────────────────────────────┐
│                         ACID SYNERGY                             │
├──────────────────────────────────────────────────────────────────┤
│                                                                  │
│   ATOMICITY          ──────────►     CONSISTENCY                 │
│   "All or nothing"        ensures     "Valid states only"        │
│                                                                  │
│   Without atomicity, partial transactions violate invariants     │
│                                                                  │
├──────────────────────────────────────────────────────────────────┤
│                                                                  │
│   ISOLATION          ──────────►     CONSISTENCY                 │
│   "Independent execution"  protects  "Valid states only"        │
│                                                                  │
│   Without isolation, concurrent transactions corrupt each other  │
│                                                                  │
├──────────────────────────────────────────────────────────────────┤
│                                                                  │
│   DURABILITY         ──────────►     CONSISTENCY                 │
│   "Commits survive"       preserves  "Valid states only"        │
│                                                                  │
│   Without durability, consistent state is lost on crash          │
│                                                                  │
├──────────────────────────────────────────────────────────────────┤
│                                                                  │
│   CONSISTENCY is the GOAL.                                       │
│   Atomicity, Isolation, and Durability are the MECHANISMS.       │
│                                                                  │
└──────────────────────────────────────────────────────────────────┘

The 'C' in ACID Is Different

Some database theorists argue that 'C' doesn't belong in ACID because it's fundamentally different. A, I, and D are pure database guarantees. C is a shared responsibility that depends on the application defining correct constraints and transactions. The database can only enforce what you specify—it cannot invent your business rules.

Consistency Violations in Practice

Despite database protections, consistency violations happen in production. Understanding common causes helps you design more robust systems.

Common Causes of Consistency Violations:

Root Causes of Data Corruption

•Missing constraints — Business rules exist in code but not in the database. A direct database edit bypasses application validation, corrupting data.
•Improper transaction boundaries — Related operations split across multiple transactions. A failure between them leaves partial state.
•Race conditions — Concurrent transactions interleave in unexpected ways. Even with isolation, application logic might have time-of-check vs time-of-use bugs.
•Schema migrations gone wrong — Data transformations during migration introduce inconsistencies. Old data doesn't match new constraints.
•External system disagreement — Payment processed but order creation failed. Database says no order, Stripe says charged.
•Eventual consistency confusion — Developer treats eventually consistent read as strongly consistent, makes decisions on stale data.
•Manual database modifications — Well-meaning DBA fixes 'one record' without understanding cascading implications.

Time-of-Check vs Time-of-Use Bug
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
// ❌ VULNERABLE: Time-of-check vs time-of-use (TOCTOU)
async function purchaseItem(userId: string, itemId: string) {
  // Check inventory (TIME OF CHECK)
  const item = await prisma.item.findUnique({ where: { id: itemId } });
  
  if (item.quantity < 1) {
    throw new Error('Out of stock');
  }
  
  // Network delay, slow processing, etc.
  // Another request might decrement quantity HERE
  
  // Decrement inventory (TIME OF USE)
  // But quantity might now be 0!
  await prisma.item.update({
    where: { id: itemId },
    data: { quantity: { decrement: 1 } }
  });
}
 
// ✅ CORRECT: Atomic check-and-update
async function purchaseItemSafe(userId: string, itemId: string) {
  // Atomic: only decrement if quantity > 0
  const result = await prisma.item.updateMany({
    where: { id: itemId, quantity: { gt: 0 } },
    data: { quantity: { decrement: 1 } }
  });
  
  if (result.count === 0) {
    throw new Error('Out of stock');
  }
  // Success: we only get here if we actually decremented
}

Summary: Consistency Mastery

Consistency is the promise that your data always makes sense—that business rules are upheld and invalid states are rejected. But unlike other ACID properties, consistency is a partnership between you and the database.

Key Takeaways

•ACID Consistency ≠ Distributed Consistency — ACID Consistency is about data validity; distributed consistency is about visibility across nodes. Don't confuse them.
•Invariants define validity — Identify your invariants explicitly. What must always be true about your data? Document them.
•Use all available constraints — Primary keys, foreign keys, unique constraints, check constraints, and triggers are your tools. Use them.
•Application logic handles the rest — Complex, cross-service, time-dependent, or frequently-changing rules belong in application code.
•Defense in depth — Enforce at both layers. Database catches what application misses; application handles what database can't.
•Consistency depends on AID — Atomicity, Isolation, and Durability are mechanisms that enable consistency. All four properties work together.

Page Complete

You now understand Consistency in depth—from invariants and database constraints through triggers and application-level enforcement, to its interdependence with other ACID properties. Next, we'll explore Isolation: how databases handle concurrent transactions without letting them interfere with each other.

2 / 5

Loading learning content...

System DesignACID Properties

ACID Properties: The Pillars of Transactional Integrity

LevelIntermediate

Duration75 mins

TopicACID Properties

2 / 5

Consistency: Valid State Transitions

The Inviolable Contract

What You Will Learn

Defining Consistency: Two Perspectives

Consistency in ACID has a specific, formal meaning that's often confused with other uses of the term 'consistency' in distributed systems. Let's be precise:

ACID Consistency (What This Page Covers):

Distributed Systems Consistency (Different Concept):

For this discussion, we focus exclusively on ACID consistency: the guarantee that transactions preserve data validity.

Consistency: ACID vs Distributed Systems
Aspect	ACID Consistency	Distributed Consistency
Focus	Data validity and business rules	Data visibility across nodes
Concern	Is the data correct?	Is the data the same everywhere?
Guarantee	Invariants are preserved	All readers see the same write
Enforcement	Constraints, triggers, application logic	Replication protocols, consensus
Example failure	Negative inventory count	Node A shows balance $100, Node B shows $200

Terminology Warning

The Consistency Invariant

At the heart of consistency is the concept of an invariant—a property that must always be true about the data. Invariants define the 'rules of the world' your database represents.

Examples of Invariants:

Banking System:

The sum of all account balances equals the total money in the system (conservation of money)
No account balance can be negative (unless it's a line of credit)
Every transaction must have equal debits and credits (double-entry bookkeeping)

E-commerce System:

Available inventory ≥ 0 for every product
Order totals must equal sum of line items
Every order must have at least one line item

Social Network:

A user cannot follow themselves
Follower counts must match the actual number of follow relationships
Every post must have a valid author

Invariant Example: Conservation of Money
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
-- Invariant: Total money in system is conserved
-- Before any transaction, this query returns X
-- After any valid transaction, it must still return X
-- (unless we're explicitly depositing/withdrawing from outside)
 
SELECT SUM(balance) AS total_money
FROM accounts;
 
-- A transfer transaction preserves this invariant:
BEGIN TRANSACTION;
  UPDATE accounts SET balance = balance - 100 WHERE id = 'A';  -- -100
  UPDATE accounts SET balance = balance + 100 WHERE id = 'B';  -- +100
COMMIT;                                                         -- Net: 0
 
-- An invalid transaction would violate it:
BEGIN TRANSACTION;
  UPDATE accounts SET balance = balance - 100 WHERE id = 'A';  -- -100
  -- Oops, forgot to credit!
COMMIT;                                                         -- Net: -100 ❌
 
-- This is why we wrap related operations in transactions
-- CONSISTENCY + ATOMICITY together prevent partial updates

The Consistency Contract:

Database-Level Constraint Mechanisms

1. Primary Key Constraints

Every table should have a primary key—a column or set of columns that uniquely identifies each row. Primary keys enforce entity integrity: each thing in the database is distinct and identifiable.

Primary Key Constraints
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
-- Primary key ensures no two users have the same ID
CREATE TABLE users (
    id          UUID PRIMARY KEY DEFAULT gen_random_uuid(),
    email       VARCHAR(255),
    created_at  TIMESTAMP DEFAULT CURRENT_TIMESTAMP
);
 
-- Attempting to insert duplicate ID fails
INSERT INTO users (id, email) VALUES ('abc-123', 'alice@example.com');
INSERT INTO users (id, email) VALUES ('abc-123', 'bob@example.com');
-- ERROR: duplicate key value violates unique constraint "users_pkey"
 
-- Composite primary keys for relationship tables
CREATE TABLE order_items (
    order_id    UUID NOT NULL,
    product_id  UUID NOT NULL,
    quantity    INTEGER NOT NULL,
    PRIMARY KEY (order_id, product_id)  -- Combination must be unique
);

2. Unique Constraints

Unique Constraints
1
2
3
4
5
6
7
8
9
10
11
12
-- Email must be unique across all users
ALTER TABLE users ADD CONSTRAINT users_email_unique UNIQUE (email);
 
-- Attempting duplicate email fails
INSERT INTO users (email) VALUES ('alice@example.com');
INSERT INTO users (email) VALUES ('alice@example.com');
-- ERROR: duplicate key value violates unique constraint "users_email_unique"
 
-- Partial unique constraints (PostgreSQL)
-- Only enforce uniqueness for non-deleted records
CREATE UNIQUE INDEX users_email_active ON users (email) 
WHERE deleted_at IS NULL;

3. Foreign Key Constraints

Foreign Key Constraints
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
CREATE TABLE orders (
    id          UUID PRIMARY KEY,
    customer_id UUID NOT NULL,
    total       DECIMAL(10, 2) NOT NULL,
    
    -- Enforce referential integrity
    CONSTRAINT fk_orders_customer 
        FOREIGN KEY (customer_id) 
        REFERENCES customers(id)
        ON DELETE RESTRICT    -- Prevent deleting customer with orders
        ON UPDATE CASCADE     -- Update order if customer ID changes
);
 
-- Referential actions:
-- RESTRICT:   Prevent the parent operation (default)
-- CASCADE:    Apply the same operation to child rows
-- SET NULL:   Set child FK to NULL (column must allow NULL)
-- SET DEFAULT: Set child FK to its default value
-- NO ACTION:  Similar to RESTRICT, but checked at end of transaction

Other Constraint Types

•NOT NULL — Column cannot contain NULL values. Essential for required fields.
•CHECK Constraints — Arbitrary boolean expressions that must be true. E.g., CHECK (age >= 0 AND age <= 150).
•EXCLUSION Constraints (PostgreSQL) — Ensure that specified columns have no conflicting values. Powerful for scheduling, ranges.
•Domain Constraints — Custom data types with built-in validation. E.g., a 'positive_integer' domain that rejects negatives.

Check Constraints: Business Rules in SQL

Check constraints allow you to enforce arbitrary business rules directly in the database. They're evaluated whenever a row is inserted or updated, and violations abort the transaction.

Advantages of Database-Level Check Constraints:

Inescapable — No application bug, API bypass, or direct database access can violate them
Documented — The schema serves as documentation of business rules
Consistent — All applications see the same enforcement
Fast — Evaluated in the database engine, no round-trip overhead

Comprehensive Check Constraints
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
CREATE TABLE products (
    id              UUID PRIMARY KEY,
    name            VARCHAR(255) NOT NULL,
    price           DECIMAL(10, 2) NOT NULL,
    discount_price  DECIMAL(10, 2),
    quantity        INTEGER NOT NULL,
    status          VARCHAR(50) NOT NULL,
    weight_kg       DECIMAL(8, 3),
    
    -- Price must be positive
    CONSTRAINT chk_price_positive 
        CHECK (price > 0),
    
    -- Discount price must be less than regular price
    CONSTRAINT chk_discount_valid 
        CHECK (discount_price IS NULL OR discount_price < price),
    
    -- Quantity cannot be negative
    CONSTRAINT chk_quantity_non_negative 
        CHECK (quantity >= 0),
    
    -- Status must be one of predefined values
    CONSTRAINT chk_status_valid 
        CHECK (status IN ('draft', 'active', 'discontinued', 'out_of_stock')),
    
    -- Weight must be positive if specified
    CONSTRAINT chk_weight_positive 
        CHECK (weight_kg IS NULL OR weight_kg > 0),
    
    -- Complex multi-column constraint
    -- If status is 'active', must have quantity > 0
    CONSTRAINT chk_active_has_stock 
        CHECK (status != 'active' OR quantity > 0)
);
 
-- Attempting invalid data fails immediately
INSERT INTO products (id, name, price, quantity, status)
VALUES (gen_random_uuid(), 'Widget', -10.00, 5, 'active');
-- ERROR: new row for relation "products" violates check constraint "chk_price_positive"

Check Constraint Limitations

Triggers for Complex Consistency Rules

When to Use Triggers:

Cross-row validation (e.g., 'maximum 3 items per user')
Cross-table validation (e.g., 'total must match sum of line items')
Maintaining derived data (e.g., 'update order total when line item changes')
Audit logging that must never be bypassed

Trigger: Maintaining Order Totals
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
-- Invariant: orders.total must equal sum of order_items.subtotal
-- Trigger ensures this is always true
 
CREATE OR REPLACE FUNCTION update_order_total()
RETURNS TRIGGER AS $$
DECLARE
    new_total DECIMAL(10, 2);
BEGIN
    -- Calculate the correct total
    SELECT COALESCE(SUM(quantity * unit_price), 0)
    INTO new_total
    FROM order_items
    WHERE order_id = COALESCE(NEW.order_id, OLD.order_id);
    
    -- Update the order
    UPDATE orders 
    SET total = new_total
    WHERE id = COALESCE(NEW.order_id, OLD.order_id);
    
    RETURN NEW;
END;
$$ LANGUAGE plpgsql;
 
-- Trigger on INSERT, UPDATE, or DELETE of order_items
CREATE TRIGGER trg_update_order_total
AFTER INSERT OR UPDATE OR DELETE ON order_items
FOR EACH ROW
EXECUTE FUNCTION update_order_total();
 
-- Now ANY change to order_items automatically updates the order total
-- This invariant cannot be violated by any application code

Trigger: Enforcing Business Limit
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
-- Invariant: Users can have at most 5 active projects
CREATE OR REPLACE FUNCTION check_project_limit()
RETURNS TRIGGER AS $$
DECLARE
    active_count INTEGER;
BEGIN
    -- Only check on INSERT or when status becomes 'active'
    IF TG_OP = 'INSERT' OR 
       (TG_OP = 'UPDATE' AND NEW.status = 'active' AND OLD.status != 'active') THEN
        
        SELECT COUNT(*) INTO active_count
        FROM projects
        WHERE user_id = NEW.user_id 
        AND status = 'active';
        
        -- Include the new row in count for insert
        IF TG_OP = 'INSERT' AND NEW.status = 'active' THEN
            active_count := active_count + 1;
        END IF;
        
        IF active_count > 5 THEN
            RAISE EXCEPTION 'User cannot have more than 5 active projects. Current: %', active_count
                USING ERRCODE = 'check_violation';
        END IF;
    END IF;
    
    RETURN NEW;
END;
$$ LANGUAGE plpgsql;
 
CREATE TRIGGER trg_check_project_limit
BEFORE INSERT OR UPDATE ON projects
FOR EACH ROW
EXECUTE FUNCTION check_project_limit();

Trigger Performance Considerations

Application-Level Consistency Responsibility

Here's the truth that database purists sometimes overlook: not all consistency can or should be enforced in the database. Many business rules are:

Too complex to express in SQL constraints or triggers
Subject to frequent change (requiring schema migrations)
Dependent on external state (other services, time of day, user permissions)
Performance-prohibitive at the database level

These rules become application-level consistency—the application's responsibility to enforce.

Database-Level Enforcement

•Primary key uniqueness
•Foreign key relationships
•Simple value constraints (ranges, enums)
•NOT NULL requirements
•Cross-column constraints on same row
•Critical invariants that must never break

Application-Level Enforcement

•Cross-service validation
•Rate limiting and quotas
•Permission and authorization checks
•Complex business workflows
•Time-dependent rules
•Rules requiring external API calls

Application-Level Consistency Example
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
// Complex business rule that can't easily live in database
async function createSubscription(userId: string, planId: string) {
  // Check external payment service
  const paymentMethod = await stripeClient.getDefaultPaymentMethod(userId);
  if (!paymentMethod) {
    throw new Error('No valid payment method on file');
  }
  
  // Check business rules against external state
  const plan = await prisma.plan.findUnique({ where: { id: planId } });
  if (plan.isEnterprise && !await hasEnterpriseLicense(userId)) {
    throw new Error('Enterprise license required for this plan');
  }
  
  // Check time-dependent rule
  if (plan.isPromotional && !isPromotionActive(plan.promotionCode)) {
    throw new Error('This promotional plan has expired');
  }
  
  // Check quota across services
  const currentSeats = await getActiveSeatsFromHRSystem(userId);
  if (currentSeats > plan.maxSeats) {
    throw new Error(`Plan allows ${plan.maxSeats} seats but you have ${currentSeats}`);
  }
  
  // All checks passed—now we can create in database
  // The database enforces what it can (FK to valid plan, etc.)
  return prisma.subscription.create({
    data: { userId, planId, status: 'active' }
  });
}

Defense in Depth

Consistency's Relationship with Other ACID Properties

Consistency doesn't exist in isolation—it depends on the other ACID properties to function correctly, and they depend on it. Understanding these interdependencies is crucial for system design.

Consistency + Atomicity:

Without atomicity, consistency is impossible to guarantee. Consider a bank transfer that debits one account and credits another. If the operation is interrupted halfway:

The debit succeeds, violating the 'conservation of money' invariant
The system is now in an invalid state
Atomicity's all-or-nothing guarantee prevents this by rolling back the partial debit

Consistency + Isolation:

Isolation protects consistency during concurrent access. Without isolation:

Two transactions might read the same inventory count: 5
Both decrement it to 4 and write back
Final count: 4, but we sold 2 items. Inventory consistency is violated!
Isolation ensures transactions see a consistent view and don't interfere destructively

Consistency + Durability:

Durability ensures that once a transaction commits (having achieved a consistent state), that consistency persists across failures:

Without durability, a crash could lose committed data
The database could recover to an inconsistent state
Durability guarantees the consistent state survives crashes

ACID Properties Interdependency
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
┌──────────────────────────────────────────────────────────────────┐
│                         ACID SYNERGY                             │
├──────────────────────────────────────────────────────────────────┤
│                                                                  │
│   ATOMICITY          ──────────►     CONSISTENCY                 │
│   "All or nothing"        ensures     "Valid states only"        │
│                                                                  │
│   Without atomicity, partial transactions violate invariants     │
│                                                                  │
├──────────────────────────────────────────────────────────────────┤
│                                                                  │
│   ISOLATION          ──────────►     CONSISTENCY                 │
│   "Independent execution"  protects  "Valid states only"        │
│                                                                  │
│   Without isolation, concurrent transactions corrupt each other  │
│                                                                  │
├──────────────────────────────────────────────────────────────────┤
│                                                                  │
│   DURABILITY         ──────────►     CONSISTENCY                 │
│   "Commits survive"       preserves  "Valid states only"        │
│                                                                  │
│   Without durability, consistent state is lost on crash          │
│                                                                  │
├──────────────────────────────────────────────────────────────────┤
│                                                                  │
│   CONSISTENCY is the GOAL.                                       │
│   Atomicity, Isolation, and Durability are the MECHANISMS.       │
│                                                                  │
└──────────────────────────────────────────────────────────────────┘

The 'C' in ACID Is Different

Consistency Violations in Practice

Despite database protections, consistency violations happen in production. Understanding common causes helps you design more robust systems.

Common Causes of Consistency Violations:

Root Causes of Data Corruption

•Missing constraints — Business rules exist in code but not in the database. A direct database edit bypasses application validation, corrupting data.
•Improper transaction boundaries — Related operations split across multiple transactions. A failure between them leaves partial state.
•Race conditions — Concurrent transactions interleave in unexpected ways. Even with isolation, application logic might have time-of-check vs time-of-use bugs.
•Schema migrations gone wrong — Data transformations during migration introduce inconsistencies. Old data doesn't match new constraints.
•External system disagreement — Payment processed but order creation failed. Database says no order, Stripe says charged.
•Eventual consistency confusion — Developer treats eventually consistent read as strongly consistent, makes decisions on stale data.
•Manual database modifications — Well-meaning DBA fixes 'one record' without understanding cascading implications.

Time-of-Check vs Time-of-Use Bug
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
// ❌ VULNERABLE: Time-of-check vs time-of-use (TOCTOU)
async function purchaseItem(userId: string, itemId: string) {
  // Check inventory (TIME OF CHECK)
  const item = await prisma.item.findUnique({ where: { id: itemId } });
  
  if (item.quantity < 1) {
    throw new Error('Out of stock');
  }
  
  // Network delay, slow processing, etc.
  // Another request might decrement quantity HERE
  
  // Decrement inventory (TIME OF USE)
  // But quantity might now be 0!
  await prisma.item.update({
    where: { id: itemId },
    data: { quantity: { decrement: 1 } }
  });
}
 
// ✅ CORRECT: Atomic check-and-update
async function purchaseItemSafe(userId: string, itemId: string) {
  // Atomic: only decrement if quantity > 0
  const result = await prisma.item.updateMany({
    where: { id: itemId, quantity: { gt: 0 } },
    data: { quantity: { decrement: 1 } }
  });
  
  if (result.count === 0) {
    throw new Error('Out of stock');
  }
  // Success: we only get here if we actually decremented
}

Summary: Consistency Mastery

Key Takeaways

•ACID Consistency ≠ Distributed Consistency — ACID Consistency is about data validity; distributed consistency is about visibility across nodes. Don't confuse them.
•Invariants define validity — Identify your invariants explicitly. What must always be true about your data? Document them.
•Use all available constraints — Primary keys, foreign keys, unique constraints, check constraints, and triggers are your tools. Use them.
•Application logic handles the rest — Complex, cross-service, time-dependent, or frequently-changing rules belong in application code.
•Defense in depth — Enforce at both layers. Database catches what application misses; application handles what database can't.
•Consistency depends on AID — Atomicity, Isolation, and Durability are mechanisms that enable consistency. All four properties work together.

Page Complete

2 / 5