Database Management SystemsIntegrity Constraints

Integrity Constraints in the Relational Model

LevelIntermediate

Duration90 mins

TopicIntegrity Constraints

5 / 5

Semantic Constraints

Beyond Structural Validation: The Meaning of Data

Entity integrity ensures each row is identifiable. Referential integrity ensures relationships are valid. Domain constraints ensure values are syntactically correct. Key constraints ensure uniqueness. But data correctness demands more than these structural guarantees—it demands semantic correctness.

Semantic constraints (also called business rules, application constraints, or general constraints) capture the complex logical requirements that give data its meaning. An employee's end date must be after their start date. A manager must belong to the same department as their employees. An order total must equal the sum of its line items. A bank account balance must never go negative.

These rules reflect the real-world logic of the domain being modeled. Violating them doesn't break the database structure—it breaks the meaning of the data, rendering it unreliable for business decisions.

This page provides an exhaustive exploration of semantic constraints, examining their nature, implementation mechanisms (from CHECK constraints to triggers to application code), and the critical design decisions involved in placing business logic at the right layer of your system.

What You Will Master

By the end of this page, you will understand: (1) The nature and classification of semantic constraints, (2) Database-level enforcement mechanisms (CHECK, triggers, stored procedures), (3) Multi-row and multi-table constraints, (4) Temporal and state transition constraints, (5) Derived data and aggregate constraints, and (6) The architecture of constraint enforcement layers.

Classification of Semantic Constraints

Semantic constraints vary widely in complexity and scope. Understanding their classification helps in choosing appropriate enforcement mechanisms.

Types of Semantic Constraints
Type	Scope	Examples	Typical Enforcement
Single-Row	One row, one table	end_date > start_date; age >= 18	CHECK constraint
Multi-Row, Same Table	Multiple rows, one table	Only one 'primary' address per customer	Partial UNIQUE index; trigger
Multi-Table	Multiple tables	Order total = sum of line items	Trigger; stored procedure
Aggregate	Computed from many rows	Account balance = sum of transactions	Trigger; materialized view
Temporal	Time-based conditions	Contract dates cannot overlap for same customer	Exclusion constraint; trigger
State Transition	Valid state changes	Order status: pending→confirmed→shipped (not shipped→pending)	Trigger; application layer
Cardinality	Relationship counts	Department must have at least one employee	Trigger; deferred constraint

The complexity gradient:

As we move from single-row constraints to multi-table and aggregate constraints, enforcement complexity increases significantly:

Single-row constraints can often be expressed as simple CHECK clauses
Multi-row constraints may require indexes with WHERE clauses or triggers
Multi-table constraints generally require triggers or application-layer logic
Aggregate constraints often need triggers that maintain cached totals
Temporal constraints may need specialized constraint types (PostgreSQL's exclusion constraints) or triggers

The Expressiveness Limit of Declarative Constraints

SQL's CHECK constraints are limited to row-level validation and cannot reference other tables or aggregate functions. For complex semantic constraints, we must use procedural mechanisms (triggers) or application code. This is a fundamental limitation of SQL's declarative constraint model.

Single-Row Semantic Constraints

The simplest semantic constraints involve relationships between attributes within a single row. These can be expressed using CHECK constraints and are fully validated by the database engine.

single_row_constraints.sql
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
-- Date ordering constraints
CREATE TABLE employment (
    employment_id SERIAL PRIMARY KEY,
    employee_id INT NOT NULL REFERENCES employees(employee_id),
    position VARCHAR(100) NOT NULL,
    start_date DATE NOT NULL,
    end_date DATE,
    
    -- End date must be after start date (if provided)
    CONSTRAINT chk_date_order CHECK (
        end_date IS NULL OR end_date > start_date
    )
);
 
-- Conditional field requirements
CREATE TABLE products (
    product_id SERIAL PRIMARY KEY,
    product_name VARCHAR(200) NOT NULL,
    product_type VARCHAR(20) NOT NULL,
    
    -- Physical dimensions (required for physical products)
    weight_kg DECIMAL(10,3),
    length_cm DECIMAL(10,2),
    width_cm DECIMAL(10,2),
    height_cm DECIMAL(10,2),
    
    -- Digital product fields (required for digital products)
    file_size_mb DECIMAL(10,2),
    download_url VARCHAR(500),
    
    CONSTRAINT chk_physical_dimensions CHECK (
        product_type != 'physical' OR (
            weight_kg IS NOT NULL AND 
            length_cm IS NOT NULL AND 
            width_cm IS NOT NULL AND 
            height_cm IS NOT NULL
        )
    ),
    
    CONSTRAINT chk_digital_fields CHECK (
        product_type != 'digital' OR (
            file_size_mb IS NOT NULL AND
            download_url IS NOT NULL
        )
    )
);
 
-- Percentage allocations must sum correctly
CREATE TABLE project_allocations (
    allocation_id SERIAL PRIMARY KEY,
    employee_id INT NOT NULL,
    project_a_percent INT NOT NULL DEFAULT 0,
    project_b_percent INT NOT NULL DEFAULT 0,
    project_c_percent INT NOT NULL DEFAULT 0,
    unallocated_percent INT NOT NULL DEFAULT 100,
    
    -- Each percentage must be valid
    CONSTRAINT chk_valid_percentages CHECK (
        project_a_percent >= 0 AND project_a_percent <= 100 AND
        project_b_percent >= 0 AND project_b_percent <= 100 AND
        project_c_percent >= 0 AND project_c_percent <= 100 AND
        unallocated_percent >= 0 AND unallocated_percent <= 100
    ),
    
    -- Total must equal 100%
    CONSTRAINT chk_total_allocation CHECK (
        project_a_percent + project_b_percent + project_c_percent + unallocated_percent = 100
    )
);
 
-- Business logic: discounted price must be less than regular price
CREATE TABLE pricing (
    pricing_id SERIAL PRIMARY KEY,
    product_id INT NOT NULL,
    regular_price DECIMAL(10,2) NOT NULL,
    sale_price DECIMAL(10,2),
    min_quantity INT DEFAULT 1,
    max_quantity INT,
    
    CONSTRAINT chk_sale_less_than_regular CHECK (
        sale_price IS NULL OR sale_price < regular_price
    ),
    
    CONSTRAINT chk_quantity_range CHECK (
        max_quantity IS NULL OR max_quantity >= min_quantity
    )
);

Common Single-Row Constraint Patterns

•Date ordering — end_date > start_date; return_date > departure_date
•Conditional requirements — If type='X', then field_y must be NOT NULL
•Value consistency — discount_price < regular_price; min_value <= max_value
•Allocation totals — Percentages sum to 100; quantities sum to total
•Format validation — Regex patterns for phone numbers, postal codes, identifiers
•Mutual exclusivity — Either field_a OR field_b is set, not both

Keep CHECK Constraints Readable

Complex boolean expressions in CHECK constraints become maintenance nightmares. Consider breaking complex logic into multiple named constraints, each testing one condition. The constraint names appear in error messages, helping users understand what went wrong.

Multi-Row Constraints Within a Table

Some constraints require examining multiple rows in the same table. These cannot be expressed with CHECK constraints and require alternative mechanisms.

multi_row_constraints.sql
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
-- SCENARIO 1: Only one 'primary' record per entity
-- Solution: Partial UNIQUE index
 
CREATE TABLE customer_addresses (
    address_id SERIAL PRIMARY KEY,
    customer_id INT NOT NULL REFERENCES customers(customer_id),
    address_type VARCHAR(20) NOT NULL,  -- 'billing', 'shipping', 'other'
    is_primary BOOLEAN NOT NULL DEFAULT FALSE,
    street_address VARCHAR(255) NOT NULL,
    city VARCHAR(100) NOT NULL,
    postal_code VARCHAR(20)
);
 
-- Only one primary address per customer (PostgreSQL)
CREATE UNIQUE INDEX uq_customer_primary_address
ON customer_addresses (customer_id)
WHERE is_primary = TRUE;
 
-- Attempting to create second primary address fails
INSERT INTO customer_addresses (customer_id, address_type, is_primary, street_address, city)
VALUES (1, 'shipping', TRUE, '123 Main St', 'Springfield');
INSERT INTO customer_addresses (customer_id, address_type, is_primary, street_address, city)
VALUES (1, 'billing', TRUE, '456 Oak Ave', 'Springfield');
-- ERROR: duplicate key value violates unique constraint "uq_customer_primary_address"
 
 
-- SCENARIO 2: Non-overlapping date ranges
-- Solution: Exclusion constraint (PostgreSQL)
 
CREATE EXTENSION IF NOT EXISTS btree_gist;  -- Required for exclusion constraints
 
CREATE TABLE room_bookings (
    booking_id SERIAL PRIMARY KEY,
    room_id INT NOT NULL REFERENCES rooms(room_id),
    guest_name VARCHAR(100) NOT NULL,
    check_in DATE NOT NULL,
    check_out DATE NOT NULL,
    
    -- Basic validity
    CONSTRAINT chk_checkout_after_checkin CHECK (check_out > check_in),
    
    -- Exclusion: same room cannot overlap
    CONSTRAINT excl_no_overlapping_bookings EXCLUDE USING gist (
        room_id WITH =,
        daterange(check_in, check_out, '[)') WITH &&
    )
);
 
-- First booking succeeds
INSERT INTO room_bookings (room_id, guest_name, check_in, check_out)
VALUES (101, 'Alice', '2024-03-01', '2024-03-05');
 
-- Overlapping booking fails
INSERT INTO room_bookings (room_id, guest_name, check_in, check_out)
VALUES (101, 'Bob', '2024-03-03', '2024-03-07');
-- ERROR: conflicting key value violates exclusion constraint
 
-- Adjacent booking succeeds (checkin = previous checkout)
INSERT INTO room_bookings (room_id, guest_name, check_in, check_out)
VALUES (101, 'Carol', '2024-03-05', '2024-03-08');
 
 
-- SCENARIO 3: Sequential ordering with no gaps
-- Solution: Trigger (works on all databases)
 
CREATE TABLE invoice_lines (
    invoice_id INT NOT NULL,
    line_number INT NOT NULL,
    description VARCHAR(200) NOT NULL,
    amount DECIMAL(10,2) NOT NULL,
    
    PRIMARY KEY (invoice_id, line_number)
);
 
-- Trigger to enforce sequential line numbers
CREATE OR REPLACE FUNCTION check_line_number_sequence()
RETURNS TRIGGER AS $$
DECLARE
    max_line INT;
BEGIN
    -- Get current max line number for this invoice
    SELECT COALESCE(MAX(line_number), 0) INTO max_line
    FROM invoice_lines
    WHERE invoice_id = NEW.invoice_id;
    
    -- New line must be exactly max + 1
    IF NEW.line_number != max_line + 1 THEN
        RAISE EXCEPTION 'Line number must be %, got %', max_line + 1, NEW.line_number;
    END IF;
    
    RETURN NEW;
END;
$$ LANGUAGE plpgsql;
 
CREATE TRIGGER trg_invoice_line_sequence
BEFORE INSERT ON invoice_lines
FOR EACH ROW
EXECUTE FUNCTION check_line_number_sequence();

Exclusion Constraints are PostgreSQL-Specific

The EXCLUDE constraint with GIST index is a powerful PostgreSQL feature for preventing overlaps (temporal data, spatial data). Other databases require triggers to achieve similar functionality. Always verify feature availability when designing for portability.

Multi-Table Constraints

Many business rules span multiple tables. An order total must match its line items. A manager must belong to the same department as their team. Stock levels must stay synchronized with orders. These constraints require triggers or application-layer enforcement.

multi_table_constraints.sql
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
-- SCENARIO 1: Order total must equal sum of line items
-- Tables
CREATE TABLE orders (
    order_id SERIAL PRIMARY KEY,
    customer_id INT NOT NULL,
    order_date DATE NOT NULL DEFAULT CURRENT_DATE,
    total_amount DECIMAL(12,2) NOT NULL DEFAULT 0,
    status VARCHAR(20) NOT NULL DEFAULT 'pending'
);
 
CREATE TABLE order_items (
    item_id SERIAL PRIMARY KEY,
    order_id INT NOT NULL REFERENCES orders(order_id),
    product_id INT NOT NULL,
    quantity INT NOT NULL CHECK (quantity > 0),
    unit_price DECIMAL(10,2) NOT NULL CHECK (unit_price >= 0),
    line_total DECIMAL(12,2) GENERATED ALWAYS AS (quantity * unit_price) STORED
);
 
-- Trigger to maintain order total
CREATE OR REPLACE FUNCTION update_order_total()
RETURNS TRIGGER AS $$
BEGIN
    -- Update the order total based on current items
    IF TG_OP = 'DELETE' THEN
        UPDATE orders 
        SET total_amount = (
            SELECT COALESCE(SUM(line_total), 0)
            FROM order_items
            WHERE order_id = OLD.order_id
        )
        WHERE order_id = OLD.order_id;
        RETURN OLD;
    ELSE
        UPDATE orders 
        SET total_amount = (
            SELECT COALESCE(SUM(line_total), 0)
            FROM order_items
            WHERE order_id = NEW.order_id
        )
        WHERE order_id = NEW.order_id;
        RETURN NEW;
    END IF;
END;
$$ LANGUAGE plpgsql;
 
CREATE TRIGGER trg_order_item_change
AFTER INSERT OR UPDATE OR DELETE ON order_items
FOR EACH ROW
EXECUTE FUNCTION update_order_total();
 
 
-- SCENARIO 2: Manager must be in same department as employees
CREATE TABLE departments (
    dept_id SERIAL PRIMARY KEY,
    dept_name VARCHAR(100) NOT NULL
);
 
CREATE TABLE employees (
    emp_id SERIAL PRIMARY KEY,
    emp_name VARCHAR(100) NOT NULL,
    dept_id INT REFERENCES departments(dept_id),
    manager_id INT REFERENCES employees(emp_id)
);
 
-- Trigger to enforce manager-employee department match
CREATE OR REPLACE FUNCTION check_manager_department()
RETURNS TRIGGER AS $$
DECLARE
    manager_dept INT;
BEGIN
    -- Skip if no manager assigned
    IF NEW.manager_id IS NULL THEN
        RETURN NEW;
    END IF;
    
    -- Get manager's department
    SELECT dept_id INTO manager_dept
    FROM employees
    WHERE emp_id = NEW.manager_id;
    
    -- Check department match
    IF manager_dept IS DISTINCT FROM NEW.dept_id THEN
        RAISE EXCEPTION 'Employee department (%) must match manager department (%)',
            NEW.dept_id, manager_dept;
    END IF;
    
    RETURN NEW;
END;
$$ LANGUAGE plpgsql;
 
CREATE TRIGGER trg_check_manager_dept
BEFORE INSERT OR UPDATE ON employees
FOR EACH ROW
EXECUTE FUNCTION check_manager_department();
 
 
-- SCENARIO 3: Inventory levels must stay non-negative
CREATE TABLE inventory (
    product_id INT PRIMARY KEY,
    quantity_on_hand INT NOT NULL DEFAULT 0 CHECK (quantity_on_hand >= 0)
);
 
CREATE TABLE order_placements (
    placement_id SERIAL PRIMARY KEY,
    product_id INT NOT NULL,
    quantity INT NOT NULL CHECK (quantity > 0),
    placed_at TIMESTAMP DEFAULT CURRENT_TIMESTAMP
);
 
CREATE OR REPLACE FUNCTION check_and_reduce_inventory()
RETURNS TRIGGER AS $$
DECLARE
    current_stock INT;
BEGIN
    -- Lock the inventory row to prevent race conditions
    SELECT quantity_on_hand INTO current_stock
    FROM inventory
    WHERE product_id = NEW.product_id
    FOR UPDATE;
    
    IF current_stock IS NULL THEN
        RAISE EXCEPTION 'Product % not found in inventory', NEW.product_id;
    END IF;
    
    IF current_stock < NEW.quantity THEN
        RAISE EXCEPTION 'Insufficient inventory: available %, requested %',
            current_stock, NEW.quantity;
    END IF;
    
    -- Reduce inventory
    UPDATE inventory
    SET quantity_on_hand = quantity_on_hand - NEW.quantity
    WHERE product_id = NEW.product_id;
    
    RETURN NEW;
END;
$$ LANGUAGE plpgsql;
 
CREATE TRIGGER trg_order_placement
BEFORE INSERT ON order_placements
FOR EACH ROW
EXECUTE FUNCTION check_and_reduce_inventory();

Locking for Consistency

Multi-table constraint triggers must handle concurrent access correctly. Use SELECT ... FOR UPDATE to lock related rows before checking and modifying them. Without proper locking, race conditions can violate constraints despite the trigger appearing to work correctly in isolation.

State Transition Constraints

Many entities move through defined states, and not all transitions are valid. An order can go from 'pending' to 'confirmed' to 'shipped', but shipping a cancelled order should be prevented. State machines formalize these rules.

Converting Mermaid diagram...

state_transition_constraints.sql
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
-- State machine enforcement via trigger
CREATE TYPE order_status AS ENUM (
    'pending', 'confirmed', 'processing', 
    'shipped', 'delivered', 'returned', 
    'cancelled', 'refund_processed'
);
 
CREATE TABLE orders (
    order_id SERIAL PRIMARY KEY,
    customer_id INT NOT NULL,
    status order_status NOT NULL DEFAULT 'pending',
    created_at TIMESTAMP DEFAULT CURRENT_TIMESTAMP,
    updated_at TIMESTAMP DEFAULT CURRENT_TIMESTAMP
);
 
-- Define valid transitions
CREATE TABLE valid_status_transitions (
    from_status order_status NOT NULL,
    to_status order_status NOT NULL,
    PRIMARY KEY (from_status, to_status)
);
 
INSERT INTO valid_status_transitions (from_status, to_status) VALUES
    ('pending', 'confirmed'),
    ('pending', 'cancelled'),
    ('confirmed', 'processing'),
    ('confirmed', 'cancelled'),
    ('processing', 'shipped'),
    ('processing', 'cancelled'),
    ('shipped', 'delivered'),
    ('shipped', 'returned'),
    ('delivered', 'returned'),
    ('returned', 'refund_processed');
 
-- Trigger to enforce valid transitions
CREATE OR REPLACE FUNCTION check_status_transition()
RETURNS TRIGGER AS $$
BEGIN
    -- Allow if status not changing
    IF NEW.status = OLD.status THEN
        RETURN NEW;
    END IF;
    
    -- Check if transition is valid
    IF NOT EXISTS (
        SELECT 1 FROM valid_status_transitions
        WHERE from_status = OLD.status
          AND to_status = NEW.status
    ) THEN
        RAISE EXCEPTION 'Invalid status transition: % -> %',
            OLD.status, NEW.status;
    END IF;
    
    -- Update timestamp
    NEW.updated_at = CURRENT_TIMESTAMP;
    
    RETURN NEW;
END;
$$ LANGUAGE plpgsql;
 
CREATE TRIGGER trg_order_status_transition
BEFORE UPDATE ON orders
FOR EACH ROW
EXECUTE FUNCTION check_status_transition();
 
-- Usage examples
UPDATE orders SET status = 'confirmed' WHERE order_id = 1;  -- OK
UPDATE orders SET status = 'shipped' WHERE order_id = 1;    -- ERROR: must go through processing
UPDATE orders SET status = 'processing' WHERE order_id = 1; -- OK
UPDATE orders SET status = 'shipped' WHERE order_id = 1;    -- OK
UPDATE orders SET status = 'pending' WHERE order_id = 1;    -- ERROR: can't go backwards
 
-- State transition audit logging
CREATE TABLE order_status_history (
    history_id SERIAL PRIMARY KEY,
    order_id INT NOT NULL REFERENCES orders(order_id),
    old_status order_status,
    new_status order_status NOT NULL,
    changed_at TIMESTAMP DEFAULT CURRENT_TIMESTAMP,
    changed_by INT  -- User who made the change
);
 
CREATE OR REPLACE FUNCTION log_status_change()
RETURNS TRIGGER AS $$
BEGIN
    INSERT INTO order_status_history (order_id, old_status, new_status)
    VALUES (NEW.order_id, OLD.status, NEW.status);
    RETURN NEW;
END;
$$ LANGUAGE plpgsql;
 
CREATE TRIGGER trg_log_status_change
AFTER UPDATE ON orders
FOR EACH ROW
WHEN (OLD.status IS DISTINCT FROM NEW.status)
EXECUTE FUNCTION log_status_change();

State Machine Benefits

Using a lookup table for valid transitions makes the state machine data-driven and auditable. Adding a new valid transition requires only an INSERT, not a trigger modification. This separation of rules from enforcement logic improves maintainability significantly.

Aggregate and Derived Data Constraints

Some constraints involve aggregated data: account balances, running totals, counts, or averages. These require careful design to balance consistency guarantees with performance.

aggregate_constraints.sql
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
-- SCENARIO: Account balance must equal sum of transactions
-- and must never go negative
 
CREATE TABLE accounts (
    account_id SERIAL PRIMARY KEY,
    account_name VARCHAR(100) NOT NULL,
    balance DECIMAL(12,2) NOT NULL DEFAULT 0,
    
    CONSTRAINT chk_non_negative_balance CHECK (balance >= 0)
);
 
CREATE TABLE transactions (
    txn_id SERIAL PRIMARY KEY,
    account_id INT NOT NULL REFERENCES accounts(account_id),
    txn_type VARCHAR(10) NOT NULL CHECK (txn_type IN ('credit', 'debit')),
    amount DECIMAL(12,2) NOT NULL CHECK (amount > 0),
    description VARCHAR(200),
    created_at TIMESTAMP DEFAULT CURRENT_TIMESTAMP
);
 
-- Trigger to maintain balance and check constraints
CREATE OR REPLACE FUNCTION apply_transaction()
RETURNS TRIGGER AS $$
DECLARE
    delta DECIMAL(12,2);
    new_balance DECIMAL(12,2);
BEGIN
    -- Calculate the change
    IF NEW.txn_type = 'credit' THEN
        delta := NEW.amount;
    ELSE
        delta := -NEW.amount;
    END IF;
    
    -- Update balance atomically and get new value
    UPDATE accounts
    SET balance = balance + delta
    WHERE account_id = NEW.account_id
    RETURNING balance INTO new_balance;
    
    -- Check non-negative (redundant with CHECK but provides better error)
    IF new_balance < 0 THEN
        RAISE EXCEPTION 'Insufficient funds: balance would be %', new_balance;
    END IF;
    
    RETURN NEW;
END;
$$ LANGUAGE plpgsql;
 
CREATE TRIGGER trg_apply_transaction
AFTER INSERT ON transactions
FOR EACH ROW
EXECUTE FUNCTION apply_transaction();
 
-- Prevent transaction deletion or modification (audit trail)
CREATE OR REPLACE FUNCTION prevent_txn_modification()
RETURNS TRIGGER AS $$
BEGIN
    RAISE EXCEPTION 'Transactions cannot be modified or deleted. Create a reversal transaction instead.';
END;
$$ LANGUAGE plpgsql;
 
CREATE TRIGGER trg_prevent_txn_modification
BEFORE UPDATE OR DELETE ON transactions
FOR EACH ROW
EXECUTE FUNCTION prevent_txn_modification();
 
 
-- SCENARIO 2: Enforce minimum/maximum relationship counts
-- Department must have at least one employee (cardinality constraint)
 
-- Note: This is tricky because of chicken-and-egg problems
-- Solution: Allow temporary violation, check on commit (deferred constraint)
-- Or: Use application layer to manage in transaction
 
-- Alternative: Soft constraint with validation procedure
CREATE OR REPLACE FUNCTION validate_department_has_employees()
RETURNS TABLE(dept_id INT, dept_name VARCHAR, employee_count BIGINT) AS $$
BEGIN
    RETURN QUERY
    SELECT d.dept_id, d.dept_name, COUNT(e.emp_id) as employee_count
    FROM departments d
    LEFT JOIN employees e ON d.dept_id = e.dept_id
    GROUP BY d.dept_id, d.dept_name
    HAVING COUNT(e.emp_id) = 0;
END;
$$ LANGUAGE plpgsql;
 
-- Run periodically or on demand
SELECT * FROM validate_department_has_employees();
 
 
-- SCENARIO 3: Calculated field must match computation
-- Product's average_rating must equal AVG of reviews
 
CREATE TABLE products (
    product_id SERIAL PRIMARY KEY,
    product_name VARCHAR(200) NOT NULL,
    average_rating DECIMAL(3,2),
    review_count INT DEFAULT 0
);
 
CREATE TABLE product_reviews (
    review_id SERIAL PRIMARY KEY,
    product_id INT NOT NULL REFERENCES products(product_id),
    rating INT NOT NULL CHECK (rating >= 1 AND rating <= 5),
    review_text TEXT,
    created_at TIMESTAMP DEFAULT CURRENT_TIMESTAMP
);
 
CREATE OR REPLACE FUNCTION update_product_rating()
RETURNS TRIGGER AS $$
DECLARE
    target_product_id INT;
BEGIN
    target_product_id := COALESCE(NEW.product_id, OLD.product_id);
    
    UPDATE products
    SET 
        average_rating = (
            SELECT ROUND(AVG(rating)::numeric, 2)
            FROM product_reviews
            WHERE product_id = target_product_id
        ),
        review_count = (
            SELECT COUNT(*)
            FROM product_reviews
            WHERE product_id = target_product_id
        )
    WHERE product_id = target_product_id;
    
    RETURN COALESCE(NEW, OLD);
END;
$$ LANGUAGE plpgsql;
 
CREATE TRIGGER trg_update_product_rating
AFTER INSERT OR UPDATE OR DELETE ON product_reviews
FOR EACH ROW
EXECUTE FUNCTION update_product_rating();

Performance Considerations

Triggers that recalculate aggregates on every row change can be expensive for high-volume tables. Consider: (1) Caching counts/sums and updating incrementally rather than recalculating, (2) Batching updates for high-frequency changes, (3) Using materialized views refreshed periodically for non-critical aggregates.

Constraint Enforcement Architecture

Where should semantic constraints be enforced? This is a critical architectural decision with implications for data integrity, system complexity, and performance.

Constraint Enforcement Layers
Layer	Mechanisms	Strengths	Weaknesses
Database (Declarative)	CHECK, UNIQUE, FK, EXCLUDE	Always enforced; cannot be bypassed	Limited expressiveness; SQL-only logic
Database (Procedural)	Triggers, stored procedures	Enforced for all data access; complex logic	Harder to test; vendor-specific; can impact performance
Application (Service)	Business logic code, ORM validations	Full language power; testable; portable	Can be bypassed by direct DB access; duplicated across apps
Application (API)	Request validation, schema validation	User-friendly errors; input sanitization	Only covers one entry point; easily bypassed internally
UI	Form validation, client-side checks	Immediate feedback; UX improvement	Trivially bypassed; never trust alone

The defense-in-depth principle:

Robust systems implement constraints at multiple layers:

UI layer — User experience; catch obvious errors before submission
API layer — Input validation; protect against malformed requests
Application layer — Complex business rules; orchestration logic
Database layer — Ultimate enforcement; data integrity guarantee

The database layer is the last line of defense. Even if all other layers fail, data integrity is preserved. Application and UI layers provide better user experience and catch errors earlier, but they can be bypassed. Database constraints cannot.

Placement Decision Guidelines

•Always in database: Entity integrity, referential integrity, domain constraints, key constraints. These are non-negotiable.
•Prefer database: Single-table semantic constraints, multi-row constraints within a table (if expressible). The data guarantees are worth the constraint.
•Consider database: Multi-table constraints if performance allows and the rule is critical to data integrity.
•Prefer application: Complex business rules requiring procedural logic, rules that need context (current user, time zones), rules that frequently change.
•Application only: Rules requiring external system calls, rules specific to one use case but not universal data integrity.

layered_enforcement.ts
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
// Example: Layered constraint enforcement
 
// ===== UI LAYER =====
// React form validation (immediate feedback, not trusted)
const validateOrderForm = (order: OrderInput): ValidationError[] => {
    const errors: ValidationError[] = [];
    if (order.quantity <= 0) {
        errors.push({ field: 'quantity', message: 'Quantity must be positive' });
    }
    if (order.shippingDate && order.shippingDate < order.orderDate) {
        errors.push({ field: 'shippingDate', message: 'Shipping date must be after order date' });
    }
    return errors;
};
 
// ===== API LAYER =====
// Express middleware (input sanitization, not trusted for business logic)
const validateOrderRequest = (req, res, next) => {
    const schema = Joi.object({
        customerId: Joi.number().integer().positive().required(),
        items: Joi.array().min(1).items(
            Joi.object({
                productId: Joi.number().integer().positive().required(),
                quantity: Joi.number().integer().min(1).required()
            })
        ).required()
    });
    
    const { error } = schema.validate(req.body);
    if (error) return res.status(400).json({ error: error.details });
    next();
};
 
// ===== APPLICATION LAYER =====
// Service layer (business rules, primary logic location)
class OrderService {
    async createOrder(input: CreateOrderInput): Promise<Order> {
        // Business rule: Customer must be active
        const customer = await this.customerRepo.findById(input.customerId);
        if (customer.status !== 'active') {
            throw new BusinessRuleError('Cannot create order for inactive customer');
        }
        
        // Business rule: Check inventory for all items
        for (const item of input.items) {
            const available = await this.inventoryService.getAvailable(item.productId);
            if (available < item.quantity) {
                throw new BusinessRuleError(`Insufficient inventory for product ${item.productId}`);
            }
        }
        
        // Application logic: Calculate totals, apply pricing rules
        const calculatedOrder = await this.calculateOrder(input);
        
        // Persist (database constraints are final check)
        return await this.orderRepo.create(calculatedOrder);
    }
}
 
// ===== DATABASE LAYER =====
// Constraints defined in schema (absolute enforcement)
/*
  - PRIMARY KEY on order_id (entity integrity)
  - FOREIGN KEY customer_id → customers (referential integrity)
  - FOREIGN KEY product_id → products (referential integrity)
  - CHECK quantity > 0 (domain constraint)
  - CHECK total_amount >= 0 (domain constraint)
  - CHECK shipping_date IS NULL OR shipping_date >= order_date (semantic)
  - Trigger: update order total when items change (multi-table)
  - Trigger: prevent negative inventory (multi-table)
*/

The Database is Truth

When application and database constraints disagree, the database wins. If the database accepts data, it's in the database—regardless of what the application intended. This is why critical constraints belong in the database: they are the source of truth, not the application.

Summary: Semantic Constraints Mastery

Semantic constraints give meaning to data, ensuring it represents valid real-world states. Let's consolidate the essential knowledge:

Key Takeaways

•Definition — Semantic constraints are business rules beyond structural integrity, encoding the logical requirements that make data meaningful.
•Classification — Constraints range from single-row (CHECK) to multi-row, multi-table, temporal, state-based, and aggregate constraints.
•CHECK limitations — SQL CHECK constraints only evaluate single rows and cannot reference other tables or use subqueries.
•Triggers — Required for complex constraints; must handle concurrency with proper locking.
•State machines — Formal definition of valid state transitions prevents invalid business states.
•Aggregate constraints — Maintain derived data through incremental trigger updates or periodic recalculation.
•Layered enforcement — UI for UX, API for input validation, application for complex logic, database for guaranteed integrity.

Module conclusion:

With semantic constraints, we complete the five pillars of relational integrity:

Entity integrity — Every row is identifiable
Referential integrity — Every reference points to an existing row
Domain constraints — Every value is valid for its attribute
Key constraints — Rows are uniquely identifiable
Semantic constraints — Data maintains logical and business correctness

Together, these constraints transform a database from a passive data container into an active guardian of data quality—rejecting invalid data before it can corrupt your systems, your decisions, and your business.

Module Complete

Congratulations! You have mastered the complete spectrum of integrity constraints in the relational model. From the fundamental entity and referential integrity rules through domain and key constraints to complex semantic business rules, you now understand how to design databases that actively prevent data corruption and maintain meaningful, reliable data.

5 / 5

Loading learning content...

Database Management SystemsIntegrity Constraints

Integrity Constraints in the Relational Model

LevelIntermediate

Duration90 mins

TopicIntegrity Constraints

5 / 5

Semantic Constraints

Beyond Structural Validation: The Meaning of Data

What You Will Master

Classification of Semantic Constraints

Semantic constraints vary widely in complexity and scope. Understanding their classification helps in choosing appropriate enforcement mechanisms.

Types of Semantic Constraints
Type	Scope	Examples	Typical Enforcement
Single-Row	One row, one table	end_date > start_date; age >= 18	CHECK constraint
Multi-Row, Same Table	Multiple rows, one table	Only one 'primary' address per customer	Partial UNIQUE index; trigger
Multi-Table	Multiple tables	Order total = sum of line items	Trigger; stored procedure
Aggregate	Computed from many rows	Account balance = sum of transactions	Trigger; materialized view
Temporal	Time-based conditions	Contract dates cannot overlap for same customer	Exclusion constraint; trigger
State Transition	Valid state changes	Order status: pending→confirmed→shipped (not shipped→pending)	Trigger; application layer
Cardinality	Relationship counts	Department must have at least one employee	Trigger; deferred constraint

The complexity gradient:

As we move from single-row constraints to multi-table and aggregate constraints, enforcement complexity increases significantly:

Single-row constraints can often be expressed as simple CHECK clauses
Multi-row constraints may require indexes with WHERE clauses or triggers
Multi-table constraints generally require triggers or application-layer logic
Aggregate constraints often need triggers that maintain cached totals
Temporal constraints may need specialized constraint types (PostgreSQL's exclusion constraints) or triggers

The Expressiveness Limit of Declarative Constraints

Single-Row Semantic Constraints

The simplest semantic constraints involve relationships between attributes within a single row. These can be expressed using CHECK constraints and are fully validated by the database engine.

single_row_constraints.sql
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
-- Date ordering constraints
CREATE TABLE employment (
    employment_id SERIAL PRIMARY KEY,
    employee_id INT NOT NULL REFERENCES employees(employee_id),
    position VARCHAR(100) NOT NULL,
    start_date DATE NOT NULL,
    end_date DATE,
    
    -- End date must be after start date (if provided)
    CONSTRAINT chk_date_order CHECK (
        end_date IS NULL OR end_date > start_date
    )
);
 
-- Conditional field requirements
CREATE TABLE products (
    product_id SERIAL PRIMARY KEY,
    product_name VARCHAR(200) NOT NULL,
    product_type VARCHAR(20) NOT NULL,
    
    -- Physical dimensions (required for physical products)
    weight_kg DECIMAL(10,3),
    length_cm DECIMAL(10,2),
    width_cm DECIMAL(10,2),
    height_cm DECIMAL(10,2),
    
    -- Digital product fields (required for digital products)
    file_size_mb DECIMAL(10,2),
    download_url VARCHAR(500),
    
    CONSTRAINT chk_physical_dimensions CHECK (
        product_type != 'physical' OR (
            weight_kg IS NOT NULL AND 
            length_cm IS NOT NULL AND 
            width_cm IS NOT NULL AND 
            height_cm IS NOT NULL
        )
    ),
    
    CONSTRAINT chk_digital_fields CHECK (
        product_type != 'digital' OR (
            file_size_mb IS NOT NULL AND
            download_url IS NOT NULL
        )
    )
);
 
-- Percentage allocations must sum correctly
CREATE TABLE project_allocations (
    allocation_id SERIAL PRIMARY KEY,
    employee_id INT NOT NULL,
    project_a_percent INT NOT NULL DEFAULT 0,
    project_b_percent INT NOT NULL DEFAULT 0,
    project_c_percent INT NOT NULL DEFAULT 0,
    unallocated_percent INT NOT NULL DEFAULT 100,
    
    -- Each percentage must be valid
    CONSTRAINT chk_valid_percentages CHECK (
        project_a_percent >= 0 AND project_a_percent <= 100 AND
        project_b_percent >= 0 AND project_b_percent <= 100 AND
        project_c_percent >= 0 AND project_c_percent <= 100 AND
        unallocated_percent >= 0 AND unallocated_percent <= 100
    ),
    
    -- Total must equal 100%
    CONSTRAINT chk_total_allocation CHECK (
        project_a_percent + project_b_percent + project_c_percent + unallocated_percent = 100
    )
);
 
-- Business logic: discounted price must be less than regular price
CREATE TABLE pricing (
    pricing_id SERIAL PRIMARY KEY,
    product_id INT NOT NULL,
    regular_price DECIMAL(10,2) NOT NULL,
    sale_price DECIMAL(10,2),
    min_quantity INT DEFAULT 1,
    max_quantity INT,
    
    CONSTRAINT chk_sale_less_than_regular CHECK (
        sale_price IS NULL OR sale_price < regular_price
    ),
    
    CONSTRAINT chk_quantity_range CHECK (
        max_quantity IS NULL OR max_quantity >= min_quantity
    )
);

Common Single-Row Constraint Patterns

•Date ordering — end_date > start_date; return_date > departure_date
•Conditional requirements — If type='X', then field_y must be NOT NULL
•Value consistency — discount_price < regular_price; min_value <= max_value
•Allocation totals — Percentages sum to 100; quantities sum to total
•Format validation — Regex patterns for phone numbers, postal codes, identifiers
•Mutual exclusivity — Either field_a OR field_b is set, not both

Keep CHECK Constraints Readable

Multi-Row Constraints Within a Table

Some constraints require examining multiple rows in the same table. These cannot be expressed with CHECK constraints and require alternative mechanisms.

multi_row_constraints.sql
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
-- SCENARIO 1: Only one 'primary' record per entity
-- Solution: Partial UNIQUE index
 
CREATE TABLE customer_addresses (
    address_id SERIAL PRIMARY KEY,
    customer_id INT NOT NULL REFERENCES customers(customer_id),
    address_type VARCHAR(20) NOT NULL,  -- 'billing', 'shipping', 'other'
    is_primary BOOLEAN NOT NULL DEFAULT FALSE,
    street_address VARCHAR(255) NOT NULL,
    city VARCHAR(100) NOT NULL,
    postal_code VARCHAR(20)
);
 
-- Only one primary address per customer (PostgreSQL)
CREATE UNIQUE INDEX uq_customer_primary_address
ON customer_addresses (customer_id)
WHERE is_primary = TRUE;
 
-- Attempting to create second primary address fails
INSERT INTO customer_addresses (customer_id, address_type, is_primary, street_address, city)
VALUES (1, 'shipping', TRUE, '123 Main St', 'Springfield');
INSERT INTO customer_addresses (customer_id, address_type, is_primary, street_address, city)
VALUES (1, 'billing', TRUE, '456 Oak Ave', 'Springfield');
-- ERROR: duplicate key value violates unique constraint "uq_customer_primary_address"
 
 
-- SCENARIO 2: Non-overlapping date ranges
-- Solution: Exclusion constraint (PostgreSQL)
 
CREATE EXTENSION IF NOT EXISTS btree_gist;  -- Required for exclusion constraints
 
CREATE TABLE room_bookings (
    booking_id SERIAL PRIMARY KEY,
    room_id INT NOT NULL REFERENCES rooms(room_id),
    guest_name VARCHAR(100) NOT NULL,
    check_in DATE NOT NULL,
    check_out DATE NOT NULL,
    
    -- Basic validity
    CONSTRAINT chk_checkout_after_checkin CHECK (check_out > check_in),
    
    -- Exclusion: same room cannot overlap
    CONSTRAINT excl_no_overlapping_bookings EXCLUDE USING gist (
        room_id WITH =,
        daterange(check_in, check_out, '[)') WITH &&
    )
);
 
-- First booking succeeds
INSERT INTO room_bookings (room_id, guest_name, check_in, check_out)
VALUES (101, 'Alice', '2024-03-01', '2024-03-05');
 
-- Overlapping booking fails
INSERT INTO room_bookings (room_id, guest_name, check_in, check_out)
VALUES (101, 'Bob', '2024-03-03', '2024-03-07');
-- ERROR: conflicting key value violates exclusion constraint
 
-- Adjacent booking succeeds (checkin = previous checkout)
INSERT INTO room_bookings (room_id, guest_name, check_in, check_out)
VALUES (101, 'Carol', '2024-03-05', '2024-03-08');
 
 
-- SCENARIO 3: Sequential ordering with no gaps
-- Solution: Trigger (works on all databases)
 
CREATE TABLE invoice_lines (
    invoice_id INT NOT NULL,
    line_number INT NOT NULL,
    description VARCHAR(200) NOT NULL,
    amount DECIMAL(10,2) NOT NULL,
    
    PRIMARY KEY (invoice_id, line_number)
);
 
-- Trigger to enforce sequential line numbers
CREATE OR REPLACE FUNCTION check_line_number_sequence()
RETURNS TRIGGER AS $$
DECLARE
    max_line INT;
BEGIN
    -- Get current max line number for this invoice
    SELECT COALESCE(MAX(line_number), 0) INTO max_line
    FROM invoice_lines
    WHERE invoice_id = NEW.invoice_id;
    
    -- New line must be exactly max + 1
    IF NEW.line_number != max_line + 1 THEN
        RAISE EXCEPTION 'Line number must be %, got %', max_line + 1, NEW.line_number;
    END IF;
    
    RETURN NEW;
END;
$$ LANGUAGE plpgsql;
 
CREATE TRIGGER trg_invoice_line_sequence
BEFORE INSERT ON invoice_lines
FOR EACH ROW
EXECUTE FUNCTION check_line_number_sequence();

Exclusion Constraints are PostgreSQL-Specific

Multi-Table Constraints

multi_table_constraints.sql
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
-- SCENARIO 1: Order total must equal sum of line items
-- Tables
CREATE TABLE orders (
    order_id SERIAL PRIMARY KEY,
    customer_id INT NOT NULL,
    order_date DATE NOT NULL DEFAULT CURRENT_DATE,
    total_amount DECIMAL(12,2) NOT NULL DEFAULT 0,
    status VARCHAR(20) NOT NULL DEFAULT 'pending'
);
 
CREATE TABLE order_items (
    item_id SERIAL PRIMARY KEY,
    order_id INT NOT NULL REFERENCES orders(order_id),
    product_id INT NOT NULL,
    quantity INT NOT NULL CHECK (quantity > 0),
    unit_price DECIMAL(10,2) NOT NULL CHECK (unit_price >= 0),
    line_total DECIMAL(12,2) GENERATED ALWAYS AS (quantity * unit_price) STORED
);
 
-- Trigger to maintain order total
CREATE OR REPLACE FUNCTION update_order_total()
RETURNS TRIGGER AS $$
BEGIN
    -- Update the order total based on current items
    IF TG_OP = 'DELETE' THEN
        UPDATE orders 
        SET total_amount = (
            SELECT COALESCE(SUM(line_total), 0)
            FROM order_items
            WHERE order_id = OLD.order_id
        )
        WHERE order_id = OLD.order_id;
        RETURN OLD;
    ELSE
        UPDATE orders 
        SET total_amount = (
            SELECT COALESCE(SUM(line_total), 0)
            FROM order_items
            WHERE order_id = NEW.order_id
        )
        WHERE order_id = NEW.order_id;
        RETURN NEW;
    END IF;
END;
$$ LANGUAGE plpgsql;
 
CREATE TRIGGER trg_order_item_change
AFTER INSERT OR UPDATE OR DELETE ON order_items
FOR EACH ROW
EXECUTE FUNCTION update_order_total();
 
 
-- SCENARIO 2: Manager must be in same department as employees
CREATE TABLE departments (
    dept_id SERIAL PRIMARY KEY,
    dept_name VARCHAR(100) NOT NULL
);
 
CREATE TABLE employees (
    emp_id SERIAL PRIMARY KEY,
    emp_name VARCHAR(100) NOT NULL,
    dept_id INT REFERENCES departments(dept_id),
    manager_id INT REFERENCES employees(emp_id)
);
 
-- Trigger to enforce manager-employee department match
CREATE OR REPLACE FUNCTION check_manager_department()
RETURNS TRIGGER AS $$
DECLARE
    manager_dept INT;
BEGIN
    -- Skip if no manager assigned
    IF NEW.manager_id IS NULL THEN
        RETURN NEW;
    END IF;
    
    -- Get manager's department
    SELECT dept_id INTO manager_dept
    FROM employees
    WHERE emp_id = NEW.manager_id;
    
    -- Check department match
    IF manager_dept IS DISTINCT FROM NEW.dept_id THEN
        RAISE EXCEPTION 'Employee department (%) must match manager department (%)',
            NEW.dept_id, manager_dept;
    END IF;
    
    RETURN NEW;
END;
$$ LANGUAGE plpgsql;
 
CREATE TRIGGER trg_check_manager_dept
BEFORE INSERT OR UPDATE ON employees
FOR EACH ROW
EXECUTE FUNCTION check_manager_department();
 
 
-- SCENARIO 3: Inventory levels must stay non-negative
CREATE TABLE inventory (
    product_id INT PRIMARY KEY,
    quantity_on_hand INT NOT NULL DEFAULT 0 CHECK (quantity_on_hand >= 0)
);
 
CREATE TABLE order_placements (
    placement_id SERIAL PRIMARY KEY,
    product_id INT NOT NULL,
    quantity INT NOT NULL CHECK (quantity > 0),
    placed_at TIMESTAMP DEFAULT CURRENT_TIMESTAMP
);
 
CREATE OR REPLACE FUNCTION check_and_reduce_inventory()
RETURNS TRIGGER AS $$
DECLARE
    current_stock INT;
BEGIN
    -- Lock the inventory row to prevent race conditions
    SELECT quantity_on_hand INTO current_stock
    FROM inventory
    WHERE product_id = NEW.product_id
    FOR UPDATE;
    
    IF current_stock IS NULL THEN
        RAISE EXCEPTION 'Product % not found in inventory', NEW.product_id;
    END IF;
    
    IF current_stock < NEW.quantity THEN
        RAISE EXCEPTION 'Insufficient inventory: available %, requested %',
            current_stock, NEW.quantity;
    END IF;
    
    -- Reduce inventory
    UPDATE inventory
    SET quantity_on_hand = quantity_on_hand - NEW.quantity
    WHERE product_id = NEW.product_id;
    
    RETURN NEW;
END;
$$ LANGUAGE plpgsql;
 
CREATE TRIGGER trg_order_placement
BEFORE INSERT ON order_placements
FOR EACH ROW
EXECUTE FUNCTION check_and_reduce_inventory();

Locking for Consistency

State Transition Constraints

Converting Mermaid diagram...

state_transition_constraints.sql
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
-- State machine enforcement via trigger
CREATE TYPE order_status AS ENUM (
    'pending', 'confirmed', 'processing', 
    'shipped', 'delivered', 'returned', 
    'cancelled', 'refund_processed'
);
 
CREATE TABLE orders (
    order_id SERIAL PRIMARY KEY,
    customer_id INT NOT NULL,
    status order_status NOT NULL DEFAULT 'pending',
    created_at TIMESTAMP DEFAULT CURRENT_TIMESTAMP,
    updated_at TIMESTAMP DEFAULT CURRENT_TIMESTAMP
);
 
-- Define valid transitions
CREATE TABLE valid_status_transitions (
    from_status order_status NOT NULL,
    to_status order_status NOT NULL,
    PRIMARY KEY (from_status, to_status)
);
 
INSERT INTO valid_status_transitions (from_status, to_status) VALUES
    ('pending', 'confirmed'),
    ('pending', 'cancelled'),
    ('confirmed', 'processing'),
    ('confirmed', 'cancelled'),
    ('processing', 'shipped'),
    ('processing', 'cancelled'),
    ('shipped', 'delivered'),
    ('shipped', 'returned'),
    ('delivered', 'returned'),
    ('returned', 'refund_processed');
 
-- Trigger to enforce valid transitions
CREATE OR REPLACE FUNCTION check_status_transition()
RETURNS TRIGGER AS $$
BEGIN
    -- Allow if status not changing
    IF NEW.status = OLD.status THEN
        RETURN NEW;
    END IF;
    
    -- Check if transition is valid
    IF NOT EXISTS (
        SELECT 1 FROM valid_status_transitions
        WHERE from_status = OLD.status
          AND to_status = NEW.status
    ) THEN
        RAISE EXCEPTION 'Invalid status transition: % -> %',
            OLD.status, NEW.status;
    END IF;
    
    -- Update timestamp
    NEW.updated_at = CURRENT_TIMESTAMP;
    
    RETURN NEW;
END;
$$ LANGUAGE plpgsql;
 
CREATE TRIGGER trg_order_status_transition
BEFORE UPDATE ON orders
FOR EACH ROW
EXECUTE FUNCTION check_status_transition();
 
-- Usage examples
UPDATE orders SET status = 'confirmed' WHERE order_id = 1;  -- OK
UPDATE orders SET status = 'shipped' WHERE order_id = 1;    -- ERROR: must go through processing
UPDATE orders SET status = 'processing' WHERE order_id = 1; -- OK
UPDATE orders SET status = 'shipped' WHERE order_id = 1;    -- OK
UPDATE orders SET status = 'pending' WHERE order_id = 1;    -- ERROR: can't go backwards
 
-- State transition audit logging
CREATE TABLE order_status_history (
    history_id SERIAL PRIMARY KEY,
    order_id INT NOT NULL REFERENCES orders(order_id),
    old_status order_status,
    new_status order_status NOT NULL,
    changed_at TIMESTAMP DEFAULT CURRENT_TIMESTAMP,
    changed_by INT  -- User who made the change
);
 
CREATE OR REPLACE FUNCTION log_status_change()
RETURNS TRIGGER AS $$
BEGIN
    INSERT INTO order_status_history (order_id, old_status, new_status)
    VALUES (NEW.order_id, OLD.status, NEW.status);
    RETURN NEW;
END;
$$ LANGUAGE plpgsql;
 
CREATE TRIGGER trg_log_status_change
AFTER UPDATE ON orders
FOR EACH ROW
WHEN (OLD.status IS DISTINCT FROM NEW.status)
EXECUTE FUNCTION log_status_change();

State Machine Benefits

Aggregate and Derived Data Constraints

Some constraints involve aggregated data: account balances, running totals, counts, or averages. These require careful design to balance consistency guarantees with performance.

aggregate_constraints.sql
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
-- SCENARIO: Account balance must equal sum of transactions
-- and must never go negative
 
CREATE TABLE accounts (
    account_id SERIAL PRIMARY KEY,
    account_name VARCHAR(100) NOT NULL,
    balance DECIMAL(12,2) NOT NULL DEFAULT 0,
    
    CONSTRAINT chk_non_negative_balance CHECK (balance >= 0)
);
 
CREATE TABLE transactions (
    txn_id SERIAL PRIMARY KEY,
    account_id INT NOT NULL REFERENCES accounts(account_id),
    txn_type VARCHAR(10) NOT NULL CHECK (txn_type IN ('credit', 'debit')),
    amount DECIMAL(12,2) NOT NULL CHECK (amount > 0),
    description VARCHAR(200),
    created_at TIMESTAMP DEFAULT CURRENT_TIMESTAMP
);
 
-- Trigger to maintain balance and check constraints
CREATE OR REPLACE FUNCTION apply_transaction()
RETURNS TRIGGER AS $$
DECLARE
    delta DECIMAL(12,2);
    new_balance DECIMAL(12,2);
BEGIN
    -- Calculate the change
    IF NEW.txn_type = 'credit' THEN
        delta := NEW.amount;
    ELSE
        delta := -NEW.amount;
    END IF;
    
    -- Update balance atomically and get new value
    UPDATE accounts
    SET balance = balance + delta
    WHERE account_id = NEW.account_id
    RETURNING balance INTO new_balance;
    
    -- Check non-negative (redundant with CHECK but provides better error)
    IF new_balance < 0 THEN
        RAISE EXCEPTION 'Insufficient funds: balance would be %', new_balance;
    END IF;
    
    RETURN NEW;
END;
$$ LANGUAGE plpgsql;
 
CREATE TRIGGER trg_apply_transaction
AFTER INSERT ON transactions
FOR EACH ROW
EXECUTE FUNCTION apply_transaction();
 
-- Prevent transaction deletion or modification (audit trail)
CREATE OR REPLACE FUNCTION prevent_txn_modification()
RETURNS TRIGGER AS $$
BEGIN
    RAISE EXCEPTION 'Transactions cannot be modified or deleted. Create a reversal transaction instead.';
END;
$$ LANGUAGE plpgsql;
 
CREATE TRIGGER trg_prevent_txn_modification
BEFORE UPDATE OR DELETE ON transactions
FOR EACH ROW
EXECUTE FUNCTION prevent_txn_modification();
 
 
-- SCENARIO 2: Enforce minimum/maximum relationship counts
-- Department must have at least one employee (cardinality constraint)
 
-- Note: This is tricky because of chicken-and-egg problems
-- Solution: Allow temporary violation, check on commit (deferred constraint)
-- Or: Use application layer to manage in transaction
 
-- Alternative: Soft constraint with validation procedure
CREATE OR REPLACE FUNCTION validate_department_has_employees()
RETURNS TABLE(dept_id INT, dept_name VARCHAR, employee_count BIGINT) AS $$
BEGIN
    RETURN QUERY
    SELECT d.dept_id, d.dept_name, COUNT(e.emp_id) as employee_count
    FROM departments d
    LEFT JOIN employees e ON d.dept_id = e.dept_id
    GROUP BY d.dept_id, d.dept_name
    HAVING COUNT(e.emp_id) = 0;
END;
$$ LANGUAGE plpgsql;
 
-- Run periodically or on demand
SELECT * FROM validate_department_has_employees();
 
 
-- SCENARIO 3: Calculated field must match computation
-- Product's average_rating must equal AVG of reviews
 
CREATE TABLE products (
    product_id SERIAL PRIMARY KEY,
    product_name VARCHAR(200) NOT NULL,
    average_rating DECIMAL(3,2),
    review_count INT DEFAULT 0
);
 
CREATE TABLE product_reviews (
    review_id SERIAL PRIMARY KEY,
    product_id INT NOT NULL REFERENCES products(product_id),
    rating INT NOT NULL CHECK (rating >= 1 AND rating <= 5),
    review_text TEXT,
    created_at TIMESTAMP DEFAULT CURRENT_TIMESTAMP
);
 
CREATE OR REPLACE FUNCTION update_product_rating()
RETURNS TRIGGER AS $$
DECLARE
    target_product_id INT;
BEGIN
    target_product_id := COALESCE(NEW.product_id, OLD.product_id);
    
    UPDATE products
    SET 
        average_rating = (
            SELECT ROUND(AVG(rating)::numeric, 2)
            FROM product_reviews
            WHERE product_id = target_product_id
        ),
        review_count = (
            SELECT COUNT(*)
            FROM product_reviews
            WHERE product_id = target_product_id
        )
    WHERE product_id = target_product_id;
    
    RETURN COALESCE(NEW, OLD);
END;
$$ LANGUAGE plpgsql;
 
CREATE TRIGGER trg_update_product_rating
AFTER INSERT OR UPDATE OR DELETE ON product_reviews
FOR EACH ROW
EXECUTE FUNCTION update_product_rating();

Performance Considerations

Constraint Enforcement Architecture

Where should semantic constraints be enforced? This is a critical architectural decision with implications for data integrity, system complexity, and performance.

Constraint Enforcement Layers
Layer	Mechanisms	Strengths	Weaknesses
Database (Declarative)	CHECK, UNIQUE, FK, EXCLUDE	Always enforced; cannot be bypassed	Limited expressiveness; SQL-only logic
Database (Procedural)	Triggers, stored procedures	Enforced for all data access; complex logic	Harder to test; vendor-specific; can impact performance
Application (Service)	Business logic code, ORM validations	Full language power; testable; portable	Can be bypassed by direct DB access; duplicated across apps
Application (API)	Request validation, schema validation	User-friendly errors; input sanitization	Only covers one entry point; easily bypassed internally
UI	Form validation, client-side checks	Immediate feedback; UX improvement	Trivially bypassed; never trust alone

The defense-in-depth principle:

Robust systems implement constraints at multiple layers:

UI layer — User experience; catch obvious errors before submission
API layer — Input validation; protect against malformed requests
Application layer — Complex business rules; orchestration logic
Database layer — Ultimate enforcement; data integrity guarantee

Placement Decision Guidelines

•Always in database: Entity integrity, referential integrity, domain constraints, key constraints. These are non-negotiable.
•Prefer database: Single-table semantic constraints, multi-row constraints within a table (if expressible). The data guarantees are worth the constraint.
•Consider database: Multi-table constraints if performance allows and the rule is critical to data integrity.
•Prefer application: Complex business rules requiring procedural logic, rules that need context (current user, time zones), rules that frequently change.
•Application only: Rules requiring external system calls, rules specific to one use case but not universal data integrity.

layered_enforcement.ts
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
// Example: Layered constraint enforcement
 
// ===== UI LAYER =====
// React form validation (immediate feedback, not trusted)
const validateOrderForm = (order: OrderInput): ValidationError[] => {
    const errors: ValidationError[] = [];
    if (order.quantity <= 0) {
        errors.push({ field: 'quantity', message: 'Quantity must be positive' });
    }
    if (order.shippingDate && order.shippingDate < order.orderDate) {
        errors.push({ field: 'shippingDate', message: 'Shipping date must be after order date' });
    }
    return errors;
};
 
// ===== API LAYER =====
// Express middleware (input sanitization, not trusted for business logic)
const validateOrderRequest = (req, res, next) => {
    const schema = Joi.object({
        customerId: Joi.number().integer().positive().required(),
        items: Joi.array().min(1).items(
            Joi.object({
                productId: Joi.number().integer().positive().required(),
                quantity: Joi.number().integer().min(1).required()
            })
        ).required()
    });
    
    const { error } = schema.validate(req.body);
    if (error) return res.status(400).json({ error: error.details });
    next();
};
 
// ===== APPLICATION LAYER =====
// Service layer (business rules, primary logic location)
class OrderService {
    async createOrder(input: CreateOrderInput): Promise<Order> {
        // Business rule: Customer must be active
        const customer = await this.customerRepo.findById(input.customerId);
        if (customer.status !== 'active') {
            throw new BusinessRuleError('Cannot create order for inactive customer');
        }
        
        // Business rule: Check inventory for all items
        for (const item of input.items) {
            const available = await this.inventoryService.getAvailable(item.productId);
            if (available < item.quantity) {
                throw new BusinessRuleError(`Insufficient inventory for product ${item.productId}`);
            }
        }
        
        // Application logic: Calculate totals, apply pricing rules
        const calculatedOrder = await this.calculateOrder(input);
        
        // Persist (database constraints are final check)
        return await this.orderRepo.create(calculatedOrder);
    }
}
 
// ===== DATABASE LAYER =====
// Constraints defined in schema (absolute enforcement)
/*
  - PRIMARY KEY on order_id (entity integrity)
  - FOREIGN KEY customer_id → customers (referential integrity)
  - FOREIGN KEY product_id → products (referential integrity)
  - CHECK quantity > 0 (domain constraint)
  - CHECK total_amount >= 0 (domain constraint)
  - CHECK shipping_date IS NULL OR shipping_date >= order_date (semantic)
  - Trigger: update order total when items change (multi-table)
  - Trigger: prevent negative inventory (multi-table)
*/

The Database is Truth

Summary: Semantic Constraints Mastery

Semantic constraints give meaning to data, ensuring it represents valid real-world states. Let's consolidate the essential knowledge:

Key Takeaways

•Definition — Semantic constraints are business rules beyond structural integrity, encoding the logical requirements that make data meaningful.
•Classification — Constraints range from single-row (CHECK) to multi-row, multi-table, temporal, state-based, and aggregate constraints.
•CHECK limitations — SQL CHECK constraints only evaluate single rows and cannot reference other tables or use subqueries.
•Triggers — Required for complex constraints; must handle concurrency with proper locking.
•State machines — Formal definition of valid state transitions prevents invalid business states.
•Aggregate constraints — Maintain derived data through incremental trigger updates or periodic recalculation.
•Layered enforcement — UI for UX, API for input validation, application for complex logic, database for guaranteed integrity.

Module conclusion:

With semantic constraints, we complete the five pillars of relational integrity:

Entity integrity — Every row is identifiable
Referential integrity — Every reference points to an existing row
Domain constraints — Every value is valid for its attribute
Key constraints — Rows are uniquely identifiable
Semantic constraints — Data maintains logical and business correctness

Module Complete

5 / 5