Transaction Management & Database Security in PostgreSQL
What Is a Transaction?
ACID Properties
Isolation Levels
Locking (Concurrency Control)
Database Security Overview
User Privileges
Roles in PostgreSQL
Access Control
Admin Roles
Summary
Practice Ideas
45.65K
Category: databasedatabase
Similar presentations:
Development course SQL databases in node
Development course SQL databases in node
DCL. Access Control. Lecture 5
DCL. Access Control. Lecture 5
Postgresql view. Index. Transactions. Acid properties
Postgresql view. Index. Transactions. Acid properties
Acid properties in DBMS. Transactions
Acid properties in DBMS. Transactions
Transactions and database integrity
Transactions and database integrity
SQL Access Control
SQL Access Control
Transaction Internals
Transaction Internals
Administration. Data administration functions
Administration. Data administration functions
Database. Database management system MySQL
Database. Database management system MySQL
Views, stored procedures and triggers. Transactions. Module 10
Views, stored procedures and triggers. Transactions. Module 10

week 10-11

1. Transaction Management & Database Security in PostgreSQL

Transaction Management & Database
Security in PostgreSQL

2. What Is a Transaction?

• A transaction is a set of SQL operations that are executed as
one unit.
• Either all succeed, or none are applied.
• Example:
BEGIN;
UPDATE accounts SET balance = balance - 100 WHERE name =
'Aikumis';
UPDATE accounts SET balance = balance + 100 WHERE name =
'Alisher';
COMMIT;
• If any step fails → ROLLBACK cancels all changes.

3. ACID Properties

• A — Atomicity: All or nothing (BEGIN /
COMMIT / ROLLBACK)
• C — Consistency: Database remains valid
(constraints)
• I — Isolation: Transactions don’t affect each
other (isolation levels)
• D — Durability: Changes are saved
permanently (WAL log)

4. Isolation Levels

• READ UNCOMMITTED – Reads uncommitted data
• READ COMMITTED (default) – Reads committed
changes
• REPEATABLE READ – Data won’t change during
transaction
• SERIALIZABLE – Full isolation
• Example:
SET TRANSACTION ISOLATION LEVEL SERIALIZABLE;

5. Locking (Concurrency Control)

• PostgreSQL uses locks to prevent conflicts.
• Shared lock: allows reading only.
• Exclusive lock: blocks all access.
• Example:
BEGIN;
UPDATE accounts SET balance = balance - 50 WHERE name =
'Aikumis';
COMMIT;
• View locks:
SELECT * FROM pg_locks;

6. Database Security Overview

• Database security controls who can access
data and what they can do.
• Main concepts:
• 1. User Privileges
• 2. Roles
• 3. Access Control

7. User Privileges

• Privileges define what a user can do.
• SELECT – read data
• INSERT – add data
• UPDATE – modify data
• DELETE – remove data
• Example:
CREATE USER student1 WITH PASSWORD '12345';
GRANT CONNECT ON DATABASE mydb TO student1;
GRANT SELECT ON students TO student1;

8. Roles in PostgreSQL

• A role is a group of privileges.
• Easier to manage than individual users.
• Example:
CREATE ROLE teacher;
GRANT SELECT, UPDATE ON students TO
teacher;
GRANT teacher TO student1;

9. Access Control

• Manage permissions using GRANT and
REVOKE.
• Examples:
GRANT SELECT ON students TO student1;
REVOKE UPDATE ON students FROM student1;
GRANT SELECT (name, grade) ON students TO
student1;

10. Admin Roles

• SUPERUSER – Full access
• CREATEDB – Can create databases
• CREATEROLE – Can create roles
• LOGIN – Can connect to server
• Example:
CREATE ROLE admin WITH LOGIN PASSWORD
'adminpass' SUPERUSER;

11. Summary

• Transaction – BEGIN, COMMIT, ROLLBACK
• ACID – Reliable data operations
• Locks – Prevent conflicts
• Privileges – Control user actions
• Roles – Group permissions
• Access Control – Who can see or change data

12. Practice Ideas

• 1. Create a new database and table.
• 2. Start a transaction and test ROLLBACK.
• 3. Create users and test GRANT/REVOKE.
• 4. Create roles (teacher, student) and assign
privileges.
• 5. View locks using pg_locks.
English     Русский Rules