Beefy Boxes and Bandwidth Generously Provided by pair Networks
The stupid question is the question not asked

Re: Architecture design for full stack development.

by Mr. Muskrat (Canon)
on Jun 23, 2017 at 19:06 UTC ( #1193400=note: print w/replies, xml ) Need Help??

in reply to Architecture design for full stack development.

Worrying about gaps in a sequence is silly. Thinking that DBIx::Class will fix that problem is even more silly as it will produce the same gaps under the same circumstances (a transaction created new PK values and the transaction was rolled back).

  • Comment on Re: Architecture design for full stack development.

Replies are listed 'Best First'.
Re^2: Architecture design for full stack development.
by anonymized user 468275 (Curate) on Jun 25, 2017 at 06:40 UTC
    There are good reasons to prevent gaps. One is that otherwise there is a security lookhole - an attacker can force your sequence to hit the limit over time if you allow gaps creating denial of service. The limit depends on the size of the integer, so is not so accessible for bigint, but I use sequences even on smallint PKs for some cases where I don't even want the number of values to exceed a low ceiling. It just isn't good maintainability thinking to let gaps multiply like rabbits if one expects a lot of activity with users allowed to delete, insert and maintain records. For clustered indexes it will ultimately have exactly the same effect has fragmented blocks on a disk.

    In regard to why this prompts an ORM, looks like from posts I wasn't clear in the OP... The moment I have to consider using SQL for dealing with something across multiple tables (pks have fks in other tables), embedded in my Perl, is the moment where I need an ORM. It has nothing to do with the particular issue of keys, it is just that if not this requirement that another requirement is bound to come along that prompts awkward-maintenance use of embedded SQL best factorised into an ORM instead.

    One world, one people

      Thanks for the follow up on why you need an ORM.

      If you're concerned about an attacker then take steps to harden your system (not just the database). If you're concerned about running out of values for a sequence then you should consider non-integer approaches; one such approach would be UUIDs.

        ... you should consider non-integer approaches; one such approach would be UUIDs.

        Possible, but then you might hit this:

        biginteger-vs-uuid inserts (image)

        There are ways to avoid that but let's wait till the OP gets a site up, and reaches, say, 10 tps. It may never happen, 'beginners'* often have unrealistically high hopes for their unborn brainchild.

        Well-trodden paths are boring, and often safest.

        *) Obviously, 'beginner' here in the sense of beginning a system (as OP says: 'a website from scratch')

Log In?

What's my password?
Create A New User
Domain Nodelet?
Node Status?
node history
Node Type: note [id://1193400]
and the web crawler heard nothing...

How do I use this? | Other CB clients
Other Users?
Others meditating upon the Monastery: (2)
As of 2022-05-24 19:02 GMT
Find Nodes?
    Voting Booth?
    Do you prefer to work remotely?

    Results (84 votes). Check out past polls.