# Building a database from crime reports

The goal of this project is building a database for storing data related with crimes that occurred in Boston. The dataset is available in the file boston.csv.

The goal of this project is:
1. create a database named crimes_db
2. create a schema named crimes
3. create a table named boston_crimes
4. create readonly and readwrite groups with appropriate privileges
5. create one user for each of the groups

## Creating the Crime Database

In [1]:
import psycopg2

with psycopg2.connect(dbname = "dq", user = "dq") as conn:
    conn.autocommit = True
    cur = conn.cursor()
    cur.execute("""
            DROP DATABASE IF EXISTS crime_db;
    """)
    cur.execute("""
                CREATE DATABASE crime_db
    """)
    conn.autocommit = False

In [2]:
conn = psycopg2.connect(dbname = "crime_db", user = "dq")
cur = conn.cursor()
cur.execute("""
            CREATE SCHEMA crimes
    """)
conn.commit()

## Obtaining the Column Names and Sample

In [3]:
import csv

with open('./boston.csv') as f:
    reader = list(csv.reader(f))
    col_headers = reader[0]
    first_row = reader[1]

In [4]:
col_headers

['incident_number',
 'offense_code',
 'description',
 'date',
 'day_of_the_week',
 'lat',
 'long']

In [5]:
first_row

['1',
 '619',
 'LARCENY ALL OTHERS',
 '2018-09-02',
 'Sunday',
 '42.35779134',
 '-71.13937053']

## Creating an Auxiliary Function

Before we create a table for storing the crime data, we need to identify the proper datatypes for the columns. To help us with that, let's create a function — get_col_value_set() — that given the name of a CSV file and a column index (starting a 0) that computes a Python set with all distinct values contained in that column.

This function will be useful for two reasons:

1. Checking whether an enumerated datatype might be a good choice for representing a column.
2. Computing the maximum length of any text-like column to select appropriate sizes for VARCHAR columns.

In [6]:
def get_col_value_set(csv_filename, col_index):
    """
    Inputs
    
    csv_filename: the name of a CSV file
    col_index: the index of a column of that CSV file
    
    Output
    a Python set that contains all distinct values from that column.
    """
    
    result = set()
    
    import csv

    with open(csv_filename) as f:
        reader = list(csv.reader(f))
        col_headers = reader[0]
        rows = reader[1:]
        
    for row in rows:
        result.add(row[col_index])
    
    return result

In [7]:
number_of_elements = {}

for i in range(len(col_headers)):
    number_of_elements[col_headers[i]] = len(get_col_value_set('./boston.csv',i))
    

In [8]:
number_of_elements

{'date': 1177,
 'day_of_the_week': 7,
 'description': 239,
 'incident_number': 298329,
 'lat': 18177,
 'long': 18177,
 'offense_code': 219}

## Finding the Maximum Length

Another important aspect is to know the longest word in any column containing textual data. We can actually use the previous function for computing this:

1. Use the get_col_value_set() function to get the distinct values of that column into a variable named col_values
2. Iterate over the elements of col_values and find the one which is the longest

In [9]:
max_len = {}

for i in range(len(col_headers)):
    value_max_len = 0
    value_max = None
    values = get_col_value_set('./boston.csv',i)
    for value in values:
        if len(value) > value_max_len:
            value_max_len = len(value)
            value_max = value
    max_len[col_headers[i]] = value_max_len

In [10]:
max_len

{'date': 10,
 'day_of_the_week': 9,
 'description': 58,
 'incident_number': 6,
 'lat': 11,
 'long': 12,
 'offense_code': 4}

## Creating the table

Now that we know the basic information about the data, we can create the table.

In [11]:
col_headers

['incident_number',
 'offense_code',
 'description',
 'date',
 'day_of_the_week',
 'lat',
 'long']

In [12]:
first_row

['1',
 '619',
 'LARCENY ALL OTHERS',
 '2018-09-02',
 'Sunday',
 '42.35779134',
 '-71.13937053']

In [13]:
# create the enumerated datatype for representing the weekday
cur.execute("""
    CREATE TYPE weekday AS ENUM ('Monday', 'Tuesday', 'Wednesday', 'Thursday', 'Friday', 'Saturday', 'Sunday');
""")
# create the table
cur.execute("""
    CREATE TABLE crimes.boston_crimes (
        incident_number INTEGER PRIMARY KEY,
        offense_code INTEGER,
        description VARCHAR(100),
        date DATE,
        day_of_the_week weekday,
        lat decimal,
        long decimal
    );
""")

## Loading the Data

Now that we have created the table, we can load the data into it.

In [14]:
with open("./boston.csv") as f:
    cur.copy_expert("COPY crimes.boston_crimes FROM STDIN WITH CSV HEADER;", f)

## Revoking Public Privileges

Because all users are assigned to the public group, and the public groups has access to other database in the instance, it's safe to revoke all the privileges from the public group. 

In [15]:
cur.execute("""
            REVOKE all on SCHEMA public FROM public;
""")
cur.execute("""
            REVOKE all on SCHEMA crimes FROM public;
""")

conn.commit()

## Creating User Groups

Now create two user groups, readonly and readwrite.

In [25]:
cur.execute("""
            CREATE GROUP readonly with NOLOGIN;
""")
cur.execute("""
            CREATE GROUP readwrite with NOLOGIN;
""")
conn.commit()


If without NOLOGIN option, you can just log in to databases with groups. Which i s not ideal for security.

In [33]:
conn.commit()

In [30]:
cur.execute("""
            GRANT CONNECT on DATABASE crime_db TO readonly, readwrite
""")

ERROR: An unexpected error occurred while tokenizing input
The following traceback may be corrupted or invalid
The error message is: ('EOF in multi-line string', (1, 0))



DatabaseError: invalid privilege type USAGE for database


In [34]:
cur.execute("""
            GRANT USAGE on SCHEMA crimes TO readonly, readwrite
""")
conn.commit()

In [35]:
cur.execute("""
            GRANT SELECT ON ALL TABLES IN SCHEMA crimes to readonly;
""")
conn.commit()

In [37]:
cur.execute("""
            GRANT SELECT, INSERT, DELETE, UPDATE ON ALL TABLES IN SCHEMA crimes to readwrite;
""")
conn.commit()

## Creating Users

In [44]:
cur.execute("""
            CREATE USER data_analyst WITH PASSWORD 'secret1';
""")
cur.execute("""
            GRANT readonly to data_analyst
""")
conn.commit()

In [45]:
cur.execute("""
            CREATE USER data_scientist WITH PASSWORD 'secret2';
""")
cur.execute("""
            GRANT readwrite to data_analyst
""")
conn.commit()

## Testing

Now everything should be set up. Let's see if it's applied.

In [None]:
cur.execute("""
            SELECT *
            FROM information_schema.table_privileges
            WHERE grantee = 'readonly';
""")

In [48]:
cur.execute("""
            SELECT *
            FROM information_schema.table_privileges
            WHERE grantee = 'readwrite';
""")

In [49]:
cur.fetchall()

[('dq',
  'readwrite',
  'crime_db',
  'crimes',
  'boston_crimes',
  'INSERT',
  'NO',
  'NO'),
 ('dq',
  'readwrite',
  'crime_db',
  'crimes',
  'boston_crimes',
  'SELECT',
  'NO',
  'YES'),
 ('dq',
  'readwrite',
  'crime_db',
  'crimes',
  'boston_crimes',
  'UPDATE',
  'NO',
  'NO'),
 ('dq',
  'readwrite',
  'crime_db',
  'crimes',
  'boston_crimes',
  'DELETE',
  'NO',
  'NO')]

## Conclusion

From the result above, we can confirm that

1. Database crime_db created
2. Schema crimes created
3. Groups readonly and readwrite created
4. Users data_analyst and data_scientist created
5. Priviliges assigned