# PostgreSQL **Database Setup Guide**

This project focuses mainly on setting up a table on PostgreSQL with the necessary schema/table/user-permissions, with a special focus on recording Boston (MA, USA) crime data.

<br>

### ***SOURCE***
The single dataset used in this project is a much cleaner dataset (provided by [dataquest.io](https://dataquest.io))
<br>This and more (of Boston) can be found at [data.boston.gov](https://data.boston.gov/dataset/crime-incident-reports-august-2015-to-date-source-new-system)

<br>

### ***GOAL***
<table>
<td>
    <img alt="The Big Picture" src="./data/color_the_big_picture.jpeg" width="400">
</td>
<td>
In this project, I will walk you through:
<br>

1. Creating a PostgreSQL `crimes_db` database
    
2. `crimes` schema (the folder that you see within the database)
    
3. `boston` table with appropriate datatypes.

4. `readonly` group with minimal permissions, and one associated user `dataanalyst`

5. `readwrite` group with minimal permissions, and one associated user `datascientist`.
</td>
</table>

----

Checking current directory to make sure data file is avaiable:

In [18]:
!tree -P *.csv

[34;42m.[00m
└── [34;42mdata[00m
    └── [01;32mboston.csv[00m

1 directory, 1 file


<br>
Data file is available in `data` folder.

In [19]:
file_name = !ls data/*.csv
file_name = file_name[0]
file_name

'data/boston.csv'

<br>
Peek into first few lines of the dataset:

In [20]:
!head {file_name} | column -s"," -t

incident_number  offense_code  description                                 date        day_of_the_week  lat          long
1                619           LARCENY ALL OTHERS                          2018-09-02  Sunday           42.35779134  -71.13937053
2                1402          VANDALISM                                   2018-08-21  Tuesday          42.30682138  -71.06030035
3                3410          TOWED MOTOR VEHICLE                         2018-09-03  Monday           42.34658879  -71.07242943
4                3114          INVESTIGATE PROPERTY                        2018-09-03  Monday           42.33418175  -71.07866441
5                3114          INVESTIGATE PROPERTY                        2018-09-03  Monday           42.27536542  -71.09036101
6                3820          M/V ACCIDENT INVOLVING PEDESTRIAN - INJURY  2018-09-03  Monday           42.29019621  -71.07159012
7                724           AUTO THEFT                                  2018-09-03  Mond

<br>
How many columns does the dataset have?

In [21]:
columns = !head -n 1 {file_name} | tr ',' ' ' | wc -w

columns = int(columns[0])
columns

7

<br>
How many rows of data in the source?

In [22]:
rows = !wc -l {file_name}
int(rows.nlstr.split()[0]) - 1

298329

*298329 rows of crime reports (note that it's 1 less after excluding the header row).*

---
<br>

## **postgres** interaction
I will be interacting with postgres, 2 ways:
* Jupyter cell magic `%sql` with `postgres meta-commands`, mostly for quick checks.
* `psycopg2` python module, for the rest of postgres interactions.

<br><br><br>

### Check if postgres service is running:

In [23]:
!service postgresql status

12/main (port 5432): online


<br>

Alternatively, run `pg_lsclusters` run to list all the postgres clusters!

In [24]:
!pg_lsclusters

Ver Cluster Port Status Owner    Data directory              Log file
[32m12  main    5432 online postgres /var/lib/postgresql/12/main /var/log/postgresql/postgresql-12-main.log[0m


<br>

***Note:*** *If the server is `down`, run:*
```bash
sudo pg_ctlcluster <Ver> <Cluster> start
```
*`<Ver>` and `<Cluster>` information are displayed when you run `pg_lsclusters`.*

<br><br><br>

### Connect to `postgres` via cell magic:

In [25]:
# CONNECTION meta-data
DB_USER = "vdigsdata"  # Existing user in the database (default postgres)
DB_PWD = "nicetry!"
DB_HOST = "localhost"  # localhost, if server runs on your machine
DB_PORT = 5432         # Default
DB_NAME = "postgres"   # Default PostgreSQL database

%reload_ext sql
%sql postgresql://{DB_USER}:{DB_PWD}@{DB_HOST}:{DB_PORT}/{DB_NAME}
%config SqlMagic.autocommit=True
%config SqlMagic.displaycon=False
%config SqlMagic.feedback=False

f"Connected to ---> ******:***@{DB_HOST}:{DB_PORT}/{DB_NAME}"

'Connected to ---> ******:***@localhost:5432/postgres'

In [27]:
%sql SELECT version() "PostgreSQL version";

PostgreSQL version
"PostgreSQL 12.5 (Ubuntu 12.5-0ubuntu0.20.04.1) on x86_64-pc-linux-gnu, compiled by gcc (Ubuntu 9.3.0-17ubuntu1~20.04) 9.3.0, 64-bit"


<br>

***Existing users:***

In [34]:
%sql \du+ (v|(po))*

rolname,rolsuper,rolinherit,rolcreaterole,rolcreatedb,rolcanlogin,rolconnlimit,rolvaliduntil,memberof,description,rolreplication
postgres,True,True,True,True,True,-1,,[],,True
vdigsdata,True,True,True,True,True,-1,,[],,False


<br><br><br>

## | | CREATE DATABASE

<br>Before creating a new database to my liking, here's a list of existing databases:

*Note that I'm filtering for database names beginning with p/c (`p=postgres`, `c=crimes_db` which isn't created yet!)*

In [31]:
%sql \l (p|c)*

Name,Owner,Encoding,Collate,Ctype,Access privileges
postgres,postgres,UTF8,C.UTF-8,C.UTF-8,


<br><br>

As per the illustration, I will first create a new database `crimes_db`:

In [36]:
DB_NEW = "crimes_db"

In [37]:
%%sql
COMMIT;
DROP DATABASE IF EXISTS {DB_NEW};
COMMIT;

[]

In [38]:
result = %sql CREATE DATABASE {DB_NEW};

*Printing `result` will display `[]` which is synonymous with python's `None`.
<br>It's `None` because it was a clean exit (no errors)
<br><br>`[]` is captured in `result` just to suppress the output.*

In [54]:
result

[]

<br><br>

### Verification:

In [55]:
%sql \l (p|c)*

Name,Owner,Encoding,Collate,Ctype,Access privileges
crimes_db,vdigsdata,UTF8,C.UTF-8,C.UTF-8,
postgres,postgres,UTF8,C.UTF-8,C.UTF-8,


<br><br><br>

## | | CREATE SCHEMA
<br>

***A look at existing schemas:***

In [18]:
%sql \dn

Name,Owner
crimes,vdigsdata
public,postgres


<br>
As per the illustration, I need a new schema `crimes` with-in `crimes_db` database.

<br><br><br>
As a first check, this is the current database:

In [56]:
# pgspecial doesn't yet support \conninfo; instead:

%sql SELECT current_database() "Current Database";

Current Database
postgres


<br><br>

***Connect to the newly created database `crimes_db`, then create `crimes` schema to associate it with the new database:***

In [57]:
%sql postgresql://{DB_USER}:{DB_PWD}@{DB_HOST}:{DB_PORT}/{DB_NEW}

result = %sql CREATE SCHEMA IF NOT EXISTS crimes;

*Printing `result` will display `[]` which is synonymous with python's `None`. It's `None` because it was a clean exit (no errors)
<br>`[]` is captured in `result` just to suppress the output.*

In [58]:
result

[]

<br><br>

### Verification:

In [59]:
# Get a list of active connections
connections =  %sql --connections
print("Currently active connections ==>")
for conn in connections:
    print(conn)

# I need this key to close the connection
db_postgres = connections[list(connections)[0]]
# db_postgres.session.close()
# print(f"Closed connection ==> {list(connections)[0]}", end="\n"*2)


Currently active connections ==>
postgresql://vdigsdata:***@localhost:5432/postgres
postgresql://vdigsdata:***@localhost:5432/crimes_db


In [60]:
%sql SELECT current_database() "Current Database";

Current Database
crimes_db


In [61]:
%sql \dn

Name,Owner
crimes,vdigsdata
public,postgres


Notice the new schema `crimes` is associated with the `Owner` as specified in the connection details?

<br><br><br>

## | | CREATING TABLES
<br>
Now that the database and the schema are in place, table creation is in order.

<br>What details does table creation need?
* Column names
* Column data types (and possible enumeration types)
* Maximum data type length (both numerical and textual data)

<br><br>
To determine all of the above, I need to assess the dataset in its original encoding:

In [27]:
!file --mime-encoding {file_name}

data/boston.csv: utf-8


In [28]:
!encguess {file_name}

data/boston.csv	UTF-8


<br><br><br>Bash's `file` and `encguess` are readily available for quickly detecting a file's encoding.
<br>However, python's `chardet` provides character encoding detection:

In [29]:
import chardet

with open(file_name, mode='rb') as file:
    raw_bytes = file.read()
    encoding_name =  chardet.detect(raw_bytes)['encoding']
    print(encoding_name)

del chardet  # I don't need this module anymore. Free-up memory!

utf-8


With this information, it should be easier to read files because, by default, python encoding defaults to `UTF-8`.

<br><br><br>

### Identify column names

In [30]:
!head -n 5 {file_name} | column -s"," -t

incident_number  offense_code  description           date        day_of_the_week  lat          long
1                619           LARCENY ALL OTHERS    2018-09-02  Sunday           42.35779134  -71.13937053
2                1402          VANDALISM             2018-08-21  Tuesday          42.30682138  -71.06030035
3                3410          TOWED MOTOR VEHICLE   2018-09-03  Monday           42.34658879  -71.07242943
4                3114          INVESTIGATE PROPERTY  2018-09-03  Monday           42.33418175  -71.07866441


<br>

|Some column names are modified|
|:--|
|incident_number|
|offense_code|
|description|
|date|
|day_of_the_week|
|***latitude***|
|***longitude***|

<br><br><br>

### Identify data types
Now, I need to dig a little deeper to assess:
* Possible `enumeration data-type's`.
* `Maximum length` of textual data.
* Sufficient length for `numerical` data-types.

<br><br>
A helper function to assist in the process:

In [31]:
!cut -d"," -f"3" {file_name} | wc -L

58


In [32]:
import csv

header = []

# Helper function returning unique values of a column
def fetch_distinct_set(filename, idx):
    global header
    with open(filename) as file:
        reader = csv.reader(file)
        header, rows = next(reader), list(reader)
        column_set = set()

        for row in rows:
            column_set.add(row[idx])

        return column_set

# Determine unique values
for column in range(columns):
    column_set = fetch_distinct_set(file_name, column)
    print(f"{header[column]}:    ".rjust(20, ' '),
          f"{len(column_set)} distinct values".ljust(30, ' '),
          f"Longest entry: {(max_cset:=max(column_set))}".ljust(50, ' '),
          f"(of length {len(max_cset)})")


incident_number:     298329 distinct values         Longest entry: 99999                               (of length 5)
   offense_code:     219 distinct values            Longest entry: 900                                 (of length 3)
    description:     239 distinct values            Longest entry: WEAPON - OTHER - OTHER VIOLATION    (of length 32)
           date:     1177 distinct values           Longest entry: 2018-09-03                          (of length 10)
day_of_the_week:     7 distinct values              Longest entry: Wednesday                           (of length 9)
            lat:     18177 distinct values          Longest entry: 42.39504158                         (of length 11)
           long:     18177 distinct values          Longest entry: -71.17867378                        (of length 12)


In [76]:
print("PostgreSQL INTERGER type (int4) can hold values upto ",
      2**32 //2 -1,
      ", which is good enough for my usecase now.")

PostgreSQL INTERGER type (int4) can hold values upto  2147483647 , which is good enough for my usecase now.


<br><br><br>

|COLUMN|ANALYSIS|Data-type Identified|
|:--|:--|:--|
|**incident_number**|has unique values for every entry in the dataset, and is a number.|INTEGER PRIMARY KEY (int4)|
|**offense_code**|has 219 distinct numerical codes.<br>These are pre-defined codes and by no means it is exhaustive (as there is always a possibility of defining a new offense code). I will be leaving this as-is instead of an ENUM. `smallint` fits perfect as the maximum value is only 900. Even if the possible values flow into the thousands, it should be fine.|SMALLINT (int2)|
|**description**|Ideally, columns with lesser unique values are good candidates for enumeration types.<br>This column has 239 distinct values out of the total `298,329` data rows, and can save disk space when enumerated.<br>An enumeration that large can actually have a runtime overhead.<br>For now, I will choose to let it be as-is.<br>Current maximum length of this column is only 32.<br>However, to be on a safer side and make room for possible future entries, I will allocate a size of `100` characters.|VARCHAR(100)|
|**date**|This field is of the format `YYYY-MM-DD` (without timestamp)|DATE|
|**day_of_the_week**|is a good candidate for enumeration type as it can contain only 7 unique universally known values.|ENUM|
|**latitude**|`lat`itude values can range anywhere between -90 and +90.<br>The longest entry is `42.39504158` with 2 significant digits (`42`), and an 8-digit precision (`.39504158`).|NUMERIC(10, 8)|
|**longitude**|`long`itude values can range anywhere between -180 and +180.<br>On assessing values for `lat` and `long` (excluding `-` and `.`) of `Boston` alone, `NUMERIC(10,8)` should be a good candidate as the significant digits (digits before decimal point) never exceeds 100, in which case it would be `NUMERIC(11,8)`.<br>*[Take some time to assess the possible values for Boston, google-map way](https://www.google.com/maps/place/Boston,+MA/@42.3273972,-71.1573074,11.5z/data=!4m5!3m4!1s0x89e3652d0d3d311b:0x787cbf240162e8a0!8m2!3d42.3600825!4d-71.0588801)*. The precision (digits after the decimal point) is currently 8 which happens to be 1 more than what google maps currently displays.|NUMERIC(10, 8)|

 <br>

<br><br><br>

### Create Table
Now that the data types and their precision are identified, ENUM and table creation are in order.
<br>For this, I will create them via python (instead of jupyter sql magics):

In [44]:
print("Schemas:")
%sql \dn

Schemas:


Name,Owner
crimes,vdigsdata
public,postgres


In [42]:
print("Tables:")
%sql \dt

Tables:


Schema,Name,Type,Owner


In [43]:
print("Data Types:")
%sql \dT

Data Types:


Schema,Name,Description


In [45]:
%sql SELECT current_database() "Current Database";

Current Database
crimes_db


In [37]:
%sql SELECT * FROM crimes_db.crimes.boston;

(psycopg2.errors.UndefinedTable) relation "crimes.boston" does not exist
LINE 1: SELECT * FROM crimes_db.crimes.boston;
                      ^

[SQL: SELECT * FROM crimes_db.crimes.boston;]
(Background on this error at: http://sqlalche.me/e/13/f405)


In [40]:
%sql SELECT user "Current User"

Current User
vdigsdata


In [48]:
import psycopg2

conn = psycopg2.connect(f"dbname={DB_NEW} user={DB_USER}")
# conn.autocommit = True
cur = conn.cursor()

query = """SELECT schemaname, tablename, tableowner, tablespace 
             FROM pg_catalog.pg_tables
            LIMIT 4;"""

cur.execute(query)
cur.fetchall()

[('pg_catalog', 'pg_statistic', 'postgres', None),
 ('pg_catalog', 'pg_type', 'postgres', None),
 ('pg_catalog', 'pg_foreign_server', 'postgres', None),
 ('pg_catalog', 'pg_authid', 'postgres', 'pg_global')]

In [60]:
# Create ENUM for day_of_the_week
cur.execute("""
    CREATE TYPE crimes.weekday AS ENUM ('Sunday',
                                        'Monday',
                                        'Tuesday',
                                        'Wednesday',
                                        'Thursday',
                                        'Friday',
                                        'Saturday'
    );
""")

DuplicateObject: type "weekday" already exists


In [67]:
cur.execute("SELECT * FROM pg_enum;")
cur.fetchall()

[(16452, 16450, 1.0, 'Sunday'),
 (16454, 16450, 2.0, 'Monday'),
 (16456, 16450, 3.0, 'Tuesday'),
 (16458, 16450, 4.0, 'Wednesday'),
 (16460, 16450, 5.0, 'Thursday'),
 (16462, 16450, 6.0, 'Friday'),
 (16464, 16450, 7.0, 'Saturday')]

In [77]:
cur.execute("""DROP TABLE crimes.boston;""")

UndefinedTable: table "boston" does not exist


In [78]:
# Create Table
cur.execute("""
    CREATE TABLE crimes.boston (
        incident_number INTEGER PRIMARY KEY,
        offense_code    SMALLINT,
        description     VARCHAR(100),
        date            DATE,
        day_of_the_week weekday,
        latitude        NUMERIC(10,8),
        longitude       NUMERIC(10,8)
    );
""")

conn.commit()

In [79]:
cur.execute("SELECT * FROM crimes.boston");
print(cur.description)

(Column(name='incident_number', type_code=23), Column(name='offense_code', type_code=21), Column(name='description', type_code=1043), Column(name='date', type_code=1082), Column(name='day_of_the_week', type_code=16450), Column(name='latitude', type_code=1700), Column(name='longitude', type_code=1700))


In [80]:
%sql SELECT * FROM crimes.boston;

incident_number,offense_code,description,date,day_of_the_week,latitude,longitude


In [81]:
%sql SELECT current_user, current_database();

current_user,current_database
vdigsdata,crimes_db


<br><br><br>

### Database and User Permissions
Now that the table is in place, proper access to the table is of utmost importance.

<table>
<td>
    <img alt="This is not good!" src="./data/color_new_users.jpeg" width="400">
</td>
<td>
    <br>A newly created database is accessible to PUBLIC group by default.
    <br>And, a newly created user belongs to the PUBLIC group by default.
    <br>This means, any new user (unless explicit persmissions are granted/revoked) can access a database. This is lead to unintentional consequences.
    <br>This post-it on the left shows PUBLIC groups' access to the new database, by default.
    <br>
    <br>Crime data is sensitive and should be protected.
</td>
</table>


<br>To enable proper security, I would like to follow the `least privilege principle` in creating the necessary user groups and to limit access to the crimes database.

1. *As a first step, I would like to limit `PUBLIC` user groups' access to the database*.
2. *Next, as per the requirement, create a `readonly` user group and allow only read-only access to this database table.*
3. *Create a `readwrite` user group and allow only read-write access to this database table.*
<br><br>
<img alt="This is what I want." src="./data/color_new_users_groups.jpeg" width="400">


In [82]:
query = f"REVOKE ALL ON DATABASE {DB_NEW} FROM PUBLIC;"

cur.execute(querry)

query = f"GRANT SELECT ON crimes TO {DB_USER_READONLY}"

<cursor object at 0x7f2c407798b0; closed: 0>


<br><br><br>

### Create `readonly` user group


In [None]:
# Finally, close all the connections
db_crimes = connections[list(connections)[0]]
db_crimes = connections[list(connections)[1]]
db_crimes.session.close()

conn.close()

%config SqlMagic.autocommit=False