CS 417 Course Materials
Database and Transaction Systems
Spring 2019

General

• Syllabus.
• Integrity in My Computer Science Courses.

Assignments

Written Assignments

• E-R/EE-R Diagrams. Due Feb. 12.
• Relational Model. Due Feb. 26.
• SQL; solution (available after 5:00 pm on March 8, 2019). Due Mar. 5.
• Relation Normalization. Due Apr. 4. Solution
• Transactions. Due Apr. 16. Solution
• Transactions Lab I. Due Apr 18. Solution
• Transactions Lab II. Due Apr. 23. Solution

Semester Project

• Group formed. Due Feb. 5th 5:00 pm. 0% of project grade.
• Proposal. Due Feb. 15th at 5:00 pm. 15% of project grade.
• E-R design and relational schema. Due Mar. 1st at 5:00 pm. Dia User Manual 15% of project grade.
• Formal specification. Due Friday, Mar. 15 at 5:00 pm. 20% of project grade.
• Sample end-to-end application. Due for in-class demonstration on Apr. 25th. 20% of project grade.
• Project completion and freeze, and report completion. Due May 12th at 11:59 pm. 30% of project grade.
• Final project and report presentation. Presented during Final Experience week, prior to Exam II. 0% of project grade.

Project Pages

• Team 0.0-INF!: Ben, Mike, and David.
• Imoogi: Jacy and JJ.
• SqlFreakz: Alyx and Sunny.
• It's Every Day: Sharod, Muhammad, and Edem.
• Rosiana: Rosie and Ari.
• Cat: Cat.
• GUI Griffins: Dylan, Davon, and Andrew.

Topics

• Introduction and Background
  Jan. 29:
  Read Chapters 1 and 2.
  Notes, Question Set 1, Question Set 1 helpful figures.
  
  
• The Entity-Relationship Model
  Jan. 31 and Feb. 5:
  Read 3.1--3.8.
  Notes and Questions I.
  Read Feb. 5: 3.9--3.13.
  Notes and Questions II, Cardinality Label Differences Between E-R and EE-R Diagrams.
  
  
• web.py Tutorial and Exercise
  Feb. 7 and 12:
  Read Tutorial and look over the Python resources below.
  web.py Tutorial; see the original here.
  web.py Exercise, Example working exercise (Only works if you're on Goucher's network, and not on GoucherGuest.), "Securing" Your Database Credentials in a Script
  
  
• The Relational Model
  Feb. 14 and 19:
  Read Chapter 4, and On Making Relational Division Comprehensible. See slides 1--18 and watch Division Screencast. Also, Division in Wikipedia. Faculty Who Have Taught All Courses Example.
  Notes and Questions.
  
  
• SQL
  Feb. 21 and 26:
  Read Feb. 21: 5.1--5.4.
  Read Feb. 26: 5.5--5.8.
  Be aware of the SQL/PostgreSQL resources below, particularly the documentation for PostgreSQL.
  SQL Exercise, Solution
  univDDL.sql, univDat.sql
  University E-R diagram
  
  
• Project
  Feb. 28
  E-R design and relational schema.
  
  
• web.py Sessions, Jinja2, Password Hashing
  Mar. 5 and 7:
  The following WSGI applications will only work on Goucher's internal wired and wireless networks (i.e., not GoucherGuest).

  pageCount.py, text of pageCount.py, text of pageCount.html, text of pageCountReset.html.

  dbdemo.py, text of dbdemo.py, text of login.html, text of logout.html, text of query.html, text of result.html.

  Standalone Python program demonstrating database queries: test.py, test.py output
  NOTE: See web.py Resources Section below for how to avoid SQL injection attacks when using db.query().

  Exercise: Modify the following todo app to add this functionality:

  • Works with multiple users. Add registration and login functions. Each user should have their own todo list.
  • At a minimum, the users table will have to have username and password hash attributes. It will ease things if you set the table up so that it automagically generates a unique user id.
  • Only store hashed passwords. Only store hashed passwords. Only store hashed passwords. See the python code under the Welcome banner at Passslib to see how simple this is to do.
  • The todo table has a boolean done attribute. Use it to mark a task done. A user should be able to either mark an active task done or to delete it.
  • Add the capability of displaying either the active tasks or the completed tasks.
  • Add whatever additional functionality that time permits. For example, you could allow users to assign priorities or due dates to tasks. Tasks could be displayed sorted on a particular attribute of the user's choosing.

  todo.py, text of todo.py, text of todo.html, schema for original todo table.

  If necessary, use these SQL commands to drop the original todo table and todo id sequence from your database:

        drop sequence todo_id_seq;
        drop table todo;
        

  Look below for resources.

• Exam 1
  Mar. 12
  Exam 1 Structure. Exam 1 Solution.

• Database Normalization
  Mar. 26 and 28:
  Read 6.1--6.5
  Read 6.6--6.10
  Notes and Questions I. Solution I.
  Notes and Questions II. Solution II.
  
  
• PL/pgSQL and Triggers
  Apr. 2 and 4:
  Read Apr. 4: 5.5.2 and 5.8.1 from the textbook. But, be aware that this material isn't specific to PostgreSQL. It would be better for you to read Overview of Trigger Behavior and to be aware of, and use, PL/pgSQL - SQL Procedural Language in the PostgreSQL documentation. Also, see Introduction to PL/pgSQL and Triggers, which will give you a quick overview of PL/pgSQL and triggers in PostgreSQL.
  PostgreSQL Triggers Lab I
  • triggerLab1.sql (downloadable), triggerLab1.sql (viewable)
  PostgreSQL Triggers Lab II
  • triggerLab2.sql (downloadable), triggerLab2.sql (viewable)
  
  
• Transactions
  Apr. 9, 11, and 16:
  Read 9.1--9.8
  These readings are PostgreSQL specific, see Transactions and Transaction Isolation. web.py specific, see How to Use Database Transactions.
  Notes and Questions I
  Transactions Lab I movies.sql
  Transactions Lab II accounts.sql
  
  
• Project
  Apr. 18 and 23
  Sample end-to-end application. Demo-ed on the 25th.
  
  
• Security, Storage and Queries
  Apr. 25, 30, May 2:
  To be determined...
  
  
• Project
  May 7 and 9
  Finish.

PostgreSQL and SQL Resources

• PostgreSQL Documentation.
• SQL Tutorial (Click the menu icon to see the site index).

Python Resources

• Python 2.7 Quick Reference Sheet.
• Think Python.
• Python 2.x Documentation.

web.py Resources

• web.py.
• web.py Cookbook, a great place to look to quickly answer questions of the form "How do I do X in web.py?"
• Be aware --- web.database queries return an iterable object, not a list. To get a list, wrap the return value in a call to list():

     todos = list(db.query('select * from todo order by id asc;'))
     

  This is useful if you want to iterate through the list more than once; an iterable object can be iterated through only once.
• See the end of db.query for advice on avoiding SQL injection when using db.query. If you define a wrapper function

     def query(query_string, vars = {}):
         return list(db.query(query_string, vars))
     

  You can then do something along these lines:

     queryString = 'select * from Users where username = $name'
     varsDict = { 'name' : input.name }
     result = query(queryString, varsDict)
     

  and web.py will handle escaping the user input.

Jinja2 Resources

• Jinja2.
• Primer on Jinja Templating.

HTML and CSS Resources

• The Bare Bones Guide to HTML.
• HTML Tutorial (Click the menu icon to see the site index).
• CSS Beginner Tutorial.
• CSS Tutorial (Click the menu icon to see the site index).