tags:

views:

203

answers:

5
+2  Q: 

SQL Server Database Development Standards

I have to develop database development standards for our organisation for SQL Server and any code that interfaces to it. The code used can be anything from .NET code to VBScript to SQL Server Jobs.

Does anyone have a good link for this kind of thing?

My quick list is follows:

1) Naming Conventions
-- Stored Procedures usp_AppName_SPName
-- Functions usf_AppName_SPName
-- Indexes IX_TableName_IndexName
-- Tables AppName_TableName
-- Views VW_Name


2) Allocation of permissions to roles, never directly to users or groups
3) Allocation of roles to groups, never directly to users
4) Use of minimal permissions
5) No inline sql in code, always use SP or Functions
6) Use of explicit transactions
7) Readonly transactions where applicable
8) Always use explain plans to ensure sql is performant.

What other things do we need to cover? I am sure that there are lots of things....

+2  A: 

I have to take issue with your first item right off the bat. While I know a lot of people like to use prefixes for stored procedures, tables, and the like, I've never had much use for that convention. When you start to get a lot of stored procedures that all start with "usp_", and you click to the expand the "Programmability\Stored Procedures" folder in Management Studio, it can be rather unwieldly to navigate.

Instead, require a prefix to match the logical feature set/functional group. What those prefixes are will vary by application or database. Then if you want to distinguish a stored procedure from a table, add your "_usp" requirement as a suffix.

For tables: you want something in your naming convention to distinguish between Application data (lookup tables) and User data.

Joel Coehoorn  2009-07-01 23:21:31
I'd add that views were originally intended as logical tables. The idea was that you could switch a table out for a view and everything would just work. It isn't so simple in practice, but a view-only prefix destroys whatever's left of the illusion.
Peter  2009-07-02 02:42:05
+1: I agree, having spent more than my fare share of time adjusting window panes in order to navigate ridiculously large object trees, perhaps in part due to somewhat overzealous coders. My advice, keep it simple good old fashioned CamelCase and Joel, get your self a widescreen monitor ;-)
John Sansom  2009-07-02 08:44:30
+3  A: 

Since we are talking best-practices I'd throw in a few things to avoid:

  1. avoid use of xp_cmdshell
  2. avoid dynamic sql unless strictly necessary (such as for dynamic pivoting)
  3. avoid cursors (if not on temp tables)

P.S. Btw - I am doing all of the above ;)

JohnIdol  2009-07-01 23:21:39
dynamic sql is a good one
russau  2009-07-01 23:50:09
+1  A: 

I found the following quite useful:

http://www.ssw.com.au/ssw/Standards/Rules/RulesToBetterSQLServerDatabases.aspx http://www.codeproject.com/KB/database/sqldodont.aspx

kevinw  2009-07-01 23:32:26
+2  A: 

Also consider using multiple schemas. Use AppName.TableName instead of AppName_TableName, where AppName is a schema. The AdventureWorks sample does this, for instance.

John Saunders  2009-07-02 00:02:14
Thats a nice idea. Unfortunately we have SQL Server 2000 instances which don't really implement multiple schemas nicely. Definately for SQL Server 2005 tho.
GordyII  2009-07-02 03:22:48
I recommend you not waste time on coding standards for SQL Server 2000. It would be unfortunate if software from the distant past were to prevent you from succeeding in the future.
John Saunders  2009-07-02 03:33:26
A: 

Aren't roles and groups the same thing in SQL Server?

A few others...

  1. Avoid using UDFs in WHERE clauses

  2. Disallow direct SQL in applications (always use SPs)

  3. Use comment blocks in front of views/procs/functions including a revision history and/or revision date
  4. Use ANSI join syntax
  5. Limit use of triggers, especially for replicated tables
Joe  2009-07-02 02:11:48
#3: Your procedures should be versioned! That makes a huge revision history comment block redundant.
Joel Coehoorn  2009-07-02 02:33:11
When you version stored procedures, do you mean like usp_MYProc_V2 etc etc?
GordyII  2009-07-02 03:24:58
Some of our users are segmented in Network Groups, such as Support, who are then allocated to a role, instead of having individual logins. Is there anyway to do that in SQL Server directly?
GordyII  2009-07-02 03:29:35
He means, like in source control.
John Saunders  2009-07-02 03:29:53
Oh right, that makes sense and it should be part of the standards. Thanks, good point.
GordyII  2009-07-02 03:51:26
That reminds me about the other link I couldn't find for my answer last night, K. Scott Allens series of blog posts starting at http://odetocode.com/Blogs/scott/archive/2008/01/30/11702.aspx
kevinw  2009-07-02 13:14:18
Our procs ARE version controlled. This does not obivate the need to have some information in the proc; you don't remove comments from code just because you checked it in.
Joe  2009-07-02 13:54:26

related questions

Sql to query a dbs scheme
Transform Columns into Rows
SQL Client for Mac OS X that works with MS SQL Server
How do you get leading wildcard full-text searches to work in SQL Server?
SQL Server 2000: Is there a way to tell when a record was last modified?
What's the BEST way to remove the time portion of a datetime value (SQL Server)
I need to know how much disk space a table is using in SQL Server
What's the best way to determine if a temporary table exists in SQL Server?
Appropriate pagefile size for SQL Server
Have you ever encountered a query that SQL Server could not execute because it referenced too many tables?
ASP.NET MVC "CRUD" Database Sample
How do I unit test persistence?
Best Book for a new Database Developer
Can I logically reorder columns in a table?
Best way to copy a database in SQL Server 2005/8?
Is Windows Server 2008 "Server Core" appropriate for a SQL Server instance?
Why doesn't SQL Full Text Indexing return results for words containing #?
Client collation and SQL Server 2005
Editing database records by multiple users
Deploying SQL Server Databases from Test to Live
SQL Server 2005 implementation of MySQL REPLACE INTO?
Upgrading SQL Server 6.5
How do I version my MS SQL database in SVN?
How to export data from SQL Server 2005 to MySQL
Check for changes to a SQL table?