Forays in Finance

Having a clear audit trail is a must-have for any financial application. With an ever-increasing number of corporations under pressure for stricter corporate governance and compliance to the multitude of acts, such as Sarbanes-Oxley, HL7, and ISO-17799 to name  a few, just about every development project to come down the pipeline includes some type of auditing requirement.

In this article, I will demonstrate a strategy to implement auditing that allows for easy snapshots at a table level. Our goal will be to track all changes to data, including inserts, updates, and deletes on the table, in a manner that allows for us to easily recreate a snapshot of the table at a particular time in the past. This particular solution can be used on any existing table with data or a brand new table. My particular implementation makes use of two simple triggers. The choice to use triggers or stored-procedures with the auditing code is entirely up to you. I chose to use triggers as I then don’t have to update any existing stored-procedures or update my application code to use new ones. It also ensures that regardless of how the table is being updated, an audit trail will be maintained.

Scenario
We have the following table that is being used by a resource management application.

Business has put forth a requirement to be able to view the state of the table at any date and time in the past. At present, this is being accomplished by backing up the database on a nightly basis and then recovering the database from the backup done on the particular date.

Step 1
First, we will add an EffectiveDate column to tbWorkOff. We will set a DEFAULT constraint on this column with a value of GETDATE(). This means that each row inserted in this table will get the current datetime for its EffectiveDate.

Next, we will run an UPDATE statement to initialize all existing rows with an EffectiveDate.

Finally, we will update the EffectiveDate column to not allow null values. This will ensure that there is always an EffectiveDate present for each row.

Step 2
Next, we will add a History table to audit tbWorkOff. This table has all the columns of the table to audit plus a HistoryID(identity) and an EndDate(datetime) column. The EndDate column has a default constraint with a value of GETDATE().

 Now that we have our tbWorkOffHistory table in place, our objective is straight forward. Here are the three scenarios:
1. Insert new row in tbWorkOff: 
The EffectiveDate column will be set to the current datetime.
2. Update existing row in tbWorkOff:
In this case, we must copy the row to be updated to tbWorkOffHistory where the EndDate column will get set to the current datetime. This allows for the row state before the update to be captured in tbWorkOffHistory and the EffectiveDate and EndDate columns tell us the lifetime of this row in tbWorkOff. Next, we update the row in tbWorkOff with the new values and provide the current datetime as the EffectiveDate.
3. Delete existing row in tbWorkOff:
We perform the exact same steps as 2 above, except this time we delete the row from tbWorkOff.

So how do we do this with minimum impact on the existing system? Answer: With two AFTER triggers like so:

AFTER-UPDATE TRIGGER:
    1 CREATE TRIGGER [dbo].[trg_AfterUpdateTBWorkOff]

Step 3
Good job so far. At this stage you can verify that auditing is taking place by adding, updating, and deleting rows in tbWorkOff and watch the entries get created in tbWorkOffHistory. Now the fun part is getting the auditing information out in various formats. I’ve created a base UDF that can be used to retrieve a snapshot of the table at a certain datetime in the past. I chose to use a multi-valued UDF over a stored procedure since the UDF can be used in Select statements. This UDF will return you all the rows that were in the table at the specified datetime with the values at that datetime regardless of whether rows have been added, updated, or deleted from the table since then. You can easily customize the UDF for your own tables by renaming the table names and the structure of the returning table. The UDF is undoubtedly complex and if you can think of a more elegant solution…I’m all ears.

Summary
In short, with a few small tweaks, we can implement an auditing strategy for any table. For highly transactional systems with a lot of updates, the history table can grow pretty fast. In that case, one can implement a policy to delete rows with EndDate prior to x years in the past. If a requirement is present to maintain all data regardless of it’s age, as in line-of-business financial applications, then one can utilize partitioned views and distribute the history data over multiple tables where each table may hold historical data for a particular year.

This is probably the best Xmas gift that I got over the holidays even though it wasn’t intended to be. I was over at a friends house on Xmas eve and saw this book lying around. Considering I’ve spent the last 4 months working on a project that employs SCRUM, TDD, and SCSF along with various patterns such as MVP, Proxy etc, I couldn’t help but sneak a peek. Five minutes of flipping through the pages and I was hooked. Wow…what a read!

If you ever wanted to know what this whole ‘Agile’ thingy is and why I need to know about it…read this book. The book builds on real-world development issues and explains why Agile development is a better alternative to traditional methodologies. It then leads to how Test Driven Development plays a vital role in Agile development and dives into the concept of mock objects. Finally, it makes a great case for patterns (when to use them and when not to), and provides an excellent introduction to some of the more common patterns including MVP, Inversion Of Control, Dependency Injection, Facade, Proxy, Command, Data Gateway, Repository, and many others. Unlike other books, each section starts off by a scenario faced by a developer and how most programmers would tackle it. It then introduces the pattern and shows how it’s usage results in a superior solution.

So if you intend to read one book over the next year… make it this one!

After IT, my other passion is Finance. My love affair with financial statements, number crunching, and the stock market started about 3 years ago. The first thing I realized back then was how little I knew about this area and so began an intense learning process that still continues. Of course having a Finance major as my girlfriend helps.

I make a point of consuming financial news and tidbits at least once a day. Yahoo has a great selection of columnists who post articles on a weekly basis. One of my favorites is Ben Stein and his current article titled Success Is All In A Days Work really got me thinking. It’s the first time I actually heard someone openly say that in order to achieve great success, we must work ALL the time i.e., make work our life. Yep, sounds scary, but the more I thought about it, the more I realized that all the people I know of personally who I would label as really successful do make work their life. This does not mean that they *WORK* all the time, instead, tasks that an outsider may see as work , they see as life. They are so passionate about what they do, that they enjoy incorporating their passion in everyday non-work tasks. They bring work to lunch (pair programming, peer discussions), to the gym and the car (books, pod-casts), they hang out with like-minded people who love to discuss what they do, and they don’t waste a single moment but are always looking for opportunities to multi-task. Such is the life of a person who will achieve mad success in their field of passion.

Now how can you compete against such people who are so gung-ho, driven, and ambitious…well you CAN’T.

Over the past month or so, I have been on a mission to enhance my Visual Studio IDE experience. I have been trying out all sorts of add-ins with the end goal of being more productive and cutting down on un-needed laborious tasks. Here I share with all what I have found and love in the hopes of helping someone else utter the same words I did; “Coool!”.