Best practices in graph database development represent the collective wisdom gained from real-world production deployments, performance optimization efforts, and lessons learned from building scalable, maintainable systems. This category provides battle-tested patterns, anti-patterns to avoid, and pragmatic guidance for building robust applications with Geode.
These practices span the entire development lifecycle from initial graph modeling and schema design through query optimization, transaction management, security hardening, and operational monitoring. They reflect Geode’s ISO/IEC 39075:2024 compliance, 97.4% test coverage achievements, and production deployment experiences across diverse use cases.
Following these best practices helps teams avoid common pitfalls, achieve optimal performance, maintain data integrity, and build systems that scale gracefully as data and usage grow. Each recommendation is backed by specific examples and explains the rationale behind the practice.
Graph Modeling Best Practices
Design for Your Query Patterns
Model your graph based on how you’ll query it, not how your domain “looks” in theory:
// GOOD: Model relationships that you'll traverse
CREATE (:User {id: 1, name: 'Alice'})
-[:FRIEND_OF]->(:User {id: 2, name: 'Bob'})
// Then query efficiently:
MATCH (u:User {id: 1})-[:FRIEND_OF]->(friend)
RETURN friend.name
// AVOID: Storing relationships as properties
CREATE (:User {id: 1, name: 'Alice', friends: [2, 3, 4]})
// Requires expensive lookups:
MATCH (u:User {id: 1})
UNWIND u.friends AS friend_id
MATCH (f:User {id: friend_id})
RETURN f.name
Why: Graph traversals are O(1) per relationship, while array unwinding and lookups are O(n) and lose the benefits of graph structure.
Use Specific Relationship Types
Create specific, semantically meaningful relationship types rather than generic ones with type properties:
// GOOD: Specific relationship types
(:Person)-[:WORKS_FOR]->(:Company)
(:Person)-[:MANAGES]->(:Person)
(:Person)-[:LIVES_IN]->(:City)
// Query efficiently with type filtering:
MATCH (p:Person)-[:WORKS_FOR]->(c:Company)
WHERE c.name = 'TechCorp'
RETURN p.name
// AVOID: Generic relationships with type properties
(:Person)-[:RELATED_TO {type: 'works_for'}]->(:Company)
(:Person)-[:RELATED_TO {type: 'manages'}]->(:Person)
// Requires filtering every relationship:
MATCH (p:Person)-[r:RELATED_TO]->(c:Company)
WHERE r.type = 'works_for' AND c.name = 'TechCorp'
RETURN p.name
Why: Relationship type filtering happens at the storage engine level before traversal, while property filtering requires examining every relationship.
Denormalize Strategically
Balance between normalization and query performance:
// Store frequently accessed aggregates directly
CREATE (:User {
id: 1,
name: 'Alice',
friend_count: 342, // Denormalized count
avg_post_likes: 45.3, // Denormalized average
last_active: datetime()
})
// Update denormalized data transactionally
BEGIN TRANSACTION
MATCH (u:User {id: 1})
CREATE (u)-[:POSTED]->(p:Post {content: 'New post'})
SET u.post_count = u.post_count + 1
COMMIT
// Then query without expensive aggregations
MATCH (u:User)
WHERE u.friend_count > 300
RETURN u.name, u.friend_count
ORDER BY u.friend_count DESC
Why: Aggregations across relationships can be expensive. For frequently queried metrics, denormalize and update transactionally.
Use Labels for Categorization
Leverage node labels for filtering and indexing:
// GOOD: Use labels for major categories
(:User:PremiumUser {name: 'Alice'})
(:User:TrialUser {name: 'Bob'})
CREATE INDEX ON :PremiumUser(created_date)
MATCH (u:PremiumUser)
WHERE u.created_date >= datetime() - duration('P30D')
RETURN COUNT(*)
// AVOID: Using properties for categories that affect query patterns
(:User {type: 'premium', name: 'Alice'})
(:User {type: 'trial', name: 'Bob'})
// Can't use label-specific indexes
MATCH (u:User)
WHERE u.type = 'premium'
AND u.created_date >= datetime() - duration('P30D')
RETURN COUNT(*)
Why: Labels enable label-specific indexes and more efficient query planning.
Query Optimization Practices
Use Parameters, Not String Concatenation
Always use parameterized queries for security and performance:
# GOOD: Parameterized queries
async with client.execute("""
MATCH (u:User {email: $email})
RETURN u
""", {'email': user_email}) as result:
user = await result.single()
# AVOID: String concatenation (SQL injection risk + no plan caching)
query = f"MATCH (u:User {{email: '{user_email}'}}) RETURN u"
result, _ = await client.query(query)
Why: Parameterized queries prevent injection attacks, enable query plan caching, and improve performance.
Limit Early, Filter Early
Apply filters and limits as early as possible in your query:
// GOOD: Filter and limit early
MATCH (u:User)
WHERE u.city = 'San Francisco'
AND u.last_active >= datetime() - duration('P7D')
WITH u LIMIT 100
MATCH (u)-[:FRIEND]->(f:User)
RETURN u.name, COLLECT(f.name) AS friends
// AVOID: Filtering after expensive operations
MATCH (u:User)-[:FRIEND]->(f:User)
WITH u, COLLECT(f.name) AS friends
WHERE u.city = 'San Francisco'
AND u.last_active >= datetime() - duration('P7D')
RETURN u.name, friends
LIMIT 100
Why: Early filtering reduces the working set size before expensive operations like aggregation and traversal.
Use EXPLAIN and PROFILE
Regularly analyze query execution plans:
// Understand query plan
EXPLAIN MATCH (u:User)-[:FRIEND*2..3]-(f:User)
WHERE u.city = 'Boston'
RETURN DISTINCT f.name
// Measure actual performance
PROFILE MATCH (u:User)-[:FRIEND*2..3]-(f:User)
WHERE u.city = 'Boston'
RETURN DISTINCT f.name
Look for:
- Index usage (avoid full scans)
- Cardinality estimates (ensure statistics are current)
- Expensive operations (sort, distinct, large aggregations)
- Traversal depth (limit variable-length paths)
Avoid Cartesian Products
Be explicit with relationship patterns:
// GOOD: Explicit relationship path
MATCH (u:User)-[:FRIEND]->(friend:User)-[:LIKES]->(p:Post)
WHERE u.name = 'Alice'
RETURN p.title
// AVOID: Separate MATCH clauses without connections
MATCH (u:User)
WHERE u.name = 'Alice'
MATCH (friend:User)
MATCH (p:Post)
WHERE (friend)-[:LIKES]->(p)
RETURN p.title
// Creates expensive Cartesian product
Why: Unconnected patterns create Cartesian products that examine every combination.
Transaction Management
Keep Transactions Short
Minimize transaction duration to reduce lock contention:
# GOOD: Short, focused transactions
async def update_user(client, user_id, new_data):
async with client.connection() as tx:
await tx.begin()
await tx.execute("""
MATCH (u:User {id: $user_id})
SET u.name = $name, u.email = $email
""", {'user_id': user_id, **new_data})
await tx.commit()
# AVOID: Long-running transactions
async def bad_batch_update(client, users):
async with client.connection() as tx:
await tx.begin()
for user in users: # Holds locks for entire loop
await tx.execute("""
MATCH (u:User {id: $user_id})
SET u.name = $name
""", user)
await asyncio.sleep(0.1) # Never sleep in transactions!
await tx.commit()
Why: Long transactions hold locks longer, increasing contention and reducing throughput.
Use Savepoints for Complex Operations
Implement partial rollback with savepoints:
async def complex_operation(client):
async with client.connection() as tx:
await tx.begin()
# Initial work
await tx.execute("CREATE (:User {name: 'Alice'})")
# Create savepoint before risky operation
await tx.savepoint('before_bulk_insert')
try:
# Risky bulk operation
await tx.execute("""
UNWIND $data AS row
CREATE (:Item {data: row})
""", {'data': large_dataset})
except Exception as e:
# Rollback to savepoint, keep initial work
await tx.rollback_to_savepoint('before_bulk_insert')
logger.warning(f"Bulk insert failed: {e}")
await tx.commit()
Why: Savepoints allow fine-grained error recovery without losing all work.
Handle Deadlocks Gracefully
Implement retry logic for transient failures:
import asyncio
from geode_client import DeadlockError
async def transactional_update_with_retry(client, max_retries=3):
for attempt in range(max_retries):
try:
async with client.connection() as tx:
await tx.begin()
result, _ = await tx.query("""
MATCH (u:User {id: $user_id})
SET u.last_updated = datetime()
RETURN u
""", {'user_id': 123})
await tx.commit()
return result
except DeadlockError:
if attempt == max_retries - 1:
raise
await asyncio.sleep(0.1 * (2 ** attempt)) # Exponential backoff
Why: Deadlocks are inevitable in concurrent systems; graceful retry prevents cascading failures.
Indexing Strategy
Create Indexes for Frequent Lookups
Index properties used in WHERE clauses and joins:
// Create single-property indexes
CREATE INDEX user_email_idx ON :User(email)
CREATE INDEX post_created_idx ON :Post(created_date)
// Create composite indexes for multi-property queries
CREATE INDEX user_location_idx ON :User(city, state)
// Use indexes in queries
MATCH (u:User)
WHERE u.email = $email // Uses user_email_idx
RETURN u
MATCH (p:Post)
WHERE p.created_date >= $start_date // Uses post_created_idx
AND p.created_date < $end_date
RETURN p
Why: Indexes convert O(n) scans to O(log n) lookups.
Monitor Index Usage
Regularly check index effectiveness:
# View index statistics
geode index stats
# Identify unused indexes
geode index analyze --show-unused
# Drop unused indexes
geode index drop user_unused_idx
Why: Unnecessary indexes slow down writes and consume memory.
Use Covering Indexes When Possible
Include all queried properties in the index:
// Create covering index
CREATE INDEX user_profile_idx ON :User(email, name, city)
// Query can be satisfied entirely from index
MATCH (u:User)
WHERE u.email = $email
RETURN u.name, u.city
// No need to fetch node data
Why: Covering indexes eliminate node data access, improving query performance.
Security Best Practices
Use Row-Level Security (RLS)
Implement data-level access control:
// Create RLS policy
CREATE POLICY user_data_isolation ON :UserData
USING (node.owner_id = current_user_id())
WITH CHECK (node.owner_id = current_user_id())
// Queries automatically enforce policy
MATCH (d:UserData)
RETURN d.content
// Users only see their own data
Why: RLS provides mandatory access control that can’t be bypassed by application bugs.
Never Store Plaintext Secrets
Use Field-Level Encryption (FLE) for sensitive data:
from geode_client import EncryptedField
await client.execute("""
CREATE (:User {
name: $name,
ssn: $ssn,
credit_card: $cc
})
""", {
'name': 'Alice',
'ssn': EncryptedField('123-45-6789', key_id='pii'),
'cc': EncryptedField('4111-1111-1111-1111', key_id='payment')
})
Why: FLE ensures data is encrypted end-to-end, even if database is compromised.
Implement Least Privilege
Grant minimal necessary permissions:
// Create role with limited permissions
CREATE ROLE analyst_role
// Grant only required operations
GRANT MATCH ON DATABASE mydb TO analyst_role
GRANT READ ON GRAPH analytics_graph TO analyst_role
// Don't grant unnecessary permissions
// DENY WRITE ON DATABASE mydb TO analyst_role
// DENY ADMIN ON DATABASE mydb TO analyst_role
Why: Principle of least privilege minimizes damage from compromised accounts.
Performance and Scalability
Connection Pooling
Reuse connections efficiently:
from geode_client import ConnectionPool
# Configure pool
pool = ConnectionPool(
host='localhost',
port=3141,
min_size=5,
max_size=20,
max_idle_time=300 # 5 minutes
)
async def query_with_pool():
async with pool.acquire() as client:
result, _ = await client.query("MATCH (n:User) RETURN COUNT(n)")
return result.single()
Why: Connection establishment is expensive; pooling amortizes overhead.
Batch Operations
Group operations for efficiency:
# GOOD: Batch insert
async def batch_insert(client, users):
await client.execute("""
UNWIND $users AS user
CREATE (:User {
name: user.name,
email: user.email,
created_at: datetime()
})
""", {'users': users})
# AVOID: Individual inserts
async def individual_inserts(client, users):
for user in users:
await client.execute("""
CREATE (:User {name: $name, email: $email})
""", user) # Separate network round-trip per insert
Why: Batching reduces network round-trips and transaction overhead.
Monitor and Alert
Implement comprehensive monitoring:
# prometheus.yml
scrape_configs:
- job_name: 'geode'
static_configs:
- targets: ['localhost:9090']
metrics_path: '/metrics'
# Key metrics to monitor:
# - geode_query_duration_seconds (query latency)
# - geode_transaction_commits_total (throughput)
# - geode_mvcc_snapshot_age_seconds (long transactions)
# - geode_wal_sync_duration_seconds (disk performance)
# - geode_connection_pool_active (connection usage)
Why: Proactive monitoring prevents outages and identifies optimization opportunities.
Development Workflow
Test with Representative Data
Use production-scale test data:
# Generate realistic test data
async def setup_test_data(client):
# Create diverse graph structure
await client.execute("""
UNWIND range(1, 10000) AS user_id
CREATE (u:User {
id: user_id,
name: 'User' + user_id,
created: datetime() - duration('P' + (user_id % 365) + 'D')
})
""")
# Create relationships with realistic distribution
await client.execute("""
MATCH (u1:User), (u2:User)
WHERE rand() < 0.01 // 1% connection probability
AND id(u1) < id(u2)
CREATE (u1)-[:FRIEND]->(u2)
""")
Why: Performance characteristics change dramatically with data scale.
Version Control Your Queries
Treat queries as code:
# queries/users.py
GET_USER_FRIENDS = """
MATCH (u:User {id: $user_id})-[:FRIEND]->(f:User)
RETURN f.name, f.email
ORDER BY f.name
"""
GET_POPULAR_POSTS = """
MATCH (p:Post)<-[:LIKES]-(u:User)
WITH p, COUNT(u) AS likes
WHERE likes > $min_likes
RETURN p.title, likes
ORDER BY likes DESC
LIMIT $limit
"""
# Use in application
from queries.users import GET_USER_FRIENDS
result, _ = await client.query(GET_USER_FRIENDS, {'user_id': 123})
Why: Query versioning enables review, testing, and change tracking.
Further Reading
- Graph Modeling Guide - Schema design patterns
- Query Optimization - Performance tuning
- Security Practices - Hardening and compliance
- Transaction Management - ACID and concurrency
- Monitoring and Operations - Production best practices
- Performance Tuning - Optimization techniques
- Index Management - Index strategies