Benefits and limitations Implementation Example

Controlling access with the database wrapper service pattern

A wrapper service is a service layer that acts as a facade for the database. This approach is particularly valuable when you need to maintain existing functionality while preparing for future decomposition. This pattern follows a simple principle—when something is too messy, start by containing the mess. The wrapper service becomes the only authorized way to access the database, providing a controlled interface while hiding the underlying complexity.

Use this pattern when immediate database decomposition isn't feasible due to complex schemas or when multiple services require continuous data access. It's particularly valuable during transition periods because it provides time for careful refactoring while maintaining system stability. The pattern works well when consolidating data ownership to specific teams or when new applications need aggregated views across multiple tables.

For example, apply this pattern when:

Schema complexity prevents immediate separation
Multiple teams need ongoing data access
Gradual modernization is preferred
Team restructuring requires clear data ownership
New applications need consolidated data views

Benefits and limitations of the database wrapper service pattern

The following are the benefits of the database wrapper pattern:

Controlled growth – The wrapper service prevents further uncontrolled additions to the database schema.
Clear boundaries – The implementation process helps you establish clear ownership and responsibility boundaries.
Refactoring freedom – A wrapper service lets you make internal changes without impacting consumers.
Improved observability – A wrapper service is a single point for monitoring and logging.
Simplified testing – A wrapper service makes it easier for consuming services to create simplified, mock versions for testing.

The following are the limitations of the database wrapper pattern.

Technology coupling – A wrapper service works best when it uses the same technology stack as the consuming services.
Initial overhead – The wrapper service requires additional infrastructure that might affect performance.
Migration effort – To implement the wrapper service, you must coordinate across teams to transition away from direct access.
Performance – If the wrapping service experiences high traffic, heavy usage, or frequent access, consuming services might experience poor performance. On top of the database, the wrapper service must handle pagination, cursors, and database connections. Depending it on your use case, it might not scale well, and it might be a poor fit for extract, transform, and load (ETL) workloads.

Implementing the database wrapper service pattern

There are two phases to implement the database wrapper service pattern. First, you create the database wrapper service. Then, you direct all access through it and document the access patterns.

Phase 1: Creating the database wrapper service

Create a lightweight service layer that acts as a gatekeeper to your database. Initially, it should mirror all existing functionalities. This wrapper service becomes the mandatory access point for all database operations, which converts direct database dependencies into service-level dependencies. Implement detailed logging and monitoring at this layer to track usage patterns, performance metrics, and access frequencies. Maintain your existing stored procedures, but make sure that they're accessed only through this new service interface.

Phase 2: Implementing access control

Systematically redirect all database access through the wrapper service, and then revoke direct database permissions from external systems that access the database directly. Document each access pattern and dependency as services are migrated. This controlled access enables internal refactoring of database components without disrupting external consumers. For example, start with low-risk, read-only operations instead of complex transactional workflows.

Phase 3: Monitor database performance

Use the wrapper service as a centralized monitoring point for database performance. Track key metrics, including query response times, usage patterns, error rates, and resource utilization. Set up alerts for performance thresholds and unusual patterns. For example, monitor slow-running queries, connection pool utilization, and transaction throughput to proactively identify potential issues.

Use this consolidated view to optimize database performance through query tuning, resource allocation adjustments, and usage pattern analysis. The centralized nature of the wrapper service makes it easier to implement improvements and validate their impact across all consumers, while maintaining consistent performance standards.

Best practices for implementing a database wrapper service

The following best practices can help you implement a database wrapper service:

Start small – Begin with a minimal wrapper that simply proxies existing functionality
Maintain stability – Keep the service interface stable while making internal improvements
Monitor usage – Implement comprehensive monitoring to understand access patterns
Clear ownership – Assign a dedicated team to maintain both the wrapper and the underlying schema
Encourage local storage – Motivate teams to store their data in their own databases

Scenario-based example

This section describes an example of how a fictitious company, named AnyCompany Books, could use the database wrapper pattern to control access to their monolithic database system. At AnyCompany Books, there are three critical services: Dispatch, Finance, and Order Processing. These services share access to a central database. Each service is maintained by a different team. Over time, they independently modify the database schema to meet their specific needs. This has led to a tangled web of dependencies and an increasingly complex database structure.

Three applications sharing access to a central database with multiple, modified schemas.

The company's application or enterprise architect recognizes the need to decompose this monolithic database. Their goal is to give each service its own dedicated database to improve maintainability and reduce cross-team dependencies. However, they face a significant challenge—it's nearly impossible to decompose the database while all three teams continue to actively modify it for their ongoing projects. The constant schema changes and lack of coordination between teams make it extremely risky to attempt any significant restructuring.

The architect uses the database wrapper service pattern to start controlling access to the monolithic database. First, they set up the database wrapper service for a particular module, called the Order service. Then, they redirect the Order Processing service to access the wrapper service instead of directly accessing the database. The following image shows the modified infrastructure.

Database access after implementing the wrapper service.

Warning Javascript is disabled or is unavailable in your browser.

To use the Amazon Web Services Documentation, Javascript must be enabled. Please refer to your browser's Help pages for instructions.

Document Conventions

Controlling access

CQRS pattern