TL;DR: If you’re used to traditional SQL databases and synchronous request–response flows—where you read your writes in the same transaction or session—use the "majority" read concern in MongoDB and you will have the highest isolation and durability you can expect from a database. It’s not the default, but it’s safe to change it for your connection. The default is optimized for event-driven, microservice architectures with asynchronous communication, where lower latency is preferred even if it means sometimes reading a state that may later be rolled back.
PostgreSQL users typically expect writes to become visible to other sessions only after they’re acknowledged, either via auto-commit DML or an explicit COMMIT. By contrast, in MongoDB, you must enable the "majority" read concern to achieve similar ACID guarantees, and this is not the default. It may seem surprising that MongoDB offers the strongest consistency option—full ACID semantics in a distributed database—yet doesn’t enable it by default, despite seemingly no significant performance impact. This caught my attention and made me want to understand the reasoning behind it. NoSQL and SQL now address similar use cases, but their origins are fundamentally different. Let’s explore that.
Non-blocking read and write concerns
In the SQL standard, isolation levels were first defined by the anomalies (phenomena) that can occur when concurrent sessions read and write the same data. But these definitions were tied to a specific lock-based implementation rather than an abstract model: they assumed that reads and writes use locks and that active transactions share and modify a single current database state.
In reality, many databases chose different designs for scalability:
- Non-blocking reads with MVCC (e.g., PostgreSQL or MongoDB) show anomalies not covered by the standard—"write skew," for instance—and support isolation levels like Snapshot Isolation (SI), which differs from the SQL definitions, even though PostgreSQL uses the name Repeatable Read to match the SQL standard.
- Non-blocking writes (e.g., in MongoDB) detect write conflicts immediately and raise a retryable exception instead of waiting for lock acquisition, also known as optimistic concurrency control.
To understand isolation and durability in MongoDB, we must first consider read and write concerns independently, especially in a replicated, distributed setup where reads and writes can hit different servers. Then we can examine how they interact when we read after writing.
Isolation and durability
First, let’s distinguish isolation and durability — the I and D in ACID:
- Isolation defines how reads and writes from different sessions are visible to one another. To preserve atomicity, it must hide intermediate states of uncommitted writes until the transaction completes and should also prevent stale reads that miss previously committed writes.
- Durability ensures that once data is written, it remains persistent and is not lost after a failure. Similarly, to prevent dirty reads that might later be rolled back during failure recovery, data that has already been read should also be guaranteed to remain persistent.
Initially, these definitions assumed a single-node database. In modern systems, durability must also handle network and data center failures, so data is persisted across multiple nodes rather than just on a local disk.
A commit, whether in an explicit transaction or implicit in a write operation, typically proceeds as follows:
- Commit is initiated.
- The write-ahead log is flushed to local disk (local durability).
- The write-ahead log is flushed to the remote disk (global durability).
- Changes become visible (end of isolation) to other sessions.
- The commit is acknowledged in the session.
Durability and isolation each involve multiple operations, and their order can vary. The sequence above matches PostgreSQL with synchronous_commit = on, or MongoDB with w:majority and a majority read concern in other sessions.
Other configurations are possible. For example, Oracle Database uses a different order for durability and isolation, making changes visible before the redo log is flushed (except when paranoid_concurrency_mode is set), and is still considered as strongly consistent. With PostgreSQL synchronous_commit = local or MongoDB w:1, acknowledgment occurs before global durability. With MongoDB’s local read concern, data becomes visible before it is durable.
Why isn’t the above sequence—which seems to offer the strongest isolation and durability—the default in MongoDB?
Read after a write with asynchronous calls
There is another anomaly not described by the SQL standard, which assumes that read and write locks on a single database state are mutually exclusive. With MVCC, a transaction instead works with two states:
- Read time is the start of the transaction (or the start of the statement in Read Committed transactions). All reads use a snapshot from this time.
- Write time is the end of the transaction, since all writes must appear to occur atomically at commit.
Because the read time is earlier than the write time, another anomaly can occur:
- Microservice A writes an event, assumes it will be persisted and visible, and notifies microservice B.
- Microservice B receives the notification and reads the event, assuming it is visible.
- Microservice A receives the write acknowledgment a few milliseconds later, especially if global durability must be confirmed.
In a non-MVCC database with blocking reads, this preserves causality because, in step 2, microservice B requires a share lock and waits on an exclusive lock acquired by A and released at step 3, so B sees the write only after it acquires the share lock, after step 3. Non-MVCC is rare (e.g., DB2 or SQL Server without RCSI isolation level), but SQL isolation levels were defined based on it, and didn't mention causality.
Keep in mind that in this example, the application doesn’t wait for the write acknowledgment before telling the other service to read, yet it still expects the write to be complete when the read occurs. Read-after-write causality was guaranteed with read locks in the non-MVCC database.
However, in an MVCC database, as in most modern systems, microservice B may read a state from before a write is visible, causing a read-after-write anomaly. If the write is acknowledged only locally—for example, PostgreSQL with synchronous_commit = local or MongoDB with w:1—it will likely be visible by the time B receives the notification, because the write usually completes faster than the notification is delivered.
By contrast, PostgreSQL with synchronous_commit = on, or MongoDB with majority read concern, may not see the write yet if it has not been replicated to a majority. Thus, when using w:1, users should select the local read concern to avoid read-after-write anomalies. w:1 is not the default. Still, it can be chosen to reduce latency, at the risk of losing events on failure—something event-driven architectures can often tolerate.
With PostgreSQL synchronous_commit = on or MongoDB w:majority (the default), writes incur extra network latency because they must wait for remote acknowledgment. In this case, the scenario can still show a read-after-write anomaly if the majority has not yet acknowledged microservice A's write when microservice B reads. Using MongoDB local read concern avoids this anomaly, but risks reading data that might later be rolled back on failure.
"local" is the default, but use "majority"
The default read concern is well-suited to event-driven architectures. As event-driven systems were a primary use case for NoSQL databases like MongoDB, retaining this default makes sense, at least for backward compatibility. Developers may use asynchronous database calls and often expect reads to return the latest changes, even if those changes have not yet been acknowledged in the thread that performed the write operation.
Today, MongoDB is also used with traditional architectures, where it’s reasonable to prefer durability over fast visibility and use the "majority" read concern. This adds no performance penalty, because you already paid the synchronization latency when waiting for the write acknowledgment. "Majority" read concern sets the read time to the last commit time, while keeping reads local. It can wait in rare cases, such as during instance startup or rollback, until it can obtain a committed timestamp snapshot, or when secondaries are unavailable or lagging. But generally, there's no performance impact.
Unlike SQL databases—which must guarantee consistency for any DML executed by any user, including non-programmers at the command line—MongoDB shifts more responsibility to developers. Instead of relying on a one-size-fits-all default, developers must configure their session or connection by choosing:
- the write concern (for example,
w:majorityfor durability over network or data center failures), - the read concern (such as
majority, orsnapshotfor stronger consistency in multi-shard transactions), and - the read preference (to scale reads across replicas when some staleness is acceptable).
This configuration lets MongoDB adapt to different consistency and performance expectations, with explicit settings:
// best consistency:
mongodb+srv://mongo.net/test?w=majority&readConcernLevel=majority&readPreference=primary
// fast visibility:
mongodb+srv://mongo.net/test?w=majority&readConcernLevel=local&readPreference=primary
// fast write:
mongodb+srv://mongo.net/test?w=1&readConcernLevel=local&readPreference=primary
Note that readPreference=primary is the default because secondary reads may miss recent changes, as not all secondaries need to acknowledge a w:majority write. I like to set it explicitly in the microservice connection to make the expected consistency obvious.
Final recommendation: don’t use majority read concern with w:1 writes, since you may not be able to read your own acknowledged writes until they reach a majority of replicas. This may be another reason to keep local as the default read concern, as some writes may use w:1 instead of w:majority.
Top comments (0)