Unoptimized EF Core queries can quietly become a bottleneck as applications scale, driving up response times, memory usage, and infrastructure costs. While EF Core simplifies data access, performance depends heavily on how queries are modeled, executed, and monitored.

This guide focuses on practical EF Core performance tuning techniques tested in real-world .NET applications. The goal is simple: reduce query latency, improve scalability, and build APIs that stay fast under load.

Tips for EF Core performance tuning

1. Measure first: Identify real bottlenecks

Before applying optimizations, measure where time is actually spent. Most EF Core performance issues come from inefficient SQL generation, excessive round-trips, or unnecessary data loading.

Focus on identifying:

• N+1 queries
• Large result sets
• Repeated query execution
• Missing or ineffective indexes

Tools: You can use profilers like Entity Framework Profiler or SQL Server Profiler/pgAdmin for deeper analysis. You can log the information via EF Core to check the operation details.

Enable EF logging

services.AddDbContext(options =>
    options.UseSqlServer(connectionString)
           .LogTo(Console.WriteLine, LogLevel.Information));

Tip: Benchmark alternatives; public results may not match your setup due to latency or data volume differences. Always test it in your environment.

Performance impact: Ensures efforts target real problems, avoiding wasted time.

2. Index the database strategically

Indexes are one of the highest-impact optimizations for EF Core queries. Without them, even well-written LINQ queries can degrade into full table scans as data grows. Indexes act like a lookup table for your database, enabling faster data retrieval for queries involving WHERE, JOIN, ORDER BY, and GROUP BY clauses. Without indexes, the database performs full table scans, which can be prohibitively slow for large datasets.

Good index candidates include:

• Columns used in WHERE filters
• Foreign keys used in joins
• Columns used for sorting and pagination
• Frequently searched fields

Composite indexes work well for multi-column filters when column order matches selectivity. Keep in mind that indexes improve read performance at the cost of slower writes and additional storage.

EF Core indexing code example

Use EF Core’s Fluent API in your DbContext to define indexes during model configuration. Here’s an example for indexing the Url column in a Blog entity:

modelBuilder.Entity<Blog>()
    .HasIndex(b => b.Url)
    .HasDatabaseName("IX_Blog_Url");

Explanation: The HasIndex method creates an index on the Url column, which speeds up queries such as WHERE Url = 'example.com/blog‘. The optional HasDatabaseName assigns a clear name (e.g., IX_Blog_Url, following the convention: IX for index, table, then column).

Composite indexes

For queries filtering multiple columns, use composite indexes. For example, if you frequently query Posts by PublishedDate and CategoryId:

modelBuilder.Entity<Post>()
    .HasIndex(p => new { p.PublishedDate, p.CategoryId })
    .HasDatabaseName("IX_Post_PublishedDate_CategoryId");

Order matters: Place the most selective column (e.g., PublishedDate if it has more unique values) first for better efficiency.

• Benefits: Faster WHERE, JOIN, and ORDER BY operations.
• Warning: Indexes increase write time and storage; test before applying in production.
• Tool: Use EF Core’s migrations to apply indexes or analyze query plans with tools like SQL Server Profiler.

3. Fetch only what you need

Over-fetching data is a common cause of slow queries and high memory usage. EF Core makes it easy to load full entities, but most read paths don’t need every column.

Recommended approach:

• Use Select projections to fetch only required fields
• Map results to lightweight DTOs or C# records

This reduces network payload size, memory usage, and materialization cost, especially in high-concurrency scenarios.

Avoid Select * Equivalents: Instead of retrieving entire entities, use Select to project only required fields.

// Bad: Fetches all columns
var users = context.Users.ToList();

// Good: Fetches only needed fields
var users = context.Users
    .Select(u => new { u.Id, u.Name })
    .ToList();

Projection to a record DTO

Use a record for a reusable, immutable DTO instead of a class.

public record BlogDto(int Id, string Title, DateTime PublishedDate);

// Query using record DTO
var blogs = context.Blogs
    .Select(b => new BlogDto(
        Id: b.Id,
        Title: b.Title,
        PublishedDate: b.PublishedDate
    ))
    .ToList();

Explanation: The BlogDto record is immutable, ensuring data consistency in high-concurrency scenarios. The SQL query is SELECT Id, Title, PublishedDate FROM Blogs. Records also support value equality, reducing bugs in comparisons.

• Benefits: Reduces database load and memory usage.
• Warning: Overusing projections can lead to complex queries; balance readability and performance.

4. Fix N+1 Queries with the right loading strategy

Improper loading strategies often lead to N+1 query problems or overly complex SQL.

Choose wisely between eager, lazy, and explicit loading to avoid N+1 issues or cartesian explosions. The N+1 problem occurs when EF Core executes one query for an entity and additional queries for each related entity.

Example:

// Bad: N+1 queries
var orders = context.Orders.ToList();
foreach (var order in orders)
{
    var items = order.OrderItems.ToList(); // Separate query per order
}

// Good: Single query
var blogs = await context.Blogs
    .Include(b => b.Posts)
    .ToListAsync();

Advanced tip: Use SplitQuery in EF Core 5+ to break large queries into smaller, parallel ones.

var blogs = await context.Blogs
    .AsSplitQuery()
    .Include(b => b.Posts)
    .ToListAsync();

Comparison of eager, lazy, and explicit loading:

5. Filter and paginate early

Filtering and pagination should always be pushed to the database to avoid loading unnecessary data into memory.

Key practices:

• Apply Where, OrderBy, and Take as early as possible
• Avoid offset-based pagination for large datasets

Apply filters client-side only if necessary; push to the database for efficiency. Limit results with Take and Skip.

var recentPosts = await context.Posts
    .Where(p => p.Title.StartsWith("A"))
    .OrderBy(p => p.CreatedDate)
    .Take(25)
    .ToListAsync();

Efficient pagination options

• Keyset pagination uses indexed columns to retrieve the next page efficiently. Instead of skipping rows, keyset pagination uses a filter based on the last seen key (usually a unique, indexed column like Id) to fetch the next set of records.

public async Task<List<Post>> GetPostsKeysetAsync(DateTime? lastSeenDate)
{
    return await context.Posts
        .Where(p => p.Title.StartsWith("A") && (!lastSeenDate.HasValue || p.CreatedDate > lastSeenDate.Value))
        .OrderBy(p => p.CreatedDate)
        .Take(25)
        .ToListAsync();
}

• Cursor-based pagination builds on keyset pagination by encoding position into an opaque cursor, improving API usability and safety

public async Task<List<Post>> GetPostsCursorAsync(string? cursor)
{
    DateTime? lastSeenDate = null;

    if (!string.IsNullOrEmpty(cursor))
    {
        var bytes = Convert.FromBase64String(cursor);
        var dateString = Encoding.UTF8.GetString(bytes);
        lastSeenDate = DateTime.Parse(dateString);
    }

    return await context.Posts
        .Where(p => p.Title.StartsWith("A") && (!lastSeenDate.HasValue || p.CreatedDate > lastSeenDate.Value))
        .OrderBy(p => p.CreatedDate)
        .Take(25)
        .ToListAsync();
}

The API call would look like the following,

GET /posts?cursor=MjAyNS0xMC0xNlQwMTowMzozNi4wMDAwMDAwWg==

Performance impact: Prevents loading massive result sets, saving memory and time.

6. Use compiled and precompiled queries

EF Core translates LINQ expressions into SQL at runtime. For queries executed frequently, this translation cost can become noticeable.

• Compiled queries reduce runtime translation overhead

private static readonly Func<BlogContext, int, IAsyncEnumerable<Blog>> CompiledQuery =
    EF.CompileAsyncQuery((context, length) => context.Blogs.Where(b => b.Url.Length == length));

await foreach (var blog in CompiledQuery(context, 8)) { /* ... */ }

• Precompiled Queries (EF 9+): Generate during publish for Native AOT; reduces startup time.

Warning: Not for dynamic queries; rewrite as static if possible.

Comparison of different compilation methods

7. Batch updates and raw SQL for high-volume operations

Batch operations and raw SQL allow you to:

1. Execute bulk updates or deletes in a single database command.
2. Write custom SQL for complex queries that LINQ struggles to optimize.
3. Minimize memory usage by bypassing change tracking.
4. Reduce roundtrips, improving latency, and scalability.

Tracked entity updates can be inefficient for bulk operations or complex queries.

Prefer:

• ExecuteUpdateAsync and ExecuteDeleteAsync for bulk changes
• Parameterized raw SQL for complex or performance-sensitive queries

These approaches reduce round-trips, bypass unnecessary tracking, and improve throughput for large workloads.

ExecuteUpdateAsync

await context.Posts.ExecuteUpdateAsync(s =>
    s.SetProperty(p => p.Views, p => p.Views + 1));

Raw SQL (Use parameterized queries to prevent SQL injection)

int pageSize = 10;
DateTime lastSeenCreatedDate = new DateTime(2023, 01, 01); 

var blogs = await context.Blogs
    .FromSqlRaw(
        @"SELECT TOP({1}) * FROM Blogs 
            WHERE CreatedDate > {0} 
            ORDER BY CreatedDate ASC", 
        lastSeenCreatedDate, pageSize)
    .ToListAsync();

Tip: Batch saves automatically, but configure MaxBatchSize if needed.

Performance impact: Single roundtrip for bulk ops vs. multiple with traditional methods.

8. Use no-tracking for read-only queries

Change tracking adds overhead that isn’t needed for read-only queries.

For reporting, feeds, or public API endpoints:

• Use AsNoTracking() to skip tracking
• Reduce memory usage and improve query performance

This is one of the simplest and most effective EF Core optimizations for read-heavy paths.

// Tracking (default) - Slower for reads
var blogs = await context.Blogs.ToListAsync();

// No-tracking - Faster, no identity resolution
var blogsNoTracking = await context.Blogs
    .AsNoTracking()
    .ToListAsync();

The tracking query in the above code example loads all Blog entities into memory with snapshots, generating SQL like SELECT * FROM Blogs. The no-tracking query uses the same SQL but skips snapshot creation and identity resolution, reducing overhead.

When to use: Read-only scenarios like reports; skip if updating later.

9. Cache strategically to reduce database load

Cache query results externally (e.g., with IMemoryCache or Redis) to skip database hits. Database queries, even optimized ones, incur latency due to I/O, network roundtrips, and query execution.

For example, fetching a list of recent Blogs from a database with 100,000 rows can take 100-200ms per request, even with indexing and no-tracking. In a high-traffic blog API with thousands of requests per minute, this adds up, straining the database and increasing response times. Caching stores query results in memory (or a distributed store), allowing subsequent requests to retrieve data in microseconds instead of milliseconds.

For a blogging system, caching is ideal for:

1. Static data, like a list of top blogs or categories.
2. Semi-static data, like recent posts updated hourly.
3. Read-heavy endpoints, like blog feeds or search results.

if (!cache.TryGetValue("blogs", out List<Blog> blogs))
{
    blogs = await context.Blogs
        .AsNoTracking()
        .ToListAsync();
    cache.Set("blogs", blogs, TimeSpan.FromMinutes(5));
}

Choose appropriate expiration and invalidation strategies to avoid serving stale data.

10. Advanced: DbContext pooling and async

Creating and disposing DbContext instances per request adds overhead under high concurrency. DbContext pooling reuses instances to reduce allocation and initialization cost.

Benefits include:

• Faster request handling
• Lower memory pressure
• Better scalability in high-throughput APIs

Pool sizes should be tuned based on traffic patterns and available resources.

services.AddDbContextPool<BlogContext>(
    o => o.UseSqlServer(connectionString),
    poolSize: 2000);

In the above code example, AddDbContextPool creates a pool of up to 2000 BlogContext instances (the default pool size in EF Core is 1024). Reused instances skip initialization, reducing overhead. The connectionString specifies the SQL Server database. A smaller pool size (e.g., 256) is often sufficient for most applications, balancing memory and performance.

Async: Always use async methods (e.g., ToListAsync) for scalability.

Implementation example: Optimized EF Core blog query

Combine tips for fetching blogs with posts, paginated and cached. This uses no-tracking, split queries, projection, pagination, and caching for optimal performance.

public async Task<List<BlogDto>> GetBlogsAsync(int page, int size, IMemoryCache cache)
{
    var key = $"blogs_page_{page}";
    if (!cache.TryGetValue(key, out List<BlogDto> blogs))
    {
        blogs = await Context.Blogs
            .AsNoTracking()
            .AsSplitQuery()
            .Include(b => b.Posts.Where(p => p.Published))
            .Select(b => new BlogDto
            {
                Id = b.Id,
                Url = b.Url,
                PostCount = b.Posts.Count
            })
            .OrderBy(b => b.Url)
            .Skip((page - 1) * size)
            .Take(size)
            .ToListAsync();
        cache.Set(key, blogs, TimeSpan.FromMinutes(10));
    }
    return blogs;
}

Conclusion

Thank you for reading! Tuning EF Core queries involves measuring first, then applying targeted optimizations like no-tracking, projections, and compiled queries. By modeling efficiently and caching wisely, you can achieve significant speedups, often 2x or more in benchmarks. In my experience, combining AsNoTracking with caching has been a game-changer for high-traffic APIs.

Test iteratively in your environment, as gains vary by database and workload. With these tips, your .NET apps will handle data like a pro.

Apply these optimizations to your EF Core projects today! Dive deeper into the EF Core docs or share your experiences in the comments. You can refer our Entity Framework Core Succinctly^®  free e-book here. Subscribe for more .NET tips!

GitHub has introduced a significant update to its CodeQL engine, enabling developers to define custom sanitizers and validators directly through "models-as-data," a move that simplifies how teams extend security analysis across their codebases.

Learn how managed identities in SQL Server 2025 enhance security by eliminating passwords and enabling seamless Microsoft Entra authentication for Azure resources.

Those who have worked with SQL Server will understand the need to avoid storing passwords for accessing resources. Windows-based identities are fine for on-premises SQL Server systems, including those on cloud-based virtual machines (VMs), but are of no use when you need to access cloud-based resources like those in Azure.

Some Azure-based resources (including storage accounts) offer other access methods, such as shared access signatures (SAS), but these aren’t much of a step-up from passwords.

What’s really needed is for SQL Server to have its own Microsoft Entra based identity. These can be used directly with Azure-based resources – and that’s exactly where managed identities come in.

What are managed identities?

A managed identity is a Microsoft Entra identity that Azure creates and manages for a resource. This allows the resource to obtain tokens for other Azure services without the need for storing passwords, client secrets, or certificates in code or configuration. Two types of managed identities are available.

First, a system-assigned managed identity, which is specific to a resource. For example, I could add a system-assigned managed identity to an Azure Data Factory (ADF). The ADF could then use the identity when making connections to, or accessing, other resources. When the ADF is deleted, the system-assigned managed identity is also removed.

Then there’s a user-assigned managed identity. This is created independently of any specific resource and can be applied to a resource, in addition to any system-assigned managed identity. User-assigned managed identities are very powerful because a single identity can be assigned to multiple resources.

For example, I might have a single identity for a group of data factories. This simplifies the configuration of access and, importantly, if I need to recreate the data factory, I can use the same identity. Even when all the data factories are deleted, the user-assigned managed identity can survive. Another common use for these is to assign the same identity to a group of web servers.

The official Microsoft documentation for managed identities can be found here.

Why managed identities are not just service principals

Under the covers, managed identities are a special kind of service principal, but there are important differences. The major one is that service principals expire, whereas Azure manages the lifecycle and credential rotation of managed identities for you.

I’m always concerned when I see solutions built using service principals without plans for what would happen when they expire. These are like time-bombs at many sites today, but using managed identities avoids these issues. The credential expires after 90 days and is rolled over after 45 days.

The biggest contrast is operational. With a service principal, someone must create an app registration, issue and protect a secret or certificate, and periodically rotate that credential. That might also require updating dependent systems.

What’s needed to use a managed identity?

To be able to use managed identities, you need two things:

You might think that anything that can have a managed identity could also use it for connections, but that’s not the case.

For example, you can assign either or both a system-assigned managed identity and a user-assigned managed identity to an Azure Analysis Services (AAS). However, AAS does not currently provide any way to use that identity when connecting to an Azure-based resource or service.

We currently have AAS servers making connections to Azure SQL Database using logins and passwords, but I wish we didn’t have to do this. It wouldn’t be required at all if we could just specify the managed identity in the connection details.

How do managed identities apply to SQL Server 2025?

It’s increasingly common for SQL Server to need to connect to Azure-based resources. This not only happens with SQL Server in Azure VMs, but also with on-premises SQL Server installations. However, SQL Server is not a native Azure resource or service.

From SQL Server 2025 onwards, it’s possible to both configure and use a system-assigned managed identity when SQL Server is enrolled in Azure Arc. To enable this, the SQL Server instance must be connected to Arc and run on Windows Server. It must also use the latest Azure Extension for SQL Server.

Currently, the documentation notes that SQL Server must have access to Azure public cloud for Microsoft Entra authentication, and that failover cluster instances are not supported for this managed-identity setup. We also can’t (yet) use user-assigned managed identities with SQL Server.

So, we only have part of what we need right now – but it’s a great start.

How to configure and use the managed identity in SQL Server 2025

Once the SQL Server instance is Arc-enabled, you can assign the server’s primary managed identity. You do this from the Azure portal while configuring the properties of the Arc-enabled SQL Server resource, under the Microsoft Entra ID and Purview settings. This primary managed identity is what SQL Server 2025 uses when making outbound connections to Azure-based resources.

You also need to grant the identity permission to the target resource in Azure. The role required is a role-based access control (RBAC) configuration, and will usually be different for each service type.

As part of making an outbound connection, you need to use a database-scoped credential like this:

EXECUTE sp_configure 'allow server scoped db credentials', 1;
RECONFIGURE;
GO
CREATE DATABASE SCOPED CREDENTIAL [storage_credential]
WITH IDENTITY = 'Managed Identity';
GO

Some credentials will also require you to specify a ‘secret’, for example when making a connection to an Azure OpenAI endpoint. Here, you not only specify IDENTITY = ‘Managed Identity’, but also a JSON secret identifying the token audience.

Note that it’s common to name the credential after the scope of the resource you’re accessing:

CREATE DATABASE SCOPED CREDENTIAL
[https://my-azure-openai-endpoint.cognitiveservices.azure.com/]
WITH IDENTITY = 'Managed Identity',
     SECRET = {"resourceid":"https://cognitiveservices.azure.com"}';
GO

This credential can then be used when executing calls like CREATE EXTERNAL MODEL. Once this is done, calls to the external model can use that credential to authenticate without the need to supply an API key.

In summary: managed identities in SQL Server 2025

We still have limitations with how we can configure and use managed identities with SQL Server, but what’s been provided so far is a great start. It lets traditional on-premises (and cloud VM-based) SQL Server instances participate in modern Microsoft Entra-based authentication patterns, and in turn reduce potential issues like credential leakage.

The post What are managed identities in SQL Server 2025? A complete guide appeared first on Simple Talk.

Loan processing breaks where documents begin

Loan processing is document-intensive by nature, and that’s exactly where most workflows break down.

Loan officers juggle email threads, outdated file copies, fragmented review tools, and customers wait for long days for approvals, and incomplete audit trails. When form filling, reviewing, annotating, signing, and approving all happen in separate systems, every transition is a potential point of failure.

This blog shows how to solve that problem by building a complete, role-based loan document review workflow by embedding the Syncfusion^® React PDF Viewer, all inside a single React application. You’ll get a step-by-step walkthrough, key code snippets, and a working GitHub sample to reproduce the full flow.

Experience a leap in PDF technology with Syncfusion's PDF Library, shaping the future of digital document processing.

Explore Now

Why digital loan workflows matter more than ever

Loan processing is the end-to-end sequence that turns an application into a sanctioned loan: intake, verification, review, approval, and delivery. When each stage depends on manual handoffs or disconnected tools, the entire pipeline slows down.

Here’s what that looks like in practice:

• Slow turnaround: Manual routing and email threads add days or weeks.
• Broken context: Reviewers work from copies or fragmented annotations, causing rework.
• Compliance exposure: Incomplete audit trails and versioning gaps increase risk.
• Operational cost: Multiple-point tools and manual steps inflate headcount and processing cost.
• Poor customer experience: Long waits and repeated document requests kill conversion.

In 2026, a unified, auditable digital workflow isn’t just a modernization effort. It’s a competitive advantage that turns loan pipelines into predictable revenue engines.

What a unified digital workflow delivers

Replacing fragmented processes with structured, automated digital document flows in a single interface changes the picture entirely:

• Speed: Digital workflows cut decision time. Faster approvals mean more closed loans.
• Accuracy: Inline validation and single-source PDFs reduce errors and resubmission.
• Visibility: Real-time dashboarding and status badges eliminate chase work for staff.
• Compliance: Embedded signatures, stamps, and audit logs create defensible records.
• Lower cost, higher conversion: Fewer touchpoints, less rework, and better customer experience directly boost margins.

Architecture overview: One app, one document, full traceability

The loan processing application uses a clean, modern architecture that pairs an intuitive frontend review experience with a secure, auditable backend. The result is a seamless end-to-end workflow, form filling, annotation, review, approval, and final PDF generation, all inside a unified digital system.

Technology stack

Frontend (React + Syncfusion PDF Viewer)

A React application embeds the Syncfusion PDF Viewer, enabling users to:

• Fill form fields directly in the browser.
• Add annotations (highlights, comments, notes).
• Apply E-signatures.
• Download final PDFs.

All interactions happen inside a single interface. No external viewers, no file switching, and no context loss.

Backend services

A lightweight backend service handles the business logic and compliance needs:

• Persist annotation JSON for each review cycle.
• Manage workflow status across the loan requester → loan officer → manager.
• Record audit events (timestamps, actions, version history) for compliance.
• Generate flattened PDFs with embedded stamps, signatures, and metadata.
• Store documents with version tracking for future verification or audits.

Together, the stack ensures a secure, traceable, and fully digital review flow.

End-to-end role-based architecture workflow

The loan processing workflow is structured with a role-based workflow, each interacting with the PDF viewer differently:

1. Loan requester: Fills out loan applications, uploads supporting documents, and signs forms.
2. Loan officer: Reviews applications, adds annotations, and provides preliminary approval.
3. Site officer: Verifies the details submitted by the loan requester and completes the verification fields in the loan application.
4. Manager: Final review, approval authority, and sanction letter generation.

This architecture delivers a fully connected, auditable, and efficient loan processing ecosystem powered by an embedded PDF experience.

Building the end-to-end loan processing workflow with Syncfusion React PDF Viewer

Let’s break down the steps to build the loan document review processing workflow using the Syncfusion React PDF Viewer.

Step 1: Initialize the React PDF Viewer

Setting up the Syncfusion React PDF Viewer is quick and developer-friendly. All you need to do is:

• Install the Syncfusion React packages.
• Import the required style CSS reference.
• Then, add the PDF Viewer component to your React app.

From there, you can load PDFs, enable form filling, annotations, and signatures, and connect the viewer to your backend APIs.

Below is a code snippet to initialize the React PDF Viewer component.

import * as ReactDOM from 'react-dom/client';
import * as React from 'react';
import './index.css';
import { PdfViewerComponent, Toolbar, Magnification, Navigation, LinkAnnotation, BookmarkView,
         ThumbnailView, Print, TextSelection, Annotation, TextSearch, FormFields, FormDesigner, Inject} from '@syncfusion/ej2-react-pdfviewer';

function App() {
    return (<div>
    <div className='control-section'>
    {/* Render the PDF Viewer */}
      <PdfViewerComponent
        id="container"
        documentPath="https://cdn.syncfusion.com/content/pdf/pdf-succinctly.pdf"
        resourceUrl="https://cdn.syncfusion.com/ej2/31.2.2/dist/ej2-pdfviewer-lib"
        style={{ 'height': '640px' }}>

         <Inject services={[ Toolbar, Magnification, Navigation, Annotation, LinkAnnotation, BookmarkView,
                             ThumbnailView, Print, TextSelection, TextSearch, FormFields, FormDesigner ]}/>

      </PdfViewerComponent>
    </div>
  </div>);
}

For more details, explore thfaq_e complete setup guide for the Syncfusion React PDF Viewer!

Step 2: Building a unified user login

The application uses a single login page for all four roles:

• Loan Requester
• Loan Officer
• Site Officer
• Manager

Users select their role at login, and after authentication, they’re directed to a role-specific dashboard showing only the tasks, documents, and permissions relevant to their stage in the workflow.

Note: This demo uses mock user-role details. In a production environment, you can integrate it with your organization’s authentication system to enforce actual access control.

Explore the wide array of rich features in Syncfusion's PDF Library through step-by-step instructions and best practices.

Read Now

Step 3: Filling out the loan application

After logging in, the loan requester lands on their dashboard, where they can view existing applications, check statuses, and create a new loan request. The dashboard shows the following key details:

• Loan ID
• Application Name
• Status
• Action
• Comments

When the customer clicks the Create button, the loan form opens directly inside the Syncfusion React PDF Viewer. The loan form includes sections for applicant details, employment information, and loan specifics. Attachment fields allow applicants to upload supporting documents without leaving the interface.

The customers need to complete all required fields, add their e-signature, and submit.

The built-in validation enforces clean data entry. Fields like Date of Birth and Phone Number accept only valid formats, preventing errors before submission.

Refer to the following code example to implement numeric field validation.

if (targetName) {
    // If field name references numeric fields (date, phone, amount, tenure, etc.), enforce digits-only
    const numericKeywords = [
        'date',
        'dob',
        'dateofbirth',
        'phone',
        'mobile',
        'contact',
        'amount',
        'tenure',
        'number',
        'no',
        'age'
    ];

    let isNumericField = numericKeywords.some(k => targetName.includes(k));

    // If the field is a signature field, skip numeric sanitization even if the name contains keywords
    const fieldTypeRaw =
        (args.field && (args.field.type || args.field.fieldType || '')) || '';

    const fieldType = (fieldTypeRaw + '').toString().toLowerCase();
    const isSignatureField = fieldType.includes('signature');

    if (isSignatureField && isNumericField) {
        console.debug(
            'Skipping numeric sanitization for signature field',
            { targetName, fieldType }
        );
        isNumericField = false;
    }
}

Refer to the following image.

Step 4: Site officer reviews

Now, the loan officer checks the loan details filled by the loan requester and forwards them to the site officer for verification.

The site officer can access all pending verification loan forms from their dashboard. Their primary responsibility is to confirm that the information provided by the loan requester is accurate, genuine, and complete. The site officer also fills site‑specific fields and returns the application to the loan officer with all relevant verification details added as comments.

This step introduces an essential layer of field‑level authentication, strengthening the reliability of the loan approval process before the application moves forward for final approval.

See the following image for more information.

Step 5: Loan officer reviews

Loan officers access their dedicated dashboard listing all pending applications. Selecting an application opens it inside the Syncfusion React PDF Viewer.

Loan officers cannot edit fields submitted by the loan requester. Instead, they use annotations, highlights, and comments to review the document and provide structured feedback.

After site officer verification, a loan officer can:

• Request additional information from the loan requester.
• Reject the application with comments.
• Approve and forward to the manager for final review.

Implement the following code example to prevent editing field values submitted by the customer.

/**
 * onDocumentLoad
 */
const onDocumentLoad = () => {
    evaluateFields();

    // Apply read-only mode based on loan status and role
    const canEdit =
        loanStatus === LoanStatus.INFO_REQUIRED &&
        (role === "Manager" || role === "Loan Officer");

    if (
        (!canEdit || loanStatus !== LoanStatus.INFO_REQUIRED) &&
        loanStatus !== ""
    ) {
        readOnly();
    }
};

The following GIF image provides visual clarity about the loan reviewing process.

Step 6: Manager reviews and approvals

Managers hold final approval authority. Their dashboard displays all applications waiting for approval, and each document opens directly inside the Syncfusion React PDF Viewer for review. Managers cannot modify customer-submitted fields but can review all annotations added by other officers and verify supporting documents.

From here, they can:

• Approve the application and trigger the sanction‑letter creation.
• Reject the application with comments.

Once approved, the manager sends the sanction letter to the customer for signature. After the customer signs, the manager completes the final signing and closes the loan process.

The following code example explains how sanction letter fields are populated and locked during the approval stage.

/**
 * UpdateForm
 * Populate sanction letter fields with values collected during approval
 * and set them to read-only.
 */
function UpdateForm() {
    const viewer = viewerRef.current;
    if (!viewer) return;

    let forms = viewer.retrieveFormFields();

    for (let i = 0; i < forms.length; i++) {
        const field = forms[i];

        // Populate sanction fields based on field name
        if (field.name === "ApplicantName") {
            field.value = sanctionValues.name;
        } else if (field.name === "Amount") {
            field.value = sanctionValues.amount;
        } else if (field.name === "Tenure") {
            field.value = sanctionValues.tenure;
        } else if (field.name === "Date") {
            field.value = new Date().toLocaleDateString("en-GB");
        }

        // If the field has a value, update and lock as read-only
        if (field.value !== "") {
            viewer.updateFormFieldsValue(field);
            viewer.formDesignerModule.updateFormField(field, {
                isReadOnly: true
            });
        }
    }
}

Step 7: Downloading the loan sanction letter

After the manager approves the loan, the loan requester’s dashboard updates the application status to “APPROVED.” They can now open the sanction letter directly inside the React PDF Viewer and use the built-in Download option to save a signed copy locally.

Witness the advanced capabilities of Syncfusion's PDF Library with feature showcases.

Try Now

Comparing manual vs. digital loan processing workflow

The move from manual loan processing to an embedded digital workflow significantly reduces delays, errors, and compliance risks. The table below shows how each stage improves when using the Syncfusion React PDF Viewer instead of traditional, fragmented tools.

GitHub reference

Ready to try it yourself? Clone the Loan processing demo on GitHub, run it in minutes, and experience a complete end‑to‑end loan review and approval process firsthand.

Syncfusion’s high-performance PDF Library allows you to create PDF documents from scratch without Adobe dependencies.

Try It Free

Build faster, compliant loan workflows directly inside your React app

Thanks for reading! The Syncfusion React PDF Viewer brings together every capability needed to build a seamless, end-to-end digital loan processing workflow directly inside the browser. Its comprehensive built-in features eliminate the need for external tools, reduce operational friction, and ensure a secure, compliant loan lifecycle from app to sanction letter.

Ready to modernize your loan processing? Start exploring the full power of the React PDF Viewer:

• Form filling & annotations: Interactive form fields with validation plus rich markup tools for reviewing documents.
• E‑Signature support: Secure electronic signing without the need for wet signatures.
• Role‑based access: Customizable toolbars and permissions tailored for each user role.
• API & customization: Deep customization with 200+ APIs and easy backend integration for workflow state, audits, and versioning.
• Performance & compliance: Fast, secure rendering (client or server) with GDPR, HIPAA, and SOC 2 compliant infrastructure.
• Multi‑platform support: Works across React, Angular, Vue, Blazor, ASP.NET Core, and more.

If you’re a Syncfusion user, you can download the setup from the license and downloads page. Otherwise, you can download a free 30-day trial.

You can also contact us through our support forum, support portal, or feedback portal for queries. We are always happy to assist you!

Mistral has released Mistral Medium 3.5, a 128-billion parameter model designed to handle instruction following, reasoning, and coding within a single system, and introduced new cloud-based agent capabilities in its Vibe and Le Chat products.

Test SQL Server Backup Performance For Free

Chapters

• *00:00:00* – Introduction
• *00:00:30* – Free Stuff on GitHub
• *00:01:00* – Stored Procedure Overview
• *00:01:27* – Backup Performance Factors
• *00:01:57* – Testing and Iterations
• *00:02:12* – Stored Procedure Functionality
• *00:02:34* – Parameter Parsing
• *00:03:10* – Cross Join and Temp Tables
• *00:03:34* – Logging and Progress
• *00:04:09* – Backup Command Construction
• *00:04:24* – Reporting Results
• *00:04:35* – Throughput Ranking
• *00:04:52* – Compression Settings Report
• *00:04:57* – Impact Analysis
• *00:05:11* – RAM Usage Report
• *00:05:30* – Consistency Report
• *00:05:59* – Example Run
• *00:07:06* – Cleanup Process
• *00:08:09* – Results Display
• *00:08:30* – Small Database Test
• *00:08:46* – Larger Database Considerations
• *00:09:02* – Usage and Testing
• *00:09:13* – GitHub Repository
• *00:09:20* – Open Source Contribution
• *00:09:32* – Script Naming
• *00:09:45* – GitHub Issue Guidance
• *00:10:12* – Conclusion

Going Further

If this is the kind of SQL Server stuff you love learning about, you’ll love my training. Blog readers get 25% off the Everything Bundle — over 100 hours of performance tuning content. Need hands-on help? I offer consulting engagements from targeted investigations to ongoing retainers. Want a quick sanity check before committing to a full engagement? Schedule a call — no commitment required.

The post Test SQL Server Backup Performance For Free appeared first on Darling Data.