multi-tenancy | working place for multi-tenancy related proposals | Frontend Framework library
kandi X-RAY | multi-tenancy Summary
kandi X-RAY | multi-tenancy Summary
A working place for multi-tenancy related proposals and prototypes.
Support
Quality
Security
License
Reuse
Top functions reviewed by kandi - BETA
Currently covering the most popular Java, JavaScript and Python libraries. See a Sample of multi-tenancy
multi-tenancy Key Features
multi-tenancy Examples and Code Snippets
Community Discussions
Trending Discussions on multi-tenancy
QUESTION
I have an application I need to deploy that is requiring the App Registration to be "Accounts in any organizational directory (Any Azure AD directory - Multitenant)". What would the implication of setting this be? The application does not work if I set it to just "Accounts in this organizational directory only ( only - Single tenant)". The application using this App Registration is a Bot Framework application.
Where in the Bot framework code would there be some dependency on multi-tenancy? I would prefer to keep it as single tenant.
Thanks in advance, Jake.
...ANSWER
Answered 2021-Jun-03 at 01:26The multi-tenant organization is what enables the Azure Bot Service servers (in the botframework.com tenant) to authenticate requests coming from the bot (registered in the customer's tenant) through our servers. It's part of our service to service authentication protocol. it is not used for other purposes, and not to have any claims added to it for other access.
So don't worry about that your tenant's data will be leaked to other tenants.
See a similar post here.
QUESTION
There is a warning on the Firebase best practices documentation against using Firebase with multi-tenant applications: https://firebase.google.com/docs/projects/learn-more#multi-tenancy
This is what I am most concerned about: "Multi-tenancy can lead to serious configuration and data privacy concerns problems, including unintended issues with analytics aggregation, shared authentication, overly-complex database structures, and difficulties with security rules."
There is also plenty of official Google documentation supporting the use of Firebase for multi-tenancy, for instance: https://cloud.google.com/identity-platform/docs/multi-tenancy-authentication .
Do you know why they would have these conflicting recommendations and examples? Does use of Google Identity Platform fix the core security deficits mentioned in the warning?
I am re-posting this question, with additional clarification in the title, and a few edits/removals from the body, to specify that I am only looking for why this widely used product has this particular warning in its official documentation. I have removed most subjective content. I have no opinion on this that is relevant to the question - I am only looking to understand the warning. It seemed there was one good answer before the previous question was closed, so I will link that here for reference: Why is Google Firebase not recommended by Google in their own documentation for multi-tenant applications?
...ANSWER
Answered 2021-Jun-02 at 06:00That does make sense if you manage 2 separate applications which have no relation with each other. Let's say you have an app that manages a school's information and other one is a restaurant management app. Now in this case I don't see any event that the school app might need access to restaurant data.
If you use the same project, then all the firebase services (auth, database, analytics, etc) will be shared among them. It'll be hard for you to separate analytics for each of the app. As the database is shared, you'll have to explicitly separate data of both apps by separating the path in db. (/apps/school for school, /apps/restaurant for restaurant).
That being said, any user registered on the school app can login on restaurant app without creating a new account there as you are sharing the same project among them.
Now if your client pays you a the Firebase costs every month, you cannot distinguish between how much should the school client pay. Now even if both the apps are your, the complexity will increase significantly if you go on using it.
https://firebase.google.com/docs/projects/learn-more#multi-tenancy <-- this explains how "Firebase Projects" works and https://cloud.google.com/identity-platform/docs/multi-tenancy-authentication explains about "Google Identity Kit" multi-tenant auth. So that's not a Firebase-only thing.
QUESTION
There is a warning on the Firebase best practices documentation against using Firebase with multi-tenant applications: https://firebase.google.com/docs/projects/learn-more#multi-tenancy
This is what I am most concerned about: "Multi-tenancy can lead to serious configuration and data privacy concerns problems, including unintended issues with analytics aggregation, shared authentication, overly-complex database structures, and difficulties with security rules." Identity Platform looks like it should cover everything except analytics aggregation and database structures, but I can control analytics logging and my database structure is simple enough, being divided cleanly by tenant. My application is one common application, but has tenanted client data and users (managed via Google Identity Platform).
There is also plenty of official Google documentation supporting the use of Firebase for multi-tenancy: https://cloud.google.com/identity-platform/docs/multi-tenancy-authentication . There are also dozens of examples out there for how to set up multi-tenancy with Firebase and Google Identity Provider.
Do you know why they would have these conflicting recommendations and examples? Does use of Google Identity Platform fix the core security deficits mentioned in the warning? It has me strongly considering abandoning Firebase, which would be a shame given the features it gives me.
...ANSWER
Answered 2021-May-28 at 07:44The recommendation is not bind to Firebase, or GCP, or Google. It's generic. If you put all your data in the same bag, with only a logical isolation, it's only logical, not strong as different projects.
Thus, it's easy to make a mistake and to use, delete, update, make the mess, in all the tenant data. In case of attacks, leak, major bug, you can reduce the blast radius by having several small tenant.
It's a tradeoff between more management to perform (because you have a lot of tenant) and a higher risk (multi-tenant project, the crash is dramatic). It also depends on your application type and context. It's a recommendation, not an obligation!
QUESTION
We are working with a schema-based multi-tenancy database. We are on an Elixir stack, using Postgres, Ecto, and Triplex within a Phoenix Framework project.
We are using the default schema public to store common data, such as users and organisations. In particular, we have within the Organisations table a tenant_prefix column which we use to map a user to their tenancy.
Within a tenancy, we tenant-specific tables. As an example, we have a Products table. When a new organisation is created, we use Triplex to create the schema and run tenant migrations, which create the tenant-specific tables such as Products.
As a visual, the database looks like this:
...ANSWER
Answered 2021-May-16 at 17:21I am not sure if it helps but I think that you should be using prefix option with your references. You can checkout the docs for further references.
https://hexdocs.pm/ecto_sql/Ecto.Migration.html#references/2
As of my understanding line 8 should be something like this
QUESTION
I am following a tutorial on multi-tenancy in Django (10:58/11:42) and I would like to modify the hosts file which I located alreadty. When I try to add a single letter, I get rejected: But this leaves me quite confused, this is my laptop, and I do not have permission? Is there a way to do this differently ?
...ANSWER
Answered 2021-Apr-29 at 08:00In the terminal type sudo nano /etc/hosts and then hit return.
Enter your administrator password and then hit return.
Then you should be able to edit the file.
QUESTION
I'm using Spatie's mutlti-tenancy package to implement multi-tenancy on my app. I'm using the multiple database approach, and at the moment I'm unsure what should go in my .env file, so I've got DB_DATABASE=landlord in there to point to my landlord database. I then use the DomainTenantFinder and it works quite well. I do have an issue though, usually when I want to indicate a model should use the tenant database connection, I include the following in the model:
...ANSWER
Answered 2021-Apr-15 at 12:22using the DB Facade you should specify the connection name like so:
QUESTION
I am trying to import a sql dump into a cockroachdb and getting the following error:
ANSWER
Answered 2021-Apr-12 at 14:12CockroachCloud Free is in Beta and is missing some features (the stated reason for still being in beta).
You can find more details in the FAQ which mentions restrictions in two answers. Both answers spell out the lack of support for IMPORT (emphasis mine):
Limitations of CockroachCloud Free:
CockroachCloud Free is currently in beta and there are capabilities we are still working on enabling, such as the ability to enable backups, to import data, and no-downtime upgrades to a paid tier. If you want to use any of these capabilities, try a 30-day trial of CockroachCloud.
Why is CockroachCLoud Free in Beta:
CockroachCloud Free is in beta while we work on adding core features like import and backups.
You will need to find an alternate way of loading your data such as creating the resources and inserting the data yourself.
QUESTION
I want to implement a database-level multi-tenancy feature that allows me to add databases dynamically. I haven't found a way to do this in Rails6. Can Rails6's multi-database feature dynamically recognize a new database if it's added while the application is running?
If anyone knows, please advise.
...ANSWER
Answered 2021-Apr-06 at 16:30Have you looked into apartment gem? It has API to create new DBs during runtime and switch to them. I have used it successfully on rails 5.2 but haven't tried on rails 6 (YMMV). You can also leverage Rails 6's multi-database feature to create and switch to DBs in runtime (requires little bit of in depth Rails connection pool knowledge), but when I tried with rails 6.0, I was forced to establish new connection on every request, which made things slow and unusable. Hope this helps and good luck!
QUESTION
Is it possible to access Azure DevOps APIs which will call APIs like these:
repositories https://vssps.dev.azure.com/{organization}/_apis/git/repositories?api-version=6.1-preview.1
list of users https://vssps.dev.azure.com/{organization}/_apis/graph/users?api-version=6.1-preview.1
I have create an app and allowed Azure DevOps API See here
I know I can create an app in Azure DevOps account. But the reason I want to access from here is due to the multi-tenancy.
What would be the urls to get list of Azure DevOps repositories and users
...ANSWER
Answered 2021-Mar-25 at 06:28According to my test, we can call Azure DevOps rest API with Azure Ad access token. For more details, please refer to the following steps
Configure applications
a. Create client secret
b. Configure permissions
Get token
get code
QUESTION
Is there a way to enabled/disable a realm in Keycloak? I'm happy with either UI or API.
A bit of background information: I have a multi-tenancy setup with a lot of different realms in Keycloak and I might want to make it impossible to login to some of them.
I know this can be achieved by simply deleting the realm but then I'd have to do a complete new realm configuration if I decided to enable/activate that realm again.
...ANSWER
Answered 2021-Mar-16 at 14:58Community Discussions, Code Snippets contain sources that include Stack Exchange Network
Vulnerabilities
No vulnerabilities reported
Install multi-tenancy
Support
Reuse Trending Solutions
Find, review, and download reusable Libraries, Code Snippets, Cloud APIs from over 650 million Knowledge Items
Find more librariesStay Updated
Subscribe to our newsletter for trending solutions and developer bootcamps
Share this Page
