There exists a notion that in order to achieve the better security, we should opt for the physical isolation of databases
This is not true in reality, we can design using the right patterns so that we can still have the single table which have all the tenant information and still use the row level security pattern to restrict the data access by the tenant.
However, this has to be done for a MVP and based on the various parameters, this design is to be revisited and incase of having a tenant that has a very huge volume of data, in that case, we can migrate the tenant data to a separate database.
The migration of the data might be taking more time, so there should be a suitable connector that is built so that the tenant filter is applied during the data migration in the appropriate value.
The approach of having a single database is not applicable when there are GDPR or other HIPPAA compliances to be enforced.
Comments
Post a Comment