| From: | Martin Ritchie <martinritchie(at)geotab(dot)com> |
|---|---|
| To: | Rob Sargent <robjsargent(at)gmail(dot)com> |
| Cc: | Jagmohan Kaintura <jagmohan(at)tecorelabs(dot)com>, Stephen Frost <sfrost(at)snowman(dot)net>, Guyren Howe <guyren(at)gmail(dot)com>, Tim Cross <theophilusx(at)gmail(dot)com>, "pgsql-generallists(dot)postgresql(dot)org" <pgsql-general(at)lists(dot)postgresql(dot)org> |
| Subject: | Re: Encryption of Data Specific to a Tenant in PostgreSQL database | General Idea |
| Date: | 2021-02-12 02:42:35 |
| Message-ID: | CA+LW_6L0Gd0R41W3R0WnJJ2HC1NHXFX-rVhGSKU346qFJSv5OQ@mail.gmail.com |
| Views: | Raw Message | Whole Thread | Download mbox | Resend email |
| Thread: | |
| Lists: | pgsql-general |
I have had good luck with security barrier views and performance. The main
thing security barrier does is ensure that where statements are processed
correctly.
The big consideration IMHO is how many tenants are you dealing with. A
couple of tenants, then best to give them separate databases. More than a
couple, but less than 50 or so, then best to give them all separate
schemas. If there are thousands of tenants (like an internet application)
then security barrier views are usually the easiest option to manage.
Martin Ritchie
*Geotab*
Senior DBA
Direct +1 (519) 741-7660
Toll-free +1 (877) 436-8221
Visit www.geotab.com
Twitter <https://twitter.com/geotab> | Facebook
<https://www.facebook.com/Geotab> | YouTube
<https://www.youtube.com/user/MyGeotab> | LinkedIn
<https://www.linkedin.com/company/geotab/>
On Thu, Feb 11, 2021 at 9:33 PM Rob Sargent <robjsargent(at)gmail(dot)com> wrote:
> DBA=~super user
> If your clients have dba privs you need separate (vertical)servers
>
>
>
| From | Date | Subject | |
|---|---|---|---|
| Next Message | Ron | 2021-02-12 03:31:40 | Building lots of indices in parallel |
| Previous Message | Rob Sargent | 2021-02-12 02:33:03 | Re: Encryption of Data Specific to a Tenant in PostgreSQL database | General Idea |