For those following me who run SaaS businesses. Do any of you encrypt your multi-tenant databases? And I don't mean at rest. I mean full-on in production mode? Can it even be done?
-
-
e.g. supposing Rails-land, straight-up disallow Model.where() and prefer either @account.models.where() and, if someone needs to use it for cross-action for admin pages or analytics, force them to say Model.unsafe_actions.where()... (which you can audit, grep for, discourage)
Thanks. Twitter will use this to make your timeline better. UndoUndo
-
-
-
Yes, I think this is actually really good advice! I'm going to look at ways to do just this in my app. Thanks for chiming in.
Thanks. Twitter will use this to make your timeline better. UndoUndo
-
-
-
Schemas are another option depending on how many clients you have if you need hard separation. Scaling is an issue though.
Thanks. Twitter will use this to make your timeline better. UndoUndo
-
Loading seems to be taking a while.
Twitter may be over capacity or experiencing a momentary hiccup. Try again or visit Twitter Status for more information.