Keep going 🎉🎉 please do not stop making such detailed videos with practical and theoretical knowledge. It doesnt matter how long the video is if it has important informtion throughout!
Thank you for sharing this, actually I started an app for my self a while ago with that platform that vercel provides but I didn't know how to do the auth correctly, can you please do a video like buliding a real example app and show it with 2-3 different users in different subdomains it would be awesome . Love your videos. Keep going
would appreciate if you can do a video on how to do micro service on backend and micro frontend with module federation on frontend using MERN or PERN stack.
forgetting to filter by tenant id is real and eventually will happen in any project of size. it's a danger that needs to be mitigated by using a top level safety mechanism that prevents any query from executing if the tenant identifier is missing
What of a case where you are building a Saas document management system and you're also considering the idea of allowing individual business have the ability of migrating or moving all their documents from your platform if they want to to somewhere else? Will you still use a single DB for every business?
not really, the authentication process involves only returning the data that belongs to a user or is somehow related to the user. whereby authorization in multi-tenant refers to permissions and roles. within the data that belongs to the user. ie. superadmin roles, admin roles, and basic user roles in an organisation
@@filipesommer8253 I would argue that you're correct. Authentication is the login and identifying the user as the account holder. Authorisation is the permissions and roles assigned to the account. That includes making sure they are authorised to view the data they're trying to access.
No wayyyy I am literally trying to build a multi-tenant app right now and you just posted this.
SAME
Same
SAAMEEEE
Same!
Even me I was trying to build that, I saw a lot of people on this road now, what if we helped each other. let's connect each other.
Keep going 🎉🎉 please do not stop making such detailed videos with practical and theoretical knowledge. It doesnt matter how long the video is if it has important informtion throughout!
You should index the "expense" table by the tenantId.
Very well explained video!
Fuck. Yes. The man delivered!
Thank you creating this
Gracias , me suscribo , tu contenido esta muy entretenido, sigue asi!
I handle this with prisma extensions and add the tenantId to every query. Much better since it’s centralized
Interesting idea
which extension?
Thank you for sharing this, actually I started an app for my self a while ago with that platform that vercel provides but I didn't know how to do the auth correctly, can you please do a video like buliding a real example app and show it with 2-3 different users in different subdomains it would be awesome . Love your videos. Keep going
would appreciate if you can do a video on how to do micro service on backend and micro frontend with module federation on frontend using MERN or PERN stack.
Tysm
forgetting to filter by tenant id is real and eventually will happen in any project of size. it's a danger that needs to be mitigated by using a top level safety mechanism that prevents any query from executing if the tenant identifier is missing
MY WORST FEAR!!
Love you brother you are doing great job, thanks
this is clean.
Thank you Brad, please can you dona video on how to do admin page in NextJs, roles and permission stuffs like that
How do you enforce user to choose with which organization they signup on the starting page?
Helpful!
What of a case where you are building a Saas document management system and you're also considering the idea of allowing individual business have the ability of migrating or moving all their documents from your platform if they want to to somewhere else? Will you still use a single DB for every business?
It depends. Offering migration service is ethical business.
@4:00 - can you offer byo custom url?
Great video! Not to be the picky guy, but don't you mean authorization* is critial so you don't see other people's data?
not really, the authentication process involves only returning the data that belongs to a user or is somehow related to the user. whereby authorization in multi-tenant refers to permissions and roles. within the data that belongs to the user. ie. superadmin roles, admin roles, and basic user roles in an organisation
@@konan6191 Interesting! Thanks for the insights
@@filipesommer8253 I would argue that you're correct. Authentication is the login and identifying the user as the account holder. Authorisation is the permissions and roles assigned to the account. That includes making sure they are authorised to view the data they're trying to access.
How do you handle caching in a multi-tenancy app for dynamic data?
Pass the organisation-id as url param
On multi tenant they share same db? Thanks
are you dutch?
He's from Poland