Tenant is a single object that owns resources. Every tenant's resources are isolated from the other tenants, which ensures data security and privacy. Compass Director is a multi-tenant service, which means that a single instance of Director is shared among different tenants (clients), but their data is isolated.
Director manages the configuration of the following main objects:
- Application
- Runtime
- LabelDefinition
- Automatic Scenario Assigment
- Integration System
- ApplicationTemplate
Applications, Runtimes, LabelDefinitions, and Automatic Scenario Assignments and their child resources, such as APIs, are bound to tenants. Integration Systems and ApplicationTemplates are not bound to any tenant and can represent multiple tenants.
Tenancy in Director is implemented on the level of a database in which a given tenant has its own entity.
Every object which belongs to a tenant has the tenant_id column which points to the actual tenant entity.
A tenant is mainly described by two properties:
- Global tenant identifier - can be any string, treated like an identifier from an external system
- Internal tenant identifier - used as an internal technical identifier (UUID) to which
tenant_idcolumns refer to. It allows for unified tenant identification in Director. Thanks to this approach, external systems can describe their tenants in their own way without any impact on the Director internals.
Those properties are stored together with the metadata in the business_tenant_mapping table in the database.
The Compass Director GraphQL API exposes tenants query. The query returns a list of all tenants with their external identifier, internal identifier, and additional metadata.
You can create a tenant in Director manually by using the SQL statement or use one of the following importing mechanisms:
- Tenant Loader - a one-time job for importing tenants from files during the first Compass installation
- Tenant Fetcher - a periodic job that synchronizes tenants from an external system
Information about tenants is used during the authentication and authorization phase in Compass. Every incoming request is routed to the component called Tenant Mapping Handler.
The tenant mapping flow looks as follows:
- Tenant Mapping Handler looks for an external tenant identifier in request headers and request body under the headers and extra keys.
- Tenant Mapping Handler maps an external tenant to the internal tenant using
business_tenant_mappingandsystem_authtables from the Director database. - Tenant Mapping Handler passes additional data, such as the internal tenant identifier and caller identity, to Oauthkeeper. Oauthkeeper mutators put the data into JWT which is send to Director.
- Director validates the token and extracts the internal tenant identifier.
Having this information, Director can work as a multi-tenant service. For more information, refer to the document about security in Compass.