Base solution for your next web application
Open Closed

sharing data across tenants; access control list #12037


User avatar
0
murphymj5209 created

I have aspnetzero, the latest release and want to know if I can have a Access Control List that spans tenants.

Some more details:I have a Dev, stagging, Production systems, a) TenantA, user1, user2, Role1, Role2 b) TenantB, user3, user4, Role3, Role4. User3 is using a normal data entry form and wants to share the data with User1, preferable without copying data, Hence the idea of ACL.

How can i use/implement the ACL I am describing for the systems outlined. Thanks.


2 Answer(s)
  • User Avatar
    0
    ismcagdas created
    Support Team

    Hi @murphymj5209

    Does User3 wants to share some of the entries and doesn't want to share some others ? If so, you can make your entity nun multi-tenant and create a second table (EntityId & SharedUserId) to share data with other users.

  • User Avatar
    0
    murphymj5209 created

    so in doing this your suggested way, to me it reads that security just went out the door??!!

    Yes, a bold statement but how does TenantA user1, 'find' TenantB User3 so sharing can happen?

    I think I have my 'solution': https://casbin.org/ its does the 3 flavors of acl's. My hesitancy in doing personal coding is alot of effort for an inexperienced area.

    I would suggest that this or other system be implemented for a future release. Thanks again for your help.