En utilisant AWS re:Post, vous acceptez les AWS re:Post Conditions d’utilisation
AWS re:Postre:Post

Multi-tenancy in Neptune

1

I am trying to use Neptune for my SaaS application. My application includes data from multiple users. I want to restrict the user's access and allow a user to access only to vertices/ edges that contain his data. I read AWS Neptune documentation and I couldn't find anything that relates to tenant isolation/access restriction. Is it possible to limit access within the graph vertices/edges?

Sujets
Base de donnéesFramework AWS Well-Architected
Balises
Amazon NeptuneSécurité
Langue
English
AWS-user-1
demandé il y a 2 ans1123 vues
3 réponses
1

Hello, currently the IAM policies that Neptune supports, allow access to the entire database and do not allow fine grained access control where a given user can only read certain graph elements based on a label or property key/predicate name. We are definitely interested in use cases for this level of support. At the moment you will need to manage this within your application.

AWS
AWS-KRL
répondu il y a 2 ans
  • David Lee
    il y a 2 ans

    We desperately need this feature. Implementing ACLs at the application layer is very risky.

0

According to the documentation, fine-grain access control is not support at the database/IAM level: IAM Policy Limitations

profile pictureAWS
EXPERT
kentrad
répondu il y a 2 ans
0

I know this question is a couple years old, but adding this answer as it appears high on searches for this topic. The free AWS Skill Builder Course "Data Modeling for Amazon Neptune" discusses multi-tenancy strategies that work for most ISV customers in the "Advanced Modeling Considerations" section.

AWS
AWS-BMO
répondu il y a 6 mois

Vous n'êtes pas connecté. Se connecter pour publier une réponse.

Une bonne réponse répond clairement à la question, contient des commentaires constructifs et encourage le développement professionnel de la personne qui pose la question.

Instructions pour répondre aux questions

Contenus pertinents