Multi-tenancy in Neptune

1

I am trying to use Neptune for my SaaS application. My application includes data from multiple users. I want to restrict the user's access and allow a user to access only to vertices/ edges that contain his data. I read AWS Neptune documentation and I couldn't find anything that relates to tenant isolation/access restriction. Is it possible to limit access within the graph vertices/edges?

asked 2 years ago1076 views
3 Answers
1

Hello, currently the IAM policies that Neptune supports, allow access to the entire database and do not allow fine grained access control where a given user can only read certain graph elements based on a label or property key/predicate name. We are definitely interested in use cases for this level of support. At the moment you will need to manage this within your application.

AWS
AWS-KRL
answered 2 years ago
  • We desperately need this feature. Implementing ACLs at the application layer is very risky.

0

According to the documentation, fine-grain access control is not support at the database/IAM level: IAM Policy Limitations

profile pictureAWS
EXPERT
kentrad
answered 2 years ago
0

I know this question is a couple years old, but adding this answer as it appears high on searches for this topic. The free AWS Skill Builder Course "Data Modeling for Amazon Neptune" discusses multi-tenancy strategies that work for most ISV customers in the "Advanced Modeling Considerations" section.

AWS
AWS-BMO
answered 5 months ago

You are not logged in. Log in to post an answer.

A good answer clearly answers the question and provides constructive feedback and encourages professional growth in the question asker.

Guidelines for Answering Questions