58👍
We built a multitenancy platform using the following architecture. I hope you can find some useful hints.
- Each tenant gets sub-domain (t1.example.com)
- Using url rewriting the requests for the Django application are rewritten to something like example.com/t1
- All url definitions are prefixed with something like
(r'^(?P<tenant_id>[\w\-]+)
- A middleware processes and consumes the tenant_id and adds it to the request (e.g. request.tenant = ‘t1’)
- Now you have the current tenant available in each view without specifying the tenant_id argument every view
- In some cases you don’t have the request available. I solved this issue by binding the tenant_id to the current thread (similar to the current language using
threading.local
) - Create decorators (e.g a tenant aware
login_required
), middlewares or factories to protect views and select the right models - Regarding to the databases I used two different scenarios:
- Setup multiple databases and configure a routing according to current tenant. I used this first but switched to one database after about one year. The reasons were the following:
- We didn’t need a high secure solution to separate the data
- The different tenants used almost all the same models
- We had to manage a lot of databases (and didn’t built an easy update/migration process)
- Use one database with some simple mapping tables for i.e. users and different models. To add additional and tenant specific model fields we use model inheritance.
- Setup multiple databases and configure a routing according to current tenant. I used this first but switched to one database after about one year. The reasons were the following:
Regarding the environment we use the following setup:
From my point of view this setup has the following pro’s and con’s:
Pro:
- One application instance knowing the current tenant
- Most parts of the project don’t have to bother with tenant specific issues
- Easy solution for sharing entities between all tenants (e.g. messages)
Contra:
- One quite large database
- Some very similar tables due to the model inheritance
- Not secured on the database layer
Of course the best architecture strongly depends on your requirements as number of tenants, the delta of your models, security requirements and so on.
Update: As we reviewed our architecture, I suggest to not rewrite the URL as indicated in point 2-3. I think a better solutions is to put the tenant_id
as a Request Header and extract (point 4) the tenant_id
out of the request with something like request.META.get('TENANT_ID', None)
. This way you get neutral URLs and it’s much easier to use Django built-in functions (e.g. {% url ...%}
or reverse()
) or external apps.
4👍
Here are some pointers to related discussions:
- Django ticket #15089: “contrib.sites and multitenancy”
- Discussion on Google Groups, see esp. Jari Pennanen’s solution at the end
- the patch introducing threadlocals-based multi-tenancy in Mezzanine; see esp.
mezzanine.utils.sites.current_site_id
,mezzanine.core.models.SiteRelated
andmezzanine.core.request
- the django-simple-multitenant re-usable app on PyPI
- [Django]-How can I disable logging while running unit tests in Python Django?
- [Django]-In Django – Model Inheritance – Does it allow you to override a parent model's attribute?
- [Django]-How to make email field unique in model User from contrib.auth in Django
1👍
I recommend taking a look at https://github.com/bcarneiro/django-tenant-schemas. It will solve your problems a bit like Reto mentioned, except that it uses postgresql schemas.
- [Django]-How to use UUID
- [Django]-Whats the difference between using {{STATIC_URL}} and {% static %}
- [Django]-What's the difference between staff, admin, superuser in django?