Domain separation and Data Certification

  • Release version: Xanadu
  • Updated August 1, 2024
  • 2 minutes to read
    • Summarize
    Summarized using AI
    This content was generated using new OpenAI-powered functionality. Results are provided on an as is basis and are not guaranteed to be accurate or complete.

    Summary of Domain Separation and Data Certification

    Domain separation is a capability within Data Certification that allows for the logical grouping of data, processes, and administrative tasks into domains. This feature enables organizations to control user access and visibility of specific data, which is essential for service providers managing multiple tenants.

    Show full answer Show less

    Key Features

    • Basic Domain Separation: Data Certification supports basic domain separation, ensuring that Certification Instances (CIs) are correctly separated for users who need to certify them.
    • Instance Owner Responsibilities: Instance owners are responsible for assigning Certification Tasks and Instances to the appropriate domains, which governs data visibility.
    • No Extra Setup Required: After enabling the Domain Separation plugin, no additional setup is necessary for Data Certification domain separation.
    • Configuration Flexibility: Owners can choose to set domains on certification tables, although it is not mandatory. Domain permissions determine data visibility in certification tasks.

    Key Outcomes

    By implementing domain separation in Data Certification, instance owners can efficiently manage access to sensitive data across multiple clients. This ensures that each tenant only sees the data relevant to them, enhancing data security and compliance within a multi-tenant environment. Properly configured domain separation allows for seamless certification processing, thereby improving operational efficiency for service providers.

    Domain separation is supported in Data Certification processing. Domain separation enables you to separate data, processes, and administrative tasks into logical groupings called domains. You can control several aspects of this separation, including which users can see and access data.

    Support level: Basic

    • Business logic: Ensure data goes into the proper domain for the application’s service provider use cases.
    • In the application, the user interface, cache keys, reporting, rollups, aggregations, and so on, all consider domain at production run time.
    • The owner of the instance needs to be able to set up the application to function normally across multiple tenants.
    Use case: When a service provider (SP) uses chat to respond to a tenant-customer’s message, the client must be able to see my response.

    How domain separation works in Data Certification

    • Data Certification has only basic domain separation. As long as the Certification Instances (CIs) or records that must be certified are correctly domain-separated and the users who must certify the CIs or records are in a domain that can view the data, Data Certification works as expected.
    • Recommendation: The instance owner must be responsible for assigning Certification Tasks and Certification Instances to the correct domain. Changing the domain for these records does not change functionality, but limits the view of the records.

    How to set up domain separation for Data Certification

    After enabling the Domain Separation plugin, there are no additional steps required to set up domain separation for Data Certification.

    • instance owners determine which CIs or records that need to be certified can be domain-separated.
    • Customers can configure a domain-separated environment by assigning tasks to a domain, but if the data is already domain-separated, then only users with the right domain permissions can view the data in a certification task.

    How tenant domains manage their own application data

    It's not necessary to set the domain on the certification tables but it can be done if the instance owner should want that. As long as the CI’s or records that must be certified are domain-separated, users with the correct domain permissions can view them.

    Domain-separated tables

    • cert_instance – Changing the domain on this table does not change any functionality, nor does it change the domains of the tasks created from the table.
    • cert_task – Changing the domain on this table changes the domain viewing permissions of the task.
    • cert_element – It is not recommended to change the domain on these records. As long as the CIs or records to be certified are already domain-separated, cert_element records will reflect that.
    • cert_filter – Changing the domain on this table changes the domain viewing and filtering of CIs or records.

    Use cases

    Instance owners who have multiple clients that certify the infrastructure they own can assign domains to those CIs and the Certification Tasks to restrict the view from one client to another.