So I am working on a multi-tenant rails application using rails 3.2.11. We chose the schema approach so we are using a single Postgres database. The correct schema is loaded based on the subdomain. We have added security on the database side by creating a database user for each schema that only has permissions to access data in its own schema.
All my code for checking the subdomain and establishing the proper database connection are inside a before_filter method inside my application controller.
My method simply changes the search_path and then I use the following ActiveRecord::Base.establish_connection to change the database username and password.
I've written several tests and gone through the app to make sure it all works properly and data is saved in the proper schemas (even when using multiple subdomains at the same time), so far so good.
But I have 2 big concerns that I would like to ask about:
I am now using that
ActiveRecord::Base.establish_connectioncall to establish a database connection. So as a result I just deleted all of my code from my database.yml file, and everything still works properly. But... I've never done something like that before, is there a more correct way of doing this? I'm worried this may cause some bugs..Like I said earlier, a
before_filtermethod is called to establish the proper database connection. But like I said I am using abefore_filter, so everytime a user changes the page the connection is re-established. I am concerned that this could cause performance issues, especially as the application grows. And also I'm not sure if I am overlooking anything and this could result in some unforeseen bugs. Has anyone had any experience with this and could offer some advice on an approach how to handle this? Maybe there is someway to add code that says if a proper initial database connection is made, then don't re-establish the connection again unless the subdomain changes?
Thanks.
