PostgreSQL's schemas for multi-tenant applications
Solution 1:
Performance isn't worse, necessarily. As the article explains, there are specific conditions which make the schema approach better or worse depending on your application design and workload. Let me explain the tradeoffs of the "tenant-schema" vs. "shared-table" approaches:
tenant-schema is best when you have a relatively small number of fairly large tenants. An example of this would be an accounting application, with only paid subscription users. Things which make it the better performing option for you include:
- a small number of tenants with a lot of data each
- a relatively simple schema without a lot of tables per tenant
- a need to customize the schemas of some tenants
- ability to make use of database roles per tenant
- requirement to migrate a tenant's data from one server to another
- ability to spin up a dedicated appserver in your cloud for each tenant
Things which make it a poor-performing option include:
- lots of tenants with very little data each
- stateless approach to connections where each request could be any tenant
- client library or orm which caches metadata for all tables (like ActiveRecord)
- a requirement for efficient, high-performance connection pooling and/or caching
- problems with VACUUM and other PostgreSQL administrative operations which scale poorly across 1000's of tables.
Whether tenant-schema is bad for migrations/schema changes really depends on how you're doing them. It's bad for rolling out a universal schema change quickly, but good for deploying schema changes as a gradual rollout across tenants.
shared-table works better for situations when you have a lot of tenants, and a lot of your tenants have very little data. An example of this would be a social medial mobile application which permits free accounts and thus has thousands of abandoned accounts. Other things which make the shared table model beneficial are:
- better for connection pooling, as all connections can use the same pool
- better for PostgreSQL administration, because of fewer tables total
- better for migrations and schema changes, since there's only one "set" of tables
The main drawback of shared-table is the need to append the tenant filter condition onto every single query in the application layer. It's also problematic because:
- queries which join many tables may perform poorly because the tenant filter throws off query planning
- tables which grow to 100millions of rows can cause specific performance and maintenance issues
- no way to do tenant-specific application changes or schema upgrades
- more expensive to migrate tenants between servers
So which model "performs better" really depends on which tradeoffs hurt you the worst.
There's also a hybrid model, "tenant-view", where the actual data is stored in shared tables, but each application connection uses security barrier views to view the data. This has some of the tradeoffs of each model. Primarily, it has the security benefits of the tenant-schema model with some of the performance drawbacks of both models.