Row level security in Azure Cosmos DB
I have a cosmos db system with a user table. Now I'm develop a client app that connects to cosmos db directly by cosmos sdk (iOS).
I'd like to add a security layer to make sure a user can't access other user records, some like select * from User c
Is there anyway to do this?
Thanks!
As we know from this link, Cosmos db has two types of keys:
For your need, you need to give up master keys, use resource tokens instead. It could provide access to specific document.
So my idea is:
When you create every row of data, you need to generate resource token which maps this user and store it as an additional column. Then when a user query data, he should provide his resource token (as security layer) to authenticate his permission of filtering data. Not every one uses master keys, it can't control the data isolation. Please refer to the model listed in above link:
- User registration with CodeIgniter
- select multiple cells inner join one table
- Split a string with no delimiters into columns
- "FATAL: remaining connection slots are reserved for non-replication superuser connections" triggers despite closing connections
- "Unsupported OP_QUERY command: insert" in Elixir project when trying to insert into Mongo DB
- Sql Server ldf files growing very fast
- How do I change the timezone to UTC in postgres permanently?
- What performance gains can I expect from database paging?
- Model.create is not a function - strapi
- Unable to copy or move file from databases folder with RNFS in react native
- Android Unit Tests Requiring Context
- Delphi FireDAC with MS Access 2010 database. Why does it convert ACE to Jet?
- database - flattened out vs. normalized
- Extract dirname from full path stored in database
- How to find a string inside a entire database?
- Implementing result paging in hibernate (getting total number of rows)
- Options to enforce a logical constraint in an Oracle database
- How can I tell a database to only return data in discrete portions?
- Where is the boundary for creating a table with types in the database?
- How to sort numbers before letters with linguistic sorting?
- How to implement database engine independent paging?
- How to simulate lost update in MySQL?
- Looking for fast ways to process 2 billion rows of data
- Does a SELECT query always return rows in the same order? Table with clustered index
- Delphi XE5 FireDAC Error: Cannot load vendor library [libmysql.dll or libmysqld.dll]
- Can an executable file display a website by precising the url? Can I run a specific website on my own .exe file?
- No start database manager command was issued. SQLSTATE=57019
- How to visualize database tables in postgresql using pgAdmin?
- Django Filter __In Preserve Order
- PostgreSQL - query all tables' all table columns