Before starting the exploration of the applications components in the next section or even with the step-by-step guide, we thought it will be good to have a summary page explaining the key points of the multitenancy concept used in the Easy Franchise application. In general, multitenancy can be achieved in various ways. We show here only one example of implementing it but be aware that this may of course be different based on your needs.
When having multiple customers that use the same multitenant application, the separation of the data is key. In our scenario, this is done by creating one schema/user for each customer during the onboarding. As soon as a customer is onboarded, the SaaS Provisioning service sends a request to the application broker, which provides the necessary API (callbacks). The broker will, for example, invoke the DB service to create a schema/user for the new customer.
Here is the explanation of the steps in the previous diagram:
- As soon as a customer is onboarded, the SaaS Registry triggers the onboarding process. A request with all information about the new tenant (for example, tenant ID and subdomain) in the body is sent to the application broker.
- The broker extracts the tenant ID and the subdomain out of the request body and triggers actions defined in the callbacks. In our case, the DB service is informed about the new onboarding.
- The Database service creates a new schema/user for the new customer. Standard tables and default configuration are automatically generated.
Having the data separated, let's have a look on how to consume the right data for the right customer.
Here is the explanation of the steps in the previous diagram:
- An end user opens the application in a browser. The browser sends a request to the Approuter.
- The end user is redirected to the SAP Authorization and Trust Management service to log in.
- After a successful login, the SAP Authorization and Trust Management service sends a JWT token to Approuter, which extracts the tenant ID. The tenant ID will be needed later to call the data from the right tenant.
- The Approuter redirects to UI.
- The UI sends a request to backend API via the Approuter.
- The Approuter injects the tenant ID in the request as a header and forwards the request to the Easy Franchise service.
- The Easy Franchise service receives request as an orchestrator and forwards it to the respective microservice including the tenant ID. Here, it's part of the URL, which makes it simpler to log or debug at development time.
- The Database service requests data from the respective tenant.
- The Business Partner service gets information from the destination in the respective subaccount and calls the SAP S/4HANA Cloud system.
Each customer brings their own SAP S/4HANA Cloud system. For each customer, a dedicated customer subaccount in the partners global account is needed. Within that subaccount, a destination needs to be created. This destination contains the SAP S/4HANA Cloud connection details. The Business Partner service makes use of the Destination service to read the destination from the subaccount of the accessing tenant. See Multitenancy in the Destination Service in SAP Help Portal for more details.