Multi-Tenant Boundary Lab: Stop One Customer Seeing Another Customer's Data

Test tenant isolation across queries, URLs, exports, background jobs, and admin tools.

Mixed · 2 hours · August 21, 2026 · June 3, 2026

#multi-tenant#authorization#data-safety

Description

section.description

Multi-tenant bugs are high-impact because one missing condition can expose the wrong data. Participants attack a small tenant-based app through list views, direct URLs, exports, search, background jobs, and admin screens to find where isolation fails.

The lab focuses on practical defenses: tenant-scoped queries, authorization tests, safe admin impersonation, audit logs, and review checklists. The goal is to make data boundaries visible and testable instead of assumed.

support.yml

member support

1 supporter

Community members who want this event to happen.

Support

Propose

proposal.yml

Proposal Details

Status

Proposed

Difficulty

Mixed

Duration

2 hours

Target date

August 21, 2026

Created

June 3, 2026

Ubuntu TechHive

Multi-Tenant Boundary Lab: Stop One Customer Seeing Another Customer's Data

Description

member support

Proposal Details

Back to Event Proposals

Networking for Developers: DNS, TCP, TLS, HTTP, and Proxies