What is the correct indexing pattern for multi-tenancy?

All compound indexes must list communityId as the first field. This ensures query efficiency and reinforces logical isolation at the database level.

Should I get the communityId from the request body?

No, communityId should never be trusted from the request body as it can be forged. It must be extracted from a verified JWT token in the controller.

Why is communityId required in every query?

Including the communityId in every query ensures that users can only access data belonging to their specific community, preventing critical security breaches and cross-tenant data leakage.

How does this skill handle aggregate pipelines?

It requires a $match stage containing the communityId as the very first stage in the pipeline to ensure data is filtered before any processing occurs.

Aegis Tenancy Enforcer

Name: Aegis Tenancy Enforcer
Author: muhammadcaeed

bymuhammadcaeed

0•

セキュリティとテスト

Enforces strict multi-tenant isolation by ensuring community identifiers are included in every MongoDB query and repository method.

The Aegis Tenancy Enforcer is a specialized security skill designed for the Aegis platform to prevent cross-tenant data leaks. It mandates that every MongoDB interaction—including find, update, and delete operations—incorporates a communityId filter derived from secure JWT tokens. By providing standardized patterns for repository methods, aggregate pipelines, and schema indexing, this skill helps developers maintain a secure, isolated environment for multi-community data management and prevents unauthorized cross-community access.

主な機能

01Aggregate pipeline stage enforcement

02Multi-tenant compound index optimization

030 GitHub stars

04Mandatory communityId query filtering

05Anti-pattern detection for repository methods

06Secure JWT-based identity extraction patterns

ユースケース

01Preventing unauthorized cross-community data access

02Standardizing data isolation patterns across a distributed service layer

03Securing MongoDB repository methods in multi-tenant applications

What are Skills?·How to Install

Install with 🐟 Skill.Fish

npx skillfish add muhammadcaeed/aegis tenancy-enforcer.md

For use in Claude.ai and ChatGPT

主な機能

01Aggregate pipeline stage enforcement

02Multi-tenant compound index optimization

030 GitHub stars

04Mandatory communityId query filtering

05Anti-pattern detection for repository methods

06Secure JWT-based identity extraction patterns

ユースケース

01Preventing unauthorized cross-community data access

02Standardizing data isolation patterns across a distributed service layer

03Securing MongoDB repository methods in multi-tenant applications

What are Skills?·How to Install

Install with 🐟 Skill.Fish

npx skillfish add muhammadcaeed/aegis tenancy-enforcer.md

For use in Claude.ai and ChatGPT