Scenario: EF Core Database-Per-Tenant Isolation¶

Goal¶

Document a sample that uses database-per-tenant isolation with EF Core helpers, per-tenant migrations, and strict SaveChanges enforcement.

Solution: CleanArchitecture.Extensions.Samples.Multitenancy.EfCoreDatabasePerTenant
Path: samples/CleanArchitecture.Extensions.Samples.Multitenancy.EfCoreDatabasePerTenant

Add references to CleanArchitecture.Extensions.Multitenancy, CleanArchitecture.Extensions.Multitenancy.AspNetCore, and CleanArchitecture.Extensions.Multitenancy.EFCore; include them in the sample solution.
Configure EfCoreMultitenancyOptions to DatabasePerTenant, set the tenant ID property name, and mark global entities (Identity tables, etc.) as exclusions.
Implement ITenantConnectionResolver mapping each tenant to a SQLite file under App_Data/{tenantId}.db, allowing premium/regional tenants to pick dedicated databases if needed.
Replace the default DbContext registration with ITenantDbContextFactory<ApplicationDbContext> using the TenantDbContext base class plus TenantSaveChangesInterceptor and the tenant-aware model customizer.
Wire TenantMigrationRunner to run migrations per tenant; include a CLI/hosted command that iterates the tenant catalog and migrates active tenants.
Ensure the web pipeline resolves tenants before EF Core usage and keep TenantEnforcementBehavior enabled so data access cannot occur without tenant context.
Add tests verifying per-tenant database files are created, cross-tenant queries are blocked, and global entities bypass filters when configured.
Document operational guidance: backup/restore per tenant, handling connection string rotation, and cleaning up databases on tenant deletion.

Each tenant writes to its own SQLite file; queries do not cross boundaries.
SaveChanges fails when tenant context is missing or mismatched.
Migration runner reports per-tenant status and supports reruns without data loss.