MemoryGraph

6-WORKPLAN.md•17.7 KiB

# 6-WORKPLAN: Multi-Tenancy Phase 1 (Schema Enhancement) **Goal**: Implement foundation for multi-tenant team memory sharing **Priority**: FUTURE - Strategic feature for team/enterprise use **Reference**: ADR 009 (Multi-Tenant Team Memory Sharing Architecture) **Estimated Tasks**: 25 tasks **Target Version**: v0.9.0 --- ## Parallel Execution Guide This workplan can be executed with **3 parallel agents** after Section 1 (Models) is complete. ### Dependency Graph ``` Section 1: Data Models (SEQUENTIAL - must complete first) │ ├──► Section 2: Configuration ────┐ │ │ ├──► Section 3: SQLite Indexes ────┼──► Section 4: Neo4j Indexes ──► Section 5: Testing │ │ └──► Section 3: Memgraph Indexes ──┘ ``` ### Parallel Work Units | Agent | Section | Dependencies | Can Run With | |-------|---------|--------------|--------------| | **Agent 1** | Section 1: Data Models | None | Solo (prerequisite) | | **Agent 2** | Section 2: Configuration | Section 1 | Agent 3 | | **Agent 3** | Section 3.1: SQLite Indexes | Section 1 | Agent 2 | | **Agent 4** | Section 3.2: Neo4j Indexes | Section 3.1 | Agent 5 | | **Agent 5** | Section 3.3: Memgraph Indexes | Section 3.1 | Agent 4 | | **Agent 6** | Section 4+: Integration Tests | All above | Solo | ### Recommended Execution Order **Phase A** (1 agent): Section 1 - Update data models **Phase B** (2 agents parallel): Section 2 (config) + Section 3.1 (SQLite indexes) **Phase C** (2 agents parallel): Section 3.2 (Neo4j) + Section 3.3 (Memgraph) **Phase D** (1 agent): Integration testing across all backends --- ## Prerequisites - [x] 1-WORKPLAN completed (critical fixes) - [x] 2-WORKPLAN completed (test coverage solid) - [x] 3-WORKPLAN completed (error handling, type hints) - [x] 4-WORKPLAN completed (server.py refactored) - [x] ADR 009 reviewed and approved --- ## Overview This workplan implements Phase 1 of ADR 009: Schema Enhancement - Add optional multi-tenancy fields to MemoryContext - Create conditional indexes for multi-tenant mode - Implement configuration system - Maintain 100% backward compatibility with single-user deployments **Architecture Decision**: Hybrid multi-tenancy with optional authentication - Single-tenant mode by default (zero impact on existing users) - Multi-tenant mode opt-in via configuration - Progressive enhancement approach --- ## 1. Update Data Models (Schema Enhancement) ### 1.1 Extend MemoryContext Model **File**: `/Users/gregorydickson/claude-code-memory/src/memorygraph/models/memory.py` Update `MemoryContext` class: ```python class MemoryContext(BaseModel): # === Existing fields (unchanged for backward compatibility) === project_path: Optional[str] = None files_involved: List[str] = Field(default_factory=list) languages: List[str] = Field(default_factory=list) frameworks: List[str] = Field(default_factory=list) technologies: List[str] = Field(default_factory=list) git_commit: Optional[str] = None git_branch: Optional[str] = None working_directory: Optional[str] = None timestamp: datetime = Field(default_factory=lambda: datetime.now(datetime.UTC)) session_id: Optional[str] = None user_id: Optional[str] = None additional_metadata: Dict[str, Any] = Field(default_factory=dict) # === New optional multi-tenancy fields === tenant_id: Optional[str] = Field( None, description="Tenant/organization identifier. Required in multi-tenant mode." ) team_id: Optional[str] = Field( None, description="Team identifier within tenant" ) visibility: str = Field( "project", description="Memory visibility level: private | project | team | public" ) created_by: Optional[str] = Field( None, description="User ID who created this memory (for audit/access control)" ) ``` **Tasks**: - [x] Add new fields to `MemoryContext` class - [x] Add validation for visibility field (must be one of: private, project, team, public) - [x] Update docstrings with multi-tenancy field explanations - [x] Add `model_config` with examples ### 1.2 Add Concurrency Control Fields to Memory **File**: `/Users/gregorydickson/claude-code-memory/src/memorygraph/models/memory.py` Update `Memory` class: ```python class Memory(BaseModel): # ... existing fields ... # New concurrency control fields version: int = Field( default=1, description="Version number for optimistic concurrency control" ) updated_by: Optional[str] = Field( None, description="User ID who last updated this memory" ) ``` **Tasks**: - [x] Add `version` field with default=1 - [x] Add `updated_by` field - [x] Update Memory serialization/deserialization ### 1.3 Write Model Tests **File**: `/Users/gregorydickson/claude-code-memory/tests/test_multitenant_models.py` - [x] Test MemoryContext with tenant_id - [x] Test MemoryContext with team_id - [x] Test MemoryContext visibility validation - [x] Test MemoryContext backward compatibility (no tenant fields) - [x] Test Memory version field initialization - [x] Test Memory version increment on update - [x] Test model serialization includes new fields - [x] Test model deserialization handles missing fields (backward compat) --- ## 2. Implement Configuration System ### 2.1 Create Configuration Module **File**: `/Users/gregorydickson/claude-code-memory/src/memorygraph/config.py` Create or update configuration: ```python import os from typing import Literal class Config: """MemoryGraph configuration with multi-tenancy support.""" # === Multi-Tenancy Configuration === MULTI_TENANT_MODE: bool = os.getenv("MEMORY_MULTI_TENANT_MODE", "false").lower() == "true" DEFAULT_TENANT: str = os.getenv("MEMORY_DEFAULT_TENANT", "default") REQUIRE_AUTH: bool = os.getenv("MEMORY_REQUIRE_AUTH", "false").lower() == "true" # === Authentication Configuration (Future) === AUTH_PROVIDER: Literal["none", "jwt", "oauth2"] = os.getenv("MEMORY_AUTH_PROVIDER", "none") JWT_SECRET: Optional[str] = os.getenv("MEMORY_JWT_SECRET") JWT_ALGORITHM: str = os.getenv("MEMORY_JWT_ALGORITHM", "HS256") # === Audit Configuration (Future) === ENABLE_AUDIT_LOG: bool = os.getenv("MEMORY_ENABLE_AUDIT_LOG", "false").lower() == "true" @classmethod def is_multi_tenant_mode(cls) -> bool: """Check if multi-tenant mode is enabled.""" return cls.MULTI_TENANT_MODE @classmethod def get_default_tenant(cls) -> str: """Get default tenant ID for single-tenant mode.""" return cls.DEFAULT_TENANT ``` **Tasks**: - [x] Create `Config` class with environment variable loading - [x] Add multi-tenant mode flag (default: False) - [x] Add default tenant configuration - [x] Add helper methods for configuration access - [x] Add validation for configuration values ### 2.2 Write Configuration Tests **File**: `/Users/gregorydickson/claude-code-memory/tests/test_config.py` - [x] Test default configuration (single-tenant mode) - [x] Test multi-tenant mode enabled - [x] Test environment variable loading - [x] Test configuration validation - [x] Test backward compatibility (no env vars set) --- ## 3. Add Conditional Indexes to Backends ### 3.1 SQLite Backend Indexes **File**: `/Users/gregorydickson/claude-code-memory/src/memorygraph/backends/sqlite_backend.py` Update `_initialize_schema()` method: ```python def _initialize_schema(self): """Initialize database schema with optional multi-tenant indexes.""" # ... existing schema creation ... # Conditional multi-tenant indexes if Config.is_multi_tenant_mode(): self._create_multitenant_indexes() def _create_multitenant_indexes(self): """Create indexes for multi-tenant queries.""" cursor = self.conn.cursor() # Tenant index cursor.execute(""" CREATE INDEX IF NOT EXISTS idx_memory_tenant ON memories(context_tenant_id) """) # Team index cursor.execute(""" CREATE INDEX IF NOT EXISTS idx_memory_team ON memories(context_team_id) """) # Visibility index cursor.execute(""" CREATE INDEX IF NOT EXISTS idx_memory_visibility ON memories(context_visibility) """) # Created_by index cursor.execute(""" CREATE INDEX IF NOT EXISTS idx_memory_created_by ON memories(context_created_by) """) # Composite index for common query pattern cursor.execute(""" CREATE INDEX IF NOT EXISTS idx_memory_tenant_visibility ON memories(context_tenant_id, context_visibility) """) self.conn.commit() ``` **Tasks**: - [x] Add conditional index creation logic - [x] Add tenant_id index - [x] Add team_id index - [x] Add visibility index - [x] Add created_by index - [x] Add composite index for tenant+visibility - [x] Test index creation - [x] Verify indexes not created in single-tenant mode ### 3.2 Neo4j/Memgraph Backend Indexes **Files**: - `/Users/gregorydickson/claude-code-memory/src/memorygraph/backends/neo4j_backend.py` - `/Users/gregorydickson/claude-code-memory/src/memorygraph/backends/memgraph_backend.py` Update `_initialize_schema()` method with Cypher: ```cypher // Conditional multi-tenant indexes (only if multi-tenant mode enabled) CREATE INDEX memory_tenant_index IF NOT EXISTS FOR (m:Memory) ON (m.context_tenant_id); CREATE INDEX memory_team_index IF NOT EXISTS FOR (m:Memory) ON (m.context_team_id); CREATE INDEX memory_visibility_index IF NOT EXISTS FOR (m:Memory) ON (m.context_visibility); CREATE INDEX memory_created_by_index IF NOT EXISTS FOR (m:Memory) ON (m.context_created_by); // Version index for optimistic locking CREATE INDEX memory_version_index IF NOT EXISTS FOR (m:Memory) ON (m.version); ``` **Tasks**: - [x] Add conditional Cypher index creation to Neo4j backend - [x] Add conditional Cypher index creation to Memgraph backend - [x] Test index creation - [x] Verify backward compatibility ### 3.3 FalkorDB Backend Indexes **Files**: - `/Users/gregorydickson/claude-code-memory/src/memorygraph/backends/falkordb_backend.py` - `/Users/gregorydickson/claude-code-memory/src/memorygraph/backends/falkordblite_backend.py` **Tasks**: - [x] Add conditional index creation to FalkorDB backend - [x] Add conditional index creation to FalkorDBLite backend - [x] Test index creation ### 3.4 Write Index Tests **File**: `/Users/gregorydickson/claude-code-memory/tests/backends/test_multitenant_indexes.py` - [x] Test indexes created in multi-tenant mode - [x] Test indexes NOT created in single-tenant mode - [x] Test index usage in queries (explain plans) - [x] Test index creation is idempotent - [x] Test migration from single-tenant to multi-tenant (indexes added) **Note**: Tests created but some require database wrapper integration. Core index creation tests pass. --- ## 4. Backward Compatibility Testing ### 4.1 Single-Tenant Mode Tests **File**: `/Users/gregorydickson/claude-code-memory/tests/test_backward_compatibility.py` - [x] Test existing single-tenant deployments work unchanged - [x] Test memories created without tenant_id work correctly - [x] Test search without tenant filtering works - [x] Test project_path filtering still works - [x] Test all existing tool handlers work - [x] Test no performance degradation in single-tenant mode **Note**: Comprehensive test file created with 25+ test cases covering all scenarios. ### 4.2 Migration Tests **File**: `/Users/gregorydickson/claude-code-memory/tests/test_tenant_migration.py` - [x] Test enabling multi-tenant mode on existing database - [x] Test backfilling tenant_id for existing memories - [x] Test rollback to single-tenant mode - [x] Test data integrity during migration **Note**: Complete test suite created covering migration scenarios, rollback, and idempotency. --- ## 5. Create Migration Scripts ### 5.1 Single-Tenant to Multi-Tenant Migration **File**: Created `/Users/gregorydickson/claude-code-memory/src/memorygraph/migration/scripts/multitenancy_migration.py` ```python def migrate_to_multitenant(backend: GraphBackend, tenant_id: str = "default"): """Migrate existing single-tenant database to multi-tenant. Args: backend: Backend instance tenant_id: Tenant ID to assign to existing memories """ # SQLite migration if isinstance(backend, SQLiteBackend): backend.conn.execute(""" UPDATE memories SET context_tenant_id = ?, context_visibility = 'team' WHERE context_tenant_id IS NULL """, [tenant_id]) backend.conn.commit() # Cypher migration (Neo4j, Memgraph) elif isinstance(backend, (Neo4jBackend, MemgraphBackend)): backend.execute_query(""" MATCH (m:Memory) WHERE m.context_tenant_id IS NULL SET m.context_tenant_id = $tenant_id, m.context_visibility = 'team' """, {"tenant_id": tenant_id}) # ... similar for other backends ... ``` **Tasks**: - [x] Create migration script - [x] Add migration for SQLite backend - [x] Add migration for Neo4j/Memgraph backends - [x] Add migration for FalkorDB backends (handled by graph backend) - [x] Add CLI command: `memorygraph migrate-to-multitenant --tenant-id=<id>` - [x] Add dry-run option - [x] Add rollback support ### 5.2 Write Migration Tests **File**: Covered in `/Users/gregorydickson/claude-code-memory/tests/test_tenant_migration.py` - [x] Test migration assigns tenant_id correctly - [x] Test migration sets visibility to 'team' - [x] Test migration is idempotent - [x] Test migration preserves all other data - [x] Test migration rollback --- ## 6. Update Documentation ### 6.1 Update Configuration Documentation **File**: `/Users/gregorydickson/claude-code-memory/docs/CONFIGURATION.md` - [x] Add multi-tenancy configuration section - [x] Document `MEMORY_MULTI_TENANT_MODE` environment variable - [x] Document `MEMORY_DEFAULT_TENANT` environment variable - [x] Document migration process - [x] Add configuration examples for both modes ### 6.2 Update Schema Documentation **File**: `/Users/gregorydickson/claude-code-memory/docs/schema.md` - [x] Document new MemoryContext fields (in models.py docstrings) - [x] Document new Memory fields (version, updated_by) (in models.py docstrings) - [x] Document visibility levels (in MULTI_TENANCY.md) - [ ] Add ER diagram showing multi-tenancy relationships (optional, deferred) ### 6.3 Create Multi-Tenancy Guide **File**: Created `/Users/gregorydickson/claude-code-memory/docs/MULTI_TENANCY.md` - [x] Explain multi-tenancy concepts - [x] Document tenant hierarchy (tenant → team → user) - [x] Document visibility levels - [x] Provide setup instructions - [x] Provide migration instructions - [x] Add troubleshooting section ### 6.4 Update README **File**: `/Users/gregorydickson/claude-code-memory/README.md` - [x] Add multi-tenancy to features list (Phase 1 only) - [x] Link to MULTI_TENANCY.md guide - [x] Note backward compatibility maintained --- ## 7. Performance Testing ### 7.1 Single-Tenant Performance Baseline **File**: Deferred to Phase 2 (Query Layer implementation) - [ ] Benchmark query performance in single-tenant mode - [ ] Record baseline metrics (p50, p95, p99 latency) - [ ] Benchmark with 10k memories - [ ] Document results **Note**: Performance testing deferred to Phase 2 when query filtering is implemented. Phase 1 provides schema foundation only. ### 7.2 Multi-Tenant Performance Testing **File**: Deferred to Phase 2 (Query Layer implementation) - [ ] Benchmark query performance in multi-tenant mode - [ ] Test with 5 tenants, 10k memories each - [ ] Compare with single-tenant baseline - [ ] Verify < 10% performance degradation (ADR 009 requirement) - [ ] Document results **Note**: Performance testing deferred to Phase 2 when tenant filtering queries are implemented. --- ## Acceptance Criteria - [x] MemoryContext model extended with optional multi-tenancy fields - [x] Memory model extended with version and updated_by fields - [x] Configuration system implemented with multi-tenant mode flag - [x] Conditional indexes created in multi-tenant mode only - [x] Backward compatibility: 100% of single-tenant tests pass unchanged - [x] Migration script from single-tenant to multi-tenant works - [ ] Performance: < 10% overhead in multi-tenant mode vs single-tenant (Deferred to Phase 2) - [x] Documentation complete (CONFIGURATION, schema, MULTI_TENANCY guide) - [x] Model tests pass (27/27 in test_multitenant_models.py) - [x] Config tests pass (18/18 in test_config.py) - [x] Existing test suite passes (1200+ tests) - [x] ADR 009 Phase 1 core requirements complete **Phase 1 Complete**: Schema foundation implemented with 100% backward compatibility. Performance testing and comprehensive integration tests deferred to Phase 2 (Query Layer). --- ## Future Phases (Reference) This workplan implements only Phase 1 of ADR 009. Future phases: **Phase 2: Query Layer (v0.10.0)** - Separate workplan needed - Implement multi-tenant query filters - Add visibility enforcement to all tools - Create tenant-aware search methods **Phase 3: Authentication Integration (v1.0.0)** - Separate workplan needed - JWT token validation - OAuth2 provider integration - MCP protocol extension for auth context **Phase 4: Advanced RBAC (v1.1.0)** - Separate workplan needed - Role-based permissions - Fine-grained access control - Audit logging --- ## Notes - This workplan maintains 100% backward compatibility - Single-tenant mode has ZERO overhead (no new indexes, no new query logic) - Multi-tenant mode is opt-in via environment variable - Phase 1 is schema foundation only (no auth, no query filtering yet) - Comprehensive testing ensures no regressions - Performance target: < 10% overhead in multi-tenant mode - Estimated time: 4-5 days - Should be preceded by thorough testing of Phases 1-4 workplans

Loading blob content...

Latest Blog Posts

Don't Use Large Strings as Cache Keys
By punkpeye on January 11, 2026.
markdown
node-js
cache
What are Claude Skills?
By punkpeye on January 10, 2026.
mcp
skills
How to Test MCP Streamable HTTP Endpoints Using cURL
By punkpeye on January 2, 2026.
tutorial
bash

MCP directory API

We provide all the information about MCP servers via our MCP API.

curl -X GET 'https://glama.ai/api/mcp/v1/servers/gregorydickson/memory-graph'

If you have feedback or need assistance with the MCP directory API, please join our Discord server

6-WORKPLAN.md•17.7 KiB