Inspiration
Working with current access rights is cumbersome sometimes and we thought we could address those parts and also realised we could extend the usage of this services to other business contexts.
What it does
Helps with managing the credentials for users and projects while being backed by a security provider that handles the key encryption. Reduces load on the DevOps department by allowing managing of credentials by project managers, helps project managers having an overview on users that have which credentials and helps users ask for the specific credentials that they need.
How we built it
We used Symfony6.4 with PHP 8.3, SonataAdmin and Google Cloud Key Management for storing the encryption keys along the encrypted credentials.
Challenges we ran into
Currently Google is in the process of creating a new version of their API and using the non-deprecated version results in errors. Deploying to DigitalOcean proved to be a big hassle due to nginx configuration in their environment.
Accomplishments that we're proud of
Lightweight credential management system.
What we learned
How expensive this types of service is and the complexity of the algorithms used for encryption.
What's next for AccessRights Phoenix
Integration of multiple storing services (Azure Key Vault, locally developed service, etc) with extending the capabilities of the users to manage their credentials.
Try it out
- access https://gamefire.ro (we are recycling domains)
- login (with google) to have your user created
- access https://gamefire.ro/admin to add your project
- projects have users associated through ProjectMembers
- each ProjectMember can have multiple ProjectGroups
- each ProjectGroup can have multiple roles
- secrets are added for each ProjectMember for each Project
Log in or sign up for Devpost to join the conversation.