-
-
Securely store confidential information
-
Client-side decryption and encryption
-
Allow/deny access list by users and groups
-
Centralized secrets management
Inspiration
We've all heard stories about passwords being passed around in plain text, through emails, chats, or... sticky notes. It's super convenient, but pretty sure your InfoSec team won't be happy with it. And for most, Confluence is the go-to information repository, yet things may still be saved in plain text... so, WHAT IF we can make it both secure and convenient?
What it does
Let Confluence users to securely store secrets (confidential information, passwords, bank accounts, credit card numbers, classified reports, API tokens, etc.) using a macro in Confluence to encrypt and decrypt, store, manage and audit access to all of that. Centralized secret management so you can see and search for all secrets in a space at one go.
How we built it
We've got some lessons learned from our existing Server app, so it's time to take it to Cloud. With some support from potential users and some Atlassian Connect + Atlaskit + serverless + encryption (PGP, AES), we've got it working.
Challenges we ran into
Designing the data architecture was quite a challenge, considering that we try not to store any customer data on our servers and Confluence Cloud's storage options (content properties, app properties) are not exactly protected to just a single app.
Accomplishments that we're proud of
Dealing with encryption methods, data privacy... and of course, making it work!
What we learned
Teamwork makes the dream work :)
What's next for Security & Encryption for Confluence Cloud
It will be reaching the Atlassian Marketplace soon. We believe we have a great foundation for more powerful features to come.
Built With
- atlaskit
- serverless
Log in or sign up for Devpost to join the conversation.