2 posts tagged with "Security"

Managing a team of developers? Need to control who can do what in your faynoSync instance? Starting from version 1.4.0, faynoSync introduces a powerful Team Based Authorization Matrix that gives you complete control over your team's access and permissions.

What is Team-Based Authorization? 🤔​

Think of it as your team's digital headquarters! The Team Based Authorization Matrix is a sophisticated system that lets you:

• 👨‍💼 Create and manage team users
• 🔐 Assign specific permissions
• 🏢 Keep data isolated between different teams
• 📊 Track who can do what

Meet the Players 🎭​

The Administrator 👑​

• You're the boss! Each admin is unique
• You own your team of users
• You can create, update, and delete your team members
• You have full control over passwords and permissions
• You can only access your own team's resources

The Team User 👤​

• A unique member of your team
• Belongs only to you (their admin)
• Can't manage other users
• Can only work with resources you've allowed
• Everything they create belongs to you

What Can Your Team Do? 🛠️​

Each team member can have different permissions for different types of resources:

Resource Types:​

• 📱 Applications
• 📊 Channels
• 💻 Platforms
• 🏗️ Architectures

Available Permissions:​

• ➕ Create
• ✏️ Edit
• 🗑️ Delete
• ⬆️ Upload (for apps)
• ⬇️ Download (for apps)

Smart Resource Management 🧠​

• 🔒 Team users can only see and use resources they've been given access to
• 🏢 Each admin's resources are completely separate
• 👀 You (as admin) can see everything your team creates
• 📝 Different teams can have resources with the same names

How to Manage Your Team? 🎯​

Option 1: Using the API​

Creating a Team User​

curl -X POST 'http://localhost:9000/user/create' \
  -H 'Authorization: Bearer <jwt_token>' \
  -H 'Content-Type: application/json' \
  -d '{
    "username": "teamuser1",
    "password": "password123",
    "permissions": {
      "apps": {
        "create": true,
        "delete": false,
        "edit": true,
        "download": true,
        "upload": false
      }
      // ... other permissions
    }
  }'

Updating Permissions​

curl -X POST 'http://localhost:9000/user/update' \
  -H 'Authorization: Bearer <jwt_token>' \
  -H 'Content-Type: application/json' \
  -d '{
    "username": "teamuser1",
    "password": "newpassword123",
    "permissions": {
      // ... updated permissions
    }
  }'

Option 2: Using the Web Dashboard 🖥️​

Prefer a more visual approach? The faynoSync dashboard makes team management a breeze!

For Administrators:​

1. Click the Settings button in the dashboard
2. A modal window will open where you can:
   • 👥 Create new team users
   • 🔑 Set passwords (or auto-generate them)
   • ✅ Assign permissions with simple checkboxes
   • ✏️ Update usernames and passwords
   • 🗑️ Remove team users

For Team Users:​

1. Go to your Profile section
2. View your current permissions at a glance:
   • 📱 Which applications you can access
   • 📊 What actions you can perform
   • 🔒 What resources are available to you

This visual interface makes it much easier to:

• 🎯 Understand your permissions
• 🔄 Manage team access
• 📊 Track resource availability
• ⚡ Make quick changes

What's Next? 🚀​

In our next posts, we'll explore:

• Local development and deployment to server
• How to properly use Fetch latest version of app request

Stay tuned for more faynoSync tips and tricks! 💚

How to try faynoSync?​

1. Follow the Getting Started guide:
   👉 https://ku9nov.github.io/faynoSync-site/docs/category/getting-started

2. Create your app using the REST API or web dashboard:
   📦 API Docs: https://ku9nov.github.io/faynoSync-site/docs/api
   🖥️ Dashboard UI: https://github.com/ku9nov/faynoSync-dashboard

3. Upload at least two versions of your application.

4. Check for updates with this simple request:
   📡 /info/latest

If you find this project helpful, please consider subscribing, leaving a comment, or giving it a star, create Issue or feature request on GitHub.
Your support keeps the project alive and growing 💚

When developing software, sometimes you need to keep things private. Whether it's internal tools, beta versions, or enterprise applications — not everything should be publicly accessible. That's why faynoSync comes with built-in support for private applications.

What are Private Apps? 🤔​

Private apps in faynoSync are applications that are stored in a separate, private S3 bucket. This gives you an extra layer of security and control over who can access your software.

Once an app is marked as private, it stays private forever — this is a one-way decision to ensure consistency and security.

How to Create a Private App? 🛠️​

There are two ways to create a private app:

1. Using the Web Dashboard 🖥️​

Simply check the "Private" option when creating your app through the dashboard interface. It's that simple!

2. Using the API 📡​

When making a POST request to /app/create, include the private parameter:

curl --location 'http://localhost:9000/app/create' \
--header 'Authorization: Bearer <jwt_token>' \
--form 'data="{\"app\":\"appName\", \"private\": true}"'

How Private Apps Work? 🔐​

1. Storage: Private apps are stored in a separate S3 bucket (defined by S3_BUCKET_NAME in your environment)
2. Access Control: You can control who can download your private apps through the ENABLE_PRIVATE_APP_DOWNLOADING setting:
   • If true: Anyone can download the app using the public API endpoints
   • If false: Only authenticated users can download the app

Security Features 🛡️​

Think of private apps in faynoSync as your software's VIP section! Here's what makes them special:

• 🔒 Separate Storage: Your private apps live in their own secure S3 bucket, like having a private vault for your most valuable assets
• 🔐 One-Way Privacy: Once you mark an app as private, it stays private forever. This might sound strict, but it's actually a good thing — it ensures your security settings can't be accidentally changed
• 👥 Smart Access Control: You're in charge! You can decide whether your private apps need authentication to download, giving you perfect control over who gets access
• 🚫 Download Protection: Want to make sure only your team can download the app? Just set ENABLE_PRIVATE_APP_DOWNLOADING=false, and only authenticated users will be able to access it

Best Practices 💡​

1. Use private apps for:

   • Internal tools and utilities
   • Beta versions of your software
   • Enterprise-specific applications
   • Software requiring license validation

2. Set ENABLE_PRIVATE_APP_DOWNLOADING=false when you need strict access control

3. Always use authentication tokens when accessing private apps in restricted mode

What's Next? 🚀​

In our next posts, we'll explore:

• Local development and deployment to server
• Managing user access and permissions
• How to properly use Fetch latest version of app request

Stay tuned for more faynoSync tips and tricks! 💚

How to try faynoSync?​

1. Follow the Getting Started guide:
   👉 https://ku9nov.github.io/faynoSync-site/docs/category/getting-started

2. Create your app using the REST API or web dashboard:
   📦 API Docs: https://ku9nov.github.io/faynoSync-site/docs/api
   🖥️ Dashboard UI: https://github.com/ku9nov/faynoSync-dashboard

3. Upload at least two versions of your application.

4. Check for updates with this simple request:
   📡 /info/latest

If you find this project helpful, please consider subscribing, leaving a comment, or giving it a star, create Issue or feature request on GitHub.
Your support keeps the project alive and growing 💚