It's a nightmare for many companies and enterprise technical departments to run the required apps separately, keep up with the maintenance, auditing logs and manage their updates. Especially the ones with low IT resources or complex structure.
It's not resources-effective approach neither secure. Despite it requires a dedicated team of DevOps to keep up, It is also a challenge for company identity management, access management and compliance.
Here it comes Sandstorm, An open-source solution that is designed specifically to resolve these issue and boost enterprise, developers, DevOps and individuals productivity. In this article we will guide you through this amazing application, explaining how it works, listing its features and the best use-cases for it.
Sandstorm is an open-source solution for running self-hosted web applications within the same platform. It only requires one login from the user to access all applications and features advanced identity and permission management system for users.
Installing application on Sandstorm requires only few clicks, which minimize the time-waste of setup, configuration and managing the apps. It also features automatic updates for these applications without the need to bother the user or the DevOps with backups.
Sandstorm is a feature-rich system that can runs seamlessly on all enterprise and community-powered Linux distributions. Overall, it has dozens of applications that promote the productivity for the enterprise, communities and individuals. It's also the perfect fit for small and medium-size companies.
Soon as Sandstorm is installed, the user can start installing about 70 self-hosted web applications in several categories: communication and messaging, project management, task management, document editing, file sharing and more.
Sandstorm is the ultimate collaborative, secure and developer-friendly platform for all sort of enterprises, especially the ones that prefers open-source solutions.
Medevel.com, We like Sandstorm, not just because its productivity or security features or the wide range of apps we can install and use, but also because it save us a lot of time with minimal server work.
Unfortunately, there is no enough medical or healthcare applications on its store, otherwise we would recommend it for healthcare facilities and our enterprise healthcare clients.
The core problems Sandstorm solves are:
- Application security: It sandboxes the applications which ensures protection from application bugs.
- Unified identity and access management system (IAM): with one account, the user can access all the applications.
- Usability features across all applications (e.g. search)
- Dozens of enterprise ready applications
- Multiple deployment options: Cloud and on-premise installation
- Enterprise-ready features: LDAP, SAML and Active Directory integration, Log auditing, automatic encryption and enterprise structure integration
- The organization is free to choose where to store the data
- Development boilerplate: Sandstorm approaches the problem with unique methods as it offers core component for authentication, backups, encryption and common tools. So, developers can focus on development not server works.
Overall, It's easy to install, manage, maintain and update.
Sandstorm is created for enterprises, small and medium size companies, communities and freelance individuals who have productive workflow.
It's also focuses on developers who want a solid platform to build or integrate their applications, as the developers can sandbox their apps and take an advantage of the identity and access management system as well as global application usability features.
- Creative agencies
- Software development agencies
- Developer communities
- Research facilities
- Film industry
Bonus: Creative community can use it to communicate, organize projects, file sharing and document editing.
How does Sandstorm work?
Grains a fine-grained object container to run applications, which isolate or sandbox the applications in containers. Furthermore, its user management system and access control functionalities work directly with each container.
This approach is easy for developers because it's less complex and less boilerplate. Sandstorm functionalities as search and data access can work with the data cross all containers without the need for custom hacks.
Sandstorm with its service oriented structure promote scalability and low running cost. Overall, It provides enhanced security measure for all grained applications.
Basically, Sandstorm is a container-based platform to run self-hosted web applications. It handles and manages: login, access, security, search, application management and auditing.
- Rich ecosystem
- Single sing-on
- Unified identity and access control
- Protection against application bugs
- Sandboxing applications
- Access auditing
- Automatic update
- Tabbed UI
- Desktop and browser notification
- Cross application mention
- Search across all application
- Google, Twitter and GitHub sign-up and login
- Easy to install
- Log auditing
- Advanced sandbox management (grain management)
- Compliance tool ready
- Ready to scale
- Rich developer tool set
Why should enterprise consider using Sandstorm?
Sandstorm offers all-in-one platform that install, run, maintain and automatically update dozens of applications. It has a built-in IAM system that plays well with all integrated applications, so the user needs only one account for single sign-on.
It's free open-source system, enterprises can clone it, install it on their private cloud or on-premise.
Here is why:
- All application in one place
- Installing apps with one click
- LDAP, SAML and Active Directory support
- Global access control
- Global auditing logging system
- Automatic encryption
- Multiple deployment option
- Developer tools to build and integrate apps.
- Powerful community support
- Ready to scale
- Fine-grained encryption
Sandstorm Application Store
Here are some of the best application included in Sandstorm store:
- Rocket.Chat: Real-time messaging system, an open-source alternative to Slack
- SendChat: A powerful minimal chat app for teams
- Simple Chat: Yet another chat application
- Roundcube: Web-based email client
- Hugo: Static website generator
- ShareLaTeX: Web-based open-source LaTeX editor for teams
- Davros: File sharing and collaboration platform
- DokuWiki: A simple powerful wiki-engine.
- Wekan: Kanban board manager for productive people and remote teams
- Wordpress: blogging platform
- Etherpad: collaborative document editor. Read more.
- Swagger Editor: REST-API test environment for developers
- PIWIK: Web Analytics Platform
- FileDrop: A simple file sharing utilities for designers, developers and teams
- Ghost blog: An open-source blogging platform
- Brainstorm: Advanced note-taking self-hosted solution
- Dillinger: Markdown editor
- Contact Otter: A personal self-hosted CRM solution.
HIPAA and GDPR Compliance with Sandstorm
One of our primary focus on Medevel.com is HIPAA compliance with open-source solutions for our customers. It's difficult to find a proper open-source solution that comply with HIPAA out of the box. With Sandstorm, we found it the best solution for enterprise which require HIPAA complaint platform.
Sandstorm has an advanced access control policy and auditing systems. It enforces the rules uniformly across all applications.
The same goes for GDPR, with Sandstorm unified identity and access management as well as auditing functionalities, enterprises can customize more features to make it GDPR compliant.
To install Sandstorm you will have two options: Install it from HTTPS-verified install or PGP-verified install, You can also find a detailed instruction on how to install it on Amazon Web Services (AWS).
If you want to install it on a private cloud like DigitalOcean, You can install it following these instructions.
Enterprise Sandstorm Setup
To get an enterprise Sandstorm setup that includes a single sign-on with full email/LDAP/SAML support as well as automatic user provisioning, You will have to get Sandstorm work setup for $15/ user a month. It may look expensive, but NGOs non-profit organizations can get special pricing and discounts.
Also, enterprise developers can extend these features on their own without the need to subscribe to such service.
Free custom domain name from Sandcats.io
Sandcats.io is a free dynamic DNS service from Sandstorm's core team. It offers a dynamic subdomain for any Sandstorm install which will be a useful shortcut for business like:
With valid HTTPs certificate, the use does not have to worry about setting up his certificate.
- Sandstorm Official Website: https://sandstorm.io/
- App Store: https://apps.sandstorm.io/
- GitHub: https://github.com/sandstorm-io/sandstorm
- How it works: https://sandstorm.io/how-it-works
- GDPR Open-source Software
An email client app is responsible for accessing your email messages on the server from your device. Mail clients are available for desktop, or can even come in a self-hosted web-based form, which the user can install and use on their own servers local or remote. We have covered self-hosted...Read more...
Personal finance app helps you to keep track of your expenses, budget, manage income, outcomes, savings, purchases, and payments. Beyond these basic functionalities, personal finance apps help you prepare for 5 critical categories: Credit and debtReal estateTaxesInsuranceEstate planningIf you are looking for self-hosted minimal finance and accounting manager or invoicing...Read more...
Diabetes is a long-lasting (chronic) health condition, that occurs when blood sugar is too high. It is a life-altering disease, as it changes eating habits and exercises routine. Diabetes management apps are many, and they come as web-based services, standalone mobile apps, and desktop apps. However, most of them are...Read more...
Ever felt trapped while managing dozens of contacts, activities, pets activities, reminders, and follow-up social events like birthdays and so on? Well, you can easily manage all of this and more with Monica. Monica is a free, open-source self-hosted personal CRM solution to help you keep tracking all of your...Read more...
Penpot is a free, open-source web-based design and prototyping application for teams. It works with open web standards as it uses SVG (Scalable Vector Graphics) format. Penpot can be installed on a remote server or the local machine with help of Docker and Docker Compose. With Penpot, you can quickly...Read more...