| Microservices are used to build the Patchworks platform - small, independent services that communicate with each other, allowing for flexibility, scalability, and easier maintenance. | /files/vkD4dntw9z3ZQp1ZNp9N | ||
| API first is key for powerful integrations. Our next-generation dashboard is driven by powerful APIs which means we can integrate with any other API simply and seamlessly. | /files/OGwHxyTM5fuTFahRl0bY | ||
| Cloud-native development facilitates our microservice architecture, Kubernetes deployments, DevOps infrastructure as code, and much more! | /files/uUHHlnGOF3UgfIoJYC7B | ||
| Headless is exactly what you'd expect for an API-first platform. The Patchworks backend is built with our own API, which is then consumed by the dashboard for general use. | /files/wGX54zaclqJB5TX2meCv |
| Kubernetes pod and node auto-scaling Ensure that integrations run consistently, even in the busiest times. See our auto-scaling page for more information. | /files/cw9VHS7fhGnVGHecyuZ4 | ||
We use AWS RDS for all critical databases. Our databases have full redundancy with one ‘read’ and one ‘write’ copy of each. | /files/NN8fzpVlxyjONjTrpi7x | ||
| Each database copy is hosted in a separate availability zone so, in the unlikely event of a failure in one zone, we can fall back to the other. | /files/hnthe0lv3PfrXtwdcpjt |
| Real-time logs (via web sockets) can be viewed while a process flow runs, with visibility of request, response and payload information at every step. | /files/p9iK8DNTQGS7v3N5a8TN | ||
| Logs are retained for one month for retrospective problem-solving. | /files/7XUovV6hfKBP3bIm6g56 | ||
| Webhooks, events, and inbound API requests can all be tracked through the Patchworks Dashboard - you don’t need to be an engineer to figure out when/where execution errors occur. | /files/A3KePs5mjaw35GVDQyTf |
| We manage all API updates for our library of prebuilt connectors. | /files/OGwHxyTM5fuTFahRl0bY | ||
| We take care of all supported authentication mechanisms (OAuth, token, API key, etc.). | /files/g4AzzGC92mlkyWJM8J9L | ||
| We've removed all the complexity when it comes to building and maintaining new integrations. | /files/vq0NTJr9RHjYoq8RJeUh |
| Our multi-tenant architecture means that customers have the benefits of shared software and infrastructure, secure in the knowledge that each customer's data is isolated and invisible to other tenants. | /files/VqmiNSitoTtRXDZaa2Uh | ||
| Multi-tenancy provides a much faster solution, since we only search one set of data rather than everything - all database operations and secret storage is per-tenant. | /files/bGaCmNQnOswOwsVPFg92 | ||
| Multi-tenancy allows flexibility for change - if necessary we can 'lift and shift' a tenant to a new database, or to a faster region, or even to a completely different cloud provider in a different continent! | /files/XmyVLrjtJmJcftbwxerg | ||
| Infrastructure updates are made via IaC (Infrastructure as Code). | /files/ItLq7SfH2jiyuMo0pdXC | ||
| Infrastructure updates are peer-reviewed and authorised before being merged. | /files/ONYHiY9YK7pFm0RvVFXS | ||
| All production code flows through development and staging review cycles before release to production. | /files/ONYHiY9YK7pFm0RvVFXS | ||
| Every release must pass both automated and hands-on testing by our QA team. | /files/RwienszIv3keySysp5V0 |
| Product penetration testing is performed annually by an external, CREST-accredited organisation. | /files/UALJ8AxpMBztwjXrwIM2 | ||
| Our Kubernetes nodes live in private subnets. | /files/xJEe8Rqn4IVoj94SHSmd | ||
| All key ingresses are IP whitelisted. | /files/fY66bPFFN6b9CfQXQeuf | ||
| We adopt a 'least privilege' model for our development team, and also for users of our AWS and Kubernetes infrastructure. | /files/oqj3pWtdXxWWQvHXmVsA | ||
| All key business systems must be accessed via a VPN | /files/821sT99Pi6yrDqSI4gMx | ||
| All staff use LastPass to generate and store strong passwords - 2FA access to LastPass is mandated. | /files/pqI9Joxysjhf6AD4p8An |
| Access is managed via role-based permissions, so only authorised users can access integrations and data for their company profile(s). | /files/rM82eVN54Iw8nW05sMoS | ||
| Audit logs provide a complete history of all user account activity, including Patchworks users. | /files/wSqf38pYEQ0Uv1U9kVDw | ||
| Users always control their own passwords - password resets are never performed on behalf of other users. | /files/Dn8nrvnewSHbhpZEIZ7Y | ||
| Single sign-on via Google is supported. | /files/fJaqQFZbIPtgJREoHOhd |