Secure Architecture for Generating SDKs

Secure Access Model

Sideko's architecture is designed with security as a top priority. Our platform integrates with your version control system (VCS) without requiring write access to your repositories. Instead, Sideko works by responding to your API calls with git patch files that update your code, allowing you to maintain full control over what changes are applied to your codebase.

Limited-Privilege Service Accounts

For teams looking to automate workflows, Sideko offers service account API keys with precisely defined access levels. These keys can be configured with limited privileges—for example, an SDK update key that only has read access to API projects. This approach follows the principle of least privilege, ensuring that automated processes only have the permissions necessary to perform their specific functions.

Enterprise-Grade Authentication

Sideko supports Single Sign-On (SSO) with comprehensive roles and permissions management, making it easy to integrate with your organization's existing identity providers. Our role-based access control system allows administrators to define granular permissions for team members based on their responsibilities and security requirements.

For detailed information about configuring roles and permissions within your organization, please visit our documentation.

Key Security Features

• No write access required to your VCS

• Git patch-based code modifications

• Limited-privilege service account API keys

• SSO integration with fine-grained roles and permissions

• Secure API architecture

This security-first approach ensures that Sideko can seamlessly integrate with your development workflow while maintaining the highest standards of security and access control.