Back to top

OpenAppStack

This project seeks to build a suite of provisioning tooling to allow for automated deployment and management of OSS groupware tools, secure communication, circumvention and other offerings from the Internet Freedom community. OpenAppStack will offer self-managed click-and-play auto-updated provisioning of necessary software for Civil Society Organizations (CSOs). A user will be able to log in using multi-factor authentication (MFA) and Single Sign On (SSO) to all of these tools using a (self-)hosted instance of the OpenAppStack, running at a cloud provider like AWS, Eclips.is or Greenhost, an alternative infrastructure provider or even on their own hardware.

OpenAppStack will initially package the most popular services used by CSOs: file sharing and shared calendars, internal communications, video conferencing, and a single sign-on and sign-off solution for this services. For tool developers OpenAppStack will provide CI/CD and (functional) testing hooks as well as APIs to integrate the setup process into the user interface, allowing additional applications to become supported and included.

OpenAppStack is built around a “single-tenant” cloud model, which means that every organization will have its own OpenAppStack system setup, running on one or more cloud instances (using low-level virtualization). The individual applications within the stack are containerized. This model optimizes between the cost efficiency of containerization and the security benefits of full virtualization (between tenants).

Funding to date

2018
$267 991
12 months
Total funding: 
$267 991
Core issues: 
Privacy enhancement Security from danger or threat online
Current project status
  • Just an Idea (Pre-alpha)
  • It Exists! (Alpha/Beta)
  • It's basically done. (Release)
  • People Use It. (Production)
Regions
Global
We wrote about it
Objectives
Technology development
Deploying technology
Software or hardware development
Testing
Beneficiaries
Activists
Advocacy groups/NGOs
Addressed problems
Restrictive Internet filtering by technical methods (IP blocking, DNS filtering, TCP RST, DPI, etc.)
Technical attacks against government critics, journalists, and/or human rights organizations (Cyberattacks)
Repressive surveillance or monitoring of communication
Technology focus
User interface/experience
Application deployment
Platform as a service (PaaS)