Client
Cornerstone Information Systems provides clients with data insights that enable them to manage trips more effectively and lower travel management expenses. Founded in 1992, Cornerstone is a privately held company headquartered in Bloomington, Indiana, with customers in more than 50 countries.
Challenge
Cornerstone has multiple applications (iBank, iQCX, TravelOptix) that are usually purchased and used by the same customers. However, each application was implemented as a standalone product, and uses different technology stacks, as well as their own identity provider (IDP). One of the difficulties is that each product requires separate account for the client to log in, which results in a complex management and a time-consuming onboarding.
As an innovative company, Cornerstone creates new products on a regular basis, and it has become essential to streamline the authentication process by introducing single sign-on solution (SSO).
Solution
As a solution to existing problems, the customer decided to establish a marketplace of their products with the unified identity management for the clients.
DataArt designed and implemented a unified hub based on AWS technology stack and built with Serverless methodology.
The new modern customer-facing portal allows end-users easily start legacy products with SSO and has an admin panel for clients, organizations, users and roles management. Federated IDP is based on Cognito and includes separate user pools per client. All backend services including API, legacy DB synchronization, SAML attributes mapping were implemented using AWS Lambda technology (NodeJS).
Impact
As a result, Cornerstone's clients will benefit from the self-service access management by means of the seamless workflow with SSO.
