One secure home for a company's internal tools — including billing automation and an access reporter.
What it is
Prism is a single sign-in dashboard where staff reach the internal tools they're allowed to use — and nothing they aren't. It launched with two flagship tools: a Billing Automation suite that runs multi-step invoice and approval workflows, and an Access Reporter that tracks who is (and isn't) using cloud desktop sessions.
Why it exists
Internal tools tend to sprawl across separate logins and dashboards, each with its own access rules. Prism consolidates them behind one identity, enforces role-based visibility, and keeps a unified audit trail — so a billing operator never sees access-monitoring data, and every action is accountable.
Who it's for
Back-office teams — finance, operations, IT admins — who need role-gated access to internal tooling.
What it does
- Billing Automation: multi-tier invoice drafting, review, and approval workflows
- Access Reporter: surfaces active and inactive cloud-desktop users
- Single sign-in with role-based access to each tool
- A separation-of-identity model so user logins never reach customer systems directly
- Audit logging across every tool for compliance and troubleshooting
- Pluggable design — new tools slot in without touching the core shell
How it works
What made it interesting to build
The defining challenge was the Access Reporter: it needs to read resources in a separate, locked-down environment without ever passing a staff member's credentials across that boundary. The fix was a dual-identity model — one path proves who the user is, a completely separate service identity does the actual reading on the server side. The Billing suite brought its own complexity: reconciling invoice lines across multiple documents and collapsing duplicates while keeping every number auditable.