The AIM SDK exposes authentication, permissions, data models, UI hooks, webhooks. Whether you're an integrator or publisher, you work with a platform designed to extend ยท without breaking sovereignty.
SAML, OIDC, SCIM. Native integration with your existing IAM (Microsoft Entra, Okta, Keycloak, ADFS). Compatible with Business and Enterprise tiers.
Exposed schemas: assets, classes, modules, tickets, logbook entries, inventory views, drive files. REST API + GraphQL + real-time webhooks.
Components embeddable in the asset record, ticket, logbook. Branding and permissions respected. Sandboxed iframe or native Web Component.
Push events: asset created, ticket closed, logbook signed, IoT alert. Ideal for plugging your internal workflows or sovereign Make/Zapier.
Three modes depending on scope complexity. Time-and-materials available for architecture and steering phases.
Certified plugins available in the Marketplace. Activation in a few clicks, guided configuration, no development required.
Authentication, permissions, data models, UI hooks. Via documented SDK and API. Ideal for plugging a standard ERP, IAM, or classic IoT.
Custom ERP, proprietary IoT, video, advanced BIM, complex SSO, multi-system orchestration. Dedicated SOW, AlpiVault team involved.
Time-and-materials available for architect / security / integration. Subcontracting via AlpiVault Certified partners only (list published on Partner Portal). The Partner remains fully responsible.
Client data security is non-negotiable. Any plugin touching real data goes through an audit before production deployment.
Any access to Client Data beyond simple metadata triggers mandatory audit.
Processing of Personal Data (per nLPD/GDPR) triggers mandatory audit and a DPA.
Modification of IAM/SSO flows or elevated permissions: mandatory audit before deployment.
Any Business or Enterprise qualification triggers mandatory audit (Starter exempt outside cases a/b/c).
Security checklist, dependency review, automated vulnerability tests, application audit. Required for most Business plugins.
Targeted pentest, infrastructure review, deep intrusion tests. Required for Enterprise and significant-risk plugins.
The partner fixes vulnerabilities within reasonable timeframes proportional to criticality (GTC ยง4.4). Re-test included in initial work.
Periodic re-test based on the chosen certification level. Terms set in SOW. Non-compliance โ suspension or removal (GTC ยง4.5).
First call to qualify your plugin: scope, target tier, data concerned.
Onboarding on the Partner Portal, access to technical docs and sandbox environments.
Build the plugin with AlpiVault technical support available. T&M possible for sensitive phases.
Tier-appropriate security audit, SOW signature (commission, events, window, SoR).
Marketplace highlight, optional certification (SILVER / GOLD / PLATINUM), continuous support.
30 minutes to discuss your plugin, target tier, SOW and certification steps.
Book my slot โ