Internal software distribution platform for field service personnel of an IoT manufacturer. Versioned release management, controlled software downloads, version compatibility tracking, and audit trail.
Client: Confidential | IoT Manufacturing | Northern Europe
A second confidential engagement with the same Northern European IoT client — same Swiftmade introduction, different problem. This time the brief was about firmware and software distribution: how do you reliably ship signed binaries to thousands of devices in the field, with audit logs that satisfy both internal QA and external regulators?
Before our involvement, distribution was a manual process running out of someone's S3 bucket. There was no concept of release channels, no audit trail beyond CloudTrail, and no way for support staff to see which device was running which firmware.
Under NDA, we can't share more — but the platform now governs every binary that ships to the fleet.
Demo recreation with sample data — client details confidential
Field staff regularly used outdated software versions, causing on-site failures
There was no audit trail of who installed which build on which device, when
Version-to-hardware compatibility was unknown, leading to risky in-field upgrades
Laravel + Filament again, because the same team that runs support runs distribution, and they wanted a single admin surface. We added a strict audit-logging layer on top of every state change — uploads, signings, channel promotions, rollbacks — with hash-chained log entries that can be exported for regulator review.
S3 stays the source of truth for the binaries themselves. The platform owns the metadata, the signing flow, and the access policy that determines which device can pull which build. Treating S3 as dumb storage and our app as the brain made the audit story dramatically simpler.
MySQL handles the metadata and the audit trail. The audit trail uses an append-only table pattern with periodic immutable snapshots — boring, well-understood, and auditable.
Versioned release management with explicit hardware-compatibility metadata
Role-based downloads with full audit trail of every release issued in the field
Field-personnel portal with assigned releases per technician, region and hardware family
Every download, install, and rollback fully logged
Stable, beta and rollback channels per product
Only the right technicians can pull the right builds
The technical foundation behind IoT Software Distribution
Services we offer that built the foundations of this project
Other projects with similar shape, industry, or tech stack
From versioned releases to audit-grade portals — we build the internal platforms that keep your field operations under control.