We’re excited to share that our API documentation is now fully available for you. This update brings several key improvements that simplify integration and enhance your experience:
• Complete API Specs: You can now download the OpenAPI spec file to use locally with tools like Postman. This makes testing and integrating with our API more straightforward than ever.
• Interactive Online Docs: Access our API docs online to explore and test various endpoints directly. This interactive approach helps you quickly understand how to leverage our API in your workflows.
• Enhanced Documentation: We’ve updated our documentation to include details on API specs and clear guidance on managing both User and Org API keys. You can view our ShiftControl documentation for managing API keys and using the API docs here.
• Easy Access to Full Specs: The complete API Documentation and Specs are available at this link.
We’ve always believed in the power of building our frontend on the same robust APIs that we expose to our customers. From the very start, we offered both user- and org-level API key management for straightforward integration. Now, we’re excited to announce that all of our APIs are fully compatible with both frontend access tokens and these API keys.
Important Permissions Considerations
• User API Keys inherit the same permissions as the user who created them. This means any actions the user can take, the API key can take as well.
• Org API Keys function as top-level administrative keys for an entire organization, granting full access to all available resources within that org.
Documentation for the /app Endpoint
An often requested feature is comprehensive API documentation. We’re thrilled to unveil our first set of docs at https://api.shiftcontrol.io/api-docs, currently focused on the /app endpoint. We prioritized this endpoint in response to our customers’ top requests, and we’re moving quickly to cover all remaining endpoints.
Multiple Formats Available
These new docs are published in OpenAPI, Redoc, Swagger, and more, giving you flexibility to choose the format that suits your workflow best.
What’s Next
We’re actively expanding the documentation to cover all remaining endpoints, so stay tuned for updates. As always, your feedback is invaluable to us—let us know how these enhancements help you build faster and more securely.
Sometimes you may want to manage an app directly in JumpCloud, which is perfectly fine. While updating and creating app in JumpCloud was always supported, we now also detect when you’ve deleted an existing app in JumpCloud and remove the corresponding app in ShiftControl.
Note: It may take up to 5 minutes for the app to be deleted in ShiftControl.
We usually assume there’s a JumpCloud application that requires deleting when we delete an app in ShiftControl, but sometimes an admin may have deleted the app in JumpCloud and it hasn’t reflected yet in ShiftControl. Now, manually deleting the app will be successful even if there’s no underlying JumpCloud app. You can also just choose to wait for the app to be deleted automatically within 5 minutes.
While most SaaS services default to SAML, OIDC is becoming increasingly popular as an option in more services. Software development companies, in particular, often rely on OIDC for testing apps or securing internal tools behind an OIDC login mechanism. To better support these scenarios, we’ve added the capability to manage OIDC apps within our platform.
This new feature allows full configuration of OIDC app parameters, including the attributes and claims you want to send to those apps.
This enhancement simplifies app testing and internal tool access, making it easier to tie everything to your employee identity for a unified and efficient workflow!
Start exploring OIDC app support today!
We’re excited to announce a significant security and management upgrade—Role-Based Access Control (RBAC) is now live in ShiftControl!
🛠️ Admin and Employee Portals
RBAC powers our newly launched Admin Portal and Employee Portal, giving users access tailored to their roles. Admins can manage users, apps, and settings, while employees enjoy a streamlined portal to access their essential tools.
👤 Easily Manage User Roles
Admins can now assign roles directly in the User Roles section, allowing seamless promotion of users to admin status or keeping them as standard users.
You can manager roles in your Org Settings → User Roles area.
🔑 API-Ready Permissions
We’ve already laid the groundwork for fine-grained permissions at the API level, ensuring future roles will have precise access controls.
🚀 What’s Available Now:
• Admin Role: Full access to manage users, groups, and settings.
• User Role: Access to the personalized Employee Portal.
🔮 Coming Soon:
• Read-Only Access
• Finance User Role
• Custom Roles for Flexible Permissions
This update ensures your organization has the flexibility and security needed to scale. Start managing roles today and experience more control with ShiftControl!
We’re excited to announce a major update to ShiftControl—a brand-new Employee Portal designed to simplify and enhance how every employee accesses their essential tool
🔑 From Admin-Only to Everyone
ShiftControl is no longer just for admins. Now, every employee can log in and enjoy a streamlined, customizable experience that serves as the gateway to all their work applications.
📂 Your Apps, Your Way
• Reorganize app cards to prioritize your most-used tools.
• Mark Favorites to quickly access what matters most.
• Personalized Layouts that stay consistent across sessions and devices.
💡 Better Than Ever
This new experience is a major upgrade from the JumpCloud console. While both the ShiftControl Employee Portal and JumpCloud console will remain available, we believe most employees will find ShiftControl to be a more user-friendly and efficient hub for daily work.
🔮 More to Come!
We’re just getting started. Soon, you’ll see new features like:
• Org Charts for easier team visibility
• App Access Requests for smoother onboarding
We’re excited to introduce a smoother, more personalized sign-in experience for all ShiftControl users!
🔐 Streamlined SSO Login
All sign-ons are exclusively via Single Sign-On (SSO), ensuring secure and consistent access for every organization.
💾 Remember Your Email
You can now choose to save your email for your next visit, making it even easier to start your day with ShiftControl.
🔄 Seamless Workflow Integration
Once you log in, you’ll be automatically redirected to JumpCloud for authentication and then sent straight back to your ShiftControl dashboard—no extra clicks needed!
This upgrade makes ShiftControl the perfect starting point for your daily workflow.
Try it out and enjoy a faster, smarter login experience!
You can now use the "company" field in your dynamic group rules, making it easier than ever to create internal groups for your own employees. Whether you're setting up groups specifically for internal use or want to exclude contractors and other external members, adding the company field to your rules gives you greater flexibility and control.
Give it a try and see how it can simplify your group management!
You can now add important notes directly to your subscriptions in the Apps tab! Whether it's a quick reminder or critical details about a specific subscription, the new notes field makes it simple to keep track of everything in one place. No more scattered sticky notes or separate spreadsheets—just a clean, easy way to stay organized.
Give it a try and keep your subscription info at your fingertips!
You can now set your organization’s default currency in the settings, simplifying your SaaS cost tracking! This default currency will be used to automatically convert the cost of each app on your dashboard, ensuring all totals reflect your chosen currency. Additionally, it’s now easier to add new subscriptions—your default currency is pre-selected when you input cost details, making setup faster and more consistent. Update your settings to see it in action!
You can now view a consolidated summary of your SaaS spending right from your dashboard! This new card provides a clear, totalized cost of all your SaaS services, calculated based on cost type and the number of assigned users. We’ve taken care to normalize these values to your organization’s default currency (based on the latest currency exchange rates), ensuring a seamless and consistent overview of your monthly or annual expenses. Dive in to see exactly where your SaaS investments stand in real time!
ShiftControl is now available as a Progressive Web App (PWA), allowing you to experience it with the feel and convenience of a native app! PWAs are special web applications that you can install directly from your browser on supported devices, adding ShiftControl to your desktop or mobile home screen. This means faster access, offline functionality for certain features, and automatic updates—no app store required. Try installing ShiftControl as a PWA to streamline your access and enjoy a more responsive experience!
Effortless Google Workspace Sync
Now, with a simple setup in ShiftControl, you can sync groups and memberships directly to Google Workspace. Just update a group, designate its email address, and let the automatic sync take care of the rest. We’ll pull in the Group Name, Description, and members from Google, ensuring that your group information stays current and aligned across platforms without manual updates.
Get a clear overview of sync status in Group Management
To make things even easier, we’ve added a new status view in the Group Management area, showing which groups are actively synced to Google Workspace. This feature offers clear visibility and better control over which groups are integrated, so you can manage them effortlessly in one place.
We’ve given the UI a fresh, intuitive makeover while exposing more detailed information across the board. Whether you’re in user management or editing apps and groups, you’ll find more helpful hints, tooltips, and contextual information at your fingertips. You can now easily see how many groups and apps each user is assigned to and navigate smoothly through frequently used configuration tabs. Even the sidebar is smarter, offering a clear overview of statuses and item counts for every section.
User management just got a boost! You can now quickly see how many groups and apps each user is assigned to. Plus, we’ve added optional columns for departments and locations, giving you a more comprehensive view of your users. The Name and Email fields are now condensed for faster access to key info.
We’ve made it easier to get a clear view of your groups. Now, you can see at a glance how many users and apps are tied to each group. This helps validate whether your group setups match your expectations. We’ve also combined group names and descriptions for a cleaner look and improved the quick-view area for easier access to key details.
App management just got more informative! We’ve updated the user sync status icons and added key details, like how many groups are assigning the app and how many users are assigned. Hovering over the group number will reveal which groups are in use. Additionally, we’ve introduced new fields for Estimated Total Cost and Currency (Available as an optional column) as part of our new SaaS Cost Management features.
We’ve introduced powerful side panels in the user, group, and app editing areas to give you a comprehensive overview at a glance.
• User Info: See all the groups a user belongs to, including how they were assigned (dynamic rule, nested rule, or individual assignment). Also, check their app assignments and whether those assignments are via a group or direct.
• Group Info: Get a breakdown of how users are assigned to a group (dynamic rules, nested rules, or individual assignments) and see which apps are tied to that group.
• App Info: View a list of users assigned to an app and the groups responsible for assigning them.
In both the group and app editing screens, you can now instantly see how many configurations are active in each tab. For example, in a group, you’ll know you’re using 3 Dynamic Rules and 1 Individual Assignment without digging into each section.
No more second-guessing when deleting! We’ve enhanced the delete confirmation process to ensure it’s crystal clear what you’re deleting and its potential impact. For added security, we also ask you to type ‘delete’ to confirm before proceeding.
Take control of your departments and locations with our new centralized management areas. Accessible in the org settings menu, you can now easily add, rename, or remove departments and locations to maintain consistency across your organization. This ensures smooth user grouping and dynamic rules while giving you the flexibility to adjust as needed.
You can now manage departments more easily with our updated dropdown field. Previously a free text field, the department selection is now a pull-down menu available in the user edit areas and dynamic group rules. This change helps eliminate mistakes like typos or inconsistent capitalization, ensuring that dynamic rules work as expected when defining groups by department. You can also quickly add new departments directly from the dropdown, streamlining the process even further.
Alongside the department improvements, we’ve introduced a location field to user profiles, allowing you to select locations from a dropdown menu for more consistent and reliable group creation. This feature ensures uniformity in location names across dynamic group rules, making it easier to create and manage groups based on geographical locations. You can even add new locations directly from the field, simplifying user management further.
You can now input and save key details about your SaaS subscriptions, including contract lengths, billing frequencies, renewal dates, grace periods, and more. With this data, ShiftControl calculates your total SaaS costs, providing full visibility into where your budget is going. This is just the start! Soon, you’ll be able to access detailed cost reports, receive renewal notifications, and get insights on when to right-size your contracts before the lock-in period. We’re also working on integrations to automatically detect and update your subscription data, keeping everything accurate and up-to-date.
We’ve added a new feature that shows a quick breakdown of your SaaS costs per app, giving you the monthly and yearly cost calculations based on the number of users and contract terms. It’s now easier than ever to understand how much you’re spending on each tool and make smarter decisions for your budget. This detailed view is a game-changer for keeping your SaaS spending under control.
We’ve simplified the process for managing group access to JumpCloud Password Manager. Previously, managing group assignments for the password manager required direct actions in JumpCloud. Now, it’s treated like any other app within ShiftControl, allowing you to manage group access directly from our platform without needing to switch back and forth.
We’ve enhanced our app creation process! When you create a new app from our custom catalog, we now ensure the correct logo is always uploaded. Gone are the days of default logos—your apps will always display the correct branding, improving consistency and recognition.
We’ve grown our app catalog to include over 950 apps, allowing you to quickly configure and manage Single Sign-on (SSO) . However, we recognize that many users might not have licenses on the tier that supports SSO. To address this, we’ve enhanced the experience by fully managing our own app catalog. You can now easily add apps as bookmarks, with pre-filled login URLs and descriptions for apps—no more manually entering URLs or descriptions! Each bookmark will take you directly to the app’s login page, helping you stay productive and avoid unnecessary marketing pages.
We’ve introduced a dedicated area for discovering and managing integrations, providing you with full control over how ShiftControl interacts with your applications. Each integration requires secure credentials—whether API keys or OAuth tokens—which we support and store securely. This feature allows you to monitor critical data points like integration health, service health, and authentication status, giving you real-time insights into the connections your business depends on.
Our first available integration is with Google Workspace, part of the new App Discovery feature, with many more integrations on the way. These will enable powerful features such as synchronizing users across applications, ensuring secure configurations, and even pulling invoicing and usage data from SaaS services to streamline management.
With our new Google Workspace integration, administrators can now gain deep insights into how their users are interacting with external apps and services. Once connected via an admin account, ShiftControl will automatically start pulling event logs, including details on when users authorize third-party services—such as using the “Sign in with Google” (Google SSO) feature—and when access is revoked by users or apps. This data is refreshed periodically to ensure you always have up-to-date visibility into the apps your users are authenticating with their Google identity.
This enhancement to our App Discovery feature empowers you to better manage SaaS services by helping you identify and add new applications to ShiftControl while also detecting unexpected uses of Google accounts and potential shadow IT. It’s an essential tool for maintaining control and ensuring secure use of your organization’s digital footprint.
Our new App Discovery feature gives you the power to see all the apps your users have connected to through integrations like Google Workspace. This feature helps you discover which apps your users are using, how they were authorized, and what actions have been taken—such as authorizations or revocations.
With detailed insights, such as the number of users interacting with each app, and how they were discovered, App Discovery helps you take immediate action. You can easily add newly discovered apps to ShiftControl with just one click.
Key capabilities include:
App Visibility: See which apps users have authorized and manage them directly from ShiftControl.
User Activity Tracking: Review important details, including the number of users, authorizations, and revocations for each app.
Detailed Event Logs: Access activity logs that show specific user actions, such as authorization and revocation events, including timestamps and user email addresses.
This is just the beginning—our App Discovery feature is the first mechanism to help you gain control of your SaaS environment. We are actively working on more integrations to help you discover apps even more efficiently. Soon, you’ll be able to leverage tools like accounting systems, mailbox invoice discovery, and more to uncover every corner of your app ecosystem.
Introducing Task Management, a powerful new feature designed to help you manage critical tasks across ShiftControl. We know that not everything in your SaaS ecosystem is fully automated—especially when it comes to user onboarding and offboarding. While we’re working to automate as much as possible, there will always be manual steps required.
With this first release, Task Management highlights the actions that need your attention, such as deciding what to do with newly discovered applications. The task view helps you easily identify tasks with clear statuses, descriptions, and assignment options, giving you full control over who handles each task. In this early version, you’ll be able to manage tasks like reviewing apps discovered through Google Workspace integration.
Looking ahead, Task Management will continue to evolve to include essential tasks such as onboarding/offboarding users from apps that require manual user management, handling approval requests for app assignments, and much more. This feature ensures you stay in the loop and never miss important steps, giving you visibility and control over all manual tasks needed to keep your operations running smoothly.
We’re excited to introduce a powerful new feature to our platform: App Assignment Reporting. This update empowers you with the data and control needed to manage your entire IT and SaaS ecosystem seamlessly. Now, you can easily view and manage app assignments by both app and user, all in one convenient location within our new reports section.
To make your workflow even more efficient, we’ve added multiple export options, including CSV, TSV, JSON (both flattened and nested), and Google Sheets. The Google Sheets export comes with built-in pivots, giving you the flexibility to analyze and visualize your data exactly how you want. With this update, managing who has access to what apps has never been easier!
Effortlessly navigate ShiftControl with our new Command Bar! You can now quickly access the dashboard, users, groups, and apps—all in one convenient place. Use intuitive hotkeys to speed up your workflow and streamline your experience. Searching and managing your ShiftControl environment has never been easier!
Check it out in action! 🔥
We updated the icon to make it clearer which apps don’t have user sync configured or enabled yet.
There are many cases where you might need to set a user’s password for them, especially if they lost access to their email and have forgotten their passwords. You can now set a user’s password for them using the ”Set Password” menu for each user. By default, we also expire the existing password and force the user to change it on next login.
We generate a password for you, or you can use your own! The generated passwords are designed to be secure enough for temporary use and easy to relay over a voice call or type in manually from another device.
⚠️ We always recommend forcing the user to reset the password on the next login to avoid the chance of them using a temporary password permanently.
We noticed that the bulk actions menu was getting a bit too busy, so we organized the actions to make them easier to find and use! We also now disable actions that don’t apply for the selected users to make it clearer what actions can be taken.
Our menus were a bit boring! Humans are visual beings, so we wanted it easier to navigate menus with icons that map clearly to the actions. It also just looks better!
We’ve improved the interface to make configuring and customizing group memberships more intuitive. Now, it’s easier to see how different rule types interact. You can combine dynamic rules, nest existing groups, and add individual members to create powerful, customized group memberships. This change also includes updating the “Save” button to “Save All,” ensuring it’s clear that all settings across tabs are saved together.
We’ve improved the way validation errors are communicated when saving changes across multiple tabs. Now, clear visual indicators will notify you if there’s an error on any tab, helping you to quickly identify and address issues.
updates that drive your success!