Technology Stack
Modern Production-Ready Technologies
Cutting-edge frontend with mature backend. Built for performance, scalability, and developer experience.
Backend Stack
- Java 25 LTS - Virtual threads, records, sealed classes, pattern matching
- Spring Boot 4.0 - Native compilation, virtual thread executor, AOT processing
- Tactical DDD - Entities, aggregates, value objects, repositories
- Event-Driven - RabbitMQ messaging for loose coupling
- PostgreSQL 15+ - ACID-compliant, per-service databases
- Redis 7 - Session storage, caching, rate limiting
Frontend Stack
- React 19 - Concurrent features, server components
- TypeScript 5.9 - Strict type safety
- TanStack Ecosystem - Router, Query, Table
- Feature-Sliced Design - Scalable architecture methodology
- Mantine UI v8 - Complete component library
- Vite 7 + SWC - Lightning-fast builds and HMR
DevOps & Infrastructure
- Drone CI/CD - 5-stage pipeline: verify → artifacts → docker → deploy → release
- Helm Charts - Per-service charts with environment values
- Kubernetes / K3s - HPA, health probes, graceful shutdown
- Nexus Repository - Maven artifact management
- Private Registry - know-how.download container registry
- IaC - Automated PostgreSQL, Redis, RabbitMQ provisioning
Observability Stack
- OpenTelemetry - Distributed tracing across all services
- Prometheus & Grafana - Metrics and dashboards
- Structured Logging - JSON logs with correlation IDs
- Health Checks - Liveness/readiness probes
- DbGate - Web-based database administration
- MailHog - Email testing in dev environments
Platform Components
Six Production-Ready Microservices
Each service is independently deployable with its own Helm chart, Drone CI pipeline, and dedicated PostgreSQL database.
User Service
Centralized Authentication & Identity Management
- • JWT-based authentication with RSA256
- • Email verification and password reset
- • Role-based access control (RBAC)
- • Multi-tenant user management
- • Domain-driven entities and aggregates
- • Account security and audit logging
API Gateway
Reactive API Gateway & Traffic Management
- • Intelligent request routing
- • Redis-backed rate limiting
- • Circuit breaker protection
- • JWT validation and user context propagation
- • Correlation ID tracking
Billing Service
Payment Processing & Financial Operations
- • Stripe Payment Intents integration
- • Subscription management and billing
- • Merchant onboarding (Stripe Connect)
- • Invoice generation and tracking
- • Multi-gateway support and refunds
CRM Contact Service
Contact Management & Operations
- • Comprehensive contact CRUD operations
- • Bulk operations (up to 100 contacts)
- • Lead conversion tracking
- • Company association management
- • Lead scoring and status updates
CRM Lead Service
Lead Capture & Qualification System
- • Lead management with scoring (0-100)
- • Multi-source lead tracking
- • Lead qualification workflows
- • Sales representative assignment
- • Activity tracking and notes
CRM Pipeline Service
Sales Pipeline & Analytics Dashboard
- • Customizable pipeline stages
- • Follow-up scheduling and reminders
- • Conversion metrics and analytics
- • Activity logging and audit trails
- • Real-time dashboard statistics
DevOps Pipeline
Drone CI/CD with Helm & Kubernetes
5-stage automated pipeline from code push to production. Each microservice has its own Drone pipeline config and Helm chart.
1. VerifyCode
Code coverage gate (JaCoCo), static analysis with SonarQube, PMD, and SpotBugs. Testcontainers integration tests against real PostgreSQL 16.
2. PublishArtifacts
Maven SNAPSHOT/release JARs to Nexus. GitHub releases with automated changelog via release-it. Triggered on dev, prerelease/*, and version tags.
3. PublishDockerImage
Multi-stage Docker builds for all 6 services. Feature branch images tagged with branch name, release images with semver. Private registry at know-how.download.
4. Deployment
Helm atomic deployments with automatic rollback. Environment promotion: dev → test → staging → production. Manual approval gates for production.
5. ReleasePackage
Automated semantic versioning and GitHub release creation. Slack notifications for all pipeline events. Full audit trail per commit.
Infrastructure as Code
Automated provisioning of PostgreSQL (per-service DBs), Redis, RabbitMQ, MinIO via Helm. K3s-optimized for dev/test, production-ready for staging/prod.
Quality Assurance
Enterprise-Grade Testing & Quality
Multi-layer testing strategy with automated quality gates enforced in every pipeline run.
Multi-Layer Testing
- • Unit Tests - JUnit 5 + Mockito for service logic
- • Integration Tests - Testcontainers with real PostgreSQL
- • Architecture Tests - ArchUnit for boundary validation
- • E2E Tests - Playwright (Chrome, Firefox, Safari)
- • Frontend Tests - Vitest + Testing Library + MSW
- • Contract Tests - OpenAPI 3.0 specification compliance
Static Analysis Gates
- • SonarQube - Quality gates, security vulnerabilities, code smells
- • PMD - High-priority rule violations block pipeline
- • SpotBugs - Bug pattern detection with custom exclusions
- • CheckStyle - Google Java Style Guide enforcement
- • JaCoCo - Per-service coverage thresholds
- • Maven Enforcer - Dependency and version consistency
Coverage Thresholds (JaCoCo)
User Service
- • Instruction: 18% min
- • Line: 48% min
- • Branch: 30% min
Gateway Service
- • Instruction: 27% min
- • Reactive WebFlux coverage
- • Circuit breaker paths
CRM Services
- • Instruction: 20-25% min
- • Line: 40-45% min
- • Branch: 25-28% min
Frontend Applications
Three React Applications Included
Feature-Sliced Design architecture with Mantine UI, TanStack Router, and Storybook 8 component development.
Auth Portal
Dedicated authentication gateway with multi-tenant support, login, registration, and password reset flows.
App Portal
Main SaaS dashboard with CRM modules, billing management, analytics, and full multi-tenant workspace support.
Mobile App
Android application built with Kotlin and Jetpack Compose, consuming the same API gateway.