oskar/mosenioring
1
0
Fork 0
Code Issues Pull requests Actions Packages Projects Releases Wiki Activity
mosenioring/back001
History
oskar dc4bc979af Ensure tenant ID is properly set for patients, users, invitations, and patient-subject links in InvitationService; add corresponding unit tests.
2026-01-16 21:46:00 +01:00
..
app Implement invitation management for patients and add supporting APIs, services, and tests 2026-01-14 15:12:10 +01:00
common Implement invitation management for patients and add supporting APIs, services, and tests 2026-01-14 15:12:10 +01:00
docker/keycloak Add "PATIENT" role to Keycloak realm configuration 2026-01-13 14:31:09 +01:00
gradle/wrapper Update Docker images, Kotlin, Spring Boot, Gradle, and dependencies 2026-01-13 15:37:29 +01:00
modules Ensure tenant ID is properly set for patients, users, invitations, and patient-subject links in InvitationService; add corresponding unit tests. 2026-01-16 21:46:00 +01:00
workers/notification-worker init backend 2026-01-09 18:35:06 +01:00
.gitignore init backend 2026-01-09 18:35:06 +01:00
build.gradle.kts Update Docker images, Kotlin, Spring Boot, Gradle, and dependencies 2026-01-13 15:37:29 +01:00
docker-compose.yml Update Docker images, Kotlin, Spring Boot, Gradle, and dependencies 2026-01-13 15:37:29 +01:00
gradle.properties init backend 2026-01-09 18:35:06 +01:00
gradlew init backend 2026-01-09 18:35:06 +01:00
gradlew.bat init backend 2026-01-09 18:35:06 +01:00
README.md ci 2026-01-16 14:56:22 +01:00
requests.http init backend 2026-01-09 18:35:06 +01:00
settings.gradle.kts init backend 2026-01-09 18:35:06 +01:00

README.md

Mosenioring Backend

Production-ready Kotlin/Spring Boot 3 modular monolith skeleton for patient-caregiver-doctor coordination.

🏛 Architecture

This project follows a Modular Monolith architecture:

  • app: Main entry point, configuration, and shared controllers.
  • common: Cross-cutting concerns (security, tenant handling, outbox pattern).
  • modules/*: Independent business modules (Clinical, Identity, Messaging, etc.).
  • workers/*: Background event consumers/processors.

🛠 Requirements

  • Java 17
  • Docker + Docker Compose
    • CI uses a custom gradle:8.12-jdk17-based image (see ci/images/gradle-node/Dockerfile); match that locally to avoid toolchain download delays.

🚀 Local Run

1. Start Dependencies

docker compose up -d

2. Run the API

Choose a profile:

Local Development (with mock auth):

SPRING_PROFILES_ACTIVE=local ALLOW_LOCAL_AUTH=true ./gradlew :app:bootRun

Allows bypassing Keycloak using X-Local-* headers.

Dev Mode (with Keycloak):

SPRING_PROFILES_ACTIVE=dev ./gradlew :app:bootRun

3. Run the Worker (Optional)

./gradlew :workers:notification-worker:bootRun

🧪 Testing

Run all tests:

./gradlew test

🔐 Auth & Multi-tenancy

  • JWT Resource Server: Uses Keycloak by default.
  • Multi-tenancy: Enforced via X-Tenant-Id header (local) or tenant_id JWT claim.
  • Local Auth Headers (only when ALLOW_LOCAL_AUTH=true):
    • X-Local-Email: User identity.
    • X-Local-Roles: e.g., ADMIN, DOCTOR, CAREGIVER.
    • X-Tenant-Id: Target tenant.

📨 Invitation Onboarding

  • Invite-only registration: Admins create invites; users accept with a token.
  • Resolve endpoint: POST /api/v1/invites/resolve returns only masked email + expiry.
  • Accept endpoint: POST /api/v1/invites/accept links the authenticated user to a patient.
  • Token hashing: Invitation tokens are stored as HMAC-SHA256 with a server-side pepper.
  • Config: Set app.invites.token-pepper in back001/app/src/main/resources/application.yml for non-dev environments.

🔗 Key Services & Links

📝 Notes

  • Outbox Pattern: Medication plans publish events to an outbox table for reliable messaging.
  • Idempotency: Workers use Redis to ensure events are processed only once.