Skip to main content

System Design & Architecture

System Purpose & Context

Primary Goal: Streamline reptile lineage tracking by creating a standardized, trusted, and transparent process across reptile species.
Core Value Proposition: Provides a lineage-first system that ensures accurate tracking of genetics, ancestry, and health across generations, building breeder and buyer confidence through verified, transparent records.

Problem Statement

ReptiDex solves critical challenges in reptile breeding:
  • Eliminates guesswork and inconsistent record-keeping in reptile breeding
  • Establishes shared standards for lineage tracking, making data interoperable across breeders
  • Builds trust between breeders and buyers through verified, transparent records
  • Positions lineage tracking as the foundation with additional features as value-add bonuses

Guiding Principle

Every feature in ReptiDex supports or enhances the core lineage tracking experience.

C4 Level 1: System Context

Primary Actors

Breeder

Manages vivariums, animals, pairings/clutches, lineage, media. Sets up profiles/listings, may purchase ads, receives notifications.

Buyer/Visitor

Browses public profiles/listings, views pedigrees and lineage. Interacts with embedded widgets on breeder sites.

ReptiDex Admin

Handles moderation, abuse handling, feature flags/entitlements overrides, support tooling.

External Systems

SystemPurposeIntegration
Payment ProcessorStripe/PayPal for subscriptions, invoices, refundsAPI integration
Email/SMS ProviderTransactional + marketing notificationsAPI integration
OAuth IdPsGoogle/GitHub SSO (optional)OAuth 2.0
CDN/EdgePublic pages, media, embed assets, downloadsCloudFront
Genetics LabsTest results & verification (future)API integration
Partner MarketplacesImport/export animals & listings (future)API integration
Reptile RegistriesLineage data for external registries (future)API integration

System Context Diagram

C4 Level 2: Container Architecture

Frontend Applications

ApplicationPurposeTechnologyUsers
web-publicMarketing, discovery, and animal purchasingVite + React 19, Tailwind CSSAnonymous visitors, buyers
web-breederBreeding management and animal salesVite + React 19, Tailwind CSSBreeders, organization members
web-adminAdministration and platform moderationVite + React 19, Tailwind CSSReptiDex admins, support staff
web-embedEmbeddable widgets for external sitesVanilla JS, ReactExternal website visitors
PackagePurposeContains
@reptidex/uiComplete UI and design systemMaterial UI theme, components, design tokens, icons
@reptidex/coreBusiness logic and API integrationAPI clients, types, auth, state management, utilities

Backend Microservices (6 Consolidated Services)

Foundation service that supports all other domainsPurpose: Auth, Config, Billing, Events, Telemetry
Port: 8001
Database: repti_core_db
Responsibilities:
  • Identity & access management (users, organizations, sessions)
  • Configuration & feature flags
  • Event bus & async processing
  • Telemetry collection and aggregation
  • Billing and subscription management
Core business logic for reptile-specific functionalityPurpose: Animals, Lineage, Genetics, Taxonomy, Breeding
Port: 8002
Database: repti_animal_db
Responsibilities:
  • Animal records & metadata management
  • Pedigree tracking & visualization
  • Species taxonomy & traits
  • Breeding pairs & clutches
  • Genetic analysis and predictions
Commerce and marketplace functionalityPurpose: Marketplace, Sales, Transactions, Inventory
Port: 8003
Database: repti_commerce_db
Responsibilities:
  • Marketplace listings and discovery
  • Sales transactions and order management
  • Inventory tracking and availability
  • Payment processing coordination
  • Commerce analytics and reporting
Media and content managementPurpose: Files, Rendering, Embeds, Content
Port: 8004
Database: repti_media_db
Responsibilities:
  • File storage & CDN management
  • Document/chart rendering & exports
  • Embeddable widgets for external sites
  • Media processing and optimization
  • Content management and delivery
Engagement and community featuresPurpose: Search, Notifications, Community, Ads
Port: 8005
Database: repti_community_db
Responsibilities:
  • Search & indexing across all content
  • Multi-channel notifications (email, SMS, push)
  • Community features and social interactions
  • Advertising and promotion management
  • User engagement analytics
Operations and administrative functionalityPurpose: Admin, Audit, Integrations, Logging
Port: 8006
Database: repti_ops_db
Responsibilities:
  • Administrative tools and dashboards
  • Audit logs & compliance reporting
  • Third-party integrations management
  • System monitoring and alerting
  • Operational analytics and insights

Container Diagram

Technology Stack

Infrastructure & Hosting

AWS Core Services

Compute: EC2 with Docker Compose (simple & cost-effective)
Database: RDS PostgreSQL (6 separate databases)
Storage: S3 with lifecycle policies
CDN: CloudFront with Route 53
Events: SNS/SQS for event-driven communication

Observability

Monitoring: Grafana + CloudWatch
Telemetry: OpenTelemetry instrumentation
Logging: Structured JSON logging
Dashboards: Grafana custom dashboards
Alerting: Grafana intelligent alerting

Development Stack

Backend (6 Services)

Framework: FastAPI (Python 3.11+)
Database: PostgreSQL + Alembic (database-per-service)
Cache: Redis (ElastiCache) for sessions
Search: PostgreSQL full-text search
Validation: Pydantic schemas
Testing: pytest with comprehensive coverage

Frontend

Framework: Vite + React 19 Language: TypeScript UI Components: Radix UI with Tailwind CSS State Management: Zustand + React Query Styling: Tailwind CSS utility classes Testing: Vitest + Playwright

Service Communication

Synchronous Communication

REST APIs: Direct service-to-service calls for:
  • Real-time data queries
  • User-facing operations
  • Administrative tasks
  • Cross-service data retrieval
API Gateway: Centralized routing with:
  • Authentication and authorization
  • Rate limiting and throttling
  • Request/response transformation
  • Monitoring and analytics

Asynchronous Communication

Event-Driven Architecture: AWS SNS/SQS for:
  • Domain events (animal.*, lineage.*, profile.*)
  • Business events (breeding.*, sales.*, payments.*)
  • System events (auth.*, config.*, telemetry.*)
Event Patterns:
  • Fan-out: One publisher, multiple subscribers
  • Request/Reply: Asynchronous request-response patterns
  • Saga: Distributed transaction coordination

Data Architecture

Database Strategy

Database-Per-Service Architecture:
  • repti_core_db: Authentication, configuration, billing, events
  • repti_animal_db: Animals, lineage, genetics, taxonomy, breeding
  • repti_commerce_db: Marketplace, sales, transactions, inventory
  • repti_media_db: File metadata, rendering jobs, embed configurations
  • repti_community_db: Search indexes, notifications, community data
  • repti_ops_db: Admin tools, audit logs, integrations, system logs
Data Consistency Patterns:
  • Strong consistency within each service database
  • Eventual consistency across services via events
  • Event sourcing for critical business events
  • Cross-service coordination via repti-core event orchestration

Caching Strategy

Application Cache (Redis):
  • Session data and user preferences
  • Frequently accessed configurations
  • Computed pedigree graphs
  • Search results and filters
CDN Cache (CloudFront):
  • Static assets and media files
  • Public profile pages
  • API responses with cache headers
  • Embeddable widget assets
Database Cache:
  • Connection pooling
  • Query result caching
  • Read replicas for scaling
  • Materialized views for complex queries

Security Architecture

Authentication & Authorization

Multi-Layered Security:
  • JWT tokens (RS256) with KMS-backed keys
  • Refresh token rotation
  • API keys for service integration
  • Role-based access control (RBAC)
Network Security:
  • VPC with private subnets
  • Security groups and NACLs
  • WAF for application protection
  • TLS 1.3 for all communications

Data Protection

Encryption:
  • At rest: AES-256 for databases and storage
  • In transit: TLS 1.3 for all network communication
  • Key management: AWS KMS with rotation
  • Secrets management: AWS Secrets Manager
Privacy Controls:
  • Granular visibility settings
  • Data anonymization for analytics
  • GDPR compliance features
  • Audit logging for all data access

Deployment Architecture

Environment Strategy

1

Development

Local development with Docker Compose
  • All 6 services running in containers locally
  • Local PostgreSQL with 6 separate databases
  • Local Redis for caching
  • File-based storage for media
  • Mock external services and Grafana
2

Staging

AWS staging environment (EC2 + Docker Compose)
  • Scaled-down production replica on single EC2 instance
  • 6 RDS PostgreSQL databases (smaller instances)
  • ElastiCache Redis (single node)
  • Integration with real external services
  • Grafana monitoring and alerting
3

Production

AWS production environment (EC2 cluster)
  • 2-3 EC2 instances behind Application Load Balancer
  • 6 RDS PostgreSQL databases (Multi-AZ for HA)
  • ElastiCache Redis cluster
  • Comprehensive Grafana monitoring
  • Disaster recovery and automated backups

CI/CD Pipeline

Build Process:
  1. Code commit triggers GitHub Actions
  2. Automated testing (unit, integration, e2e) per service
  3. Security scanning and dependency checks
  4. Docker image build and push to ECR (6 service images)
  5. Infrastructure updates via Terraform
  6. Rolling deployment to EC2 instances with Docker Compose
Deployment Strategy:
  • Docker Compose rolling updates for zero downtime
  • Service-by-service deployments for gradual rollouts
  • Feature flags via repti-core for controlled feature enablement
  • Database migrations coordinated per service
  • Rollback capabilities via previous Docker images

Service Registry

Complete catalog of all microservices

API Documentation

Comprehensive API reference

Infrastructure Setup

AWS deployment and configuration guides

Security Architecture

Detailed security patterns and compliance