AumsVault is a secure, modern banking application built on a microservices architecture that implements hybrid cloud deployment using Amazon EKS and on-premises infrastructure. The system follows banking industry standards and zero-trust security principles.
- Hybrid Cloud Setup
- Amazon EKS for non-essential workloads
- On-premises servers for critical banking operations
- Secure WireGuard VPN for inter-network communication
- Zero-trust policy implementation across all services
-
Authentication Service (On-premises)
- Centralized authentication system
- Session management using JWT token
- User role and permission management
-
Transaction Service
- Real-time money transfer processing in seconds
- Transaction logging
- Integration with Benificairy api to send money to others
-
Card Authorization Service
- Card issuance and management
- Authorization processing
- Card lifecycle management
-
Account Management Service
- Account creation and maintenance
- Automatic account number generation
- Balance management
- Account status monitoring
- Encryption at rest using industry-standard algorithms
- Data encryption using bcrypt
- Secure key management system
- used secrets to store confedential informations
- WireGuard VPN for secure communication
- Network segmentation, Namespace segmentations
- On-premises database deployment for sensitive customer data
- Role-based access control
- Database encryption
- database quering using adminer only of onprem
- Sub-second transaction processing
- High availability design
- Scalable architecture
- Load balancing across services
- Streamlined login/signup process
- Automatic account number generation
- Instant card issuance
- Real-time transaction notifications
- Adminer interface for database management (on-premises only)
- Comprehensive logging and monitoring
- Advanced reporting capabilities
- User activity tracking
- Istio ambient mesh integration planned
- Enhanced mTLS security
- Advanced traffic management
- Reduced overhead compared to traditional service mesh
- Kubernetes (EKS + On-premises (minikube))
- ECR Private Registry
- Github Actions for CI
- WireGuard VPN
- Docker containerization
- Microservices architecture
- RESTful APIs
- Event-driven architecture
- NodeJS
- Vite (REACT) for frontend
- Tailwind css for UI