A full-stack User Management System built with Spring Boot, React, PostgreSQL, Redis, and Kong API Gateway.

• User Management: Create, read, update, delete users with status management
• Role-Based Access Control: Hierarchical role system with permissions
• Permission Management: Fine-grained permission controls tied to resources
• Secure Authentication: JWT-based auth with httpOnly cookies
• Rate Limiting: Redis-backed rate limiting to prevent abuse
• Policy Engine: Open Policy Agent (OPA) for authorization decisions

┌─────────────┐     ┌─────────────┐     ┌─────────────┐     ┌─────────────┐
│   Browser   │────▶│   Kong GW   │────▶│   Backend   │────▶│  PostgreSQL │
└─────────────┘     │ (JWT/Rate)  │     │ (Spring)    │     └─────────────┘
                    └─────────────┘     └─────────────┘
                           │                   │
                           ▼                   ▼
                      ┌─────────────┐     ┌─────────────┐
                      │    Redis    │     │     OPA     │
                      │ (Rate Limit)│     │  (Policy)   │
                      └─────────────┘     └─────────────┘

• Docker & Docker Compose
• Git

1. Clone the repository

   git clone <your-repo-url>
   cd NewUserManagementSystem

2. Start all services

   cd docker
   docker compose up -d

3. Access the application

   • Frontend: http://localhost:3000
   • Kong Admin: http://localhost:8001

4. Default Admin Credentials

   • Username: admin
   • Password: admin123

NewUserManagementSystem/
├── backend/                 # Spring Boot application
│   ├── src/main/java/      # Java source code
│   ├── src/main/resources/ # Configuration
│   ├── pom.xml             # Maven config
│   └── Dockerfile
├── frontend/               # React application
│   ├── src/               # TypeScript source
│   ├── package.json       # NPM config
│   └── Dockerfile
├── docker/                # Docker Compose
│   └── docker-compose.yml
├── kong/                  # Kong configuration
│   └── kong.yml
├── opa/                   # OPA policies
│   └── policies/
├── database/              # Database schema
│   └── schema.sql
└── docs/                  # Documentation
    ├── architecture.md
    ├── SessionToken.md
    └── USER_GUIDE.md

• POST /api/v1/auth/login - User login
• POST /api/v1/auth/refresh - Refresh token
• POST /api/v1/auth/logout - Logout

• GET /api/v1/users - List users (paginated)
• POST /api/v1/users - Create user
• GET /api/v1/users/{id} - Get user
• PUT /api/v1/users/{id} - Update user
• DELETE /api/v1/users/{id} - Delete user
• POST /api/v1/users/{id}/roles - Assign role
• DELETE /api/v1/users/{id}/roles/{roleId} - Remove role

• GET /api/v1/roles - List roles
• POST /api/v1/roles - Create role
• PUT /api/v1/roles/{id} - Update role
• DELETE /api/v1/roles/{id} - Delete role

• GET /api/v1/permissions - List permissions
• POST /api/v1/permissions - Create permission
• PUT /api/v1/permissions/{id} - Update permission
• DELETE /api/v1/permissions/{id} - Delete permission

• Architecture - System architecture diagrams
• Session Tokens - JWT and cookie documentation
• User Guide - End-user documentation

MIT License