DECP Platform — Department Engagement & Career Platform
A production-ready, full-stack microservices platform that connects university students with alumni, enabling career development, research collaboration, event management, and community engagement — built for the Department of Computer Engineering, University of Peradeniya.
Project Overview Key Features Architecture Technology Stack Repository Structure Microservices Reference Quick Start Environment Configuration Running in Development Running in Production (AWS) CI/CD Pipeline API Reference Database Design Testing Security Performance Targets Documentation Team Acknowledgements
The DECP Platform (Department Engagement & Career Platform) is a comprehensive social networking and career development system designed for university departments. It bridges the gap between current students and alumni by providing tools for:
Building and managing professional profiles
Posting and discovering job and internship opportunities
Creating, sharing, and engaging with a community feed
Organizing department events with RSVP and calendar integration
Collaborating on research projects and sharing academic documents
Real-time direct and group messaging
Smart notifications and analytics dashboards
The platform is built as a production-ready microservices application deployed on AWS ECS Fargate , with a React web frontend , a React Native mobile app , and a full Terraform-managed cloud infrastructure .
Secure registration with email verification
Role-based access control: Student, Alumni, Admin
Rich profile management — skills, education, work experience
Connection/follower graph
Text, image, and video posts
Like, comment, and share interactions
Infinite-scroll feed with real-time updates
Media stored in AWS S3 / MinIO
Job and internship posting by alumni and department
Resume upload and application tracking
AI-assisted job recommendations
Create and manage department events
RSVP system with automated reminders
Calendar integration
Research project management with collaborator invitations
Document sharing with version control
Publication tracking
Direct messaging and group chat
Real-time delivery via Socket.io
File sharing in conversations
In-app, push, and email notifications
Granular per-category notification preferences
User activity and engagement metrics
Popular content analysis
Job application statistics
Admin dashboard
DECP Platform is built on a microservices architecture with an API Gateway as the single entry point.
┌──────────────────────────────────────────────────────────────────────┐
│ PRESENTATION LAYER │
│ Web App (React/Vite) Mobile App (React Native/Expo) │
└───────────────────────────────┬──────────────────────────────────────┘
│ HTTPS / WSS
▼
┌──────────────────────────────────────────────────────────────────────┐
│ API GATEWAY — Port 3000 │
│ JWT Verification | Rate Limiting | Request Routing │
└──────┬──────┬──────┬──────┬──────┬──────┬──────┬──────┬──────┬──────┘
│ │ │ │ │ │ │ │ │
▼ ▼ ▼ ▼ ▼ ▼ ▼ ▼ ▼
[Auth] [User] [Feed] [Jobs] [Events][Research][Msg][Notif][Analytics]
:3001 :3002 :3003 :3004 :3005 :3006 :3007 :3008 :3009
│ │ │ │ │ │ │ │ │
└──────┴──────┴──────┴──────┴──────┴──────┴──────┴──────┘
│
┌───────────────────────────────▼──────────────────────────────────────┐
│ DATA LAYER │
│ PostgreSQL (9 databases) | Redis | AWS S3 | RabbitMQ │
└──────────────────────────────────────────────────────────────────────┘
Cloud Deployment (AWS):
Internet → ALB → ECS Fargate (API Gateway) → ECS Fargate (microservices)
→ RDS PostgreSQL
→ ElastiCache Redis
→ S3 (media + frontend static)
Refer to diagrams/
Backend (all microservices)
Category
Technology
Runtime
Node.js 20+
Language
TypeScript 5.3+
Framework
Express.js
ORM
Sequelize 6.35+
Authentication
JWT (access + refresh tokens), Passport.js, Google OAuth 2.0
Real-time
Socket.io 4.7+
Validation
Joi, Zod
Logging
Winston 3.11+
Rate Limiting
express-rate-limit, rate-limiter-flexible
Security
Helmet, bcryptjs, CORS
Email
Nodemailer 6.9+
Databases & Infrastructure
Category
Technology
Primary DB
PostgreSQL 16 (one database per service)
Cache
Redis 7
Message Queue
RabbitMQ
Object Storage
AWS S3 / MinIO (local dev)
Category
Technology
Framework
React 18.2+
Language
TypeScript 5.2+
Build Tool
Vite 7.3+
State
Redux Toolkit 2.0+
UI
Material-UI v5.14+, Tailwind CSS 3.3+
Forms
React Hook Form 7.49+, Zod
Charts
Recharts 2.10+
HTTP
Axios 1.6+
Real-time
Socket.io-client 4.7+
Router
React Router v6.21+
Testing
Vitest 4.0+, React Testing Library
Category
Technology
Framework
React Native 0.73+
Platform
Expo 50.0+
State
Redux Toolkit 2.0+, Redux Persist
Navigation
React Navigation v6+
UI
React Native Paper, Vector Icons
Storage
AsyncStorage, Expo SecureStore
Notifications
Expo Notifications
Testing
Jest, Detox
Category
Technology
Containerization
Docker, Docker Compose
Orchestration
AWS ECS Fargate, Kubernetes (manifests included)
IaC
Terraform
Cloud
AWS (EC2, RDS, S3, CloudFront, ALB, ECS, ECR)
CI/CD
GitLab CI/CD
Container Registry
AWS ECR
Monitoring
Prometheus + Grafana
e20-CO528-Mini-Project/
├── README.md # This file
├── .gitlab-ci.yml # GitLab CI/CD pipeline
│
├── terraform/ # AWS Infrastructure as Code
│ ├── main.tf # Root Terraform config
│ ├── variables.tf # Input variables
│ ├── outputs.tf # Output values
│ ├── providers.tf # AWS provider config
│ └── modules/
│ ├── vpc/ # VPC, subnets, NAT gateway
│ ├── security-groups/ # Security groups
│ ├── ecr/ # AWS ECR repositories
│ ├── ecs/ # ECS Fargate cluster & services
│ ├── rds/ # PostgreSQL RDS & Redis
│ ├── alb/ # Application Load Balancer
│ └── s3/ # S3 buckets
│
├── docs/ # GitHub Pages site
│ ├── README.md # GitHub Pages landing page
│ └── data/index.json # Project metadata (team, tags)
│
└── code/Mini Project/decp-platform/
├── backend/ # All microservices
│ ├── api-gateway/ # API Gateway (Port 3000)
│ ├── auth-service/ # Authentication (Port 3001)
│ ├── user-service/ # User Management (Port 3002)
│ ├── feed-service/ # Social Feed (Port 3003)
│ ├── jobs-service/ # Job Board (Port 3004)
│ ├── events-service/ # Events (Port 3005)
│ ├── research-service/ # Research Projects (Port 3006)
│ ├── messaging-service/ # Chat / Messaging (Port 3007)
│ ├── notification-service/ # Notifications (Port 3008)
│ ├── analytics-service/ # Analytics (Port 3009)
│ ├── shared/ # Shared utilities & types
│ ├── docker-compose.yml # Full stack local dev
│ ├── docker-compose.dev.yml # Dev overrides
│ ├── .env.example # Environment template
│ └── init-multiple-databases.sh # DB initialization script
│
├── frontend/ # React Web App
│ ├── src/
│ │ ├── pages/ # 11+ pages
│ │ ├── components/ # 28+ components
│ │ ├── features/ # Redux feature slices
│ │ ├── store/ # Redux store
│ │ ├── services/ # API service layer
│ │ ├── hooks/ # Custom React hooks
│ │ ├── types/ # TypeScript types
│ │ └── utils/ # Utilities
│ ├── vite.config.ts
│ ├── tailwind.config.js
│ ├── Dockerfile
│ └── .env.example
│
├── mobile/ # React Native / Expo App
│ ├── src/ # 26+ screens
│ ├── package.json
│ └── app.json
│
├── infrastructure/ # Additional infra configs
│ ├── k8s/ # Kubernetes manifests
│ ├── nginx/ # NGINX configuration
│ ├── monitoring/ # Prometheus & Grafana configs
│ └── scripts/ # Deployment helper scripts
│
├── tests/ # Test suite
│ ├── unit/
│ ├── integration/
│ ├── e2e/ # Cypress (web), Detox (mobile)
│ ├── performance/ # k6 load tests
│ └── security/ # OWASP tests
│
├── docs/ # Comprehensive documentation (14+ docs)
├── diagrams/ # Architecture diagrams (C4, DFD, etc.)
├── seed.js # Database seeding script
├── reset-db.js # Database reset script
├── start.bat # Windows one-click launcher
├── stop.bat # Windows service stopper
└── CONTRIBUTING.md
Service
Port
Database
Key Responsibilities
API Gateway 3000
—
JWT auth middleware, rate limiting, reverse proxy to all services
Auth Service 3001
decp_auth
Registration, login, JWT tokens, Google OAuth, email verification, password reset
User Service 3002
decp_users
Profiles, connections, education, experience, skills, user search
Feed Service 3003
decp_feed
Posts (text/image/video), likes, comments, shares, infinite scroll
Jobs Service 3004
decp_jobs
Job postings, applications, resume management, recommendations
Events Service 3005
decp_events
Event creation, RSVP, calendar, automated reminders
Research Service 3006
decp_research
Research projects, documents, version control, collaborators
Messaging Service 3007
decp_messaging + Redis
Direct & group chat, real-time Socket.io, message history
Notification Service 3008
decp_notifications
Push, email, in-app notifications; user preference management
Analytics Service 3009
decp_analytics + Redis
Activity tracking, engagement metrics, admin dashboards
Node.js 20+Docker & Docker Compose Git
PostgreSQL and Redis do not need to be installed locally — Docker Compose starts them automatically.
git clone https://github.com/cepdnaclk/e20-CO528-Mini-Project.git
cd e20-CO528-Mini-Project Start everything with Docker Compose (recommended) cd " code/Mini Project/decp-platform/backend" # Copy and edit environment variables# Build and start all 10 services + PostgreSQL + Redis# Start the frontend (separate terminal)cd ../frontend
npm install
npm run devWindows one-click launcher cd " code\Mini Project\decp-platform" This script: checks prerequisites, creates databases, frees ports 3000–3009 and 5173, installs all dependencies, builds all services, opens 11 terminal windows, runs health checks, and launches the browser.
Environment Configuration Copy the template and fill in your values:
cp " code/Mini Project/decp-platform/backend/.env.example" " code/Mini Project/decp-platform/backend/.env"
Variable
Description
Example
JWT_SECRETAccess token signing secret
your-secret-key
JWT_REFRESH_SECRETRefresh token signing secret
your-refresh-key
DB_HOSTPostgreSQL host
localhost
DB_PORTPostgreSQL port
5432
DB_USERPostgreSQL user
postgres
DB_PASSWORDPostgreSQL password
12345
GOOGLE_CLIENT_IDGoogle OAuth client ID
(from Google Console)
GOOGLE_CLIENT_SECRETGoogle OAuth client secret
(from Google Console)
SMTP_HOSTSMTP server host
smtp.gmail.com
SMTP_PORTSMTP server port
587
SMTP_USERSMTP user/email
you@gmail.com
SMTP_PASSSMTP password / app password
(Gmail app password)
VAPID_PUBLIC_KEYWeb Push public key
(generated)
VAPID_PRIVATE_KEYWeb Push private key
(generated)
FRONTEND_URLFrontend origin for CORS
http://localhost:5173
cp " code/Mini Project/decp-platform/frontend/.env.example" " code/Mini Project/decp-platform/frontend/.env"
Variable
Description
Default
VITE_API_URLAPI Gateway base URL
http://localhost:3000/api/v1
All services via Docker Compose cd " code/Mini Project/decp-platform/backend" # start# follow logs# stopIndividual service (TypeScript hot-reload) cd " code/Mini Project/decp-platform/backend/auth-service" # ts-node-dev with auto-reloadAvailable npm scripts per service:
Script
Action
npm run devStart with TypeScript hot-reload
npm run buildCompile TypeScript to dist/
npm startRun compiled production build
npm testRun Jest unit tests
npm run lintESLint check
cd " code/Mini Project/decp-platform/frontend" # Vite dev server → http://localhost:5173# Production build# Preview production buildcd " code/Mini Project/decp-platform/mobile" # Start Expo Metro bundler# Run on Android emulator# Run on iOS simulator# Run in browsercd " code/Mini Project/decp-platform" # Populate with demo data# Reset to empty stateRunning in Production (AWS) Infrastructure provisioning with Terraform cd terraform
# Initialize (uses S3 remote state + DynamoDB lock)" bucket=${TF_STATE_BUCKET} " " key=decp-platform/terraform.tfstate" " region=us-east-1" " dynamodb_table=${TF_LOCK_TABLE} " # Plan" project_name=decp-platform" " environment=prod" " db_username=${DB_USERNAME} " " db_password=${DB_PASSWORD} " " jwt_secret=${JWT_SECRET} " " jwt_refresh_secret=${JWT_REFRESH_SECRET} " # ApplyResources created by Terraform
Resource
Details
VPC
Public + private subnets across 2 AZs, NAT gateway
RDS
PostgreSQL 16 on db.t3.micro (configurable)
ElastiCache
Redis 7
ECR
10 container repositories (one per service)
ECS Cluster
Fargate — one task per microservice
ALB
Application Load Balancer (HTTP/HTTPS)
S3
Media bucket + frontend static hosting
CloudWatch
Log groups for all services
IAM
ECS task roles and execution roles
Variable
Default
Description
aws_regionus-east-1AWS region
project_namedecp-platformUsed as prefix for all resources
environmentdevdev / staging / prod
db_instance_classdb.t3.microRDS instance type
certificate_arn—
ACM certificate ARN for HTTPS
The project uses GitLab CI/CD (.gitlab-ci.yml in the root).
Stage
Jobs
Trigger
validateTerraform fmt + validate
All pushes
buildBuild & push Docker images to ECR (one job per service)
Changed files or DEPLOY_ALL=true
deploy-infraterraform plan (auto) → terraform apply (manual)deploy branch
deploy-servicesForce-redeploy ECS services
After infra deploy
deploy-frontendVite build → aws s3 sync
After infra deploy
{AWS_ACCOUNT_ID}.dkr.ecr.{REGION}.amazonaws.com/{PROJECT_NAME}/{SERVICE_NAME}:{COMMIT_SHA}
{AWS_ACCOUNT_ID}.dkr.ecr.{REGION}.amazonaws.com/{PROJECT_NAME}/{SERVICE_NAME}:latest
Required GitLab CI/CD variables
Variable
Description
AWS_ACCESS_KEY_IDAWS credentials
AWS_SECRET_ACCESS_KEYAWS credentials
AWS_DEFAULT_REGIONDeployment region
AWS_ACCOUNT_IDAWS account number
TF_STATE_BUCKETS3 bucket for Terraform state
TF_LOCK_TABLEDynamoDB table for state locking
DB_USERNAMERDS master username
DB_PASSWORDRDS master password
JWT_SECRETJWT signing secret
JWT_REFRESH_SECRETJWT refresh signing secret
Base URL (development): http://localhost:3000/api/v1
Base URL (production): https://api.decp.eng.pdn.ac.lk/api/v1
Interactive docs: http://localhost:3000/api/docs (Swagger UI)
Method
Endpoint
Description
POST/auth/registerRegister new user
POST/auth/loginLogin, receive JWT tokens
POST/auth/logoutInvalidate refresh token
POST/auth/refresh-tokenGet new access token
POST/auth/forgot-passwordSend password reset email
POST/auth/reset-passwordReset with token
POST/auth/verify-emailVerify email address
POST/auth/googleGoogle OAuth login
Method
Endpoint
Description
GET/users/{id}Get user profile
PUT/users/{id}Update own profile
GET/users/{id}/connectionsList connections
POST/users/{id}/connectSend connection request
GET/users/searchSearch users
Method
Endpoint
Description
GET/feedGet paginated news feed
POST/feed/postsCreate post
GET/feed/posts/{id}Get single post
POST/feed/posts/{id}/likeLike / unlike post
POST/feed/posts/{id}/commentAdd comment
Method
Endpoint
Description
GET/jobsList job postings
POST/jobsCreate job posting
GET/jobs/{id}Get job details
POST/jobs/{id}/applySubmit application
GET/jobs/recommendationsPersonalized recommendations
Method
Endpoint
Description
GET/eventsList events
POST/eventsCreate event
GET/events/{id}Get event details
POST/events/{id}/rsvpRSVP to event
Method
Endpoint
Description
GET/researchList research projects
POST/researchCreate project
GET/research/{id}Get project
POST/research/{id}/inviteInvite collaborator
Messaging (REST + WebSocket)
Method
Endpoint
Description
GET/messaging/conversationsList conversations
POST/messaging/conversationsCreate conversation
GET/messaging/conversations/{id}/messagesMessage history
WS
socket.ioReal-time message delivery
Method
Endpoint
Description
GET/notificationsList notifications
PUT/notifications/{id}Mark as read
POST/notifications/preferencesUpdate preferences
Method
Endpoint
Description
GET/analytics/dashboardAdmin dashboard data
GET/analytics/popular-postsTrending content
GET/analytics/job-statsJob market statistics
GET/analytics/user-activityUser activity metrics
Endpoint
Description
GET /healthPer-service health check
GET /api/v1/healthAPI Gateway health
The platform uses 9 isolated PostgreSQL databases — one per service — following the database-per-service microservices pattern.
Database
Service
Key Tables
decp_authAuth Service
users, refresh_tokens
decp_usersUser Service
profiles, connections, education, experience, skills
decp_feedFeed Service
posts, comments, likes, shares
decp_jobsJobs Service
jobs, applications, job_recommendations
decp_eventsEvents Service
events, rsvps, event_reminders
decp_researchResearch Service
research_projects, documents, collaborators
decp_messagingMessaging Service
conversations, messages, participants
decp_notificationsNotification Service
notifications, notification_preferences
decp_analyticsAnalytics Service
activity_logs, user_metrics, engagement_stats
Connection details (local Docker):
Setting
Value
Host
localhost
Port
5433 (external) / 5432 (internal)
User
postgres
Password
12345
Databases are initialized automatically by init-multiple-databases.sh on first Docker Compose start. On AWS, a dedicated ECS db_init task runs the initialization SQL on deploy.
Full schema is documented in docs/04-DATABASE_SCHEMA.md
tests/
├── unit/ # Jest unit tests (services, controllers, utilities)
├── integration/ # API integration tests
├── e2e/ # Cypress (web), Detox (mobile)
├── performance/ # k6 load & stress tests
└── security/ # OWASP Top 10 tests
# Backend — individual servicecd " code/Mini Project/decp-platform/backend/auth-service" test
# Frontendcd " code/Mini Project/decp-platform/frontend" test # Vitest# Watch mode# Vitest UI# Coverage report# Mobilecd " code/Mini Project/decp-platform/mobile" test
# Windows — run all backend testscd " code/Mini Project/decp-platform"
Layer
Target
Unit tests
85%+
Integration tests
20+ scenarios
E2E tests
15+ critical user flows
Performance
< 200ms p95 response time under 1,000 concurrent users
Mechanism
Implementation
Authentication
JWT access tokens (15 min) + refresh tokens (7 days)
Authorization
Role-based access control (RBAC)
Transport
HTTPS/TLS on all production endpoints
Secrets
AWS Secrets Manager / environment variables
SQL Injection
Sequelize parameterized queries
XSS
Helmet CSP headers, output encoding
CSRF
SameSite cookies, token validation
Rate Limiting
express-rate-limit per IP and per user
Dependency scanning
npm audit in CI pipeline
OWASP Top 10
Dedicated security test suite
Full security documentation: docs/07-SECURITY.md
Metric
Target
API response time (p95)
< 200 ms
Page load time
< 2 s
Concurrent users
10,000+
Availability
99.9% uptime
Database query time
< 50 ms
Comprehensive documentation lives in code/Mini Project/decp-platform/docs/
Architecture diagrams (C4 model, DFD, deployment, security) are in diagrams/
Update this section with actual team member details.
Supervisors:
Department of Computer Engineering, University of Peradeniya
CO528 Applied Software Architecture course
All contributors, reviewers, and testers
Department of Computer Engineering — University of Peradeniya — CO528 Mini Project
