Organizations need a reliable way to log carbon-reducing activities, score contributions, and issue rewards — with different access levels for users and administrators.
Solution
Built a Spring Boot backend with REST endpoints for activity logging, score calculation, and reward issuance. JWT-secured routes enforce USER vs ADMIN permissions across all operations.
Architecture
Layered design: REST controllers → service layer (business rules) → JPA repositories → MySQL. Stateless auth via JWT filter chain in Spring Security.
Key Features
Multi-role API access (USER, ADMIN)
Contribution logging and reward calculation engine
Admin dashboard endpoints for oversight
Documented REST API for client integration
Technical Challenge
Balancing reward calculation logic in the service layer while keeping controllers thin and repositories focused on persistence.
Biggest Learning
How to model domain rules in services, protect routes by role, and design APIs that stay consistent as features grow.
Impact
End-to-end backend system demonstrating authentication, RBAC, and business logic in a real tracking domain.
Healthcare workflows need a secure backend that manages users, roles, and sensitive data — without coupling business logic to any single frontend.
Solution
Designed and built a backend-only Spring Boot service with REST endpoints, role-based access, and a relational schema shaped around core healthcare entities and workflows.
Architecture
Client → REST API → Spring Security (JWT + RBAC) → Service Layer → JPA/Hibernate → MySQL. API-first design with clear request/response contracts.
Key Features
REST API with role-protected endpoints
JWT authentication and authorization flow
Normalized database schema for core entities
Postman-tested endpoint documentation
Technical Challenge
Designing secure data flow and access boundaries for sensitive domain data while keeping the API predictable for future clients.
Biggest Learning
Backend-first product thinking — security, schema design, and API contracts matter as much as feature coverage when there is no frontend in scope.
Impact
Demonstrates ability to deliver a complete backend platform: API design, security, and database architecture without relying on UI screenshots.
Applications need a dependable user management backend — registration, login, profile updates, and admin control — with secure, token-based access to protected routes.
Solution
Implemented a production-style user management API covering the full auth lifecycle: BCrypt registration, JWT login, token-protected routes, and role-specific capabilities.
Architecture
Standard Spring Boot layering with a dedicated security config, UserDetailsService integration, and JPA-backed user persistence in MySQL.
Key Features
User registration with password hashing
JWT issuance and stateless session management
Profile management for authenticated users
ADMIN endpoints for user oversight
Technical Challenge
Configuring Spring Security filter order and ensuring protected vs public routes behave correctly across all HTTP methods.
Biggest Learning
Deep understanding of authentication vs authorization and how to structure security config that stays maintainable as endpoints grow.
Impact
Reusable auth foundation applicable to any product needing secure user management and RBAC.
Spring BootSpring SecurityJWTBCryptMySQLJPAMaven
Currently Building
Flagship Project
Reserved for the next major backend system — microservices architecture, advanced API design, or open source contribution at scale.
System DesignScalable APIsOpen Source
Additional Projects
Completed
Complaint & Case Tracking Multi-Role Case Workflow API