A production-grade, secure multi-tenant backend architecture built using Rust, Axum, Tokio, and SQLx.
- Secure Authentication: Built-in User Registration and Login endpoints leveraging thread-safe
bcryptpassword hashing. - Token Issuance: Session authentication powered by signed stateless JSON Web Tokens (JWTs).
- Multi-Tenant Boundaries: Complete relational indexing separation for Organizations and individual user memberships.
- Selective Middleware: Advanced Axum authorization extractor engine verifying tenant permissions before allowing route access.
- Compliance Tracking: Secure database schemas and endpoint mapping for immutable organization activity audit logs.
- Automated Unit Testing: Built-in test suite modules to verify API boundary failure conditions.
migrations/— Relational database schema layout scripts.src/models.rs— Structured request payloads, response templates, and data schemas.src/handlers.rs— Business validation rules, crypto hashing, and collection controller paths.src/middleware.rs— Selective tenant authorization engine extraction layer.src/tests.rs— Automated route boundary validation test collection.src/main.rs— Environmental configs, database pool connection, and runtime initialization.
| Method | Endpoint | Description | Auth Required |
|---|---|---|---|
| POST | /auth/register |
Create a new user profile account | Public |
| POST | /auth/login |
Validate user credentials and issue JWT tokens | Public |
| POST | /orgs |
Initialize a new multi-tenant organization | Public |
| POST | /orgs/:id/members |
Invite and allocate roles to members within an organization | JWT Bearer Guard |
| GET | /orgs/:id/audit-logs |
Retrieve chronological security compliance tracking logs | JWT Bearer Guard |