https://github.com/seabuhi/riskshield-backend
Production-ready FinTech backend with JWT, Redis, fraud detection and credit scoring
https://github.com/seabuhi/riskshield-backend
backend docker fintech java jwt redis rest-api security spring-boot
Last synced: about 4 hours ago
JSON representation
Production-ready FinTech backend with JWT, Redis, fraud detection and credit scoring
- Host: GitHub
- URL: https://github.com/seabuhi/riskshield-backend
- Owner: seabuhi
- Created: 2026-05-03T11:33:50.000Z (2 months ago)
- Default Branch: main
- Last Pushed: 2026-05-03T11:39:07.000Z (2 months ago)
- Last Synced: 2026-05-03T13:24:34.572Z (2 months ago)
- Topics: backend, docker, fintech, java, jwt, redis, rest-api, security, spring-boot
- Language: Java
- Homepage:
- Size: 84 KB
- Stars: 0
- Watchers: 0
- Forks: 0
- Open Issues: 0
-
Metadata Files:
- Readme: README.md
Awesome Lists containing this project
README
🏦 RiskShield Backend
A production-ready FinTech backend platform built with Spring Boot, designed for secure credit, risk, and user management systems.







🚀 Overview
RiskShield is a modular backend system that simulates a real-world financial platform, including:
Secure authentication & authorization
OTP-based verification
Credit scoring engine
Fraud detection system
Redis-based rate limiting & idempotency
Audit logging with AOP
Notification system with retry
Document management
Admin control panel
Analytics dashboard
🏗 Architecture
API Gateway Layer
├── Rate Limiter (Redis)
├── Idempotency (Redis)
├── JWT Security
Controller Layer
├── Auth / OTP
├── Credit / Fraud
├── Admin / Analytics
Service Layer
├── Business Logic
├── Scoring Engine
├── Fraud Engine
Data Layer
├── PostgreSQL (JPA)
├── Redis (cache + idempotency)
🔥 Key Features
✔ JWT Authentication & Role-based Authorization
✔ OTP Verification (hashed storage)
✔ Credit Scoring Engine
✔ Fraud Detection System
✔ Redis-based Rate Limiting
✔ Redis-based Idempotency
✔ Audit Logging (AOP)
✔ Notification System with Retry
✔ File Upload & Document Management
✔ Admin Panel APIs
✔ Analytics Dashboard
✔ Correlation ID for tracing
✔ Feature Toggle system
📦 API Modules
Module Description
Auth Registration, login, JWT, refresh tokens
OTP Email verification with expiration
Credit Risk scoring & eligibility
Fraud Transaction analysis & blacklist
Notification Email + retry mechanism
Audit AOP-based activity tracking
Documents File upload/download
Admin User & role management
Analytics Dashboard metrics
Rate Limit Redis-based protection
🛠 Tech Stack
Technology Usage
Java 17 Core language
Spring Boot 3.2 Backend framework
Spring Security Auth & access control
JWT Stateless authentication
PostgreSQL Main database
Redis Caching, rate limiting, idempotency
Docker Containerization
Spring AOP Audit logging
Spring Mail Email service
Actuator Monitoring
Swagger API documentation
🐳 Run with Docker
docker-compose up --build
⚙️ Environment Variables
DB_URL=jdbc:postgresql://localhost:5432/riskshield
DB_USERNAME=postgres
DB_PASSWORD=your_password
JWT_SECRET=your_secret_key
MAIL_HOST=smtp.gmail.com
MAIL_USERNAME=your@email.com
MAIL_PASSWORD=your_app_password
📖 API Docs
Swagger UI:
http://localhost:8080/swagger-ui.html
🔒 Security
JWT-based authentication
Role-based access control (RBAC)
Redis-backed rate limiting
Redis-backed idempotency
Hashed OTP & refresh tokens
Audit logging with correlation ID
📁 Project Structure
com.seabuhi.riskshield
├── common
├── config
├── module
├── security
💡 Why This Project?
This project demonstrates:
✔ Real-world backend architecture
✔ Security best practices
✔ Distributed system thinking (Redis)
✔ Clean code & modular design
✔ Production-ready mindset
📄 License
MIT License
👨💻 Author
Seabuhi Khazimzade