senke/veza
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions
veza/veza-docs/ORIGIN/ORIGIN_TECHNICAL_STACK.md

1632 lines
37 KiB
Markdown
Raw Normal View History

P0: stabilisation backend/chat/stream + nouvelle base migrations v1 Backend Go: - Remplacement complet des anciennes migrations par la base V1 alignée sur ORIGIN. - Durcissement global du parsing JSON (BindAndValidateJSON + RespondWithAppError). - Sécurisation de config.go, CORS, statuts de santé et monitoring. - Implémentation des transactions P0 (RBAC, duplication de playlists, social toggles). - Ajout d’un job worker structuré (emails, analytics, thumbnails) + tests associés. - Nouvelle doc backend : AUDIT_CONFIG, BACKEND_CONFIG, AUTH_PASSWORD_RESET, JOB_WORKER_*. Chat server (Rust): - Refonte du pipeline JWT + sécurité, audit et rate limiting avancé. - Implémentation complète du cycle de message (read receipts, delivered, edit/delete, typing). - Nettoyage des panics, gestion d’erreurs robuste, logs structurés. - Migrations chat alignées sur le schéma UUID et nouvelles features. Stream server (Rust): - Refonte du moteur de streaming (encoding pipeline + HLS) et des modules core. - Transactions P0 pour les jobs et segments, garanties d’atomicité. - Documentation détaillée de la pipeline (AUDIT_STREAM_*, DESIGN_STREAM_PIPELINE, TRANSACTIONS_P0_IMPLEMENTATION). Documentation & audits: - TRIAGE.md et AUDIT_STABILITY.md à jour avec l’état réel des 3 services. - Cartographie complète des migrations et des transactions (DB_MIGRATIONS_*, DB_TRANSACTION_PLAN, AUDIT_DB_TRANSACTIONS, TRANSACTION_TESTS_PHASE3). - Scripts de reset et de cleanup pour la lab DB et la V1. Ce commit fige l’ensemble du travail de stabilisation P0 (UUID, backend, chat et stream) avant les phases suivantes (Coherence Guardian, WS hardening, etc.).
2025-12-06 10:14:38 +00:00
# ORIGIN_TECHNICAL_STACK.md
## 📋 RÉSUMÉ EXÉCUTIF
Ce document définit la stack technique complète et définitive de la plateforme Veza. Chaque technologie, framework, et dépendance est spécifiée avec sa version exacte verrouillée pour les 24 prochains mois. Les choix sont justifiés, les alternatives rejetées documentées, et la stratégie de mise à jour définie (LTS only). Cette stack est **IMMUABLE** sauf changement critique de sécurité ou EOL forcé.
## 🎯 OBJECTIFS
### Objectif Principal
Verrouiller l'intégralité de la stack technique pour garantir stabilité, compatibilité, et prévisibilité sur 24 mois de développement sans déviations technologiques.
### Objectifs Secondaires
- Éliminer les débats technologiques récurrents
- Assurer la compatibilité entre composants
- Faciliter l'onboarding des nouveaux développeurs
- Minimiser la dette technique liée aux upgrades
- Garantir le support long terme (LTS)
## 📖 TABLE DES MATIÈRES
1. [Vue d'Ensemble](#1-vue-densemble)
2. [Backend Stack](#2-backend-stack)
3. [Rust Services Stack](#3-rust-services-stack)
4. [Frontend Stack](#4-frontend-stack)
5. [Mobile Stack](#5-mobile-stack)
6. [Desktop Stack](#6-desktop-stack)
7. [Infrastructure Stack](#7-infrastructure-stack)
8. [Database Stack](#8-database-stack)
9. [Message Queue & Cache](#9-message-queue--cache)
10. [Services Externes](#10-services-externes)
11. [DevOps & CI/CD Stack](#11-devops--cicd-stack)
12. [Monitoring & Observabilité](#12-monitoring--observabilité)
13. [Sécurité Stack](#13-sécurité-stack)
14. [Development Tools](#14-development-tools)
15. [Stratégie de Mise à Jour](#15-stratégie-de-mise-à-jour)
16. [Matrice de Compatibilité](#16-matrice-de-compatibilité)
## 🔒 RÈGLES IMMUABLES
1. **Versions EXACTES verrouillées** - pas de `^` ou `~` en production
2. **LTS ONLY** - uniquement versions Long Term Support
3. **NO experimental features** - pas de beta, alpha, RC
4. **NO breaking changes** - pas d'upgrade majeur pendant phases actives
5. **Security patches ONLY** - exceptions pour CVE critiques uniquement
6. **One stack per domain** - pas de mix Go/Node pour backend, etc.
7. **Proven technologies** - minimum 2 ans d'existence en production
8. **Active community** - > 1000 GitHub stars, documentation complète
9. **Commercial support available** - option support payant si nécessaire
10. **Docker compatibility** - toutes technologies containerisables
## 1. VUE D'ENSEMBLE
### 1.1 Stack Decision Matrix
| Domain | Technology | Version | Justification | Support Until |
|--------|-----------|---------|---------------|---------------|
| **Backend API** | Go | 1.23.8 | Performance, simplicité, concurrence | Feb 2027 |
| **Chat Server** | Rust | 1.75+ | Sécurité mémoire, perf temps réel | Rolling |
| **Stream Server** | Rust | 1.75+ | Zero-cost abstractions, streaming | Rolling |
| **Frontend Web** | React | 18.2.0 | Écosystème, Concurrent Mode | Ongoing |
| **Mobile** | React Native | 0.73.x | Code sharing, performance native | Rolling |
| **Desktop** | Electron | 28.x | Cross-platform, web stack reuse | Rolling |
| **Database** | PostgreSQL | 15.x | ACID, relations, performance | Nov 2027 |
| **Cache** | Redis | 7.x | In-memory, pub/sub | Jul 2026 |
| **Message Queue** | RabbitMQ | 3.12.x | Mature, routing flexible | Dec 2025 |
| **Container** | Docker | 24.x | Standard industrie | Rolling |
| **Orchestration** | Kubernetes | 1.28+ (future) | Scalabilité, ecosystem | 1 year |
### 1.2 Language Versions
```
Go: 1.23.8 (Released: Feb 2024, Support: Feb 2027)
Rust: 1.75.0+ (Rolling releases, stable channel)
TypeScript: 5.3.3 (Latest stable)
Node.js: 20.11.0 (LTS - Iron, Support: Apr 2026)
Python: 3.12.x (Scripts only, Support: Oct 2028)
```
### 1.3 Architecture Stack Summary
```
┌──────────────────────────────────────────────────────────┐
│ CLIENT TIER │
│ React 18 (Web) | React Native 0.73 (Mobile) | Electron │
└──────────────────────────────────────────────────────────┘
│ HTTPS/WSS
┌──────────────────────────────────────────────────────────┐
│ API GATEWAY TIER │
│ Traefik 2.10+ (Load Balancer) │
└──────────────────────────────────────────────────────────┘
┌──────────────────────────────────────────────────────────┐
│ APPLICATION TIER │
│ Go API 1.23 | Rust Chat | Rust Stream | Workers │
└──────────────────────────────────────────────────────────┘
┌───────────┴───────────┐
↓ ↓
┌─────────────────────┐ ┌────────────────────────┐
│ DATA TIER │ │ MESSAGE TIER │
│ PostgreSQL 15 │ │ RabbitMQ 3.12 │
│ Redis 7 │ │ (Event Bus) │
│ S3 (Object Storage) │ └────────────────────────┘
└─────────────────────┘
```
## 2. BACKEND STACK
### 2.1 Core
**Language**: Go 1.23.8
**Release**: February 2024
**Support**: Until February 2027
**Official Site**: https://go.dev/
#### Justification
- **Performance**: Compiled, garbage collected, excellent concurrency
- **Simplicité**: Simple syntax, fast compilation, single binary
- **Concurrence**: Goroutines et channels natifs
- **Tooling**: Built-in testing, formatting, documentation
- **Écosystème**: Mature, nombreuses libraries stables
- **Maintenance**: Backward compatibility garantie
#### Alternatives Rejetées
- **Node.js**: Single-threaded, performance inférieure, callback hell
- **Python**: GIL limitations, performance médiocre pour APIs haute charge
- **Java**: Trop verbeux, startup lent, memory footprint élevé
- **C++**: Trop complexe, unsafe, temps de développement long
### 2.2 Web Framework
**Framework**: Gin Web Framework
**Version**: 1.9.1
**Repo**: https://github.com/gin-gonic/gin
**Stars**: 74k+
```go
// go.mod
require github.com/gin-gonic/gin v1.9.1
```
#### Features
- HTTP/2 support
- Middleware chaining
- JSON validation
- Error management
- Performance: 40k req/s (benchmarks)
#### Alternatives Rejetées
- **Echo**: Moins mature, communauté plus petite
- **Fiber**: Basé sur Fasthttp (non standard library)
- **Chi**: Minimaliste mais manque features (validation, etc.)
- **Standard lib**: Trop bas niveau, verbose
### 2.3 ORM & Database
**ORM**: GORM
**Version**: 1.25.5
**Repo**: https://github.com/go-gorm/gorm
**Driver**: gorm.io/driver/postgres v1.5.4
```go
require (
gorm.io/gorm v1.25.5
gorm.io/driver/postgres v1.5.4
)
```
#### Features
- Associations (has one, has many, many to many)
- Hooks (before/after create, update, delete)
- Transactions
- Migrations
- Soft delete
- Preloading
#### Alternatives Rejetées
- **SQLBoiler**: Type-safe mais code generation complexe
- **Ent**: Facebook-backed mais trop opinionated
- **Database/sql**: Trop bas niveau, beaucoup de boilerplate
### 2.4 JWT & Authentication
**Library**: golang-jwt/jwt
**Version**: v5.3.0
**Repo**: https://github.com/golang-jwt/jwt
```go
require github.com/golang-jwt/jwt/v5 v5.3.0
```
#### Features
- RS256, HS256, ES256 algorithms
- Claims validation
- Token parsing et verification
- Keyfunc support
### 2.5 Validation
**Library**: go-playground/validator
**Version**: v10.16.0
**Repo**: https://github.com/go-playground/validator
```go
require github.com/go-playground/validator/v10 v10.16.0
```
#### Features
- Struct validation
- Custom validators
- Cross-field validation
- Internationalization
- 150+ built-in validators
### 2.6 Configuration
**Library**: spf13/viper
**Version**: v1.18.2
**Repo**: https://github.com/spf13/viper
```go
require github.com/spf13/viper v1.18.2
```
#### Features
- Multiple formats (JSON, YAML, ENV, TOML)
- Environment variables
- Remote config (Consul, etcd)
- Hot reload
- Default values
### 2.7 Logging
**Library**: uber-go/zap
**Version**: v1.27.0
**Repo**: https://github.com/uber-go/zap
```go
require go.uber.org/zap v1.27.0
```
#### Features
- Structured logging
- High performance (zero allocation)
- Leveled logging
- JSON output
- Sampling
#### Alternatives Rejetées
- **Logrus**: Plus lent que zap
- **Zerolog**: Moins de features, communauté plus petite
- **Standard log**: Pas de structured logging
### 2.8 UUID Generation
**Library**: google/uuid
**Version**: v1.6.0
```go
require github.com/google/uuid v1.6.0
```
### 2.9 HTTP Client
**Library**: Go standard library `net/http`
**Version**: Included in Go 1.23
#### For external APIs with retry/circuit breaker:
**Library**: hashicorp/go-retryablehttp
**Version**: v0.7.5
### 2.10 Testing
**Frameworks**:
- **Standard**: `testing` package (built-in)
- **Assertions**: testify/assert v1.9.0
- **Mocking**: golang/mock v1.6.0
```go
require (
github.com/stretchr/testify v1.9.0
github.com/golang/mock v1.6.0
)
```
### 2.11 Complete Backend go.mod
```go
module veza-backend-api
go 1.23.8
require (
// Web Framework
github.com/gin-gonic/gin v1.9.1
// Database
gorm.io/gorm v1.25.5
gorm.io/driver/postgres v1.5.4
github.com/lib/pq v1.10.9
// Cache & Session
github.com/redis/go-redis/v9 v9.16.0
// Message Queue
github.com/rabbitmq/amqp091-go v1.9.0
// Authentication & Security
github.com/golang-jwt/jwt/v5 v5.3.0
golang.org/x/crypto v0.41.0
// Validation
github.com/go-playground/validator/v10 v10.16.0
// Configuration
github.com/spf13/viper v1.18.2
github.com/joho/godotenv v1.5.1
// Logging
go.uber.org/zap v1.27.0
// Utilities
github.com/google/uuid v1.6.0
// External Services
github.com/aws/aws-sdk-go-v2 v1.24.0 // S3
github.com/stripe/stripe-go/v76 v76.16.0 // Payments
github.com/sendgrid/sendgrid-go v3.14.0 // Email
// Monitoring
github.com/prometheus/client_golang v1.18.0
// gRPC
google.golang.org/grpc v1.59.0
google.golang.org/protobuf v1.30.0
// Testing
github.com/stretchr/testify v1.9.0
github.com/golang/mock v1.6.0
)
```
## 3. RUST SERVICES STACK
### 3.1 Core
**Language**: Rust 1.75.0+
**Channel**: Stable
**Edition**: 2021
**Official Site**: https://www.rust-lang.org/
#### Justification
- **Sécurité mémoire**: Ownership model, zero-cost abstractions
- **Performance**: Proche du C/C++, sans garbage collection
- **Concurrence**: Fearless concurrency avec ownership
- **Type safety**: Strong type system, zero runtime errors
- **Tooling**: Cargo, rustfmt, clippy excellents
#### Alternatives Rejetées
- **C++**: Pas de sécurité mémoire, complexité
- **Go**: Garbage collection (latence imprévisible pour streaming)
- **Elixir**: Performance inférieure pour audio processing
### 3.2 Async Runtime
**Framework**: Tokio
**Version**: 1.35.x
**Repo**: https://github.com/tokio-rs/tokio
```toml
[dependencies]
tokio = { version = "1.35", features = ["full", "tracing"] }
```
#### Features
- Multi-threaded async runtime
- Work-stealing scheduler
- I/O drivers (TCP, UDP, Unix sockets)
- Timers and timeouts
- Signal handling
#### Alternatives Rejetées
- **async-std**: Moins de fonctionnalités, communauté plus petite
- **smol**: Trop minimaliste
- **Actix**: Runtime spécifique à actix-web
### 3.3 Web Framework
**Framework**: Axum
**Version**: 0.8.x (chat), 0.7.x (stream)
**Repo**: https://github.com/tokio-rs/axum
```toml
axum = { version = "0.8", features = ["macros", "ws"] }
```
#### Features
- Built on tower (middleware)
- Type-safe routing
- WebSocket support
- Multipart forms
- JSON/MessagePack
- Low overhead
#### Alternatives Rejetées
- **Actix-web**: Moins idiomatique, unsafe en interne
- **Rocket**: Compilation lente, async moins mature
- **Warp**: Complexité types, courbe apprentissage
### 3.4 WebSocket
**Library**: tokio-tungstenite
**Version**: 0.21.x
```toml
tokio-tungstenite = "0.21"
tungstenite = "0.21"
```
### 3.5 Database (Async)
**ORM**: SQLx
**Version**: 0.8.6 (chat), 0.7.x (stream)
```toml
sqlx = {
version = "0.8.6",
features = [
"postgres",
"runtime-tokio-native-tls",
"chrono",
"uuid",
"json",
"migrate",
"macros"
]
}
```
#### Features
- Compile-time checked queries
- Async/await native
- Migrations
- Type-safe
- Connection pooling
#### Alternatives Rejetées
- **Diesel**: Sync only, pas d'async
- **SeaORM**: Moins mature
- **tokio-postgres**: Trop bas niveau
### 3.6 Serialization
**Libraries**:
- **JSON**: serde_json 1.0
- **MessagePack**: rmp-serde 1.1
- **TOML**: toml 0.9
```toml
serde = { version = "1.0", features = ["derive"] }
serde_json = "1.0"
rmp-serde = "1.1"
toml = "0.9"
```
### 3.7 Authentication & Security
**Libraries**:
- **JWT**: jsonwebtoken 9.2
- **Password hashing**: bcrypt 0.17, argon2 0.5
- **Crypto**: ring 0.17
- **2FA**: totp-rs 5.4
```toml
jsonwebtoken = "9.2"
bcrypt = "0.17"
argon2 = "0.5"
ring = "0.17"
totp-rs = { version = "5.4", features = ["qr"] }
```
### 3.8 Logging & Tracing
**Framework**: tracing
**Version**: 0.1.x
```toml
tracing = "0.1"
tracing-subscriber = {
version = "0.3",
features = ["env-filter", "json", "chrono"]
}
tracing-appender = "0.2"
```
### 3.9 Error Handling
**Libraries**:
- **Macros**: thiserror 2.0
- **Context**: anyhow 1.0
```toml
thiserror = "2.0"
anyhow = "1.0"
```
### 3.10 Concurrency
**Libraries**:
- **HashMap concurrent**: dashmap 6.1
- **Mutex high-perf**: parking_lot 0.12
- **Channels**: flume 0.11
```toml
dashmap = "6.1"
parking_lot = "0.12"
flume = "0.11"
```
### 3.11 Audio Processing (Stream Server)
**Libraries**:
- **Codec universal**: symphonia 0.5
- **WAV**: hound 3.5
- **MP3**: minimp3 0.5
- **Resampling**: rubato 0.15
- **FFT**: rustfft 6.2
```toml
symphonia = { version = "0.5", features = ["all"] }
hound = "3.5"
minimp3 = "0.5"
rubato = "0.15"
rustfft = "6.2"
```
### 3.12 Complete Rust Cargo.toml (Chat Server)
```toml
[package]
name = "chat_server"
version = "0.2.0"
edition = "2021"
[dependencies]
# Runtime
tokio = { version = "1.35", features = ["full", "tracing"] }
axum = { version = "0.8", features = ["macros", "ws"] }
tokio-tungstenite = "0.21"
# Database & Cache
sqlx = { version = "0.8.6", features = ["postgres", "runtime-tokio-native-tls", "uuid", "chrono", "json", "migrate", "macros"] }
redis = { version = "0.32", features = ["tokio-comp", "connection-manager"] }
# Serialization
serde = { version = "1.0", features = ["derive"] }
serde_json = "1.0"
# Security
jsonwebtoken = "9.2"
bcrypt = "0.17"
ring = "0.17"
# Logging
tracing = "0.1"
tracing-subscriber = { version = "0.3", features = ["env-filter", "json", "chrono"] }
# Concurrency
dashmap = "6.1"
parking_lot = "0.12"
# Utilities
uuid = { version = "1.6", features = ["v4", "serde"] }
chrono = { version = "0.4", features = ["serde"] }
anyhow = "1.0"
thiserror = "2.0"
```
## 4. FRONTEND STACK
### 4.1 Core
**Framework**: React
**Version**: 18.2.0
**Official Site**: https://react.dev/
#### Justification
- **Écosystème**: Largest ecosystem, nombreuses libraries
- **Performance**: Concurrent Mode, Suspense
- **Communauté**: Énorme, documentation complète
- **Hiring**: Facile de recruter des devs React
- **Stability**: Mature, Facebook-backed
#### Alternatives Rejetées
- **Vue.js**: Écosystème plus petit, moins de ressources
- **Svelte**: Trop récent, écosystème limité
- **Angular**: Trop lourd, courbe apprentissage raide
- **Solid.js**: Trop nouveau, risqué
### 4.2 TypeScript
**Language**: TypeScript
**Version**: 5.3.3
**Official Site**: https://www.typescriptlang.org/
```json
{
"devDependencies": {
"typescript": "5.3.3"
}
}
```
#### Configuration (tsconfig.json)
```json
{
"compilerOptions": {
"target": "ES2022",
"lib": ["ES2022", "DOM", "DOM.Iterable"],
"jsx": "react-jsx",
"module": "ESNext",
"moduleResolution": "bundler",
"resolveJsonModule": true,
"allowImportingTsExtensions": true,
"strict": true,
"noUnusedLocals": true,
"noUnusedParameters": true,
"noFallthroughCasesInSwitch": true,
"skipLibCheck": true
}
}
```
### 4.3 Build Tool
**Tool**: Vite
**Version**: 7.1.5
**Official Site**: https://vitejs.dev/
```json
{
"devDependencies": {
"vite": "7.1.5",
"@vitejs/plugin-react": "4.2.1"
}
}
```
#### Justification
- **Performance**: ESBuild-based, ultra-fast
- **HMR**: Hot Module Replacement instantané
- **DX**: Developer experience excellent
- **Modern**: ESM native, pas de legacy
#### Alternatives Rejetées
- **Webpack**: Lent, configuration complexe
- **Parcel**: Moins performant que Vite
- **Rollup**: Moins de features DX
### 4.4 Routing
**Library**: React Router
**Version**: 6.22.0
```json
{
"dependencies": {
"react-router-dom": "6.22.0"
}
}
```
### 4.5 State Management
**Library**: Zustand
**Version**: 4.5.0
```json
{
"dependencies": {
"zustand": "4.5.0"
}
}
```
#### Justification
- **Simplicité**: API minimale, pas de boilerplate
- **Performance**: Re-renders optimisés
- **TypeScript**: Excellent support
- **Size**: 1KB minified
#### Alternatives Rejetées
- **Redux**: Trop de boilerplate
- **MobX**: Plus complexe, moins populaire
- **Recoil**: Facebook expérimental, moins stable
- **Jotai**: Plus récent, écosystème limité
### 4.6 Data Fetching
**Library**: TanStack Query (React Query)
**Version**: 5.17.0
```json
{
"dependencies": {
"@tanstack/react-query": "5.17.0"
}
}
```
#### Features
- Caching automatique
- Background refetching
- Optimistic updates
- Pagination
- Infinite scroll
- Devtools
### 4.7 HTTP Client
**Library**: Axios
**Version**: 1.6.7
```json
{
"dependencies": {
"axios": "1.6.7"
}
}
```
#### Alternatives Rejetées
- **Fetch API**: Pas de interceptors, moins de features
- **ky**: Moins mature
### 4.8 Forms
**Library**: React Hook Form
**Version**: 7.49.3
**Validation**: Zod 3.25.76
```json
{
"dependencies": {
"react-hook-form": "7.49.3",
"zod": "3.25.76",
"@hookform/resolvers": "3.3.4"
}
}
```
#### Features
- Uncontrolled forms (performance)
- Minimal re-renders
- Built-in validation
- TypeScript support
#### Alternatives Rejetées
- **Formik**: Plus lent, plus de re-renders
- **React Final Form**: Moins populaire
### 4.9 UI Components
**Base Library**: Radix UI
**Versions**: Latest stable
```json
{
"dependencies": {
"@radix-ui/react-avatar": "1.0.4",
"@radix-ui/react-dialog": "1.0.5",
"@radix-ui/react-dropdown-menu": "2.0.6",
"@radix-ui/react-label": "2.0.2",
"@radix-ui/react-select": "2.0.0",
"@radix-ui/react-tabs": "1.0.4",
"@radix-ui/react-toast": "1.1.5"
}
}
```
#### Justification
- **Unstyled**: Total control styling
- **Accessible**: WAI-ARIA compliant
- **Composable**: Flexible architecture
### 4.10 Styling
**Framework**: Tailwind CSS
**Version**: 4.0.0
```json
{
"devDependencies": {
"tailwindcss": "4.0.0",
"@tailwindcss/postcss": "4.0.0"
}
}
```
**Utilities**:
- **clsx**: 2.1.0 (conditional classes)
- **tailwind-merge**: 2.2.1 (merge classes)
#### Alternatives Rejetées
- **CSS Modules**: Trop verbeux
- **Styled Components**: Runtime overhead
- **Emotion**: Moins performant que Tailwind
- **Vanilla CSS**: Pas de utility-first
### 4.11 Icons
**Library**: Lucide React
**Version**: 0.321.0
```json
{
"dependencies": {
"lucide-react": "0.321.0"
}
}
```
### 4.12 Internationalization
**Library**: i18next + react-i18next
**Versions**: i18next 25.5.2, react-i18next 15.7.3
```json
{
"dependencies": {
"i18next": "25.5.2",
"react-i18next": "15.7.3",
"i18next-browser-languagedetector": "8.2.0"
}
}
```
### 4.13 Testing
**Unit Tests**: Vitest
**Version**: 3.2.4
```json
{
"devDependencies": {
"vitest": "3.2.4",
"@testing-library/react": "14.2.1",
"@testing-library/jest-dom": "6.4.2",
"@testing-library/user-event": "14.5.2",
"jsdom": "24.0.0"
}
}
```
**E2E Tests**: Playwright
**Version**: 1.41.2
```json
{
"devDependencies": {
"@playwright/test": "1.41.2"
}
}
```
### 4.14 Code Quality
**Linter**: ESLint
**Version**: 9.0.0
```json
{
"devDependencies": {
"eslint": "9.0.0",
"@typescript-eslint/eslint-plugin": "8.0.0",
"@typescript-eslint/parser": "8.0.0",
"eslint-plugin-react": "7.37.0",
"eslint-plugin-react-hooks": "5.0.0",
"eslint-plugin-jsx-a11y": "6.10.2"
}
}
```
**Formatter**: Prettier
**Version**: 3.2.5
### 4.15 Complete package.json
```json
{
"name": "veza-frontend",
"version": "1.0.0",
"type": "module",
"scripts": {
"dev": "vite",
"build": "tsc -b && vite build",
"preview": "vite preview",
"test": "vitest",
"test:e2e": "playwright test",
"lint": "eslint . --ext ts,tsx",
"format": "prettier --write \"src/**/*.{ts,tsx,js,jsx,json,css,md}\""
},
"dependencies": {
"react": "18.2.0",
"react-dom": "18.2.0",
"react-router-dom": "6.22.0",
"@tanstack/react-query": "5.17.0",
"axios": "1.6.7",
"zustand": "4.5.0",
"react-hook-form": "7.49.3",
"zod": "3.25.76",
"@hookform/resolvers": "3.3.4",
"i18next": "25.5.2",
"react-i18next": "15.7.3",
"i18next-browser-languagedetector": "8.2.0",
"lucide-react": "0.321.0",
"clsx": "2.1.0",
"tailwind-merge": "2.2.1",
"@radix-ui/react-avatar": "1.0.4",
"@radix-ui/react-dialog": "1.0.5",
"@radix-ui/react-dropdown-menu": "2.0.6",
"@radix-ui/react-label": "2.0.2",
"@radix-ui/react-select": "2.0.0",
"@radix-ui/react-tabs": "1.0.4",
"@radix-ui/react-toast": "1.1.5"
},
"devDependencies": {
"@vitejs/plugin-react": "4.2.1",
"typescript": "5.3.3",
"vite": "7.1.5",
"tailwindcss": "4.0.0",
"@tailwindcss/postcss": "4.0.0",
"eslint": "9.0.0",
"@typescript-eslint/eslint-plugin": "8.0.0",
"@typescript-eslint/parser": "8.0.0",
"eslint-plugin-react": "7.37.0",
"eslint-plugin-react-hooks": "5.0.0",
"eslint-plugin-jsx-a11y": "6.10.2",
"eslint-plugin-react-refresh": "0.4.5",
"prettier": "3.2.5",
"vitest": "3.2.4",
"@testing-library/react": "14.2.1",
"@testing-library/jest-dom": "6.4.2",
"@testing-library/user-event": "14.5.2",
"jsdom": "24.0.0",
"@playwright/test": "1.41.2",
"msw": "2.11.2"
}
}
```
## 5. MOBILE STACK
**Framework**: React Native
**Version**: 0.73.x (latest stable)
```json
{
"dependencies": {
"react": "18.2.0",
"react-native": "0.73.4"
}
}
```
### Key Libraries
- **Navigation**: @react-navigation/native 6.x
- **Storage**: @react-native-async-storage/async-storage 1.x
- **Networking**: Same as web (axios)
- **State**: Same as web (zustand)
## 6. DESKTOP STACK
**Framework**: Electron
**Version**: 28.x
```json
{
"devDependencies": {
"electron": "28.2.0",
"electron-builder": "24.9.1"
}
}
```
### Features
- Reuse React web codebase
- Native menu, notifications
- Auto-update (electron-updater)
- Tray icon support
## 7. INFRASTRUCTURE STACK
### 7.1 Containerization
**Tool**: Docker
**Version**: 24.0.x
**Compose**: 2.23.x
```yaml
# docker-compose.yml version
version: '3.8'
```
### 7.2 Orchestration (Future)
**Tool**: Kubernetes
**Version**: 1.28+ (when needed, Phase 7)
**Distribution**: Amazon EKS or Google GKE
### 7.3 Load Balancer
**Tool**: Traefik
**Version**: 2.10.x
```yaml
image: traefik:v2.10
```
#### Features
- Automatic HTTPS (Let's Encrypt)
- Docker labels configuration
- Dashboard
- Metrics
#### Alternatives Rejetées
- **NGINX**: Configuration moins dynamique
- **HAProxy**: Pas de service discovery automatique
- **Envoy**: Trop complexe pour nos besoins
### 7.4 Reverse Proxy (Prod)
**Tool**: NGINX
**Version**: 1.25.x (mainline)
## 8. DATABASE STACK
### 8.1 Primary Database
**Database**: PostgreSQL
**Version**: 15.x (LTS)
**Support**: Until November 2027
**Official Site**: https://www.postgresql.org/
#### Justification
- **ACID**: Full transactional support
- **Relations**: Complex foreign keys, joins
- **Performance**: Query optimizer excellent
- **Features**: JSON/JSONB, full-text search, partitioning
- **Extensions**: PostGIS, pgcrypto, pg_trgm
- **Stability**: 30+ years, mature
#### Alternatives Rejetées
- **MySQL**: Moins de features, moins performant
- **MongoDB**: Pas ACID, relations difficiles
- **CockroachDB**: Trop jeune, complexe
- **Cassandra**: Over-engineering, trop complexe
### 8.2 PostgreSQL Extensions
```sql
-- Enabled extensions
CREATE EXTENSION IF NOT EXISTS "uuid-ossp"; -- UUID generation
CREATE EXTENSION IF NOT EXISTS "pgcrypto"; -- Encryption
CREATE EXTENSION IF NOT EXISTS "pg_trgm"; -- Trigram similarity
CREATE EXTENSION IF NOT EXISTS "unaccent"; -- Remove accents
CREATE EXTENSION IF NOT EXISTS "hstore"; -- Key-value store
```
### 8.3 Connection Pooling
**Tool**: PgBouncer
**Version**: 1.21.x
```ini
[pgbouncer]
pool_mode = transaction
max_client_conn = 1000
default_pool_size = 25
```
### 8.4 Database Migrations
**Backend**: GORM Auto-Migrate + SQL files
**Rust**: SQLx migrations
```bash
# GORM
db.AutoMigrate(&User{}, &Track{}, &Playlist{})
# SQLx
sqlx migrate run
```
## 9. MESSAGE QUEUE & CACHE
### 9.1 Cache & Session Store
**Tool**: Redis
**Version**: 7.2.x
**Support**: Until July 2026
**Official Site**: https://redis.io/
#### Configuration
- **Mode**: Cluster (3 masters, 3 replicas)
- **Persistence**: AOF + RDB
- **Eviction**: allkeys-lru
```conf
# redis.conf
maxmemory 4gb
maxmemory-policy allkeys-lru
save 900 1
save 300 10
save 60 10000
appendonly yes
```
#### Alternatives Rejetées
- **Memcached**: Moins de features, pas de pub/sub
- **Hazelcast**: Trop complexe, Java-centric
### 9.2 Message Queue
**Tool**: RabbitMQ
**Version**: 3.12.x
**Support**: Until December 2025
**Official Site**: https://www.rabbitmq.com/
#### Configuration
- **Exchanges**: Topic, Fanout
- **Queues**: Durable, auto-delete false
- **Message TTL**: 24 hours
- **Dead Letter Exchange**: Yes
```yaml
# rabbitmq.conf
management.tcp.port = 15672
listeners.tcp.default = 5672
```
#### Alternatives Rejetées
- **Apache Kafka**: Over-engineering, trop complexe pour début
- **AWS SQS**: Vendor lock-in
- **NATS**: Moins mature pour persistence
### 9.3 Search Engine (Future)
**Tool**: Elasticsearch
**Version**: 8.x (Phase 5)
```yaml
image: docker.elastic.co/elasticsearch/elasticsearch:8.11.0
```
## 10. SERVICES EXTERNES
### 10.1 Object Storage
**Provider**: AWS S3
**SDK**: aws-sdk-go-v2 v1.24.0 (Go)
```go
require github.com/aws/aws-sdk-go-v2 v1.24.0
```
**Alternative**: MinIO (self-hosted, S3-compatible)
### 10.2 CDN
**Provider**: CloudFlare
**Features**:
- Edge caching
- DDoS protection
- Web Application Firewall
- Analytics
**Alternative**: AWS CloudFront
### 10.3 Payments
**Provider**: Stripe
**SDK**: stripe-go v76.16.0
```go
require github.com/stripe/stripe-go/v76 v76.16.0
```
**Features**:
- Checkout
- Subscriptions
- Stripe Connect (marketplace)
- Webhooks
### 10.4 Email
**Provider**: SendGrid
**SDK**: sendgrid-go v3.14.0
```go
require github.com/sendgrid/sendgrid-go v3.14.0
```
**Alternative**: AWS SES
### 10.5 SMS (Optional)
**Provider**: Twilio
**SDK**: twilio-go v1.20.0
### 10.6 Error Tracking
**Tool**: Sentry
**SDK**: sentry-go v0.27.0 (Go), @sentry/react 7.x (Frontend)
```go
require github.com/getsentry/sentry-go v0.27.0
```
```json
{
"dependencies": {
"@sentry/react": "7.100.0"
}
}
```
## 11. DEVOPS & CI/CD STACK
### 11.1 Version Control
**Tool**: Git
**Hosting**: GitHub
**Workflow**: GitHub Flow (feature branches)
### 11.2 CI/CD
**Tool**: GitHub Actions
```yaml
# .github/workflows/backend-ci.yml
name: Backend CI
on: [push, pull_request]
jobs:
test:
runs-on: ubuntu-22.04
services:
postgres:
image: postgres:15
redis:
image: redis:7
steps:
- uses: actions/checkout@v4
- uses: actions/setup-go@v5
with:
go-version: '1.23.8'
- run: go test ./...
```
### 11.3 Infrastructure as Code
**Tool**: Ansible
**Version**: 2.15.x
```yaml
# playbooks/deploy.yml
- hosts: production
roles:
- docker
- postgresql
- redis
- backend-api
```
**Future**: Terraform (Phase 7, Kubernetes)
### 11.4 Secret Management
**Tool**: Environment Variables (.env)
**Production**: AWS Secrets Manager ou HashiCorp Vault (Phase 7)
```bash
# .env.example
DATABASE_URL=postgres://...
REDIS_URL=redis://...
JWT_SECRET=...
STRIPE_SECRET_KEY=...
```
### 11.5 Container Registry
**Registry**: GitHub Container Registry (ghcr.io)
**Alternative**: Docker Hub
## 12. MONITORING & OBSERVABILITÉ
### 12.1 Metrics
**Tool**: Prometheus
**Version**: 2.48.x
```yaml
image: prom/prometheus:v2.48.0
```
**Client Libraries**:
- **Go**: prometheus/client_golang v1.18.0
- **Rust**: prometheus 0.13
### 12.2 Visualization
**Tool**: Grafana
**Version**: 10.2.x
```yaml
image: grafana/grafana:10.2.0
```
### 12.3 Logging
**Tool**: Loki + Promtail
**Version**: Loki 2.9.x
```yaml
image: grafana/loki:2.9.0
image: grafana/promtail:2.9.0
```
### 12.4 Distributed Tracing
**Tool**: Jaeger
**Version**: 1.52.x
```yaml
image: jaegertracing/all-in-one:1.52
```
**Client Libraries**:
- **Go**: OpenTelemetry go.opentelemetry.io/otel v1.21.0
### 12.5 Alerting
**Tool**: Prometheus Alertmanager
**Version**: 0.26.x
```yaml
image: prom/alertmanager:v0.26.0
```
### 12.6 Uptime Monitoring
**Tool**: UptimeRobot (external)
**Alternative**: BetterUptime, StatusCake
## 13. SÉCURITÉ STACK
### 13.1 SSL/TLS
**Certificates**: Let's Encrypt
**ACME Client**: Traefik built-in
### 13.2 Secrets Management
**Development**: dotenv files
**Production**: AWS Secrets Manager (Phase 6+)
### 13.3 Vulnerability Scanning
**Tools**:
- **Go**: govulncheck
- **Rust**: cargo audit
- **Node.js**: npm audit
- **Docker**: trivy
```bash
# Scan workflows
go run golang.org/x/vuln/cmd/govulncheck ./...
cargo audit
npm audit
trivy image veza/backend-api:latest
```
### 13.4 Static Analysis
**Tools**:
- **Go**: golangci-lint 1.55.x
- **Rust**: clippy (built-in)
- **TypeScript**: ESLint
- **SonarQube**: Community Edition (optional)
### 13.5 Dependency Management
**Tools**:
- **Go**: Dependabot (GitHub)
- **Rust**: cargo-outdated
- **Node.js**: Dependabot + Renovate
## 14. DEVELOPMENT TOOLS
### 14.1 IDEs & Editors
**Recommended**:
- **VSCode**: Latest (with Go, Rust, ESLint extensions)
- **GoLand**: 2024.x (JetBrains)
- **RustRover**: 2024.x (JetBrains)
### 14.2 API Testing
**Tool**: Insomnia
**Version**: 2023.x
**Alternative**: Postman
### 14.3 Database Client
**Tool**: DBeaver Community
**Version**: 23.x
**Alternative**: pgAdmin 4
### 14.4 Git GUI
**Tools**:
- **GitKraken** (cross-platform)
- **Sourcetree** (Windows/Mac)
- **Git CLI** (recommended)
## 15. STRATÉGIE DE MISE À JOUR
### 15.1 Politique Générale
| Type | Action | Fréquence | Approval |
|------|--------|-----------|----------|
| **Security patches** | Update immédiat | As needed | Auto-approved |
| **Minor versions** | Update quarterly | Q1, Q2, Q3, Q4 | Tech Lead |
| **Major versions** | Evaluate, plan migration | Yearly | CTO + Team |
| **LTS renewals** | Plan before EOL | 6 months before | CTO |
### 15.2 Dependency Updates
```bash
# Go
go get -u ./...
go mod tidy
# Rust
cargo update
# Node.js
npm update
npm outdated
```
### 15.3 Version Pinning
**Production**: Versions EXACTES verrouillées
```go
// go.mod - EXACT versions
require github.com/gin-gonic/gin v1.9.1 // NOT v1.9 or ^1.9.1
```
```toml
# Cargo.toml - EXACT versions
tokio = "=1.35.0" # NOT "1.35" or "^1.35"
```
```json
// package.json - EXACT versions
{
"dependencies": {
"react": "18.2.0" // NOT ^18.2.0 or ~18.2.0
}
}
```
### 15.4 Breaking Changes
**Process**:
1. **Identification**: Automated alerts (Dependabot, Renovate)
2. **Evaluation**: Impact analysis, migration effort
3. **RFC**: Formal RFC si changement > 2 semaines effort
4. **Planning**: Assignation phase (hors critical path)
5. **Migration**: Feature branch, tests complets
6. **Rollout**: Staging first, puis production
### 15.5 EOL (End-of-Life) Management
**Critical Components EOL Dates**:
| Component | Version | EOL Date | Action Plan |
|-----------|---------|----------|-------------|
| Go | 1.23.x | Feb 2027 | Upgrade to 1.24 in Q4 2026 |
| PostgreSQL | 15.x | Nov 2027 | Upgrade to 16.x in Q3 2027 |
| Node.js | 20.x | Apr 2026 | Upgrade to 22 LTS in Q1 2026 |
| Redis | 7.2.x | Jul 2026 | Upgrade to 7.4 in Q2 2026 |
| RabbitMQ | 3.12.x | Dec 2025 | Upgrade to 3.13 in Q4 2025 |
**Monitoring**: Automated tracking avec endoflife.date API
## 16. MATRICE DE COMPATIBILITÉ
### 16.1 Inter-Service Compatibility
| Component A | Version | Component B | Version | Compatible | Notes |
|-------------|---------|-------------|---------|------------|-------|
| Go API | 1.23.8 | PostgreSQL | 15.x | ✅ Yes | lib/pq 1.10.9 |
| Go API | 1.23.8 | Redis | 7.2.x | ✅ Yes | go-redis 9.16.0 |
| Rust Chat | 1.75 | PostgreSQL | 15.x | ✅ Yes | SQLx 0.8.6 |
| Rust Stream | 1.75 | Redis | 7.2.x | ✅ Yes | redis-rs 0.25 |
| React | 18.2 | Vite | 7.1.5 | ✅ Yes | @vitejs/plugin-react 4.2.1 |
| Electron | 28.x | React | 18.2 | ✅ Yes | Electron React Boilerplate |
### 16.2 OS Compatibility
| OS | Support | Notes |
|----|---------|-------|
| **Linux** | Primary | Ubuntu 22.04 LTS (production) |
| **macOS** | Development | macOS 13+ (Ventura) |
| **Windows** | Development | Windows 11 + WSL2 |
### 16.3 Browser Compatibility
| Browser | Version | Support | Notes |
|---------|---------|---------|-------|
| Chrome | 100+ | ✅ Full | Recommended |
| Firefox | 100+ | ✅ Full | |
| Safari | 16+ | ✅ Full | macOS/iOS |
| Edge | 100+ | ✅ Full | Chromium-based |
| Opera | 85+ | ⚠️ Partial | Not officially tested |
| IE11 | N/A | ❌ No | Deprecated |
## ✅ CHECKLIST DE VALIDATION
### Backend Stack
- [ ] Go 1.23.8 installed
- [ ] All go.mod dependencies locked exact versions
- [ ] PostgreSQL 15.x accessible
- [ ] Redis 7.x accessible
- [ ] RabbitMQ 3.12.x accessible
- [ ] S3-compatible storage configured
- [ ] Stripe API keys configured
- [ ] SendGrid API key configured
### Rust Services Stack
- [ ] Rust 1.75+ installed (stable channel)
- [ ] All Cargo.toml dependencies locked
- [ ] SQLx CLI installed
- [ ] Database migrations tested
- [ ] WebSocket server compiles
- [ ] Stream server compiles
### Frontend Stack
- [ ] Node.js 20.11 LTS installed
- [ ] All package.json dependencies exact versions
- [ ] TypeScript 5.3.3
- [ ] Vite build successful
- [ ] Tests passing (Vitest)
- [ ] E2E tests passing (Playwright)
### Infrastructure
- [ ] Docker 24.x installed
- [ ] Docker Compose 2.23.x installed
- [ ] Traefik configured
- [ ] Let's Encrypt certificates working
- [ ] Prometheus + Grafana accessible
- [ ] Loki logging working
## 📊 MÉTRIQUES DE SUCCÈS
### Stability
- **Breaking changes**: 0 per quarter (except security)
- **Build failures**: < 1% of builds
- **Dependency conflicts**: 0
- **Security vulnerabilities**: 0 critical, < 5 high
### Performance
- **Build time backend**: < 2 minutes
- **Build time frontend**: < 1 minute
- **Docker image size backend**: < 50MB
- **Docker image size frontend**: < 100MB
- **Dependencies install time**: < 5 minutes
### Maintenance
- **Outdated dependencies**: < 10%
- **EOL components**: 0
- **Update cycles**: Quarterly
- **Documentation coverage**: 100% for stack changes
## 🔄 HISTORIQUE DES VERSIONS
| Version | Date | Changements |
|---------|------|-------------|
| 1.0.0 | 2025-11-02 | Version initiale - Stack technique verrouillée |
---
## ⚠️ AVERTISSEMENT
**CE DOCUMENT EST IMMUABLE**
La stack technique définie ici est **VERROUILLÉE POUR 24 MOIS**. Toute modification nécessite:
1. **RFC technique** avec justification (security, EOL, performance critique)
2. **Impact analysis** complet (migration effort, breaking changes, testing)
3. **Approval CTO** + Tech Lead
4. **Migration plan** détaillé
5. **Update** tous documents ORIGIN impactés
6. **Team training** si nouveau tech
**Seules exceptions autorisées**:
- **Security patches** (CVE critiques)
- **EOL forcé** (6 mois avant end-of-life)
- **Impossibilité technique** (bug bloquant non-résolu)
**Interdictions absolues**:
- Changement de langage (Go → Node, Rust → Go, etc.)
- Changement de framework principal (React → Vue, etc.)
- Ajout stack non-approuvée (nouvelle BDD, nouveau langage)
- Downgrade de version (sauf rollback urgence)
---
**Document créé par**: CTO + Architecture Team
**Date de création**: 2025-11-02
**Prochaine révision**: Après Phase 4 (Q3 2026)
**Propriétaire**: CTO
**Statut**: ✅ **APPROUVÉ ET VERROUILLÉ**
Reference in a new issue Copy permalink