senke/veza

okinrev b7955a680c P0: stabilisation backend/chat/stream + nouvelle base migrations v1

Backend Go:
- Remplacement complet des anciennes migrations par la base V1 alignée sur ORIGIN.
- Durcissement global du parsing JSON (BindAndValidateJSON + RespondWithAppError).
- Sécurisation de config.go, CORS, statuts de santé et monitoring.
- Implémentation des transactions P0 (RBAC, duplication de playlists, social toggles).
- Ajout d’un job worker structuré (emails, analytics, thumbnails) + tests associés.
- Nouvelle doc backend : AUDIT_CONFIG, BACKEND_CONFIG, AUTH_PASSWORD_RESET, JOB_WORKER_*.

Chat server (Rust):
- Refonte du pipeline JWT + sécurité, audit et rate limiting avancé.
- Implémentation complète du cycle de message (read receipts, delivered, edit/delete, typing).
- Nettoyage des panics, gestion d’erreurs robuste, logs structurés.
- Migrations chat alignées sur le schéma UUID et nouvelles features.

Stream server (Rust):
- Refonte du moteur de streaming (encoding pipeline + HLS) et des modules core.
- Transactions P0 pour les jobs et segments, garanties d’atomicité.
- Documentation détaillée de la pipeline (AUDIT_STREAM_*, DESIGN_STREAM_PIPELINE, TRANSACTIONS_P0_IMPLEMENTATION).

Documentation & audits:
- TRIAGE.md et AUDIT_STABILITY.md à jour avec l’état réel des 3 services.
- Cartographie complète des migrations et des transactions (DB_MIGRATIONS_*, DB_TRANSACTION_PLAN, AUDIT_DB_TRANSACTIONS, TRANSACTION_TESTS_PHASE3).
- Scripts de reset et de cleanup pour la lab DB et la V1.

Ce commit fige l’ensemble du travail de stabilisation P0 (UUID, backend, chat et stream) avant les phases suivantes (Coherence Guardian, WS hardening, etc.).

2025-12-06 11:14:38 +01:00

37 KiB

Raw Blame History

ORIGIN_TECHNICAL_STACK.md

📋 RÉSUMÉ EXÉCUTIF

Ce document définit la stack technique complète et définitive de la plateforme Veza. Chaque technologie, framework, et dépendance est spécifiée avec sa version exacte verrouillée pour les 24 prochains mois. Les choix sont justifiés, les alternatives rejetées documentées, et la stratégie de mise à jour définie (LTS only). Cette stack est IMMUABLE sauf changement critique de sécurité ou EOL forcé.

🎯 OBJECTIFS

Objectif Principal

Verrouiller l'intégralité de la stack technique pour garantir stabilité, compatibilité, et prévisibilité sur 24 mois de développement sans déviations technologiques.

Objectifs Secondaires

Éliminer les débats technologiques récurrents
Assurer la compatibilité entre composants
Faciliter l'onboarding des nouveaux développeurs
Minimiser la dette technique liée aux upgrades
Garantir le support long terme (LTS)

📖 TABLE DES MATIÈRES

Vue d'Ensemble
Backend Stack
Rust Services Stack
Frontend Stack
Mobile Stack
Desktop Stack
Infrastructure Stack
Database Stack
Message Queue & Cache
Services Externes
DevOps & CI/CD Stack
Monitoring & Observabilité
Sécurité Stack
Development Tools
Stratégie de Mise à Jour
Matrice de Compatibilité

🔒 RÈGLES IMMUABLES

Versions EXACTES verrouillées - pas de ^ ou ~ en production
LTS ONLY - uniquement versions Long Term Support
NO experimental features - pas de beta, alpha, RC
NO breaking changes - pas d'upgrade majeur pendant phases actives
Security patches ONLY - exceptions pour CVE critiques uniquement
One stack per domain - pas de mix Go/Node pour backend, etc.
Proven technologies - minimum 2 ans d'existence en production
Active community - > 1000 GitHub stars, documentation complète
Commercial support available - option support payant si nécessaire
Docker compatibility - toutes technologies containerisables

1. VUE D'ENSEMBLE

1.1 Stack Decision Matrix

Domain	Technology	Version	Justification	Support Until
Backend API	Go	1.23.8	Performance, simplicité, concurrence	Feb 2027
Chat Server	Rust	1.75+	Sécurité mémoire, perf temps réel	Rolling
Stream Server	Rust	1.75+	Zero-cost abstractions, streaming	Rolling
Frontend Web	React	18.2.0	Écosystème, Concurrent Mode	Ongoing
Mobile	React Native	0.73.x	Code sharing, performance native	Rolling
Desktop	Electron	28.x	Cross-platform, web stack reuse	Rolling
Database	PostgreSQL	15.x	ACID, relations, performance	Nov 2027
Cache	Redis	7.x	In-memory, pub/sub	Jul 2026
Message Queue	RabbitMQ	3.12.x	Mature, routing flexible	Dec 2025
Container	Docker	24.x	Standard industrie	Rolling
Orchestration	Kubernetes	1.28+ (future)	Scalabilité, ecosystem	1 year

1.2 Language Versions

Go:         1.23.8    (Released: Feb 2024, Support: Feb 2027)
Rust:       1.75.0+   (Rolling releases, stable channel)
TypeScript: 5.3.3     (Latest stable)
Node.js:    20.11.0   (LTS - Iron, Support: Apr 2026)
Python:     3.12.x    (Scripts only, Support: Oct 2028)

1.3 Architecture Stack Summary

┌──────────────────────────────────────────────────────────┐
│                     CLIENT TIER                          │
│  React 18 (Web) | React Native 0.73 (Mobile) | Electron │
└──────────────────────────────────────────────────────────┘
                            │
                            │ HTTPS/WSS
                            ↓
┌──────────────────────────────────────────────────────────┐
│                   API GATEWAY TIER                       │
│              Traefik 2.10+ (Load Balancer)               │
└──────────────────────────────────────────────────────────┘
                            │
                            ↓
┌──────────────────────────────────────────────────────────┐
│                   APPLICATION TIER                       │
│  Go API 1.23 | Rust Chat | Rust Stream | Workers        │
└──────────────────────────────────────────────────────────┘
                            │
                ┌───────────┴───────────┐
                ↓                       ↓
┌─────────────────────┐    ┌────────────────────────┐
│    DATA TIER        │    │   MESSAGE TIER         │
│ PostgreSQL 15       │    │ RabbitMQ 3.12          │
│ Redis 7             │    │ (Event Bus)            │
│ S3 (Object Storage) │    └────────────────────────┘
└─────────────────────┘

2. BACKEND STACK

2.1 Core

Language: Go 1.23.8
Release: February 2024
Support: Until February 2027
Official Site: https://go.dev/

Justification

Performance: Compiled, garbage collected, excellent concurrency
Simplicité: Simple syntax, fast compilation, single binary
Concurrence: Goroutines et channels natifs
Tooling: Built-in testing, formatting, documentation
Écosystème: Mature, nombreuses libraries stables
Maintenance: Backward compatibility garantie

Alternatives Rejetées

Node.js: Single-threaded, performance inférieure, callback hell
Python: GIL limitations, performance médiocre pour APIs haute charge
Java: Trop verbeux, startup lent, memory footprint élevé
C++: Trop complexe, unsafe, temps de développement long

2.2 Web Framework

Framework: Gin Web Framework
Version: 1.9.1
Repo: https://github.com/gin-gonic/gin
Stars: 74k+

// go.mod
require github.com/gin-gonic/gin v1.9.1

Features

HTTP/2 support
Middleware chaining
JSON validation
Error management
Performance: 40k req/s (benchmarks)

Alternatives Rejetées

Echo: Moins mature, communauté plus petite
Fiber: Basé sur Fasthttp (non standard library)
Chi: Minimaliste mais manque features (validation, etc.)
Standard lib: Trop bas niveau, verbose

2.3 ORM & Database

ORM: GORM
Version: 1.25.5
Repo: https://github.com/go-gorm/gorm
Driver: gorm.io/driver/postgres v1.5.4

require (
    gorm.io/gorm v1.25.5
    gorm.io/driver/postgres v1.5.4
)

Features

Associations (has one, has many, many to many)
Hooks (before/after create, update, delete)
Transactions
Migrations
Soft delete
Preloading

Alternatives Rejetées

SQLBoiler: Type-safe mais code generation complexe
Ent: Facebook-backed mais trop opinionated
Database/sql: Trop bas niveau, beaucoup de boilerplate

2.4 JWT & Authentication

Library: golang-jwt/jwt
Version: v5.3.0
Repo: https://github.com/golang-jwt/jwt

require github.com/golang-jwt/jwt/v5 v5.3.0

Features

RS256, HS256, ES256 algorithms
Claims validation
Token parsing et verification
Keyfunc support

2.5 Validation

Library: go-playground/validator
Version: v10.16.0
Repo: https://github.com/go-playground/validator

require github.com/go-playground/validator/v10 v10.16.0

Features

Struct validation
Custom validators
Cross-field validation
Internationalization
150+ built-in validators

2.6 Configuration

Library: spf13/viper
Version: v1.18.2
Repo: https://github.com/spf13/viper

require github.com/spf13/viper v1.18.2

Features

Multiple formats (JSON, YAML, ENV, TOML)
Environment variables
Remote config (Consul, etcd)
Hot reload
Default values

2.7 Logging

Library: uber-go/zap
Version: v1.27.0
Repo: https://github.com/uber-go/zap

require go.uber.org/zap v1.27.0

Features

Structured logging
High performance (zero allocation)
Leveled logging
JSON output
Sampling

Alternatives Rejetées

Logrus: Plus lent que zap
Zerolog: Moins de features, communauté plus petite
Standard log: Pas de structured logging

2.8 UUID Generation

Library: google/uuid
Version: v1.6.0

require github.com/google/uuid v1.6.0

2.9 HTTP Client

Library: Go standard library net/http
Version: Included in Go 1.23

For external APIs with retry/circuit breaker:

Library: hashicorp/go-retryablehttp
Version: v0.7.5

2.10 Testing

Frameworks:

Standard: testing package (built-in)
Assertions: testify/assert v1.9.0
Mocking: golang/mock v1.6.0

require (
    github.com/stretchr/testify v1.9.0
    github.com/golang/mock v1.6.0
)

2.11 Complete Backend go.mod

module veza-backend-api

go 1.23.8

require (
    // Web Framework
    github.com/gin-gonic/gin v1.9.1
    
    // Database
    gorm.io/gorm v1.25.5
    gorm.io/driver/postgres v1.5.4
    github.com/lib/pq v1.10.9
    
    // Cache & Session
    github.com/redis/go-redis/v9 v9.16.0
    
    // Message Queue
    github.com/rabbitmq/amqp091-go v1.9.0
    
    // Authentication & Security
    github.com/golang-jwt/jwt/v5 v5.3.0
    golang.org/x/crypto v0.41.0
    
    // Validation
    github.com/go-playground/validator/v10 v10.16.0
    
    // Configuration
    github.com/spf13/viper v1.18.2
    github.com/joho/godotenv v1.5.1
    
    // Logging
    go.uber.org/zap v1.27.0
    
    // Utilities
    github.com/google/uuid v1.6.0
    
    // External Services
    github.com/aws/aws-sdk-go-v2 v1.24.0          // S3
    github.com/stripe/stripe-go/v76 v76.16.0      // Payments
    github.com/sendgrid/sendgrid-go v3.14.0       // Email
    
    // Monitoring
    github.com/prometheus/client_golang v1.18.0
    
    // gRPC
    google.golang.org/grpc v1.59.0
    google.golang.org/protobuf v1.30.0
    
    // Testing
    github.com/stretchr/testify v1.9.0
    github.com/golang/mock v1.6.0
)

3. RUST SERVICES STACK

3.1 Core

Language: Rust 1.75.0+
Channel: Stable
Edition: 2021
Official Site: https://www.rust-lang.org/

Justification

Sécurité mémoire: Ownership model, zero-cost abstractions
Performance: Proche du C/C++, sans garbage collection
Concurrence: Fearless concurrency avec ownership
Type safety: Strong type system, zero runtime errors
Tooling: Cargo, rustfmt, clippy excellents

Alternatives Rejetées

C++: Pas de sécurité mémoire, complexité
Go: Garbage collection (latence imprévisible pour streaming)
Elixir: Performance inférieure pour audio processing

3.2 Async Runtime

Framework: Tokio
Version: 1.35.x
Repo: https://github.com/tokio-rs/tokio

[dependencies]
tokio = { version = "1.35", features = ["full", "tracing"] }

Features

Multi-threaded async runtime
Work-stealing scheduler
I/O drivers (TCP, UDP, Unix sockets)
Timers and timeouts
Signal handling

Alternatives Rejetées

async-std: Moins de fonctionnalités, communauté plus petite
smol: Trop minimaliste
Actix: Runtime spécifique à actix-web

3.3 Web Framework

Framework: Axum
Version: 0.8.x (chat), 0.7.x (stream)
Repo: https://github.com/tokio-rs/axum

axum = { version = "0.8", features = ["macros", "ws"] }

Features

Built on tower (middleware)
Type-safe routing
WebSocket support
Multipart forms
JSON/MessagePack
Low overhead

Alternatives Rejetées

Actix-web: Moins idiomatique, unsafe en interne
Rocket: Compilation lente, async moins mature
Warp: Complexité types, courbe apprentissage

3.4 WebSocket

Library: tokio-tungstenite
Version: 0.21.x

tokio-tungstenite = "0.21"
tungstenite = "0.21"

3.5 Database (Async)

ORM: SQLx
Version: 0.8.6 (chat), 0.7.x (stream)

sqlx = { 
    version = "0.8.6", 
    features = [
        "postgres",
        "runtime-tokio-native-tls",
        "chrono",
        "uuid",
        "json",
        "migrate",
        "macros"
    ] 
}

Features

Compile-time checked queries
Async/await native
Migrations
Type-safe
Connection pooling

Alternatives Rejetées

Diesel: Sync only, pas d'async
SeaORM: Moins mature
tokio-postgres: Trop bas niveau

3.6 Serialization

Libraries:

JSON: serde_json 1.0
MessagePack: rmp-serde 1.1
TOML: toml 0.9

serde = { version = "1.0", features = ["derive"] }
serde_json = "1.0"
rmp-serde = "1.1"
toml = "0.9"

3.7 Authentication & Security

Libraries:

JWT: jsonwebtoken 9.2
Password hashing: bcrypt 0.17, argon2 0.5
Crypto: ring 0.17
2FA: totp-rs 5.4

jsonwebtoken = "9.2"
bcrypt = "0.17"
argon2 = "0.5"
ring = "0.17"
totp-rs = { version = "5.4", features = ["qr"] }

3.8 Logging & Tracing

Framework: tracing
Version: 0.1.x

tracing = "0.1"
tracing-subscriber = { 
    version = "0.3", 
    features = ["env-filter", "json", "chrono"] 
}
tracing-appender = "0.2"

3.9 Error Handling

Libraries:

Macros: thiserror 2.0
Context: anyhow 1.0

thiserror = "2.0"
anyhow = "1.0"

3.10 Concurrency

Libraries:

HashMap concurrent: dashmap 6.1
Mutex high-perf: parking_lot 0.12
Channels: flume 0.11

dashmap = "6.1"
parking_lot = "0.12"
flume = "0.11"

3.11 Audio Processing (Stream Server)

Libraries:

Codec universal: symphonia 0.5
WAV: hound 3.5
MP3: minimp3 0.5
Resampling: rubato 0.15
FFT: rustfft 6.2

symphonia = { version = "0.5", features = ["all"] }
hound = "3.5"
minimp3 = "0.5"
rubato = "0.15"
rustfft = "6.2"

3.12 Complete Rust Cargo.toml (Chat Server)

[package]
name = "chat_server"
version = "0.2.0"
edition = "2021"

[dependencies]
# Runtime
tokio = { version = "1.35", features = ["full", "tracing"] }
axum = { version = "0.8", features = ["macros", "ws"] }
tokio-tungstenite = "0.21"

# Database & Cache
sqlx = { version = "0.8.6", features = ["postgres", "runtime-tokio-native-tls", "uuid", "chrono", "json", "migrate", "macros"] }
redis = { version = "0.32", features = ["tokio-comp", "connection-manager"] }

# Serialization
serde = { version = "1.0", features = ["derive"] }
serde_json = "1.0"

# Security
jsonwebtoken = "9.2"
bcrypt = "0.17"
ring = "0.17"

# Logging
tracing = "0.1"
tracing-subscriber = { version = "0.3", features = ["env-filter", "json", "chrono"] }

# Concurrency
dashmap = "6.1"
parking_lot = "0.12"

# Utilities
uuid = { version = "1.6", features = ["v4", "serde"] }
chrono = { version = "0.4", features = ["serde"] }
anyhow = "1.0"
thiserror = "2.0"

4. FRONTEND STACK

4.1 Core

Framework: React
Version: 18.2.0
Official Site: https://react.dev/

Justification

Écosystème: Largest ecosystem, nombreuses libraries
Performance: Concurrent Mode, Suspense
Communauté: Énorme, documentation complète
Hiring: Facile de recruter des devs React
Stability: Mature, Facebook-backed

Alternatives Rejetées

Vue.js: Écosystème plus petit, moins de ressources
Svelte: Trop récent, écosystème limité
Angular: Trop lourd, courbe apprentissage raide
Solid.js: Trop nouveau, risqué

4.2 TypeScript

Language: TypeScript
Version: 5.3.3
Official Site: https://www.typescriptlang.org/

{
  "devDependencies": {
    "typescript": "5.3.3"
  }
}

Configuration (tsconfig.json)

{
  "compilerOptions": {
    "target": "ES2022",
    "lib": ["ES2022", "DOM", "DOM.Iterable"],
    "jsx": "react-jsx",
    "module": "ESNext",
    "moduleResolution": "bundler",
    "resolveJsonModule": true,
    "allowImportingTsExtensions": true,
    "strict": true,
    "noUnusedLocals": true,
    "noUnusedParameters": true,
    "noFallthroughCasesInSwitch": true,
    "skipLibCheck": true
  }
}

4.3 Build Tool

Tool: Vite
Version: 7.1.5
Official Site: https://vitejs.dev/

{
  "devDependencies": {
    "vite": "7.1.5",
    "@vitejs/plugin-react": "4.2.1"
  }
}

Justification

Performance: ESBuild-based, ultra-fast
HMR: Hot Module Replacement instantané
DX: Developer experience excellent
Modern: ESM native, pas de legacy

Alternatives Rejetées

Webpack: Lent, configuration complexe
Parcel: Moins performant que Vite
Rollup: Moins de features DX

4.4 Routing

Library: React Router
Version: 6.22.0

{
  "dependencies": {
    "react-router-dom": "6.22.0"
  }
}

4.5 State Management

Library: Zustand
Version: 4.5.0

{
  "dependencies": {
    "zustand": "4.5.0"
  }
}

Justification

Simplicité: API minimale, pas de boilerplate
Performance: Re-renders optimisés
TypeScript: Excellent support
Size: 1KB minified

Alternatives Rejetées

Redux: Trop de boilerplate
MobX: Plus complexe, moins populaire
Recoil: Facebook expérimental, moins stable
Jotai: Plus récent, écosystème limité

4.6 Data Fetching

Library: TanStack Query (React Query)
Version: 5.17.0

{
  "dependencies": {
    "@tanstack/react-query": "5.17.0"
  }
}

Features

Caching automatique
Background refetching
Optimistic updates
Pagination
Infinite scroll
Devtools

4.7 HTTP Client

Library: Axios
Version: 1.6.7

{
  "dependencies": {
    "axios": "1.6.7"
  }
}

Alternatives Rejetées

Fetch API: Pas de interceptors, moins de features
ky: Moins mature

4.8 Forms

Library: React Hook Form
Version: 7.49.3
Validation: Zod 3.25.76

{
  "dependencies": {
    "react-hook-form": "7.49.3",
    "zod": "3.25.76",
    "@hookform/resolvers": "3.3.4"
  }
}

Features

Uncontrolled forms (performance)
Minimal re-renders
Built-in validation
TypeScript support

Alternatives Rejetées

Formik: Plus lent, plus de re-renders
React Final Form: Moins populaire

4.9 UI Components

Base Library: Radix UI
Versions: Latest stable

{
  "dependencies": {
    "@radix-ui/react-avatar": "1.0.4",
    "@radix-ui/react-dialog": "1.0.5",
    "@radix-ui/react-dropdown-menu": "2.0.6",
    "@radix-ui/react-label": "2.0.2",
    "@radix-ui/react-select": "2.0.0",
    "@radix-ui/react-tabs": "1.0.4",
    "@radix-ui/react-toast": "1.1.5"
  }
}

Justification

Unstyled: Total control styling
Accessible: WAI-ARIA compliant
Composable: Flexible architecture

4.10 Styling

Framework: Tailwind CSS
Version: 4.0.0

{
  "devDependencies": {
    "tailwindcss": "4.0.0",
    "@tailwindcss/postcss": "4.0.0"
  }
}

Utilities:

clsx: 2.1.0 (conditional classes)
tailwind-merge: 2.2.1 (merge classes)

Alternatives Rejetées

CSS Modules: Trop verbeux
Styled Components: Runtime overhead
Emotion: Moins performant que Tailwind
Vanilla CSS: Pas de utility-first

4.11 Icons

Library: Lucide React
Version: 0.321.0

{
  "dependencies": {
    "lucide-react": "0.321.0"
  }
}

4.12 Internationalization

Library: i18next + react-i18next
Versions: i18next 25.5.2, react-i18next 15.7.3

{
  "dependencies": {
    "i18next": "25.5.2",
    "react-i18next": "15.7.3",
    "i18next-browser-languagedetector": "8.2.0"
  }
}

4.13 Testing

Unit Tests: Vitest
Version: 3.2.4

{
  "devDependencies": {
    "vitest": "3.2.4",
    "@testing-library/react": "14.2.1",
    "@testing-library/jest-dom": "6.4.2",
    "@testing-library/user-event": "14.5.2",
    "jsdom": "24.0.0"
  }
}

E2E Tests: Playwright
Version: 1.41.2

{
  "devDependencies": {
    "@playwright/test": "1.41.2"
  }
}

4.14 Code Quality

Linter: ESLint
Version: 9.0.0

{
  "devDependencies": {
    "eslint": "9.0.0",
    "@typescript-eslint/eslint-plugin": "8.0.0",
    "@typescript-eslint/parser": "8.0.0",
    "eslint-plugin-react": "7.37.0",
    "eslint-plugin-react-hooks": "5.0.0",
    "eslint-plugin-jsx-a11y": "6.10.2"
  }
}

Formatter: Prettier
Version: 3.2.5

4.15 Complete package.json

{
  "name": "veza-frontend",
  "version": "1.0.0",
  "type": "module",
  "scripts": {
    "dev": "vite",
    "build": "tsc -b && vite build",
    "preview": "vite preview",
    "test": "vitest",
    "test:e2e": "playwright test",
    "lint": "eslint . --ext ts,tsx",
    "format": "prettier --write \"src/**/*.{ts,tsx,js,jsx,json,css,md}\""
  },
  "dependencies": {
    "react": "18.2.0",
    "react-dom": "18.2.0",
    "react-router-dom": "6.22.0",
    "@tanstack/react-query": "5.17.0",
    "axios": "1.6.7",
    "zustand": "4.5.0",
    "react-hook-form": "7.49.3",
    "zod": "3.25.76",
    "@hookform/resolvers": "3.3.4",
    "i18next": "25.5.2",
    "react-i18next": "15.7.3",
    "i18next-browser-languagedetector": "8.2.0",
    "lucide-react": "0.321.0",
    "clsx": "2.1.0",
    "tailwind-merge": "2.2.1",
    "@radix-ui/react-avatar": "1.0.4",
    "@radix-ui/react-dialog": "1.0.5",
    "@radix-ui/react-dropdown-menu": "2.0.6",
    "@radix-ui/react-label": "2.0.2",
    "@radix-ui/react-select": "2.0.0",
    "@radix-ui/react-tabs": "1.0.4",
    "@radix-ui/react-toast": "1.1.5"
  },
  "devDependencies": {
    "@vitejs/plugin-react": "4.2.1",
    "typescript": "5.3.3",
    "vite": "7.1.5",
    "tailwindcss": "4.0.0",
    "@tailwindcss/postcss": "4.0.0",
    "eslint": "9.0.0",
    "@typescript-eslint/eslint-plugin": "8.0.0",
    "@typescript-eslint/parser": "8.0.0",
    "eslint-plugin-react": "7.37.0",
    "eslint-plugin-react-hooks": "5.0.0",
    "eslint-plugin-jsx-a11y": "6.10.2",
    "eslint-plugin-react-refresh": "0.4.5",
    "prettier": "3.2.5",
    "vitest": "3.2.4",
    "@testing-library/react": "14.2.1",
    "@testing-library/jest-dom": "6.4.2",
    "@testing-library/user-event": "14.5.2",
    "jsdom": "24.0.0",
    "@playwright/test": "1.41.2",
    "msw": "2.11.2"
  }
}

5. MOBILE STACK

Framework: React Native
Version: 0.73.x (latest stable)

{
  "dependencies": {
    "react": "18.2.0",
    "react-native": "0.73.4"
  }
}

Key Libraries

Navigation: @react-navigation/native 6.x
Storage: @react-native-async-storage/async-storage 1.x
Networking: Same as web (axios)
State: Same as web (zustand)

6. DESKTOP STACK

Framework: Electron
Version: 28.x

{
  "devDependencies": {
    "electron": "28.2.0",
    "electron-builder": "24.9.1"
  }
}

Features

Reuse React web codebase
Native menu, notifications
Auto-update (electron-updater)
Tray icon support

7. INFRASTRUCTURE STACK

7.1 Containerization

Tool: Docker
Version: 24.0.x
Compose: 2.23.x

# docker-compose.yml version
version: '3.8'

7.2 Orchestration (Future)

Tool: Kubernetes
Version: 1.28+ (when needed, Phase 7)
Distribution: Amazon EKS or Google GKE

7.3 Load Balancer

Tool: Traefik
Version: 2.10.x

image: traefik:v2.10

Features

Automatic HTTPS (Let's Encrypt)
Docker labels configuration
Dashboard
Metrics

Alternatives Rejetées

NGINX: Configuration moins dynamique
HAProxy: Pas de service discovery automatique
Envoy: Trop complexe pour nos besoins

7.4 Reverse Proxy (Prod)

Tool: NGINX
Version: 1.25.x (mainline)

8. DATABASE STACK

8.1 Primary Database

Database: PostgreSQL
Version: 15.x (LTS)
Support: Until November 2027
Official Site: https://www.postgresql.org/

Justification

ACID: Full transactional support
Relations: Complex foreign keys, joins
Performance: Query optimizer excellent
Features: JSON/JSONB, full-text search, partitioning
Extensions: PostGIS, pgcrypto, pg_trgm
Stability: 30+ years, mature

Alternatives Rejetées

MySQL: Moins de features, moins performant
MongoDB: Pas ACID, relations difficiles
CockroachDB: Trop jeune, complexe
Cassandra: Over-engineering, trop complexe

8.2 PostgreSQL Extensions

-- Enabled extensions
CREATE EXTENSION IF NOT EXISTS "uuid-ossp";      -- UUID generation
CREATE EXTENSION IF NOT EXISTS "pgcrypto";       -- Encryption
CREATE EXTENSION IF NOT EXISTS "pg_trgm";        -- Trigram similarity
CREATE EXTENSION IF NOT EXISTS "unaccent";       -- Remove accents
CREATE EXTENSION IF NOT EXISTS "hstore";         -- Key-value store

8.3 Connection Pooling

Tool: PgBouncer
Version: 1.21.x

[pgbouncer]
pool_mode = transaction
max_client_conn = 1000
default_pool_size = 25

8.4 Database Migrations

Backend: GORM Auto-Migrate + SQL files
Rust: SQLx migrations

# GORM
db.AutoMigrate(&User{}, &Track{}, &Playlist{})

# SQLx
sqlx migrate run

9. MESSAGE QUEUE & CACHE

9.1 Cache & Session Store

Tool: Redis
Version: 7.2.x
Support: Until July 2026
Official Site: https://redis.io/

Configuration

Mode: Cluster (3 masters, 3 replicas)
Persistence: AOF + RDB
Eviction: allkeys-lru

# redis.conf
maxmemory 4gb
maxmemory-policy allkeys-lru
save 900 1
save 300 10
save 60 10000
appendonly yes

Alternatives Rejetées

Memcached: Moins de features, pas de pub/sub
Hazelcast: Trop complexe, Java-centric

9.2 Message Queue

Tool: RabbitMQ
Version: 3.12.x
Support: Until December 2025
Official Site: https://www.rabbitmq.com/

Configuration

Exchanges: Topic, Fanout
Queues: Durable, auto-delete false
Message TTL: 24 hours
Dead Letter Exchange: Yes

# rabbitmq.conf
management.tcp.port = 15672
listeners.tcp.default = 5672

Alternatives Rejetées

Apache Kafka: Over-engineering, trop complexe pour début
AWS SQS: Vendor lock-in
NATS: Moins mature pour persistence

9.3 Search Engine (Future)

Tool: Elasticsearch
Version: 8.x (Phase 5)

image: docker.elastic.co/elasticsearch/elasticsearch:8.11.0

10. SERVICES EXTERNES

10.1 Object Storage

Provider: AWS S3
SDK: aws-sdk-go-v2 v1.24.0 (Go)

require github.com/aws/aws-sdk-go-v2 v1.24.0

Alternative: MinIO (self-hosted, S3-compatible)

10.2 CDN

Provider: CloudFlare
Features:

Edge caching
DDoS protection
Web Application Firewall
Analytics

Alternative: AWS CloudFront

10.3 Payments

Provider: Stripe
SDK: stripe-go v76.16.0

require github.com/stripe/stripe-go/v76 v76.16.0

Features:

Checkout
Subscriptions
Stripe Connect (marketplace)
Webhooks

10.4 Email

Provider: SendGrid
SDK: sendgrid-go v3.14.0

require github.com/sendgrid/sendgrid-go v3.14.0

Alternative: AWS SES

10.5 SMS (Optional)

Provider: Twilio
SDK: twilio-go v1.20.0

10.6 Error Tracking

Tool: Sentry
SDK: sentry-go v0.27.0 (Go), @sentry/react 7.x (Frontend)

require github.com/getsentry/sentry-go v0.27.0

{
  "dependencies": {
    "@sentry/react": "7.100.0"
  }
}

11. DEVOPS & CI/CD STACK

11.1 Version Control

Tool: Git
Hosting: GitHub
Workflow: GitHub Flow (feature branches)

11.2 CI/CD

Tool: GitHub Actions

# .github/workflows/backend-ci.yml
name: Backend CI
on: [push, pull_request]
jobs:
  test:
    runs-on: ubuntu-22.04
    services:
      postgres:
        image: postgres:15
      redis:
        image: redis:7
    steps:
      - uses: actions/checkout@v4
      - uses: actions/setup-go@v5
        with:
          go-version: '1.23.8'
      - run: go test ./...

11.3 Infrastructure as Code

Tool: Ansible
Version: 2.15.x

# playbooks/deploy.yml
- hosts: production
  roles:
    - docker
    - postgresql
    - redis
    - backend-api

Future: Terraform (Phase 7, Kubernetes)

11.4 Secret Management

Tool: Environment Variables (.env)
Production: AWS Secrets Manager ou HashiCorp Vault (Phase 7)

# .env.example
DATABASE_URL=postgres://...
REDIS_URL=redis://...
JWT_SECRET=...
STRIPE_SECRET_KEY=...

11.5 Container Registry

Registry: GitHub Container Registry (ghcr.io)
Alternative: Docker Hub

12. MONITORING & OBSERVABILITÉ

12.1 Metrics

Tool: Prometheus
Version: 2.48.x

image: prom/prometheus:v2.48.0

Client Libraries:

Go: prometheus/client_golang v1.18.0
Rust: prometheus 0.13

12.2 Visualization

Tool: Grafana
Version: 10.2.x

image: grafana/grafana:10.2.0

12.3 Logging

Tool: Loki + Promtail
Version: Loki 2.9.x

image: grafana/loki:2.9.0
image: grafana/promtail:2.9.0

12.4 Distributed Tracing

Tool: Jaeger
Version: 1.52.x

image: jaegertracing/all-in-one:1.52

Client Libraries:

Go: OpenTelemetry go.opentelemetry.io/otel v1.21.0

12.5 Alerting

Tool: Prometheus Alertmanager
Version: 0.26.x

image: prom/alertmanager:v0.26.0

12.6 Uptime Monitoring

Tool: UptimeRobot (external)
Alternative: BetterUptime, StatusCake

13. SÉCURITÉ STACK

13.1 SSL/TLS

Certificates: Let's Encrypt
ACME Client: Traefik built-in

13.2 Secrets Management

Development: dotenv files
Production: AWS Secrets Manager (Phase 6+)

13.3 Vulnerability Scanning

Tools:

Go: govulncheck
Rust: cargo audit
Node.js: npm audit
Docker: trivy

# Scan workflows
go run golang.org/x/vuln/cmd/govulncheck ./...
cargo audit
npm audit
trivy image veza/backend-api:latest

13.4 Static Analysis

Tools:

Go: golangci-lint 1.55.x
Rust: clippy (built-in)
TypeScript: ESLint
SonarQube: Community Edition (optional)

13.5 Dependency Management

Tools:

Go: Dependabot (GitHub)
Rust: cargo-outdated
Node.js: Dependabot + Renovate

14. DEVELOPMENT TOOLS

14.1 IDEs & Editors

Recommended:

VSCode: Latest (with Go, Rust, ESLint extensions)
GoLand: 2024.x (JetBrains)
RustRover: 2024.x (JetBrains)

14.2 API Testing

Tool: Insomnia
Version: 2023.x
Alternative: Postman

14.3 Database Client

Tool: DBeaver Community
Version: 23.x
Alternative: pgAdmin 4

14.4 Git GUI

Tools:

GitKraken (cross-platform)
Sourcetree (Windows/Mac)
Git CLI (recommended)

15. STRATÉGIE DE MISE À JOUR

15.1 Politique Générale

Type	Action	Fréquence	Approval
Security patches	Update immédiat	As needed	Auto-approved
Minor versions	Update quarterly	Q1, Q2, Q3, Q4	Tech Lead
Major versions	Evaluate, plan migration	Yearly	CTO + Team
LTS renewals	Plan before EOL	6 months before	CTO

15.2 Dependency Updates

# Go
go get -u ./...
go mod tidy

# Rust
cargo update

# Node.js
npm update
npm outdated

15.3 Version Pinning

Production: Versions EXACTES verrouillées

// go.mod - EXACT versions
require github.com/gin-gonic/gin v1.9.1  // NOT v1.9 or ^1.9.1

# Cargo.toml - EXACT versions
tokio = "=1.35.0"  # NOT "1.35" or "^1.35"

// package.json - EXACT versions
{
  "dependencies": {
    "react": "18.2.0"  // NOT ^18.2.0 or ~18.2.0
  }
}

15.4 Breaking Changes

Process:

Identification: Automated alerts (Dependabot, Renovate)
Evaluation: Impact analysis, migration effort
RFC: Formal RFC si changement > 2 semaines effort
Planning: Assignation phase (hors critical path)
Migration: Feature branch, tests complets
Rollout: Staging first, puis production

15.5 EOL (End-of-Life) Management

Critical Components EOL Dates:

Component	Version	EOL Date	Action Plan
Go	1.23.x	Feb 2027	Upgrade to 1.24 in Q4 2026
PostgreSQL	15.x	Nov 2027	Upgrade to 16.x in Q3 2027
Node.js	20.x	Apr 2026	Upgrade to 22 LTS in Q1 2026
Redis	7.2.x	Jul 2026	Upgrade to 7.4 in Q2 2026
RabbitMQ	3.12.x	Dec 2025	Upgrade to 3.13 in Q4 2025

Monitoring: Automated tracking avec endoflife.date API

16. MATRICE DE COMPATIBILITÉ

16.1 Inter-Service Compatibility

Component A	Version	Component B	Version	Compatible	Notes
Go API	1.23.8	PostgreSQL	15.x	✅ Yes	lib/pq 1.10.9
Go API	1.23.8	Redis	7.2.x	✅ Yes	go-redis 9.16.0
Rust Chat	1.75	PostgreSQL	15.x	✅ Yes	SQLx 0.8.6
Rust Stream	1.75	Redis	7.2.x	✅ Yes	redis-rs 0.25
React	18.2	Vite	7.1.5	✅ Yes	@vitejs/plugin-react 4.2.1
Electron	28.x	React	18.2	✅ Yes	Electron React Boilerplate

16.2 OS Compatibility

OS	Support	Notes
Linux	Primary	Ubuntu 22.04 LTS (production)
macOS	Development	macOS 13+ (Ventura)
Windows	Development	Windows 11 + WSL2

16.3 Browser Compatibility

Browser	Version	Support	Notes
Chrome	100+	✅ Full	Recommended
Firefox	100+	✅ Full
Safari	16+	✅ Full	macOS/iOS
Edge	100+	✅ Full	Chromium-based
Opera	85+	⚠️ Partial	Not officially tested
IE11	N/A	❌ No	Deprecated

✅ CHECKLIST DE VALIDATION

Backend Stack

Go 1.23.8 installed
All go.mod dependencies locked exact versions
PostgreSQL 15.x accessible
Redis 7.x accessible
RabbitMQ 3.12.x accessible
S3-compatible storage configured
Stripe API keys configured
SendGrid API key configured

Rust Services Stack

Rust 1.75+ installed (stable channel)
All Cargo.toml dependencies locked
SQLx CLI installed
Database migrations tested
WebSocket server compiles
Stream server compiles

Frontend Stack

Node.js 20.11 LTS installed
All package.json dependencies exact versions
TypeScript 5.3.3
Vite build successful
Tests passing (Vitest)
E2E tests passing (Playwright)

Infrastructure

Docker 24.x installed
Docker Compose 2.23.x installed
Traefik configured
Let's Encrypt certificates working
Prometheus + Grafana accessible
Loki logging working

📊 MÉTRIQUES DE SUCCÈS

Stability

Breaking changes: 0 per quarter (except security)
Build failures: < 1% of builds
Dependency conflicts: 0
Security vulnerabilities: 0 critical, < 5 high

Performance

Build time backend: < 2 minutes
Build time frontend: < 1 minute
Docker image size backend: < 50MB
Docker image size frontend: < 100MB
Dependencies install time: < 5 minutes

Maintenance

Outdated dependencies: < 10%
EOL components: 0
Update cycles: Quarterly
Documentation coverage: 100% for stack changes

🔄 HISTORIQUE DES VERSIONS

Version	Date	Changements
1.0.0	2025-11-02	Version initiale - Stack technique verrouillée

⚠️ AVERTISSEMENT

CE DOCUMENT EST IMMUABLE

La stack technique définie ici est VERROUILLÉE POUR 24 MOIS. Toute modification nécessite:

RFC technique avec justification (security, EOL, performance critique)
Impact analysis complet (migration effort, breaking changes, testing)
Approval CTO + Tech Lead
Migration plan détaillé
Update tous documents ORIGIN impactés
Team training si nouveau tech

Seules exceptions autorisées:

Security patches (CVE critiques)
EOL forcé (6 mois avant end-of-life)
Impossibilité technique (bug bloquant non-résolu)

Interdictions absolues:

Changement de langage (Go → Node, Rust → Go, etc.)
Changement de framework principal (React → Vue, etc.)
Ajout stack non-approuvée (nouvelle BDD, nouveau langage)
Downgrade de version (sauf rollback urgence)

Document créé par: CTO + Architecture Team
Date de création: 2025-11-02
Prochaine révision: Après Phase 4 (Q3 2026)
Propriétaire: CTO

Statut: ✅ APPROUVÉ ET VERROUILLÉ

37 KiB Raw Blame History

ORIGIN_TECHNICAL_STACK.md

📋 RÉSUMÉ EXÉCUTIF

🎯 OBJECTIFS

Objectif Principal

Objectifs Secondaires

📖 TABLE DES MATIÈRES

🔒 RÈGLES IMMUABLES

1. VUE D'ENSEMBLE

1.1 Stack Decision Matrix

1.2 Language Versions

1.3 Architecture Stack Summary

2. BACKEND STACK

2.1 Core

Justification

Alternatives Rejetées

2.2 Web Framework

Features

Alternatives Rejetées

2.3 ORM & Database

Features

Alternatives Rejetées

2.4 JWT & Authentication

Features

2.5 Validation

Features

2.6 Configuration

Features

2.7 Logging

Features

Alternatives Rejetées

2.8 UUID Generation

2.9 HTTP Client

For external APIs with retry/circuit breaker:

2.10 Testing

2.11 Complete Backend go.mod

3. RUST SERVICES STACK

3.1 Core

Justification

Alternatives Rejetées

3.2 Async Runtime

Features

Alternatives Rejetées

3.3 Web Framework

Features

Alternatives Rejetées

3.4 WebSocket

3.5 Database (Async)

Features

Alternatives Rejetées

3.6 Serialization

3.7 Authentication & Security

3.8 Logging & Tracing

3.9 Error Handling

3.10 Concurrency

3.11 Audio Processing (Stream Server)

3.12 Complete Rust Cargo.toml (Chat Server)

4. FRONTEND STACK

4.1 Core

Justification

Alternatives Rejetées

4.2 TypeScript

Configuration (tsconfig.json)

4.3 Build Tool

Justification

Alternatives Rejetées

4.4 Routing

4.5 State Management

Justification

Alternatives Rejetées

4.6 Data Fetching

Features

4.7 HTTP Client

Alternatives Rejetées

4.8 Forms

Features

Alternatives Rejetées

4.9 UI Components

Justification

4.10 Styling

37 KiB

Raw Blame History