This repository contains the code related to the Andrew Insurance product
An autogenerated OpenAPI (ex swagger) documentation is available at the following endpoints:
Documentation is protected by a basic authentication:
- Online:
- user: andrew-admin
- password: 1lO4Ko3pbZI1
- Local:
- user: andrew-admin
- password: 123
- API postman collection online
- API postman collection download
- Ecommerce postman collection online
- Ecommerce postman collection download
- As a superadmin i register devices and flash credentials on the devices firmware (IOT)
- As a new user from the landing page offering the subscription to Andrew's insurance products i click on call to action to create my customer account and i am redirected back to the application logged in
- As a logged in user i create a new subscription application and fill out the required informations and documents
- As a logged in user i submit my subscription application for review
- As an logged in insurer i review and validate the subscription application generating a contract attached checkout url
- As the system i takes informations from the subscription application to register a new contract and it's related vehicles generating checkout url using a the configured payment gateway (stripe)
- As the system i receive confirmation of the user subscription and update the contract status accordingly
- As a logged in insurer i select a device from the available device pool and link the device to a vehicle
- As a logged in insurer i activate the selected/linked device
- As a logged in insurer i send the device to the user address by mail
- As a logged in user i receive the device
- As a logged in user i activate the device by plugging it into the obd plug of my vehicle
- As an authorized device i verify the vehicle VIN is valid in the system
- As the system i validate the device from a customer point of view
- As a user, i am now happy i am insured
- As the device i collect vehicle metrics and send them to the system periodically
- As the system i classify the vehicle driver behaviour
- As the system and according to the vehcile driver behaviour classification i grant insurance discount on the user susbscription.
I. A customer create a subscription application with a status of PENDING II. when all informations filled and the customer wants to apply it confirms it subscription application and asks for a review of it, the status moved from PENDING to REVIEWING III. An insurer review the subscription application and can directly update the data if wanted, or finalize the subscription by applying a status:
-
PAYMENT_PENDING: initiate the payment/checkout workflow by generating a checkout url
- system register a contract with an INACTIVE status and vehicles linked to the contract from data present in subscription application
- customer click on the generated checkout url
- contract status change from INACTIVE to ACTIVE upon successful subscription initialization
-
REJECTED: customer can create a new susbcription application the current one won't be changed anymore
-
TO_AMMEND: customer must update it's subscription application
- customer can ammend its subscription application and restart from step II
- superadmin:
- devices WRITE + DELETE
- all below roles
- supervisor:
- devices READ
- devices to contract link
- users READ + WRITE + UPDATE + DELETE
- contracts READ + WRITE + UPDATE + DELETE
- vehicles READ + WRITE + UPDATE + DELETE
- subscription application READ + WRITE + UPDATE + DELETE
- user:
- devices READ own data
- contracts READ own data
- vehicle READ own data
- susbscription application WRITE + UPDATE
- [email protected] - superadmin
- [email protected] - insurer aka supervisor (keycloak)
- [email protected] - user
- [email protected] - user
# install project dependencies
npm install
# lauch developement server
npm run start:devexport DOCKER_BUILDKIT=1
docker buildx build --tag=antoineleguillou/andrew-api:v0.1 --no-cache --ssh default=$SSH_AUTH_SOCK -f ./Dockerfile .- Keycloak: third party authentication server for users and devices
- Kafka broker : for data transmission from mqtt broker to the system (buffer role + shared subscription replacement as mqtt broker is not MQTT 5.0 compliant)
- ELasticsearch database with following topics configured :
- acl : mappings from vehicles identified by their VIN number to data points comming from andrew devices and to users authorized to access the data.
- acl_report : reports containing driver behaviour class output from the AI model and driving session start + end
- AI model: Driver behaviour classification model
- Message bus events typings (andrew-events-schemas)
- Oauth2 compatible MQTT broker with roles and topics access grants verfications : for data transmission from andrew devices and the mqtt broker and data transmission from system to mqtt broker relaying it to devices (devices status challenge)
Scoring reports and devices metrics are stored in Opensearch in the following indices:
- acl
- acl_reports
These indices establishes a relationship between acl access to
Opensearch provides a REST API.
ACL has been set up in order to restrict access to data and authencation is made through the access token provided by the authentication server provided through a Bearer Authorization header.
A customer having the user role has only access to his own data.
# useful informations
OPENSEARCH_ACL_REPORT_INDEX=acl_reports
OPENSEARCH_ACL_INDEX="acl"
OPENSEARCH_ROOT_URL=https://andrew-timeseries.students-epitech.ovh//acl index mapping
{
"acl": {
"mappings": {
"properties": {
"data_to_vehicle": {
"type": "join",
"eager_global_ordinals": true,
"relations": {
"vehicle": "data"
}
},
"device": {
"type": "text",
"fields": {
"keyword": {
"type": "keyword",
"ignore_above": 256
}
}
},
"obd_data": {
"properties": {
"engine_speed": {
"type": "long"
},
"fuel_rate": {
"type": "long"
},
"relative_accel_pos": {
"type": "long"
},
"vehicle_speed": {
"type": "long"
}
}
},
"timestamp": {
"type": "date",
"format": "epoch_millis"
},
"users": {
"type": "text",
"fields": {
"keyword": {
"type": "keyword",
"ignore_above": 256
}
}
},
"vehicle": {
"type": "text",
"fields": {
"keyword": {
"type": "keyword",
"ignore_above": 256
}
}
}
}
}
}
}// acl_reports index mapping
{
"acl_report": {
"mappings": {
"properties": {
"device": {
"type": "text",
"fields": {
"keyword": {
"type": "keyword",
"ignore_above": 256
}
}
},
"report": {
"type": "nested",
"properties": {
"driving_session": {
"type": "nested",
"properties": {
"driver_behaviour_class": {
"type": "text",
"fields": {
"keyword": {
"type": "keyword",
"ignore_above": 256
}
}
},
"driver_behaviour_class_int": {
"type": "long"
},
"end": {
"type": "date",
"format": "epoch_millis"
},
"start": {
"type": "date",
"format": "epoch_millis"
}
}
}
}
},
"report_to_vehicle": {
"type": "join",
"eager_global_ordinals": true,
"relations": {
"vehicle": "report"
}
},
"users": {
"type": "text",
"fields": {
"keyword": {
"type": "keyword",
"ignore_above": 256
}
}
},
"vehicle": {
"type": "text",
"fields": {
"keyword": {
"type": "keyword",
"ignore_above": 256
}
}
}
}
}
}
}