Case Studies

Selected Projects

Real product thinking, scalable architecture, and polished user experiences across SaaS MVPs, AI products, automation systems, and business platforms.

SaaS preview
Open Source / KafkaOpen SourceSpring Boot 3.3Spring WebFluxJava 21React 18

DeadLetter Explorer

Open-source Kafka DLQ operations console. Safely browse, search, redact PII and throttle-replay failed messages — secured with Keycloak RBAC and validated by TestContainers integration tests.

Problem solved

In microservice architectures, failed messages accumulate silently in Kafka Dead Letter Queues. Operations teams resorted to raw kafka-console-consumer commands that expose sensitive payloads in plain text with no throttling, no redaction and no access control. Each production incident involved compliance risk, no replay guardrails, and no way to preview the impact of re-processing before firing messages downstream.

Main features

DLQ Topic Auto-Discovery
Message Browser & Inspector
JSONPath PII Redaction Studio
MASK / HASH / REMOVE Actions
Throttled Message Replay
Keycloak RBAC (3 roles)
Audit Trail per Rule
TestContainers Integration Tests
View Case Study
SaaS preview
Backend / SecurityOpen SourceSpring Boot 3.4Java 21PostgreSQL 16Gradle 8

Spring Boot Secure API Template

Production-grade Spring Boot 3.4 REST API template: JWT RS256 auth, refresh token rotation with theft detection, Argon2id hashing, Bucket4j rate limiting, OWASP headers and Prometheus observability — each decision documented in ADRs.

Problem solved

Most Spring Boot tutorials and starter templates omit the security layers that matter in production: token theft detection via refresh token families, timing-safe login to prevent email enumeration, per-IP rate limiting, OWASP security headers, structured audit logging and a mutation-tested test suite. Teams copy insecure patterns from tutorials and discover the gaps during a production incident or a security audit.

Main features

JWT RS256 + Refresh Token Rotation
Token Theft Detection (Family Model)
Argon2id Hashing (OWASP params)
Account Lockout + Timing Attack Guard
Per-IP Rate Limiting (Bucket4j)
OWASP Security Headers
RFC 7807 Problem Details
Prometheus + Structured JSON Logs
ArchUnit + Mutation Testing (PIT)
Flyway Migrations + Multi-profile Config
View Case Study
SaaS preview
Frontend / ArchitectureOpen SourceAngular 18Nx 19NgRx 18TypeScript

Angular Enterprise Architecture

Reference Nx 19 monorepo for large-scale Angular 18 apps: enforced module boundaries, documented Signals vs NgRx state strategy, Module Federation micro-frontends, CDK virtual scrolling over 10 000 rows and custom Nx code generators.

Problem solved

Large Angular codebases degrade without enforced boundaries. Features import each other's internal services, shared state bleeds across modules, bundle sizes grow unchecked, teams block one another's deployments, and performance collapses when tables hit thousands of rows. Most teams only discover these structural problems after years of accumulated technical debt when refactoring the entire codebase becomes the only option.

Main features

Nx Monorepo + ESLint Module Boundaries
NgRx for Persisted State (User Settings)
Angular Signals for Component-Local State
Module Federation Micro-frontend
CDK Virtual Scroll (10 000+ Rows)
OnPush Everywhere (ESLint-enforced)
Custom Nx Code Generators
Storybook Component Documentation
Selective Preloading Strategy
Jest + Spectator + ADR Docs
View Case Study

Have an idea to build?

Let's turn your idea into a powerful product. I'm available for freelance projects, long-term collaborations and full-time roles.

Let's TalkView My Work
Emailouokkimohamed7@gmail.comLocationToulouse, FranceAvailabilityOpen to new opportunities