As this is a portfolio repository, please email omchaddha7@gmail.com directly for any sensitive security disclosures.

RouteSync implements strict Role-Based Access Control (RBAC) via stateless JSON Web Tokens (JWT). The API surface area is protected across three distinct tiers:

* Registration logic guarantees that self-registered users are assigned the driver role. Privilege escalation to the admin role is mechanically restricted.

No production secrets are committed to this repository. The architecture securely handles secrets using environment-specific variables.

Because this repository serves as a live engineering portfolio, it is intentionally configured in a Sandbox Mode.

Credentials for demo-admin and demo-driver are publicly displayed on the frontend. This is an intentional engineering decision to eliminate friction for technical recruiters and hiring managers reviewing the live application.

To prevent vandalism while maintaining an interactive demo, the demo-admin account operates under a strict Read-Only Mode.

• The UI permits simulated route creation and editing.
• The Express API intercepts the payload and gracefully returns a 403 Forbidden response for the demo-admin email address, preserving the integrity of the routing tables.

If this repository were to be forked and deployed for a real-world municipal transit authority, the following architectural hardening steps would be required:

• Rate Limiting: Implement express-rate-limit on the authentication and review ingestion endpoints to mitigate DDoS and brute-force attacks.
• CORS Hardening: Restrict ALLOWED_ORIGINS to the exact frontend domain.
• Credential Rotation: Terminate and purge the public demo accounts from the production database.
• Disable Registration: Ensure ALLOW_PUBLIC_REGISTER=false to restrict internal system access.