Budget Analyzer Orchestration

"Archetype: coordinator. Role: System orchestrator; coordinates cross-cutting concerns and deployment."

— AGENTS.md

Architecture Boundaries

This project demonstrates production-grade patterns:

Authentication: OAuth2/OIDC with Auth0, session-based edge authorization, session management
API Gateway: Session validation (ext_authz), auth-path throttling at Istio ingress, API routing and API-path throttling at NGINX
Microservices: Spring Boot, Kubernetes, Tilt local development

Live Development in Kubernetes

Edit code locally. Changes reach the running Kubernetes pod in seconds — without image rebuilds or pod restarts — while the full production stack (Istio mTLS, network policies, ext_authz, TLS infrastructure) stays active.

Java services: Gradle compiles on the host, Tilt syncs the JAR into the pod and restarts the process
React frontend: Tilt syncs source files, Vite HMR hot-patches the browser (sub-second)
Shared library: Changes to service-common automatically cascade to all downstream services

This avoids the usual tradeoff between fast local development and production-faithful Kubernetes environments. See Live Development Pipeline for details.

Quick Start

Getting Started owns the supported local startup checklist. It is the only setup doc that should be treated as the happy-path ./setup.sh and tilt up flow.

For deeper detail, use the owner docs directly:

Local Environment Mechanics - live update, mixed local-and-cluster workflows, and environment internals
Service-Common Artifact Resolution
- local credential-free artifact flow versus GitHub Packages
Tilt/Kind Manual Deep Dive - manual bootstrap internals only; not the default onboarding path
Scripts Directory - verifier catalog and operational entry points

Common operator entry points after the stack is healthy:

app: https://app.budgetanalyzer.localhost
Tilt UI: http://localhost:10350
unified API docs: https://app.budgetanalyzer.localhost/api-docs
observability helper: ./scripts/ops/start-observability-port-forwards.sh

Exact /api-docs behavior lives in docs-aggregator/README.md. Exact observability access commands and operator posture live in Observability Architecture.

Documentation

Service Repositories

service-common - Shared library
transaction-service - Transaction API
currency-service - Currency API
budget-analyzer-web - React frontend
session-gateway - OAuth2 authentication and session management

License

MIT

Name		Name	Last commit message	Last commit date
Latest commit History 208 Commits
.gemini		.gemini
.github/workflows		.github/workflows
deploy		deploy
docs-aggregator		docs-aggregator
docs		docs
ext-authz		ext-authz
kubernetes		kubernetes
nginx		nginx
scripts		scripts
tests		tests
tilt		tilt
.bash_aliases		.bash_aliases
.env.example		.env.example
.gitignore		.gitignore
.kube-linter.yaml		.kube-linter.yaml
AGENTS.md		AGENTS.md
CODE_OF_CONDUCT.md		CODE_OF_CONDUCT.md
CONTRIBUTING.md		CONTRIBUTING.md
LICENSE		LICENSE
README.md		README.md
SECURITY.md		SECURITY.md
Tiltfile		Tiltfile
kind-cluster-config.yaml		kind-cluster-config.yaml
setup.sh		setup.sh

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Repository files navigation

Budget Analyzer Orchestration

Architecture Boundaries

Live Development in Kubernetes

Quick Start

Documentation

Service Repositories

License

About

Uh oh!

Releases

Packages

Uh oh!

Contributors

Uh oh!

Languages

Folders and files

Latest commit

History

Repository files navigation

Budget Analyzer Orchestration

Architecture Boundaries

Live Development in Kubernetes

Quick Start

Documentation

Service Repositories

License

About

Topics

Resources

License

Code of conduct

Contributing

Security policy

Uh oh!

Stars

Watchers

Forks

Releases

Packages 0

Uh oh!

Contributors

Uh oh!

Languages

Packages