CareerGPT System Architecture: High-Level Components

CareerGPT System Architecture: High-Level Components

1. User/Client Layer

2. API Gateway / Backend Service

  • Flask App

    • Receives API calls from UI or scripts

    • Authenticates users (future: JWT, API keys)

    • Handles routing

3. Core Logic / Agent

4. Data Ingestion

5. Data Storage

  • Config (YAML) File

    • Stores runtime settings, model routing rules, credentials (not in git)

  • Database / Embedding Store

    • Stores raw and processed data, user profiles, job meta, etc.

6. Analytics & Visualization

  • Logs endpoint/UI (already built!)

  • Results Viewer

    • View job market stats, LLM answers, trends

  • Admin Dashboard

    • Usage stats, logs, error reports

7. Extensibility

  • Switch between LLMs

    • Environment/config switch: OpenAI vs Ollama

    • Future: add more adapters for e.g. Anthropic, Mistral, etc.

Diagram (Textual Version/Block Diagram)

I’ll use an ASCII-style block diagram for clarity (but I can render a full PNG if you want):

                [User / Web UI / API Client]
                          |
                          v
    +---------------------------------------------------+
    |        Flask/FastAPI Backend (API Gateway)        |
    |   - Auth / Logging / Routing / Config             |
    +------------------+----------------+---------------+
                       |                |
                       v                v
       [Scraping Agent]             [Analyze Agent/LLM Router]
          |                              |
          v                              |
    [Job/Resume Raw Data]                |
          |                              |
          +---------+--------------------+
                    |
         [LLM Adapter Layer / Prompt Factory]
                    |
        +-----------------------------+
        |      Choose Model:          |
        |  [OpenAI]   OR   [Ollama]   |
        +-----------------------------+
                    |
           [LLM Output (Structured)]
                    |
     +--------------+---------------+
     |      Data Pipeline / DB      |
     +--------------+---------------+
                    |
         [Visualization & Analytics]
                    |
              [Admin Logs UI]

Key Features/Highlights

How to Evolve This

  • Add event triggers (e.g., run pipeline nightly, on user submit, or webhooks)

  • More robust queue/batch processing for scraping/LLM (e.g., Celery, Redis queue, etc.)

  • Scalable storage (Postgres/ChromaDB)

Next Step

  • I can render this diagram as a PNG/flowchart (Mermaid, Lucidchart, draw.io, etc.)

  • Just tell me: What style do you want for the image (boxes/arrows, mind map, etc.)?

Step-by-Step Implementation Plan

Step 1 – Foundation: Identity Backend

Goal:
 Provide a service that creates/stores user identity, manages states, and issues JWT after verification.

Tasks:

  1. Set up Flask app (identity-backend)

    • Single purpose: identity, FSM, JWT issuance.

    • SQLite for user persistence.

Create User Table (FSM ready)

 CREATE TABLE users (

    id TEXT PRIMARY KEY,

    email TEXT,

    state TEXT NOT NULL DEFAULT 'guest',

    verification_code TEXT,

    user_agent TEXT,

    ip_address TEXT,

    first_seen TIMESTAMP DEFAULT CURRENT_TIMESTAMP,

    last_seen TIMESTAMP DEFAULT CURRENT_TIMESTAMP

);


  2. Endpoints:

    • POST /auth/guest: Create guest + set cookie

    • POST /auth/email: Save email, send code → move to email_collected

    • POST /auth/verify: Verify code → issue JWT (state = verified)

    • GET /auth/state: Returns current state for debugging (optional)

Step 2 – Guest Flow (First Visit)

Goal:
 When a user hits demo.html, detect if they are new → create guest identity.

Tasks:

  1. Frontend check (demo.html JS):

    • On load → check if identity_id cookie exists.

    • If not → call /auth/guest (identity-backend).

  2. Identity-backend /auth/guest:

    • Generate UUID.

    • Insert into SQLite with state = guest.

    • Set identity_id cookie (HttpOnly).

    • Return JSON {state: "guest"}.

Step 3 – Rule Enforcement (Guest Limit)

Goal:
 Allow one free action for guests, then prompt email.

Tasks:

  1. careergpt-backend checks state:

    • On each API call, read identity_id cookie (or JWT if available).

    • Call identity-backend /auth/state to confirm state.

  2. Enforce rule:

    • guest → allow first request, mark used (update last_seen or add guest_used = 1).

    • Next request → prompt for email.

Step 4 – Email Collection (guest → email_collected)

Goal:
 Upgrade identity to store email + start verification.

Tasks:

  1. Frontend: Show email prompt → POST /auth/email.

  2. Identity-backend:

    • Save email.

    • Generate 6-digit code (store in verification_code).

    • Send (stub: log code to console).

    • Update state → email_collected.

Step 5 – Verification (email_collected → verified)

Goal:
 Confirm code and issue JWT.

Tasks:

  1. Frontend: Submit code → POST /auth/verify.

  2. Identity-backend:

    • Validate code against DB.

    • Update state → verified.

Issue JWT with:

 {

  "sub": "<user_id>",

  "state": "verified",

  "aud": "careergpt",

  "exp": "<1h>"

}


  1. Return JWT to frontend (store in localStorage).

Step 6 – Protected API Calls (JWT)

Goal:
 Use JWT for all future calls to careergpt-backend.

Tasks:

  1. Frontend:

    • Attach JWT in Authorization: Bearer <token> header.

  2. careergpt-backend:

    • Middleware validates JWT (shared secret).

    • Enforce state or role before protected routes.

Step 7 – Member Upgrade (Future)

Goal:
 Support extra FSM step (verified → member) for payments, etc.

Diagram (Summarized)

User -> demo.html (frontend)

   |

   | 1. On load: check cookie, call /auth/guest if missing

   v

identity-backend (FSM)

   - SQLite (state = guest)

   - Sets cookie identity_id

   |

   | 2. First request → allow guest, mark used

   | 3. Next → prompt email, call /auth/email → email_collected

   | 4. User submits code → /auth/verify → verified + JWT

   |

   | 5. Future requests → careergpt-backend with JWT

   v

careergpt-backend (Protected routes)

   - Validates JWT

   - Enforces rules/roles


Immediate Next Step (Implementation)

Do you want me to:

  1. Write the actual Flask code for /auth/guest (create identity + set cookie)?

  2. Then integrate frontend JS for checking/creating guest identity?

  3. Then proceed step by step (email collection, verification, JWT)?

And should we keep mocking the DB for first iteration (in-memory dict) or start directly with SQLite schema + helpers (ready for cPanel deployment)?

Comments

Post a Comment

Popular posts from this blog

Feature: Audit log for one login, and identity service

Image
Customer (Product) Page High-Level System Design Diagram (PlantUML) Sequence Diagram: Audit Event Ingestion Sequence Diagram: Orchestration Event For a High-Level System (Component) Diagram The queue is implemented as message_queue (generic), and the audit log service consumes from it, writing to a dedicated audit_log table. The logging service also consumes from the same message_queue and writes to log_store. Orchestration/other services use the same queue. Summary Table: What Writes Where Event Type Goes Into Consumed By Final Storage audit message_queue Audit Log Service audit_log table log message_queue Logging Service log_store table doc_uploaded message_queue Orchestration Worker (business DB, or triggers next event) ocr_ready message_queue Notification Worker, etc. (notification log, etc.)  Core Tables message_queue – universal event bus (temp buffer) audit_log – immutable audit/compliance events log_store – application logs (op...
Read more

Getting started - Build your data science lab environment

This guide explains how to set up a complete data science environment for the udemy program. A proper setup ensures compatibility and avoids recurring environment issues.  1. Overview Goal : Create a full-featured environment with sufficient resources for all course exercises. Recommendation : Use Anaconda for the most reliable setup. Alternative : Use a Python virtual environment with pip if Anaconda isn’t working. 2. Setup Options Primary (Recommended) Create a dedicated Anaconda environment (isolated, compatible). Alternative Use a standard Python virtualenv + pip (faster but less reliable). 3. Windows Setup Steps Clone Course Repository git clone https://github.com/ed-donner/llm_engineering/ Follow the repository’s README.md instructions for additional setup details. Create Anaconda Environment Inside the llm_engineering folder: conda env create -f environment.yml ⏳ This may take several minutes. Activate the environment: conda activate llms Deactivat...
Read more

QA - Run #1 - Results

Image
# QA Report for Tag QA_July2025_A - **Tag/Commit:** QA_July2025_A (`f32abc1`) - **Date:** 2025-08-01 - **QA Outcomes:** All tests passed except for file upload (see below)... - **Environment:** Windows 10, Python 3.12, requirements.txt as of tag - **Notes:** See log for detailed results. ## Issue Found - **Step:** - **Bug:** - **Log excerpt:** - **Screenshot:** For this QA run, we begin with pristine state by: Stop all services Delete logs.db, and jobs.db Delete all files in doc_store folder Start all services Test, you should see no data on index page, and query should result in no data found error Next, go ahead and upload new1.txt, and after that new2.txt Issue the query: "can you summarize all of the todo items you can find, seperating each one on a single line, with due date first, then title, and description with any details you can augment" Expected Answer: - August 1, 2025: Respond to Amira and discuss weekend plans - August 3, 2025: Go to Somesh class and finish ta...
Read more