Skip to content

aiman-mumtaz/nafath-mock

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

33 Commits
backend
backend
 
 
frontend
frontend
 
 
README.md
README.md
 
 
docker-compose.yml
docker-compose.yml
 
 
nafath-mock.code-workspace
nafath-mock.code-workspace
 
 

Repository files navigation

🛡️ Nafath-Mock: AI-Enhanced SSO Middleware

A high-fidelity simulation of the Saudi National Single Sign-On (Nafath) ecosystem.
Integrating real-time AI behavioral risk assessment with Spring Boot & Next.js.

🏗️ System Architecture

The repository is structured as a Monorepo to maintain tight coupling between the security contract and implementation layers.

💻 Tech Stack

  • Frontend: Next.js 15 (App Router), TypeScript, Tailwind CSS.
  • Backend: Spring Boot 3.4 (Java 21), Spring Data JPA, Hibernate.
  • Database: Microsoft SQL Server 2022.
  • Intelligence: Simulated LLM Middleware for Behavioral Risk Assessment.

🛠️ Installation & Setup

1. Database Configuration

The application expects a Microsoft SQL Server instance with a database named nafath_db.

docker run -e "ACCEPT_EULA=Y" -e "MSSQL_SA_PASSWORD=Password123" \
       -p 1433:1433 --name nafath-sql -d \
       [mcr.microsoft.com/mssql/server:2022-latest](https://mcr.microsoft.com/mssql/server:2022-latest)

2. Backend Initialization

cd backend
mvn clean package:spring-boot:repackage -U -X
mvn spring-boot:run

3. Frontend Initialization

cd frontend
npm install
npm run dev

🧠 Technical Highlights

🚀 AI Risk Assessment Middleware

Unlike standard auth flows, this system intercepts the /initiate request to perform:

  • Contextual Analysis: Evaluates National ID patterns and metadata.
  • Risk Scoring: Assigns a value (0.0 to 1.0). Scores > 0.8 trigger an immediate REJECTED_BY_AI state, bypassing the Nafath challenge entirely to prevent credential stuffing.

🔄 Asynchronous State Machine

The system utilizes a decoupled state machine to ensure data integrity:

  • Backend: Manages persistent state in SQL Server via JPA.
  • Frontend: Implemented with a resilient polling hook.
  • Simulator: External trigger for PATCH state transitions, mimicking mobile app interaction.

🧪 Simulation Flow

  1. Initiate: Enter a valid dummy ID: 1010101010 (Citizen) or 2020202020 (Resident).
  2. Challenge: The system generates a Random Code (Handshake).
  3. Approve: Use the Simulator Panel to trigger a biometric success simulation.
  4. Verify: The Next.js frontend detects the COMPLETED state and grants access.

📂 Project Structure

nafath-project/
├── backend/                # Spring Boot Service (Java 21)
│   ├── src/main/java/      # Domain Logic & AI Middleware
│   └── src/main/resources/ # application.properties & SQL scripts
├── frontend/               # Next.js 15 Application
│   ├── app/                # App Router & UI Components
│   └── public/             # Static Branding Assets
└── README.md               # System Documentation

Future Scope

  1. Mock existing approver application

Developed for secure, scalable authentication demonstrations.

About

No description, website, or topics provided.

Resources

Readme
Activity

Stars

2 stars

Watchers

0 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

 
 
 

Contributors

Languages