Bare Solutions developed the AAA System from the ground up to address the need for a streamlined and secure platform to process international driving license orders across Australia. By integrating kiosk terminals, implementing robust role-based management, and ensuring secure data handling, we delivered a solution that enhances efficiency and accuracy throughout the order management process.

The Challenge

The client required a robust platform capable of:

• Handling orders submitted through kiosk terminals located across Australia.
• Facilitating role-based management of users, clubs, and locations.
• Ensuring secure interactions between kiosks and the backend system via API.
• Providing an intuitive admin dashboard for efficient order management and data tracking.
• Scaling Cloud infrastructure based on demand.

The Solution

Kiosk Terminals Integration

We designed an architecture that integrates kiosk terminals into the system. These kiosks, strategically placed near staff counters, allow customers to input their driving license details. The information is securely transmitted to the backend using an API key generated through the admin dashboard.
When an order is created, it’s immediately displayed on the admin dashboard, enabling staff members to process it efficiently. Each order is linked to a specific club and its associated location, providing precise tracking and management.

Role-Based Access Control

To meet the diverse operational requirements, we implemented a robust role-based system with three key roles:

• Superadmin : Oversees the entire system, manages staff invitations, club and location assignments, and API key generation for kiosks. Can view and manage all orders, users, and configurations.
• Club Admin : Operates within a specific club, managing locations and staff, handling order creation and management within the club.
• Location User : Works within specific locations of a club, handling order creation and management restricted to their assigned locations.

Authentication with Firebase

We utilized Firebase Authentication implementing OpenID standard to secure user access and enforce role-based permissions. Features include:

• User invitations by authorized roles (no public sign-up allowed).
• Secure token-based authentication ensures safe interactions within the system.

Order Management and API Integration

Orders include detailed fields for customer information, driving license, and passport details. Documents, such as scanned images of licenses and passports, are securely uploaded to a Google Cloud Bucket.
The system integrates with an external API (Technocrat API) to send finalized order data. Despite unclear documentation, we successfully implemented the integration to meet the client’s requirements.

Authentication with Firebase

• Hosting : Vercel and Upstash with its edge functions allow instant load times, infinite scaling to serve any number of users and an automatic scale-to-zero option on no use. 
• Frontend : React (Next.js) for building the user interface and handling client-side interactions.
• Backend : Next.js Server Actions + REST API deployed on Vercel for processing business logic, managing database operations well integrated with the frontend app, decreasing bugs, and integrating with external services.
• Database : NeonDB PostgreSQL, a serverless database for storing information about orders, users, and club locations.
• File Storage : Google Cloud Platform (GCP) Bucket, with links generated as short-lived signed URLs to ensure secure access.
• Authentication : Firebase Authentication, with backend middleware validating JWTs for secure interactions implementing OpenID standard and compliance with security regulations.
• Caching : Redis, used for storing short-lived data such as 2FA codes.
• CRON Jobs : Vercel CRON jobs for automated de-identification of completed, cancelled, or rejected orders.

Authentication with Firebase

• Scaling : Vercel serverless edge functions can scale up to any demand allowing to serve any number of users and scale down to zero cost if no clients use our app.
• API Security : Implemented a robust API key system to ensure secure communication between kiosks and the backend.
• Role Management : Designed a scalable role-based access system to accommodate complex organizational hierarchies.
• Technocrat API Integration : Overcame documentation challenges to successfully integrate and optimize the process.
• Data Privacy : Ensured secure file uploads and restricted access to sensitive data through signed URLs and Firebase token validation. Data is unidentified after a certain time period to ensure government compliance.

The Result

The AAA System now provides a seamless experience for managing international driving license orders. It effectively bridges the gap between kiosk terminals and back-office operations, ensuring secure, efficient, and accurate processing at every step.