Sci Vault
sci-vault
sci-vault is an AI-powered collaborative platform for intelligent management and discovery of laboratory research data. The system leverages modern microservices architecture with gRPC communication, embedding-based recommendations, and vector search capabilities to provide researchers with powerful tools for data exploration and insight extraction.
Overview
This monorepo contains a complete microservices-based application for research data management:
- svc-gateway: REST API gateway built with Go and Gin. Handles user authentication (registration, login, email verification, password reset), profile management, avatar uploads, JWT middleware, and routes recommendation requests to
svc-recommendervia gRPC. - svc-recommender: gRPC-based recommendation engine built with Python, utilizing embedding models and pgvector for intelligent content discovery.
- frontend: Modern SvelteKit (Svelte 5) web application with dark/light theme, i18n support (en / zh-CN), and full integration with the gateway API.
Technology Stack
| Layer | Technologies |
|---|---|
| Gateway | Go 1.26, Gin, GORM, Viper, JWT, Redis, AWS SDK v2 (S3-compatible RustFS), gomail |
| Recommender | Python 3.14, gRPC (grpcio), Google GenAI (Gemini 3 Flash Preview + gemini-embedding-001), psycopg, pgvector, Redis |
| Frontend | SvelteKit 2 (Svelte 5), Vite 8, Tailwind CSS v4, TypeScript, Axios, Bits UI |
| Database | PostgreSQL 18 (with pgvector extension) |
| Cache | Redis 8.6 |
| Storage | RustFS 1.0.0-alpha.89 (S3-compatible object storage) |
| Communication | gRPC (gateway ↔ recommender), REST/HTTP (frontend ↔ gateway) |
| Code Gen | Buf (Protocol Buffers) |
Prerequisites
For Docker Deployment (Recommended):
- Docker with Docker Compose
For Manual Local Development:
- Buf — Only needed when
.protofiles are changed - Go 1.26+ — For the gateway service
- Python 3.14+ with uv — For the recommender service
- Bun 1.0+ — For the frontend application
Quick Start Using Docker Compose
⚠️ WARNING for Production environments: The provided
docker-compose.yamland default configurations are intended for local development and testing only. When deploying to a production environment, you MUST use your own secure parameters, strong passwords, and proper secrets management. It is highly recommended to create and use a dedicateddocker-compose-production.yamlwith hardened configurations.
A docker-compose.yaml is provided at the root to spin up the entire application (Frontend, Gateway, Recommender) along with all required infrastructure services (PostgreSQL, Redis, RustFS) in one command.
Note: Generated gRPC stubs are committed in this repository. Docker builds no longer generate stubs during image build. Run buf generate only when you modify .proto files.
1. Prepare the configuration files for each service:
cp svc-gateway/config.docker.example.yaml svc-gateway/config.docker.yaml
cp svc-recommender/config.docker.example.yaml svc-recommender/config.docker.yaml
cp frontend/nginx.example.conf frontend/nginx.conf
2. Open svc-gateway/config.docker.yaml and fill in your secrets:
| Field | What to set |
|---|---|
database.password |
Must match POSTGRES_PASSWORD in docker-compose.yaml |
storage.access_key / storage.secret_key |
Must match RUSTFS_ACCESS_KEY / RUSTFS_SECRET_KEY in docker-compose.yaml (default: rustfsadmin / rustfsadmin) |
mailer.username / mailer.password |
Your SMTP credentials |
jwt.secret |
Any strong random string |
RustFS S3 credentials: RustFS uses the same
RUSTFS_ACCESS_KEY/RUSTFS_SECRET_KEYvalues fromdocker-compose.yamldirectly as its S3 API credentials — no need to log into the web console to generate separate keys. For local development the defaults (rustfsadmin/rustfsadmin) work out of the box.
3. Run the cluster:
# For Local Development
docker compose up -d --build
# For Production (using production-specific config)
cp docker-compose.yaml docker-compose-production.yaml # If you haven't created one yet
# Edit docker-compose-production.yaml and svc-gateway/config.docker.yaml with production-grade secrets
docker compose -f docker-compose-production.yaml up -d --build
This starts the following containers:
| Container | Service | Ports |
|---|---|---|
sci-vault-postgres |
PostgreSQL 18 | 5432 |
sci-vault-redis |
Redis 8 | 6379 |
sci-vault-rustfs |
RustFS (S3-compatible storage) | 9000 (API), 9001 (Console) |
sci-vault-recommender |
Recommender (gRPC) | 50051 |
sci-vault-gateway |
API Gateway (REST) | 8080 |
sci-vault-frontend |
Frontend Web Client | 80 |
Updating configuration:
config.docker.yamlis mounted into each service container at runtime (not baked into the image). After editing, only a restart is needed — no rebuild:docker compose restart gateway recommender # or for production: docker compose -f docker-compose-production.yaml restart gateway recommender
Frontend nginx config:
frontend/nginx.conf(copied fromnginx.example.conf) is mounted at runtime. You can edit it (e.g. tune proxy settings, add security headers) and restart without rebuilding:docker compose restart frontend
HTTPS / TLS: To enable HTTPS for the frontend:
- Place your certificate and private key at
frontend/ssl/cert.pemandfrontend/ssl/key.pem- Uncomment the
listen 443 sslblock and certificate directives infrontend/nginx.conf- Update the
server_nameinfrontend/nginx.confto your actual domain- Restart the frontend container:
docker compose restart frontendThe
frontend/ssl/directory is mounted read-only into the container at/etc/nginx/ssl/. The directory is git-ignored — never commit your private key.
To stop the infrastructure:
# For Local Development
docker compose down
# For Production
docker compose -f docker-compose-production.yaml down
Manual Local Development
If you prefer to run the services directly on your host machine instead of using Docker, follow these steps.
1. Start Infrastructure Dependencies
If you prefer to develop services locally while running only the back-end infrastructure (DB, Redis, S3) in Docker:
docker compose up -d postgres redis rustfs # Add rustfs-volume-helper if first time
2. Generate gRPC Code (Only If You Changed .proto)
This step is optional unless you changed files in proto/. Make sure Buf is installed.
buf generate
Important: Re-run this command whenever you modify any .proto files in the proto/ directory.
3. Set Up Individual Services
Each service has its own setup and runtime requirements. Navigate to the respective directories and follow their specific README:
svc-gateway (API Gateway)
cd svc-gateway
cp config.example.yaml config.yaml # then fill in your values
go mod tidy
go run .
See svc-gateway/README.md for the full configuration reference and API endpoint documentation.
svc-recommender (Recommender Engine)
cd svc-recommender
uv sync
uv run --env-file .env main.py
See svc-recommender/README.md for detailed instructions.
frontend (Web Client)
cd frontend
bun install
bun run dev
See frontend/README.md for detailed instructions.
Project Structure
sci-vault/
├── proto/ # Protocol buffer definitions for gRPC
│ └── recommender/ # Recommender service proto
├── svc-gateway/ # Go-based API gateway
├── svc-recommender/ # Python-based recommendation engine
├── frontend/ # SvelteKit web application
├── docker-compose.yaml # Infrastructure services (PostgreSQL, Redis, RustFS)
├── buf.yaml # Buf configuration for code generation
├── buf.gen.yaml # Buf generation settings
└── README.md # This file
Development Workflow
- Start infrastructure:
docker compose up -d - Update Proto Definitions (optional): Only if you modify files in
proto/, runbuf generate - Develop Services: Make changes to individual service code
- Run Services: Start
svc-recommender,svc-gateway, andfrontendindependently
Service Communication
Browser
│ REST/HTTP
▼
svc-gateway ──gRPC──► svc-recommender
│
├── PostgreSQL (user data, profiles)
├── Redis (email verification codes, cache)
└── RustFS (avatar & asset storage)
Roadmap
- Additional recommendation algorithms and personalization features
- Enhanced CI/CD pipeline with automated testing and building
License
This project is licensed under the LICENSE file in the root directory.
