Skip to main content

EQMS Architecture Diagram

graph TB
    A[React Frontend] --> B[FastAPI Backend]
    B --> C[PostgreSQL Database]
    B --> D[ChromaDB Vector Store]
    B --> E[Local File Storage]
    B --> F[S3 or GCP Storage]
    B --> G[OpenAI API for AI Assistant]
    A --> H[Tailwind CSS Styling]
    B --> I[Redis for Caching]

Component Descriptions​

Backend Architecture (Phase 1 Completed)​

The FastAPI backend implements 12+ specialized routers, each handling specific business domains:

  • Auth Router: JWT-based authentication and user management
  • Documents Router: File upload, versioning, approval workflows, and metadata management
  • Deviations Router: Non-conformance reporting and investigation tracking
  • CAPA Router: Corrective and Preventive Action management with effectiveness reviews
  • Training Router: User assignment, completion tracking, and certification management
  • Audit Router: Comprehensive activity logging for compliance
  • Signatures Router: Electronic signature workflows for approvals
  • Search Router: Semantic search powered by ChromaDB vector embeddings
  • AI Assistant Router: Content generation and intelligent document interactions
  • Dashboard Router: Real-time analytics and reporting metrics
  • Users/Roles/Groups Routers: RBAC permission management and user organization
  • Notifications Router: Event-driven messaging system

Frontend Architecture​

  • React Frontend: User interface with Next.js for SSR/SSG, TypeScript for type safety, and Tailwind CSS for styling
  • Component Architecture: Modular components with hooks for state management and API integration
  • Pages: Dedicated pages for each major workflow (Documents, Training, Deviations, CAPA, Audit, etc.)

Data Layer​

  • PostgreSQL Database: Relational data storage for users, documents metadata, training records, audit trails, and business entities
  • ChromaDB Vector Store: Local vector database for semantic search embeddings and AI context
  • Storage: Local file system by default, configurable to S3 or GCP via environment variables
  • Redis: Optional caching layer for performance optimization

External Integrations​

  • OpenAI API: For AI assistant features like content creation, report generation, and document analysis
  • Cloud Storage: Configurable S3/GCP integration for scalable file storage
  • Email Services: SMTP integration for notifications and alerts

Security & Compliance​

  • RBAC: Role-Based Access Control with granular permissions
  • Audit Trail: Comprehensive logging of all system activities
  • E-Signatures: Compliant electronic signatures for approvals
  • Data Protection: GDPR/HIPAA compliant data handling