Never miss a critical email again.

Client

Qnotix

Role

Full Stack Developer

Timeline

Launching Soon

Overview.

Qnotix is an AI-powered email intelligence platform that detects urgent emails, sends instant WhatsApp alerts, provides a 24/7 AI chat assistant, and supports 30+ languages — built as a full-stack, production-grade SaaS application with 4 independently deployable microservices (Go API, Python AI, Next.js frontend, Keycloak auth) running on AWS ECS Fargate with subdomain-based routing across www, mail, api, ai, and auth on qnotix.com.

THE CHALLENGE

Important emails get buried in overflowing inboxes. Professionals miss deadlines, delay critical replies, and lose opportunities — not because they don't care, but because existing email clients treat every message the same. There's no intelligent layer between the inbox and the person who needs to act.

Architected a microservices platform with 4 independently deployable services — a Go backend API (Gin + GORM + PostgreSQL), a Python AI service (FastAPI + OpenAI GPT-4), a Next.js 16 frontend (React 19 + Redux Toolkit + TanStack React Query + Radix UI + Framer Motion), and Keycloak auth — all on AWS ECS Fargate. ML-powered urgency detection scores emails across 4 priority tiers, an AI assistant powers email drafting and response coaching, multi-channel notifications (SMS, WhatsApp, email, push) ensure 99.9% alert delivery across 180+ countries, and 21-file Terraform IaC provisions the complete AWS infrastructure with VPC network segmentation, multi-AZ HA, encrypted databases, and secret management.

THE SOLUTION

Gallery.

Full platform walkthrough demonstrating AI urgency detection, real-time awareness, and the AI assistant.

Video

Landing page hero section showcasing the AI-powered email intelligence platform with urgency detection and real-time awareness.

Authentication flow with OAuth2 via Google, Microsoft, Apple, and X — powered by Keycloak with magic links and SMS verification.

Multi-step signup with phone verification across 180+ countries, email confirmation, and COPPA/GDPR compliance.

Main workspace showing the intelligent inbox with ML-powered urgency classification, AI assistant, and Smart Planner integration.

TECHNOLOGY

Tech Stack.

Frontend

Next.js 16.0.10 (App Router, Turbopack)

React framework with server & client components

React 19.2.3 + TypeScript 5

Type-safe UI library (latest)

Tailwind CSS 4

Utility-first styling

shadcn/ui (Radix UI)

Accessible component primitives

Redux Toolkit 2.9.0 + redux-persist 6.0.0

Client state management with session persistence

TanStack React Query 5.87.4

Server state, caching, mutations (5-min staleness, 10-min GC)

Framer Motion 12.23.12

Animations, scroll effects, gestures

React Hook Form 7.62.0 + Zod 4.1.8

Performant form handling & schema validation

Axios 1.12.0

HTTP client

next-themes 0.4.6

Dark/light mode with system preference detection

Lucide React 0.539.0

Icon library

Backend API

Go 1.24 + Gin 1.10.1

Primary API service (25+ endpoints)

GORM 1.30.0

ORM with migrations (13 models)

PostgreSQL 15

Production database

SQLite

Development database fallback

Redis 7 (Upstash)

Session store, caching, rate limiting

Argon2id

Industry-leading password hashing

golang-migrate 4.19.1

Database migrations

libphonenumber 1.6.7

International phone validation

AI Service

Python 3.11 + FastAPI

AI/ML microservice runtime

OpenAI API (GPT-4)

Email analysis, urgency detection, summarization

Anthropic API

Alternative AI provider

Authentication & Identity

Keycloak

OAuth2/OpenID Connect identity provider

Session-based auth

HttpOnly cookies, cross-subdomain sharing

Magic link auth

Passwordless login tokens

Phone OTP verification

SMS-based verification codes

Cloud & Infrastructure (AWS)

AWS ECS (Fargate)

Container orchestration

AWS ECR

Docker image registry

AWS RDS

Managed PostgreSQL (encrypted, auto-backup)

AWS ElastiCache

Managed Redis

AWS SES

Transactional email service

AWS SNS

SMS fallback provider

AWS ALB

Load balancing with HTTPS termination

AWS ACM

SSL/TLS certificate management

AWS Route 53

DNS management

AWS Secrets Manager

Secure credentials storage

AWS CloudWatch

Logging & Container Insights

AWS VPC

Network isolation (public/private subnets, NAT)

DevOps & Tooling

Terraform (21 files)

Infrastructure as Code — full AWS provisioning

Docker (multi-stage builds)

Scratch-based production images, non-root execution

Docker Compose (4 configs)

Dev, prod, test, legacy environments

GitHub Actions

CI/CD — validation, build, deploy, health checks (5-job pipeline)

Nginx

Reverse proxy with upstream routing

Air

Go hot-reload for development

Turbopack

Next.js fast dev builds

Makefile

Development workflow automation

Vercel

Frontend deployment

Northflank

Current deployment platform

Koyeb

Keycloak hosting

Neon

Serverless PostgreSQL (testing)

Communications

Twilio

SMS verification (primary)

AWS SNS

SMS fallback

AWS SES

System/transactional emails

SMTP

User-to-user internal emails

WhatsApp Business API

Alert delivery

MailHog

Development email capture

CAPABILITIES

Key Features.

Authentication & Security

Multi-step signup flow — 3-step wizard with real-time validation, Redis session persistence (30-min expiry)

Multi-method authentication — Keycloak OAuth2/OIDC, native password auth, magic links, phone OTP

OAuth social login support — Google, Microsoft, Apple, X (infrastructure ready)

Age-based compliance — COPPA (US), GDPR (EU), and local privacy laws for 27 countries with different minimum ages

Parental consent system — automated detection of underage users, parent email collection, consent token flow

Child account management — dedicated signup flow for minors with guardian oversight

Session management — HttpOnly cookies, cross-subdomain sharing, "remember me" (7/30 day sessions), session listing/revocation

Brute force protection — IP-based (10 attempts) and email-based (5 attempts) lockout with progressive delays up to 5 minutes

4 rate limiting strategies — fixed window, sliding window, token bucket, leaky bucket with Redis tracking

Security headers — CSP, X-Frame-Options, X-XSS-Protection, Referrer-Policy, Permissions-Policy

Argon2id password hashing — industry-leading hash algorithm

Audit logging — security events tracked with severity levels (low → critical), IP, user agent, metadata

Feature flags system — 10 toggleable security features via environment variables

Password strength validation — uppercase, lowercase, numbers, special chars, strength indicator UI

Frontend Architecture

Subdomain-based routing — www.qnotix.com (marketing) vs mail.qnotix.com (app) with middleware enforcement

Three-pane sidebar layout — primary nav, secondary context, and main content area

Dark/light theme — system preference detection, CSS variable theming, persistent preference

Glass morphism UI — custom glass-card components, ambient glow effects, premium shadows

Responsive design — mobile-first with hamburger menu, slide-in sidebar, touch-friendly UI

Animated landing page — hero with animated stats counter, ambient glows (Framer Motion), scroll-based parallax, spring physics

20+ marketing pages — features, solutions (5 verticals), resources, company, legal, demo

Custom form components — password with strength tooltip, phone input with country detection, date picker, country selector

Cross-subdomain navigation — custom SubdomainLink component for seamless www ↔ mail transitions

PWA manifest — standalone display, custom icons (192x192, 512x512), themed splash screen

State architecture — Redux for UI/auth persistence + React Query for server state with 5-min staleness, 10-min GC

Error handling system — 20+ specific auth error codes mapped to user-friendly messages, HTTP status handling

Backend Architecture

RESTful API — 25+ endpoints across auth, signup, phone, email, WhatsApp, session management

Multi-provider email system — dual architecture: SES for system/transactional, SMTP for user-to-user

Email template system — database-stored HTML/text templates with enable/disable toggle

Email delivery logging — full audit trail with status tracking and error metadata

Phone verification service — auto-detect Twilio vs AWS SNS, 6-digit codes, 10-min TTL

WhatsApp integration — text/template messages, delivery tracking, opt-in management

13 database models — User, Session, EmailProvider, NotificationSettings, AIProcessingSettings, UsageMetrics, APIKey, WebhookEndpoint, Organization, OrganizationMember, FailedAttempt, AuditEvent, Token

Subscription tier system — Free/Pro/Enterprise with monthly alert quotas and usage tracking

Stripe customer ID — pre-wired for payment integration

Connection pooling — 25 max open, 5 max idle, 5-min lifetime

Dual database support — PostgreSQL (prod) with automatic SQLite fallback (dev)

CORS — configurable origins, methods, headers, credentials, 24-hour preflight cache

Panic recovery — stack trace logging with standardized error responses

Request ID tracking — error responses include request correlation IDs

AI-Powered Email Intelligence

ML-powered urgency detection — scores emails across 4 priority tiers (Critical, High, Normal, Low)

Contextual analysis of sender, subject, body, and historical response patterns

AI email assistant — context-aware draft generation with tone/style controls

Interview preparation and response coaching based on email threads

Multi-language analysis across 50+ languages with cross-language urgency classification

Smart notification engine with adaptive timing based on user response patterns

Real-Time Awareness & Communications

Multi-channel notification delivery — SMS (Twilio), WhatsApp Business API, email (AWS SES), push

Multi-provider failover ensuring 99.9% alert delivery across 180+ countries

Multi-provider email integration — Gmail OAuth2, Outlook OAuth2, IMAP

Phone verification with auto-detect between Twilio and AWS SNS providers

Productivity & Planning

Smart Planner — convert emails to tasks with Kanban boards

Communication analytics — response time tracking and pattern recognition

Contextual chat within task boards

DevOps & Infrastructure

Terraform IaC — 21 files provisioning complete AWS infrastructure: VPC (public/private subnets, NAT gateways), RDS, ElastiCache, ECS, ALB, ACM, Route 53, ECR, Secrets Manager, IAM, security groups

Multi-stage Docker builds — Go binary compiled from scratch image (minimal attack surface), non-root user execution

4 Docker Compose configurations — development (hot reload + MailHog), production (AWS services), testing (Neon + Upstash), legacy

CI/CD pipeline — 5-job GitHub Actions: validate backend (Go tests + golangci-lint), validate AI (pytest + flake8 + black + isort), build & push to ECR, deploy to ECS with rollout monitoring, health checks

Database migration pipeline — separate workflow with AWS SSM execution or direct connection fallback

SSL/TLS everywhere — ACM wildcard cert, HTTPS-only cookies, encrypted RDS, TLS Redis

S3 Terraform state — remote state management with versioning

CloudWatch Container Insights — full monitoring and log aggregation

Health check endpoints — backend /health, ALB target group checks

Multi-AZ high availability — 2 public + 2 private subnets across AZs, 2 NAT gateways

Security groups — strict network segmentation: ALB → ECS → RDS/Redis (no direct public access to database)

INTELLIGENCE

AI / ML Pipeline.

A multi-layer AI pipeline built as a dedicated Python FastAPI microservice, independently scalable from the Go backend. It processes every incoming email — classifying urgency across 4 priority tiers, surfacing critical messages via multi-channel alerts, and powering a 24/7 AI assistant for drafting, summarization, and response coaching across 30+ languages.

Urgency Detection

OpenAI API (GPT-4) + Custom ML

Classifies email priority using natural language understanding and contextual signals

ML-powered urgency scoring across 4 priority tiers (Critical, High, Normal, Low)
Contextual analysis of sender, subject, body, and historical response patterns
Confidence-based flagging with configurable urgency thresholds
Multi-language urgency detection across 30+ languages

AI Email Assistant

OpenAI API (GPT-4) + Anthropic API

24/7 conversational assistant for email drafting, interview prep, and response coaching

Context-aware email draft generation with tone and style controls
Interview preparation based on email threads and sender context
Response coaching with suggested talking points and follow-up actions
Email content summarization and thread digest generation
Dual AI provider support — OpenAI (primary) + Anthropic (alternative)

Multi-Language Analysis

OpenAI API + Language Detection

Processes emails in 50+ languages with automatic translation and cross-language urgency classification

Automatic language detection across 50+ languages
Cross-language urgency classification maintaining accuracy across locales
Inline translation for non-native email threads

Smart Notification Engine

Custom Rules Engine + ML

Determines when and how to alert users based on urgency, user behavior, and multi-provider failover

Multi-channel delivery — SMS (Twilio), WhatsApp Business API, email (AWS SES), push
Adaptive notification timing based on user response patterns
Multi-provider failover ensuring 99.9% alert delivery across 180+ countries
Auto-detect between Twilio and AWS SNS for SMS delivery

How It Works

When an email arrives, the urgency detection model scores it in real time across 4 priority tiers. Critical emails trigger instant multi-channel notifications — SMS via Twilio (with AWS SNS failover), WhatsApp via Business API, email via AWS SES, and push. The AI assistant is available 24/7 — users can ask it to draft replies, summarize threads, or prepare for meetings referenced in their inbox. All AI processing runs through the Python FastAPI microservice with dual provider support (OpenAI + Anthropic), isolated from the main Go API for independent scaling.

IMPACT

Results.

010MicroservicesIndependently deployable services (Go, Python, Next.js, Keycloak)

020+API EndpointsAcross auth, signup, phone, email, WhatsApp, sessions

030DB ModelsUser, Session, Organization, APIKey, Webhook, AuditEvent & more

040Terraform FilesFull AWS provisioning (VPC, ECS, RDS, ElastiCache, ALB, ACM, Route 53)

05<200msAPI LatencyRedis 7 cached response times

060+CountriesPhone verification & alert delivery support

070.9%Alert UptimeMulti-provider notification failover (Twilio, SNS, SES, WhatsApp)

080Rate LimitingStrategies: fixed window, sliding window, token bucket, leaky bucket

ENGINEERING

Architecture.

014 independently deployable microservices (Go API, Python AI, Next.js frontend, Keycloak auth)

02Subdomain-based routing — www, mail, api, ai, auth on qnotix.com with middleware enforcement

03Hybrid state management — Redux Toolkit + redux-persist (client) + React Query (server) with 5-min staleness, 10-min GC

04Multi-provider notification failover for 99.9% alert delivery across 180+ countries

05VPC with 2 public + 2 private subnets across AZs, 2 NAT gateways for multi-AZ high availability

06Sub-200ms API response times with Redis 7 caching layer (25 max open, 5 max idle connections)

0721-file Terraform IaC provisioning complete AWS infrastructure with S3 remote state

0813 database models including organization/team structure, webhook endpoints, API keys, usage metrics

093-step signup wizard with Redis session persistence (30-min expiry), age validation for 27 countries, phone OTP, parental consent

104 rate limiting strategies — fixed window, sliding window, token bucket, leaky bucket with Redis tracking

11Enterprise-grade security — Argon2id hashing, brute force protection, CSP headers, CORS, audit logging with severity levels

12Cross-subdomain session sharing with custom SubdomainLink component for seamless www ↔ mail transitions

13Dual email architecture — SES for system/transactional, SMTP for user-to-user with database-stored templates

145-job CI/CD pipeline — Go tests + golangci-lint, Python pytest + flake8 + black, ECR push, ECS deploy, health checks

Deployment

AWS ECS Fargate cluster running 3 backend services

Vercel Edge Network for frontend hosting

Terraform-managed AWS infrastructure — VPC, ALB, ECS, RDS, ElastiCache, ECR, ACM, Route 53, Secrets Manager, IAM, CloudWatch

Multi-stage Docker builds — Go binary from scratch image (minimal attack surface), non-root execution

4 Docker Compose configurations — dev (hot reload + MailHog), prod (AWS), test (Neon + Upstash), legacy

5-job GitHub Actions CI/CD — validate backend, validate AI, build & push to ECR, deploy to ECS, health checks

Database migration pipeline — separate workflow with AWS SSM or direct connection fallback

Cloudflare for DDoS protection, DNS, and TLS termination