Building Secure, Scalable
Systems That Actually Work
Full-stack engineer focused on APIs, cloud systems, and real-world applications. I build things that handle production load.
Featured Work
Systems built to solve
real problems
View all projectsFitness Tracking API
Production-grade REST API with RBAC, HATEOAS, and ETag caching
RegulaPilot
AI-powered compliance workflow system for structured decision-making
Café Digital Growth & Operations Platform
End-to-end system for customer engagement, retention, and business operations
Featured Case Study
Engineering in depth
Fitness Tracking API
Production-grade REST API with RBAC, HATEOAS, and ETag caching
The Problem
Modern fitness applications demand APIs that go beyond basic CRUD — handling complex user hierarchies, enforcing fine-grained access control, and remaining self-documenting at runtime without a separate documentation step.
Architecture Layers
HTTP Layer — Koa middleware pipeline — CORS, rate limiting, auth validation, request parsing
Router Layer — Thin route handlers that delegate immediately to the service layer — no logic here
Service Layer — Business logic, authorization checks, cross-entity operations, HATEOAS link generation
Repository Layer — All DB queries in typed repository classes — no raw SQL ever reaches the service layer
Database — MySQL with connection pooling, parameterized queries, and transaction support
Key Engineering Decisions
- JWT with refresh token rotation — zero long-lived secrets in circulation
- RBAC permission matrix — O(1) authorization checks at every endpoint
- ETag caching — ~60% bandwidth reduction on read-heavy workloads
- HATEOAS responses — API is self-documenting at runtime
- Integration test suite — real database, real assertions, no mocks at data layer
Tech Stack
Read the full case study
Architecture, security, testing, and outcomes
Expertise
Skills & Technologies
Backend
Frontend
Mobile
AI / ML
Cloud & Infra
Tools
About
The engineer
behind the work
I build systems with architecture in mind first — thinking about security, scalability, and maintainability before a single line is written.
My focus spans the full stack: from designing secure REST APIs with RBAC and HATEOAS, to building cross-platform mobile apps with offline-first architecture, to training deep learning models for video classification. The common thread is engineering rigour and a preference for systems that actually hold up under production conditions.
I write code to be read by the next engineer — tested, documented at the right level, and structured so that change doesn't require archaeological excavation.
Engineering Principles
Architecture first
Design the system before writing the code.
Security by default
Baked in from day one — not retrofitted.
Test what matters
Integration over mocks; confidence over coverage theatre.
Clean over clever
The next engineer should thank you, not curse you.
Ready to build
Let's build something impactful
I'm currently available for freelance work, contract roles, and full-time positions. If you have a technical challenge worth solving, let's talk.
Contact
Start a conversation
Have a project in mind, a role to fill, or just want to connect? Reach out directly.