Service Map
Complete map of all services in the Monozu Cloud monorepo — where they live, what they do, and how to reach them.
Services
Section titled “Services”Cloud Backend API
Section titled “Cloud Backend API”| Property | Value |
|---|---|
| Path | Backend/ |
| Language | Go 1.26 |
| Framework | Fiber v3 |
| Port (local) | :8000 |
| Production URL | Azure App Service (e.g. https://api.cloud.monozu.io) |
| Deployment | Docker → Azure Container Registry → Azure App Service |
| Database | Azure SQL Server (multi-tenant RLS) |
Responsibilities:
- REST API for all Cloud Frontend features (
/api/v1/*) - WebSocket hubs for real-time features (
/api/ws/vpn,/api/ws/security) - JWT authentication and OIDC (Microsoft Entra ID)
- Multi-tenant data isolation via Azure SQL Row-Level Security
- Background jobs: CVE feed sync, vulnerability scanning, audit log retention
- Edge device registration and command dispatch (
/api/v1/devices/*,/api/v1/commands) - Internal M2M endpoint for Management (
/internal/license/refresh) - Admin cross-tenant endpoint (
/api/v1/admin/*) whenADMIN_PANEL_ENABLED=true
Cloud Frontend SPA
Section titled “Cloud Frontend SPA”| Property | Value |
|---|---|
| Path | Frontend/ |
| Language | TypeScript / React 18 |
| Build tool | Vite 8 |
| Port (local) | :3000 |
| Production URL | https://cloud.monozu.io (Cloudflare Pages) |
| Deployment | Vite build → Cloudflare Pages |
Responsibilities:
- Primary web interface for end users (CMDB, ITSM, Security, VPN, Backup)
- Communicates exclusively with Cloud Backend API
- Stores access token in memory, refresh token in HttpOnly cookie
- Feature-flagged modules loaded from
GET /api/v1/me/featurespost-login
Management Backend
Section titled “Management Backend”| Property | Value |
|---|---|
| Path | Management/management-backend/ |
| Language | Go 1.26 |
| Framework | Fiber v3 |
| Port (local) | :8080 |
| Production URL | Azure App Service |
| Deployment | Docker → ACR → Azure App Service |
Responsibilities:
- Tenant provisioning and lifecycle management
- License activation and propagation to Cloud via HMAC webhook
- M2M communication with Cloud Backend using
X-Internal-Token - Entra ID OIDC for management staff authentication
- Internal API prefix:
/internal/v1/*
Management Frontend
Section titled “Management Frontend”| Property | Value |
|---|---|
| Path | Management/management-frontend/ |
| Language | TypeScript / React 18 |
| Port (local) | :5173 |
| Production URL | Cloudflare Pages |
| Deployment | Vite build → Cloudflare Pages |
Responsibilities:
- Admin UI for tenant provisioning and license management
- Used by Monozu operators, not end customers
Ingestor Service
Section titled “Ingestor Service”| Property | Value |
|---|---|
| Path | ingestor/ |
| Language | Go |
| Production URL | https://ingest.cloud.monozu.io (Azure App Service) |
| Deployment | Azure App Service |
Responsibilities:
- High-throughput ingestion of telemetry from Edge appliances
- Single endpoint:
POST /v1/ingest - Auth via
X-Device-Keyheader (provisioning key) - Payload kinds:
telemetry,log,security_alert,discovery,backup_event
Marketing Website
Section titled “Marketing Website”| Property | Value |
|---|---|
| Path | Website/ |
| Framework | Astro 6 + Tailwind CSS 3 |
| Production URL | https://monozu.io |
| Deployment | Cloudflare Pages |
| Languages | Polish + English |
Responsibilities:
- Public marketing site
- Static site, no backend
Contact Form API
Section titled “Contact Form API”| Property | Value |
|---|---|
| Path | WebsiteContactApi/ |
| Runtime | Cloudflare Workers |
| Deployment | Cloudflare Workers |
Responsibilities:
- Receives contact form submissions from marketing website
- Verifies Cloudflare Turnstile CAPTCHA
- Sends emails via Resend
Public Documentation
Section titled “Public Documentation”| Property | Value |
|---|---|
| Path | Documentation/ |
| Framework | Astro (Cloudflare Pages) |
Responsibilities:
- Public user-facing documentation for customers
- Separate from this internal documentation site
Internal Documentation (this site)
Section titled “Internal Documentation (this site)”| Property | Value |
|---|---|
| Path | Internal-Documentation/ |
| Framework | Astro 6 + Starlight |
| Production URL | https://docs.cloud.monozu.io |
| Deployment | Cloudflare Pages |
URL overview
Section titled “URL overview”graph LR
monozu_io["monozu.io<br>Marketing"]
cloud["cloud.monozu.io<br>Cloud SPA"]
api["api.cloud.monozu.io<br>Cloud Backend API"]
ingest["ingest.cloud.monozu.io<br>Ingestor"]
docs["docs.cloud.monozu.io<br>Internal Docs"]
mgmt_be["Management Backend<br>Azure App Service"]
mgmt_fe["Management SPA<br>Cloudflare Pages"]
cloud -->|"/api/v1/*"| api
cloud -->|"ws /api/ws/*"| api
mgmt_fe -->|"/api/v1/*"| mgmt_be
mgmt_be -->|"HMAC webhook"| api
api -->|"M2M"| mgmt_be
Shared packages
Section titled “Shared packages”| Package | Path | Used by |
|---|---|---|
licensing | packages/licensing/ | Cloud Backend, Management Backend |
Infrastructure repositories
Section titled “Infrastructure repositories”All CI/CD pipeline definitions live alongside their respective service in azure-pipelines.yml files at the root of each service directory.