Files

T

soroush.asadi ef15fd6247 feat(api): .NET 10 multi-tenant REST API

Full backend implementation:
- Multi-tenant cafe/restaurant management (menus, orders, tables, staff)
- POS order flow with ZarinPal and Snappfood payment integration
- OTP authentication via Kavenegar SMS
- QR digital menu with public discover/finder endpoints
- Customer loyalty, coupons, CRM
- PostgreSQL via EF Core, Redis for caching/sessions
- Background jobs, webhook handlers
- Full migration history

Co-Authored-By: Claude Sonnet 4.5 <noreply@anthropic.com>

2026-05-27 21:33:48 +03:30

public-abuse.js

feat(api): .NET 10 multi-tenant REST API

2026-05-27 21:33:48 +03:30

README.md

feat(api): .NET 10 multi-tenant REST API

2026-05-27 21:33:48 +03:30

README.md

Meezi load tests (k6)

Smoke-test public endpoints and verify rate limiting under abuse.

Prerequisites

Install k6.

Run

# API must be running (e.g. docker compose or dotnet run)
$env:BASE_URL = "http://localhost:5080"
k6 run tests/load/public-abuse.js

Variables

Env	Default	Description
`BASE_URL`	`http://localhost:5080`	API root
`QR_CODE`	`demo_table_01`	QR resolver code

Expected

Most requests succeed under normal VUs.
At high rate, some responses return 429 with RATE_LIMITED (ASP.NET or Redis limits).

See docs/SECURITY.md for limit values.