A fully dynamic, CMS-style portfolio platform built with Next.js and TypeScript. Features a role-based access control system (Admin / Visitor) powered by Supabase Auth with JWT tokens — roles are persisted in the database and enforced server-side via Next.js Server Actions, making UI-layer bypasses impossible. Admins have full CRUD access across all content domains: summary, education, projects, technologies, and media. Visitors can browse the dashboard in read-only mode. Zero redeployment needed for content updates.
Production-style multi-tenant SaaS backend implementing strict tenant isolation via a global Eloquent scope, three-role authorization (super admin / tenant admin / end-user), and a transactional ticket-purchase service that uses row-level locking to prevent overselling under concurrency. Authentication is handled by Laravel Sanctum personal access tokens. Routes are segmented by audience (Super, Admin, User, Public) and protected by a two-layer authorization model, middleware gates routes, policies gate records.
A private, company-specific AI assistant that lets employees query internal HR knowledge through natural language — eliminating the need to dig through policy documents or contact HR directly. HR admins upload company documents through a dedicated dashboard, which are indexed and attached to GPT-4 powered conversation threads; each employee gets a persistent chat thread scoped to their identity, keeping context isolated and conversations stateful. Built with React, Zustand, and TanStack Query on the frontend, backed by an Express.js API integrating the OpenAI Assistants API with document retrieval. Supports bilingual interaction in Arabic and English with full RTL/LTR handling.
Nextjs
Reactjs
Claude Code
Laravel
Flutter
PostgreSQL
TypeScript
Docker
KubernetesAl-Azhar University Gaza
