Fullstack Software Developer

I'll help you design a secure web application with Golang backend and Angular frontend. For the architecture, I recommend: Backend - Golang with Gin framework, PostgreSQL database with three tables (users, vehicles, roles), JWT middleware for authentication. Frontend - Angular 15+ with route guards and role-based components. The user registration flow will hash passwords with bcrypt, assign roles (admin/user/company), and return JWT tokens with role claims. Each vehicle entry will be associated with a user_id and have role-based access controls to ensure users can only view/edit their own vehicles while admins have full access.

For this system, I'd suggest a layered architecture: a Golang REST API using the Gin framework with a PostgreSQL database, and an Angular SPA for the frontend. The core entities would be User (with role field), Vehicle (with foreign key to User), and potentially a separate Companies table if companies need distinct attributes. For JWT security, implement middleware that validates tokens on protected routes and checks role claims before allowing operations. One consideration: you'll want to clarify whether 'company' users can see all vehicles under their company or just their own—this affects your access control logic significantly.

Here's a high-level architecture: Backend uses Golang with Gin/Echo framework, GORM for database ORM (PostgreSQL), and jwt-go library for token generation. Database schema includes users table (id, email, password_hash, role), vehicles table (id, user_id, make, model, year, vin), and a roles enum (admin, user, company). Frontend Angular app uses HttpInterceptor to attach JWT tokens, guards for route protection, and separate modules per role. Authentication flow: POST /register creates user with bcrypt-hashed password, POST /login returns JWT with role claim, middleware validates JWT on protected endpoints like GET/POST /vehicles with role-based authorization checks.