Capability Map¶
The platform consists of 9 services, 1 internal admin SPA, and 4 shared packages. Each owns a clear piece of the clinical workflow.
Services¶
| Service | What it does | Value delivered |
|---|---|---|
clinical-api |
Stores patient records, cases, images, and clinical findings | The system of record for every clinical case the platform handles |
ai-review |
Sends images to the DERM AI, receives diagnoses, retains raw response for audit | Automated triage; reduces clinician time per case |
orchestrator |
Drives configurable per-customer workflows | Lets customers configure how a case flows through the platform without code changes |
human-review |
Lets clinicians review and decide on cases | Human-in-the-loop for cases AI defers on |
consent |
Tracks patient consent for AI analysis | GDPR + good-clinical-practice compliance |
auth |
Issues access tokens for callers; brokers admin SSO via Google OIDC | Single sign-on / multi-tenant access control |
notifications |
Delivers email + Slack notifications | Operational signal to clinicians and ops |
user-management |
Tracks users, roles, organisation membership | Per-customer access control |
admin-api |
BFF for the internal admin console: sessions, dashboard fan-out, audit | Single secure surface for SA staff actions across the platform |
admin-ui |
Internal admin web console (Phase 1: read-only dashboard + drill-down) | Operational visibility for SA staff without bespoke DB queries |
Shared packages¶
@sa-platform/common— shared utilities (crypto, env config, error types)@sa-platform/auth-client— JWT verification + scope enforcement for callers@sa-platform/events— typed event-bus client (Redis Streams)@sa-platform/eslint-config— code style@sa-platform/tsconfig— TypeScript config preset