- TOTP (RFC 6238) is just HOTP (RFC 4226) where the counter is derived from time.
Both Server and Authenticator App share:
Aung Kyaw Minn aungkyawminn
🎯
aungkyawminn
/ SETTLEMENT_FEATURE.md
Created
December 30, 2025 16:04
aungkyawminn
/ WSO2-Onprem.md
Created
December 16, 2025 06:54
This document describes a production-grade, fully free and open-source architecture for deploying WSO2 (API Manager / Micro Integrator / IS) on on‑prem VMware infrastructure, without using VMware Tanzu.
This stack is widely used in banks and regulated environments and avoids vendor lock‑in.
aungkyawminn
/ 01-mutual-tls.md
Last active
October 30, 2025 04:20
Brief about mTLS (Mutual Transport Layer Security)
Mutual TLS (mTLS) is an extension of Transport Layer Security (TLS) where both client and server authenticate each other using X.509 digital certificates.
It provides a stronger trust model than standard TLS, where only the server presents a certificate.
mTLS is widely used across ecosystems such as:
- API Gateways (WSO2, Kong, Apigee, AWS API Gateway)
- Payment and Financial Networks (Visa VCAS, Mastercard MIP, banking integrations)
- Microservices and Service Meshes (Envoy, Istio, Linkerd, AWS App Mesh)
- Cloud and VPN Security (PrivateLink, Zero Trust Networks, Client VPNs)
aungkyawminn
/ 01-kong-gw-aws-cloud-infra.md
Last active
October 28, 2025 07:27
Designing a Scalable and Cost-Efficient Kong Gateway Architecture on AWS
This architecture demonstrates a Kong Gateway Hybrid Mode (Control Plane + Data Plane) deployment using AWS ECS (Fargate) and Aurora Serverless PostgreSQL, optimized for scalability, security, and cost efficiency.
aungkyawminn
/ WSO2-APIM.md
Created
October 15, 2025 08:14
WSO2 API Manager (APIM) is an open-source API management platform.
It helps organizations design, publish, secure, monitor, and manage APIs easily — whether for internal microservices or public developer portals.
When multiple services or systems expose data through APIs, we need to:
aungkyawminn
/ 00_mobile_wallet_architecture_views.md
Last active
December 13, 2025 13:00
Architecture Views
Card payments processing is the global system that enables money to move securely between cardholders, merchants, banks, and networks. The lifecycle covers multiple stages — from the first tap or swipe at a POS terminal, to settlement of funds, reconciliation of records, and handling of exceptions like disputes or refunds.
Understanding these steps is essential for anyone entering the payments domain, because each process has its own purpose, participants, and standard ISO 8583 messages.
This guide walks you through 13 key processes with short explanations and visual Mermaid sequence diagrams.
This guide explains how to implement the backend API for the finalized CIB data model with single‑role‑per‑user:
- Each user has exactly one role via
users.role_id. - Role scope lives in
roles.scope(global,organization). - Organization membership is tracked by
organization_users.
The guide includes per‑module playbooks, API shapes, status machines, and Mermaid diagrams.
aungkyawminn
/ WSO2 API Manager - Scalable K8 Deployment Guide.md
Last active
December 13, 2025 13:02
WSO2 API Manager - Scalable K8 Deployment
A complete, open‑source only deployment guide for running WSO2 API Manager (APIM) as the Control Plane (CP) and Choreo Connect or APK (WSO2 Kubernetes Gateway) as the Data Plane (DP) on Kubernetes. Includes architecture, domain mappings, load balancing, and ready‑to‑adapt K8s manifests.
- CP runs APIM (Publisher, Dev Portal, Admin, Key Manager) with Postgres.
- DP runs a K8s‑native gateway (Choreo Connect or APK). You publish from CP to one or more DP environments.
NewerOlder