sharang/certifai
1
0
Fork 0
Code Issues 4 Pull Requests Actions Packages Projects Releases Activity
28 Commits 9 Branches 0 Tags
fix/m7.1-kc-dev-file
T
Clone
Open with VS Code Open with VSCodium Open with Intellij IDEA
Download ZIP Download TAR.GZ Download BUNDLE
Sharang Parnerkar ea70a2eb33
CI / Deploy (pull_request) Has been skipped
Details
CI / E2E Tests (pull_request) Has been skipped
Details
CI / Format (push) Successful in 15s
Details
CI / Clippy (push) Successful in 2m17s
Details
CI / Security Audit (push) Has been skipped
Details
CI / Tests (push) Has been skipped
Details
CI / Format (pull_request) Successful in 3s
Details
CI / Clippy (pull_request) Successful in 2m13s
Details
CI / Security Audit (pull_request) Has been skipped
Details
CI / Tests (pull_request) Has been skipped
Details
CI / Deploy (push) Has been skipped
Details
CI / E2E Tests (push) Has been skipped
Details
fix(dev): switch Keycloak to dev-file + persistent volume 
KC_DB was set to dev-mem (H2 in-memory) — every time the keycloak
container went idle or restarted, the realm + the M7.1 test users
dissolved and the next smoke run failed with token_not_found until
realm-export was re-imported manually. Bit twice during the M7.1
testing session.

dev-file points H2 at /opt/keycloak/data/h2/ and the new
keycloak-data named volume keeps it across container lifecycles. The
realm-export.json bind-mount is still read-only and re-imported on
fresh starts via `--import-realm`, so a `docker compose down -v` is
still the canonical "rebuild from scratch" lever.

Co-Authored-By: Claude Opus 4.7 <noreply@anthropic.com>
2026-06-04 16:42:30 +02:00
.cargo
feat(i18n): add internationalization with DE, FR, ES, PT translations (#12)
2026-02-22 16:48:51 +00:00
.gitea/workflows
ci: log orca webhook response so the step isnt silent on success
2026-04-08 15:09:01 +02:00
assets
feat(sidebar): add compliance scanner link from env config (#19)
2026-03-09 08:39:00 +00:00
bin
ci: added basic workflows (#2)
2026-02-18 09:46:29 +00:00
design-templates
feat(ui): redesign landing page and update styling
2026-03-02 08:34:58 +01:00
e2e
feat: added langflow, langfuse and langgraph integrations (#17)
2026-02-25 20:08:48 +00:00
keycloak
feat(keycloak): add tenant-context client scope + M7.1 test users (#41)
2026-06-04 14:38:23 +00:00
librechat
feat: replaced ollama with litellm (#18)
2026-02-26 17:52:47 +00:00
src
feat(sidebar): add compliance scanner link from env config (#19)
2026-03-09 08:39:00 +00:00
styles
feat(ui): added daisy UI for beautification (#3)
2026-02-18 14:43:11 +00:00
.dockerignore
feat: added oauth based login and registration (#1)
2026-02-18 09:21:46 +00:00
.env.example
feat(sidebar): add compliance scanner link from env config (#19)
2026-03-09 08:39:00 +00:00
.gitignore
test: added more tests (#16)
2026-02-25 10:01:56 +00:00
AGENTS.md
feat: added oauth based login and registration (#1)
2026-02-18 09:21:46 +00:00
build.rs
ci: added basic workflows (#2)
2026-02-18 09:46:29 +00:00
bun.lock
test: added more tests (#16)
2026-02-25 10:01:56 +00:00
Cargo.lock
chore(deps): cargo update to fix audit vulnerabilities
2026-04-08 10:05:36 +02:00
Cargo.toml
feat: replaced ollama with litellm (#18)
2026-02-26 17:52:47 +00:00
CLAUDE.md
feat(dash): improved frontend dashboard (#6)
2026-02-19 11:52:41 +00:00
cliff.toml
ci: added basic workflows (#2)
2026-02-18 09:46:29 +00:00
clippy.toml
feat: added oauth based login and registration (#1)
2026-02-18 09:21:46 +00:00
Dioxus.toml
feat: added oauth based login and registration (#1)
2026-02-18 09:21:46 +00:00
docker-compose.yml
fix(dev): switch Keycloak to dev-file + persistent volume
2026-06-04 16:42:30 +02:00
Dockerfile
feat(i18n): add internationalization with DE, FR, ES, PT translations (#12)
2026-02-22 16:48:51 +00:00
package.json
test: added more tests (#16)
2026-02-25 10:01:56 +00:00
playwright.config.ts
test: added more tests (#16)
2026-02-25 10:01:56 +00:00
README.md
feat(db): Added database setup and basic types (#5)
2026-02-20 14:58:14 +00:00

README.md

CERTifAI Logo

CERTifAI

Self-hosted, GDPR-compliant GenAI infrastructure dashboard

CI Rust Dioxus MongoDB Keycloak Tailwind CSS DaisyUI

GDPR License Platform PRs Welcome

About

CERTifAI is a SaaS dashboard for administering self-hosted private GenAI infrastructure. It gives companies and individuals a single pane of glass to manage LLMs, Agents, MCP Servers, and other GenAI-related services -- without sending data to non-EU cloud providers.

Why? Protect your intellectual property from being used as training data. Stay fully GDPR-compliant with infrastructure you own.

Features

Area Capabilities
User Management Add, remove, set roles, permissions, and restrictions
SSO / OAuth / LDAP Connect to company identity providers and sync users
Feature Flags Toggle GenAI features on or off per-org
Billing View seat usage and token consumption per billing cycle
Support Request support or new features via feedback form
GenAI Tools Manage LLMs, Agents, MCP Servers; launch Langchain, Langfuse, Tavily; view endpoints and generate API keys

Dashboard

The main dashboard provides a news feed powered by SearXNG and Ollama:

  • Topic-based search -- Browse AI, Technology, Science, Finance, and custom topics. Add or remove topics on the fly; selections persist in localStorage.
  • Article detail + AI summary -- Click any card to open a split-view panel. The full article is fetched, summarized by Ollama, and a follow-up chat lets you ask questions.
  • Sidebar (visible when no article is selected):
    • Ollama Status -- green/red indicator with the list of loaded models
    • Trending -- keywords extracted from recent news headlines via SearXNG
    • Recent Searches -- last 10 topics you searched, persisted in localStorage

Tech Stack

Layer Technology
Frontend Dioxus 0.7 (fullstack + router), Tailwind CSS 4, DaisyUI 5
Backend Axum, tower-sessions, Dioxus server functions
Database MongoDB
Auth Keycloak 26+ (OAuth2 + PKCE, Organizations)
Search SearXNG (meta-search)
LLM Ollama (local inference)

Getting Started

Prerequisites

  • Rust 1.89+
  • Dioxus CLI (dx)
  • MongoDB
  • Keycloak
  • SearXNG (optional)
  • Ollama (optional)

Setup

# Clone the repository
git clone https://gitea.meghsakha.com/sharang/certifai.git
cd certifai

# Configure environment
cp .env.example .env
# Edit .env with your Keycloak, MongoDB, and service URLs

# Run the dev server
dx serve

External Services

Service Purpose Default URL
Keycloak Identity provider / SSO http://localhost:8080
MongoDB User data and preferences mongodb://localhost:27017
SearXNG Meta-search engine for news http://localhost:8888
Ollama Local LLM for summarization http://localhost:11434

Project Structure

src/
  components/   Frontend-only reusable UI components
  infrastructure/   Server-side: auth, config, DB, server functions
  models/       Shared data models (web + server)
  pages/        Full page views composing components + models
assets/         Static assets (CSS, icons, manifest)
styles/         Tailwind/DaisyUI input stylesheet
bin/            Binary entrypoint

Git Workflow

We follow the feature branch workflow. The main branch is the default and protected branch.

CI

CI runs on Gitea Actions with runner tag docker.

Built with Rust, Dioxus, and a commitment to data sovereignty.

Reference in New Issue View Git Blame Copy Permalink
S
Description
The purpose of CERTifAIis to provide self-hosted and GDPR-Compliant GenAI infrastructure to companies who do not wish to subscribe to non-EU cloud providers to protect their intellectual property from being used as training data.
https://dash-dev.meghsakha.com
Readme 3.3 MiB
Languages
Rust 47.4%
CSS 26.3%
HTML 18.9%
JavaScript 4%
TypeScript 3.1%
Other 0.3%