Multi-tenant
SaaS, built
bullet-proof.
Dashify is a single-codebase platform that runs many organizations safely: hardened authentication, three-tier RBAC, real-time collaboration, on-prem AI, and ten kinds of observability. This site is the long-form story of how every piece works — written for humans, not machines.
Six pillars hold up the platform.
Click into any pillar for the full plain-English explanation — what it is, why it matters, and how Dashify wires it.
Authentication, hardened
Argon2 hashing, httpOnly cookies, CSRF, refresh circuit-breaker, TOTP 2FA, WebAuthn passkeys, OIDC SSO, and SCIM — every layer explained from first principles.
Read more →Multi-tenancy, by design
One application, many organizations. Tenant context flows through async-local-storage so every database query is automatically scoped — no leaks, ever.
Read more →Three-tier RBAC
SuperAdmin manages tenants and packages. Org Admins manage users and settings. Users see only what their role and package allow. Nineteen-point ship checklist.
Read more →On-prem AI with RAG
Local LLM via Ollama (Qwen 2.5), tenant-partitioned vectors in Qdrant, nightly indexer over files, knowledge base, and announcements. Your data never leaves your infrastructure.
Read more →PWA performance
Workbox service worker, route-based code splitting, vendor chunking. Main bundle dropped 47% gzipped. Installable on desktop and mobile.
Read more →Observability built-in
Pino structured logs, Prometheus metrics, Grafana dashboards, Jaeger traces via OpenTelemetry, Sentry for production errors. You will know when something breaks.
Read more →One codebase. Many tenants.
Browser talks to a Node API. The API reads and writes Mongo, talks to Redis for sessions and queues, dispatches background work to a worker process, and pushes real-time updates over Socket.IO. AI lives entirely on-prem via Ollama and Qdrant. Every box on the right belongs to you.
Open the full diagram →