A highly scalable Django-based application allowing users to purchase and manage cryptocurrencies. It includes advanced features such as user authentication, wallet management, order processing, and asynchronous task handling using Celery. The project is Dockerized for easy deployment and comes with auto-generated API documentation using Swagger and ReDoc.
- Project Overview
- Features
- System Architecture
- System Design Solution
- Key Components
- Core Workflow
- Data Flow and Consistency Model
- API Design
- Asynchronous Processing
- Aggregation Logic
- Data Models
- Scalability and Performance
- Security Considerations
- Setup and Installation
- Docker Usage
- Environment Variables
- Makefile Commands
- Testing
- API Documentation
- Performance and Scalability
- Future Improvements
- Contact
The Django Crypto Exchange allows users to purchase cryptocurrencies and manage their wallets. It implements a scalable architecture with asynchronous processing for order handling and integrates with international exchanges. The project is fully containerized using Docker and supports background tasks with Celery.
- User Authentication: Secure user registration and login using JWT tokens.
- Wallet Management: Manage user wallets with support for deposits and withdrawals.
- Order Processing: Create, process, and settle cryptocurrency purchase orders, beside aggregate small order on Redis
- Asynchronous Tasks: Handle order processing and exchange settlements using Celery.
- International Exchanges: Interface with international exchanges for cryptocurrency settlements.
- Swagger and ReDoc: Auto-generated API documentation for easy reference.
- Dockerized: Fully containerized application for easy deployment.
- Testing: Comprehensive test suite for all API endpoints.
- Scalable Design: Modular architecture for efficient, reliable, and scalable operations.
- Performance: Redis for efficient order aggregation and Celery for asynchronous task management.
- Security: Token-based authentication and atomic transactions for data integrity. besides, fraud detection and rate limiter.
This document outlines the system design for an API that handles cryptocurrency purchase orders on an exchange platform. The API facilitates cryptocurrency purchases, deducts the amount from the user’s wallet, and settles purchases through international exchanges, with special handling for small purchases under $10.
- Provide an API to handle cryptocurrency purchase orders.
- Deduct the cost of cryptocurrency from a user's wallet.
- Settle transactions with international exchanges, ensuring orders under $10 are aggregated before settlement.
- Ensure efficient, reliable, and scalable operations using Django and Celery for asynchronous tasks.
The system follows a modular architecture, with the following components:
- Accounts Module: Manages user accounts and wallets.
- Orders Module: Handles the creation, processing, and aggregation of purchase orders.
- Transactions Module: Manages deposits, withdrawals, and other financial transactions.
- Exchanges Module: Interfaces with international exchanges for cryptocurrency settlements.
- Redis and Celery: Handles asynchronous task management, including order processing and aggregation logic.
flowchart TD
classDef client fill: #f9d71c, stroke: #333, stroke-width: 2px
classDef gateway fill: #f9813a, stroke: #333, stroke-width: 2px
classDef module fill: #38b2ac, stroke: #333, stroke-width: 2px
classDef task fill: #805ad5, stroke: #333, stroke-width: 2px
classDef storage fill: #63b3ed, stroke: #333, stroke-width: 2px
classDef external fill: #9ae6b4, stroke: #333, stroke-width: 2px
Client[Client]:::client
API[API Gateway]:::gateway
subgraph Core["Core (Django)"]
direction TB
Settings[Settings]
CeleryConfig[Celery]
RedisConfig[Redis]
end
subgraph Modules["Application Modules"]
direction TB
Accounts[Accounts]:::module
Exchanges[Exchanges]:::module
Orders[Orders]:::module
Transactions[Transactions]:::module
end
CeleryTasks[Celery Tasks]:::task
Database[(Database)]:::storage
RedisDB[(Redis)]:::storage
ExternalExchange[External Exchange API]:::external
Client --> API
API --> Modules
Modules <--> CeleryTasks
Modules <--> Database
Orders <--> RedisDB
Exchanges --> ExternalExchange
Core --> Modules
Core --> CeleryTasks
click Client "https://github.com/MrRezoo/crypto-exchange?tab=readme-ov-file#setup-and-installation" "Go to Client Documentation"
click API "https://github.com/MrRezoo/crypto-exchange?tab=readme-ov-file#api-design" "Go to API Documentation"
click Accounts "https://github.com/MrRezoo/crypto-exchange?tab=readme-ov-file#accounts" "Go to Accounts Module Documentation"
click Exchanges "https://github.com/MrRezoo/crypto-exchange?tab=readme-ov-file#exchanges" "Go to Exchanges Module Documentation"
click Orders "https://github.com/MrRezoo/crypto-exchange?tab=readme-ov-file#orders" "Go to Orders Module Documentation"
click Transactions "https://github.com/MrRezoo/crypto-exchange?tab=readme-ov-file#transactions" "Go to Transactions Module Documentation"
- Processes API requests (e.g., placing orders, wallet management).
- Implements business logic for cryptocurrency purchases.
- Stores frequently accessed data (e.g., cryptocurrency prices, wallet balances).
- Implements rate limiting and session management.
- Primary data store for users, wallets, orders, and transaction statistics.
- *Implements sharding for horizontal scaling (e.g., by user ID or cryptocurrency).
- Facilitates asynchronous communication between components (e.g., processing orders).
- Ensures reliable message delivery for background tasks.
- Process background tasks (e.g., updating order statistics, handling transactions).
- Handle computationally intensive operations asynchronously.
The system prioritizes Consistency (C) and Partition Tolerance (P) from the CAP theorem, ensuring strong consistency to guarantee the accuracy of transactions and wallet balances. This design choice minimizes the risk of double-spending and maintains a reliable understanding of user funds.
- I consider Eventual consistancy for background processes (aggregate orders) that are implemented to ensure that data eventually converges to a consistent state, using strategies like asynchronous updates and reconciliation processes.
-
Data Replication
- Multi-region database replication is employed for disaster recovery, ensuring that the system can recover quickly from failures.
- Read replicas are used to enhance read performance and reduce latency, allowing for faster access to frequently requested data.
-
Monitoring and Alerting
- Comprehensive monitoring is established using tools such as Prometheus and Grafana, providing real-time insights into system performance.
- Alerts are configured for critical system metrics and error rates to promptly address issues before they affect users.
- Security Measures: Given the financial nature of the platform, robust security protocols, including multi-factor authentication and encryption, are implemented to safeguard user data.
- Transaction Integrity: Strong mechanisms are in place to validate transactions and ensure their integrity, further enhancing user trust in the platform.
- User Model: Each user has a unique wallet that tracks their available balance. Users can deposit and withdraw funds.
- Wallet Model: Each user has a wallet with a balance in a single currency (e.g., USD). For simplicity, no multi-coin wallets are considered in this design.
- Order Model: Tracks cryptocurrency purchase requests, including the cryptocurrency type, amount, total price, and the state of the order (e.g., pending, completed).
- Order Processing: Orders are created when users submit purchase requests. Based on the total order value, orders
either:
- Are processed immediately for amounts above $10.
- Are aggregated and processed later for amounts below $10.
- Transaction Model: Manages deposits and withdrawals, recording the amount, type (deposit or withdrawal), and the related order, if applicable.
- WalletService: Handles updates to wallet balances when purchases or deposits occur.
- ExchangeService: Acts as a placeholder for making real HTTP requests to an international exchange. It supports buying cryptocurrency in bulk for multiple orders.
- Aggregated Purchases: When orders are under
$10, multiple purchases are aggregated and settled with the exchange once the cumulative total reaches $10 or more.
- Request: A user submits an API request to purchase a cryptocurrency.
- Validation:
- The system checks the user’s balance and verifies they have sufficient funds.
- If funds are insufficient, an error is returned.
- Order Creation:
- An order is created with details such as the cryptocurrency, amount, and total price.
- The user’s wallet is debited.
- Order Processing:
- If the total price is below the aggregation threshold ($10), the order is queued for aggregation.
- If the price is above the threshold, the
buy_from_exchangemethod is invoked immediately.
- Aggregation Handling:
- Small orders are aggregated using Redis. Once the cumulative order value reaches the threshold, the system triggers a bulk purchase from the exchange.
- Exchange Settlement:
- The
buy_from_exchangemethod interacts with the international exchange to settle the purchase.
- The
sequenceDiagram
autonumber
participant U as User
participant A as API Gateway
participant OV as OrderViewSet
participant OS as OrderService
participant WS as WalletService
participant CS as CryptoService
participant TS as TransactionService
participant R as Redis
participant CW as Celery Worker
participant DB as Database
U ->> A: POST /orders/
A ->> OV: Forward Request
OV ->> OS: Create Order
OS ->> CS: Get Crypto Price
CS -->> OS: Return Current Price
OS ->> WS: Check User Balance
WS -->> OS: Balance Sufficient
OS ->> WS: Withdraw Amount
WS ->> DB: Update Wallet Balance
DB -->> WS: Balance Updated
WS -->> OS: Withdrawal Successful
OS ->> TS: Record Transaction
TS ->> DB: Save Transaction
DB -->> TS: Transaction Saved
TS -->> OS: Transaction Recorded
OS ->> DB: Save Order
DB -->> OS: Order Saved
alt Order Amount >= $10
OS ->> CW: Create Large Order Task
CW -->> OS: Task Created
OS ->> DB: Update Order Status to Pending
else Order Amount < $10
OS ->> R: Store for Aggregation
R -->> OS: Order Stored
OS ->> DB: Update Order Status to Aggregated
end
DB -->> OS: Status Updated
OS -->> OV: Order Created
OV -->> A: Return Response
A -->> U: Order Confirmation
The system implements an eventual consistency model to ensure high availability. Here's how data flows through the system:
- User submits a login or registration request.
- API Gateway validates the request and generates JWT tokens.
- Tokens are stored in the client for future requests.
sequenceDiagram
autonumber
participant U as User
participant A as API Gateway
participant D as Django App
participant US as UserService
participant WS as WalletService
participant DB as Database
U ->> A: Register New User
A ->> D: Forward Request
D ->> US: Create User
US ->> DB: Save User
DB -->> US: User Saved
US ->> WS: Create Wallet
WS ->> DB: Save Wallet
DB -->> WS: Wallet Saved
WS -->> US: Wallet Created
US -->> D: User and Wallet Created
D -->> A: Registration Complete
A -->> U: User Created with Wallet
- Wallet balances are updated in the database.
- Transactions are recorded in the database.
- Wallet balances are recalculated and cached in Redis.
sequenceDiagram
autonumber
participant U as User
participant A as API Gateway
participant WV as WalletViewSet
participant WDS as WalletDepositSerializer
participant WS as WalletService
participant TS as TransactionService
participant DB as Database
U ->> A: PATCH /wallet/deposit/
A ->> WV: Forward Request
WV ->> WDS: Validate Data
WDS ->> WS: Deposit Amount
WS ->> DB: Update Balance (Atomic)
DB -->> WS: Balance Updated
WS ->> TS: Record Transaction
TS ->> DB: Save Transaction
DB -->> TS: Transaction Saved
TS -->> WS: Transaction Recorded
WS -->> WDS: Deposit Successful
WDS -->> WV: Return Updated Wallet
WV -->> A: Return Response
A -->> U: Deposit Confirmed
- API Gateway validates the request and applies rate limiting.
- Application server processes the order and performs initial validation.
- Order details are temporarily stored in Redis (pending orders).
- Acknowledgment is sent back to the user.
- Celery worker processes aggregated order or normal orders from Redis.
- Updates are applied to the PostgreSQL database in batches.
- Wallet balances and order statistics are recalculated and cached in Redis.
- Frequently accessed data (e.g., cryptocurrency prices) is served from Redis cache.
- Less frequent queries are served directly from the PostgreSQL database.
This section outlines the available API endpoints for interacting with the cryptocurrency exchange system.
- Base URL:
http://localhost:8000/api/v1/ - API documentation:
{base_url}/swagger/or{base_url}/redoc/ - Authentication: JWT-based token authentication
-
POST accounts/auth/login/:
- Authenticates a user and returns access and refresh tokens.
- ViewSet:
accounts.viewsets.authentication.LoginViewSet - Example payload:
{ "username": "user1", "password": "password123" } - Example response:
{ "access": "eyJ0eXAi ...", "refresh": "eyJ0eXAi ..." }
-
POST accounts/auth/register/:
- Registers a new user and creates an associated wallet.
- ViewSet:
accounts.viewsets.authentication.RegisterViewSet - Example payload:
{ "username": "user1", "password": "password123" } - Example response:
{ "access": "eyJ0eXAi ...", "refresh": "eyJ0eXAi ..." }
-
POST orders/:
- Creates a new cryptocurrency purchase order.
- Example payload:
{ "crypto": "ABAN", "amount": 3 }
-
GET orders/{id}/:
- Retrieves the details of a specific order by its primary key (id).
- Example response:
{ "id": 1, "crypto": "ABAN", "amount": 3, "total_price": 12.00, "state": "completed" }
-
PATCH accounts/wallet/deposit:
- Deposits funds into a user's wallet.
- Example payload:
{ "amount": 100.00 }
-
GET accounts/wallet/:
- Retrieves the current wallet information for the authenticated user.
- Example response:
{ "balance": 500.00 }
-
GET exchanges/crypto-currencies/:
- Retrieves a list of available cryptocurrencies along with their prices.
- Example response:
[ { "name": "ABAN", "price": 4.00 }, { "name": "BTC", "price": 50000.00 } ]
-
GET /transactions/:
- Retrieves a list of transactions associated with the authenticated user's wallet.
- Example response:
[ { "id": 1, "type": "deposit", "amount": 100.00, "order_id": null, "created_at": "2024-09-27T12:30:00Z" }, { "id": 2, "type": "withdrawal", "amount": 50.00, "order_id": 5, "created_at": "2024-09-27T13:30:00Z" }, { "id": 2, "type": "withdrawal", "amount": 50.00, "order_id": 5, "created_at": "2024-09-27T13:30:00Z" } ]
-
GET /transactions/{id}:
- Retrieves the details of a specific transaction by its primary key (id).
- Example response:
{ "id": 1, "type": "deposit", "amount": 100.00, "order_id": null }
- Task: process_large_order: Handles immediate purchase orders where the total price exceeds $10.
- Task: process_aggregate_orders: Handles order aggregation and initiates purchase when cumulative orders surpass $10.
@shared_task
def process_aggregate_orders(*, order_id, crypto_name, new_total_price):
"""
This function processes aggregate orders using Redis Lock to handle concurrency
and Redis Pipeline to ensure atomicity of the Redis operations.
"""
redis_name = RedisNameTemplates.aggregate_orders(crypto_name=crypto_name)
lock = RedisClient.lock(f"{redis_name}:lock", timeout=settings.LOCK_TIMEOUT) # Create a Redis lock
try:
# Acquiring the Redis lock (blocking until the lock is acquired)
if lock.acquire(blocking=True):
with RedisClient.pipeline() as pipe:
# Use pipeline for atomic operations
pipe.hincrbyfloat(redis_name, "total_price", float(new_total_price))
pipe.rpush(f"{redis_name}:order_ids", order_id)
pipe.execute() # Execute all the pipelined commands atomically
# Fetch the updated total price from Redis
updated_total_price = Decimal(RedisClient.hget(redis_name, "total_price") or 0)
if updated_total_price >= settings.AGGREGATION_THRESHOLD:
# Fetch all the order IDs associated with this batch from Redis
order_ids = RedisClient.lrange(f"{redis_name}:order_ids", 0, -1)
# Execute the exchange buy process in an atomic transaction
with transaction.atomic():
ExchangeService.buy_from_exchange(crypto_name=crypto_name, amount=updated_total_price)
Order.objects.filter(id__in=order_ids).update(state=OrderStates.COMPLETED)
# Clean up Redis keys for the current batch of aggregated orders
RedisClient.delete(redis_name)
RedisClient.delete(f"{redis_name}:order_ids")
except LockError:
# Handle failure to acquire the lock
print("Failed to acquire the Redis lock. Retrying...")
process_aggregate_orders.delay(order_id=order_id, crypto_name=crypto_name, new_total_price=new_total_price)
finally:
# Ensure that the lock is always released, even if an error occurs
lock.release()Redis is used to store aggregated orders:
- Redis tracks the total amount and total price for each cryptocurrency.
- Once the cumulative value of aggregated orders reaches the threshold ($10), the system triggers a bulk purchase.
A periodic task scans Redis for partially aggregated orders. If any orders exceed the threshold, they are processed in bulk.
sequenceDiagram
autonumber
participant C as Client
participant A as API Gateway
participant D as Django App
participant R as Redis
participant W as Celery Worker
participant E as External Exchange
C ->> A: API Request
A ->> D: Forward Request
D ->> R: Enqueue Task
D -->> A: Task Accepted
A -->> C: Response (Task ID)
R ->> W: Dequeue Task
W ->> W: Process Task
alt Large Order
W ->> E: Execute Order
E -->> W: Order Executed
else Small Order
W ->> R: Store for Aggregation
end
W ->> R: Store Result
R -->> D: Notify Completion
D ->> D: Update Order Status
class BaseModel(models.Model):
created_at = models.DateTimeField(auto_now_add=True)
updated_at = models.DateTimeField(auto_now=True)
class Meta:
abstract = Trueclass Wallet(BaseModel):
user = models.OneToOneField(User, on_delete=models.CASCADE)
balance = models.DecimalField(max_digits=10, decimal_places=2, default=0.00)class CryptoCurrency(BaseModel):
name = models.CharField(max_length=10, unique=True)
price = models.DecimalField(max_digits=10, decimal_places=2)class Transaction(BaseModel):
wallet = models.ForeignKey(Wallet, on_delete=models.DO_NOTHING, related_name="transactions")
type = models.CharField(max_length=20, choices=TransactionTypes.choices)
amount = models.DecimalField(max_digits=10, decimal_places=2)
content_type = models.ForeignKey(ContentType, on_delete=models.CASCADE)
object_id = models.PositiveIntegerField()
content_object = GenericForeignKey("content_type", "object_id")
class Meta:
indexes = [
models.Index(fields=["content_type", "object_id"]),
]class Order(BaseModel):
user = models.ForeignKey(User, on_delete=models.DO_NOTHING)
crypto = models.ForeignKey(CryptoCurrency, on_delete=models.DO_NOTHING)
amount = models.DecimalField(max_digits=10, decimal_places=8)
total_price = models.DecimalField(max_digits=10, decimal_places=2)
state = models.CharField(max_length=10, choices=OrderStates.choices, default=OrderStates.PENDING)
is_aggregated = models.BooleanField(default=False)- Celery handles order processing and interaction with the exchange. Tasks are dispatched for both immediate and aggregated purchases.
- Redis ensures efficient storage and retrieval of partial order data, allowing for fast lookups and atomic updates to aggregated orders.
- Authentication: Token-based authentication (JWT) ensures that only authenticated users can place orders.
- Atomic Transactions: All wallet updates and order creations are performed within atomic database transactions to prevent race conditions and ensure data integrity.
- Fraud Detection: Implement fraud detection mechanisms to identify suspicious activities and prevent unauthorized access.
- Rate Limiter: Implement rate limiting to prevent abuse of the API and protect against DDoS attacks.
- Implement user-based rate limiting at the API Gateway level (e.g., 1000 requests per hour).
- Implement endpoint-specific rate limits to prevent abuse.
-
*Horizontal Scaling
- Application servers can be scaled horizontally behind the load balancer.
- Database read replicas can be added to handle increased read traffic.
-
Caching Strategy
- *Use Read-Through and Write-Through caching for improved performance.
- Use cache-aside pattern for other frequently accessed data.
- Read Operation:
- Check if the data is in the cache.
- If found, return it.
- If not found, load it from the database, store it in the cache, and return it.
- Write Operation:
- Write the data to the database.
- Invalidate or update the cache to ensure consistency.
- Read Operation:
-
*Database Sharding
- Implement horizontal sharding based on user ID or cryptocurrency.
- Use consistent hashing for efficient data distribution.
-
Asynchronous Processing
- Offload computationally intensive tasks to Celery workers.
- Use message queues to decouple components and ensure reliable processing.
- Docker
- Docker Compose
- Python 3.8+
- Poetry (for dependency management)
-
Clone the repository:
git clone https://github.com/MrRezoo/django-crypto-exchange.git cd django-crypto-exchange -
Install dependencies using Poetry:
poetry install
-
Set up the environment variables:
cp config.example.env config.env
-
Start the development server:
make runserver
-
Prepare the Docker environment:
make prepare-compose
-
Start the Docker containers:
make up
-
Rebuild and start the containers:
make up-force
-
Stop the containers:
make down
Ensure the following environment variables are set in the config.env file:
SECRET_KEY = your_secret_key
DEBUG = True
LOGLEVEL = info
ALLOWED_HOSTS = 0.0.0.0,127.0.0.1,localhost
POSTGRES_DB = crypto_exchange
POSTGRES_USER = postgres
POSTGRES_PASSWORD = postgres
POSTGRES_HOST = crypto_exchange_postgres
POSTGRES_PORT = 5432
REDIS_HOST = crypto_exchange_redis
REDIS_PORT = 6379
JWT_SECRET_KEY = your_jwt_secret_key- Seed Command is in docker-compose file, you can run it by the following command:
make seeder- Seeder will apply initial data to the database, including cryptocurrencies, users, and wallets.
- Admin:
- username: admin
- password: new_password
- wallet balance: 1000.00
- Crypto:
- name: ABAN
- price: 20.00
This project includes a Makefile for automating common tasks:
| Command | Description |
|---|---|
make help |
Show available commands |
make install |
Install all dependencies using Poetry |
make runserver |
Run Django development server |
make migrate |
Apply database migrations |
make dump-data |
Dump current database data |
make create-superuser |
Create a Django superuser |
make shell |
Open the Django shell |
make show-urls |
Display all registered URLs |
make test |
Run unit tests |
make build |
Build the Docker image |
make up |
Start the Docker containers |
make up-force |
Rebuild and start the Docker containers |
make down |
Stop the Docker containers |
make seeder |
Seed the database with initial data |
To run the tests, use the following command:
make testThe project includes tests for key features, such as order processing, wallet management, and system integration.
The project includes automatically generated API documentation using Swagger UI and ReDoc.
- Swagger UI: Available at
/api/v1/swagger/ - ReDoc UI: Available at
/api/v1/redoc/
The system is designed to scale efficiently:
- Caching: Redis caches cryptocurrency prices and wallet balances to minimize database load.
- Asynchronous Processing: Celery processes background tasks to maintain responsiveness.
- Rate Limiting: Custom throttles prevent abusive behavior.
- Dockerized: Fully containerized for scalability and ease of deployment.
- Enhanced Fraud Detection: Add machine learning algorithms for better fraud detection.
- Real-Time Updates: Introduce WebSockets or gRPC for real-time updates on cryptocurrency prices.
- Database Sharding: Shard the database to handle large datasets efficiently.
- CDN Integration: Implement a CDN for serving static files to reduce load.
For any inquiries or issues, please contact:
- Name: Reza Mobaraki
- Email: rezam578@gmail.com
This project is licensed under the MIT License - see the LICENSE file for details.