◆ Cactus v10 — Architecture

Cactus v10 — Architecture Reference

Plataforma multi-tenant iGaming 100% Cloudflare edge. Target: 100 brands, 30M usuários, 400M tx/dia.

1. Topologia global

Tudo no edge Cloudflare. Apex Worker é o único entry-point externo; faz service bindings pra todos os Workers especializados.

2. Workers index

Inventário completo. URLs internas via service binding; URLs externas via apex proxy.

3. Request flow — apex middleware stack

Toda request HTTP entra pelo apex e passa por 4 camadas antes de chegar no Worker downstream.

4. Crash WebSocket — bet + cashout em ~30ms

Player abre WS persistente. Bet/cashout viajam via WS já aberto (sem TCP handshake) com ACK direto pro socket. Wallet credit em waitUntil.

5. WalletDO sync pipeline

Single-writer per player. SQLite local no DO (consistency forte). Sync periódico pra D1 via queue.

6. Payment routing engine

Adapter pattern + routing por priority+weight+circuit breaker+failover. 7 providers no catálogo (mock, pix-direct, stripe, mercadopago, btag, coinbase, nowpayments).

7. Casino launch + callback

Player lança game → orchestrator gera session → provider iframe URL. Provider chama nosso wallet via callback HMAC.

8. D1 sharding strategy

Tenant_id → brand shard. Player_id → ledger shard via crc32(). Mapeamento em CONFIG_KV[arch:shard_map] com cache 60s.

9. Archive D1 hot → R2 Iceberg (nightly)

Cron 03:00 UTC. Move rows com archived=0 AND created_at < 90d pra R2 em layout Iceberg-compatible (JSONL.gz). DELETE com grace 10d.

10. GDPR data export self-service

Player baixa ZIP JSON.gz com TODOS seus dados em <30s. Right-to-deletion com 14d cooldown.

11. Push notifications flow (VAPID)

VAPID via Web Crypto (sem deps). Anonymous subscribe permitido (device_id link).

12. WAF & Security layers

4 camadas de defesa. Per-tenant geo dinâmico via CONFIG_KV[tenant:X:config].restricted_countries.

13. Events pipeline (200+ event types)

Toda ação importante emite event. Pipeline: Worker → Queue → Consumer → D1 + Analytics Engine.

14. Deployment + CI/CD

Tudo via wrangler. Pages Projects pra frontends. D1 + R2 + KV criados via CF API.

15. API endpoints index

Snapshot dos endpoints mais importantes. Lista completa em /api/admin/openapi (TODO).

POST /api/auth/register
POST /api/auth/login
POST /api/auth/logout
POST /api/auth/refresh
POST /api/auth/forgot-password
POST /api/auth/reset-password
POST /api/auth/2fa/setup
GET  /api/auth/me

GET  /api/wallet/balance
GET  /api/wallet/balances
GET  /api/wallet/history?limit=&offset=
POST /api/wallet/transfer
POST /api/wallet/exchange

WS   /api/games/crash/connect?token=JWT
       ws msg: {type: 'bet'|'cashout'|'ping'}
       ws ack: {type: 'bet_ack'|'cashout_ack'|'pong'}
GET  /api/games/crash/state
GET  /api/games/crash/history
POST /api/games/crash/bet (fallback)
POST /api/games/crash/cashout (fallback)
POST /api/games/mines/start
POST /api/games/mines/reveal
POST /api/games/tower/start
POST /api/games/tower/reveal
POST /api/games/verify (provably fair)

GET  /api/payments/methods?country=BR¤cy=BRL
POST /api/payments/deposit
POST /api/payments/withdrawal
POST /api/payments/webhook/:provider
GET  /api/admin/payments/providers
GET  /api/admin/payments/tenants/:tid/config
PATCH /api/admin/payments/tenants/:tid/config
POST /api/admin/payments/test/:provider
GET  /api/admin/payments/circuit-breakers

GET  /api/casino/games?category=slots&provider=&limit=
POST /api/casino/launch/:game_id
POST /api/casino/callback/:provider
GET  /api/admin/casino/providers
GET  /api/admin/casino/tenants/:tid/config
POST /api/admin/casino/sync/:provider

POST   /api/me/data-export
GET    /api/me/data-export/jobs
GET    /api/me/data-export/jobs/:id
GET    /api/me/data-export/download/:id
POST   /api/me/account-deletion
GET    /api/me/account-deletion
DELETE /api/me/account-deletion

GET  /api/bo/players?search=&status=
GET  /api/bo/players/:id/full
POST /api/bo/players/:id/lock
POST /api/bo/players/:id/credit
GET  /api/admin/system/tenants
PATCH /api/admin/system/tenants/:id
GET  /api/reports/overview
GET  /monitor/status (público)
GET  /api/kanban/boards
GET  /api/kanban/boards/:slug

16. Events catalog (300+ events, 29 namespaces)

Sistema 100% orientado a eventos no shape bigtec (PostHog/Mixpanel/Amplitude). Source: evian-bet-frontend/src/lib/events.ts. Pipeline: track() → POST /api/events/track → Queue igaming-events → Consumer → D1 events_recent_90d + Analytics Engine.

Universal envelope

Toda chamada de emit.{namespace}.{action}({data}) adiciona automaticamente:

{
  event_type: 'bet.placed',
  ts_client: 1716922800000,
  session_id: 'sess_uuid',
  device_id: 'dev_uuid',
  player_id: 'plr_uuid' | null,
  page_url, page_path, referrer,
  user_agent_hash, viewport,
  utm_source, utm_medium, utm_campaign, utm_content, utm_term,
  // ↓ added server-side from CF
  ip_country, ip_city, ip_region, ip_asn, ip_isp,
  // ↓ event-specific payload
  data: { game_id, bet_id, amount, currency, ... }
}

29 Namespaces

Eventos de uso

import { emit } from '@/lib/events'

emit.bet.placed({ game_id: 'crash', bet_id, amount: 50, currency: 'BRL', via: 'ws' })
emit.funnel.firstDepositCompleted({ time_to_first_deposit_sec: 142, amount_minor: 5000, currency: 'BRL' })
emit.fraud_signal.vpnDetected({ provider: 'NordVPN' })
emit.experiment.assigned({ experiment: 'new-cashout-button-color', variant: 'green' })
emit.performance.webVitalLcp({ value_ms: 2400, path: '/cassino', rating: 'good' })

17. Filters & dimensions (analytics)

Toda query Reports/BI no BO suporta esses filtros. Documenta o esquema de cubo OLAP.

Dimensões (filtros)

Métricas (aggregations)

Exemplos SQL (Analytics Engine)

-- DAU últimos 30d por country
SELECT
  blob1 AS country,
  formatDateTime(timestamp, '%Y-%m-%d') AS day,
  COUNT(DISTINCT blob2) AS dau
FROM events_analytics
WHERE timestamp > now() - INTERVAL '30' DAY
  AND blob3 = 'session.start'
GROUP BY country, day
ORDER BY day DESC, dau DESC;

-- Conversion funnel signup → first deposit por UTM source
SELECT
  blob4 AS utm_source,
  countIf(blob3 = 'funnel.signup_completed') AS signups,
  countIf(blob3 = 'funnel.first_deposit_completed') AS first_deposits,
  countIf(blob3 = 'funnel.first_deposit_completed') / countIf(blob3 = 'funnel.signup_completed') AS conv_rate
FROM events_analytics
WHERE timestamp > now() - INTERVAL '7' DAY
GROUP BY utm_source
ORDER BY signups DESC;

-- Bet decision time histogram (P50/P90/P99)
SELECT
  quantile(0.5)(double1) AS p50_ms,
  quantile(0.9)(double1) AS p90_ms,
  quantile(0.99)(double1) AS p99_ms
FROM events_analytics
WHERE blob3 = 'bet.cashout_clicked'
  AND timestamp > now() - INTERVAL '24' HOUR;

18. Backoffice inventory (12 BOs + System)

19. Data model — D1 tabelas críticas

D1 tables: 37 em platform-main + 8 em player-ledger + 11 em cactus-brands-s1/s2 + 4 em cactus-ledger-s1 + 5 em cactus-kanban = ~65 tables distribuídas por sharding.

20. Withdrawal Rules Engine

Engine de regras automáticas per (tenant × payment_method × currency). Avalia rules por priority, primeira match decide: auto_approve | require_review | block | delay. Default safe = require_review.

POST /api/withdrawal/evaluate
Header: X-Internal-Secret
Body: { tenant_id, player_id, payment_method, currency, amount_minor }
→ { action, action_taken, matched_rule, reasons[], context }

BO UI: /bo/finance/withdrawal-rules · 7 rules seed evian_bet

21. Payment Failover Routing

Chain ordenada per (tenant × payment_method) com triggers granulares + retry policy + circuit breaker. Se Stripe falhar com server_error, tenta MercadoPago. Se cartão declined (terminal error), aborta sem tentar próximo.

{
  "on": ["timeout","server_error","provider_down","fraud_decline"],
  "skip": ["customer_decline","invalid_amount"]
}

BO UI: /bo/finance/failover · 3 tabs (Chains · Stats · Tentativas log) · 6 routings seed evian_bet

22. Credentials Vault (Secrets Central)

Metadata em D1 + valores reais em CONFIG_KV. Workers leem KV normalmente. BO super-admin pode listar/filtrar/rotacionar/audit. Reveal explícito logado em audit trail (PCI-DSS compliant).

GET /api/bo/secrets
GET /api/bo/secrets/:id  (com audit log)
POST /api/bo/secrets  (create/rotate)
POST /api/bo/secrets/:id/reveal  (1× + audit)
DELETE /api/bo/secrets/:id
GET /api/bo/secrets/health  (D1 vs KV consistency)

BO UI: /system/secrets super-admin only

23. KYC Operations (BO-07)

Queue de submissões KYC com priority. Admin revisa docs, aprova (upgrade tier automático), rejeita (com motivo estruturado em 8 reasons) ou pede mais info. Tudo audit-logged.

BO UI: /bo/kyc-ops · SLA tracking · 8 reject reasons

24. Push Campaigns BO

Cria campanhas com template + segment + agendamento. Stats real-time: subs ativas, delivered, clicked, CTR%.

BO UI: /bo/push-campaigns · Worker igaming-push dispatch · 5 templates seed (welcome_bonus, deposit_confirmed, withdrawal_processed, crash_round_alert, weekly_cashback)

25. Funnel Events Automation

Cron diário 02:30 UTC roda runFunnelTracker per tenant. Detecta marcos lifecycle (first_deposit, first_bet, first_withdrawal, churned_7d/30d), emit events EVENTS_QUEUE + snapshot em funnel_daily_snapshots pra dashboard histórico.

BO UI: /bo/funnel · Funnel viz horizontal + Churn cards 7d/30d + Daily breakdown table

26. Originals (Cactus)

7 jogos originais provably-fair (server seed HMAC-SHA256 + client seed + nonce).

Status backend: Crash/Mines/Tower com HMAC server-side. Plinko/Dice/Limbo/Wheel ainda usam Math.random client-side — k-P0-01 pendente.

27. Minigames CRM

Mini-games de bônus integrados em journeys (boas-vindas, pós-depósito, KYC tier-up, push retention). Backend determina prize, UI anima reveal.

Roadmap: Claw machine, Baú/Treasure Chest, Slot 1-line, Memory match-3, Dart throw.

28. WordPress-Multisite Parity

Cada tenant edita praticamente tudo do site dele via BO — inspirado em WordPress Multisite. Score atual: 11✅ / 3🟡 / 2🔴.

29. Architecture Decision Records

30. Onboarding novo brand (passo-a-passo)

1. Criar tenant: /system/tenants → "Novo cassino" → 5 steps wizard (id/dominios/moeda/licença/confirmar)
2. Configurar tema: Aba Tema → cores + logo + favicon + (opcional) font_family + custom_css
3. Definir navegação: Aba Navegação → top_nav + footer_columns (ou carregar defaults)
4. Habilitar features: Aba Features → toggles per jogo + payment_methods + casino_providers
5. Currencies: Aba Currencies — markar moedas suportadas (auto-init wallets pra signups)
6. Payment routing: /bo/finance/providers — ativar PSPs + /bo/finance/failover — chain ordenada
7. Casino providers: /system/casino-providers — ativar provs globais + per-tenant game allowlist
8. Withdrawal rules: /bo/finance/withdrawal-rules — regras automáticas approve/review/block
9. CMS pages: /system/cms — criar Termos/Privacidade/Sobre/FAQ/Jogo Responsável em pt-BR + locale extras
10. Email templates: /bo/marketing/email-templates — customizar welcome, deposit_confirmed etc
11. Push templates + campaigns: /bo/push-campaigns
12. Secrets: /system/secrets — preencher API keys (Stripe, MercadoPago, Sumsub, etc)
13. WAF + geo-block: /system/waf — restricted_countries + Tor/VPN flags
14. Custom domain: No CF Pages, adicionar domain custom + CNAME (manual hoje, #158 automatize)
15. Validate + ativar: Wizard step 5 "Validate" + status=active

Tempo estimado: ~2h pra brand novo após PSPs/license aprovados.