Skip to main content

Platform Architecture

Surrogate OS is a monorepo platform that synthesizes professional identities and deploys them as operational AI agents. This document covers the high-level architecture, layer model, and technology choices.

Monorepo Structure

surrogate-os/
├── apps/
│   ├── api/            # Fastify v5 backend (port 3001)
│   ├── web/            # Next.js 15 dashboard (port 3000)
│   └── docs/           # Docusaurus documentation (port 3002)
├── packages/
│   ├── shared/         # Zod schemas, TypeScript types, constants
│   └── observability/  # OpenTelemetry tracing, Pino logging, metrics
├── infra/              # Docker Compose, OTEL config, Grafana provisioning
└── .github/            # CI/CD workflows

All packages are managed with Turborepo for build orchestration and caching.

Five-Layer Stack

The platform is organized into five conceptual layers, each with distinct responsibilities:

LayerPurposeKey Modules
IdentityAuthentication, tenant isolation, surrogate definitionsAuth, Orgs, Surrogates, Org DNA, Personas
SOPProcedure generation, graph structure, complianceSOPs, LLM, Compliance, Marketplace
ExecutionReal-time SOP traversal, fleet coordinationExecutions, Fleet, Handoffs, Humanoid
LearningPost-execution analysis, continuous improvementDebriefs, Proposals, Memory, Federation
InterfaceUser-facing surfacesNext.js Dashboard, REST API, Swagger

Multi-Tenant Architecture

Surrogate OS uses a schema-per-tenant pattern in PostgreSQL. Each organization gets its own isolated database schema, while shared platform data (users, orgs, marketplace listings) lives in the public schema managed by Prisma.

See Multi-Tenancy Deep Dive for implementation details.

Tech Stack

Application

ComponentTechnologyDetails
BackendFastify v5 + TypeScriptSchema-validated HTTP, plugin architecture
FrontendNext.js 15 (App Router)React 19 + Tailwind CSS v4
ORMPrisma v6Public schema models, raw SQL for tenant schemas
AuthJWT + bcryptAccess tokens (15m) + Refresh tokens (7d)
ValidationZodShared schemas across frontend and backend
BuildTurborepoMonorepo orchestration with build cache
LLMClaude / OpenAI / OllamaConfigurable per-org via settings

Infrastructure

ComponentTechnologyPort
DatabasePostgreSQL 16 + pgvector5432
OTEL CollectorOpenTelemetry Contrib4317/4318
TracingGrafana Tempo3200
LoggingGrafana Loki3100
MetricsPrometheus9090
DashboardsGrafana4000

Observability Flow

Data Model Overview

Public Schema (Prisma-managed)

Models shared across all tenants:

  • Org Organization with slug, plan (STUDIO/ENTERPRISE/HUMANOID), settings
  • User Members with email, role (OWNER/ADMIN/MEMBER), org association
  • MarketplaceListing / MarketplaceReview Cross-org SOP marketplace
  • FederationContribution / FederationSettings Federated learning pool
  • ApiKey Scoped API keys with rotation support
  • Webhook / WebhookDelivery Event-driven integrations
  • Notification In-app notification system

Tenant Schema (Raw SQL, per-org)

Each tenant schema (tenant_{org_slug}) contains:

  • surrogates AI agent definitions with role, domain, jurisdiction
  • sops Versioned SOP graphs with hash-chaining
  • audit_entries Append-only audit log with cryptographic chain
  • sessions / decision_outcomes Session tracking
  • debriefs Post-session analysis reports
  • sop_proposals SOP change proposals with approval workflow
  • org_documents / document_chunks Org DNA with pgvector embeddings
  • memory_entries STM/LTM institutional memory
  • handoffs D2D/D2H/H2D handoff records
  • persona_templates / persona_versions Versioned persona library
  • bias_checks Bias audit results
  • humanoid_devices Registered humanoid/device endpoints
  • executions Real-time SOP execution state
  • compliance_checks / sop_signatures Certification records

API Structure

All API routes are registered under /api/v1/ with 21 route modules. The API uses JWT bearer authentication, Zod validation, and a consistent response envelope:

{
  "success": true,
  "data": { ... },
  "error": null
}

See API Endpoints for the complete reference.

Next: Multi-Tenancy | API Endpoints | Quick Start