feat: repo structure and hitherto docs

wojciechkrzos · wojciechkrzos · commit 36b63c30ca7c · 2026-05-20T14:39:30.000+02:00
diff --git a/README.md b/README.md
@@ -0,0 +1,12 @@
+# Glosownik Documentation
+
+This repository contains version-controlled project documentation.
+
+## Sections
+
+- [Actors](./actors/)
+- [Requirements](./requirements/)
+- [Architecture](./architecture/)
+- [Processes](./processes/)
+- [Sequence diagrams](./sequences/)
+- [User stories](./stories/)
diff --git a/actors/admin.md b/actors/admin.md
@@ -0,0 +1,8 @@
+# Admin
+
+Admin manages voting configuration and reviews voting results.
+
+## Goals
+
+- Create and configure voting sessions.
+- Review results after voting ends.
diff --git a/actors/voter.md b/actors/voter.md
@@ -0,0 +1,8 @@
+# Voter
+
+Voter participates in available voting sessions.
+
+## Goals
+
+- Sign in securely.
+- Cast a valid vote.
diff --git a/architecture/README.md b/architecture/README.md
@@ -0,0 +1,5 @@
+# Architecture
+
+Architecture is described with [C4 model](https://c4model.com/).
+
+- [c4.dsl](./c4.dsl)
diff --git a/architecture/c4.dsl b/architecture/c4.dsl
@@ -0,0 +1,41 @@
+workspace "Glosownik" "Architecture model for the Glosownik voting system." {
+    model {
+        admin = person "Admin"
+        voter = person "Voter"
+
+        auth = softwareSystem "3rd Party Auth" {
+            tags "External System"
+        }
+
+        glosownik = softwareSystem "Glosownik"
+
+        admin -> glosownik "Manages votes and views results"
+        voter -> glosownik "Signs in and votes"
+        glosownik -> auth "Authenticates users with"
+    }
+
+    views {
+        systemContext glosownik "c1-system-context" {
+            include *
+            autoLayout lr
+        }
+
+        styles {
+            element "Person" {
+                shape Person
+                background #08427b
+                color #ffffff
+            }
+
+            element "Software System" {
+                background #1168bd
+                color #ffffff
+            }
+
+            element "External System" {
+                background #999999
+                color #ffffff
+            }
+        }
+    }
+}
diff --git a/processes/voting-flow.bpmn b/processes/voting-flow.bpmn
diff --git a/requirements/functional.md b/requirements/functional.md
@@ -0,0 +1,34 @@
+# Functional Requirements
+
+## Voting
+
+| ID | Name | Description |
+| --- | --- | --- |
+| FR-101 | Casting Votes | The system allows eligible voters to cast a single vote per question in an active voting session. A voter cannot vote more than once on the same question. |
+| FR-102 | Adding Questions During Voting | The system allows admins to add new questions to an active voting session. Added questions apply only to voters who have not yet cast their vote. Users who have already voted are not required to vote again. |
+| FR-103 | Vote Anonymity | The system does not associate cast votes with individual voter identities. Admins can only view aggregated results. |
+
+## Session Management
+
+| ID | Name | Description |
+| --- | --- | --- |
+| FR-201 | Session Configuration | The system allows admins to create, edit, and delete voting sessions, including setting their start and end time and assigning questions. |
+| FR-202 | Results Inspection | The system allows admins to view voting results at any time during and after a voting session. |
+| FR-203 | Results Visibility | The system allows admins to configure whether results are visible to voters, and if so, whether during or only after the voting session ends. |
+| FR-204 | Session Lifecycle | The system allows admins to manually open, close, and archive voting sessions. Closed sessions do not accept new votes. |
+
+## User Management
+
+| ID | Name | Description |
+| --- | --- | --- |
+| FR-301 | Manual User Management | The system allows admins to manually add and remove users from the administration panel. |
+| FR-302 | CSV User Import | The system allows admins to import users from a CSV file. |
+| FR-303 | Excel User Import | The system allows admins to import users from an Excel file. |
+| FR-304 | User Import From Previous Sessions | The system allows admins to import the user list from a previous voting session. |
+
+## Authorization
+
+| ID | Name | Description |
+| --- | --- | --- |
+| FR-401 | Admin-Based Authorization | The system allows users to be authorized manually by an admin. This is the baseline authorization method. |
+| FR-402 | External Authorization | The system allows users to be authorized through an external provider [TBD]. This method can be used as an alternative to admin-based authorization (FR-401). |
diff --git a/requirements/non-functional.md b/requirements/non-functional.md
@@ -0,0 +1,13 @@
+# Non-Functional Requirements
+
+## Group 1
+
+| ID | Name | Description |
+| --- | --- | --- |
+| NFR-101 | --- | --- |
+
+## Group 2
+
+| ID | Name | Description |
+| --- | --- | --- |
+| NFR-201 | --- | --- |
diff --git a/sequences/authentication.md b/sequences/authentication.md
@@ -0,0 +1,54 @@
+# Authentication Sequence
+
+```mermaid
+    sequenceDiagram
+        autonumber
+
+        participant Voter
+        participant Client
+        participant Auth as Authorization Service
+        participant Signer as Blind Signature Server
+        participant VoteServer as Voting Server
+        participant Database
+        participant Tally as Tallying Service
+
+        Note over Client,Signer: RSA signing key pair is pre-configured. Public key is known to the client. Private key is kept by the signer.
+        Note over Client,Tally: Election encryption public key is known to the client. Private key is kept only for tallying.
+
+        Voter->>Client: Start voting process
+        Client->>Auth: Authenticate voter
+        Auth-->>Client: Authorization completed
+
+        Client->>Client: Generate token m
+        Client->>Client: Generate blinding factor r
+        Client->>Client: Blind token using m, r and signer public key
+
+        Client->>Signer: Send blinded token
+        Signer->>Auth: Check voter eligibility
+        Auth-->>Signer: Voter eligible and not used yet
+
+        Signer->>Signer: Sign blinded token with private key
+        Signer->>Auth: Mark authorization as used
+        Signer-->>Client: Return signed blinded token
+
+        Client->>Client: Unblind signed token using r
+        Client->>Client: Obtain signed anonymous voting token
+
+        Voter->>Client: Select vote
+        Client->>Client: Encrypt vote with election public key
+
+        Client->>VoteServer: Submit encrypted vote and signed token
+        VoteServer->>VoteServer: Verify token signature with signer public key
+        VoteServer->>Database: Check whether token was already used
+
+        alt Token is valid and unused
+            VoteServer->>Database: Store token hash and encrypted vote
+            VoteServer-->>Client: Vote accepted
+        else Token is invalid or already used
+            VoteServer-->>Client: Vote rejected
+        end
+
+        Tally->>Database: Retrieve encrypted votes
+        Tally->>Tally: Decrypt votes with election private key
+        Tally->>Tally: Count votes
+```
diff --git a/stories/README.md b/stories/README.md
@@ -0,0 +1,5 @@
+# User Stories
+
+This section contains user stories and story maps.
+
+- [Story map](./story-map.md)
diff --git a/stories/story-map.md b/stories/story-map.md
@@ -0,0 +1,42 @@
+# Story Map
+
+```mermaid
+journey
+    title Glosownik User Story Map
+    section Admin prepares voting
+      Create voting session: 5: Admin
+      Import voters: 4: Admin
+      Configure questions: 4: Admin
+      Open voting session: 5: Admin
+    section Voter participates
+      Sign in: 5: Voter
+      View active voting session: 4: Voter
+      Cast vote: 5: Voter
+      Submit anonymous vote: 5: Voter
+    section Admin manages active voting
+      Add question during voting: 3: Admin
+      Control results visibility: 3: Admin
+    section Admin reviews results
+      Close voting session: 4: Admin
+      Review results: 5: Admin
+      Archive voting session: 3: Admin
+```
+
+## Stories
+
+| ID | Actor | Story | Related requirements |
+| --- | --- | --- | --- |
+| US-001 | Admin | As an admin, I want to create and configure a voting session so that voters can participate in a prepared vote. | FR-201 |
+| US-002 | Admin | As an admin, I want to import voters so that I can prepare a voting session quickly. | FR-301, FR-302, FR-303, FR-304 |
+| US-003 | Admin | As an admin, I want to add questions during an active voting session so that the vote can adapt to meeting decisions. | FR-102 |
+| US-004 | Admin | As an admin, I want to control result visibility so that voters see results only when appropriate. | FR-203 |
+| US-005 | Admin | As an admin, I want to open, close, and archive voting sessions so that the voting lifecycle is controlled. | FR-204 |
+| US-006 | Admin | As an admin, I want to inspect results so that I can understand the outcome of a voting session. | FR-202 |
+| US-007 | Voter | As a voter, I want to sign in securely so that only eligible users can vote. | FR-401, FR-402 |
+| US-008 | Voter | As a voter, I want to cast one vote per question in an active session so that my choice is counted correctly. | FR-101 |
+| US-009 | Voter | As a voter, I want my vote to remain anonymous so that admins cannot connect my identity with my choices. | FR-103 |
+
+## Consistency Notes
+
+- The story map uses grouped requirement IDs, for example `FR-201` for session management and `FR-401` for authorization.
+- No user stories currently reference NFRs because the non-functional requirements file still contains placeholders only.
