System Architecture

Architectural Overview

Spiral is built on a hybrid architecture that deliberately separates source of truth, performance, and user experience.

The system combines:

This approach avoids overloading the blockchain while preserving strong security guarantees.

Rust-based programs responsible for Organizations, Film registration (Token-2022 NFTs), and Preservation contracts.

Hybrid authentication model combining wallet signatures (SIWS) and JWT-based sessions.

Edge-first backend responsible for validation, indexing, authorization, and orchestration of on-chain actions.

Read-optimized database used for metadata search, access control, and mirroring on-chain state.

Spiral follows a dual-layer trust model:

Layer	Responsibility	Trust Level
Blockchain (Solana)	Identity, ownership, integrity, authorization	Source of truth
Backend + Database	Search, UX, permissions, caching	Derived / verifiable

The backend never invents state.
All critical permissions are validated against on-chain PDAs.

Querying the blockchain for every user interaction would:

Instead, Spiral uses PostgreSQL as a projection layer:

On-chain data can always be re-verified cryptographically.

All identities in Spiral are derived deterministically using Program Derived Addresses.

Example — Member PDA derivation:

PDA_{member} = \text{hash}("member" + Organization\_Key + Wallet\_PublicKey)

This guarantees:

Continue reading to explore each subsystem in detail:

Authentication & Identity → Wallet-based login, onboarding via invite, session model
On-Chain Programs → Organization, Film, Preservation architecture
Synchronization Layer → How blockchain events update the database

Monorepo Architecture

Spiral uses a monorepo structure. Backend and frontend are isolated but share types and schemas.