8 Standalone Pro Apps

Mewayz uses a dual-tier architecture. Tier 1 packages provide the data layer, while Tier 2 standalone apps provide advanced Pro-level UI experiences, all embedded seamlessly via iframe.

Architecture Overview

Each standalone app is a full Laravel + React application deployed on its own subdomain. When a user navigates to a Pro feature in the main app, the standalone is loaded in an iframe with seamless SSO authentication.

Main App (app.mewayz.com)
  |
  +-- /m/app/hrm/*     --> iframe: hrm.mewayz.com
  +-- /m/app/sales/*    --> iframe: sales.mewayz.com
  +-- /m/app/account/*  --> iframe: account.mewayz.com
  +-- /m/app/tasks/*    --> iframe: tasks.mewayz.com
  +-- /m/app/booking/*  --> iframe: booking.mewayz.com
  +-- /m/app/store/*    --> iframe: store.mewayz.com
  +-- /m/app/legal/*    --> iframe: legal.mewayz.com
  +-- /m/app/vcard/*    --> iframe: vcard.mewayz.com

All standalone apps read and write to the same MySQL database ("app") as the main platform. No data synchronization is needed.

The 8 Standalone Apps

1. HRM Pro (hrm.mewayz.com)

Advanced human resource management with payroll, biometric attendance, advanced leave policies, and comprehensive workforce analytics.

• Advanced payroll with multi-currency support
• Biometric device integration
• Shift scheduling and rotation
• Performance review workflows
• Training and certification tracking

2. Sales Pro (sales.mewayz.com)

Full CRM suite with pipeline forecasting, advanced lead scoring, territory management, and sales analytics dashboards.

3. Accounting Pro (account.mewayz.com)

Complete double-entry accounting suite with multi-currency, bank reconciliation, tax compliance, and financial reporting.

4. Tasks Pro (tasks.mewayz.com)

Advanced project management with Gantt charts, sprint planning, resource allocation, and time tracking.

5. Booking Pro (booking.mewayz.com)

Appointment scheduling system with calendar sync, automated reminders, and client self-booking portal.

6. Store Pro (store.mewayz.com)

E-commerce storefront with inventory management, POS, shipping integration, and order fulfillment.

7. Legal Pro (legal.mewayz.com)

Legal case management with document storage, contract templates, court date tracking, and client portal.

8. VCard Pro (vcard.mewayz.com)

Digital business card platform with QR codes, NFC support, lead capture forms, and analytics.

SSO Authentication

All standalone apps use HMAC-SHA256 JWT authentication for seamless SSO:

1. User clicks a Pro feature in the main app
2. IframeController generates a JWT with user data and workspace ID
3. JWT is signed with HMAC-SHA256 using a shared secret
4. Token has a 60-second expiry for security
5. Standalone app verifies the token and creates a session
6. User sees the Pro UI in a seamless iframe

JWT Payload

{
  "user_id": 123,
  "email": "[email protected]",
  "workspace_id": 456,
  "role": "admin",
  "exp": 1711022460
}

Plan Gating

Standalone apps can be gated by plan. In IframeController.php, set the module key to require a specific plan:

// Gate to Pro plan:
'module' => 'hrm_pro'

// Open access (no gating):
'module' => null

When a module is gated and the user does not have the required plan, they see the upgrade-required.tsx page with pricing information and a CTA to upgrade.

Currently all standalone apps are set to null (open access for all plans).