Cloud services and infrastructure for Cogniflight: ingesting and processing device telemetry, storing fatigue analytics, and exposing secure endpoints for visualization and alerting.
Cogniflight Cloud is a comprehensive aviation fatigue monitoring platform that provides real-time telemetry processing, ML-powered fatigue analysis, and intuitive dashboards for air traffic controllers and system administrators. Built on a Service-Oriented Architecture (SOA), the system integrates edge devices (cockpit monitoring units) with cloud services to detect pilot fatigue in real-time using multimodal sensor fusion.
- Real-time Telemetry Processing: MQTT-based ingestion of edge node telemetry data including physiological metrics (heart rate, HRV), visual fatigue indicators (EAR, yawning), and environmental data
- ML-Powered Analysis: Face embedding generation for seamless authentication and intelligent reasoning over telemetry streams for fatigue detection
- Live Dashboard: Real-time visualization of edge node status with attitude indicators, fusion score graphs, and critical alert monitoring
- User Management: Role-based access control with pilots, ATC operators, data analysts, and system administrators
- Virtual Filesystem: Tag-based permission system for secure data access and multi-tenancy
- Time-Series Analytics: InfluxDB integration for historical trend analysis and reporting
Cogniflight Cloud is built as a Service-Oriented Architecture (SOA) with the following components:
graph TB
subgraph Frontend["Frontend (React)"]
UI["Desktop UI • Terminal • Dashboard<br/>User/Pilot/Flight Apps"]
end
subgraph Backend["Backend (Go + Gin)"]
WSCmd["WebSocket Command Interface"]
Auth["Authentication/Authorization"]
VFS["Virtual Filesystem"]
MQTTListener["MQTT Telemetry Listener"]
InfluxQuery["InfluxDB Query Streaming"]
MLInt["ML Engine Integration"]
end
subgraph Services["Storage & Processing Services"]
MongoDB[("MongoDB<br/>VFS + GridFS")]
InfluxDB[("InfluxDB<br/>Telemetry + Logs")]
MQTT["MQTT Mosquitto<br/>Broker"]
Telegraf["Telegraf<br/>(MQTT → Influx)"]
end
subgraph ML["ML Engine (Python)"]
FaceEmb["Face Embeddings"]
TelemetryAnalysis["Telemetry Analysis"]
FatigueReason["Fatigue Reasoning"]
end
EdgeNodes["Edge Nodes<br/>(Cockpit Devices)"]
Frontend -->|WebSocket + REST| Backend
Backend --> MongoDB
Backend --> InfluxDB
Backend --> MQTT
Backend -->|JSON-RPC<br/>Unix Socket| ML
EdgeNodes -->|MQTT Telemetry| MQTT
MQTT --> Telegraf
Telegraf --> InfluxDB
The system follows Service-Oriented Architecture principles with:
- Loose Coupling: Services communicate through well-defined interfaces (WebSocket, REST, JSON-RPC, MQTT)
- Service Contracts: Clear API contracts between frontend, backend, and ML services
- Autonomy: Each service can be developed, deployed, and scaled independently
- Reusability: Backend services expose reusable commands and ML engine provides general-purpose RPC methods
- Discoverability: Services register and expose capabilities through standardized protocols
- Interoperability: JSON/YAML data formats and standard protocols enable cross-service communication
- Framework: Gin web framework with WebSocket support via gorilla websockets
- Virtual Filesystem: Tag-based permission system stored in MongoDB with GridFS for file storage
- Command Interface: Shell-like command execution over WebSocket (ls, cat, pilots, edge-nodes, flux, etc.)
- MQTT Integration: Subscribes to
cogniflight/telemetry/+topics for real-time edge node data - ML Engine RPC: JSON-RPC over Unix socket for face embeddings and telemetry analysis
- Authentication: Cookie-based session management with bcrypt password hashing
- Desktop-Style UI: Windows-based interface with draggable/resizable windows and taskbar
- Applications:
- Edge Node Dashboard: Real-time telemetry visualization with attitude indicators, fusion scores, and alerts
- Users App: User management and profile editing (sysadmin only)
- Pilots App: Pilot information
- Flights App: Flight tracking and historical data
- Terminal: WebSocket-based shell interface to backend commands
- Settings: User profile management with face embedding upload
- File Explorer: Virtual filesystem navigation
- Real-time Updates: WebSocket connection for live telemetry streaming
- Face Embeddings (
face_embedding_handlers.py):- InsightFace integration for generating 512-dimensional face embeddings
- Used for seamless face authentication on edge nodes
- Telemetry Analysis (
reasoning.py):- Analyzes MQTT telemetry streams from InfluxDB
- Provides reasoning for fusion scores and fatigue indicators
- Detects critical events (microsleeps, stress, cardiac anomalies)
- Generates actionable insights for ATC operators
- Communication: JSON-RPC 2.0 over Unix socket
- TLS-encrypted connections (port 8883)
- Custom authentication via backend HTTP endpoint
- Topic structure:
cogniflight/telemetry/{edge_username}
- Stores telemetry data via Telegraf MQTT consumer
- Bucket:
telegraf, Measurement:mqtt_consumer - Fields: fusion_score, heart_rate, EAR, altitude, attitude (roll/pitch/yaw), etc.
- Collections:
vfs: Virtual filesystem entries with tag-based permissionsfs.files/fs.chunks: GridFS for file storage
- Schema: Hierarchical filesystem with directories and files, each with read/write/execute/updatetag permission tags
- Docker 20.10+ and Docker Compose v2.0+
- TLS Certificates (or use provided self-signed certs for development)
- OpenAI API Key (for chatbot functionality in terminal)
git clone https://github.com/yourusername/cogniflight-cloud.git
cd cogniflight-cloudCreate a .env file in the project root:
# MongoDB
MONGO_PWD=your_secure_password
# InfluxDB
INFLUXDB_TOKEN=your_influx_token
INFLUXDB_ORG=myorg
INFLUXDB_BUCKET=telegraf
# MQTT
MQTT_KEY=your_mqtt_password
SERVER_DOMAIN=localhost
INSECURE_SKIP_VERIFY_MQTT=true
# Backend Bootstrap User
BOOTSTRAP_USERNAME=admin
BOOTSTRAP_EMAIL=admin@example.com
BOOTSTRAP_PHONE=+1234567890
BOOTSTRAP_PWD=admin_password
# OpenAI (for terminal chatbot)
OPENAI_API_KEY=sk-...
# Environment
ENV=developmentStart all services with Docker Compose profiles:
# Start MongoDB
docker compose --profile mongo up -d
# Start MQTT broker
docker compose --profile mqtt-broker up -d
# Start InfluxDB and Telegraf (for telemetry ingestion)
docker compose --profile receive_mqtt up -d
# Start backend and ML engine
docker compose --profile backend up -d
# Access the application
open http://localhost:5173Or start everything at once:
docker compose --profile '*' up -dNavigate to http://localhost:5173 and login with your bootstrap credentials:
- Username:
admin(from BOOTSTRAP_USERNAME) - Password:
admin_password(from BOOTSTRAP_PWD)
| Variable | Description | Default |
|---|---|---|
MONGO_URI |
MongoDB connection string | mongodb://ohno:{MONGO_PWD}@mongo:27017/?authSource=admin |
MONGO_PWD |
MongoDB root password | rootpass |
INFLUX_URL |
InfluxDB HTTP endpoint | http://influxdb:8086 |
INFLUX_TOKEN |
InfluxDB authentication token | mytoken |
INFLUX_ORG |
InfluxDB organization | myorg |
INFLUX_BUCKET |
InfluxDB bucket for telemetry | telegraf |
MQTT_URL |
MQTT broker URL | ssl://mosquitto:8883 |
MQTT_KEY |
MQTT authentication key | mqttpass |
SERVER_DOMAIN |
Public domain for TLS | localhost |
BOOTSTRAP_USERNAME |
Initial admin username | - |
BOOTSTRAP_EMAIL |
Initial admin email | - |
BOOTSTRAP_PHONE |
Initial admin phone | - |
BOOTSTRAP_PWD |
Initial admin password | - |
OPENAI_API_KEY |
OpenAI API key for chatbot | - |
For production deployment, place your TLS certificates in the ./self-signed-certs/ directory:
fullchain.pem: Full certificate chainprivkey.pem: Private key
Or use environment variables:
TLS_CERTFILE_PATH=/path/to/fullchain.pem
TLS_KEYFILE_PATH=/path/to/privkey.pemmongo: MongoDB databasemqtt-broker: Mosquitto MQTT brokerreceive_mqtt: InfluxDB + Telegraf for telemetry ingestionbackend: Backend API + ML engineml-engine: ML engine onlyrest-api: Backend API only
For complete API documentation including WebSocket commands, REST endpoints, ML Engine RPC methods, and MQTT topics, see API_REFERENCE.md.
You'll want to get an instance of ml-engine and mongodb running with the correct env to test Provided by Docker, or with manual setup
cd backend
go mod download
go run . # or use Docker with watch modeBackend runs on port 8080.
Set a BACKEND_URL in frontend/.env before starting, targeting a real instance of our backend
cd frontend
npm install
npm run devFrontend dev server runs on port 1024 with hot reload.
cd ml-engine
pip install -r requirements.txt
python server.pyML engine listens on Unix socket at ./test.sock.
cogniflight-cloud/
├── backend/ # Go backend service
│ ├── cmd/ # WebSocket commands
│ ├── auth/ # Authentication handlers
│ ├── filesystem/ # Virtual filesystem implementation
│ ├── influx/ # InfluxDB streaming
│ ├── chatbot/ # OpenAI integration
│ ├── client/ # WebSocket client handling
│ ├── types/ # Shared types
│ └── main.go # Entry point
├── frontend/ # React frontend
│ └── src/
│ ├── components/ # UI components
│ │ └── apps/ # Application windows
│ ├── api/ # Backend API clients
│ └── styles/ # CSS modules
├── ml-engine/ # Python ML service
│ └── handlers/ # RPC method handlers
├── mosquitto/ # MQTT broker config
├── docs/ # Documentation
├── docker-compose.yml # Service orchestration
├── mongo-init.js # MongoDB initialization
└── telegraf.conf # Telegraf configuration
See PROJECT_CHARTER.pdf for project scope and TEAM_COLLABORATION.md for team structure.
- Create feature branch from
main - Make changes with descriptive commits
- Test locally with Docker Compose (unless all changes are on frontend)
- Submit pull request for review
MIT License - see LICENSE file for details.
This project was developed by a collaborative team. See TEAM_COLLABORATION.md for detailed team structure and contributions.