1
The Challenge
To transform a proprietary AI tool into a commercially viable, enterprise-grade B2B SaaS product for the Australian training sector, the client required a complete structural overhaul. The platform needed to ensure absolute data isolation across distinct corporate tenants, implement real-time asset and API usage metering, provide automated subscription enforcement, and establish a robust, collaborative human-in-the-loop quality assurance workflow.
KEY REQUIREMENTS
✔ Rigid multi-tenant database isolation
✔ Hierarchical
✔ route-level Role-Based Access Control (RBAC)
✔ Subscription lifecycle management and Stripe integration
✔ Multi-tier content validation state machine
✔ On-demand
✔ non-destructive assessment generation
✔ Template-driven branding controls for high-fidelity exports
2
The Solution
RannLab deployed an API-first SaaS framework utilizing secure JWT authentication coupled with custom route-level validation middleware to strictly enforce multi-tenant isolation. A granular, 4-tier hierarchical RBAC model was established, explicitly separating platform operations and organizational control into distinct user roles: Super Admin, Tenant Owner, Knowledge Expert, and Validator.
To guarantee output quality, a formalized QA validation state machine (in_review → validated / needs_revision) was engineered into the platform, enabling tenant-assigned reviewers to flag issues, write inline comments, and track revisions. The monetization layer seamlessly binds feature sets, token allowances, and storage limits to real-time Stripe Billing and Subscriptions using webhooks and secure API gateways. High-fidelity, multi-format delivery options were also integrated to handle dynamic document conversions via Puppeteer headless browser automation.
