SACC Task Management System: Enterprise Python Application with Security-First Design
A comprehensive task management system built for Saudi Accountants with 10,000+ lines of production Python code, featuring SHA-256 encryption, role-based access control, automated backups, and bilingual support.
Project Overview
From January 2025 onwards, I worked with Saudi Accountants to address critical data management challenges they faced. Through effective communication and leveraging my professional network, I convinced management to invest in a custom-built solution tailored to their specific needs.
The result was a production-ready desktop application built with Python and PostgreSQL, featuring enterprise-grade security and professional UI/UX design.
Key Metrics
| Metric | Achievement |
|---|---|
| Lines of Code | 10,000+ production-quality Python |
| Database Architecture | Dual-database system (main + users) |
| Language Support | Bilingual (English/Arabic) |
| Access Control | Role-based with 3 user levels |
| Backup System | Automated weekly with AES-256 encryption |
| Deployment Status | Production with active users |
Security Implementation
Security wasn’t an afterthought, it was the foundation. Here’s what I implemented:
Core Security Features
- Password Security: SHA-256 hashing with salt, zero plain-text storage
- Automated Backups: Every 24 hours, secured with AES-256 encryption
- Role-Based Access Control: Three-tier permission system (Admin, Manager, User)
- Comprehensive Logging: Every action logged with timestamps for forensic readiness
- Input Validation: Parameterized queries preventing SQL injection
- Database Isolation: Separate users database for credential security
Security Architecture
| Security Layer | Implementation |
|---|---|
| Password Security | SHA-256 hashing, no plain text storage |
| Access Control | Role-based permissions (Admin, Manager, User) |
| Database Security | Separate users database isolating credentials |
| Audit Trail | Field-level change tracking with timestamps |
| Input Validation | SQL injection prevention via parameterized queries |
| Activity Logging | All user actions logged with attribution |
| Protected Accounts | System accounts (admin, saccdev) deletion-protected |
| Backup Security | Automated backups with integrity verification |
Technical Architecture
Technology Stack
| Component | Technology | Purpose |
|---|---|---|
| Language | Python 3.14 | Core programming language |
| GUI Framework | CustomTkinter | Modern dark-themed UI |
| Database | PostgreSQL (SQLite3 dual) | Data persistence |
| Data Processing | openpyxl, csv | Export/import operations |
| Security | hashlib (SHA-256) | Password encryption |
| Threading | Python threading | Background operations |
Database Design
The system uses a dual-database architecture for enhanced security:
Main Database (database.db)
- Core task data with yearly sequential IDs
- File attachments with metadata storage
- Collaboration features (@mentions, comments)
- Change tracking and audit trails
- Customizable task categories
- Comprehensive activity tracking
- Automated backup management
- Application configuration
Users Database (users.db)
- Isolated authentication credentials
- SHA-256 hashed passwords with salts
- Role assignments and permissions
- Account metadata
Key Features
Task Management
- Yearly sequential ID system (2025-001, 2025-002)
- Soft-delete capability with comprehensive audit trail
- Multi-file attachments with organized storage structure
User Management
- Role-based access control (Admin, Manager, User)
- SHA-256 password hashing with salt
- Three-tier permission system
Collaboration Tools
- Comments system with @mentions
- Complete change tracking
- Team communication features
Reporting & Analytics
- Daily/monthly reports
- Statistics dashboard
- CSV/Excel export capabilities
Backup System
- Automatic weekly backups
- 10-backup retention policy
- Encrypted backup storage
Modern UI
- Dark theme with professional design
- Responsive layouts
- Full bilingual interface (English/Arabic)
Skills Demonstrated
This project showcases proficiency across multiple software engineering domains:
Full-Stack Desktop Development
Modern GUI development, event-driven programming, responsive UI/UX design, form validation
Database Engineering
Relational database design, SQL optimization, transaction management, backup strategies
Security Engineering
Password hashing, role-based access control, input validation, SQL injection prevention
Software Architecture
MVC pattern, separation of concerns, SOLID principles, modular design
Python Programming
OOP, multi-threading, exception handling, context managers, advanced libraries
Problem-Solving
Network drive optimization, yearly sequential IDs, soft-delete implementation, automated backups
DevOps & Deployment
Automated installation scripts, dependency management, production deployment
Project Management
Requirements analysis, feature prioritization, iterative development, comprehensive documentation
Business Impact
Operational Efficiency
Centralized task management reducing administrative overhead by an estimated 10-15 hours per week.
Data Integrity & Security
Audit trail ensuring accountability and compliance, role-based access preventing unauthorized modifications, automated backups protecting against data loss.
Collaboration Enhancement
Comment system facilitating team communication, @mention functionality ensuring timely notifications, shared document repository centralizing information.
Cost Savings
Zero licensing costs using open-source technologies, no recurring subscription fees, minimal hardware requirements, no cloud storage costs.
Compliance & Reporting
Comprehensive audit trails for regulatory compliance, automated report generation for management review, export capabilities for external audits.
Technical Achievements
- 10,000+ lines of well-documented, production-quality Python code
- Modular architecture enabling easy maintenance and future enhancements
- Industry-standard security with SHA-256 encryption and RBAC
- Optimized database with WAL mode for network drive compatibility
- Professional UI/UX with modern design principles and bilingual support
- Production deployment with real users and active organizational use
Application Screenshots
Login Interface
Modern login interface with SACC branding and secure authentication
Main Dashboard
Task management interface with professional layout and navigation menu
User Management
Role-based access control administration (Admin view)
Activity Logging
Comprehensive user action tracking and audit trail
Task Configuration
Customizable task categories and classifications
File Management
Export/import and backup functionality
Language Support
Bilingual interface supporting English and Arabic
Key Highlights
- Production-ready software actively used by Saudi Accountants organization
- 10,000+ lines of professional-quality, well-structured code
- Full-stack development encompassing UI, business logic, database, and security
- Security-first approach with encryption, RBAC, and comprehensive audit trails
- Real-world impact solving actual organizational needs
- Scalable architecture designed for growth and maintenance
- Professional user experience meeting enterprise application standards
This project demonstrates not just coding ability, but the complete skillset required for professional software development: requirements analysis, system design, implementation, testing, deployment, and maintenance. The application successfully addresses real business needs while maintaining high standards of code quality, security, and user experience.
Built to last. Secured to stay.