Matcher is Lerian Studio's reconciliation engine. It automates transaction matching between Midaz (Lerian's ledger) and external systems — banks, payment processors, ERPs — applying configurable matching rules, managing exceptions through workflow integrations, and maintaining a complete audit trail for compliance.
| Automated Matching | Reduce manual reconciliation with deterministic rules, tolerance-based matching, and confidence scoring |
| Configurable Rules | Define exact and tolerance-based rules, date windows, fee verification, and multi-source matches |
| Exception Workflows | Route unresolved items to JIRA, ServiceNow, or webhooks where teams already work |
| Audit-First | Append-only audit logging with hash chains for SOX-ready traceability |
| Multi-Tenant | Schema-per-tenant isolation in PostgreSQL with JWT-based tenant resolution |
| Runtime Configurable | Hot-reloadable settings via systemplane API — no restarts for tuning |
Matcher implements a complete reconciliation pipeline:
- Configure — Define reconciliation contexts, sources, field maps, match rules, and fee schedules
- Ingest — Import external data (CSV, JSON, XML, ISO 20022), normalize fields, deduplicate
- Match — Execute deterministic and tolerance-based matching, produce match groups with confidence scores
- Handle Exceptions — Classify unmatched items, route to teams, record manual resolutions
- Govern — Maintain immutable audit log, verify hash chain integrity, archive for compliance
- Report — Dashboard analytics, variance analysis, export to CSV/PDF
Matcher is a modular monolith built with Domain-Driven Design (DDD), hexagonal architecture, and CQRS-light separation.
| Context | Purpose |
|---|---|
| Configuration | Reconciliation contexts, sources, field maps, match rules, fee schedules/rules, scheduling |
| Discovery | External data source connection management, schema detection, extraction orchestration |
| Ingestion | File parsing (CSV/JSON/XML/ISO 20022), normalization, BOM handling, Redis-based dedup |
| Matching | Rule execution, confidence scoring (0-100), fee verification, manual match/unmatch, adjustments, cross-currency |
| Exception | Exception lifecycle, disputes with evidence tracking, bulk operations, external dispatch |
| Governance | Immutable audit logs, cryptographic hash chain verification, S3 archival |
| Reporting | Dashboard metrics, async export jobs (CSV/PDF), streaming reports, Redis caching |
| Outbox | Reliable event publication via transactional outbox pattern |
- Hexagonal Architecture — Ports and adapters per bounded context with strict import boundaries
- Schema-Per-Tenant — PostgreSQL
search_pathisolation with JWT-derived tenant identity - Transactional Outbox — Reliable event publication for ingestion and matching workflows
- Fee Schedule Engine — Net-to-gross normalization with parallel and cascading fee application
- Distributed Locking — Redis-based locks preventing concurrent match runs
- Cross-Currency Matching — FX rate lookups and base-currency normalization
- Idempotency — Redis-backed idempotency keys for safe client retries
- Systemplane — Runtime configuration authority with hot-reloadable settings, history, and schema API
- Chaos Testing — Toxiproxy-based fault injection for resilience validation
- OpenTelemetry — Distributed tracing and metrics via lib-commons
- Go 1.26.0+
- Docker and Docker Compose
- golang-migrate (for database migrations)
git clone https://github.com/LerianStudio/matcher.git
cd matcher
make upThis starts PostgreSQL (primary + replica), Valkey (Redis-compatible), RabbitMQ, SeaweedFS (S3), and the app with live reload.
make migrate-upcurl http://localhost:4018/health
# Returns plain text "healthy" or HTTP 503The API is available at http://localhost:4018. Swagger UI is accessible at http://localhost:4018/swagger/index.html when running in non-production mode.
No configuration files needed — all defaults are baked into the binary and match the docker-compose setup.
For production, override via environment variables. See config/.config-map.example for bootstrap-only keys (require restart). Runtime hot-reload is limited to systemplane-managed settings (for example: body limit, rate limits, worker intervals, feature flags, timeouts, export settings, and archival intervals) via /system/matcher/:key (GET/PUT) and /system/matcher (list with inline schema metadata). The admin API is a management-plane surface and is intentionally excluded from the public OpenAPI specification.
GOMEMLIMIT (Go memory hint). The image does not set GOMEMLIMIT. Operators must configure it per-deployment at roughly 85% of the container memory limit (for example, GOMEMLIMIT=425MiB for a 500 MiB pod). Go 1.26 auto-detects cgroup CPU via GOMAXPROCS but does not auto-detect cgroup memory; leaving GOMEMLIMIT unset risks OOM-kills from an uncapped Go heap. Kubernetes example:
env:
- name: GOMEMLIMIT
valueFrom:
resourceFieldRef:
resource: limits.memory
divisor: "1"matcher/
├── cmd/ # Application entry points
│ ├── matcher/ # Main service binary
│ └── health-probe/ # Health check binary for distroless containers
├── config/ # Environment templates and storage config
├── docs/ # Design documents and API specs
│ ├── swagger/ # Generated OpenAPI spec (JSON + YAML)
│ ├── multi-tenant-guide.md
│ └── PROJECT_RULES.md
├── internal/ # Core application code (bounded contexts)
│ ├── auth/ # JWT extraction, RBAC, tenant resolution
│ ├── bootstrap/ # Composition root (config, DI, server, systemplane)
│ ├── configuration/ # Reconciliation setup and scheduling
│ ├── discovery/ # External data source discovery
│ ├── ingestion/ # File parsing and normalization
│ ├── matching/ # Core matching engine
│ ├── exception/ # Exception and dispute management
│ ├── governance/ # Audit logs and archival
│ ├── reporting/ # Analytics and exports
│ ├── outbox/ # Transactional outbox
│ ├── shared/ # Shared kernel (cross-context types and ports)
│ └── testutil/ # Shared test helpers
├── migrations/ # PostgreSQL schema migrations (21 migrations)
├── pkg/ # Reusable library packages
│ └── chanutil/ # Safe channel utilities
├── scripts/ # Dev and CI utility scripts
├── tests/ # Integration, E2E, chaos, and static analysis tests
└── tools/ # Custom linters and dev tooling
| Command | Purpose |
|---|---|
make dev |
Live reload with air |
make build |
Build binary to bin/matcher |
make test |
Run unit tests |
make test-int |
Integration tests (requires Docker) |
make test-e2e |
End-to-end tests (requires full stack) |
make test-chaos |
Fault injection tests (Toxiproxy) |
make lint |
Linting (75+ linters via golangci-lint) |
make lint-custom |
Custom architectural linters |
make sec |
Security scanning (gosec) |
make ci |
Full local CI pipeline |
| Service | Image | Port |
|---|---|---|
| PostgreSQL (primary) | postgres:17 |
5432 |
| PostgreSQL (replica) | postgres:17 |
5433 |
| Valkey (Redis) | valkey/valkey:8 |
6379 |
| RabbitMQ | rabbitmq:4.1.3-management-alpine |
5672 (AMQP), 15672 (UI) |
| SeaweedFS (S3) | chrislusf/seaweedfs:3.80 |
8333 (S3), 9333 (Master) |
| Matcher App | golang:1.26.2-alpine |
4018 |
Matcher uses TDD (Test-Driven Development) with four test tiers:
- Unit (
make test): Pure logic tests with mocks — no external dependencies - Integration (
make test-int): Real containers via testcontainers - E2E (
make test-e2e): Full-stack journey tests against running services - Chaos (
make test-chaos): Fault injection with Toxiproxy (latency, connection loss, partitions)
Coverage threshold: 70%, enforced in CI.
The full OpenAPI specification is available at docs/swagger/swagger.json.
When running in development mode, Swagger UI is accessible at /swagger/index.html.
Key API areas:
- Reconciliation Contexts — Create and manage reconciliation configurations
- Sources & Field Maps — Define data sources and normalization rules
- Match Rules & Fee Schedules — Configure matching logic and fee verification
- Ingestion — Upload and parse external transaction data
- Matching — Execute match runs, manage match groups, handle adjustments
- Exceptions & Disputes — Manage exceptions, create disputes, collect evidence
- Governance — Query audit logs, verify hash chains, manage archives
- Reporting — Dashboard metrics, export jobs, variance analysis
- System — Health checks, runtime configuration (systemplane)
We welcome contributions from the community! Here's how to get started:
- Fork the repository
- Create a branch from
develop(e.g.,feat/my-feature) - Follow conventions: Run
make lint && make test && make check-testsbefore pushing - Submit a PR to
developwith a conventional commit title and a description of at least 50 characters
- Conventional commit format in PR titles (e.g.,
feat: add batch matching endpoint) - Every
.gofile must have a corresponding_test.go - Test build tags required (
//go:build unit, etc.) - Run
make generate-docsif you changed any API endpoint
- Go 1.26 with 75+ linters enforced
- Hexagonal architecture: adapters, ports, domain, services
- CQRS separation:
*_commands.gofor writes,*_queries.gofor reads - Multi-tenancy via JWT context — never accept tenant IDs from request parameters
- Error wrapping with
%w, UTC timestamps, parameterized SQL queries
For detailed conventions, see docs/PROJECT_RULES.md.
- Discord: Join our community for discussions, support, and updates
- GitHub Issues: Bug reports & feature requests
- GitHub Discussions: Community Q&A
- Twitter/X: @LerianStudio
- Email: contact@lerian.studio
Matcher is licensed under the Elastic License 2.0.
Matcher is developed by Lerian, a technology company founded in 2024, led by a team with deep experience in ledger and core banking systems. Matcher is part of the Lerian Studio ecosystem alongside Midaz (open-source ledger).