UPI System Design Mock Interview with Gaurav Sen &

Поделиться
HTML-код
  • Опубликовано: 27 ноя 2024

Комментарии • 88

  • @VictorKun
    @VictorKun 2 года назад +10

    Watched it twice till now, still feels like there lots left to understand. Not getting bored.

  • @tapasyayadav5148
    @tapasyayadav5148 2 года назад +69

    It would have been better if the interview was systematic like
    1. how a user is registered with GPay
    2. What happens when user A transfers amount to user B
    3. how merchant raises a request to pay amount

    • @shubhamgupta-bl1tr
      @shubhamgupta-bl1tr 2 года назад +9

      Agree..this is the major problem with Gaurav sen videos..

    • @ramprabu8880
      @ramprabu8880 Год назад

      @@shubhamgupta-bl1tr I think Gaurav and her should complete better system design course to design their course for us.

  • @AmanSingh-wv7no
    @AmanSingh-wv7no 2 месяца назад

    This feels more like a Product Manager interview where all things except technical details like scaling, resiliency, reliability, databases are being discussed

  • @rpwarp
    @rpwarp Год назад +11

    Guys. This is not how UPI works. If it is more toward making an interview discussion then it's okay. There are technical inaccuracies in this. Should not just wing it even in an interview.

  • @joydeeprony89
    @joydeeprony89 2 года назад +85

    the overall discussion is little confusing

    • @piyushpahwa7897
      @piyushpahwa7897 2 года назад +7

      Agree. I also agree that designing such systems need some prior domain knowledge like how 2 banks interact with each other to complete a transaction (Ex Swift) but the video should have been more professional.

    • @crankboost
      @crankboost 2 года назад +11

      Wannabe youtubers these days

    • @shreyashkawtikwar6084
      @shreyashkawtikwar6084 Год назад

      Very confusing

    • @odorlessflavorless
      @odorlessflavorless Год назад

      people need to take a look at the whitepaper which npci repeased way back around 2015 .

    • @singh_lki
      @singh_lki Год назад

      simp Banda, koi bhi ladki bulaye aa jate interview Dene 😂

  • @abhishekbadoni9
    @abhishekbadoni9 2 года назад +13

    @GauravSen, A few points that I want to add :
    1. Transaction flow (at around 11:00 timestamp) is missing validating of recipient VPA which should be done by NPCI. Also, NPCI should get the account number/IFSC details of the recipient VPA before the actual transaction begins.
    2. Post validation of recipient VPA, the actual transaction should be started by NPCI which should include both the sender bank and the recipient bank.
    3. PINs are not stored at NPCI and are only stored at Bank's end.
    4. In the case of pull payment also, before HDFC bank, the request should go to NPCI, then the sender PSP server, then actual payment should happen on user action.
    Also, At one point, You mentioned that NPCI should not work as a router/intermediate but should only work for authenticating users. I think the current way NPCI has more control over the payments. Second, it can manage failed transactions better in this case. Also, any disputes/complaints related things can be better managed this way.
    There is a video on the channel "Learn Payments" (not promotion) that I watched a long time ago and found very very useful to date to understand the components of UPI and the transaction flow of UPI. I would recommend anyone to watch that great explanatory video.

    • @kalaivanik4225
      @kalaivanik4225 2 года назад

      Right !

    • @souravchanda9555
      @souravchanda9555 5 месяцев назад

      thanks for this detailed comment, as I understand, once the NPCI receives the request from the Payer PSP, it forwards the request to payee PSP. So, if recipients VPA is validated at NPCI itself, what's the use of forwarding it to the Payee PSP. Kindly let me know on the same @abhishekbadoni9

  • @rishiraj2548
    @rishiraj2548 2 года назад +3

    Great reference!!
    Now I am subscribed to Sudocode

  • @vijayshankarguptavijaygupta
    @vijayshankarguptavijaygupta 2 года назад +4

    Npci is governing body, so all the banks have to go through npci where npci (government body) have full controll. If all banks talk to tach other directly then it's blockchain architecture.

  • @arpanbag001
    @arpanbag001 7 месяцев назад

    Thought:
    1. Payment request along with PIN (maybe hashed) is taken by NPCI from the UPI App
    2. NPCI does validation along with bank and account number identification for both sender and receiver
    3. NPCI initiates a transaction (atomic) with first to deduct the amount (request to sender bank with PIN), then to the receiver bank
    This way:
    a. Responsibilities are decoupled. A bank has to just implement two things to be UPI enabled: 1. Validate PIN and deduct the money, 2. Receive the money and credit the amount to bank account.
    b. NPCI is managing the whole UPI complications and infrastructure.
    I agree NPCI will be single point of failure, but I think it's okay, they are anyways the middleman.

  • @abhiawate4544
    @abhiawate4544 Год назад +2

    At 15:00 what I think about NPCI acting as middleware is that it might need to check the VPA (Address) of both users might be like VISA, MASTER and Rupay connecting with every single banks and then our requests are handled by them, i think NPCI might have a similar thought as it connects with certain bank and then checks the VPA and handle requests

    • @pratikdutta47
      @pratikdutta47 6 месяцев назад

      VISA and MASTER are generally called schemes, and I dont think schemes would need to take part in this. But there are several authentications to be made when we deal with the real life scenario.

  • @rumtek3559
    @rumtek3559 Год назад

    Wow, I hope everyone gets interviewers like her, she did not give any hints at all

  • @vickykamble160
    @vickykamble160 2 года назад +3

    NPCI uses Dynamically generated HashKey to establish the Identity of the user with the help of paysecure which makes auth initiate api call

  • @sagars3332
    @sagars3332 2 года назад +8

    You guys are doing really amazing things..
    Worth watching.

  • @aashishgoyal1436
    @aashishgoyal1436 2 года назад +4

    Big fan of Gaurav and Yogita but guys this could have been bit structured. I know u guys want to simulate a real time scenario of an interview but it is better to make it structured and prepare in advance before hand since lot of people learn from u both.

  • @sohanbafna2282
    @sohanbafna2282 7 месяцев назад +1

    Very importana part missed here is - How the millions of request handled ? All reuqest are critical . That should have been part of discussion intead of going deep into NPCI and stuff. Those are part of standard implementatoin but scaling these type of application with fault tolorecne is more important.

  • @shubhamkhurana7545
    @shubhamkhurana7545 9 месяцев назад +1

    @gauravsen @sudocode
    Hi Gaurav, please don't mind, I'm just giving an honest feedback that this interview experience seems really beginner level.
    I think Yogita did her best trying to steer the discussion.
    You guys just discussed about component diagram of payment connection.
    I think, there's a lot you could have discussed about this so we could get some more picture like
    how do you onboard a new user/new_upi_id?
    how much data needs to be stored? (optional, we all know it's gonna be huge)
    what kind of DB would have been used for various segments? and why?
    what kind of sharding key you could have used?
    will it be a good idea to make it into an event-driven architecture?
    any discussion how would you rollback if a payment fails?
    how would you prevent double payment?
    how would the calls go? sync? or async?
    It's just been a month or two since I started learning about System Design and have not given any interviews, you guys are in this for way long, so I maybe wrong, but I think you could have increased the interview length to 45 mins, and could have provided a lot more depth into various aspects.
    Although I like your playlists Gaurav, and recently started watching Yogita's videos as well, she brings an LLD aspect which helps relate things a lot! Keep up the good work both of you, and Please Take This As A Contructive Feedback!

  • @code_minion_123
    @code_minion_123 12 дней назад

    NPCI sounds more like a platform where banks come register for having the communication simpler

  • @MukeshSainiprogrammer
    @MukeshSainiprogrammer Год назад +2

    Npci is adaptor here , all banks can not be bind to each other, they are decoupled.

  • @himanshugoyal3862
    @himanshugoyal3862 8 месяцев назад

    I got a little confused with the discussion. Can you please make a separate video explaining the things again ?

  • @arunsolanki9318
    @arunsolanki9318 Год назад

    Just saw 7-10 mins of this video and subscribed your channel. You really doing good for the tech community.

  • @ganavin3423
    @ganavin3423 5 месяцев назад

    thanks both of u.

  • @piyushpahwa7897
    @piyushpahwa7897 2 года назад +4

    The exact flow for this design boils down to the ultimate question - who stores that one PIN(Bank or NPCI)? Probably this information isn’t out yet, that’s why video became bit confusing in the middle. As someone who works for a bank, to me it makes whole lot sense if NPCI stores that PIN even though it makes NPCI a single point failure.
    Because if you see, that PIN remains same for different payment IDs a user has in the UPI app I.e that PIN remains same for different bank accounts(say HSBC and ICICI) a user has in the app. If each of these banks store that PIN for that user, then ICICI also stores PIN of that user for HSBC account and vice versa which is not a desirable situation. NPCI alone storing and authenticating the PIN is desirable and once authentication happens at NPCI , it’s like existing e-mandate - bank has to deduct money.

    • @shaileshagarwal1
      @shaileshagarwal1 2 года назад

      no pin doesn't remain same for different payment Id. Phonepe and Gpay UPI pin can be different.

    • @rushabhkarade5813
      @rushabhkarade5813 2 года назад +1

      @@shaileshagarwal1 upi pin is associated with bank account not with the payment app, thus it is same irrespective of payment app

    • @kalaivanik4225
      @kalaivanik4225 2 года назад +1

      UPI pin is unique for every bank account across payment apps..Bank will do the pin authentication and not NPCI since bank is doing the actual debit

  • @HorrorInsides-dm8fc
    @HorrorInsides-dm8fc 9 месяцев назад

    Not done well. The diagram is confusing and the thoughts are all over the place

  • @gunjanshrimali2674
    @gunjanshrimali2674 2 года назад

    Really very great explain love you bro .

  • @ShubhamMishra-fg1qm
    @ShubhamMishra-fg1qm 2 года назад

    Thanks to both for this

  • @ShubhamMishra-fg1qm
    @ShubhamMishra-fg1qm 2 года назад +1

    Please make a video on system design of any education related wab application like InterviewReady😀

  • @jithendraBhat
    @jithendraBhat 2 года назад

    Just a suggestion.. once it is done pls summarize before closing...

  • @ec.aditya
    @ec.aditya Год назад

    There is switch in between bank and NPCI

  • @viveksmenon123
    @viveksmenon123 Год назад +1

    I think it would ve been good to cover distributer transaction and rollbacks in case of failures

    • @hamsalekhavenkatesh3440
      @hamsalekhavenkatesh3440 11 месяцев назад

      I agree, there is lot more to explain like state machines, raft protocols for propagating the states to different machesin...this interview is good, but I thnk it focuses more on Authentication which is security focussed.

  • @suchitasharma472
    @suchitasharma472 Год назад +3

    Gaurav performed bad in this interview may be 1 out of 5 and this is not at all structured. Unable to understand anything and I feel alot of things are missing from the technical standpoint.

  • @harshinsan4752
    @harshinsan4752 4 месяца назад

    as per my
    knowlege for banking transactions HSM encryption/decryption is used by all parties. pls correct if i m wrong

  • @nagendrs
    @nagendrs 3 месяца назад

    very confusing.... i got excited with title... but not up to mark. 😞

  • @prashantganji5424
    @prashantganji5424 2 года назад +3

    Years will pass, but Gaurav's camera and mic quality will not going to improve..

  • @akashdeepjayashankar4248
    @akashdeepjayashankar4248 Год назад +1

    why would NPCI store private keys?? shouldn't this be on the user app?

  • @CarbonRiderOnline
    @CarbonRiderOnline Год назад +1

    Pretty vague answers and adding a lot to a confusion. Absence of structure and lot of guesses.

  • @s_k_47
    @s_k_47 2 года назад

    GKCS says Link in desc and forgets to put it there.

  • @singernooneheard6967
    @singernooneheard6967 Год назад

    how does blocking a card work?

  • @ravindrashekhawat1989
    @ravindrashekhawat1989 2 года назад

    Need to explain device binding process for "You" is "You" .

  • @pradeeshbm5558
    @pradeeshbm5558 Год назад

    Looks like this is an unplanned video. Just started from the scratch. Could have been better if planned properly.

  • @manabsaha5336
    @manabsaha5336 2 года назад

    Why message is sent when we try to register UPI and what kind of message is sent?
    Also, why do we need to have the sim card inserted for upi transactions?

  • @hardikmenger4275
    @hardikmenger4275 2 года назад

    Was npci supposed to be a 3rd party service? After the capacity estimation step shouldn't we have established read and write ratios and suggest a database type for npci?
    Who maintains the payment history?
    Apart from the technical details this seemed like a borderline passing situation as it was kind of confusing

  • @GoutamReddydazz
    @GoutamReddydazz 2 года назад +2

    Please make bookMyShow system design.

    • @gkcs
      @gkcs  2 года назад

      Please subscribe to the channel 😛

    • @GoutamReddydazz
      @GoutamReddydazz 2 года назад

      @@gkcs sure..

    • @GoutamReddydazz
      @GoutamReddydazz 2 года назад

      @@gkcs i guess I am already subscribed to Your channel.. are you talking about @sudoCode ?

    • @gkcs
      @gkcs  2 года назад +3

      @@GoutamReddydazz My bad. A similar one is on Keerti's channel (IRCTC design).
      I have a BookMyShow low-level design on my channel with Arun Goel.

  • @yashopmukhia5115
    @yashopmukhia5115 6 месяцев назад

    who is interviewing who?

  • @priyanshuarya4258
    @priyanshuarya4258 4 месяца назад

    you are forgetting KYC

  • @colinmaharaj
    @colinmaharaj 2 года назад +1

    This appears to be an RSA progress

  • @MaheshGaikwad21
    @MaheshGaikwad21 2 года назад +1

    Hows authentication takes place private key based or token bases?

    • @AshishSinghh
      @AshishSinghh 2 года назад

      I think it’s token based for NPCI as well as private key for provider

  • @abhishekbhagat9313
    @abhishekbhagat9313 Год назад

    Working with an API at the end doesn't make you eligible for this.

  • @chennasvlogs969
    @chennasvlogs969 Год назад

    It should have more organised . Lot of confusions .

  • @anishtaneja5665
    @anishtaneja5665 2 года назад +1

    @gaurav: I think you were 2 out of 5 . There are many technical aspects which could have been covered considering HLD . This still seems to be more of functional discussion.

  • @nalamanuraag802
    @nalamanuraag802 11 месяцев назад +1

    This video literally drifts somewhere, no proper clarity

  • @kartikvaidyanathan1237
    @kartikvaidyanathan1237 2 года назад +3

    Generally gaurav lacks structure in all his videos. After a long time I thought I’ll watch one and this is as confusing as the others. He doesn’t take feedback either. Had bought his corse and it was a complete let down.

  • @Palash21041994
    @Palash21041994 2 года назад +1

    You guys should not agree with each other. Arguments leads to better ideas. Maybe make a reality show out of it.

  • @connect_vikas
    @connect_vikas 2 года назад

    Please help me for system design good video from you.

  • @pxyzsharma
    @pxyzsharma 2 года назад

    I think .. confusing.... 😔

  • @gatewaytobigtech4605
    @gatewaytobigtech4605 2 года назад

    Very basic and not covered much details.

  • @ghoshavik
    @ghoshavik Год назад

    @gaurav, this is full of mistakes.Please get your facts right.

  • @anupammittal6089
    @anupammittal6089 8 месяцев назад

    Shouldn't NPCI just have domain resolution. For eg. mapping should be like {@icici, x:x:x:x}. The actual userId should be maintained with the bank only. For eg. ICICI should keep a record for Gaurav@ICICI.

  • @MsDeepSingh
    @MsDeepSingh 2 года назад +3

    @GauravSen Will it not be more feasible that NPCI works as central authority for actual transactions flow and not just name verification?
    1. user A(UPI_A) opens PhonePe(Payee PSP), initiates a request to transfer Rs 100 to UserB(UPI_B)
    2. PhonePe calls NPCI API - payMoney{UPI_A, UPI_B, authenticationPin}
    3. NPCI maintains central repository around how the UPI Id of user is associated to which bank and additional required bank details.
    4. NPCI goes to bank of userA and initiates debit request for Rs 100.
    5. NPCI gets ack that amount can be debited from userA bank
    6. NPCI goes to bank of userB and initiates credit request of Rs 100.
    7. NPCI gets ack for amount credit to userB account.
    8. NPCI sends notification to userA and userB PSP
    9. Payee PSP send notifications to both users for debit and credit.
    There will be additional step for authentication. I'm not sure of UPI's actual implementation but above made more sense.

    • @AnshuBhuwania
      @AnshuBhuwania 2 года назад

      +1, There should be central authority orchestrating the transaction. else who knows if BankA actually sends money to BankB and not return fake success response to app. And NPCI should be the one notifying to each party.

    • @gkcs
      @gkcs  2 года назад +1

      ​@@AnshuBhuwania You have an account with bank A. If they are going to fake the transaction, you can take them to court, but YOU created an account with them, so you obviously trust them with your money.

    • @sagarsapkota8415
      @sagarsapkota8415 2 года назад

      Instead of bank sending request to NPCI to check whether B id is valid or not this seems more logical.But i think the debit will be done by bank only once step 4 is done..not sure

  • @thejeswarreddymula8786
    @thejeswarreddymula8786 2 года назад +2

    Here's my POV on UPI
    The authentication is nothing but your UNIQUE PHONE NUMEBR, your phone number is your digital signature/identity
    Banks and UPI app Authentication:
    1. you add your bank account to UPI app
    2. your UPI app send a random string to your bank from your SIM using SMS (not just any SIM, the SIM must be a pre registered SIM with the banks)
    3. your UPI app also sends the same string to bank from with in the app
    4. your SMS key and the phone number will/has to be matched
    5. your bank account gets added to your UPI app
    6. details are forwarded to NPCI?
    Transaction authentication:
    1. you initiate a request with your app
    2. app initiates a transaction with the bank
    3. in the background your UPI app may also check for the receivers UPI app
    4. bank says I found the details of the receivers bank to your APP
    5. UPI app may say that's great I also have the details from receivers UPI app
    6. both are verified and transaction gets processed
    7. details are forwarded to NPCI?
    Errors
    1. after initiating the transaction bank may say that your bandha doesn't have enough money to transfer to your UPI app
    2. your/receivers bank may be under maintenance and for the time being your/receivers bank may be having difficulty sending/receiving money to other bank
    3. the basic UPI app/Bank authentication might be having problem from your UPI app side because they are under maintenance (lately PhonePe is struggling while the transaction is getting successful elsewhere)
    4. huge transaction messages in the que (message broker?) and time out
    5. lack of constant internet connectivity from the customer end?
    Sorry but as much as I wanted to watch the interview I simply could not for some reason, cracking an interview is one thing and having knowledge is another thing, no wonder people go for proxy interviews and survive in the IT for the career entirety..

  • @harishchava1443
    @harishchava1443 2 года назад

    @GauravSen @sudoCODE In the collect request flow, Dont you think Banks have additional responsibility to handle UPI providers(Gpay, phonepe etc) specific logic as well (sending the collect amount, transaction status notifications to the respective UPI provider)?
    Do bank servers store UPI server details (resolution from abcd@axl to phonepe etc) for sending the notifications or it contacts NCPI for those details?

  • @satish1012
    @satish1012 8 месяцев назад

    When we open GPAY and transfer money to a Id say VPA02@Oksbi from VPA02@OKHDFC , it will ask for the PIN
    Are you saying that the PIN should be send to HDFC not NPCI ?