DEV Community: Dale Nguyen The latest articles on DEV Community by Dale Nguyen (@dalenguyen). https://dev.to/dalenguyen https://media2.dev.to/dynamic/image/width=90,height=90,fit=cover,gravity=auto,format=auto/https:%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Fuser%2Fprofile_image%2F182614%2Fc2a1f0d0-ca0f-4892-9dd5-9b701476ccf3.jpeg DEV Community: Dale Nguyen https://dev.to/dalenguyen en How I Almost Got Pwned - A Tale of Supply Chain Attacks and GitHub Actions Gone Wrong Dale Nguyen Fri, 12 Sep 2025 02:35:15 +0000 https://dev.to/dalenguyen/how-i-almost-got-pwned-a-tale-of-supply-chain-attacks-and-github-actions-gone-wrong-56oh https://dev.to/dalenguyen/how-i-almost-got-pwned-a-tale-of-supply-chain-attacks-and-github-actions-gone-wrong-56oh <p><em>Or: "That time someone tried to turn my innocent Node.js repo into a credential-harvesting machine"</em></p> <p>So there I was, minding my own business with my trusty old Node.js REST API project, when I noticed something weird in the <code>package-lock.json</code> file from one of a <a href="https://github.com/dalenguyen/rest-api-node-typescript/pull/22" rel="noopener noreferrer">PR</a> from a random contributor - and another contributor actually approved the PR right after that. What started as a routine dependency check turned into a rabbit hole that led me straight into the middle of a supply chain attack campaign that was actively targeting developers like us.</p> <p>Buckle up, because this is a story about how modern software development can go sideways fast, and why that "helpful" pull request might not be so helpful after all.</p> <h2> What Even Is a Supply Chain Attack? </h2> <p>It’s when hackers sneak bad stuff (malware, credential stealers, you name it) into your dependencies, build scripts, or CI/CD pipelines—any link where code, secrets, and environments touch. Think: “If I can poison upstream, why bother attacking thousands of repos individually?” Welcome to modern risk!</p> <p>It's insidious because these are the tools we trust implicitly. When <code>lodash</code> releases an update, we don't usually audit every line of code, right? We just <code>npm update</code> and move on with our lives.</p> <h2> The Smoking Gun: The Lockfile Had Been Tampered With </h2> <p>It all started when I was reviewing the <code>package-lock.json</code> from the pull request. I noticed something that made my developer spidey-senses tingle - together with the <a href="https://blog.gitguardian.com/ghostaction-campaign-3-325-secrets-stolen/" rel="noopener noreferrer">recent NPM hack news on Sep 2025</a>:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight json"><code><span class="err">//</span><span class="w"> </span><span class="err">BEFORE</span><span class="w"> </span><span class="err">(Normal,</span><span class="w"> </span><span class="err">secure)</span><span class="w"> </span><span class="nl">"@types/body-parser"</span><span class="p">:</span><span class="w"> </span><span class="p">{</span><span class="w"> </span><span class="nl">"version"</span><span class="p">:</span><span class="w"> </span><span class="s2">"1.17.0"</span><span class="p">,</span><span class="w"> </span><span class="nl">"requires"</span><span class="p">:</span><span class="w"> </span><span class="p">{</span><span class="w"> </span><span class="nl">"@types/connect"</span><span class="p">:</span><span class="w"> </span><span class="s2">"3.4.32"</span><span class="p">,</span><span class="w"> </span><span class="nl">"@types/node"</span><span class="p">:</span><span class="w"> </span><span class="s2">"10.12.18"</span><span class="w"> </span><span class="p">}</span><span class="w"> </span><span class="p">}</span><span class="w"> </span><span class="err">//</span><span class="w"> </span><span class="err">AFTER</span><span class="w"> </span><span class="err">(Sus</span><span class="w"> </span><span class="err">as</span><span class="w"> </span><span class="err">hell)</span><span class="w"> </span><span class="nl">"@types/body-parser"</span><span class="p">:</span><span class="w"> </span><span class="p">{</span><span class="w"> </span><span class="nl">"version"</span><span class="p">:</span><span class="w"> </span><span class="s2">"1.17.0"</span><span class="p">,</span><span class="w"> </span><span class="nl">"dependencies"</span><span class="p">:</span><span class="w"> </span><span class="p">{</span><span class="w"> </span><span class="nl">"@types/connect"</span><span class="p">:</span><span class="w"> </span><span class="s2">"*"</span><span class="p">,</span><span class="w"> </span><span class="nl">"@types/node"</span><span class="p">:</span><span class="w"> </span><span class="s2">"*"</span><span class="w"> </span><span class="p">}</span><span class="w"> </span><span class="p">}</span><span class="w"> </span></code></pre> </div> <p>Those little asterisks? Those are wildcards that basically tell npm "give me whatever version you feel like." It's like ordering food and telling the waiter "surprise me" – except the surprise might be malware.</p> <p>This change completely bypasses version pinning, which is one of our main defenses against supply chain attacks. With wildcards, if any of those packages gets compromised later, you'll automatically pull the malicious version on your next install.</p> <h2> Enter the "Helpful" Contributor </h2> <p>Then I found the smoking gun: a pull request from September 5, 2025, submitted by a user called <code>harshitcodez19</code>. The PR looked innocent enough – just adding some CI/CD with GitHub Actions. How thoughtful!<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight yaml"><code><span class="na">name</span><span class="pi">:</span> <span class="s">Build on PR</span> <span class="c1"># Heello this is a ymk file made up for cICD</span> <span class="na">on</span><span class="pi">:</span> <span class="na">push</span><span class="pi">:</span> <span class="na">branches</span><span class="pi">:</span> <span class="pi">-</span> <span class="s">main</span> <span class="c1"># ← Wait, my repo uses 'master'</span> <span class="na">pull_request</span><span class="pi">:</span> <span class="na">branches</span><span class="pi">:</span> <span class="pi">-</span> <span class="s">main</span> <span class="c1"># ← This is wrong too...</span> <span class="na">jobs</span><span class="pi">:</span> <span class="na">build</span><span class="pi">:</span> <span class="na">runs-on</span><span class="pi">:</span> <span class="s">ubuntu-latest</span> <span class="na">steps</span><span class="pi">:</span> <span class="pi">-</span> <span class="na">uses</span><span class="pi">:</span> <span class="s">actions/checkout@v3</span> <span class="pi">-</span> <span class="na">name</span><span class="pi">:</span> <span class="s">Use Node.js</span> <span class="na">uses</span><span class="pi">:</span> <span class="s">actions/setup-node@v3</span> <span class="na">with</span><span class="pi">:</span> <span class="na">node-version</span><span class="pi">:</span> <span class="s1">'</span><span class="s">20'</span> <span class="pi">-</span> <span class="na">name</span><span class="pi">:</span> <span class="s">Install Dependencies</span> <span class="na">run</span><span class="pi">:</span> <span class="s">npm install</span> <span class="c1"># ← Should be 'npm ci' for security</span> <span class="pi">-</span> <span class="na">name</span><span class="pi">:</span> <span class="s">Run Build</span> <span class="na">run</span><span class="pi">:</span> <span class="s">npm run build</span> </code></pre> </div> <p>At first glance, this looks like a newbie trying to be helpful. The typos in the comment ("Heello", "ymk", "cICD") make it seem like someone who's just learning. The branch configuration is wrong, so it wouldn't even run.</p> <p>But here's the thing – this is <strong>exactly</strong> how the GhostAction campaign operates.</p> <h2> The GhostAction Campaign: When GitHub Actions Turn Evil </h2> <p>The timing of this PR wasn't coincidental. <strong>September 5, 2025</strong> was when security researchers first detected the <strong>GhostAction campaign</strong> – a sophisticated supply chain attack targeting GitHub repositories.</p> <p>Here's how GhostAction works:</p> <ol> <li> <strong>Reconnaissance</strong>: Attackers identify repositories with outdated dependencies</li> <li> <strong>Social Engineering</strong>: Submit "helpful" PRs adding CI/CD workflows</li> <li> <strong>Intentional Sabotage</strong>: Include obvious mistakes to avoid immediate execution</li> <li> <strong>Patience</strong>: Wait for maintainers to "fix" the obvious issues</li> <li> <strong>Exploitation</strong>: When the workflow runs, it harvests secrets and credentials</li> </ol> <p>The genius is in the plausible deniability. The PR looks like a well-meaning but inexperienced contributor. The "mistakes" make it seem harmless. But once those workflows run with the right permissions, game over.</p> <h3> The Attack Vector Breakdown </h3> <p>Let's dissect what would have happened if I'd merged this PR:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight yaml"><code><span class="c1"># The branch misconfiguration prevents immediate execution</span> <span class="na">on</span><span class="pi">:</span> <span class="na">push</span><span class="pi">:</span> <span class="na">branches</span><span class="pi">:</span> <span class="pi">-</span> <span class="s">main</span> <span class="c1"># My repo uses 'master', so this won't trigger</span> </code></pre> </div> <p>This gives the attacker time. If I had "fixed" the obvious branch issue and merged it, the workflow would then:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight yaml"><code><span class="pi">-</span> <span class="na">name</span><span class="pi">:</span> <span class="s">Install Dependencies</span> <span class="na">run</span><span class="pi">:</span> <span class="s">npm install</span> <span class="c1"># Pulls wildcarded dependencies</span> </code></pre> </div> <p>With those wildcards in my lockfile, <code>npm install</code> would fetch the latest versions of <code>@types/node</code> and <code>@types/connect</code>. If those packages had been compromised (which is exactly what the broader npm hack was doing), my CI environment would install malware with full access to:</p> <ul> <li>GitHub secrets</li> <li>AWS credentials</li> <li>Database connection strings</li> <li>API keys</li> <li>Deploy tokens</li> </ul> <p>Basically, everything you need to completely own my infrastructure.</p> <h2> The Broader Context: The Great NPM Hack of 2025 </h2> <p>This attack was part of a much larger campaign according to <a href="https://www.ox.security/blog/npm-packages-compromised/" rel="noopener noreferrer">OX Security's research</a>.</p> <p>The attackers were:</p> <ul> <li>Compromising legitimate package maintainer accounts</li> <li>Injecting malicious code into trusted packages</li> <li>Specifically targeting CI/CD environments</li> <li>Using GitHub Actions to exfiltrate credentials</li> </ul> <p>My old lockfile, with packages from 2018-2019, was the perfect target. Outdated dependencies are like old locks – they work until someone with the right tools shows up.</p> <h2> Red Flags I Should Have Caught Earlier </h2> <p>Looking back, there were several warning signs:</p> <h3> 1. The Contributor Profile </h3> <ul> <li> <code>harshitcodez19</code> had minimal contribution history</li> <li>Random username pattern typical of throwaway accounts</li> <li>No established relationship with my project</li> </ul> <h3> 2. The "Mistakes" Were Too Convenient </h3> <ul> <li>Wrong branch names that prevent immediate execution</li> <li>Typos that create plausible deniability</li> <li>Using <code>npm install</code> instead of the more secure <code>npm ci</code> </li> </ul> <h3> 3. The Timing </h3> <ul> <li>Submitted on September 5, 2025 (exact GhostAction detection date)</li> <li>My lockfile wildcards appeared around the same timeframe</li> <li>Coincided with broader npm supply chain compromises</li> </ul> <h2> What Could Have Gone Wrong </h2> <p>If this attack had succeeded, here's what the attacker could have done:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code><span class="c"># In my compromised CI environment:</span> <span class="nb">echo</span> <span class="nv">$AWS_SECRET_ACCESS_KEY</span> <span class="c"># Exfiltrate cloud credentials</span> <span class="nb">echo</span> <span class="nv">$DATABASE_URL</span> <span class="c"># Steal database access</span> <span class="nb">echo</span> <span class="nv">$DEPLOY_TOKEN</span> <span class="c"># Compromise deployment pipeline</span> <span class="c"># Then pivot to:</span> <span class="c"># - Deploy backdoors to production</span> <span class="c"># - Access customer data</span> <span class="c"># - Crypto mining on my infrastructure</span> <span class="c"># - Lateral movement to other systems</span> </code></pre> </div> <p>The blast radius from a successful CI compromise is enormous because CI environments typically have elevated permissions to deploy, test, and integrate with other services.</p> <h2> Best Practices: How to Not Get Pwned </h2> <p>Here's what I learned and what you should do to protect yourself:</p> <h3> 1. Lockfile Hygiene </h3> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code><span class="c"># Always use npm ci in production/CI</span> npm ci <span class="c"># Uses exact lockfile versions</span> <span class="c"># Never use npm install in CI</span> npm <span class="nb">install</span> <span class="c"># Can update versions unexpectedly</span> </code></pre> </div> <div class="highlight js-code-highlight"> <pre class="highlight json"><code><span class="err">//</span><span class="w"> </span><span class="err">Keep</span><span class="w"> </span><span class="err">your</span><span class="w"> </span><span class="err">lockfile</span><span class="w"> </span><span class="err">pinned</span><span class="w"> </span><span class="nl">"dependencies"</span><span class="p">:</span><span class="w"> </span><span class="p">{</span><span class="w"> </span><span class="nl">"@types/node"</span><span class="p">:</span><span class="w"> </span><span class="s2">"10.12.18"</span><span class="p">,</span><span class="w"> </span><span class="err">//</span><span class="w"> </span><span class="err">✅</span><span class="w"> </span><span class="err">Exact</span><span class="w"> </span><span class="err">version</span><span class="w"> </span><span class="nl">"@types/connect"</span><span class="p">:</span><span class="w"> </span><span class="s2">"*"</span><span class="w"> </span><span class="err">//</span><span class="w"> </span><span class="err">❌</span><span class="w"> </span><span class="err">Wildcard</span><span class="w"> </span><span class="err">=</span><span class="w"> </span><span class="err">danger</span><span class="w"> </span><span class="p">}</span><span class="w"> </span></code></pre> </div> <h3> 2. CI/CD Security </h3> <div class="highlight js-code-highlight"> <pre class="highlight yaml"><code><span class="c1"># Secure GitHub Actions workflow</span> <span class="na">name</span><span class="pi">:</span> <span class="s">Secure Build</span> <span class="na">on</span><span class="pi">:</span> <span class="na">pull_request</span><span class="pi">:</span> <span class="na">branches</span><span class="pi">:</span> <span class="pi">[</span><span class="nv">master</span><span class="pi">]</span> <span class="c1"># Correct branch names</span> <span class="na">jobs</span><span class="pi">:</span> <span class="na">build</span><span class="pi">:</span> <span class="na">runs-on</span><span class="pi">:</span> <span class="s">ubuntu-latest</span> <span class="na">steps</span><span class="pi">:</span> <span class="pi">-</span> <span class="na">uses</span><span class="pi">:</span> <span class="s">actions/checkout@v4</span> <span class="c1"># Latest version</span> <span class="pi">-</span> <span class="na">name</span><span class="pi">:</span> <span class="s">Setup Node.js</span> <span class="na">uses</span><span class="pi">:</span> <span class="s">actions/setup-node@v4</span> <span class="na">with</span><span class="pi">:</span> <span class="na">node-version</span><span class="pi">:</span> <span class="s1">'</span><span class="s">20'</span> <span class="na">cache</span><span class="pi">:</span> <span class="s1">'</span><span class="s">npm'</span> <span class="c1"># Cache for performance</span> <span class="c1"># Use npm ci for reproducible builds</span> <span class="pi">-</span> <span class="na">name</span><span class="pi">:</span> <span class="s">Install dependencies</span> <span class="na">run</span><span class="pi">:</span> <span class="s">npm ci</span> <span class="c1"># Audit before building</span> <span class="pi">-</span> <span class="na">name</span><span class="pi">:</span> <span class="s">Security audit</span> <span class="na">run</span><span class="pi">:</span> <span class="s">npm audit --audit-level=critical</span> <span class="pi">-</span> <span class="na">name</span><span class="pi">:</span> <span class="s">Build</span> <span class="na">run</span><span class="pi">:</span> <span class="s">npm run build</span> </code></pre> </div> <h3> 3. Dependency Management </h3> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code><span class="c"># Regular maintenance</span> npm outdated <span class="c"># Check for updates</span> npm audit <span class="c"># Security vulnerabilities</span> npm audit fix <span class="c"># Auto-fix where possible</span> <span class="c"># Keep dependencies current</span> npm update <span class="c"># Update within semver ranges</span> </code></pre> </div> <h3> 4. PR Review Guidelines </h3> <p>When reviewing PRs that touch CI/CD or dependencies:</p> <ul> <li> <strong>Who is the contributor?</strong> Do they have a history with your project?</li> <li> <strong>Why are they making this change?</strong> Unsolicited CI/CD PRs are suspicious</li> <li> <strong>What permissions would this grant?</strong> Review secrets and environment access</li> <li> <strong>Are there obvious "mistakes"?</strong> Sometimes bugs are features for attackers</li> </ul> <h3> 5. Repository Protection </h3> <div class="highlight js-code-highlight"> <pre class="highlight yaml"><code><span class="c1"># .github/dependabot.yml</span> <span class="na">version</span><span class="pi">:</span> <span class="m">2</span> <span class="na">updates</span><span class="pi">:</span> <span class="pi">-</span> <span class="na">package-ecosystem</span><span class="pi">:</span> <span class="s1">'</span><span class="s">npm'</span> <span class="na">directory</span><span class="pi">:</span> <span class="s1">'</span><span class="s">/'</span> <span class="na">schedule</span><span class="pi">:</span> <span class="na">interval</span><span class="pi">:</span> <span class="s1">'</span><span class="s">weekly'</span> <span class="na">reviewers</span><span class="pi">:</span> <span class="pi">-</span> <span class="s1">'</span><span class="s">your-username'</span> </code></pre> </div> <p>Enable branch protection rules:</p> <ul> <li>Require PR reviews for CI/CD changes</li> <li>Require status checks to pass</li> <li>Restrict who can modify workflows</li> </ul> <h2> The Human Element </h2> <p>The scariest part of supply chain attacks isn't the technical sophistication – it's how they exploit our human nature. We want to be helpful to contributors. We want to trust the tools we use daily. We want to merge that PR that "fixes" an obvious mistake.</p> <p>But in the age of automated attacks and compromised packages, a little paranoia goes a long way. That friendly contributor might be a bot. That helpful PR might be reconnaissance. That simple typo fix might be setting up a backdoor.</p> <h2> Lessons Learned </h2> <ol> <li> <strong>Trust but verify</strong>: Even helpful PRs need scrutiny</li> <li> <strong>Keep dependencies updated</strong>: Old packages are attractive targets</li> <li> <strong>Use lockfiles properly</strong>: Pin versions and use <code>npm ci</code> </li> <li> <strong>Secure your CI/CD</strong>: It's the crown jewel attackers want</li> <li> <strong>Stay informed</strong>: Follow security researchers and vulnerability databases</li> </ol> <h2> The Silver Lining </h2> <p>While getting targeted by a supply chain attack was unsettling, it was also educational. It reminded me that security isn't just about writing secure code – it's about securing the entire development pipeline.</p> <p>The npm ecosystem is incredibly powerful, but that power comes with responsibility. Every <code>npm install</code> is a vote of trust in hundreds of package maintainers. Every GitHub Action workflow is a potential attack vector.</p> <p>But don't let this scare you away from open source. The community is what makes JavaScript development amazing. Just be smart about it. Audit your dependencies. Review your workflows. Trust but verify.</p> <p>And maybe, just maybe, be a little suspicious when <code>harshitcodez19</code> offers to help with your CI/CD pipeline.</p> <p><em>Stay safe out there, fellow developers. The supply chain attackers are getting creative, but so are we.</em></p> <h2> References </h2> <ul> <li><a href="https://www.ox.security/blog/npm-packages-compromised/" rel="noopener noreferrer">OX Security: NPM Packages Compromised</a></li> <li><a href="https://github.com/advisories" rel="noopener noreferrer">GitHub Security Advisory Database</a></li> <li><a href="https://docs.npmjs.com/cli/v11/commands/npm-audit" rel="noopener noreferrer">npm Audit Documentation</a></li> <li><a href="https://docs.github.com/en/actions/security-guides" rel="noopener noreferrer">Securing GitHub Actions</a></li> </ul> github security node devops Mastering Email Rate Limits — A Deep Dive into Resend API and Cloud Run Debugging Dale Nguyen Sun, 07 Sep 2025 14:11:09 +0000 https://dev.to/dalenguyen/mastering-email-rate-limits-a-deep-dive-into-resend-api-and-cloud-run-debugging-3973 https://dev.to/dalenguyen/mastering-email-rate-limits-a-deep-dive-into-resend-api-and-cloud-run-debugging-3973 <p><em>How we solved persistent rate limiting issues and implemented robust batch email functionality for our AI-powered learning platform</em></p> <h2> The Challenge: When Emails Start Failing </h2> <p>Picture this: You've built a beautiful lesson scheduling system that sends personalized daily lessons to your users. Everything works perfectly in development, but in production, you start seeing mysterious email failures:</p> <p><a href="https://media2.dev.to/dynamic/image/width=800%2Cheight=%2Cfit=scale-down%2Cgravity=auto%2Cformat=auto/https%3A%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Farticles%2Fx8toh7r8orcaryl8qp6l.png" class="article-body-image-wrapper"><img src="https://media2.dev.to/dynamic/image/width=800%2Cheight=%2Cfit=scale-down%2Cgravity=auto%2Cformat=auto/https%3A%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Farticles%2Fx8toh7r8orcaryl8qp6l.png" alt="Email rate limit error" width="800" height="267"></a></p> <p>This was exactly the situation we faced with <a href="https://dailymastery.io" rel="noopener noreferrer">DailyMastery</a>, our AI-powered learning platform. Despite having a solid architecture built with Nx monorepo, Fastify microservices, and deployed on Google Cloud Run, our email delivery system was hitting Resend's rate limits consistently.</p> <h2> Understanding the Problem </h2> <h3> The Initial Architecture </h3> <p>Our system had a straightforward approach:</p> <ul> <li>Lesson scheduler triggered by Cloud Scheduler (3x daily)</li> <li>Individual API calls to Resend for each lesson email</li> <li>No rate limiting protection</li> <li>Basic error handling </li> </ul> <div class="highlight js-code-highlight"> <pre class="highlight typescript"><code><span class="c1">// The problematic approach</span> <span class="k">for </span><span class="p">(</span><span class="kd">const</span> <span class="nx">lesson</span> <span class="k">of</span> <span class="nx">lessons</span><span class="p">)</span> <span class="p">{</span> <span class="kd">const</span> <span class="nx">emailResult</span> <span class="o">=</span> <span class="k">await</span> <span class="k">this</span><span class="p">.</span><span class="nx">emailService</span><span class="p">.</span><span class="nf">sendEmail</span><span class="p">({</span> <span class="na">to</span><span class="p">:</span> <span class="nx">user</span><span class="p">.</span><span class="nx">email</span><span class="p">,</span> <span class="na">subject</span><span class="p">:</span> <span class="nx">lesson</span><span class="p">.</span><span class="nx">title</span><span class="p">,</span> <span class="na">html</span><span class="p">:</span> <span class="nx">lessonContent</span><span class="p">,</span> <span class="p">})</span> <span class="c1">// Rate limits hit here when processing multiple users rapidly</span> <span class="p">}</span> </code></pre> </div> <h3> The Root Cause </h3> <p>Resend enforces a <strong>2 requests per second</strong> rate limit across all endpoints. When our scheduler processed multiple users with multiple lessons each, we quickly exceeded this limit, causing cascading failures.</p> <h2> The Investigation: Debugging Cloud Run Like a Pro </h2> <h3> Step 1: Enhanced Logging Strategy </h3> <p>The first step was implementing comprehensive logging to understand exactly what was happening:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight typescript"><code><span class="k">async</span> <span class="nf">sendEmail</span><span class="p">(</span><span class="nx">options</span><span class="p">:</span> <span class="nx">EmailOptions</span><span class="p">):</span> <span class="nb">Promise</span><span class="o">&lt;</span><span class="p">{</span> <span class="na">success</span><span class="p">:</span> <span class="nx">boolean</span><span class="p">;</span> <span class="nl">error</span><span class="p">?:</span> <span class="kr">string</span><span class="p">;</span> <span class="nl">messageId</span><span class="p">?:</span> <span class="kr">string</span> <span class="p">}</span><span class="o">&gt;</span> <span class="p">{</span> <span class="k">try</span> <span class="p">{</span> <span class="nx">console</span><span class="p">.</span><span class="nf">log</span><span class="p">(</span><span class="dl">'</span><span class="s1">Attempting to send email via Resend:</span><span class="dl">'</span><span class="p">,</span> <span class="p">{</span> <span class="na">to</span><span class="p">:</span> <span class="nx">options</span><span class="p">.</span><span class="nx">to</span><span class="p">,</span> <span class="na">subject</span><span class="p">:</span> <span class="nx">options</span><span class="p">.</span><span class="nx">subject</span><span class="p">,</span> <span class="na">htmlLength</span><span class="p">:</span> <span class="nx">options</span><span class="p">.</span><span class="nx">html</span><span class="p">?.</span><span class="nx">length</span> <span class="o">||</span> <span class="mi">0</span> <span class="p">});</span> <span class="kd">const</span> <span class="nx">result</span> <span class="o">=</span> <span class="k">await</span> <span class="k">this</span><span class="p">.</span><span class="nx">resend</span><span class="p">.</span><span class="nx">emails</span><span class="p">.</span><span class="nf">send</span><span class="p">(</span><span class="nx">emailData</span><span class="p">);</span> <span class="nx">console</span><span class="p">.</span><span class="nf">log</span><span class="p">(</span><span class="dl">'</span><span class="s1">Resend API response:</span><span class="dl">'</span><span class="p">,</span> <span class="nx">result</span><span class="p">);</span> <span class="c1">// Critical: Check if Resend returned an error (they don't throw exceptions!)</span> <span class="k">if </span><span class="p">(</span><span class="nx">result</span><span class="p">.</span><span class="nx">error</span><span class="p">)</span> <span class="p">{</span> <span class="nx">console</span><span class="p">.</span><span class="nf">error</span><span class="p">(</span><span class="dl">'</span><span class="s1">Resend API returned error:</span><span class="dl">'</span><span class="p">,</span> <span class="nx">result</span><span class="p">.</span><span class="nx">error</span><span class="p">);</span> <span class="k">return</span> <span class="p">{</span> <span class="na">success</span><span class="p">:</span> <span class="kc">false</span><span class="p">,</span> <span class="na">error</span><span class="p">:</span> <span class="nx">result</span><span class="p">.</span><span class="nx">error</span><span class="p">.</span><span class="nx">message</span> <span class="o">||</span> <span class="nx">JSON</span><span class="p">.</span><span class="nf">stringify</span><span class="p">(</span><span class="nx">result</span><span class="p">.</span><span class="nx">error</span><span class="p">),</span> <span class="p">};</span> <span class="p">}</span> <span class="k">return</span> <span class="p">{</span> <span class="na">success</span><span class="p">:</span> <span class="kc">true</span><span class="p">,</span> <span class="na">messageId</span><span class="p">:</span> <span class="nx">result</span><span class="p">.</span><span class="nx">data</span><span class="p">?.</span><span class="nx">id</span> <span class="p">};</span> <span class="p">}</span> <span class="k">catch </span><span class="p">(</span><span class="nx">error</span><span class="p">)</span> <span class="p">{</span> <span class="nx">console</span><span class="p">.</span><span class="nf">error</span><span class="p">(</span><span class="dl">'</span><span class="s1">Failed to send email via Resend:</span><span class="dl">'</span><span class="p">,</span> <span class="nx">error</span><span class="p">);</span> <span class="k">return</span> <span class="p">{</span> <span class="na">success</span><span class="p">:</span> <span class="kc">false</span><span class="p">,</span> <span class="na">error</span><span class="p">:</span> <span class="nx">error</span> <span class="k">instanceof</span> <span class="nb">Error</span> <span class="p">?</span> <span class="nx">error</span><span class="p">.</span><span class="nx">message</span> <span class="p">:</span> <span class="dl">'</span><span class="s1">Unknown error</span><span class="dl">'</span><span class="p">,</span> <span class="p">};</span> <span class="p">}</span> <span class="p">}</span> </code></pre> </div> <h3> Step 2: Cloud Run Log Analysis Techniques </h3> <p>You can view logs in the Google Cloud console, but if you like the terminal approach, then here are the essential Cloud Run debugging commands we used:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code><span class="c"># Real-time log monitoring during issues</span> gcloud logging <span class="nb">read</span> <span class="s2">"resource.type=cloud_run_revision AND resource.labels.service_name=lesson-scheduler"</span> <span class="se">\</span> <span class="nt">--limit</span><span class="o">=</span>50 <span class="nt">--format</span><span class="o">=</span><span class="s2">"value(timestamp,textPayload)"</span> | <span class="nb">head</span> <span class="nt">-20</span> <span class="c"># Filter for specific errors</span> gcloud logging <span class="nb">read</span> <span class="s2">"resource.type=cloud_run_revision AND resource.labels.service_name=lesson-scheduler"</span> <span class="se">\</span> <span class="nt">--limit</span><span class="o">=</span>100 | <span class="nb">grep</span> <span class="nt">-E</span> <span class="s2">"(rate_limit|429|Failed)"</span> <span class="c"># Check logs from specific time range</span> gcloud logging <span class="nb">read</span> <span class="s2">"resource.type=cloud_run_revision AND resource.labels.service_name=lesson-scheduler AND timestamp&gt;=</span><span class="se">\"</span><span class="s2">2025-09-03T16:00:00Z</span><span class="se">\"</span><span class="s2">"</span> <span class="se">\</span> <span class="nt">--limit</span><span class="o">=</span>50 </code></pre> </div> <h2> The Solution: Multi-Layer Rate Limiting Strategy </h2> <h3> Layer 1: Proper Error Detection </h3> <p>The first critical insight: <strong>Resend doesn't throw exceptions for rate limits</strong>. They return error objects:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight typescript"><code><span class="c1">// Before: Missing rate limit detection</span> <span class="kd">const</span> <span class="nx">result</span> <span class="o">=</span> <span class="k">await</span> <span class="k">this</span><span class="p">.</span><span class="nx">resend</span><span class="p">.</span><span class="nx">emails</span><span class="p">.</span><span class="nf">send</span><span class="p">(</span><span class="nx">emailData</span><span class="p">)</span> <span class="k">return</span> <span class="p">{</span> <span class="na">success</span><span class="p">:</span> <span class="kc">true</span><span class="p">,</span> <span class="na">messageId</span><span class="p">:</span> <span class="nx">result</span><span class="p">.</span><span class="nx">data</span><span class="p">?.</span><span class="nx">id</span> <span class="p">}</span> <span class="c1">// Wrong!</span> <span class="c1">// After: Comprehensive error checking</span> <span class="kd">const</span> <span class="nx">result</span> <span class="o">=</span> <span class="k">await</span> <span class="k">this</span><span class="p">.</span><span class="nx">resend</span><span class="p">.</span><span class="nx">emails</span><span class="p">.</span><span class="nf">send</span><span class="p">(</span><span class="nx">emailData</span><span class="p">)</span> <span class="k">if </span><span class="p">(</span><span class="nx">result</span><span class="p">.</span><span class="nx">error</span><span class="p">)</span> <span class="p">{</span> <span class="nx">console</span><span class="p">.</span><span class="nf">error</span><span class="p">(</span><span class="dl">'</span><span class="s1">Resend API returned error:</span><span class="dl">'</span><span class="p">,</span> <span class="nx">result</span><span class="p">.</span><span class="nx">error</span><span class="p">)</span> <span class="k">return</span> <span class="p">{</span> <span class="na">success</span><span class="p">:</span> <span class="kc">false</span><span class="p">,</span> <span class="na">error</span><span class="p">:</span> <span class="nx">result</span><span class="p">.</span><span class="nx">error</span><span class="p">.</span><span class="nx">message</span> <span class="o">||</span> <span class="nx">JSON</span><span class="p">.</span><span class="nf">stringify</span><span class="p">(</span><span class="nx">result</span><span class="p">.</span><span class="nx">error</span><span class="p">),</span> <span class="p">}</span> <span class="p">}</span> <span class="k">if </span><span class="p">(</span><span class="o">!</span><span class="nx">result</span><span class="p">.</span><span class="nx">data</span><span class="p">)</span> <span class="p">{</span> <span class="k">return</span> <span class="p">{</span> <span class="na">success</span><span class="p">:</span> <span class="kc">false</span><span class="p">,</span> <span class="na">error</span><span class="p">:</span> <span class="dl">'</span><span class="s1">No data returned from Resend API</span><span class="dl">'</span><span class="p">,</span> <span class="p">}</span> <span class="p">}</span> <span class="k">return</span> <span class="p">{</span> <span class="na">success</span><span class="p">:</span> <span class="kc">true</span><span class="p">,</span> <span class="na">messageId</span><span class="p">:</span> <span class="nx">result</span><span class="p">.</span><span class="nx">data</span><span class="p">.</span><span class="nx">id</span><span class="p">,</span> <span class="p">}</span> </code></pre> </div> <h3> Layer 2: Intelligent Batch Email Implementation with Auto-Chunking </h3> <p>Resend offers a batch API that can send up to 100 emails in a single request. Here's our implementation with smart fallback and automatic chunking for larger batches:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight typescript"><code><span class="k">async</span> <span class="nf">sendBatchLessonEmails</span><span class="p">(</span> <span class="nx">emails</span><span class="p">:</span> <span class="nx">BatchEmailOptions</span><span class="p">[]</span> <span class="p">):</span> <span class="nb">Promise</span><span class="o">&lt;</span><span class="p">{</span> <span class="na">success</span><span class="p">:</span> <span class="nx">boolean</span><span class="p">;</span> <span class="nl">error</span><span class="p">?:</span> <span class="kr">string</span><span class="p">;</span> <span class="nl">messageIds</span><span class="p">?:</span> <span class="kr">string</span><span class="p">[];</span> <span class="nl">sentCount</span><span class="p">?:</span> <span class="kr">number</span><span class="p">;</span> <span class="nl">failedCount</span><span class="p">?:</span> <span class="kr">number</span> <span class="p">}</span><span class="o">&gt;</span> <span class="p">{</span> <span class="k">try</span> <span class="p">{</span> <span class="k">if </span><span class="p">(</span><span class="nx">emails</span><span class="p">.</span><span class="nx">length</span> <span class="o">===</span> <span class="mi">0</span><span class="p">)</span> <span class="p">{</span> <span class="k">return</span> <span class="p">{</span> <span class="na">success</span><span class="p">:</span> <span class="kc">true</span><span class="p">,</span> <span class="na">messageIds</span><span class="p">:</span> <span class="p">[],</span> <span class="na">sentCount</span><span class="p">:</span> <span class="mi">0</span><span class="p">,</span> <span class="na">failedCount</span><span class="p">:</span> <span class="mi">0</span> <span class="p">};</span> <span class="p">}</span> <span class="nx">console</span><span class="p">.</span><span class="nf">log</span><span class="p">(</span><span class="s2">`Sending batch of </span><span class="p">${</span><span class="nx">emails</span><span class="p">.</span><span class="nx">length</span><span class="p">}</span><span class="s2"> lesson emails`</span><span class="p">);</span> <span class="c1">// Automatic chunking: Split into batches of 100 (Resend limit)</span> <span class="kd">const</span> <span class="nx">batchSize</span> <span class="o">=</span> <span class="mi">100</span><span class="p">;</span> <span class="kd">const</span> <span class="na">batches</span><span class="p">:</span> <span class="nx">BatchEmailOptions</span><span class="p">[][]</span> <span class="o">=</span> <span class="p">[];</span> <span class="k">for </span><span class="p">(</span><span class="kd">let</span> <span class="nx">i</span> <span class="o">=</span> <span class="mi">0</span><span class="p">;</span> <span class="nx">i</span> <span class="o">&lt;</span> <span class="nx">emails</span><span class="p">.</span><span class="nx">length</span><span class="p">;</span> <span class="nx">i</span> <span class="o">+=</span> <span class="nx">batchSize</span><span class="p">)</span> <span class="p">{</span> <span class="nx">batches</span><span class="p">.</span><span class="nf">push</span><span class="p">(</span><span class="nx">emails</span><span class="p">.</span><span class="nf">slice</span><span class="p">(</span><span class="nx">i</span><span class="p">,</span> <span class="nx">i</span> <span class="o">+</span> <span class="nx">batchSize</span><span class="p">));</span> <span class="p">}</span> <span class="kd">let</span> <span class="nx">totalSent</span> <span class="o">=</span> <span class="mi">0</span><span class="p">;</span> <span class="kd">let</span> <span class="nx">totalFailed</span> <span class="o">=</span> <span class="mi">0</span><span class="p">;</span> <span class="kd">const</span> <span class="na">allMessageIds</span><span class="p">:</span> <span class="kr">string</span><span class="p">[]</span> <span class="o">=</span> <span class="p">[];</span> <span class="kd">const</span> <span class="na">errors</span><span class="p">:</span> <span class="kr">string</span><span class="p">[]</span> <span class="o">=</span> <span class="p">[];</span> <span class="c1">// Process each chunk sequentially with rate limiting</span> <span class="k">for </span><span class="p">(</span><span class="kd">let</span> <span class="nx">i</span> <span class="o">=</span> <span class="mi">0</span><span class="p">;</span> <span class="nx">i</span> <span class="o">&lt;</span> <span class="nx">batches</span><span class="p">.</span><span class="nx">length</span><span class="p">;</span> <span class="nx">i</span><span class="o">++</span><span class="p">)</span> <span class="p">{</span> <span class="kd">const</span> <span class="nx">batch</span> <span class="o">=</span> <span class="nx">batches</span><span class="p">[</span><span class="nx">i</span><span class="p">];</span> <span class="nx">console</span><span class="p">.</span><span class="nf">log</span><span class="p">(</span><span class="s2">`Sending batch </span><span class="p">${</span><span class="nx">i</span> <span class="o">+</span> <span class="mi">1</span><span class="p">}</span><span class="s2">/</span><span class="p">${</span><span class="nx">batches</span><span class="p">.</span><span class="nx">length</span><span class="p">}</span><span class="s2"> with </span><span class="p">${</span><span class="nx">batch</span><span class="p">.</span><span class="nx">length</span><span class="p">}</span><span class="s2"> emails`</span><span class="p">);</span> <span class="kd">const</span> <span class="nx">result</span> <span class="o">=</span> <span class="k">await</span> <span class="k">this</span><span class="p">.</span><span class="nx">emailService</span><span class="p">.</span><span class="nf">sendBatchEmails</span><span class="p">(</span><span class="nx">batch</span><span class="p">);</span> <span class="k">if </span><span class="p">(</span><span class="nx">result</span><span class="p">.</span><span class="nx">success</span><span class="p">)</span> <span class="p">{</span> <span class="nx">totalSent</span> <span class="o">+=</span> <span class="nx">batch</span><span class="p">.</span><span class="nx">length</span><span class="p">;</span> <span class="k">if </span><span class="p">(</span><span class="nx">result</span><span class="p">.</span><span class="nx">messageIds</span><span class="p">)</span> <span class="p">{</span> <span class="nx">allMessageIds</span><span class="p">.</span><span class="nf">push</span><span class="p">(...</span><span class="nx">result</span><span class="p">.</span><span class="nx">messageIds</span><span class="p">);</span> <span class="p">}</span> <span class="nx">console</span><span class="p">.</span><span class="nf">log</span><span class="p">(</span><span class="s2">`✅ Batch </span><span class="p">${</span><span class="nx">i</span> <span class="o">+</span> <span class="mi">1</span><span class="p">}</span><span class="s2"> sent successfully (</span><span class="p">${</span><span class="nx">batch</span><span class="p">.</span><span class="nx">length</span><span class="p">}</span><span class="s2"> emails)`</span><span class="p">);</span> <span class="p">}</span> <span class="k">else</span> <span class="p">{</span> <span class="nx">totalFailed</span> <span class="o">+=</span> <span class="nx">batch</span><span class="p">.</span><span class="nx">length</span><span class="p">;</span> <span class="nx">errors</span><span class="p">.</span><span class="nf">push</span><span class="p">(</span><span class="s2">`Batch </span><span class="p">${</span><span class="nx">i</span> <span class="o">+</span> <span class="mi">1</span><span class="p">}</span><span class="s2"> failed: </span><span class="p">${</span><span class="nx">result</span><span class="p">.</span><span class="nx">error</span> <span class="o">||</span> <span class="dl">'</span><span class="s1">Unknown error</span><span class="dl">'</span><span class="p">}</span><span class="s2">`</span><span class="p">);</span> <span class="nx">console</span><span class="p">.</span><span class="nf">error</span><span class="p">(</span><span class="s2">`❌ Batch </span><span class="p">${</span><span class="nx">i</span> <span class="o">+</span> <span class="mi">1</span><span class="p">}</span><span class="s2"> failed: </span><span class="p">${</span><span class="nx">result</span><span class="p">.</span><span class="nx">error</span><span class="p">}</span><span class="s2">`</span><span class="p">);</span> <span class="p">}</span> <span class="c1">// Add delay between batches to avoid rate limiting</span> <span class="k">if </span><span class="p">(</span><span class="nx">i</span> <span class="o">&lt;</span> <span class="nx">batches</span><span class="p">.</span><span class="nx">length</span> <span class="o">-</span> <span class="mi">1</span><span class="p">)</span> <span class="p">{</span> <span class="nx">console</span><span class="p">.</span><span class="nf">log</span><span class="p">(</span><span class="dl">'</span><span class="s1">⏳ Waiting 1 second between batches to avoid rate limiting...</span><span class="dl">'</span><span class="p">);</span> <span class="k">await</span> <span class="k">new</span> <span class="nc">Promise</span><span class="p">(</span><span class="nx">resolve</span> <span class="o">=&gt;</span> <span class="nf">setTimeout</span><span class="p">(</span><span class="nx">resolve</span><span class="p">,</span> <span class="mi">1000</span><span class="p">));</span> <span class="p">}</span> <span class="p">}</span> <span class="kd">const</span> <span class="nx">overallSuccess</span> <span class="o">=</span> <span class="nx">totalFailed</span> <span class="o">===</span> <span class="mi">0</span><span class="p">;</span> <span class="k">return</span> <span class="p">{</span> <span class="na">success</span><span class="p">:</span> <span class="nx">overallSuccess</span><span class="p">,</span> <span class="na">messageIds</span><span class="p">:</span> <span class="nx">allMessageIds</span><span class="p">,</span> <span class="na">sentCount</span><span class="p">:</span> <span class="nx">totalSent</span><span class="p">,</span> <span class="na">failedCount</span><span class="p">:</span> <span class="nx">totalFailed</span><span class="p">,</span> <span class="na">error</span><span class="p">:</span> <span class="nx">errors</span><span class="p">.</span><span class="nx">length</span> <span class="o">&gt;</span> <span class="mi">0</span> <span class="p">?</span> <span class="nx">errors</span><span class="p">.</span><span class="nf">join</span><span class="p">(</span><span class="dl">'</span><span class="s1">; </span><span class="dl">'</span><span class="p">)</span> <span class="p">:</span> <span class="kc">undefined</span><span class="p">,</span> <span class="p">};</span> <span class="p">}</span> <span class="k">catch </span><span class="p">(</span><span class="nx">error</span><span class="p">)</span> <span class="p">{</span> <span class="nx">console</span><span class="p">.</span><span class="nf">error</span><span class="p">(</span><span class="dl">'</span><span class="s1">Error sending batch lesson emails:</span><span class="dl">'</span><span class="p">,</span> <span class="nx">error</span><span class="p">);</span> <span class="k">return</span> <span class="p">{</span> <span class="na">success</span><span class="p">:</span> <span class="kc">false</span><span class="p">,</span> <span class="na">error</span><span class="p">:</span> <span class="nx">error</span> <span class="k">instanceof</span> <span class="nb">Error</span> <span class="p">?</span> <span class="nx">error</span><span class="p">.</span><span class="nx">message</span> <span class="p">:</span> <span class="dl">'</span><span class="s1">Unknown error</span><span class="dl">'</span><span class="p">,</span> <span class="na">sentCount</span><span class="p">:</span> <span class="mi">0</span><span class="p">,</span> <span class="na">failedCount</span><span class="p">:</span> <span class="nx">emails</span><span class="p">.</span><span class="nx">length</span><span class="p">,</span> <span class="p">};</span> <span class="p">}</span> <span class="p">}</span> </code></pre> </div> <h3> Layer 3: Architectural Refactoring </h3> <p>We completely restructured our email sending flow:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight typescript"><code><span class="c1">// Old approach: Send emails immediately during processing</span> <span class="k">for </span><span class="p">(</span><span class="kd">const</span> <span class="nx">user</span> <span class="k">of</span> <span class="nx">users</span><span class="p">)</span> <span class="p">{</span> <span class="k">for </span><span class="p">(</span><span class="kd">const</span> <span class="nx">lesson</span> <span class="k">of</span> <span class="nx">lessons</span><span class="p">)</span> <span class="p">{</span> <span class="k">await</span> <span class="nf">sendEmail</span><span class="p">(</span><span class="nx">user</span><span class="p">,</span> <span class="nx">lesson</span><span class="p">)</span> <span class="c1">// Rate limit hit here</span> <span class="p">}</span> <span class="p">}</span> <span class="c1">// New approach: Prepare first, then batch send</span> <span class="kd">const</span> <span class="nx">allPreparedEmails</span><span class="p">:</span> <span class="nx">PreparedEmail</span><span class="p">[]</span> <span class="o">=</span> <span class="p">[]</span> <span class="c1">// Phase 1: Prepare all emails</span> <span class="k">for </span><span class="p">(</span><span class="kd">const</span> <span class="nx">user</span> <span class="k">of</span> <span class="nx">users</span><span class="p">)</span> <span class="p">{</span> <span class="k">for </span><span class="p">(</span><span class="kd">const</span> <span class="nx">lesson</span> <span class="k">of</span> <span class="nx">lessons</span><span class="p">)</span> <span class="p">{</span> <span class="kd">const</span> <span class="nx">preparedEmail</span> <span class="o">=</span> <span class="k">await</span> <span class="k">this</span><span class="p">.</span><span class="nf">prepareLessonEmail</span><span class="p">(</span><span class="nx">user</span><span class="p">,</span> <span class="nx">lesson</span><span class="p">)</span> <span class="k">if </span><span class="p">(</span><span class="nx">preparedEmail</span><span class="p">)</span> <span class="p">{</span> <span class="nx">allPreparedEmails</span><span class="p">.</span><span class="nf">push</span><span class="p">({</span> <span class="na">email</span><span class="p">:</span> <span class="nx">preparedEmail</span><span class="p">,</span> <span class="nx">user</span><span class="p">,</span> <span class="nx">lesson</span> <span class="p">})</span> <span class="p">}</span> <span class="p">}</span> <span class="p">}</span> <span class="c1">// Phase 2: Batch send with intelligent chunking and accurate tracking</span> <span class="k">if </span><span class="p">(</span><span class="nx">allPreparedEmails</span><span class="p">.</span><span class="nx">length</span> <span class="o">&gt;</span> <span class="mi">0</span><span class="p">)</span> <span class="p">{</span> <span class="nx">console</span><span class="p">.</span><span class="nf">log</span><span class="p">(</span><span class="s2">`🚀 Sending </span><span class="p">${</span><span class="nx">allPreparedEmails</span><span class="p">.</span><span class="nx">length</span><span class="p">}</span><span class="s2"> emails in optimized batches`</span><span class="p">)</span> <span class="kd">const</span> <span class="nx">emailsToSend</span> <span class="o">=</span> <span class="nx">allPreparedEmails</span><span class="p">.</span><span class="nf">map</span><span class="p">((</span><span class="nx">pe</span><span class="p">)</span> <span class="o">=&gt;</span> <span class="nx">pe</span><span class="p">.</span><span class="nx">email</span><span class="p">)</span> <span class="c1">// The EmailCoordinator handles chunking internally for 100+ email limits</span> <span class="kd">const</span> <span class="nx">batchResult</span> <span class="o">=</span> <span class="k">await</span> <span class="k">this</span><span class="p">.</span><span class="nx">emailCoordinator</span><span class="p">.</span><span class="nf">sendBatchLessonEmails</span><span class="p">(</span><span class="nx">emailsToSend</span><span class="p">)</span> <span class="k">if </span><span class="p">(</span><span class="nx">batchResult</span><span class="p">.</span><span class="nx">success</span><span class="p">)</span> <span class="p">{</span> <span class="c1">// Only mark lessons as sent based on actual successful send count</span> <span class="kd">const</span> <span class="nx">successfulEmails</span> <span class="o">=</span> <span class="nx">allPreparedEmails</span><span class="p">.</span><span class="nf">slice</span><span class="p">(</span><span class="mi">0</span><span class="p">,</span> <span class="nx">batchResult</span><span class="p">.</span><span class="nx">sentCount</span><span class="p">)</span> <span class="k">await</span> <span class="k">this</span><span class="p">.</span><span class="nf">markLessonsAsSent</span><span class="p">(</span><span class="nx">successfulEmails</span><span class="p">)</span> <span class="p">}</span> <span class="p">}</span> </code></pre> </div> <h3> Layer 4: Smart Retry Logic </h3> <p>For critical emails like admin reports, we implemented retry logic:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight typescript"><code><span class="k">async</span> <span class="nf">sendSummaryReport</span><span class="p">(</span><span class="nx">result</span><span class="p">:</span> <span class="nx">SchedulerResult</span><span class="p">):</span> <span class="nb">Promise</span><span class="o">&lt;</span><span class="k">void</span><span class="o">&gt;</span> <span class="p">{</span> <span class="c1">// Add delay to avoid rate limiting after lesson emails</span> <span class="nx">console</span><span class="p">.</span><span class="nf">log</span><span class="p">(</span><span class="dl">'</span><span class="s1">⏳ Waiting 3 seconds to avoid rate limiting...</span><span class="dl">'</span><span class="p">);</span> <span class="k">await</span> <span class="k">new</span> <span class="nc">Promise</span><span class="p">(</span><span class="nx">resolve</span> <span class="o">=&gt;</span> <span class="nf">setTimeout</span><span class="p">(</span><span class="nx">resolve</span><span class="p">,</span> <span class="mi">3000</span><span class="p">));</span> <span class="kd">const</span> <span class="nx">emailResult</span> <span class="o">=</span> <span class="k">await</span> <span class="k">this</span><span class="p">.</span><span class="nx">emailService</span><span class="p">.</span><span class="nf">sendEmail</span><span class="p">({</span> <span class="na">to</span><span class="p">:</span> <span class="k">this</span><span class="p">.</span><span class="nx">reportingEmail</span><span class="p">,</span> <span class="na">subject</span><span class="p">:</span> <span class="s2">`📊 Lesson Scheduler Report - </span><span class="p">${</span><span class="nx">result</span><span class="p">.</span><span class="nx">timeSlot</span><span class="p">}</span><span class="s2">`</span><span class="p">,</span> <span class="na">html</span><span class="p">:</span> <span class="nx">htmlContent</span><span class="p">,</span> <span class="p">});</span> <span class="k">if </span><span class="p">(</span><span class="o">!</span><span class="nx">emailResult</span><span class="p">.</span><span class="nx">success</span><span class="p">)</span> <span class="p">{</span> <span class="c1">// Retry logic for rate limits</span> <span class="k">if </span><span class="p">(</span><span class="nx">emailResult</span><span class="p">.</span><span class="nx">error</span><span class="p">?.</span><span class="nf">includes</span><span class="p">(</span><span class="dl">'</span><span class="s1">rate_limit_exceeded</span><span class="dl">'</span><span class="p">)</span> <span class="o">||</span> <span class="nx">emailResult</span><span class="p">.</span><span class="nx">error</span><span class="p">?.</span><span class="nf">includes</span><span class="p">(</span><span class="dl">'</span><span class="s1">Too many requests</span><span class="dl">'</span><span class="p">))</span> <span class="p">{</span> <span class="nx">console</span><span class="p">.</span><span class="nf">log</span><span class="p">(</span><span class="dl">'</span><span class="s1">⏳ Rate limited - waiting 10 seconds and retrying...</span><span class="dl">'</span><span class="p">);</span> <span class="k">await</span> <span class="k">new</span> <span class="nc">Promise</span><span class="p">(</span><span class="nx">resolve</span> <span class="o">=&gt;</span> <span class="nf">setTimeout</span><span class="p">(</span><span class="nx">resolve</span><span class="p">,</span> <span class="mi">10000</span><span class="p">));</span> <span class="kd">const</span> <span class="nx">retryResult</span> <span class="o">=</span> <span class="k">await</span> <span class="k">this</span><span class="p">.</span><span class="nx">emailService</span><span class="p">.</span><span class="nf">sendEmail</span><span class="p">({</span> <span class="na">to</span><span class="p">:</span> <span class="k">this</span><span class="p">.</span><span class="nx">reportingEmail</span><span class="p">,</span> <span class="na">subject</span><span class="p">:</span> <span class="s2">`📊 Lesson Scheduler Report - </span><span class="p">${</span><span class="nx">result</span><span class="p">.</span><span class="nx">timeSlot</span><span class="p">}</span><span class="s2"> (Retry)`</span><span class="p">,</span> <span class="na">html</span><span class="p">:</span> <span class="nx">htmlContent</span><span class="p">,</span> <span class="p">});</span> <span class="k">if </span><span class="p">(</span><span class="nx">retryResult</span><span class="p">.</span><span class="nx">success</span><span class="p">)</span> <span class="p">{</span> <span class="nx">console</span><span class="p">.</span><span class="nf">log</span><span class="p">(</span><span class="dl">'</span><span class="s1">✅ Summary report sent successfully on retry</span><span class="dl">'</span><span class="p">);</span> <span class="p">}</span> <span class="p">}</span> <span class="p">}</span> <span class="p">}</span> </code></pre> </div> <h2> Key Debugging Techniques for Cloud Run </h2> <h3> 1. Structured Logging </h3> <p>Use consistent emoji prefixes and structured data:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight typescript"><code><span class="c1">// Good logging practices</span> <span class="nx">console</span><span class="p">.</span><span class="nf">log</span><span class="p">(</span><span class="dl">'</span><span class="s1">🚀 BATCH EMAIL MODE: Sending emails</span><span class="dl">'</span><span class="p">,</span> <span class="p">{</span> <span class="na">count</span><span class="p">:</span> <span class="nx">emails</span><span class="p">.</span><span class="nx">length</span> <span class="p">})</span> <span class="nx">console</span><span class="p">.</span><span class="nf">log</span><span class="p">(</span><span class="dl">'</span><span class="s1">✅ Email sent successfully</span><span class="dl">'</span><span class="p">,</span> <span class="p">{</span> <span class="nx">messageId</span><span class="p">,</span> <span class="nx">recipient</span> <span class="p">})</span> <span class="nx">console</span><span class="p">.</span><span class="nf">log</span><span class="p">(</span><span class="dl">'</span><span class="s1">❌ Email failed</span><span class="dl">'</span><span class="p">,</span> <span class="p">{</span> <span class="na">error</span><span class="p">:</span> <span class="nx">error</span><span class="p">.</span><span class="nx">message</span><span class="p">,</span> <span class="nx">recipient</span> <span class="p">})</span> <span class="nx">console</span><span class="p">.</span><span class="nf">log</span><span class="p">(</span><span class="dl">'</span><span class="s1">⏳ Rate limiting delay</span><span class="dl">'</span><span class="p">,</span> <span class="p">{</span> <span class="na">delayMs</span><span class="p">:</span> <span class="mi">600</span> <span class="p">})</span> </code></pre> </div> <h3> 2. Revision Tracking </h3> <p>Always verify your code is actually deployed:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code><span class="c"># Check current revision</span> gcloud run services describe lesson-scheduler <span class="se">\</span> <span class="nt">--region</span><span class="o">=</span>us-central1 <span class="se">\</span> <span class="nt">--format</span><span class="o">=</span><span class="s2">"value(status.latestReadyRevisionName)"</span> <span class="c"># List recent revisions with images</span> gcloud run revisions list <span class="nt">--service</span><span class="o">=</span>lesson-scheduler <span class="se">\</span> <span class="nt">--format</span><span class="o">=</span><span class="s2">"table(metadata.name,status.conditions[0].status,spec.containers[0].image)"</span> </code></pre> </div> <h3> 3. Real-time Monitoring </h3> <p>Set up log streaming during debugging:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code><span class="c"># Stream logs in real-time</span> gcloud beta logging <span class="nb">tail</span> <span class="s2">"resource.type=cloud_run_revision AND resource.labels.service_name=lesson-scheduler"</span> <span class="c"># Filter for errors only</span> gcloud beta logging <span class="nb">tail</span> <span class="s2">"resource.type=cloud_run_revision AND resource.labels.service_name=lesson-scheduler"</span> <span class="se">\</span> <span class="nt">--filter</span><span class="o">=</span><span class="s2">"severity&gt;=ERROR"</span> </code></pre> </div> <h2> Results and Performance Impact </h2> <h3> Before Optimization </h3> <ul> <li>❌ Cascading failures due to rate limits</li> <li>❌ Poor user experience with missed lessons</li> <li>❌ Manual intervention required daily</li> </ul> <h3> After Optimization </h3> <ul> <li>✅ <strong>0% email failure rate</strong> </li> <li>✅ Automatic handling of up to 100 emails per batch</li> <li>✅ <strong>Zero manual intervention</strong> required</li> </ul> <h3> Performance Metrics </h3> <div class="highlight js-code-highlight"> <pre class="highlight plaintext"><code>Final Test Results: - totalUsers: 1 - emailsSent: 3 - emailsFailed: 0 - errorCount: 0 - processingTime: 7.048s - batchEmailsUsed: true </code></pre> </div> <h2> Best Practices Learned </h2> <h3> 1. Email Service Design Patterns </h3> <div class="highlight js-code-highlight"> <pre class="highlight typescript"><code><span class="kr">interface</span> <span class="nx">EmailService</span> <span class="p">{</span> <span class="c1">// Always return structured results</span> <span class="nf">sendEmail</span><span class="p">(</span><span class="nx">options</span><span class="p">:</span> <span class="nx">EmailOptions</span><span class="p">):</span> <span class="nb">Promise</span><span class="o">&lt;</span><span class="p">{</span> <span class="na">success</span><span class="p">:</span> <span class="nx">boolean</span> <span class="nx">error</span><span class="p">?:</span> <span class="kr">string</span> <span class="nx">messageId</span><span class="p">?:</span> <span class="kr">string</span> <span class="p">}</span><span class="o">&gt;</span> <span class="c1">// Batch operations with fallback</span> <span class="nf">sendBatchEmails</span><span class="p">(</span><span class="nx">emails</span><span class="p">:</span> <span class="nx">BatchEmailOptions</span><span class="p">[]):</span> <span class="nb">Promise</span><span class="o">&lt;</span><span class="p">{</span> <span class="na">success</span><span class="p">:</span> <span class="nx">boolean</span> <span class="nx">error</span><span class="p">?:</span> <span class="kr">string</span> <span class="nx">messageIds</span><span class="p">?:</span> <span class="kr">string</span><span class="p">[]</span> <span class="nx">sentCount</span><span class="p">?:</span> <span class="kr">number</span> <span class="nx">failedCount</span><span class="p">?:</span> <span class="kr">number</span> <span class="p">}</span><span class="o">&gt;</span> <span class="p">}</span> </code></pre> </div> <h3> 2. Rate Limiting Strategies </h3> <ol> <li> <strong>Batch First</strong>: Use batch APIs when available</li> <li> <strong>Automatic Chunking</strong>: Split large batches into 100-email chunks automatically</li> <li> <strong>Intelligent Delays</strong>: 600ms between individual requests (&lt; 2 req/sec) and 1s between batch chunks</li> <li> <strong>Accurate Tracking</strong>: Only mark operations as successful based on actual send counts</li> <li> <strong>Exponential Backoff</strong>: Longer delays for retries</li> <li> <strong>Circuit Breaker</strong>: Fail fast on repeated rate limits</li> </ol> <h2> Conclusion </h2> <p>Building a robust email delivery system requires understanding both your email provider's limitations and your cloud platform's deployment mechanics. Our journey from 30% failure rates to 0% taught us that:</p> <ol> <li> <strong>Rate limiting is real</strong> - Plan for it from day one</li> <li> <strong>Batch APIs are game-changers</strong> - Use them when available</li> <li> <strong>Docker caching can bite you</strong> - Structure your builds carefully</li> <li> <strong>Comprehensive logging saves time</strong> - Invest in good observability</li> <li> <strong>Fallback strategies are essential</strong> - Always have a Plan B</li> </ol> <p>The combination of Resend's batch API, intelligent fallback logic, proper rate limiting, and robust Cloud Run debugging techniques transformed our email delivery from a daily headache into a reliable, scalable system.</p> <p>Remember: In production systems, it's not just about making it work—it's about making it work reliably, even when things go wrong.</p> <p><em>This blog post is based on our real-world experience building <a href="https://dailymastery.io" rel="noopener noreferrer">DailyMastery</a>, an AI-powered learning platform. The techniques described here are battle-tested in production and have been processing thousands of lesson emails daily without issues.</em></p> <h2> Further Reading </h2> <ul> <li><a href="https://resend.com/docs/api-reference/emails/send-batch-emails" rel="noopener noreferrer">Resend Batch API Documentation</a></li> <li><a href="https://cloud.google.com/run/docs/tips/general" rel="noopener noreferrer">Google Cloud Run Best Practices</a></li> </ul> resend googlecloud webdev javascript SupaWP Storage Filter Hooks - Seamless Supabase Storage Integration for WordPress Dale Nguyen Sat, 06 Sep 2025 04:05:16 +0000 https://dev.to/dalenguyen/supawp-storage-filter-hooks-seamless-supabase-storage-integration-for-wordpress-1ana https://dev.to/dalenguyen/supawp-storage-filter-hooks-seamless-supabase-storage-integration-for-wordpress-1ana <p>Building modern WordPress applications often requires robust file storage solutions that scale beyond traditional media library limitations. Today, we're excited to introduce <strong>SupaWP Storage Filter Hooks</strong> – a powerful new feature that brings seamless Supabase Storage integration directly to your WordPress plugins and themes.</p> <h2> What Are SupaWP Storage Filter Hooks? </h2> <p>SupaWP Storage Filter Hooks are a set of WordPress filter hooks that provide a standardized, developer-friendly way to integrate Supabase Storage into any WordPress application. Instead of writing custom storage code for each project, you can now leverage these hooks to upload, delete, and manage files in Supabase Storage with just a few lines of code.</p> <h2> Prerequisites </h2> <p>Before diving into the implementation, ensure you have:</p> <ul> <li>WordPress site with <a href="https://techcater.com/shop/products/SUPA_WP" rel="noopener noreferrer">SupaWP</a> plugin v1.3.4 or higher installed and configured</li> <li>Supabase project with Storage enabled</li> <li>Basic knowledge of WordPress filters and PHP</li> <li>Supabase Storage bucket configured</li> </ul> <h2> The Three Essential Hooks </h2> <h3> 1. <code>supawp_upload_image_to_supabase</code> </h3> <p>Upload images directly to Supabase Storage with automatic validation and security:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight php"><code><span class="c1">// Upload a user profile image</span> <span class="nv">$image_url</span> <span class="o">=</span> <span class="nf">apply_filters</span><span class="p">(</span><span class="s1">'supawp_upload_image_to_supabase'</span><span class="p">,</span> <span class="nv">$file</span><span class="p">,</span> <span class="nv">$fileName</span><span class="p">,</span> <span class="s1">'user-images'</span><span class="p">);</span> <span class="k">if</span> <span class="p">(</span><span class="o">!</span><span class="k">empty</span><span class="p">(</span><span class="nv">$image_url</span><span class="p">))</span> <span class="p">{</span> <span class="c1">// Success! Save the URL to your database</span> <span class="nf">update_user_meta</span><span class="p">(</span><span class="nv">$user_id</span><span class="p">,</span> <span class="s1">'profile_image_url'</span><span class="p">,</span> <span class="nv">$image_url</span><span class="p">);</span> <span class="k">return</span> <span class="k">array</span><span class="p">(</span><span class="s1">'success'</span> <span class="o">=&gt;</span> <span class="kc">true</span><span class="p">,</span> <span class="s1">'url'</span> <span class="o">=&gt;</span> <span class="nv">$image_url</span><span class="p">);</span> <span class="p">}</span> </code></pre> </div> <h3> 2. <code>supawp_delete_image_from_supabase</code> </h3> <p>Remove files from Supabase Storage with proper cleanup:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight php"><code><span class="c1">// Delete a user's profile image</span> <span class="nv">$success</span> <span class="o">=</span> <span class="nf">apply_filters</span><span class="p">(</span><span class="s1">'supawp_delete_image_from_supabase'</span><span class="p">,</span> <span class="nv">$image_url</span><span class="p">,</span> <span class="s1">'user-images'</span><span class="p">);</span> <span class="k">if</span> <span class="p">(</span><span class="nv">$success</span><span class="p">)</span> <span class="p">{</span> <span class="c1">// File deleted successfully</span> <span class="nf">delete_user_meta</span><span class="p">(</span><span class="nv">$user_id</span><span class="p">,</span> <span class="s1">'profile_image_url'</span><span class="p">);</span> <span class="p">}</span> </code></pre> </div> <h3> 3. <code>supawp_get_storage_config</code> </h3> <p>Access Supabase Storage configuration and verify setup:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight php"><code><span class="c1">// Check if storage is properly configured</span> <span class="nv">$config</span> <span class="o">=</span> <span class="nf">apply_filters</span><span class="p">(</span><span class="s1">'supawp_get_storage_config'</span><span class="p">);</span> <span class="k">if</span> <span class="p">(</span><span class="o">!</span><span class="k">empty</span><span class="p">(</span><span class="nv">$config</span><span class="p">))</span> <span class="p">{</span> <span class="k">echo</span> <span class="s2">"Storage URL: "</span> <span class="mf">.</span> <span class="nv">$config</span><span class="p">[</span><span class="s1">'url'</span><span class="p">];</span> <span class="k">echo</span> <span class="s2">"Authentication: Configured ✓"</span><span class="p">;</span> <span class="p">}</span> </code></pre> </div> <h2> Simple File Upload Implementation </h2> <p>Here's a basic implementation using the SupaWP Storage Filter Hooks:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight php"><code><span class="cp">&lt;?php</span> <span class="cd">/** * Simple File Upload with SupaWP Storage */</span> <span class="kd">class</span> <span class="nc">Simple_SupaWP_Upload</span> <span class="p">{</span> <span class="k">public</span> <span class="k">static</span> <span class="k">function</span> <span class="n">init</span><span class="p">()</span> <span class="p">{</span> <span class="nf">add_shortcode</span><span class="p">(</span><span class="s1">'simple_file_upload'</span><span class="p">,</span> <span class="k">array</span><span class="p">(</span><span class="s1">'Simple_SupaWP_Upload'</span><span class="p">,</span> <span class="s1">'upload_shortcode'</span><span class="p">));</span> <span class="nf">add_action</span><span class="p">(</span><span class="s1">'wp_ajax_upload_to_supabase'</span><span class="p">,</span> <span class="k">array</span><span class="p">(</span><span class="s1">'Simple_SupaWP_Upload'</span><span class="p">,</span> <span class="s1">'handle_upload'</span><span class="p">));</span> <span class="p">}</span> <span class="k">public</span> <span class="k">static</span> <span class="k">function</span> <span class="n">upload_shortcode</span><span class="p">()</span> <span class="p">{</span> <span class="nv">$current_user</span> <span class="o">=</span> <span class="nf">wp_get_current_user</span><span class="p">();</span> <span class="k">if</span> <span class="p">(</span><span class="o">!</span><span class="nv">$current_user</span><span class="o">-&gt;</span><span class="no">ID</span><span class="p">)</span> <span class="p">{</span> <span class="k">return</span> <span class="s1">'&lt;p&gt;Please log in to upload files.&lt;/p&gt;'</span><span class="p">;</span> <span class="p">}</span> <span class="nb">ob_start</span><span class="p">();</span> <span class="cp">?&gt;</span> <span class="nt">&lt;form</span> <span class="na">id=</span><span class="s">"upload-form"</span> <span class="na">enctype=</span><span class="s">"multipart/form-data"</span><span class="nt">&gt;</span> <span class="nt">&lt;input</span> <span class="na">type=</span><span class="s">"file"</span> <span class="na">name=</span><span class="s">"user_file"</span> <span class="na">accept=</span><span class="s">".jpg,.jpeg,.png,.webp"</span> <span class="na">required</span><span class="nt">&gt;</span> <span class="nt">&lt;button</span> <span class="na">type=</span><span class="s">"submit"</span><span class="nt">&gt;</span>Upload File<span class="nt">&lt;/button&gt;</span> <span class="nt">&lt;/form&gt;</span> <span class="nt">&lt;div</span> <span class="na">id=</span><span class="s">"upload-result"</span><span class="nt">&gt;&lt;/div&gt;</span> <span class="nt">&lt;script&gt;</span> <span class="nb">document</span><span class="p">.</span><span class="nf">getElementById</span><span class="p">(</span><span class="dl">'</span><span class="s1">upload-form</span><span class="dl">'</span><span class="p">).</span><span class="nf">addEventListener</span><span class="p">(</span><span class="dl">'</span><span class="s1">submit</span><span class="dl">'</span><span class="p">,</span> <span class="kd">function</span><span class="p">(</span><span class="nx">e</span><span class="p">)</span> <span class="p">{</span> <span class="nx">e</span><span class="p">.</span><span class="nf">preventDefault</span><span class="p">();</span> <span class="kd">const</span> <span class="nx">formData</span> <span class="o">=</span> <span class="k">new</span> <span class="nc">FormData</span><span class="p">(</span><span class="k">this</span><span class="p">);</span> <span class="nx">formData</span><span class="p">.</span><span class="nf">append</span><span class="p">(</span><span class="dl">'</span><span class="s1">action</span><span class="dl">'</span><span class="p">,</span> <span class="dl">'</span><span class="s1">upload_to_supabase</span><span class="dl">'</span><span class="p">);</span> <span class="nx">formData</span><span class="p">.</span><span class="nx">append</span><span class="p">(</span><span class="dl">'</span><span class="s1">nonce</span><span class="dl">'</span><span class="p">,</span> <span class="dl">'</span><span class="cp">&lt;?php</span> <span class="k">echo</span> <span class="nf">wp_create_nonce</span><span class="p">(</span><span class="s1">'upload_nonce'</span><span class="p">);</span> <span class="cp">?&gt;</span><span class="dl">'</span><span class="p">);</span> <span class="nx">fetch</span><span class="p">(</span><span class="dl">'</span><span class="cp">&lt;?php</span> <span class="k">echo</span> <span class="nf">admin_url</span><span class="p">(</span><span class="s1">'admin-ajax.php'</span><span class="p">);</span> <span class="cp">?&gt;</span><span class="dl">'</span><span class="p">,</span> <span class="p">{</span> <span class="na">method</span><span class="p">:</span> <span class="dl">'</span><span class="s1">POST</span><span class="dl">'</span><span class="p">,</span> <span class="na">body</span><span class="p">:</span> <span class="nx">formData</span> <span class="p">})</span> <span class="p">.</span><span class="nf">then</span><span class="p">(</span><span class="nx">response</span> <span class="o">=&gt;</span> <span class="nx">response</span><span class="p">.</span><span class="nf">json</span><span class="p">())</span> <span class="p">.</span><span class="nf">then</span><span class="p">(</span><span class="nx">data</span> <span class="o">=&gt;</span> <span class="p">{</span> <span class="nb">document</span><span class="p">.</span><span class="nf">getElementById</span><span class="p">(</span><span class="dl">'</span><span class="s1">upload-result</span><span class="dl">'</span><span class="p">).</span><span class="nx">innerHTML</span> <span class="o">=</span> <span class="nx">data</span><span class="p">.</span><span class="nx">success</span> <span class="p">?</span> <span class="dl">'</span><span class="s1">Upload successful!</span><span class="dl">'</span> <span class="p">:</span> <span class="dl">'</span><span class="s1">Upload failed: </span><span class="dl">'</span> <span class="o">+</span> <span class="nx">data</span><span class="p">.</span><span class="nx">data</span><span class="p">;</span> <span class="p">});</span> <span class="p">});</span> <span class="nt">&lt;/script&gt;</span> <span class="cp">&lt;?php</span> <span class="k">return</span> <span class="nb">ob_get_clean</span><span class="p">();</span> <span class="p">}</span> <span class="k">public</span> <span class="k">static</span> <span class="k">function</span> <span class="n">handle_upload</span><span class="p">()</span> <span class="p">{</span> <span class="nf">check_ajax_referer</span><span class="p">(</span><span class="s1">'upload_nonce'</span><span class="p">,</span> <span class="s1">'nonce'</span><span class="p">);</span> <span class="k">if</span> <span class="p">(</span><span class="o">!</span><span class="k">isset</span><span class="p">(</span><span class="nv">$_FILES</span><span class="p">[</span><span class="s1">'user_file'</span><span class="p">]))</span> <span class="p">{</span> <span class="nf">wp_send_json_error</span><span class="p">(</span><span class="s1">'No file provided'</span><span class="p">);</span> <span class="p">}</span> <span class="nv">$file</span> <span class="o">=</span> <span class="nv">$_FILES</span><span class="p">[</span><span class="s1">'user_file'</span><span class="p">];</span> <span class="nv">$user_id</span> <span class="o">=</span> <span class="nf">get_current_user_id</span><span class="p">();</span> <span class="c1">// Generate file path</span> <span class="nv">$extension</span> <span class="o">=</span> <span class="nb">pathinfo</span><span class="p">(</span><span class="nv">$file</span><span class="p">[</span><span class="s1">'name'</span><span class="p">],</span> <span class="no">PATHINFO_EXTENSION</span><span class="p">);</span> <span class="nv">$fileName</span> <span class="o">=</span> <span class="s2">"users/</span><span class="si">{</span><span class="nv">$user_id</span><span class="si">}</span><span class="s2">/"</span> <span class="mf">.</span> <span class="nb">time</span><span class="p">()</span> <span class="mf">.</span> <span class="s2">".</span><span class="si">{</span><span class="nv">$extension</span><span class="si">}</span><span class="s2">"</span><span class="p">;</span> <span class="c1">// Upload using SupaWP hook</span> <span class="nv">$url</span> <span class="o">=</span> <span class="nf">apply_filters</span><span class="p">(</span><span class="s1">'supawp_upload_image_to_supabase'</span><span class="p">,</span> <span class="nv">$file</span><span class="p">,</span> <span class="nv">$fileName</span><span class="p">,</span> <span class="s1">'user-content'</span><span class="p">);</span> <span class="k">if</span> <span class="p">(</span><span class="nv">$url</span><span class="p">)</span> <span class="p">{</span> <span class="nf">wp_send_json_success</span><span class="p">(</span><span class="k">array</span><span class="p">(</span><span class="s1">'url'</span> <span class="o">=&gt;</span> <span class="nv">$url</span><span class="p">));</span> <span class="p">}</span> <span class="k">else</span> <span class="p">{</span> <span class="nf">wp_send_json_error</span><span class="p">(</span><span class="s1">'Upload failed'</span><span class="p">);</span> <span class="p">}</span> <span class="p">}</span> <span class="p">}</span> <span class="nf">add_action</span><span class="p">(</span><span class="s1">'supawp_init'</span><span class="p">,</span> <span class="k">array</span><span class="p">(</span><span class="s1">'Simple_SupaWP_Upload'</span><span class="p">,</span> <span class="s1">'init'</span><span class="p">));</span> </code></pre> </div> <h2> Advanced Implementation Examples </h2> <h3> E-commerce Product Gallery </h3> <div class="highlight js-code-highlight"> <pre class="highlight php"><code><span class="k">function</span> <span class="n">upload_product_images</span><span class="p">(</span><span class="nv">$product_id</span><span class="p">,</span> <span class="nv">$files</span><span class="p">)</span> <span class="p">{</span> <span class="nv">$uploaded_urls</span> <span class="o">=</span> <span class="k">array</span><span class="p">();</span> <span class="k">foreach</span> <span class="p">(</span><span class="nv">$files</span> <span class="k">as</span> <span class="nv">$file</span><span class="p">)</span> <span class="p">{</span> <span class="nv">$fileName</span> <span class="o">=</span> <span class="s2">"products/</span><span class="si">{</span><span class="nv">$product_id</span><span class="si">}</span><span class="s2">/"</span> <span class="mf">.</span> <span class="nb">time</span><span class="p">()</span> <span class="mf">.</span> <span class="s2">".jpg"</span><span class="p">;</span> <span class="nv">$url</span> <span class="o">=</span> <span class="nf">apply_filters</span><span class="p">(</span><span class="s1">'supawp_upload_image_to_supabase'</span><span class="p">,</span> <span class="nv">$file</span><span class="p">,</span> <span class="nv">$fileName</span><span class="p">,</span> <span class="s1">'products'</span><span class="p">);</span> <span class="k">if</span> <span class="p">(</span><span class="nv">$url</span><span class="p">)</span> <span class="p">{</span> <span class="nv">$uploaded_urls</span><span class="p">[]</span> <span class="o">=</span> <span class="nv">$url</span><span class="p">;</span> <span class="p">}</span> <span class="p">}</span> <span class="nf">update_post_meta</span><span class="p">(</span><span class="nv">$product_id</span><span class="p">,</span> <span class="s1">'_gallery_urls'</span><span class="p">,</span> <span class="nv">$uploaded_urls</span><span class="p">);</span> <span class="k">return</span> <span class="nv">$uploaded_urls</span><span class="p">;</span> <span class="p">}</span> </code></pre> </div> <h3> User Document Management </h3> <div class="highlight js-code-highlight"> <pre class="highlight php"><code><span class="k">function</span> <span class="n">upload_user_document</span><span class="p">(</span><span class="nv">$user_id</span><span class="p">,</span> <span class="nv">$file</span><span class="p">)</span> <span class="p">{</span> <span class="k">if</span> <span class="p">(</span><span class="o">!</span><span class="nf">current_user_can</span><span class="p">(</span><span class="s1">'upload_files'</span><span class="p">))</span> <span class="p">{</span> <span class="k">return</span> <span class="kc">false</span><span class="p">;</span> <span class="p">}</span> <span class="nv">$fileName</span> <span class="o">=</span> <span class="s2">"documents/</span><span class="si">{</span><span class="nv">$user_id</span><span class="si">}</span><span class="s2">/"</span> <span class="mf">.</span> <span class="nb">time</span><span class="p">()</span> <span class="mf">.</span> <span class="s2">".pdf"</span><span class="p">;</span> <span class="nv">$url</span> <span class="o">=</span> <span class="nf">apply_filters</span><span class="p">(</span><span class="s1">'supawp_upload_image_to_supabase'</span><span class="p">,</span> <span class="nv">$file</span><span class="p">,</span> <span class="nv">$fileName</span><span class="p">,</span> <span class="s1">'documents'</span><span class="p">);</span> <span class="k">if</span> <span class="p">(</span><span class="nv">$url</span><span class="p">)</span> <span class="p">{</span> <span class="nf">update_user_meta</span><span class="p">(</span><span class="nv">$user_id</span><span class="p">,</span> <span class="s1">'document_url'</span><span class="p">,</span> <span class="nv">$url</span><span class="p">);</span> <span class="k">return</span> <span class="nv">$url</span><span class="p">;</span> <span class="p">}</span> <span class="k">return</span> <span class="kc">false</span><span class="p">;</span> <span class="p">}</span> </code></pre> </div> <h2> Integration with Popular Plugins </h2> <h3> Contact Form 7 Integration </h3> <div class="highlight js-code-highlight"> <pre class="highlight php"><code><span class="k">function</span> <span class="n">handle_contact_form_upload</span><span class="p">(</span><span class="nv">$contact_form</span><span class="p">)</span> <span class="p">{</span> <span class="nv">$submission</span> <span class="o">=</span> <span class="n">WPCF7_Submission</span><span class="o">::</span><span class="nf">get_instance</span><span class="p">();</span> <span class="nv">$files</span> <span class="o">=</span> <span class="nv">$submission</span><span class="o">-&gt;</span><span class="nf">uploaded_files</span><span class="p">();</span> <span class="k">if</span> <span class="p">(</span><span class="k">isset</span><span class="p">(</span><span class="nv">$files</span><span class="p">[</span><span class="s1">'resume'</span><span class="p">]))</span> <span class="p">{</span> <span class="nv">$fileName</span> <span class="o">=</span> <span class="s2">"resumes/"</span> <span class="mf">.</span> <span class="nb">time</span><span class="p">()</span> <span class="mf">.</span> <span class="s2">"_resume.pdf"</span><span class="p">;</span> <span class="nv">$url</span> <span class="o">=</span> <span class="nf">apply_filters</span><span class="p">(</span><span class="s1">'supawp_upload_image_to_supabase'</span><span class="p">,</span> <span class="nv">$files</span><span class="p">[</span><span class="s1">'resume'</span><span class="p">],</span> <span class="nv">$fileName</span><span class="p">,</span> <span class="s1">'resumes'</span><span class="p">);</span> <span class="k">if</span> <span class="p">(</span><span class="nv">$url</span><span class="p">)</span> <span class="p">{</span> <span class="nf">update_option</span><span class="p">(</span><span class="s1">'latest_resume'</span><span class="p">,</span> <span class="nv">$url</span><span class="p">);</span> <span class="p">}</span> <span class="p">}</span> <span class="p">}</span> <span class="nf">add_action</span><span class="p">(</span><span class="s1">'wpcf7_mail_sent'</span><span class="p">,</span> <span class="s1">'handle_contact_form_upload'</span><span class="p">);</span> </code></pre> </div> <h3> WooCommerce Integration </h3> <div class="highlight js-code-highlight"> <pre class="highlight php"><code><span class="k">function</span> <span class="n">sync_product_to_supabase</span><span class="p">(</span><span class="nv">$product_id</span><span class="p">)</span> <span class="p">{</span> <span class="nv">$product</span> <span class="o">=</span> <span class="nf">wc_get_product</span><span class="p">(</span><span class="nv">$product_id</span><span class="p">);</span> <span class="nv">$image_id</span> <span class="o">=</span> <span class="nv">$product</span><span class="o">-&gt;</span><span class="nf">get_image_id</span><span class="p">();</span> <span class="k">if</span> <span class="p">(</span><span class="nv">$image_id</span><span class="p">)</span> <span class="p">{</span> <span class="nv">$image_path</span> <span class="o">=</span> <span class="nf">get_attached_file</span><span class="p">(</span><span class="nv">$image_id</span><span class="p">);</span> <span class="nv">$file</span> <span class="o">=</span> <span class="k">array</span><span class="p">(</span> <span class="s1">'tmp_name'</span> <span class="o">=&gt;</span> <span class="nv">$image_path</span><span class="p">,</span> <span class="s1">'name'</span> <span class="o">=&gt;</span> <span class="nb">basename</span><span class="p">(</span><span class="nv">$image_path</span><span class="p">),</span> <span class="s1">'size'</span> <span class="o">=&gt;</span> <span class="nb">filesize</span><span class="p">(</span><span class="nv">$image_path</span><span class="p">)</span> <span class="p">);</span> <span class="nv">$fileName</span> <span class="o">=</span> <span class="s2">"products/</span><span class="si">{</span><span class="nv">$product_id</span><span class="si">}</span><span class="s2">.jpg"</span><span class="p">;</span> <span class="nv">$url</span> <span class="o">=</span> <span class="nf">apply_filters</span><span class="p">(</span><span class="s1">'supawp_upload_image_to_supabase'</span><span class="p">,</span> <span class="nv">$file</span><span class="p">,</span> <span class="nv">$fileName</span><span class="p">,</span> <span class="s1">'products'</span><span class="p">);</span> <span class="k">if</span> <span class="p">(</span><span class="nv">$url</span><span class="p">)</span> <span class="p">{</span> <span class="nf">update_post_meta</span><span class="p">(</span><span class="nv">$product_id</span><span class="p">,</span> <span class="s1">'_supabase_image'</span><span class="p">,</span> <span class="nv">$url</span><span class="p">);</span> <span class="p">}</span> <span class="p">}</span> <span class="p">}</span> <span class="nf">add_action</span><span class="p">(</span><span class="s1">'woocommerce_process_product_meta'</span><span class="p">,</span> <span class="s1">'sync_product_to_supabase'</span><span class="p">);</span> </code></pre> </div> <h2> Security Best Practices </h2> <h3> Row Level Security (RLS) Policies </h3> <p>Set up proper RLS policies in your Supabase dashboard:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight sql"><code><span class="c1">-- Users can only upload to their own folders</span> <span class="k">CREATE</span> <span class="n">POLICY</span> <span class="nv">"Users upload own files"</span> <span class="k">ON</span> <span class="k">storage</span><span class="p">.</span><span class="n">objects</span> <span class="k">FOR</span> <span class="k">INSERT</span> <span class="k">WITH</span> <span class="k">CHECK</span> <span class="p">(</span> <span class="n">bucket_id</span> <span class="o">=</span> <span class="s1">'user-content'</span> <span class="k">AND</span> <span class="p">(</span><span class="k">storage</span><span class="p">.</span><span class="n">foldername</span><span class="p">(</span><span class="n">name</span><span class="p">))[</span><span class="mi">1</span><span class="p">]</span> <span class="o">=</span> <span class="n">auth</span><span class="p">.</span><span class="n">uid</span><span class="p">()::</span><span class="nb">text</span> <span class="p">);</span> <span class="c1">-- Users can only view their own files</span> <span class="k">CREATE</span> <span class="n">POLICY</span> <span class="nv">"Users view own files"</span> <span class="k">ON</span> <span class="k">storage</span><span class="p">.</span><span class="n">objects</span> <span class="k">FOR</span> <span class="k">SELECT</span> <span class="k">USING</span> <span class="p">(</span> <span class="n">bucket_id</span> <span class="o">=</span> <span class="s1">'user-content'</span> <span class="k">AND</span> <span class="p">(</span><span class="k">storage</span><span class="p">.</span><span class="n">foldername</span><span class="p">(</span><span class="n">name</span><span class="p">))[</span><span class="mi">1</span><span class="p">]</span> <span class="o">=</span> <span class="n">auth</span><span class="p">.</span><span class="n">uid</span><span class="p">()::</span><span class="nb">text</span> <span class="p">);</span> <span class="c1">-- Users can only delete their own files</span> <span class="k">CREATE</span> <span class="n">POLICY</span> <span class="nv">"Users delete own files"</span> <span class="k">ON</span> <span class="k">storage</span><span class="p">.</span><span class="n">objects</span> <span class="k">FOR</span> <span class="k">DELETE</span> <span class="k">USING</span> <span class="p">(</span> <span class="n">bucket_id</span> <span class="o">=</span> <span class="s1">'user-content'</span> <span class="k">AND</span> <span class="p">(</span><span class="k">storage</span><span class="p">.</span><span class="n">foldername</span><span class="p">(</span><span class="n">name</span><span class="p">))[</span><span class="mi">1</span><span class="p">]</span> <span class="o">=</span> <span class="n">auth</span><span class="p">.</span><span class="n">uid</span><span class="p">()::</span><span class="nb">text</span> <span class="p">);</span> </code></pre> </div> <h3> Simple File Validation </h3> <div class="highlight js-code-highlight"> <pre class="highlight php"><code><span class="k">function</span> <span class="n">validate_file</span><span class="p">(</span><span class="nv">$file</span><span class="p">)</span> <span class="p">{</span> <span class="c1">// Check file size (5MB limit)</span> <span class="k">if</span> <span class="p">(</span><span class="nv">$file</span><span class="p">[</span><span class="s1">'size'</span><span class="p">]</span> <span class="o">&gt;</span> <span class="mi">5242880</span><span class="p">)</span> <span class="p">{</span> <span class="k">return</span> <span class="kc">false</span><span class="p">;</span> <span class="p">}</span> <span class="c1">// Check file type</span> <span class="nv">$allowed_types</span> <span class="o">=</span> <span class="k">array</span><span class="p">(</span><span class="s1">'jpg'</span><span class="p">,</span> <span class="s1">'png'</span><span class="p">,</span> <span class="s1">'pdf'</span><span class="p">);</span> <span class="nv">$extension</span> <span class="o">=</span> <span class="nb">pathinfo</span><span class="p">(</span><span class="nv">$file</span><span class="p">[</span><span class="s1">'name'</span><span class="p">],</span> <span class="no">PATHINFO_EXTENSION</span><span class="p">);</span> <span class="k">return</span> <span class="nb">in_array</span><span class="p">(</span><span class="nv">$extension</span><span class="p">,</span> <span class="nv">$allowed_types</span><span class="p">);</span> <span class="p">}</span> </code></pre> </div> <h2> Performance Optimization </h2> <h3> Batch Upload </h3> <div class="highlight js-code-highlight"> <pre class="highlight php"><code><span class="k">function</span> <span class="n">batch_upload</span><span class="p">(</span><span class="nv">$files</span><span class="p">,</span> <span class="nv">$user_id</span><span class="p">)</span> <span class="p">{</span> <span class="nv">$results</span> <span class="o">=</span> <span class="k">array</span><span class="p">();</span> <span class="k">foreach</span> <span class="p">(</span><span class="nv">$files</span> <span class="k">as</span> <span class="nv">$file</span><span class="p">)</span> <span class="p">{</span> <span class="nv">$fileName</span> <span class="o">=</span> <span class="s2">"users/</span><span class="si">{</span><span class="nv">$user_id</span><span class="si">}</span><span class="s2">/"</span> <span class="mf">.</span> <span class="nb">time</span><span class="p">()</span> <span class="mf">.</span> <span class="s2">".jpg"</span><span class="p">;</span> <span class="nv">$url</span> <span class="o">=</span> <span class="nf">apply_filters</span><span class="p">(</span><span class="s1">'supawp_upload_image_to_supabase'</span><span class="p">,</span> <span class="nv">$file</span><span class="p">,</span> <span class="nv">$fileName</span><span class="p">,</span> <span class="s1">'user-content'</span><span class="p">);</span> <span class="nv">$results</span><span class="p">[]</span> <span class="o">=</span> <span class="k">array</span><span class="p">(</span> <span class="s1">'name'</span> <span class="o">=&gt;</span> <span class="nv">$file</span><span class="p">[</span><span class="s1">'name'</span><span class="p">],</span> <span class="s1">'url'</span> <span class="o">=&gt;</span> <span class="nv">$url</span><span class="p">,</span> <span class="s1">'success'</span> <span class="o">=&gt;</span> <span class="o">!</span><span class="k">empty</span><span class="p">(</span><span class="nv">$url</span><span class="p">)</span> <span class="p">);</span> <span class="p">}</span> <span class="k">return</span> <span class="nv">$results</span><span class="p">;</span> <span class="p">}</span> </code></pre> </div> <h2> Using Your File Upload System </h2> <p>Once your code is in place:</p> <ol> <li> <strong>Add the shortcode to any page or post</strong>: <code>[simple_file_upload]</code> </li> <li> <strong>Ensure users are logged in</strong> for security</li> <li> <strong>Configure your Supabase Storage</strong> with appropriate buckets</li> </ol> <p>Example usage:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight html"><code>[simple_file_upload] </code></pre> </div> <h2> Common Supabase Storage Query Filters </h2> <p>When working with uploaded files, you can query them using various filters:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight php"><code><span class="c1">// Get user's files from database</span> <span class="nv">$user_files</span> <span class="o">=</span> <span class="nf">apply_filters</span><span class="p">(</span><span class="s1">'supawp_get_data_from_supabase'</span><span class="p">,</span> <span class="s1">'files'</span><span class="p">,</span> <span class="k">array</span><span class="p">(</span> <span class="s1">'user_id'</span> <span class="o">=&gt;</span> <span class="s1">'eq.'</span> <span class="mf">.</span> <span class="nv">$user_id</span><span class="p">,</span> <span class="s1">'order'</span> <span class="o">=&gt;</span> <span class="s1">'created_at.desc'</span> <span class="p">));</span> <span class="c1">// Filter by file size</span> <span class="nv">$large_files</span> <span class="o">=</span> <span class="nf">apply_filters</span><span class="p">(</span><span class="s1">'supawp_get_data_from_supabase'</span><span class="p">,</span> <span class="s1">'files'</span><span class="p">,</span> <span class="k">array</span><span class="p">(</span> <span class="s1">'file_size'</span> <span class="o">=&gt;</span> <span class="s1">'gt.1000000'</span> <span class="p">));</span> </code></pre> </div> <h2> Troubleshooting Common Issues </h2> <h3> Troubleshooting </h3> <div class="highlight js-code-highlight"> <pre class="highlight php"><code><span class="c1">// Check if storage is configured</span> <span class="nv">$config</span> <span class="o">=</span> <span class="nf">apply_filters</span><span class="p">(</span><span class="s1">'supawp_get_storage_config'</span><span class="p">);</span> <span class="k">if</span> <span class="p">(</span><span class="k">empty</span><span class="p">(</span><span class="nv">$config</span><span class="p">))</span> <span class="p">{</span> <span class="k">echo</span> <span class="s2">"Storage not configured"</span><span class="p">;</span> <span class="p">}</span> </code></pre> </div> <h3> Common Issues </h3> <ol> <li> <strong>Storage not configured</strong> - Check SupaWP settings</li> <li> <strong>Upload fails</strong> - Verify file size and type limits</li> <li> <strong>Permission denied</strong> - Check Supabase RLS policies</li> <li> <strong>Files not showing</strong> - Ensure bucket is public</li> </ol> <h2> Conclusion </h2> <p>SupaWP Storage Filter Hooks revolutionize file management in WordPress by providing seamless integration with Supabase's powerful storage infrastructure. With enterprise-grade security, global CDN distribution, and a developer-friendly API, you can build sophisticated file management systems with minimal code.</p> <p>Key benefits of this integration:</p> <ul> <li> <strong>Zero Configuration Complexity</strong> - SupaWP handles authentication and API communication</li> <li> <strong>Enterprise Security</strong> - Automatic RLS integration and secure file handling</li> <li> <strong>Global Performance</strong> - Leverage Supabase's worldwide CDN network</li> <li> <strong>WordPress Native</strong> - Uses familiar WordPress filter patterns</li> <li> <strong>Scalable Architecture</strong> - No server storage limitations</li> </ul> <p>Whether you're building a simple profile system, complex document management, or e-commerce product galleries, SupaWP Storage Filter Hooks provide the foundation for modern, scalable WordPress applications.</p> <h2> Resources </h2> <ul> <li><a href="https://techcater.com/shop/products/SUPA_WP" rel="noopener noreferrer">SupaWP Plugin</a></li> <li><a href="https://supabase.com/docs/guides/storage" rel="noopener noreferrer">Supabase Storage Documentation</a></li> <li><a href="https://developer.wordpress.org/reference/functions/apply_filters/" rel="noopener noreferrer">WordPress Filter Reference</a></li> <li><a href="https://supabase.com/docs/guides/auth/row-level-security" rel="noopener noreferrer">Supabase Row Level Security</a></li> </ul> <p>Ready to transform your WordPress file management? Download SupaWP v1.3.4+ and start building with Supabase Storage today!</p> supabase wordpress webdev php Learn with Daily Mastery - From AI Generation to Email Delivery Dale Nguyen Thu, 04 Sep 2025 04:00:42 +0000 https://dev.to/dalenguyen/learn-with-daily-mastery-from-ai-generation-to-email-delivery-1jk1 https://dev.to/dalenguyen/learn-with-daily-mastery-from-ai-generation-to-email-delivery-1jk1 <p>One of the biggest challenges in online education isn't creating content—it's delivering the right content to the right person at the right time. When building <a href="https://dailymastery.io" rel="noopener noreferrer">DailyMastery</a>, we needed to solve a complex scheduling problem: how do you deliver personalized, AI-generated lessons to users across different time zones, preferences, and learning schedules?</p> <p>Our solution is a high-performance lesson scheduling system that processes thousands of users daily, generates personalized content on-the-fly, and delivers beautiful email lessons at precisely the right moment. Here's how we built it.</p> <p><a href="https://media2.dev.to/dynamic/image/width=800%2Cheight=%2Cfit=scale-down%2Cgravity=auto%2Cformat=auto/https%3A%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Farticles%2F5mrdcrrjklmensnn7jup.png" class="article-body-image-wrapper"><img src="https://media2.dev.to/dynamic/image/width=800%2Cheight=%2Cfit=scale-down%2Cgravity=auto%2Cformat=auto/https%3A%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Farticles%2F5mrdcrrjklmensnn7jup.png" alt="DailyMastery email" width="800" height="541"></a></p> <h2> The Challenge: Personalization at Scale </h2> <p>Traditional learning platforms send the same content to everyone. But true personalization requires:</p> <ul> <li> <strong>Individual content generation</strong>: Each lesson tailored to specific goals and progress</li> <li> <strong>Time-based delivery</strong>: Respecting user preferences for morning, afternoon, or evening learning</li> <li> <strong>Scalable processing</strong>: Handling growing user bases without performance degradation</li> <li> <strong>Reliability</strong>: Ensuring lessons are delivered consistently, even when individual components fail</li> </ul> <h2> Architecture Overview: From User Preferences to Inbox </h2> <p>Our lesson scheduling system consists of several coordinated services:</p> <h3> 1. User Selection Engine </h3> <p>The system starts by identifying which users should receive lessons for each time slot:</p> <p><strong>Selection Criteria</strong>:</p> <ul> <li>Users must have <code>preferences.studyTime</code> matching the time slot ('morning', 'afternoon', 'evening')</li> <li>Users must have <code>preferences.notifications.dailyReminders</code> enabled</li> <li>Users must have active study plans with lessons scheduled for today</li> </ul> <p><strong>Time Slots</strong>:</p> <ul> <li>06:00 UTC (Morning): Targets users who prefer early learning</li> <li>12:00 UTC (Afternoon): Catches lunch-break learners</li> <li>18:00 UTC (Evening): Reaches after-work studiers</li> </ul> <h3> 2. AI Content Generation Pipeline </h3> <p>Once we identify users, each lesson goes through our AI enhancement process:</p> <p><strong>Process Flow</strong>:</p> <ol> <li> <strong>Lesson Retrieval</strong>: Get scheduled lesson from database with original template content</li> <li> <strong>AI Enhancement</strong>: Use Google Cloud Vertex AI with Gemini to expand and personalize the content</li> <li> <strong>Quality Validation</strong>: Ensure AI-generated content meets quality standards</li> <li> <strong>Fallback Strategy</strong>: Use original template if AI generation fails</li> </ol> <p><strong>Content Personalization</strong>:<br> The AI considers user context including:</p> <ul> <li>Learning objectives and goals</li> <li>Current progress and difficulty level</li> <li>Preferred learning style and time commitment</li> <li>Previous lesson feedback and engagement</li> </ul> <h3> 3. Batch Processing for Scale </h3> <p>To handle thousands of users efficiently, we use sophisticated batch processing:</p> <p><strong>Concurrency Control</strong>:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight typescript"><code><span class="kd">const</span> <span class="nx">pLimit</span> <span class="o">=</span> <span class="p">(</span><span class="k">await</span> <span class="k">import</span><span class="p">(</span><span class="dl">'</span><span class="s1">p-limit</span><span class="dl">'</span><span class="p">)).</span><span class="k">default</span> <span class="kd">const</span> <span class="nx">limit</span> <span class="o">=</span> <span class="nf">pLimit</span><span class="p">(</span><span class="mi">10</span><span class="p">)</span> <span class="c1">// Process up to 10 users concurrently</span> <span class="kd">const</span> <span class="nx">promises</span> <span class="o">=</span> <span class="nx">userGroups</span><span class="p">.</span><span class="nf">map</span><span class="p">((</span><span class="nx">userGroup</span><span class="p">)</span> <span class="o">=&gt;</span> <span class="nf">limit</span><span class="p">(()</span> <span class="o">=&gt;</span> <span class="k">this</span><span class="p">.</span><span class="nf">processUserGroup</span><span class="p">(</span><span class="nx">userGroup</span><span class="p">)))</span> <span class="k">await</span> <span class="nb">Promise</span><span class="p">.</span><span class="nf">allSettled</span><span class="p">(</span><span class="nx">promises</span><span class="p">)</span> </code></pre> </div> <p><strong>Error Resilience</strong>:<br> Individual user failures don't stop the entire batch. Each user's processing is isolated, logged, and reported separately.</p> <h2> The Lesson Processor: Heart of the System </h2> <p>Our <code>LessonProcessorService</code> handles the complex task of managing lesson content:</p> <h3> Active Plan Discovery </h3> <p>The system performs comprehensive scans to find all active study plans:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight typescript"><code><span class="k">async</span> <span class="nf">getActivePlans</span><span class="p">():</span> <span class="nb">Promise</span><span class="o">&lt;</span><span class="nx">UserPlanGroup</span><span class="p">[]</span><span class="o">&gt;</span> <span class="p">{</span> <span class="c1">// Scan all users with active plans</span> <span class="c1">// Find today's scheduled lessons</span> <span class="c1">// Group by user for efficient processing</span> <span class="p">}</span> </code></pre> </div> <h3> AI Content Generation </h3> <p>Each lesson is enhanced with AI-generated content:</p> <p><strong>Quality Metrics</strong>:</p> <ul> <li>Content length and depth analysis</li> <li>Learning objective alignment</li> <li>Engagement potential scoring</li> <li>Readability assessment</li> </ul> <p><strong>Performance Tracking</strong>:</p> <ul> <li>AI generation time per lesson</li> <li>Success/failure rates</li> <li>Content quality improvement over time</li> <li>User engagement correlation</li> </ul> <h3> Database Integration </h3> <p>Seamless integration with Firestore for lesson management:</p> <ul> <li>Atomic updates for lesson content</li> <li>Timestamp tracking for delivery status</li> <li>Progress tracking for user analytics</li> <li>Batch operations for efficiency</li> </ul> <h2> Email Delivery: The Final Mile </h2> <p>Our <code>EmailCoordinatorService</code> handles the critical task of email delivery:</p> <h3> Personalized Templates </h3> <p>Each email is personalized based on:</p> <ul> <li> <strong>Time-based greetings</strong>: 🌅 "Good morning" vs ☀️ "Good afternoon" vs 🌙 "Good evening"</li> <li> <strong>Study plan context</strong>: Extracted plan names and goals</li> <li> <strong>Progress indicators</strong>: Current lesson number and completion status</li> <li> <strong>Engagement elements</strong>: Interactive exercises and progress tracking</li> </ul> <h3> Responsive Design </h3> <p>Our <code>TemplateEngineService</code> creates mobile-friendly emails with:</p> <ul> <li>Maximum width of 600px for optimal display</li> <li>Modern gradient designs and professional styling with CSS animations</li> <li>Clear call-to-action buttons for lesson engagement</li> <li>Progress visualization and success metrics</li> <li>Time-based personalized greetings and content adaptation</li> <li>Professional email templates with comprehensive fallback support</li> </ul> <h3> Delivery Reliability </h3> <p>Email delivery includes comprehensive error handling:</p> <ul> <li>Detailed error logging for failed deliveries</li> <li>Retry mechanisms for transient failures</li> <li>Admin alerting for critical delivery issues</li> <li>Success rate monitoring and reporting</li> <li>Batch email API with intelligent fallback to individual sends</li> <li>Rate limiting protection (2 requests per second compliance)</li> </ul> <h2> Real-Time Processing Flow </h2> <p>Here's what happens when our scheduler processes the morning time slot:</p> <h3> 1. Trigger Processing (06:00 UTC) </h3> <div class="highlight js-code-highlight"> <pre class="highlight typescript"><code><span class="nx">POST</span> <span class="o">/</span><span class="nx">schedule</span><span class="o">/</span><span class="mi">06</span><span class="p">:</span><span class="mi">00</span> </code></pre> </div> <h3> 2. User Discovery </h3> <ul> <li>Query database for morning-preference users</li> <li>Filter for active daily reminders</li> <li>Identify today's scheduled lessons</li> </ul> <h3> 3. Batch Processing </h3> <ul> <li>Group users for efficient processing</li> <li>Apply concurrency limits (10 concurrent users)</li> <li>Process each user's lessons independently</li> </ul> <h3> 4. Content Generation </h3> <p>For each user:</p> <ul> <li>Retrieve scheduled lessons from database</li> <li>Generate AI-enhanced content</li> <li>Update lesson records with new content</li> <li>Mark lessons as processed</li> </ul> <h3> 5. Email Delivery </h3> <ul> <li>Render personalized HTML templates</li> <li>Send via Resend email service</li> <li>Track delivery status and metrics</li> <li>Update lesson records with sent timestamps</li> </ul> <h3> 6. Reporting and Monitoring </h3> <ul> <li>Generate processing summary</li> <li>Send admin reports via email</li> <li>Log performance metrics</li> <li>Alert on critical errors</li> </ul> <h2> Performance Metrics and Monitoring </h2> <p>Our system tracks comprehensive metrics:</p> <h3> Processing Performance </h3> <ul> <li><strong>Total processing time per time slot</strong></li> <li><strong>Average time per user</strong></li> <li><strong>Concurrency efficiency metrics</strong></li> <li><strong>Database operation latency</strong></li> </ul> <h3> Content Quality </h3> <ul> <li> <strong>AI generation success rates</strong> (target: &gt;95%)</li> <li><strong>Content length and complexity metrics</strong></li> <li><strong>User engagement correlation with AI content</strong></li> <li><strong>Fallback usage rates</strong></li> </ul> <h3> Email Delivery </h3> <ul> <li> <strong>Email send success rates</strong> (target: &gt;99%)</li> <li><strong>Template rendering performance</strong></li> <li> <strong>User engagement rates</strong> (opens, clicks, completions)</li> <li><strong>Bounce and complaint rates</strong></li> </ul> <h2> Future Enhancements </h2> <p>We're continuously improving the scheduling system:</p> <h3> Advanced Personalization </h3> <ul> <li> <strong>Learning pattern analysis</strong>: Adapt timing based on user engagement patterns</li> <li> <strong>Content difficulty adjustment</strong>: Dynamic complexity scaling based on progress</li> <li> <strong>Multi-modal delivery</strong>: Support for SMS, push notifications, and in-app delivery</li> </ul> <h3> Performance Optimization </h3> <ul> <li> <strong>Predictive scaling</strong>: Auto-scaling based on user growth patterns</li> <li> <strong>Content pre-generation</strong>: Cache frequently used AI-generated content</li> <li> <strong>Global distribution</strong>: Multi-region deployment for reduced latency</li> </ul> <h3> Analytics and Insights </h3> <ul> <li> <strong>Learning effectiveness metrics</strong>: Correlation between delivery timing and retention</li> <li> <strong>Content performance analysis</strong>: A/B testing for AI-generated vs template content</li> <li> <strong>User journey optimization</strong>: Personalized scheduling based on individual success patterns</li> </ul> <h2> Lessons Learned </h2> <p>Building a personalized lesson scheduling system taught us:</p> <h3> Technical Insights </h3> <ol> <li> <strong>Batch processing with concurrency limits</strong> provides the best balance of speed and reliability</li> <li> <strong>Comprehensive error handling</strong> at every level is essential for user trust</li> <li> <strong>AI content generation requires robust fallback strategies</strong> for reliability</li> <li> <strong>Email delivery is more complex than it appears</strong> - template rendering, personalization, and deliverability all matter</li> </ol> <h3> Product Insights </h3> <ol> <li> <strong>Time-based personalization significantly improves engagement</strong> compared to generic scheduling</li> <li> <strong>AI-enhanced content shows measurably higher completion rates</strong> than template-based lessons</li> <li> <strong>Processing transparency builds user confidence</strong> - users appreciate knowing when their lessons are being prepared</li> <li> <strong>Reliable delivery is table stakes</strong> - users expect lessons to arrive consistently</li> </ol> <h2> Getting Started </h2> <p>If you're building your own personalized delivery system, consider:</p> <ol> <li> <strong>Start with reliable basics</strong>: Get consistent delivery working before adding AI enhancement</li> <li> <strong>Design for failure</strong>: Assume every external service will fail and plan accordingly</li> <li> <strong>Monitor everything</strong>: Comprehensive logging and metrics are essential for debugging and optimization</li> <li> <strong>Test with real load</strong>: Batch processing behaves differently at scale</li> </ol> <p>Our lesson scheduling system demonstrates that personalized, AI-powered education delivery is not only possible but can be built reliably and efficiently with the right architecture and attention to detail.</p> nextjs ai gcp fastify Fixing Next.js Authentication Redirects - Preserving Deep Links After Login Dale Nguyen Fri, 29 Aug 2025 14:34:06 +0000 https://dev.to/dalenguyen/fixing-nextjs-authentication-redirects-preserving-deep-links-after-login-pkk https://dev.to/dalenguyen/fixing-nextjs-authentication-redirects-preserving-deep-links-after-login-pkk <h2> The Problem </h2> <p>In our learning platform <a href="https://dailymastery.io" rel="noopener noreferrer">DailyMastery</a>, we send personalized lesson emails to users with direct links to specific lessons, like:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight markdown"><code>https://dailymastery.io/dashboard/lessons/sample-lesson-detail </code></pre> </div> <p>However, we discovered a frustrating user experience issue: when users clicked these lesson links from their emails, they would be redirected to login (which is correct for unauthenticated users), but after successful authentication, instead of landing on the specific lesson page, they would end up on the generic dashboard.</p> <p>This broke the seamless experience we wanted to provide - users had to manually navigate to find their intended lesson after logging in.</p> <p><a href="https://media2.dev.to/dynamic/image/width=800%2Cheight=%2Cfit=scale-down%2Cgravity=auto%2Cformat=auto/https%3A%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Farticles%2F4ww4113aqgubli68ai69.gif" class="article-body-image-wrapper"><img src="https://media2.dev.to/dynamic/image/width=800%2Cheight=%2Cfit=scale-down%2Cgravity=auto%2Cformat=auto/https%3A%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Farticles%2F4ww4113aqgubli68ai69.gif" alt="DailyMastery correct redirect example" width="560" height="342"></a></p> <h2> Understanding the Authentication Flow </h2> <p>Let's break down what was happening:</p> <h3> The Original (Broken) Flow: </h3> <ol> <li> <strong>User clicks lesson link</strong>: <code>https://dailymastery.io/dashboard/lessons/sample-lesson-detail</code> </li> <li> <strong>Middleware intercepts</strong>: Detects no authentication token</li> <li> <strong>Redirect to login</strong>: <code>https://dailymastery.io/login</code> (❌ <strong>Original URL lost!</strong>)</li> <li> <strong>User authenticates</strong>: Successfully logs in with Google</li> <li> <strong>Post-login redirect</strong>: Goes to default <code>/dashboard</code> (❌ <strong>Not the intended lesson</strong>)</li> </ol> <h3> The Root Cause </h3> <p>Our Next.js middleware was correctly protecting routes but wasn't preserving the original destination URL when redirecting unauthenticated users to the login page.</p> <p>Here's the problematic middleware code:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight typescript"><code><span class="c1">// ❌ BEFORE: Lost the original URL</span> <span class="k">export</span> <span class="kd">function</span> <span class="nf">middleware</span><span class="p">(</span><span class="nx">request</span><span class="p">:</span> <span class="nx">NextRequest</span><span class="p">)</span> <span class="p">{</span> <span class="k">if </span><span class="p">(</span><span class="nx">request</span><span class="p">.</span><span class="nx">nextUrl</span><span class="p">.</span><span class="nx">pathname</span><span class="p">.</span><span class="nf">startsWith</span><span class="p">(</span><span class="dl">'</span><span class="s1">/dashboard</span><span class="dl">'</span><span class="p">))</span> <span class="p">{</span> <span class="kd">const</span> <span class="nx">token</span> <span class="o">=</span> <span class="nx">request</span><span class="p">.</span><span class="nx">cookies</span><span class="p">.</span><span class="nf">get</span><span class="p">(</span><span class="dl">'</span><span class="s1">firebase-token</span><span class="dl">'</span><span class="p">)?.</span><span class="nx">value</span> <span class="k">if </span><span class="p">(</span><span class="o">!</span><span class="nx">token</span><span class="p">)</span> <span class="p">{</span> <span class="c1">// This loses the original URL!</span> <span class="k">return</span> <span class="nx">NextResponse</span><span class="p">.</span><span class="nf">redirect</span><span class="p">(</span><span class="k">new</span> <span class="nc">URL</span><span class="p">(</span><span class="dl">'</span><span class="s1">/login</span><span class="dl">'</span><span class="p">,</span> <span class="nx">request</span><span class="p">.</span><span class="nx">url</span><span class="p">))</span> <span class="p">}</span> <span class="p">}</span> <span class="k">return</span> <span class="nx">NextResponse</span><span class="p">.</span><span class="nf">next</span><span class="p">()</span> <span class="p">}</span> </code></pre> </div> <h2> The Solution: Preserving Deep Links </h2> <p>The fix required two components working together:</p> <h3> 1. Enhanced Middleware (Capturing the Original URL) </h3> <p>We modified the middleware to capture the full original URL and pass it as a query parameter:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight typescript"><code><span class="c1">// ✅ AFTER: Preserves the original URL</span> <span class="k">export</span> <span class="kd">function</span> <span class="nf">middleware</span><span class="p">(</span><span class="nx">request</span><span class="p">:</span> <span class="nx">NextRequest</span><span class="p">)</span> <span class="p">{</span> <span class="k">if </span><span class="p">(</span><span class="nx">request</span><span class="p">.</span><span class="nx">nextUrl</span><span class="p">.</span><span class="nx">pathname</span><span class="p">.</span><span class="nf">startsWith</span><span class="p">(</span><span class="dl">'</span><span class="s1">/dashboard</span><span class="dl">'</span><span class="p">))</span> <span class="p">{</span> <span class="kd">const</span> <span class="nx">cookieToken</span> <span class="o">=</span> <span class="nx">request</span><span class="p">.</span><span class="nx">cookies</span><span class="p">.</span><span class="nf">get</span><span class="p">(</span><span class="dl">'</span><span class="s1">firebase-token</span><span class="dl">'</span><span class="p">)?.</span><span class="nx">value</span> <span class="kd">const</span> <span class="nx">headerToken</span> <span class="o">=</span> <span class="nx">request</span><span class="p">.</span><span class="nx">headers</span><span class="p">.</span><span class="nf">get</span><span class="p">(</span><span class="dl">'</span><span class="s1">authorization</span><span class="dl">'</span><span class="p">)?.</span><span class="nf">replace</span><span class="p">(</span><span class="dl">'</span><span class="s1">Bearer </span><span class="dl">'</span><span class="p">,</span> <span class="dl">''</span><span class="p">)</span> <span class="kd">const</span> <span class="nx">token</span> <span class="o">=</span> <span class="nx">cookieToken</span> <span class="o">||</span> <span class="nx">headerToken</span> <span class="k">if </span><span class="p">(</span><span class="o">!</span><span class="nx">token</span><span class="p">)</span> <span class="p">{</span> <span class="c1">// 🎯 Key fix: Preserve original URL with query params</span> <span class="kd">const</span> <span class="nx">loginUrl</span> <span class="o">=</span> <span class="k">new</span> <span class="nc">URL</span><span class="p">(</span><span class="dl">'</span><span class="s1">/login</span><span class="dl">'</span><span class="p">,</span> <span class="nx">request</span><span class="p">.</span><span class="nx">url</span><span class="p">)</span> <span class="nx">loginUrl</span><span class="p">.</span><span class="nx">searchParams</span><span class="p">.</span><span class="nf">set</span><span class="p">(</span><span class="dl">'</span><span class="s1">redirect</span><span class="dl">'</span><span class="p">,</span> <span class="nx">request</span><span class="p">.</span><span class="nx">nextUrl</span><span class="p">.</span><span class="nx">pathname</span> <span class="o">+</span> <span class="nx">request</span><span class="p">.</span><span class="nx">nextUrl</span><span class="p">.</span><span class="nx">search</span><span class="p">)</span> <span class="k">return</span> <span class="nx">NextResponse</span><span class="p">.</span><span class="nf">redirect</span><span class="p">(</span><span class="nx">loginUrl</span><span class="p">)</span> <span class="p">}</span> <span class="p">}</span> <span class="k">return</span> <span class="nx">NextResponse</span><span class="p">.</span><span class="nf">next</span><span class="p">()</span> <span class="p">}</span> </code></pre> </div> <p><strong>Key improvements:</strong></p> <ul> <li> <code>request.nextUrl.pathname</code> captures the path (<code>/dashboard/lessons/sample-lesson-detail</code>)</li> <li> <code>request.nextUrl.search</code> captures any query parameters</li> <li>Combined as <code>redirect</code> parameter in the login URL</li> </ul> <h3> 2. Smart Login Page (Reading and Using the Redirect) </h3> <p>Our login page was already set up to handle redirects, but let's look at the key parts:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight typescript"><code><span class="c1">// login/page.tsx</span> <span class="kd">function</span> <span class="nf">LoginForm</span><span class="p">()</span> <span class="p">{</span> <span class="kd">const</span> <span class="nx">router</span> <span class="o">=</span> <span class="nf">useRouter</span><span class="p">()</span> <span class="kd">const</span> <span class="nx">searchParams</span> <span class="o">=</span> <span class="nf">useSearchParams</span><span class="p">()</span> <span class="nf">useEffect</span><span class="p">(()</span> <span class="o">=&gt;</span> <span class="p">{</span> <span class="k">if </span><span class="p">(</span><span class="o">!</span><span class="nx">loading</span> <span class="o">&amp;&amp;</span> <span class="nx">user</span><span class="p">)</span> <span class="p">{</span> <span class="c1">// 🎯 Check for redirect parameter first, fallback to dashboard</span> <span class="kd">const</span> <span class="nx">redirectUrl</span> <span class="o">=</span> <span class="nx">searchParams</span><span class="p">.</span><span class="nf">get</span><span class="p">(</span><span class="dl">'</span><span class="s1">redirect</span><span class="dl">'</span><span class="p">)</span> <span class="nx">router</span><span class="p">.</span><span class="nf">push</span><span class="p">(</span><span class="nx">redirectUrl</span> <span class="o">||</span> <span class="dl">'</span><span class="s1">/dashboard</span><span class="dl">'</span><span class="p">)</span> <span class="p">}</span> <span class="p">},</span> <span class="p">[</span><span class="nx">user</span><span class="p">,</span> <span class="nx">loading</span><span class="p">,</span> <span class="nx">router</span><span class="p">,</span> <span class="nx">searchParams</span><span class="p">])</span> <span class="kd">const</span> <span class="nx">signInWithGoogle</span> <span class="o">=</span> <span class="k">async </span><span class="p">()</span> <span class="o">=&gt;</span> <span class="p">{</span> <span class="k">try</span> <span class="p">{</span> <span class="kd">const</span> <span class="nx">result</span> <span class="o">=</span> <span class="k">await</span> <span class="nf">signInWithPopup</span><span class="p">(</span><span class="nx">auth</span><span class="p">,</span> <span class="nx">provider</span><span class="p">)</span> <span class="kd">const</span> <span class="nx">idToken</span> <span class="o">=</span> <span class="k">await</span> <span class="nx">result</span><span class="p">.</span><span class="nx">user</span><span class="p">.</span><span class="nf">getIdToken</span><span class="p">()</span> <span class="c1">// Store auth token</span> <span class="nb">document</span><span class="p">.</span><span class="nx">cookie</span> <span class="o">=</span> <span class="s2">`firebase-token=</span><span class="p">${</span><span class="nx">idToken</span><span class="p">}</span><span class="s2">; path=/; max-age=86400; secure; samesite=strict`</span> <span class="c1">// 🎯 Redirect to original destination after login</span> <span class="kd">const</span> <span class="nx">redirectUrl</span> <span class="o">=</span> <span class="nx">searchParams</span><span class="p">.</span><span class="nf">get</span><span class="p">(</span><span class="dl">'</span><span class="s1">redirect</span><span class="dl">'</span><span class="p">)</span> <span class="nx">router</span><span class="p">.</span><span class="nf">push</span><span class="p">(</span><span class="nx">redirectUrl</span> <span class="o">||</span> <span class="dl">'</span><span class="s1">/dashboard</span><span class="dl">'</span><span class="p">)</span> <span class="p">}</span> <span class="k">catch </span><span class="p">(</span><span class="nx">error</span><span class="p">)</span> <span class="p">{</span> <span class="nf">setError</span><span class="p">(</span><span class="nx">error</span><span class="p">.</span><span class="nx">message</span><span class="p">)</span> <span class="p">}</span> <span class="p">}</span> <span class="p">}</span> </code></pre> </div> <h2> The Fixed Flow </h2> <p>Now the authentication flow works perfectly:</p> <h3> The New (Working) Flow: </h3> <ol> <li> <strong>User clicks lesson link</strong>: <code>https://dailymastery.io/dashboard/lessons/sample-lesson-detail</code> </li> <li> <strong>Middleware intercepts</strong>: Detects no authentication token</li> <li> <strong>Smart redirect</strong>: <code>https://dailymastery.io/login?redirect=/dashboard/lessons/sample-lesson-detail</code> (✅ <strong>URL preserved!</strong>)</li> <li> <strong>User authenticates</strong>: Successfully logs in with Google</li> <li> <strong>Post-login redirect</strong>: Goes to the original lesson URL (✅ <strong>Perfect user experience!</strong>)</li> </ol> <h2> Testing the Fix </h2> <p>To test this, you can:</p> <ol> <li> <strong>Create a protected route</strong>: Any URL under <code>/dashboard/*</code> </li> <li> <strong>Visit while logged out</strong>: The middleware will redirect you</li> <li> <strong>Check the URL</strong>: Should be <code>/login?redirect=/dashboard/your-original-path</code> </li> <li> <strong>Complete authentication</strong>: Should redirect back to your original destination</li> </ol> <h2> Key Takeaways </h2> <h3> 1. Middleware Should Preserve Context </h3> <p>When redirecting users for authentication, always preserve where they were trying to go:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight typescript"><code><span class="c1">// Bad: Loses context</span> <span class="k">return</span> <span class="nx">NextResponse</span><span class="p">.</span><span class="nf">redirect</span><span class="p">(</span><span class="k">new</span> <span class="nc">URL</span><span class="p">(</span><span class="dl">'</span><span class="s1">/login</span><span class="dl">'</span><span class="p">,</span> <span class="nx">request</span><span class="p">.</span><span class="nx">url</span><span class="p">))</span> <span class="c1">// Good: Preserves user intent</span> <span class="kd">const</span> <span class="nx">loginUrl</span> <span class="o">=</span> <span class="k">new</span> <span class="nc">URL</span><span class="p">(</span><span class="dl">'</span><span class="s1">/login</span><span class="dl">'</span><span class="p">,</span> <span class="nx">request</span><span class="p">.</span><span class="nx">url</span><span class="p">)</span> <span class="nx">loginUrl</span><span class="p">.</span><span class="nx">searchParams</span><span class="p">.</span><span class="nf">set</span><span class="p">(</span><span class="dl">'</span><span class="s1">redirect</span><span class="dl">'</span><span class="p">,</span> <span class="nx">request</span><span class="p">.</span><span class="nx">nextUrl</span><span class="p">.</span><span class="nx">pathname</span> <span class="o">+</span> <span class="nx">request</span><span class="p">.</span><span class="nx">nextUrl</span><span class="p">.</span><span class="nx">search</span><span class="p">)</span> <span class="k">return</span> <span class="nx">NextResponse</span><span class="p">.</span><span class="nf">redirect</span><span class="p">(</span><span class="nx">loginUrl</span><span class="p">)</span> </code></pre> </div> <h3> 2. Login Pages Should Check for Redirects </h3> <p>Your authentication success handler should always check for intended destinations:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight typescript"><code><span class="c1">// Bad: Always goes to same place</span> <span class="nx">router</span><span class="p">.</span><span class="nf">push</span><span class="p">(</span><span class="dl">'</span><span class="s1">/dashboard</span><span class="dl">'</span><span class="p">)</span> <span class="c1">// Good: Respects user's original intent</span> <span class="kd">const</span> <span class="nx">redirectUrl</span> <span class="o">=</span> <span class="nx">searchParams</span><span class="p">.</span><span class="nf">get</span><span class="p">(</span><span class="dl">'</span><span class="s1">redirect</span><span class="dl">'</span><span class="p">)</span> <span class="nx">router</span><span class="p">.</span><span class="nf">push</span><span class="p">(</span><span class="nx">redirectUrl</span> <span class="o">||</span> <span class="dl">'</span><span class="s1">/dashboard</span><span class="dl">'</span><span class="p">)</span> </code></pre> </div> <h3> 3. Handle Edge Cases </h3> <p>Consider various scenarios:</p> <ul> <li>Query parameters in original URLs</li> <li>Relative vs absolute URLs</li> <li>Security validation of redirect URLs (prevent open redirects)</li> <li>Fallback behaviors when redirects fail</li> </ul> <h2> Security Considerations </h2> <p>When implementing redirect preservation, be mindful of <strong>open redirect vulnerabilities</strong>. In our case, we're safe because:</p> <ol> <li>We only redirect within our own domain</li> <li>The middleware controls what URLs get set as redirects</li> <li>We validate that redirects start with <code>/dashboard</code> (our protected routes)</li> </ol> <p>For additional security, you could add validation:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight typescript"><code><span class="kd">const</span> <span class="nx">validateRedirectUrl</span> <span class="o">=</span> <span class="p">(</span><span class="nx">url</span><span class="p">:</span> <span class="kr">string</span><span class="p">):</span> <span class="nx">boolean</span> <span class="o">=&gt;</span> <span class="p">{</span> <span class="c1">// Only allow internal redirects to specific paths</span> <span class="k">return</span> <span class="nx">url</span><span class="p">.</span><span class="nf">startsWith</span><span class="p">(</span><span class="dl">'</span><span class="s1">/dashboard</span><span class="dl">'</span><span class="p">)</span> <span class="o">||</span> <span class="nx">url</span><span class="p">.</span><span class="nf">startsWith</span><span class="p">(</span><span class="dl">'</span><span class="s1">/profile</span><span class="dl">'</span><span class="p">)</span> <span class="p">}</span> <span class="c1">// In login handler:</span> <span class="kd">const</span> <span class="nx">redirectUrl</span> <span class="o">=</span> <span class="nx">searchParams</span><span class="p">.</span><span class="nf">get</span><span class="p">(</span><span class="dl">'</span><span class="s1">redirect</span><span class="dl">'</span><span class="p">)</span> <span class="kd">const</span> <span class="nx">safeRedirectUrl</span> <span class="o">=</span> <span class="nx">redirectUrl</span> <span class="o">&amp;&amp;</span> <span class="nf">validateRedirectUrl</span><span class="p">(</span><span class="nx">redirectUrl</span><span class="p">)</span> <span class="p">?</span> <span class="nx">redirectUrl</span> <span class="p">:</span> <span class="dl">'</span><span class="s1">/dashboard</span><span class="dl">'</span> <span class="nx">router</span><span class="p">.</span><span class="nf">push</span><span class="p">(</span><span class="nx">safeRedirectUrl</span><span class="p">)</span> </code></pre> </div> <h2> Conclusion </h2> <p>This seemingly small fix dramatically improved our user experience. Users clicking lesson links in emails now seamlessly land on their intended lessons after authentication, rather than getting lost on a generic dashboard.</p> <p>The solution demonstrates how proper state preservation in authentication flows is crucial for maintaining user intent and creating smooth, professional web applications.</p> <p><strong>Technologies used</strong>: Next.js 15, TypeScript, Firebase Auth, Next.js Middleware</p> nextjs webdev learning tutorial Building a Next.js Landing Page with Google Sheets Integration and Google Cloud Run Deployment Dale Nguyen Wed, 20 Aug 2025 15:55:31 +0000 https://dev.to/dalenguyen/building-a-nextjs-landing-page-with-google-sheets-integration-and-google-cloud-run-deployment-1j07 https://dev.to/dalenguyen/building-a-nextjs-landing-page-with-google-sheets-integration-and-google-cloud-run-deployment-1j07 <p>Building a modern landing page that captures potential user emails is essential for any startup or product launch. In this comprehensive guide, I'll walk you through creating a Next.js 15 landing page that collects emails in Google Sheets and deploys seamlessly to Google Cloud Run.</p> <h2> What We'll Build </h2> <p>By the end of this tutorial, you'll have:</p> <ul> <li>A responsive Next.js 15 landing page with TypeScript</li> <li>Email signup form with validation and loading states</li> <li>Google Sheets integration to store collected emails</li> <li>Dockerized application ready for production</li> <li>Automated deployment to Google Cloud Run</li> <li>Cost-effective, scalable infrastructure</li> </ul> <p><a href="https://media2.dev.to/dynamic/image/width=800%2Cheight=%2Cfit=scale-down%2Cgravity=auto%2Cformat=auto/https%3A%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Farticles%2F2phuemk9r27xfmibo4kn.gif" class="article-body-image-wrapper"><img src="https://media2.dev.to/dynamic/image/width=800%2Cheight=%2Cfit=scale-down%2Cgravity=auto%2Cformat=auto/https%3A%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Farticles%2F2phuemk9r27xfmibo4kn.gif" alt="Landing page example" width="760" height="454"></a></p> <h2> Prerequisites </h2> <ul> <li>Node.js 20+ and pnpm installed</li> <li>Google Cloud Platform account</li> <li>Basic knowledge of React and TypeScript</li> <li>Docker installed (for local testing)</li> </ul> <h2> Project Setup </h2> <h3> 1. Initialize the Next.js Project </h3> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code><span class="c"># Create Next.js project with TypeScript</span> npx create-next-app@latest landing <span class="nt">--typescript</span> <span class="nt">--tailwind</span> <span class="nt">--app</span> <span class="nb">cd </span>landing </code></pre> </div> <h3> 2. Install Dependencies </h3> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code><span class="c"># Install Google APIs client</span> pnpm add googleapis <span class="c"># Install development dependencies</span> pnpm add <span class="nt">-D</span> @types/node </code></pre> </div> <h2> Building the Email Signup Component </h2> <h3> 1. Create the Email Signup Component </h3> <p>Create <code>src/app/components/email-signup/email-signup.tsx</code>:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight tsx"><code><span class="dl">'</span><span class="s1">use client</span><span class="dl">'</span> <span class="k">import</span> <span class="p">{</span> <span class="nx">useState</span><span class="p">,</span> <span class="nx">useEffect</span> <span class="p">}</span> <span class="k">from</span> <span class="dl">'</span><span class="s1">react</span><span class="dl">'</span> <span class="kd">const</span> <span class="nx">EmailSignup</span> <span class="o">=</span> <span class="p">()</span> <span class="o">=&gt;</span> <span class="p">{</span> <span class="kd">const</span> <span class="p">[</span><span class="nx">email</span><span class="p">,</span> <span class="nx">setEmail</span><span class="p">]</span> <span class="o">=</span> <span class="nf">useState</span><span class="p">(</span><span class="dl">''</span><span class="p">)</span> <span class="kd">const</span> <span class="p">[</span><span class="nx">status</span><span class="p">,</span> <span class="nx">setStatus</span><span class="p">]</span> <span class="o">=</span> <span class="nx">useState</span><span class="o">&lt;</span><span class="dl">'</span><span class="s1">idle</span><span class="dl">'</span> <span class="o">|</span> <span class="dl">'</span><span class="s1">loading</span><span class="dl">'</span> <span class="o">|</span> <span class="dl">'</span><span class="s1">success</span><span class="dl">'</span> <span class="o">|</span> <span class="dl">'</span><span class="s1">error</span><span class="dl">'</span><span class="o">&gt;</span><span class="p">(</span><span class="dl">'</span><span class="s1">idle</span><span class="dl">'</span><span class="p">)</span> <span class="kd">const</span> <span class="p">[</span><span class="nx">message</span><span class="p">,</span> <span class="nx">setMessage</span><span class="p">]</span> <span class="o">=</span> <span class="nf">useState</span><span class="p">(</span><span class="dl">''</span><span class="p">)</span> <span class="kd">const</span> <span class="nx">validateEmail</span> <span class="o">=</span> <span class="p">(</span><span class="na">email</span><span class="p">:</span> <span class="kr">string</span><span class="p">):</span> <span class="nx">boolean</span> <span class="o">=&gt;</span> <span class="p">{</span> <span class="kd">const</span> <span class="nx">emailRegex</span> <span class="o">=</span> <span class="sr">/^</span><span class="se">[^\s</span><span class="sr">@</span><span class="se">]</span><span class="sr">+@</span><span class="se">[^\s</span><span class="sr">@</span><span class="se">]</span><span class="sr">+</span><span class="se">\.[^\s</span><span class="sr">@</span><span class="se">]</span><span class="sr">+$/</span> <span class="k">return</span> <span class="nx">emailRegex</span><span class="p">.</span><span class="nf">test</span><span class="p">(</span><span class="nx">email</span><span class="p">)</span> <span class="p">}</span> <span class="kd">const</span> <span class="nx">handleSubmit</span> <span class="o">=</span> <span class="k">async </span><span class="p">(</span><span class="na">e</span><span class="p">:</span> <span class="nx">React</span><span class="p">.</span><span class="nx">FormEvent</span><span class="p">)</span> <span class="o">=&gt;</span> <span class="p">{</span> <span class="nx">e</span><span class="p">.</span><span class="nf">preventDefault</span><span class="p">()</span> <span class="k">if </span><span class="p">(</span><span class="o">!</span><span class="nf">validateEmail</span><span class="p">(</span><span class="nx">email</span><span class="p">))</span> <span class="p">{</span> <span class="nf">setStatus</span><span class="p">(</span><span class="dl">'</span><span class="s1">error</span><span class="dl">'</span><span class="p">)</span> <span class="nf">setMessage</span><span class="p">(</span><span class="dl">'</span><span class="s1">Please enter a valid email address</span><span class="dl">'</span><span class="p">)</span> <span class="k">return</span> <span class="p">}</span> <span class="nf">setStatus</span><span class="p">(</span><span class="dl">'</span><span class="s1">loading</span><span class="dl">'</span><span class="p">)</span> <span class="nf">setMessage</span><span class="p">(</span><span class="dl">''</span><span class="p">)</span> <span class="k">try</span> <span class="p">{</span> <span class="kd">const</span> <span class="nx">response</span> <span class="o">=</span> <span class="k">await</span> <span class="nf">fetch</span><span class="p">(</span><span class="dl">'</span><span class="s1">/api/v1/email-signup</span><span class="dl">'</span><span class="p">,</span> <span class="p">{</span> <span class="na">method</span><span class="p">:</span> <span class="dl">'</span><span class="s1">POST</span><span class="dl">'</span><span class="p">,</span> <span class="na">headers</span><span class="p">:</span> <span class="p">{</span> <span class="dl">'</span><span class="s1">Content-Type</span><span class="dl">'</span><span class="p">:</span> <span class="dl">'</span><span class="s1">application/json</span><span class="dl">'</span><span class="p">,</span> <span class="p">},</span> <span class="na">body</span><span class="p">:</span> <span class="nx">JSON</span><span class="p">.</span><span class="nf">stringify</span><span class="p">({</span> <span class="nx">email</span> <span class="p">}),</span> <span class="p">})</span> <span class="k">if </span><span class="p">(</span><span class="nx">response</span><span class="p">.</span><span class="nx">ok</span><span class="p">)</span> <span class="p">{</span> <span class="nf">setStatus</span><span class="p">(</span><span class="dl">'</span><span class="s1">success</span><span class="dl">'</span><span class="p">)</span> <span class="nf">setMessage</span><span class="p">(</span><span class="dl">'</span><span class="s1">Thank you for subscribing!</span><span class="dl">'</span><span class="p">)</span> <span class="nf">setEmail</span><span class="p">(</span><span class="dl">''</span><span class="p">)</span> <span class="p">}</span> <span class="k">else</span> <span class="p">{</span> <span class="k">throw</span> <span class="k">new</span> <span class="nc">Error</span><span class="p">(</span><span class="dl">'</span><span class="s1">Subscription failed</span><span class="dl">'</span><span class="p">)</span> <span class="p">}</span> <span class="p">}</span> <span class="k">catch </span><span class="p">(</span><span class="nx">error</span><span class="p">)</span> <span class="p">{</span> <span class="nf">setStatus</span><span class="p">(</span><span class="dl">'</span><span class="s1">error</span><span class="dl">'</span><span class="p">)</span> <span class="nf">setMessage</span><span class="p">(</span><span class="dl">'</span><span class="s1">Something went wrong. Please try again.</span><span class="dl">'</span><span class="p">)</span> <span class="p">}</span> <span class="p">}</span> <span class="k">return </span><span class="p">(</span> <span class="p">&lt;</span><span class="nt">section</span> <span class="na">className</span><span class="p">=</span><span class="s">"relative py-24 bg-gradient-to-br from-blue-600 via-purple-600 to-indigo-700"</span><span class="p">&gt;</span> <span class="p">&lt;</span><span class="nt">div</span> <span class="na">className</span><span class="p">=</span><span class="s">"container relative z-10"</span><span class="p">&gt;</span> <span class="p">&lt;</span><span class="nt">div</span> <span class="na">className</span><span class="p">=</span><span class="s">"text-center max-w-2xl mx-auto"</span><span class="p">&gt;</span> <span class="p">&lt;</span><span class="nt">h2</span> <span class="na">className</span><span class="p">=</span><span class="s">"mb-6 text-3xl md:text-4xl font-bold text-white"</span><span class="p">&gt;</span>Stay updated with the latest<span class="p">&lt;/</span><span class="nt">h2</span><span class="p">&gt;</span> <span class="p">&lt;</span><span class="nt">p</span> <span class="na">className</span><span class="p">=</span><span class="s">"mb-10 text-xl text-blue-100"</span><span class="p">&gt;</span>Get the latest updates delivered to your inbox.<span class="p">&lt;/</span><span class="nt">p</span><span class="p">&gt;</span> <span class="p">&lt;</span><span class="nt">form</span> <span class="na">onSubmit</span><span class="p">=</span><span class="si">{</span><span class="nx">handleSubmit</span><span class="si">}</span> <span class="na">className</span><span class="p">=</span><span class="s">"flex flex-col sm:flex-row gap-4 max-w-md mx-auto mb-8"</span><span class="p">&gt;</span> <span class="p">&lt;</span><span class="nt">input</span> <span class="na">type</span><span class="p">=</span><span class="s">"email"</span> <span class="na">required</span> <span class="na">className</span><span class="p">=</span><span class="s">"flex-1 px-6 py-4 text-lg bg-white/10 backdrop-blur-sm border border-white/20 rounded-2xl text-white placeholder:text-blue-200 focus:outline-none focus:ring-2 focus:ring-white/50"</span> <span class="na">placeholder</span><span class="p">=</span><span class="s">"Enter your email"</span> <span class="na">value</span><span class="p">=</span><span class="si">{</span><span class="nx">email</span><span class="si">}</span> <span class="na">onChange</span><span class="p">=</span><span class="si">{</span><span class="p">(</span><span class="nx">e</span><span class="p">)</span> <span class="o">=&gt;</span> <span class="nf">setEmail</span><span class="p">(</span><span class="nx">e</span><span class="p">.</span><span class="nx">target</span><span class="p">.</span><span class="nx">value</span><span class="p">)</span><span class="si">}</span> <span class="na">disabled</span><span class="p">=</span><span class="si">{</span><span class="nx">status</span> <span class="o">===</span> <span class="dl">'</span><span class="s1">loading</span><span class="dl">'</span><span class="si">}</span> <span class="p">/&gt;</span> <span class="p">&lt;</span><span class="nt">button</span> <span class="na">type</span><span class="p">=</span><span class="s">"submit"</span> <span class="na">disabled</span><span class="p">=</span><span class="si">{</span><span class="nx">status</span> <span class="o">===</span> <span class="dl">'</span><span class="s1">loading</span><span class="dl">'</span><span class="si">}</span> <span class="na">className</span><span class="p">=</span><span class="s">"px-8 py-4 bg-white text-blue-600 rounded-2xl font-semibold hover:bg-blue-50 disabled:opacity-50 transition-all"</span> <span class="p">&gt;</span> <span class="si">{</span><span class="nx">status</span> <span class="o">===</span> <span class="dl">'</span><span class="s1">loading</span><span class="dl">'</span> <span class="p">?</span> <span class="dl">'</span><span class="s1">Subscribing...</span><span class="dl">'</span> <span class="p">:</span> <span class="dl">'</span><span class="s1">Subscribe</span><span class="dl">'</span><span class="si">}</span> <span class="p">&lt;/</span><span class="nt">button</span><span class="p">&gt;</span> <span class="p">&lt;/</span><span class="nt">form</span><span class="p">&gt;</span> <span class="si">{</span><span class="nx">message</span> <span class="o">&amp;&amp;</span> <span class="p">(</span> <span class="p">&lt;</span><span class="nt">p</span> <span class="na">className</span><span class="p">=</span><span class="si">{</span><span class="s2">`mb-6 text-lg font-medium </span><span class="p">${</span><span class="nx">status</span> <span class="o">===</span> <span class="dl">'</span><span class="s1">success</span><span class="dl">'</span> <span class="p">?</span> <span class="dl">'</span><span class="s1">text-green-400</span><span class="dl">'</span> <span class="p">:</span> <span class="dl">'</span><span class="s1">text-red-400</span><span class="dl">'</span><span class="p">}</span><span class="s2">`</span><span class="si">}</span><span class="p">&gt;</span> <span class="si">{</span><span class="nx">message</span><span class="si">}</span> <span class="p">&lt;/</span><span class="nt">p</span><span class="p">&gt;</span> <span class="p">)</span><span class="si">}</span> <span class="p">&lt;/</span><span class="nt">div</span><span class="p">&gt;</span> <span class="p">&lt;/</span><span class="nt">div</span><span class="p">&gt;</span> <span class="p">&lt;/</span><span class="nt">section</span><span class="p">&gt;</span> <span class="p">)</span> <span class="p">}</span> <span class="k">export</span> <span class="k">default</span> <span class="nx">EmailSignup</span> </code></pre> </div> <h2> Google Sheets Integration </h2> <h3> 1. Create Google Sheets Service </h3> <p>Create <code>src/lib/google-sheets.ts</code>:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight typescript"><code><span class="k">import</span> <span class="p">{</span> <span class="nx">google</span> <span class="p">}</span> <span class="k">from</span> <span class="dl">'</span><span class="s1">googleapis</span><span class="dl">'</span> <span class="k">export</span> <span class="kr">interface</span> <span class="nx">EmailSignupData</span> <span class="p">{</span> <span class="nl">email</span><span class="p">:</span> <span class="kr">string</span> <span class="nx">timestamp</span><span class="p">:</span> <span class="kr">string</span> <span class="nx">source</span><span class="p">?:</span> <span class="kr">string</span> <span class="p">}</span> <span class="kd">class</span> <span class="nc">GoogleSheetsService</span> <span class="p">{</span> <span class="k">private</span> <span class="nx">auth</span> <span class="k">private</span> <span class="nx">sheets</span> <span class="nf">constructor</span><span class="p">()</span> <span class="p">{</span> <span class="c1">// Use Application Default Credentials (Cloud Run provides this automatically)</span> <span class="k">this</span><span class="p">.</span><span class="nx">auth</span> <span class="o">=</span> <span class="k">new</span> <span class="nx">google</span><span class="p">.</span><span class="nx">auth</span><span class="p">.</span><span class="nc">GoogleAuth</span><span class="p">({</span> <span class="na">scopes</span><span class="p">:</span> <span class="p">[</span><span class="dl">'</span><span class="s1">https://www.googleapis.com/auth/spreadsheets</span><span class="dl">'</span><span class="p">],</span> <span class="p">})</span> <span class="k">this</span><span class="p">.</span><span class="nx">sheets</span> <span class="o">=</span> <span class="nx">google</span><span class="p">.</span><span class="nf">sheets</span><span class="p">({</span> <span class="na">version</span><span class="p">:</span> <span class="dl">'</span><span class="s1">v4</span><span class="dl">'</span><span class="p">,</span> <span class="na">auth</span><span class="p">:</span> <span class="k">this</span><span class="p">.</span><span class="nx">auth</span> <span class="p">})</span> <span class="p">}</span> <span class="k">async</span> <span class="nf">saveEmailSignup</span><span class="p">(</span><span class="nx">data</span><span class="p">:</span> <span class="nx">EmailSignupData</span><span class="p">):</span> <span class="nb">Promise</span><span class="o">&lt;</span><span class="k">void</span><span class="o">&gt;</span> <span class="p">{</span> <span class="kd">const</span> <span class="nx">spreadsheetId</span> <span class="o">=</span> <span class="nx">process</span><span class="p">.</span><span class="nx">env</span><span class="p">.</span><span class="nx">GOOGLE_SHEETS_ID</span> <span class="k">if </span><span class="p">(</span><span class="o">!</span><span class="nx">spreadsheetId</span><span class="p">)</span> <span class="p">{</span> <span class="k">throw</span> <span class="k">new</span> <span class="nc">Error</span><span class="p">(</span><span class="dl">'</span><span class="s1">Google Sheets ID not configured</span><span class="dl">'</span><span class="p">)</span> <span class="p">}</span> <span class="kd">const</span> <span class="nx">values</span> <span class="o">=</span> <span class="p">[[</span><span class="nx">data</span><span class="p">.</span><span class="nx">email</span><span class="p">,</span> <span class="nx">data</span><span class="p">.</span><span class="nx">timestamp</span><span class="p">,</span> <span class="nx">data</span><span class="p">.</span><span class="nx">source</span> <span class="o">||</span> <span class="dl">'</span><span class="s1">landing-page</span><span class="dl">'</span><span class="p">]]</span> <span class="k">try</span> <span class="p">{</span> <span class="k">await</span> <span class="k">this</span><span class="p">.</span><span class="nx">sheets</span><span class="p">.</span><span class="nx">spreadsheets</span><span class="p">.</span><span class="nx">values</span><span class="p">.</span><span class="nf">append</span><span class="p">({</span> <span class="nx">spreadsheetId</span><span class="p">,</span> <span class="na">range</span><span class="p">:</span> <span class="dl">'</span><span class="s1">Sheet1!A:C</span><span class="dl">'</span><span class="p">,</span> <span class="na">valueInputOption</span><span class="p">:</span> <span class="dl">'</span><span class="s1">USER_ENTERED</span><span class="dl">'</span><span class="p">,</span> <span class="na">requestBody</span><span class="p">:</span> <span class="p">{</span> <span class="nx">values</span><span class="p">,</span> <span class="p">},</span> <span class="p">})</span> <span class="p">}</span> <span class="k">catch </span><span class="p">(</span><span class="nx">error</span><span class="p">)</span> <span class="p">{</span> <span class="nx">console</span><span class="p">.</span><span class="nf">error</span><span class="p">(</span><span class="dl">'</span><span class="s1">Error saving to Google Sheets:</span><span class="dl">'</span><span class="p">,</span> <span class="nx">error</span><span class="p">)</span> <span class="k">throw</span> <span class="nx">error</span> <span class="p">}</span> <span class="p">}</span> <span class="k">async</span> <span class="nf">setupSheet</span><span class="p">():</span> <span class="nb">Promise</span><span class="o">&lt;</span><span class="k">void</span><span class="o">&gt;</span> <span class="p">{</span> <span class="kd">const</span> <span class="nx">spreadsheetId</span> <span class="o">=</span> <span class="nx">process</span><span class="p">.</span><span class="nx">env</span><span class="p">.</span><span class="nx">GOOGLE_SHEETS_ID</span> <span class="k">if </span><span class="p">(</span><span class="o">!</span><span class="nx">spreadsheetId</span><span class="p">)</span> <span class="p">{</span> <span class="k">throw</span> <span class="k">new</span> <span class="nc">Error</span><span class="p">(</span><span class="dl">'</span><span class="s1">Google Sheets ID not configured</span><span class="dl">'</span><span class="p">)</span> <span class="p">}</span> <span class="k">try</span> <span class="p">{</span> <span class="c1">// Add headers if sheet is empty</span> <span class="kd">const</span> <span class="nx">response</span> <span class="o">=</span> <span class="k">await</span> <span class="k">this</span><span class="p">.</span><span class="nx">sheets</span><span class="p">.</span><span class="nx">spreadsheets</span><span class="p">.</span><span class="nx">values</span><span class="p">.</span><span class="nf">get</span><span class="p">({</span> <span class="nx">spreadsheetId</span><span class="p">,</span> <span class="na">range</span><span class="p">:</span> <span class="dl">'</span><span class="s1">Sheet1!A1:C1</span><span class="dl">'</span><span class="p">,</span> <span class="p">})</span> <span class="k">if </span><span class="p">(</span><span class="o">!</span><span class="nx">response</span><span class="p">.</span><span class="nx">data</span><span class="p">.</span><span class="nx">values</span> <span class="o">||</span> <span class="nx">response</span><span class="p">.</span><span class="nx">data</span><span class="p">.</span><span class="nx">values</span><span class="p">.</span><span class="nx">length</span> <span class="o">===</span> <span class="mi">0</span><span class="p">)</span> <span class="p">{</span> <span class="k">await</span> <span class="k">this</span><span class="p">.</span><span class="nx">sheets</span><span class="p">.</span><span class="nx">spreadsheets</span><span class="p">.</span><span class="nx">values</span><span class="p">.</span><span class="nf">update</span><span class="p">({</span> <span class="nx">spreadsheetId</span><span class="p">,</span> <span class="na">range</span><span class="p">:</span> <span class="dl">'</span><span class="s1">Sheet1!A1:C1</span><span class="dl">'</span><span class="p">,</span> <span class="na">valueInputOption</span><span class="p">:</span> <span class="dl">'</span><span class="s1">USER_ENTERED</span><span class="dl">'</span><span class="p">,</span> <span class="na">requestBody</span><span class="p">:</span> <span class="p">{</span> <span class="na">values</span><span class="p">:</span> <span class="p">[[</span><span class="dl">'</span><span class="s1">Email</span><span class="dl">'</span><span class="p">,</span> <span class="dl">'</span><span class="s1">Timestamp</span><span class="dl">'</span><span class="p">,</span> <span class="dl">'</span><span class="s1">Source</span><span class="dl">'</span><span class="p">]],</span> <span class="p">},</span> <span class="p">})</span> <span class="p">}</span> <span class="p">}</span> <span class="k">catch </span><span class="p">(</span><span class="nx">error</span><span class="p">)</span> <span class="p">{</span> <span class="nx">console</span><span class="p">.</span><span class="nf">error</span><span class="p">(</span><span class="dl">'</span><span class="s1">Error setting up Google Sheets:</span><span class="dl">'</span><span class="p">,</span> <span class="nx">error</span><span class="p">)</span> <span class="k">throw</span> <span class="nx">error</span> <span class="p">}</span> <span class="p">}</span> <span class="p">}</span> <span class="k">export</span> <span class="kd">const</span> <span class="nx">googleSheetsService</span> <span class="o">=</span> <span class="k">new</span> <span class="nc">GoogleSheetsService</span><span class="p">()</span> </code></pre> </div> <h3> 2. Create API Route </h3> <p>Create <code>src/app/api/v1/email-signup/route.ts</code>:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight typescript"><code><span class="k">import</span> <span class="p">{</span> <span class="nx">NextRequest</span><span class="p">,</span> <span class="nx">NextResponse</span> <span class="p">}</span> <span class="k">from</span> <span class="dl">'</span><span class="s1">next/server</span><span class="dl">'</span> <span class="k">import</span> <span class="p">{</span> <span class="nx">googleSheetsService</span> <span class="p">}</span> <span class="k">from</span> <span class="dl">'</span><span class="s1">../../../../lib/google-sheets</span><span class="dl">'</span> <span class="k">export</span> <span class="k">async</span> <span class="kd">function</span> <span class="nf">POST</span><span class="p">(</span><span class="nx">request</span><span class="p">:</span> <span class="nx">NextRequest</span><span class="p">)</span> <span class="p">{</span> <span class="k">try</span> <span class="p">{</span> <span class="kd">const</span> <span class="nx">body</span> <span class="o">=</span> <span class="k">await</span> <span class="nx">request</span><span class="p">.</span><span class="nf">json</span><span class="p">()</span> <span class="kd">const</span> <span class="p">{</span> <span class="nx">email</span> <span class="p">}</span> <span class="o">=</span> <span class="nx">body</span> <span class="c1">// Validate email</span> <span class="k">if </span><span class="p">(</span><span class="o">!</span><span class="nx">email</span> <span class="o">||</span> <span class="k">typeof</span> <span class="nx">email</span> <span class="o">!==</span> <span class="dl">'</span><span class="s1">string</span><span class="dl">'</span><span class="p">)</span> <span class="p">{</span> <span class="k">return</span> <span class="nx">NextResponse</span><span class="p">.</span><span class="nf">json</span><span class="p">({</span> <span class="na">error</span><span class="p">:</span> <span class="dl">'</span><span class="s1">Email is required</span><span class="dl">'</span> <span class="p">},</span> <span class="p">{</span> <span class="na">status</span><span class="p">:</span> <span class="mi">400</span> <span class="p">})</span> <span class="p">}</span> <span class="kd">const</span> <span class="nx">emailRegex</span> <span class="o">=</span> <span class="sr">/^</span><span class="se">[^\s</span><span class="sr">@</span><span class="se">]</span><span class="sr">+@</span><span class="se">[^\s</span><span class="sr">@</span><span class="se">]</span><span class="sr">+</span><span class="se">\.[^\s</span><span class="sr">@</span><span class="se">]</span><span class="sr">+$/</span> <span class="k">if </span><span class="p">(</span><span class="o">!</span><span class="nx">emailRegex</span><span class="p">.</span><span class="nf">test</span><span class="p">(</span><span class="nx">email</span><span class="p">))</span> <span class="p">{</span> <span class="k">return</span> <span class="nx">NextResponse</span><span class="p">.</span><span class="nf">json</span><span class="p">({</span> <span class="na">error</span><span class="p">:</span> <span class="dl">'</span><span class="s1">Invalid email format</span><span class="dl">'</span> <span class="p">},</span> <span class="p">{</span> <span class="na">status</span><span class="p">:</span> <span class="mi">400</span> <span class="p">})</span> <span class="p">}</span> <span class="c1">// Save to Google Sheets</span> <span class="k">try</span> <span class="p">{</span> <span class="k">await</span> <span class="nx">googleSheetsService</span><span class="p">.</span><span class="nf">saveEmailSignup</span><span class="p">({</span> <span class="nx">email</span><span class="p">,</span> <span class="na">timestamp</span><span class="p">:</span> <span class="k">new</span> <span class="nc">Date</span><span class="p">().</span><span class="nf">toISOString</span><span class="p">(),</span> <span class="na">source</span><span class="p">:</span> <span class="dl">'</span><span class="s1">landing-waitlist</span><span class="dl">'</span><span class="p">,</span> <span class="p">})</span> <span class="nx">console</span><span class="p">.</span><span class="nf">log</span><span class="p">(</span><span class="dl">'</span><span class="s1">Email saved to Google Sheets:</span><span class="dl">'</span><span class="p">,</span> <span class="nx">email</span><span class="p">)</span> <span class="p">}</span> <span class="k">catch </span><span class="p">(</span><span class="nx">sheetsError</span><span class="p">)</span> <span class="p">{</span> <span class="nx">console</span><span class="p">.</span><span class="nf">error</span><span class="p">(</span><span class="dl">'</span><span class="s1">Failed to save to Google Sheets:</span><span class="dl">'</span><span class="p">,</span> <span class="nx">sheetsError</span><span class="p">)</span> <span class="c1">// Continue with success response even if sheets fails</span> <span class="p">}</span> <span class="k">return</span> <span class="nx">NextResponse</span><span class="p">.</span><span class="nf">json</span><span class="p">({</span> <span class="na">message</span><span class="p">:</span> <span class="dl">'</span><span class="s1">Email subscribed successfully</span><span class="dl">'</span> <span class="p">},</span> <span class="p">{</span> <span class="na">status</span><span class="p">:</span> <span class="mi">200</span> <span class="p">})</span> <span class="p">}</span> <span class="k">catch </span><span class="p">(</span><span class="nx">error</span><span class="p">)</span> <span class="p">{</span> <span class="nx">console</span><span class="p">.</span><span class="nf">error</span><span class="p">(</span><span class="dl">'</span><span class="s1">Email signup error:</span><span class="dl">'</span><span class="p">,</span> <span class="nx">error</span><span class="p">)</span> <span class="k">return</span> <span class="nx">NextResponse</span><span class="p">.</span><span class="nf">json</span><span class="p">({</span> <span class="na">error</span><span class="p">:</span> <span class="dl">'</span><span class="s1">Internal server error</span><span class="dl">'</span> <span class="p">},</span> <span class="p">{</span> <span class="na">status</span><span class="p">:</span> <span class="mi">500</span> <span class="p">})</span> <span class="p">}</span> <span class="p">}</span> </code></pre> </div> <h2> Dockerization for Production </h2> <h3> 1. Configure Next.js for Standalone Output </h3> <p>Update <code>next.config.js</code>:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight javascript"><code><span class="cm">/** @type {import('next').NextConfig} */</span> <span class="kd">const</span> <span class="nx">nextConfig</span> <span class="o">=</span> <span class="p">{</span> <span class="c1">// Enable standalone output for Docker</span> <span class="na">output</span><span class="p">:</span> <span class="dl">'</span><span class="s1">standalone</span><span class="dl">'</span><span class="p">,</span> <span class="c1">// Enable compression in production</span> <span class="na">compress</span><span class="p">:</span> <span class="kc">true</span><span class="p">,</span> <span class="c1">// Optimize for production</span> <span class="na">experimental</span><span class="p">:</span> <span class="p">{</span> <span class="na">optimizePackageImports</span><span class="p">:</span> <span class="p">[</span><span class="dl">'</span><span class="s1">lucide-react</span><span class="dl">'</span><span class="p">],</span> <span class="p">},</span> <span class="p">}</span> <span class="nx">module</span><span class="p">.</span><span class="nx">exports</span> <span class="o">=</span> <span class="nx">nextConfig</span> </code></pre> </div> <h3> 2. Create Dockerfile </h3> <p>Create <code>Dockerfile</code>:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight docker"><code><span class="c"># Minimal production image for built Next.js app</span> <span class="k">FROM</span><span class="w"> </span><span class="s">node:20-alpine</span><span class="w"> </span><span class="k">AS</span><span class="w"> </span><span class="s">production</span> <span class="k">WORKDIR</span><span class="s"> /app</span> <span class="c"># Copy the standalone build (includes dependencies, server, and app)</span> <span class="k">COPY</span><span class="s"> .next/standalone/ ./</span> <span class="c"># Copy static files</span> <span class="k">COPY</span><span class="s"> public ./public</span> <span class="k">COPY</span><span class="s"> .next/static ./.next/static</span> <span class="c"># Set environment</span> <span class="k">ENV</span><span class="s"> NODE_ENV=production</span> <span class="k">ENV</span><span class="s"> PORT=3000</span> <span class="c"># Create a non-root user</span> <span class="k">RUN </span>addgroup <span class="nt">-g</span> 1001 <span class="nt">-S</span> nodejs <span class="o">&amp;&amp;</span> <span class="se">\ </span> adduser <span class="nt">-S</span> nextjs <span class="nt">-u</span> 1001 <span class="c"># Change ownership of the application files</span> <span class="k">RUN </span><span class="nb">chown</span> <span class="nt">-R</span> nextjs:nodejs /app <span class="k">USER</span><span class="s"> nextjs</span> <span class="c"># Expose port</span> <span class="k">EXPOSE</span><span class="s"> 3000</span> <span class="c"># Start the standalone server</span> <span class="k">CMD</span><span class="s"> ["node", "server.js"]</span> </code></pre> </div> <h3> 3. Build and Test Locally </h3> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code><span class="c"># Build the Next.js application</span> npm run build <span class="c"># Build Docker image</span> docker build <span class="nt">-t</span> landing-page <span class="nb">.</span> <span class="c"># Test locally</span> docker run <span class="nt">-p</span> 3000:3000 <span class="nt">-e</span> <span class="nv">GOOGLE_SHEETS_ID</span><span class="o">=</span>your-sheet-id landing-page </code></pre> </div> <h2> Google Cloud Setup </h2> <h3> 1. Create Google Cloud Resources </h3> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code><span class="c"># Login to Google Cloud</span> gcloud auth login <span class="c"># Set your project</span> gcloud config <span class="nb">set </span>project YOUR-PROJECT-ID <span class="c"># Enable required APIs</span> gcloud services <span class="nb">enable </span>run.googleapis.com gcloud services <span class="nb">enable </span>sheets.googleapis.com <span class="c"># Create a service account</span> gcloud iam service-accounts create workwrite-sheets <span class="se">\</span> <span class="nt">--display-name</span><span class="o">=</span><span class="s2">"WorkWrite Sheets Service Account"</span> <span class="c"># Grant Google Sheets access</span> gcloud projects add-iam-policy-binding YOUR-PROJECT-ID <span class="se">\</span> <span class="nt">--member</span><span class="o">=</span><span class="s2">"serviceAccount:workwrite-sheets@YOUR-PROJECT-ID.iam.gserviceaccount.com"</span> <span class="se">\</span> <span class="nt">--role</span><span class="o">=</span><span class="s2">"roles/editor"</span> </code></pre> </div> <h3> 2. Create Google Sheet </h3> <ol> <li>Go to <a href="https://sheets.google.com" rel="noopener noreferrer">Google Sheets</a> </li> <li>Create a new spreadsheet</li> <li>Copy the spreadsheet ID from the URL</li> <li>Share the sheet with your service account email</li> </ol> <h3> 3. Build and Push to Google Cloud Registry </h3> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code><span class="c"># Configure Docker to use gcloud</span> gcloud auth configure-docker us-central1-docker.pkg.dev <span class="c"># Create Artifact Registry repository</span> gcloud artifacts repositories create workwrite-repo <span class="se">\</span> <span class="nt">--repository-format</span><span class="o">=</span>docker <span class="se">\</span> <span class="nt">--location</span><span class="o">=</span>us-central1 <span class="c"># Build and tag image</span> docker build <span class="nt">--platform</span> linux/amd64 <span class="nt">-t</span> us-central1-docker.pkg.dev/YOUR-PROJECT-ID/workwrite-repo/workwrite-landing <span class="nb">.</span> <span class="c"># Push to registry</span> docker push us-central1-docker.pkg.dev/YOUR-PROJECT-ID/workwrite-repo/workwrite-landing </code></pre> </div> <h2> Deployment to Google Cloud Run </h2> <h3> 1. Deploy with Cloud Run </h3> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code>gcloud run deploy workwrite-landing <span class="se">\</span> <span class="nt">--image</span> us-central1-docker.pkg.dev/YOUR-PROJECT-ID/workwrite-repo/workwrite-landing <span class="se">\</span> <span class="nt">--region</span> us-central1 <span class="se">\</span> <span class="nt">--platform</span> managed <span class="se">\</span> <span class="nt">--allow-unauthenticated</span> <span class="se">\</span> <span class="nt">--service-account</span> workwrite-sheets@YOUR-PROJECT-ID.iam.gserviceaccount.com <span class="se">\</span> <span class="nt">--set-env-vars</span> <span class="nv">GOOGLE_SHEETS_ID</span><span class="o">=</span>YOUR-SHEET-ID <span class="se">\</span> <span class="nt">--port</span> 3000 <span class="se">\</span> <span class="nt">--memory</span> 1Gi <span class="se">\</span> <span class="nt">--cpu</span> 1 <span class="se">\</span> <span class="nt">--max-instances</span> 10 <span class="se">\</span> <span class="nt">--timeout</span> 300 </code></pre> </div> <h3> 2. Automated Deployment with Scripts </h3> <p>Create deployment scripts in your <code>package.json</code>:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight json"><code><span class="p">{</span><span class="w"> </span><span class="nl">"scripts"</span><span class="p">:</span><span class="w"> </span><span class="p">{</span><span class="w"> </span><span class="nl">"docker:build"</span><span class="p">:</span><span class="w"> </span><span class="s2">"docker build --platform linux/amd64 -t us-central1-docker.pkg.dev/YOUR-PROJECT-ID/workwrite-repo/workwrite-landing ."</span><span class="p">,</span><span class="w"> </span><span class="nl">"docker:push"</span><span class="p">:</span><span class="w"> </span><span class="s2">"docker push us-central1-docker.pkg.dev/YOUR-PROJECT-ID/workwrite-repo/workwrite-landing"</span><span class="p">,</span><span class="w"> </span><span class="nl">"deploy"</span><span class="p">:</span><span class="w"> </span><span class="s2">"npm run build &amp;&amp; npm run docker:build &amp;&amp; npm run docker:push &amp;&amp; gcloud run deploy workwrite-landing --image us-central1-docker.pkg.dev/YOUR-PROJECT-ID/workwrite-repo/workwrite-landing --region us-central1"</span><span class="w"> </span><span class="p">}</span><span class="w"> </span><span class="p">}</span><span class="w"> </span></code></pre> </div> <h2> Advanced Features </h2> <h3> 1. Environment Variables </h3> <p>Create <code>.env.local</code> for development:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code><span class="nv">GOOGLE_SHEETS_ID</span><span class="o">=</span>your-development-sheet-id </code></pre> </div> <h3> 2. Error Handling and Monitoring </h3> <p>Add comprehensive error handling in your API routes:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight typescript"><code><span class="k">export</span> <span class="k">async</span> <span class="kd">function</span> <span class="nf">POST</span><span class="p">(</span><span class="nx">request</span><span class="p">:</span> <span class="nx">NextRequest</span><span class="p">)</span> <span class="p">{</span> <span class="k">try</span> <span class="p">{</span> <span class="c1">// ... your existing code</span> <span class="p">}</span> <span class="k">catch </span><span class="p">(</span><span class="nx">error</span><span class="p">)</span> <span class="p">{</span> <span class="c1">// Log error for monitoring</span> <span class="nx">console</span><span class="p">.</span><span class="nf">error</span><span class="p">(</span><span class="dl">'</span><span class="s1">Email signup error:</span><span class="dl">'</span><span class="p">,</span> <span class="p">{</span> <span class="na">error</span><span class="p">:</span> <span class="nx">error</span><span class="p">.</span><span class="nx">message</span><span class="p">,</span> <span class="na">timestamp</span><span class="p">:</span> <span class="k">new</span> <span class="nc">Date</span><span class="p">().</span><span class="nf">toISOString</span><span class="p">(),</span> <span class="na">userAgent</span><span class="p">:</span> <span class="nx">request</span><span class="p">.</span><span class="nx">headers</span><span class="p">.</span><span class="nf">get</span><span class="p">(</span><span class="dl">'</span><span class="s1">user-agent</span><span class="dl">'</span><span class="p">),</span> <span class="p">})</span> <span class="k">return</span> <span class="nx">NextResponse</span><span class="p">.</span><span class="nf">json</span><span class="p">({</span> <span class="na">error</span><span class="p">:</span> <span class="dl">'</span><span class="s1">Internal server error</span><span class="dl">'</span> <span class="p">},</span> <span class="p">{</span> <span class="na">status</span><span class="p">:</span> <span class="mi">500</span> <span class="p">})</span> <span class="p">}</span> <span class="p">}</span> </code></pre> </div> <h3> 3. Rate Limiting </h3> <p>Implement rate limiting to prevent abuse:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight typescript"><code><span class="k">import</span> <span class="p">{</span> <span class="nx">NextRequest</span><span class="p">,</span> <span class="nx">NextResponse</span> <span class="p">}</span> <span class="k">from</span> <span class="dl">'</span><span class="s1">next/server</span><span class="dl">'</span> <span class="kd">const</span> <span class="nx">rateLimitMap</span> <span class="o">=</span> <span class="k">new</span> <span class="nc">Map</span><span class="p">()</span> <span class="k">export</span> <span class="k">async</span> <span class="kd">function</span> <span class="nf">POST</span><span class="p">(</span><span class="nx">request</span><span class="p">:</span> <span class="nx">NextRequest</span><span class="p">)</span> <span class="p">{</span> <span class="kd">const</span> <span class="nx">ip</span> <span class="o">=</span> <span class="nx">request</span><span class="p">.</span><span class="nx">ip</span> <span class="o">||</span> <span class="dl">'</span><span class="s1">unknown</span><span class="dl">'</span> <span class="kd">const</span> <span class="nx">limit</span> <span class="o">=</span> <span class="mi">5</span> <span class="c1">// 5 requests per minute</span> <span class="kd">const</span> <span class="nx">windowMs</span> <span class="o">=</span> <span class="mi">60</span> <span class="o">*</span> <span class="mi">1000</span> <span class="c1">// 1 minute</span> <span class="k">if </span><span class="p">(</span><span class="o">!</span><span class="nx">rateLimitMap</span><span class="p">.</span><span class="nf">has</span><span class="p">(</span><span class="nx">ip</span><span class="p">))</span> <span class="p">{</span> <span class="nx">rateLimitMap</span><span class="p">.</span><span class="nf">set</span><span class="p">(</span><span class="nx">ip</span><span class="p">,</span> <span class="p">{</span> <span class="na">count</span><span class="p">:</span> <span class="mi">0</span><span class="p">,</span> <span class="na">lastReset</span><span class="p">:</span> <span class="nb">Date</span><span class="p">.</span><span class="nf">now</span><span class="p">(),</span> <span class="p">})</span> <span class="p">}</span> <span class="kd">const</span> <span class="nx">user</span> <span class="o">=</span> <span class="nx">rateLimitMap</span><span class="p">.</span><span class="nf">get</span><span class="p">(</span><span class="nx">ip</span><span class="p">)</span> <span class="k">if </span><span class="p">(</span><span class="nb">Date</span><span class="p">.</span><span class="nf">now</span><span class="p">()</span> <span class="o">-</span> <span class="nx">user</span><span class="p">.</span><span class="nx">lastReset</span> <span class="o">&gt;</span> <span class="nx">windowMs</span><span class="p">)</span> <span class="p">{</span> <span class="nx">user</span><span class="p">.</span><span class="nx">count</span> <span class="o">=</span> <span class="mi">0</span> <span class="nx">user</span><span class="p">.</span><span class="nx">lastReset</span> <span class="o">=</span> <span class="nb">Date</span><span class="p">.</span><span class="nf">now</span><span class="p">()</span> <span class="p">}</span> <span class="k">if </span><span class="p">(</span><span class="nx">user</span><span class="p">.</span><span class="nx">count</span> <span class="o">&gt;=</span> <span class="nx">limit</span><span class="p">)</span> <span class="p">{</span> <span class="k">return</span> <span class="nx">NextResponse</span><span class="p">.</span><span class="nf">json</span><span class="p">({</span> <span class="na">error</span><span class="p">:</span> <span class="dl">'</span><span class="s1">Too many requests</span><span class="dl">'</span> <span class="p">},</span> <span class="p">{</span> <span class="na">status</span><span class="p">:</span> <span class="mi">429</span> <span class="p">})</span> <span class="p">}</span> <span class="nx">user</span><span class="p">.</span><span class="nx">count</span> <span class="o">+=</span> <span class="mi">1</span> <span class="c1">// ... rest of your code</span> <span class="p">}</span> </code></pre> </div> <h2> Performance Optimizations </h2> <h3> 1. Image Optimization </h3> <p>Add optimized images with Next.js Image component:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight tsx"><code><span class="k">import</span> <span class="nx">Image</span> <span class="k">from</span> <span class="dl">'</span><span class="s1">next/image</span><span class="dl">'</span> <span class="kd">const</span> <span class="nx">Hero</span> <span class="o">=</span> <span class="p">()</span> <span class="o">=&gt;</span> <span class="p">(</span> <span class="p">&lt;</span><span class="nt">section</span> <span class="na">className</span><span class="p">=</span><span class="s">"hero"</span><span class="p">&gt;</span> <span class="p">&lt;</span><span class="nc">Image</span> <span class="na">src</span><span class="p">=</span><span class="s">"/hero-image.jpg"</span> <span class="na">alt</span><span class="p">=</span><span class="s">"Hero"</span> <span class="na">width</span><span class="p">=</span><span class="si">{</span><span class="mi">800</span><span class="si">}</span> <span class="na">height</span><span class="p">=</span><span class="si">{</span><span class="mi">600</span><span class="si">}</span> <span class="na">priority</span> <span class="na">className</span><span class="p">=</span><span class="s">"rounded-lg"</span> <span class="p">/&gt;</span> <span class="p">&lt;/</span><span class="nt">section</span><span class="p">&gt;</span> <span class="p">)</span> </code></pre> </div> <h3> 2. SEO Optimization </h3> <p>Update <code>src/app/layout.tsx</code> with comprehensive metadata:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight tsx"><code><span class="k">import</span> <span class="kd">type</span> <span class="p">{</span> <span class="nx">Metadata</span> <span class="p">}</span> <span class="k">from</span> <span class="dl">'</span><span class="s1">next</span><span class="dl">'</span> <span class="k">export</span> <span class="kd">const</span> <span class="nx">metadata</span><span class="p">:</span> <span class="nx">Metadata</span> <span class="o">=</span> <span class="p">{</span> <span class="na">title</span><span class="p">:</span> <span class="dl">'</span><span class="s1">WorkWrite - AI-Powered Writing Platform</span><span class="dl">'</span><span class="p">,</span> <span class="na">description</span><span class="p">:</span> <span class="dl">'</span><span class="s1">Transform your writing workflow with AI.</span><span class="dl">'</span><span class="p">,</span> <span class="na">keywords</span><span class="p">:</span> <span class="p">[</span><span class="dl">'</span><span class="s1">writing</span><span class="dl">'</span><span class="p">,</span> <span class="dl">'</span><span class="s1">AI</span><span class="dl">'</span><span class="p">,</span> <span class="dl">'</span><span class="s1">productivity</span><span class="dl">'</span><span class="p">],</span> <span class="na">openGraph</span><span class="p">:</span> <span class="p">{</span> <span class="na">type</span><span class="p">:</span> <span class="dl">'</span><span class="s1">website</span><span class="dl">'</span><span class="p">,</span> <span class="na">locale</span><span class="p">:</span> <span class="dl">'</span><span class="s1">en_US</span><span class="dl">'</span><span class="p">,</span> <span class="na">url</span><span class="p">:</span> <span class="dl">'</span><span class="s1">https://workwrite.com</span><span class="dl">'</span><span class="p">,</span> <span class="na">title</span><span class="p">:</span> <span class="dl">'</span><span class="s1">WorkWrite - AI-Powered Writing Platform</span><span class="dl">'</span><span class="p">,</span> <span class="na">description</span><span class="p">:</span> <span class="dl">'</span><span class="s1">Transform your writing workflow with AI.</span><span class="dl">'</span><span class="p">,</span> <span class="na">images</span><span class="p">:</span> <span class="p">[</span> <span class="p">{</span> <span class="na">url</span><span class="p">:</span> <span class="dl">'</span><span class="s1">/og-image.jpg</span><span class="dl">'</span><span class="p">,</span> <span class="na">width</span><span class="p">:</span> <span class="mi">1200</span><span class="p">,</span> <span class="na">height</span><span class="p">:</span> <span class="mi">630</span><span class="p">,</span> <span class="na">alt</span><span class="p">:</span> <span class="dl">'</span><span class="s1">WorkWrite</span><span class="dl">'</span><span class="p">,</span> <span class="p">},</span> <span class="p">],</span> <span class="p">},</span> <span class="p">}</span> </code></pre> </div> <h2> Cost Optimization </h2> <h3> 1. Cloud Run Pricing </h3> <p>Google Cloud Run pricing is based on:</p> <ul> <li> <strong>CPU and Memory</strong>: Pay per 100ms of usage</li> <li> <strong>Requests</strong>: $0.40 per million requests</li> <li> <strong>Networking</strong>: Egress charges apply</li> </ul> <p>For a typical landing page:</p> <ul> <li> <strong>Low traffic</strong> (1K visitors/month): ~$1-2/month</li> <li> <strong>Medium traffic</strong> (10K visitors/month): ~$5-10/month</li> <li> <strong>High traffic</strong> (100K visitors/month): ~$20-40/month</li> </ul> <h3> 2. Optimization Tips </h3> <div class="highlight js-code-highlight"> <pre class="highlight javascript"><code><span class="c1">// next.config.js</span> <span class="kd">const</span> <span class="nx">nextConfig</span> <span class="o">=</span> <span class="p">{</span> <span class="c1">// Compress responses</span> <span class="na">compress</span><span class="p">:</span> <span class="kc">true</span><span class="p">,</span> <span class="c1">// Optimize bundle</span> <span class="na">experimental</span><span class="p">:</span> <span class="p">{</span> <span class="na">optimizePackageImports</span><span class="p">:</span> <span class="p">[</span><span class="dl">'</span><span class="s1">lucide-react</span><span class="dl">'</span><span class="p">],</span> <span class="p">},</span> <span class="c1">// Cache static assets</span> <span class="na">headers</span><span class="p">:</span> <span class="k">async </span><span class="p">()</span> <span class="o">=&gt;</span> <span class="p">[</span> <span class="p">{</span> <span class="na">source</span><span class="p">:</span> <span class="dl">'</span><span class="s1">/(.*)</span><span class="se">\\</span><span class="s1">.(js|css|png|jpg|jpeg|gif|ico|svg)</span><span class="dl">'</span><span class="p">,</span> <span class="na">headers</span><span class="p">:</span> <span class="p">[</span> <span class="p">{</span> <span class="na">key</span><span class="p">:</span> <span class="dl">'</span><span class="s1">Cache-Control</span><span class="dl">'</span><span class="p">,</span> <span class="na">value</span><span class="p">:</span> <span class="dl">'</span><span class="s1">public, max-age=31536000, immutable</span><span class="dl">'</span><span class="p">,</span> <span class="p">},</span> <span class="p">],</span> <span class="p">},</span> <span class="p">],</span> <span class="p">}</span> </code></pre> </div> <h2> Monitoring and Analytics </h2> <h3> 1. Google Analytics </h3> <p>Add Google Analytics to track conversions:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight tsx"><code><span class="c1">// src/app/layout.tsx</span> <span class="k">import</span> <span class="nx">Script</span> <span class="k">from</span> <span class="dl">'</span><span class="s1">next/script</span><span class="dl">'</span> <span class="k">export</span> <span class="k">default</span> <span class="kd">function</span> <span class="nf">RootLayout</span><span class="p">({</span> <span class="nx">children</span> <span class="p">})</span> <span class="p">{</span> <span class="k">return </span><span class="p">(</span> <span class="p">&lt;</span><span class="nt">html</span><span class="p">&gt;</span> <span class="p">&lt;</span><span class="nt">head</span><span class="p">&gt;</span> <span class="p">&lt;</span><span class="nc">Script</span> <span class="na">src</span><span class="p">=</span><span class="s">"https://www.googletagmanager.com/gtag/js?id=GA_MEASUREMENT_ID"</span> <span class="na">strategy</span><span class="p">=</span><span class="s">"afterInteractive"</span> <span class="p">/&gt;</span> <span class="p">&lt;</span><span class="nc">Script</span> <span class="na">id</span><span class="p">=</span><span class="s">"google-analytics"</span> <span class="na">strategy</span><span class="p">=</span><span class="s">"afterInteractive"</span><span class="p">&gt;</span> <span class="si">{</span><span class="s2">` window.dataLayer = window.dataLayer || []; function gtag(){dataLayer.push(arguments);} gtag('js', new Date()); gtag('config', 'GA_MEASUREMENT_ID'); `</span><span class="si">}</span> <span class="p">&lt;/</span><span class="nc">Script</span><span class="p">&gt;</span> <span class="p">&lt;/</span><span class="nt">head</span><span class="p">&gt;</span> <span class="p">&lt;</span><span class="nt">body</span><span class="p">&gt;</span><span class="si">{</span><span class="nx">children</span><span class="si">}</span><span class="p">&lt;/</span><span class="nt">body</span><span class="p">&gt;</span> <span class="p">&lt;/</span><span class="nt">html</span><span class="p">&gt;</span> <span class="p">)</span> <span class="p">}</span> </code></pre> </div> <h3> 2. Conversion Tracking </h3> <p>Track email signups:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight typescript"><code><span class="c1">// Declare gtag as a global function for TypeScript</span> <span class="kr">declare</span> <span class="nb">global</span> <span class="p">{</span> <span class="kr">interface</span> <span class="nx">Window</span> <span class="p">{</span> <span class="nl">gtag</span><span class="p">:</span> <span class="p">(</span> <span class="nx">command</span><span class="p">:</span> <span class="dl">'</span><span class="s1">config</span><span class="dl">'</span> <span class="o">|</span> <span class="dl">'</span><span class="s1">event</span><span class="dl">'</span> <span class="o">|</span> <span class="dl">'</span><span class="s1">js</span><span class="dl">'</span><span class="p">,</span> <span class="nx">targetId</span><span class="p">:</span> <span class="kr">string</span> <span class="o">|</span> <span class="nb">Date</span><span class="p">,</span> <span class="nx">config</span><span class="p">?:</span> <span class="p">{</span> <span class="nx">event_category</span><span class="p">?:</span> <span class="kr">string</span> <span class="nx">event_label</span><span class="p">?:</span> <span class="kr">string</span> <span class="nx">value</span><span class="p">?:</span> <span class="kr">number</span> <span class="p">[</span><span class="na">key</span><span class="p">:</span> <span class="kr">string</span><span class="p">]:</span> <span class="kr">any</span> <span class="p">},</span> <span class="p">)</span> <span class="o">=&gt;</span> <span class="k">void</span> <span class="p">}</span> <span class="p">}</span> <span class="c1">// In your email signup component</span> <span class="kd">const</span> <span class="nx">trackConversion</span> <span class="o">=</span> <span class="p">()</span> <span class="o">=&gt;</span> <span class="p">{</span> <span class="k">if </span><span class="p">(</span><span class="k">typeof</span> <span class="nx">gtag</span> <span class="o">!==</span> <span class="dl">'</span><span class="s1">undefined</span><span class="dl">'</span><span class="p">)</span> <span class="p">{</span> <span class="nf">gtag</span><span class="p">(</span><span class="dl">'</span><span class="s1">event</span><span class="dl">'</span><span class="p">,</span> <span class="dl">'</span><span class="s1">sign_up</span><span class="dl">'</span><span class="p">,</span> <span class="p">{</span> <span class="na">event_category</span><span class="p">:</span> <span class="dl">'</span><span class="s1">engagement</span><span class="dl">'</span><span class="p">,</span> <span class="na">event_label</span><span class="p">:</span> <span class="dl">'</span><span class="s1">email_signup</span><span class="dl">'</span><span class="p">,</span> <span class="p">})</span> <span class="p">}</span> <span class="p">}</span> <span class="kd">const</span> <span class="nx">handleSubmit</span> <span class="o">=</span> <span class="k">async </span><span class="p">(</span><span class="nx">e</span><span class="p">)</span> <span class="o">=&gt;</span> <span class="p">{</span> <span class="c1">// ... existing code</span> <span class="k">if </span><span class="p">(</span><span class="nx">response</span><span class="p">.</span><span class="nx">ok</span><span class="p">)</span> <span class="p">{</span> <span class="nf">trackConversion</span><span class="p">()</span> <span class="c1">// ... rest of success handling</span> <span class="p">}</span> <span class="p">}</span> </code></pre> </div> <h2> Security Best Practices </h2> <h3> 1. Environment Variables </h3> <p>Never commit sensitive data:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code><span class="c"># .env.local (never commit)</span> <span class="nv">GOOGLE_SHEETS_ID</span><span class="o">=</span>your-actual-sheet-id <span class="c"># For production, set in Cloud Run</span> gcloud run services update workwrite-landing <span class="se">\</span> <span class="nt">--set-env-vars</span> <span class="nv">GOOGLE_SHEETS_ID</span><span class="o">=</span>your-production-sheet-id </code></pre> </div> <h3> 2. Input Validation </h3> <p>Always validate user inputs:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight typescript"><code><span class="k">import</span> <span class="p">{</span> <span class="nx">z</span> <span class="p">}</span> <span class="k">from</span> <span class="dl">'</span><span class="s1">zod</span><span class="dl">'</span> <span class="kd">const</span> <span class="nx">emailSchema</span> <span class="o">=</span> <span class="nx">z</span><span class="p">.</span><span class="nf">object</span><span class="p">({</span> <span class="na">email</span><span class="p">:</span> <span class="nx">z</span><span class="p">.</span><span class="nf">string</span><span class="p">().</span><span class="nf">email</span><span class="p">(</span><span class="dl">'</span><span class="s1">Invalid email format</span><span class="dl">'</span><span class="p">),</span> <span class="p">})</span> <span class="k">export</span> <span class="k">async</span> <span class="kd">function</span> <span class="nf">POST</span><span class="p">(</span><span class="nx">request</span><span class="p">:</span> <span class="nx">NextRequest</span><span class="p">)</span> <span class="p">{</span> <span class="k">try</span> <span class="p">{</span> <span class="kd">const</span> <span class="nx">body</span> <span class="o">=</span> <span class="k">await</span> <span class="nx">request</span><span class="p">.</span><span class="nf">json</span><span class="p">()</span> <span class="kd">const</span> <span class="p">{</span> <span class="nx">email</span> <span class="p">}</span> <span class="o">=</span> <span class="nx">emailSchema</span><span class="p">.</span><span class="nf">parse</span><span class="p">(</span><span class="nx">body</span><span class="p">)</span> <span class="c1">// ... rest of your code</span> <span class="p">}</span> <span class="k">catch </span><span class="p">(</span><span class="nx">error</span><span class="p">)</span> <span class="p">{</span> <span class="k">if </span><span class="p">(</span><span class="nx">error</span> <span class="k">instanceof</span> <span class="nx">z</span><span class="p">.</span><span class="nx">ZodError</span><span class="p">)</span> <span class="p">{</span> <span class="k">return</span> <span class="nx">NextResponse</span><span class="p">.</span><span class="nf">json</span><span class="p">({</span> <span class="na">error</span><span class="p">:</span> <span class="nx">error</span><span class="p">.</span><span class="nx">errors</span><span class="p">[</span><span class="mi">0</span><span class="p">].</span><span class="nx">message</span> <span class="p">},</span> <span class="p">{</span> <span class="na">status</span><span class="p">:</span> <span class="mi">400</span> <span class="p">})</span> <span class="p">}</span> <span class="c1">// ... handle other errors</span> <span class="p">}</span> <span class="p">}</span> </code></pre> </div> <h2> Testing </h2> <h3> 1. Component Testing </h3> <div class="highlight js-code-highlight"> <pre class="highlight typescript"><code><span class="c1">// __tests__/email-signup.test.tsx</span> <span class="k">import</span> <span class="p">{</span> <span class="nx">render</span><span class="p">,</span> <span class="nx">screen</span><span class="p">,</span> <span class="nx">fireEvent</span><span class="p">,</span> <span class="nx">waitFor</span> <span class="p">}</span> <span class="k">from</span> <span class="dl">'</span><span class="s1">@testing-library/react</span><span class="dl">'</span> <span class="k">import</span> <span class="nx">EmailSignup</span> <span class="k">from</span> <span class="dl">'</span><span class="s1">../src/app/components/email-signup/email-signup</span><span class="dl">'</span> <span class="nf">describe</span><span class="p">(</span><span class="dl">'</span><span class="s1">EmailSignup</span><span class="dl">'</span><span class="p">,</span> <span class="p">()</span> <span class="o">=&gt;</span> <span class="p">{</span> <span class="nf">test</span><span class="p">(</span><span class="dl">'</span><span class="s1">submits email successfully</span><span class="dl">'</span><span class="p">,</span> <span class="k">async </span><span class="p">()</span> <span class="o">=&gt;</span> <span class="p">{</span> <span class="nb">global</span><span class="p">.</span><span class="nx">fetch</span> <span class="o">=</span> <span class="nx">jest</span><span class="p">.</span><span class="nf">fn</span><span class="p">(()</span> <span class="o">=&gt;</span> <span class="nb">Promise</span><span class="p">.</span><span class="nf">resolve</span><span class="p">({</span> <span class="na">ok</span><span class="p">:</span> <span class="kc">true</span><span class="p">,</span> <span class="na">json</span><span class="p">:</span> <span class="p">()</span> <span class="o">=&gt;</span> <span class="nb">Promise</span><span class="p">.</span><span class="nf">resolve</span><span class="p">({</span> <span class="na">message</span><span class="p">:</span> <span class="dl">'</span><span class="s1">Success</span><span class="dl">'</span> <span class="p">}),</span> <span class="p">}),</span> <span class="p">)</span> <span class="nf">render</span><span class="p">(</span><span class="o">&lt;</span><span class="nx">EmailSignup</span> <span class="o">/&gt;</span><span class="p">)</span> <span class="kd">const</span> <span class="nx">input</span> <span class="o">=</span> <span class="nx">screen</span><span class="p">.</span><span class="nf">getByPlaceholderText</span><span class="p">(</span><span class="dl">'</span><span class="s1">Enter your email</span><span class="dl">'</span><span class="p">)</span> <span class="kd">const</span> <span class="nx">button</span> <span class="o">=</span> <span class="nx">screen</span><span class="p">.</span><span class="nf">getByRole</span><span class="p">(</span><span class="dl">'</span><span class="s1">button</span><span class="dl">'</span><span class="p">,</span> <span class="p">{</span> <span class="na">name</span><span class="p">:</span> <span class="sr">/subscribe/i</span> <span class="p">})</span> <span class="nx">fireEvent</span><span class="p">.</span><span class="nf">change</span><span class="p">(</span><span class="nx">input</span><span class="p">,</span> <span class="p">{</span> <span class="na">target</span><span class="p">:</span> <span class="p">{</span> <span class="na">value</span><span class="p">:</span> <span class="dl">'</span><span class="s1">test@example.com</span><span class="dl">'</span> <span class="p">}</span> <span class="p">})</span> <span class="nx">fireEvent</span><span class="p">.</span><span class="nf">click</span><span class="p">(</span><span class="nx">button</span><span class="p">)</span> <span class="k">await</span> <span class="nf">waitFor</span><span class="p">(()</span> <span class="o">=&gt;</span> <span class="p">{</span> <span class="nf">expect</span><span class="p">(</span><span class="nx">screen</span><span class="p">.</span><span class="nf">getByText</span><span class="p">(</span><span class="dl">'</span><span class="s1">Thank you for subscribing!</span><span class="dl">'</span><span class="p">)).</span><span class="nf">toBeInTheDocument</span><span class="p">()</span> <span class="p">})</span> <span class="p">})</span> <span class="p">})</span> </code></pre> </div> <h3> 2. API Testing </h3> <div class="highlight js-code-highlight"> <pre class="highlight typescript"><code><span class="c1">// __tests__/api/email-signup.test.ts</span> <span class="k">import</span> <span class="p">{</span> <span class="nx">POST</span> <span class="p">}</span> <span class="k">from</span> <span class="dl">'</span><span class="s1">../../src/app/api/v1/email-signup/route</span><span class="dl">'</span> <span class="nf">describe</span><span class="p">(</span><span class="dl">'</span><span class="s1">/api/v1/email-signup</span><span class="dl">'</span><span class="p">,</span> <span class="p">()</span> <span class="o">=&gt;</span> <span class="p">{</span> <span class="nf">test</span><span class="p">(</span><span class="dl">'</span><span class="s1">validates email format</span><span class="dl">'</span><span class="p">,</span> <span class="k">async </span><span class="p">()</span> <span class="o">=&gt;</span> <span class="p">{</span> <span class="kd">const</span> <span class="nx">request</span> <span class="o">=</span> <span class="k">new</span> <span class="nc">Request</span><span class="p">(</span><span class="dl">'</span><span class="s1">http://localhost</span><span class="dl">'</span><span class="p">,</span> <span class="p">{</span> <span class="na">method</span><span class="p">:</span> <span class="dl">'</span><span class="s1">POST</span><span class="dl">'</span><span class="p">,</span> <span class="na">body</span><span class="p">:</span> <span class="nx">JSON</span><span class="p">.</span><span class="nf">stringify</span><span class="p">({</span> <span class="na">email</span><span class="p">:</span> <span class="dl">'</span><span class="s1">invalid-email</span><span class="dl">'</span> <span class="p">}),</span> <span class="p">})</span> <span class="kd">const</span> <span class="nx">response</span> <span class="o">=</span> <span class="k">await</span> <span class="nc">POST</span><span class="p">(</span><span class="nx">request</span><span class="p">)</span> <span class="kd">const</span> <span class="nx">data</span> <span class="o">=</span> <span class="k">await</span> <span class="nx">response</span><span class="p">.</span><span class="nf">json</span><span class="p">()</span> <span class="nf">expect</span><span class="p">(</span><span class="nx">response</span><span class="p">.</span><span class="nx">status</span><span class="p">).</span><span class="nf">toBe</span><span class="p">(</span><span class="mi">400</span><span class="p">)</span> <span class="nf">expect</span><span class="p">(</span><span class="nx">data</span><span class="p">.</span><span class="nx">error</span><span class="p">).</span><span class="nf">toBe</span><span class="p">(</span><span class="dl">'</span><span class="s1">Invalid email format</span><span class="dl">'</span><span class="p">)</span> <span class="p">})</span> <span class="p">})</span> </code></pre> </div> <h2> Conclusion </h2> <p>You now have a complete, production-ready Next.js landing page that:</p> <ul> <li> <strong>Collects emails</strong> efficiently with a beautiful UI</li> <li> <strong>Stores data</strong> in Google Sheets automatically</li> <li> <strong>Scales automatically</strong> with Google Cloud Run</li> <li> <strong>Costs minimal</strong> for low to medium traffic</li> <li> <strong>Performs excellently</strong> with optimized builds</li> <li> <strong>Monitors effectively</strong> with built-in analytics</li> </ul> <p>This setup provides a solid foundation for any product launch or marketing campaign. The combination of Next.js 15, Google Sheets, and Cloud Run offers excellent developer experience with enterprise-grade scalability and reliability.</p> <h3> Next Steps </h3> <ol> <li> <strong>Add A/B testing</strong> for different signup copy</li> <li> <strong>Implement email automation</strong> with services like SendGrid</li> <li> <strong>Add more landing page sections</strong> (testimonials, features, pricing)</li> <li> <strong>Set up CI/CD</strong> with GitHub Actions</li> <li> <strong>Add real-time analytics</strong> dashboard</li> </ol> <p>The architecture we've built is flexible and can grow with your product needs while maintaining excellent performance and cost efficiency.</p> nextjs googlecloud googlesheet webdev Supabase WordPress Integration - Sync WordPress Posts and Pages to Supabase Dale Nguyen Wed, 20 Aug 2025 03:56:00 +0000 https://dev.to/dalenguyen/supabase-wordpress-integration-sync-wordpress-posts-and-pages-to-supabase-28f7 https://dev.to/dalenguyen/supabase-wordpress-integration-sync-wordpress-posts-and-pages-to-supabase-28f7 <p>Are you looking to create a modern, scalable architecture for your WordPress site? Syncing your WordPress content to Supabase opens up powerful possibilities for headless websites, mobile apps, and real-time applications. In this comprehensive guide, we'll walk you through setting up automatic post and page synchronization from WordPress to Supabase using the SupaWP plugin.</p> <h2> Why Sync WordPress to Supabase? </h2> <p>Before diving into the setup, let's understand the benefits:</p> <ul> <li> <strong>🚀 Performance</strong>: Lightning-fast content delivery through Supabase's edge network</li> <li> <strong>📱 Multi-platform</strong>: Build mobile apps, SPAs, and JAMstack sites using the same content</li> <li> <strong>🔄 Real-time</strong>: Instant content updates across all your applications</li> <li> <strong>🔒 Security</strong>: Robust Row Level Security (RLS) policies protect your data</li> <li> <strong>💰 Cost-effective</strong>: Pay only for what you use with Supabase's pricing model</li> </ul> <h2> Prerequisites </h2> <p>Before getting started, make sure you have:</p> <ul> <li>WordPress site with admin access</li> <li>Supabase account and project</li> <li>SupaWP plugin installed (v1.3.2 or later)</li> <li>Basic understanding of SQL for table setup</li> </ul> <h2> Step 1: Install and Configure SupaWP </h2> <h3> Install the Plugin </h3> <ol> <li>Download the SupaWP plugin</li> <li>Upload to your WordPress site via <strong>Plugins → Add New → Upload</strong> </li> <li>Activate the plugin</li> </ol> <h3> Configure Basic Settings </h3> <p>Navigate to <strong>WordPress Admin → SupaWP</strong> and configure:</p> <p><strong>General Settings:</strong></p> <ul> <li> <strong>Supabase URL</strong>: Your project URL (e.g., <code>https://your-project.supabase.co</code>)</li> <li> <strong>Supabase Anon Key</strong>: Your public API key</li> </ul> <p><strong>Security Settings (Critical):</strong></p> <ul> <li> <strong>Supabase Service Role Key</strong>: Your service role key for server-side operations</li> <li>This key bypasses Row Level Security and should never be exposed to the frontend</li> </ul> <p>⚠️ <strong>Security Note</strong>: Always configure the Service Role Key for production use. This ensures secure write operations from WordPress while maintaining public read access.</p> <p><a href="https://media2.dev.to/dynamic/image/width=800%2Cheight=%2Cfit=scale-down%2Cgravity=auto%2Cformat=auto/https%3A%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Farticles%2Fks4ketolmrw2rr8tfcy4.png" class="article-body-image-wrapper"><img src="https://media2.dev.to/dynamic/image/width=800%2Cheight=%2Cfit=scale-down%2Cgravity=auto%2Cformat=auto/https%3A%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Farticles%2Fks4ketolmrw2rr8tfcy4.png" alt="Service role key" width="800" height="500"></a></p> <h2> Step 2: Set Up Supabase Tables </h2> <h3> Create the Posts Table </h3> <p>In your Supabase SQL editor, run this command to create the posts table:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight sql"><code><span class="k">CREATE</span> <span class="k">TABLE</span> <span class="k">public</span><span class="p">.</span><span class="n">wp_posts</span> <span class="p">(</span> <span class="n">id</span> <span class="nb">integer</span> <span class="k">PRIMARY</span> <span class="k">KEY</span><span class="p">,</span> <span class="n">post_title</span> <span class="nb">text</span><span class="p">,</span> <span class="n">post_content</span> <span class="nb">text</span><span class="p">,</span> <span class="n">post_excerpt</span> <span class="nb">text</span><span class="p">,</span> <span class="n">post_status</span> <span class="nb">text</span><span class="p">,</span> <span class="n">post_type</span> <span class="nb">text</span><span class="p">,</span> <span class="n">post_date</span> <span class="n">timestamptz</span><span class="p">,</span> <span class="n">post_modified</span> <span class="n">timestamptz</span><span class="p">,</span> <span class="n">permalink</span> <span class="nb">text</span><span class="p">,</span> <span class="n">post_thumbnail</span> <span class="nb">text</span><span class="p">,</span> <span class="n">author</span> <span class="n">jsonb</span><span class="p">,</span> <span class="n">taxonomies</span> <span class="n">jsonb</span><span class="p">,</span> <span class="n">custom_fields</span> <span class="n">jsonb</span><span class="p">,</span> <span class="n">synced_at</span> <span class="n">timestamptz</span> <span class="k">DEFAULT</span> <span class="n">now</span><span class="p">()</span> <span class="p">);</span> </code></pre> </div> <h3> Create the Pages Table </h3> <div class="highlight js-code-highlight"> <pre class="highlight sql"><code><span class="k">CREATE</span> <span class="k">TABLE</span> <span class="k">public</span><span class="p">.</span><span class="n">wp_pages</span> <span class="p">(</span> <span class="n">id</span> <span class="nb">integer</span> <span class="k">PRIMARY</span> <span class="k">KEY</span><span class="p">,</span> <span class="n">post_title</span> <span class="nb">text</span><span class="p">,</span> <span class="n">post_content</span> <span class="nb">text</span><span class="p">,</span> <span class="n">post_excerpt</span> <span class="nb">text</span><span class="p">,</span> <span class="n">post_status</span> <span class="nb">text</span><span class="p">,</span> <span class="n">post_type</span> <span class="nb">text</span><span class="p">,</span> <span class="n">post_date</span> <span class="n">timestamptz</span><span class="p">,</span> <span class="n">post_modified</span> <span class="n">timestamptz</span><span class="p">,</span> <span class="n">permalink</span> <span class="nb">text</span><span class="p">,</span> <span class="n">post_thumbnail</span> <span class="nb">text</span><span class="p">,</span> <span class="n">author</span> <span class="n">jsonb</span><span class="p">,</span> <span class="n">taxonomies</span> <span class="n">jsonb</span><span class="p">,</span> <span class="n">custom_fields</span> <span class="n">jsonb</span><span class="p">,</span> <span class="n">synced_at</span> <span class="n">timestamptz</span> <span class="k">DEFAULT</span> <span class="n">now</span><span class="p">()</span> <span class="p">);</span> </code></pre> </div> <h2> Step 3: Implement Row Level Security </h2> <p>Security is paramount when exposing your content through an API. Let's set up RLS policies that allow public read access while restricting write operations to WordPress only.</p> <h3> Enable RLS on Posts Table </h3> <div class="highlight js-code-highlight"> <pre class="highlight sql"><code><span class="c1">-- Enable Row Level Security</span> <span class="k">ALTER</span> <span class="k">TABLE</span> <span class="k">public</span><span class="p">.</span><span class="n">wp_posts</span> <span class="n">ENABLE</span> <span class="k">ROW</span> <span class="k">LEVEL</span> <span class="k">SECURITY</span><span class="p">;</span> <span class="c1">-- Allow public read access (anonymous users can read published posts)</span> <span class="k">CREATE</span> <span class="n">POLICY</span> <span class="nv">"Allow public read access"</span> <span class="k">ON</span> <span class="k">public</span><span class="p">.</span><span class="n">wp_posts</span> <span class="k">FOR</span> <span class="k">SELECT</span> <span class="k">TO</span> <span class="n">anon</span> <span class="k">USING</span> <span class="p">(</span><span class="n">post_status</span> <span class="o">=</span> <span class="s1">'publish'</span><span class="p">);</span> <span class="c1">-- Allow authenticated users to read all posts</span> <span class="k">CREATE</span> <span class="n">POLICY</span> <span class="nv">"Allow authenticated read access"</span> <span class="k">ON</span> <span class="k">public</span><span class="p">.</span><span class="n">wp_posts</span> <span class="k">FOR</span> <span class="k">SELECT</span> <span class="k">TO</span> <span class="n">authenticated</span> <span class="k">USING</span> <span class="p">(</span><span class="k">true</span><span class="p">);</span> <span class="c1">-- Only service role can insert/update/delete (WordPress backend only)</span> <span class="k">CREATE</span> <span class="n">POLICY</span> <span class="nv">"Service role can manage posts"</span> <span class="k">ON</span> <span class="k">public</span><span class="p">.</span><span class="n">wp_posts</span> <span class="k">FOR</span> <span class="k">ALL</span> <span class="k">TO</span> <span class="n">service_role</span> <span class="k">USING</span> <span class="p">(</span><span class="k">true</span><span class="p">)</span> <span class="k">WITH</span> <span class="k">CHECK</span> <span class="p">(</span><span class="k">true</span><span class="p">);</span> <span class="c1">-- Deny all write operations for anonymous and authenticated users</span> <span class="k">CREATE</span> <span class="n">POLICY</span> <span class="nv">"Deny public writes"</span> <span class="k">ON</span> <span class="k">public</span><span class="p">.</span><span class="n">wp_posts</span> <span class="k">FOR</span> <span class="k">INSERT</span> <span class="k">TO</span> <span class="n">anon</span><span class="p">,</span> <span class="n">authenticated</span> <span class="k">WITH</span> <span class="k">CHECK</span> <span class="p">(</span><span class="k">false</span><span class="p">);</span> <span class="k">CREATE</span> <span class="n">POLICY</span> <span class="nv">"Deny public updates"</span> <span class="k">ON</span> <span class="k">public</span><span class="p">.</span><span class="n">wp_posts</span> <span class="k">FOR</span> <span class="k">UPDATE</span> <span class="k">TO</span> <span class="n">anon</span><span class="p">,</span> <span class="n">authenticated</span> <span class="k">USING</span> <span class="p">(</span><span class="k">false</span><span class="p">);</span> <span class="k">CREATE</span> <span class="n">POLICY</span> <span class="nv">"Deny public deletes"</span> <span class="k">ON</span> <span class="k">public</span><span class="p">.</span><span class="n">wp_posts</span> <span class="k">FOR</span> <span class="k">DELETE</span> <span class="k">TO</span> <span class="n">anon</span><span class="p">,</span> <span class="n">authenticated</span> <span class="k">USING</span> <span class="p">(</span><span class="k">false</span><span class="p">);</span> </code></pre> </div> <h3> Apply the Same Security to Pages </h3> <p>Repeat the same RLS setup for the <code>wp_pages</code> table, replacing table references accordingly.</p> <h2> Step 4: Configure WordPress Sync Settings </h2> <p>Now let's configure which content types to sync:</p> <ol> <li>Go to <strong>WordPress Admin → SupaWP → Sync Data tab</strong> </li> <li> <strong>Select Post Types</strong>: Check "Posts" and "Pages"</li> <li> <strong>Custom Post Types</strong>: Add any custom post types (comma-separated, e.g., <code>product, event</code>)</li> <li>Click <strong>Save Settings</strong> </li> </ol> <p><a href="https://media2.dev.to/dynamic/image/width=800%2Cheight=%2Cfit=scale-down%2Cgravity=auto%2Cformat=auto/https%3A%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Farticles%2Ftbr1g69snxa08qhprip3.png" class="article-body-image-wrapper"><img src="https://media2.dev.to/dynamic/image/width=800%2Cheight=%2Cfit=scale-down%2Cgravity=auto%2Cformat=auto/https%3A%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Farticles%2Ftbr1g69snxa08qhprip3.png" alt="Select WordPress post type" width="800" height="456"></a></p> <h2> Step 5: Understanding the Sync Process </h2> <p>Once configured, SupaWP automatically handles synchronization:</p> <h3> What Gets Synced </h3> <p>The plugin captures comprehensive post data:</p> <ul> <li> <strong>Basic Info</strong>: Title, content, excerpt, status, type</li> <li> <strong>Metadata</strong>: Publish date, modified date, permalink</li> <li> <strong>Media</strong>: Featured image URL (with retry mechanism for processing delays)</li> <li> <strong>Author Data</strong>: Author information as JSON</li> <li> <strong>Taxonomies</strong>: Categories, tags, and custom taxonomies</li> <li> <strong>Custom Fields</strong>: All non-private custom fields</li> </ul> <h3> When Sync Happens </h3> <p>Automatic synchronization triggers on:</p> <ol> <li> <strong>Creating a new post</strong> → Immediately synced to Supabase</li> <li> <strong>Updating existing content</strong> → Updates the Supabase record</li> <li> <strong>Moving to trash</strong> → Removes from Supabase</li> <li> <strong>Permanent deletion</strong> → Removes from Supabase</li> </ol> <p><a href="https://media2.dev.to/dynamic/image/width=800%2Cheight=%2Cfit=scale-down%2Cgravity=auto%2Cformat=auto/https%3A%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Farticles%2Ff68i0orezsu20l7lqmss.png" class="article-body-image-wrapper"><img src="https://media2.dev.to/dynamic/image/width=800%2Cheight=%2Cfit=scale-down%2Cgravity=auto%2Cformat=auto/https%3A%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Farticles%2Ff68i0orezsu20l7lqmss.png" alt="wp_posts table in supabase" width="800" height="259"></a></p> <h2> Step 6: Using Your Synced Data </h2> <h3> Frontend API Access </h3> <p>With your content synced, you can now access it from any frontend application:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight javascript"><code><span class="k">import</span> <span class="p">{</span> <span class="nx">createClient</span> <span class="p">}</span> <span class="k">from</span> <span class="dl">'</span><span class="s1">@supabase/supabase-js</span><span class="dl">'</span> <span class="kd">const</span> <span class="nx">supabase</span> <span class="o">=</span> <span class="nf">createClient</span><span class="p">(</span><span class="dl">'</span><span class="s1">https://your-project.supabase.co</span><span class="dl">'</span><span class="p">,</span> <span class="dl">'</span><span class="s1">your-anon-key</span><span class="dl">'</span><span class="p">)</span> <span class="c1">// Get all published posts</span> <span class="kd">const</span> <span class="p">{</span> <span class="na">data</span><span class="p">:</span> <span class="nx">posts</span> <span class="p">}</span> <span class="o">=</span> <span class="k">await</span> <span class="nx">supabase</span> <span class="p">.</span><span class="k">from</span><span class="p">(</span><span class="dl">'</span><span class="s1">wp_posts</span><span class="dl">'</span><span class="p">)</span> <span class="p">.</span><span class="nf">select</span><span class="p">(</span><span class="dl">'</span><span class="s1">*</span><span class="dl">'</span><span class="p">)</span> <span class="p">.</span><span class="nf">eq</span><span class="p">(</span><span class="dl">'</span><span class="s1">post_status</span><span class="dl">'</span><span class="p">,</span> <span class="dl">'</span><span class="s1">publish</span><span class="dl">'</span><span class="p">)</span> <span class="p">.</span><span class="nf">order</span><span class="p">(</span><span class="dl">'</span><span class="s1">post_date</span><span class="dl">'</span><span class="p">,</span> <span class="p">{</span> <span class="na">ascending</span><span class="p">:</span> <span class="kc">false</span> <span class="p">})</span> <span class="c1">// Get a specific post by ID</span> <span class="kd">const</span> <span class="p">{</span> <span class="na">data</span><span class="p">:</span> <span class="nx">post</span> <span class="p">}</span> <span class="o">=</span> <span class="k">await</span> <span class="nx">supabase</span><span class="p">.</span><span class="k">from</span><span class="p">(</span><span class="dl">'</span><span class="s1">wp_posts</span><span class="dl">'</span><span class="p">).</span><span class="nf">select</span><span class="p">(</span><span class="dl">'</span><span class="s1">*</span><span class="dl">'</span><span class="p">).</span><span class="nf">eq</span><span class="p">(</span><span class="dl">'</span><span class="s1">id</span><span class="dl">'</span><span class="p">,</span> <span class="mi">123</span><span class="p">).</span><span class="nf">single</span><span class="p">()</span> <span class="c1">// Search posts by title</span> <span class="kd">const</span> <span class="p">{</span> <span class="na">data</span><span class="p">:</span> <span class="nx">searchResults</span> <span class="p">}</span> <span class="o">=</span> <span class="k">await</span> <span class="nx">supabase</span> <span class="p">.</span><span class="k">from</span><span class="p">(</span><span class="dl">'</span><span class="s1">wp_posts</span><span class="dl">'</span><span class="p">)</span> <span class="p">.</span><span class="nf">select</span><span class="p">(</span><span class="dl">'</span><span class="s1">*</span><span class="dl">'</span><span class="p">)</span> <span class="p">.</span><span class="nf">textSearch</span><span class="p">(</span><span class="dl">'</span><span class="s1">post_title</span><span class="dl">'</span><span class="p">,</span> <span class="dl">'</span><span class="s1">search term</span><span class="dl">'</span><span class="p">)</span> <span class="p">.</span><span class="nf">eq</span><span class="p">(</span><span class="dl">'</span><span class="s1">post_status</span><span class="dl">'</span><span class="p">,</span> <span class="dl">'</span><span class="s1">publish</span><span class="dl">'</span><span class="p">)</span> </code></pre> </div> <h3> Real-time Subscriptions </h3> <p>Take advantage of Supabase's real-time capabilities:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight javascript"><code><span class="c1">// Subscribe to new posts</span> <span class="kd">const</span> <span class="nx">subscription</span> <span class="o">=</span> <span class="nx">supabase</span> <span class="p">.</span><span class="nf">channel</span><span class="p">(</span><span class="dl">'</span><span class="s1">wp_posts</span><span class="dl">'</span><span class="p">)</span> <span class="p">.</span><span class="nf">on</span><span class="p">(</span><span class="dl">'</span><span class="s1">postgres_changes</span><span class="dl">'</span><span class="p">,</span> <span class="p">{</span> <span class="na">event</span><span class="p">:</span> <span class="dl">'</span><span class="s1">INSERT</span><span class="dl">'</span><span class="p">,</span> <span class="na">schema</span><span class="p">:</span> <span class="dl">'</span><span class="s1">public</span><span class="dl">'</span><span class="p">,</span> <span class="na">table</span><span class="p">:</span> <span class="dl">'</span><span class="s1">wp_posts</span><span class="dl">'</span> <span class="p">},</span> <span class="p">(</span><span class="nx">payload</span><span class="p">)</span> <span class="o">=&gt;</span> <span class="p">{</span> <span class="nx">console</span><span class="p">.</span><span class="nf">log</span><span class="p">(</span><span class="dl">'</span><span class="s1">New post published:</span><span class="dl">'</span><span class="p">,</span> <span class="nx">payload</span><span class="p">.</span><span class="k">new</span><span class="p">)</span> <span class="c1">// Update your UI in real-time</span> <span class="p">})</span> <span class="p">.</span><span class="nf">subscribe</span><span class="p">()</span> </code></pre> </div> <h2> Step 7: Advanced Customization </h2> <h3> Custom Data Modification </h3> <p>You can modify data before it's saved to Supabase:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight php"><code><span class="c1">// In your theme's functions.php</span> <span class="nf">add_filter</span><span class="p">(</span><span class="s1">'supawp_before_saving_to_supabase'</span><span class="p">,</span> <span class="k">function</span><span class="p">(</span><span class="nv">$data</span><span class="p">)</span> <span class="p">{</span> <span class="c1">// Add site information</span> <span class="nv">$data</span><span class="p">[</span><span class="s1">'site_url'</span><span class="p">]</span> <span class="o">=</span> <span class="nf">get_site_url</span><span class="p">();</span> <span class="c1">// Add custom SEO data</span> <span class="nv">$data</span><span class="p">[</span><span class="s1">'seo_title'</span><span class="p">]</span> <span class="o">=</span> <span class="nf">get_post_meta</span><span class="p">(</span><span class="nv">$data</span><span class="p">[</span><span class="s1">'id'</span><span class="p">],</span> <span class="s1">'_yoast_wpseo_title'</span><span class="p">,</span> <span class="kc">true</span><span class="p">);</span> <span class="c1">// Sanitize content for API consumption</span> <span class="k">if</span> <span class="p">(</span><span class="k">isset</span><span class="p">(</span><span class="nv">$data</span><span class="p">[</span><span class="s1">'post_content'</span><span class="p">]))</span> <span class="p">{</span> <span class="nv">$data</span><span class="p">[</span><span class="s1">'post_content'</span><span class="p">]</span> <span class="o">=</span> <span class="nf">wp_strip_all_tags</span><span class="p">(</span><span class="nv">$data</span><span class="p">[</span><span class="s1">'post_content'</span><span class="p">]);</span> <span class="p">}</span> <span class="k">return</span> <span class="nv">$data</span><span class="p">;</span> <span class="p">});</span> </code></pre> </div> <h3> Sync Event Hooks </h3> <p>Monitor sync operations:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight php"><code><span class="c1">// Log successful syncs</span> <span class="nf">add_action</span><span class="p">(</span><span class="s1">'supawp_after_saving_to_supabase'</span><span class="p">,</span> <span class="k">function</span><span class="p">(</span><span class="nv">$response_data</span><span class="p">,</span> <span class="nv">$original_data</span><span class="p">)</span> <span class="p">{</span> <span class="nb">error_log</span><span class="p">(</span><span class="s1">'Post synced: '</span> <span class="mf">.</span> <span class="nv">$original_data</span><span class="p">[</span><span class="s1">'post_title'</span><span class="p">]);</span> <span class="p">},</span> <span class="mi">10</span><span class="p">,</span> <span class="mi">2</span><span class="p">);</span> <span class="c1">// Handle sync failures</span> <span class="nf">add_action</span><span class="p">(</span><span class="s1">'supawp_sync_error'</span><span class="p">,</span> <span class="k">function</span><span class="p">(</span><span class="nv">$error</span><span class="p">,</span> <span class="nv">$post_data</span><span class="p">)</span> <span class="p">{</span> <span class="c1">// Send notification to admin</span> <span class="nf">wp_mail</span><span class="p">(</span><span class="nf">get_option</span><span class="p">(</span><span class="s1">'admin_email'</span><span class="p">),</span> <span class="s1">'Sync Error'</span><span class="p">,</span> <span class="nv">$error</span><span class="p">);</span> <span class="p">},</span> <span class="mi">10</span><span class="p">,</span> <span class="mi">2</span><span class="p">);</span> </code></pre> </div> <h3> Manual Sync Operations </h3> <p>Use SupaWP's filter system for custom operations:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight php"><code><span class="c1">// Manually sync specific post</span> <span class="nv">$post_data</span> <span class="o">=</span> <span class="k">array</span><span class="p">(</span> <span class="s1">'id'</span> <span class="o">=&gt;</span> <span class="mi">123</span><span class="p">,</span> <span class="s1">'post_title'</span> <span class="o">=&gt;</span> <span class="s1">'Custom Post'</span><span class="p">,</span> <span class="s1">'custom_field'</span> <span class="o">=&gt;</span> <span class="s1">'Additional data'</span> <span class="p">);</span> <span class="nf">apply_filters</span><span class="p">(</span><span class="s1">'supawp_save_data_to_supabase'</span><span class="p">,</span> <span class="nv">$post_data</span><span class="p">);</span> <span class="c1">// Get data from Supabase</span> <span class="nv">$posts</span> <span class="o">=</span> <span class="nf">apply_filters</span><span class="p">(</span><span class="s1">'supawp_get_data_from_supabase'</span><span class="p">,</span> <span class="s1">'wp_posts'</span><span class="p">,</span> <span class="k">array</span><span class="p">(</span> <span class="s1">'post_status'</span> <span class="o">=&gt;</span> <span class="s1">'eq.publish'</span><span class="p">,</span> <span class="s1">'limit'</span> <span class="o">=&gt;</span> <span class="s1">'10'</span> <span class="p">));</span> </code></pre> </div> <h2> Troubleshooting Common Issues </h2> <h3> Posts Not Syncing </h3> <ol> <li> <strong>Check post type selection</strong> in SupaWP settings</li> <li> <strong>Verify Service Role Key</strong> is configured (not just anon key)</li> <li> <strong>Ensure tables exist</strong> in Supabase with correct naming convention</li> </ol> <h3> Permission Errors </h3> <ol> <li> <strong>Verify RLS policies</strong> allow service_role to write</li> <li> <strong>Check service role key</strong> is correct and has proper permissions</li> <li> <strong>Test connection</strong> from WordPress admin</li> </ol> <h3> Image Sync Issues </h3> <ol> <li> <strong>Enable WordPress debugging</strong> to see detailed error logs</li> <li> <strong>Check featured image processing</strong> - some themes delay image processing</li> <li> <strong>Verify image URLs</strong> are publicly accessible</li> </ol> <h3> Debug Logging </h3> <p>Enable WordPress debug logging:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight php"><code><span class="c1">// In wp-config.php</span> <span class="nb">define</span><span class="p">(</span><span class="s1">'WP_DEBUG'</span><span class="p">,</span> <span class="kc">true</span><span class="p">);</span> <span class="nb">define</span><span class="p">(</span><span class="s1">'WP_DEBUG_LOG'</span><span class="p">,</span> <span class="kc">true</span><span class="p">);</span> </code></pre> </div> <p>Check <code>/wp-content/debug.log</code> for SupaWP error messages.</p> <h2> Best Practices for Production </h2> <h3> Performance Optimization </h3> <ol> <li> <strong>Index your tables</strong> for common query patterns: </li> </ol> <div class="highlight js-code-highlight"> <pre class="highlight sql"><code> <span class="k">CREATE</span> <span class="k">INDEX</span> <span class="n">idx_wp_posts_status_date</span> <span class="k">ON</span> <span class="n">wp_posts</span><span class="p">(</span><span class="n">post_status</span><span class="p">,</span> <span class="n">post_date</span> <span class="k">DESC</span><span class="p">);</span> </code></pre> </div> <ol> <li> <strong>Use selective querying</strong> - only fetch fields you need</li> <li> <strong>Implement caching</strong> in your frontend application</li> </ol> <h3> Security Considerations </h3> <ol> <li> <strong>Never expose service role key</strong> to frontend</li> <li><strong>Regularly rotate API keys</strong></li> <li> <strong>Monitor database access</strong> through Supabase dashboard</li> <li> <strong>Use RLS policies</strong> to restrict data access appropriately</li> </ol> <h3> Monitoring and Maintenance </h3> <ol> <li> <strong>Set up monitoring</strong> for sync operations</li> <li> <strong>Regular backups</strong> of Supabase data</li> <li> <strong>Monitor API usage</strong> and costs</li> <li> <strong>Keep SupaWP updated</strong> for latest features and security fixes</li> </ol> <h2> Use Cases and Examples </h2> <h3> JAMstack Blog </h3> <p>Create a lightning-fast blog using Supabase as your content API:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight javascript"><code><span class="c1">// Next.js example</span> <span class="k">export</span> <span class="k">async</span> <span class="kd">function</span> <span class="nf">getStaticProps</span><span class="p">()</span> <span class="p">{</span> <span class="kd">const</span> <span class="p">{</span> <span class="na">data</span><span class="p">:</span> <span class="nx">posts</span> <span class="p">}</span> <span class="o">=</span> <span class="k">await</span> <span class="nx">supabase</span> <span class="p">.</span><span class="k">from</span><span class="p">(</span><span class="dl">'</span><span class="s1">wp_posts</span><span class="dl">'</span><span class="p">)</span> <span class="p">.</span><span class="nf">select</span><span class="p">(</span><span class="dl">'</span><span class="s1">id, post_title, post_excerpt, post_date, permalink</span><span class="dl">'</span><span class="p">)</span> <span class="p">.</span><span class="nf">eq</span><span class="p">(</span><span class="dl">'</span><span class="s1">post_status</span><span class="dl">'</span><span class="p">,</span> <span class="dl">'</span><span class="s1">publish</span><span class="dl">'</span><span class="p">)</span> <span class="p">.</span><span class="nf">order</span><span class="p">(</span><span class="dl">'</span><span class="s1">post_date</span><span class="dl">'</span><span class="p">,</span> <span class="p">{</span> <span class="na">ascending</span><span class="p">:</span> <span class="kc">false</span> <span class="p">})</span> <span class="p">.</span><span class="nf">limit</span><span class="p">(</span><span class="mi">10</span><span class="p">)</span> <span class="k">return</span> <span class="p">{</span> <span class="na">props</span><span class="p">:</span> <span class="p">{</span> <span class="nx">posts</span> <span class="p">},</span> <span class="na">revalidate</span><span class="p">:</span> <span class="mi">60</span><span class="p">,</span> <span class="c1">// Revalidate every minute</span> <span class="p">}</span> <span class="p">}</span> </code></pre> </div> <h3> Mobile App Integration </h3> <p>Use the same content in your React Native app:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight javascript"><code><span class="kd">const</span> <span class="p">[</span><span class="nx">posts</span><span class="p">,</span> <span class="nx">setPosts</span><span class="p">]</span> <span class="o">=</span> <span class="nf">useState</span><span class="p">([])</span> <span class="nf">useEffect</span><span class="p">(()</span> <span class="o">=&gt;</span> <span class="p">{</span> <span class="kd">const</span> <span class="nx">fetchPosts</span> <span class="o">=</span> <span class="k">async </span><span class="p">()</span> <span class="o">=&gt;</span> <span class="p">{</span> <span class="kd">const</span> <span class="p">{</span> <span class="nx">data</span> <span class="p">}</span> <span class="o">=</span> <span class="k">await</span> <span class="nx">supabase</span><span class="p">.</span><span class="k">from</span><span class="p">(</span><span class="dl">'</span><span class="s1">wp_posts</span><span class="dl">'</span><span class="p">).</span><span class="nf">select</span><span class="p">(</span><span class="dl">'</span><span class="s1">*</span><span class="dl">'</span><span class="p">).</span><span class="nf">eq</span><span class="p">(</span><span class="dl">'</span><span class="s1">post_status</span><span class="dl">'</span><span class="p">,</span> <span class="dl">'</span><span class="s1">publish</span><span class="dl">'</span><span class="p">)</span> <span class="nf">setPosts</span><span class="p">(</span><span class="nx">data</span><span class="p">)</span> <span class="p">}</span> <span class="nf">fetchPosts</span><span class="p">()</span> <span class="p">},</span> <span class="p">[])</span> </code></pre> </div> <h3> Multi-site Content Distribution </h3> <p>Sync content from one WordPress site to multiple frontend applications, each with different presentation layers but the same content source.</p> <h2> Conclusion </h2> <p>Syncing WordPress to Supabase with SupaWP opens up a world of possibilities for modern web development. You get the familiar WordPress editing experience combined with the power and flexibility of Supabase's modern database and real-time capabilities.</p> <p>The automatic synchronization ensures your content is always up-to-date across all platforms, while the robust security model keeps your data safe. Whether you're building a headless website, mobile app, or multi-platform content distribution system, this setup provides a solid foundation for scalable, modern applications.</p> <p>Start with the basic setup outlined in this guide, then gradually explore the advanced customization options as your needs grow. The combination of WordPress's content management capabilities and Supabase's modern infrastructure creates a powerful platform for any content-driven application.</p> <h2> Resources </h2> <ul> <li><a href="https://techcater.com/shop/products/SUPA_WP" rel="noopener noreferrer">SupaWP Plugin</a></li> <li><a href="https://supabase.com/docs" rel="noopener noreferrer">Supabase Documentation</a></li> <li><a href="https://developer.wordpress.org" rel="noopener noreferrer">WordPress Developer Resources</a></li> <li><a href="https://supabase.com/docs/guides/auth/row-level-security" rel="noopener noreferrer">Row Level Security Guide</a></li> </ul> <p><em>This guide covers SupaWP v1.3.2 and later. Features and configuration may vary in different versions.</em></p> supabase wordpress webdev I Built a Leadership Simulator for Aspiring Tech Leads (And Why The Soft Skills Matter Most) Dale Nguyen Sat, 09 Aug 2025 15:01:20 +0000 https://dev.to/dalenguyen/i-built-a-leadership-simulator-for-aspiring-tech-leads-and-why-the-soft-skills-matter-most-4ngo https://dev.to/dalenguyen/i-built-a-leadership-simulator-for-aspiring-tech-leads-and-why-the-soft-skills-matter-most-4ngo <p>Let's be honest - I'm good at code, but the thought of managing people terrifies me.</p> <p>I've been a senior developer for a while now, and everyone keeps asking when I'm going to "take the next step" to Tech Lead or Staff Engineer. The problem? While I'm confident about system design and code reviews, I have no idea how to handle stakeholder politics or motivate struggling team members.</p> <p>So instead of continuing to put off the inevitable, I built something to help me (and hopefully others) practice.</p> <h2> What is it? </h2> <p>TechLeadPilot is a leadership simulator that puts you in realistic Tech Lead scenarios before you actually have to face them. Think "choose your own adventure" but for workplace situations that'll actually happen to you.</p> <p>You might face scenarios like:</p> <p>🔥 Your PM wants to ship without proper testing to hit a deadline<br> 🤝 Two senior engineers can't agree on system architecture<br> 📊 You need to explain why refactoring is worth 2 sprints to your director<br> 😤 A team member keeps missing deadlines but won't admit they're struggling</p> <h2> How it works </h2> <ol> <li>Pick a scenario from the library</li> <li>Read the situation and make your choice or write your response</li> <li>Get AI feedback on your leadership approach</li> <li>Learn what you did well and where you can improve</li> </ol> <h2> Why I built this </h2> <p>The idea of going from "senior engineer who codes in peace" to "tech lead who spends most of their time in meetings" is honestly pretty scary.</p> <p>I know I'll need to:</p> <ul> <li>Navigate office politics (ugh)</li> <li>Influence people who don't report to me</li> <li>Communicate complex technical stuff to non-technical people</li> <li>Actually motivate and mentor team members</li> <li>Make decisions when I don't have all the information</li> </ul> <p>These seem like learnable skills, but I'd rather practice them in a simulator than figure them out by potentially screwing up with real people.</p> <h2> The tech stack </h2> <p>Since this is dev.to:</p> <ul> <li>Frontend: Angular with Analog.js for SSR</li> <li>Backend: Node.js API routes</li> <li>Database: Firestore for user data and simulation results</li> <li>AI: Google Vertex AI for generating personalized feedback</li> <li>Hosting: Firebase (because it just works)</li> </ul> <h2> What's next? </h2> <p>I'm working on:</p> <ul> <li>More scenario types (performance reviews sound terrifying)</li> <li>Roleplay mode where the AI plays different characters</li> <li>Progress tracking so I can see if I'm actually getting better at this</li> </ul> <p>Try it out: <a href="https://techleadpilot.com/simulations" rel="noopener noreferrer">https://techleadpilot.com/simulations</a></p> <p>Fellow aspiring Tech Leads - what scenarios scare you the most? Always looking for new ideas to add!</p> leadership career management webdev Building Production-Ready SSR Applications with Analog.js - Lessons from TechLeadPilot Dale Nguyen Mon, 28 Jul 2025 14:49:48 +0000 https://dev.to/dalenguyen/building-production-ready-ssr-applications-with-analogjs-lessons-from-techleadpilot-142a https://dev.to/dalenguyen/building-production-ready-ssr-applications-with-analogjs-lessons-from-techleadpilot-142a <p><em>A comprehensive guide to server-side rendering with Angular's modern meta-framework, featuring real-world examples from a job board application</em></p> <h2> Introduction </h2> <p>Server-side rendering (SSR) has become essential for modern web applications, offering improved SEO, faster initial page loads, and better user experience. While Angular has supported SSR through Angular Universal for years, Analog.js emerges as a compelling alternative that brings the developer experience of modern meta-frameworks like Next.js to the Angular ecosystem.</p> <p>In this article, I'll share the lessons learned from building <a href="https://techleadpilot.com" rel="noopener noreferrer">TechLeadPilot.com</a>, a job board platform for senior engineers and more, using Analog.js with GCP backend. We'll explore the challenges, solutions, and best practices discovered during the development of complex features like authentication, real-time data fetching, and a comprehensive favorites system.</p> <h2> What is Analog.js? </h2> <p>Analog.js is a meta-framework for Angular that provides:</p> <ul> <li> <strong>File-based routing</strong> similar to Next.js</li> <li> <strong>Server-side rendering</strong> out of the box</li> <li> <strong>API routes</strong> with full-stack capabilities</li> <li> <strong>Static site generation</strong> support</li> <li> <strong>Vite-powered</strong> build system for fast development</li> </ul> <p>Unlike traditional Angular applications, Analog.js eliminates much of the configuration complexity while maintaining the power and type safety that Angular developers love.</p> <h2> Project Architecture Overview </h2> <p>TechLeadPilot is built as an Nx monorepo with the following structure:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code>techleadpilot/ ├── landing/ <span class="c"># Analog.js application</span> │ ├── src/ │ │ ├── app/ │ │ │ ├── components/ <span class="c"># Reusable UI components</span> │ │ │ ├── pages/ <span class="c"># File-based routes</span> │ │ │ ├── services/ <span class="c"># Business logic services</span> │ │ │ ├── types/ <span class="c"># TypeScript interfaces</span> │ │ │ └── utils/ <span class="c"># Utility functions</span> │ │ └── server/ <span class="c"># Server-side API routes</span> │ ├── vite.config.ts <span class="c"># Vite configuration</span> │ └── project.json <span class="c"># Nx project configuration</span> ├── firestore.rules <span class="c"># Firebase security rules</span> └── nx.json <span class="c"># Nx workspace configuration</span> </code></pre> </div> <h3> Key Technologies </h3> <ul> <li> <strong>Frontend</strong>: Analog.js (Angular 20)</li> <li> <strong>Backend</strong>: Firebase Functions + Firestore</li> <li> <strong>Authentication</strong>: Firebase Auth</li> <li> <strong>Styling</strong>: Tailwind CSS</li> <li> <strong>Build Tool</strong>: Vite</li> <li> <strong>Monorepo</strong>: Nx</li> </ul> <h2> Setting Up Analog.js with Firebase </h2> <h3> Initial Configuration </h3> <p>The journey begins with configuring Analog.js to work seamlessly with Firebase. Here's the essential setup:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight typescript"><code><span class="c1">// app.config.ts</span> <span class="k">import</span> <span class="p">{</span> <span class="nx">ApplicationConfig</span> <span class="p">}</span> <span class="k">from</span> <span class="dl">'</span><span class="s1">@angular/core</span><span class="dl">'</span> <span class="k">import</span> <span class="p">{</span> <span class="nx">provideRouter</span> <span class="p">}</span> <span class="k">from</span> <span class="dl">'</span><span class="s1">@angular/router</span><span class="dl">'</span> <span class="k">import</span> <span class="p">{</span> <span class="nx">provideClientHydration</span> <span class="p">}</span> <span class="k">from</span> <span class="dl">'</span><span class="s1">@angular/platform-browser</span><span class="dl">'</span> <span class="k">import</span> <span class="p">{</span> <span class="nx">provideFileRouter</span> <span class="p">}</span> <span class="k">from</span> <span class="dl">'</span><span class="s1">@analogjs/router</span><span class="dl">'</span> <span class="k">import</span> <span class="p">{</span> <span class="nx">provideHttpClient</span> <span class="p">}</span> <span class="k">from</span> <span class="dl">'</span><span class="s1">@angular/common/http</span><span class="dl">'</span> <span class="k">import</span> <span class="p">{</span> <span class="nx">provideFirebaseApp</span><span class="p">,</span> <span class="nx">initializeApp</span> <span class="p">}</span> <span class="k">from</span> <span class="dl">'</span><span class="s1">@angular/fire/app</span><span class="dl">'</span> <span class="k">import</span> <span class="p">{</span> <span class="nx">provideAuth</span><span class="p">,</span> <span class="nx">getAuth</span> <span class="p">}</span> <span class="k">from</span> <span class="dl">'</span><span class="s1">@angular/fire/auth</span><span class="dl">'</span> <span class="k">import</span> <span class="p">{</span> <span class="nx">provideFirestore</span><span class="p">,</span> <span class="nx">getFirestore</span> <span class="p">}</span> <span class="k">from</span> <span class="dl">'</span><span class="s1">@angular/fire/firestore</span><span class="dl">'</span> <span class="k">import</span> <span class="p">{</span> <span class="nx">firebaseConfig</span> <span class="p">}</span> <span class="k">from</span> <span class="dl">'</span><span class="s1">./firebase-config</span><span class="dl">'</span> <span class="k">export</span> <span class="kd">const</span> <span class="nx">appConfig</span><span class="p">:</span> <span class="nx">ApplicationConfig</span> <span class="o">=</span> <span class="p">{</span> <span class="na">providers</span><span class="p">:</span> <span class="p">[</span> <span class="nf">provideFileRouter</span><span class="p">(),</span> <span class="nf">provideClientHydration</span><span class="p">(),</span> <span class="nf">provideHttpClient</span><span class="p">(),</span> <span class="nf">provideFirebaseApp</span><span class="p">(()</span> <span class="o">=&gt;</span> <span class="nf">initializeApp</span><span class="p">(</span><span class="nx">firebaseConfig</span><span class="p">)),</span> <span class="nf">provideAuth</span><span class="p">(()</span> <span class="o">=&gt;</span> <span class="nf">getAuth</span><span class="p">()),</span> <span class="nf">provideFirestore</span><span class="p">(()</span> <span class="o">=&gt;</span> <span class="nf">getFirestore</span><span class="p">()),</span> <span class="p">],</span> <span class="p">}</span> </code></pre> </div> <h3> Vite Configuration and SSR Troubleshooting </h3> <p>The most challenging aspect was configuring Vite to handle Firebase packages in SSR mode. Here are the critical configuration points:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight typescript"><code><span class="c1">// Key SSR configuration in vite.config.ts</span> <span class="nx">ssr</span><span class="p">:</span> <span class="p">{</span> <span class="nl">noExternal</span><span class="p">:</span> <span class="p">[</span> <span class="dl">'</span><span class="s1">@angular/fire/**</span><span class="dl">'</span><span class="p">,</span> <span class="dl">'</span><span class="s1">firebase/**</span><span class="dl">'</span><span class="p">,</span> <span class="dl">'</span><span class="s1">tslib</span><span class="dl">'</span><span class="p">,</span> <span class="sr">/^@firebase</span><span class="se">\/</span><span class="sr">/</span><span class="p">,</span> <span class="p">],</span> <span class="nx">external</span><span class="p">:</span> <span class="p">[</span><span class="dl">'</span><span class="s1">rxjs</span><span class="dl">'</span><span class="p">]</span> <span class="p">}</span> </code></pre> </div> <h4> Common SSR Errors We Encountered </h4> <p><strong>1. tslib Destructuring Error</strong></p> <ul> <li> <strong>Error</strong>: <code>Cannot destructure property '__extends' of 'import_tslib.default'</code> </li> <li> <strong>Solution</strong>: Add <code>'tslib'</code> to <code>noExternal</code> array</li> </ul> <p><strong>2. RxJS "exports is not defined"</strong></p> <ul> <li> <strong>Error</strong>: <code>ReferenceError: exports is not defined</code> </li> <li> <strong>Solution</strong>: Move RxJS to <code>external</code> array instead of <code>noExternal</code> </li> </ul> <p><strong>3. Firebase Module Resolution</strong></p> <ul> <li> <strong>Error</strong>: <code>Module not found: firebase/auth</code> </li> <li> <strong>Solution</strong>: Use regex pattern <code>/^@firebase\//</code> to catch all Firebase submodules</li> </ul> <h4> Key Configuration Strategy </h4> <ul> <li> <strong>noExternal</strong>: Firebase packages that need Vite transformation</li> <li> <strong>external</strong>: RxJS works better with Node.js native handling</li> <li> <strong>Module resolution</strong>: Use proper ESM conditions for compatibility</li> </ul> <p><strong>Key Learning</strong>: Understanding which packages need SSR transformation vs. native Node.js handling is critical for Firebase integration.</p> <h2> File-Based Routing in Practice </h2> <p>Analog.js uses file-based routing similar to Next.js, which significantly simplifies route management:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code>pages/ ├── <span class="o">(</span>home<span class="o">)</span>.page.ts <span class="c"># Route: /</span> ├── <span class="nb">jobs</span>/ │ ├── <span class="o">(</span>job-list<span class="o">)</span>.page.ts <span class="c"># Route: /jobs</span> │ ├── <span class="o">[</span>jobId].page.ts <span class="c"># Route: /jobs/:jobId</span> │ └── <span class="o">[</span>jobId].server.ts <span class="c"># Server-side data loading</span> └── account/ └── favorites.page.ts <span class="c"># Route: /account/favorites</span> </code></pre> </div> <h3> Server-Side Data Loading with Analog.js </h3> <p>Analog.js provides a powerful pattern for loading data on the server before rendering, similar to Next.js's <code>getServerSideProps</code>. This ensures data is available during SSR, improving SEO and initial page load performance.</p> <h4> The Server-Side Loader Pattern </h4> <p>The key is the <code>.server.ts</code> file that exports a <code>load</code> function:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight typescript"><code><span class="c1">// pages/jobs/[jobId].server.ts</span> <span class="k">import</span> <span class="p">{</span> <span class="nx">PageServerLoad</span> <span class="p">}</span> <span class="k">from</span> <span class="dl">'</span><span class="s1">@analogjs/router</span><span class="dl">'</span> <span class="k">import</span> <span class="p">{</span> <span class="nx">getJobById</span> <span class="p">}</span> <span class="k">from</span> <span class="dl">'</span><span class="s1">../../../server/services/firestore-jobs.service</span><span class="dl">'</span> <span class="k">export</span> <span class="kd">const</span> <span class="nx">load</span> <span class="o">=</span> <span class="k">async </span><span class="p">({</span> <span class="nx">params</span> <span class="p">}:</span> <span class="nx">PageServerLoad</span><span class="p">)</span> <span class="o">=&gt;</span> <span class="p">{</span> <span class="kd">const</span> <span class="nx">jobId</span> <span class="o">=</span> <span class="nx">params</span><span class="p">?.[</span><span class="dl">'</span><span class="s1">jobId</span><span class="dl">'</span><span class="p">]</span> <span class="c1">// Fetch data server-side before rendering</span> <span class="kd">const</span> <span class="nx">job</span> <span class="o">=</span> <span class="nx">jobId</span> <span class="p">?</span> <span class="k">await</span> <span class="nf">getJobById</span><span class="p">(</span><span class="nx">jobId</span><span class="p">)</span> <span class="p">:</span> <span class="kc">null</span> <span class="k">return</span> <span class="p">{</span> <span class="nx">job</span> <span class="p">}</span> <span class="p">}</span> </code></pre> </div> <h4> Consuming Server Data in Components </h4> <p>The page component receives the server data through the <code>load</code> input:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight typescript"><code><span class="c1">// pages/jobs/[jobId].page.ts</span> <span class="k">export</span> <span class="k">default</span> <span class="kd">class</span> <span class="nc">JobDetailPageComponent</span> <span class="k">implements</span> <span class="nx">OnInit</span> <span class="p">{</span> <span class="p">@</span><span class="nd">Input</span><span class="p">()</span> <span class="kd">set</span> <span class="nf">load</span><span class="p">(</span><span class="nx">data</span><span class="p">:</span> <span class="nx">LoadResult</span><span class="o">&lt;</span><span class="k">typeof</span> <span class="nx">load</span><span class="o">&gt;</span><span class="p">)</span> <span class="p">{</span> <span class="k">this</span><span class="p">.</span><span class="nx">data</span> <span class="o">=</span> <span class="nx">data</span> <span class="p">}</span> <span class="nx">data</span><span class="o">!</span><span class="p">:</span> <span class="nx">LoadResult</span><span class="o">&lt;</span><span class="k">typeof</span> <span class="nx">load</span><span class="o">&gt;</span> <span class="nf">ngOnInit</span><span class="p">():</span> <span class="k">void</span> <span class="p">{</span> <span class="c1">// SSR-safe browser API usage</span> <span class="k">if </span><span class="p">(</span><span class="k">typeof</span> <span class="nb">window</span> <span class="o">!==</span> <span class="dl">'</span><span class="s1">undefined</span><span class="dl">'</span> <span class="o">&amp;&amp;</span> <span class="k">typeof</span> <span class="nb">window</span><span class="p">.</span><span class="nx">scrollTo</span> <span class="o">===</span> <span class="dl">'</span><span class="s1">function</span><span class="dl">'</span><span class="p">)</span> <span class="p">{</span> <span class="nb">window</span><span class="p">.</span><span class="nf">scrollTo</span><span class="p">(</span><span class="mi">0</span><span class="p">,</span> <span class="mi">0</span><span class="p">)</span> <span class="p">}</span> <span class="p">}</span> <span class="p">}</span> </code></pre> </div> <h4> Key Benefits </h4> <ol> <li> <strong>SEO-Friendly</strong>: Data is available during server rendering</li> <li> <strong>Type-Safe</strong>: TypeScript infers the exact shape of loaded data</li> <li> <strong>Performance</strong>: No client-side data fetching delays</li> <li> <strong>Error Handling</strong>: Server-side errors can be handled gracefully</li> </ol> <h4> Error Handling in Server Loaders </h4> <div class="highlight js-code-highlight"> <pre class="highlight typescript"><code><span class="k">export</span> <span class="kd">const</span> <span class="nx">load</span> <span class="o">=</span> <span class="k">async </span><span class="p">({</span> <span class="nx">params</span> <span class="p">}:</span> <span class="nx">PageServerLoad</span><span class="p">)</span> <span class="o">=&gt;</span> <span class="p">{</span> <span class="k">try</span> <span class="p">{</span> <span class="kd">const</span> <span class="nx">jobId</span> <span class="o">=</span> <span class="nx">params</span><span class="p">?.[</span><span class="dl">'</span><span class="s1">jobId</span><span class="dl">'</span><span class="p">]</span> <span class="kd">const</span> <span class="nx">job</span> <span class="o">=</span> <span class="nx">jobId</span> <span class="p">?</span> <span class="k">await</span> <span class="nf">getJobById</span><span class="p">(</span><span class="nx">jobId</span><span class="p">)</span> <span class="p">:</span> <span class="kc">null</span> <span class="k">return</span> <span class="p">{</span> <span class="nx">job</span><span class="p">,</span> <span class="na">error</span><span class="p">:</span> <span class="kc">null</span><span class="p">,</span> <span class="p">}</span> <span class="p">}</span> <span class="k">catch </span><span class="p">(</span><span class="nx">error</span><span class="p">)</span> <span class="p">{</span> <span class="nx">console</span><span class="p">.</span><span class="nf">error</span><span class="p">(</span><span class="dl">'</span><span class="s1">Failed to load job:</span><span class="dl">'</span><span class="p">,</span> <span class="nx">error</span><span class="p">)</span> <span class="k">return</span> <span class="p">{</span> <span class="na">job</span><span class="p">:</span> <span class="kc">null</span><span class="p">,</span> <span class="na">error</span><span class="p">:</span> <span class="dl">'</span><span class="s1">Failed to load job details</span><span class="dl">'</span><span class="p">,</span> <span class="p">}</span> <span class="p">}</span> <span class="p">}</span> </code></pre> </div> <p><strong>Key Learning</strong>: Server-side data loading provides better SEO and performance but requires careful error handling and SSR-safe component code.</p> <h2> Firebase Integration Patterns </h2> <h3> Server-Side Firebase Admin </h3> <p>For server-side operations, we use Firebase Admin SDK:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight typescript"><code><span class="c1">// server/services/firebase-admin.ts</span> <span class="k">import</span> <span class="p">{</span> <span class="nx">initializeApp</span><span class="p">,</span> <span class="nx">cert</span><span class="p">,</span> <span class="nx">getApps</span> <span class="p">}</span> <span class="k">from</span> <span class="dl">'</span><span class="s1">firebase-admin/app</span><span class="dl">'</span> <span class="k">import</span> <span class="p">{</span> <span class="nx">getFirestore</span> <span class="p">}</span> <span class="k">from</span> <span class="dl">'</span><span class="s1">firebase-admin/firestore</span><span class="dl">'</span> <span class="kd">let</span> <span class="nx">app</span><span class="p">:</span> <span class="nx">App</span> <span class="k">if </span><span class="p">(</span><span class="o">!</span><span class="nf">getApps</span><span class="p">().</span><span class="nx">length</span><span class="p">)</span> <span class="p">{</span> <span class="nx">app</span> <span class="o">=</span> <span class="nf">initializeApp</span><span class="p">({</span> <span class="na">credential</span><span class="p">:</span> <span class="nf">applicationDefault</span><span class="p">(),</span> <span class="na">projectId</span><span class="p">:</span> <span class="nx">process</span><span class="p">.</span><span class="nx">env</span><span class="p">[</span><span class="dl">'</span><span class="s1">GOOGLE_CLOUD_PROJECT</span><span class="dl">'</span><span class="p">],</span> <span class="p">})</span> <span class="p">}</span> <span class="k">else</span> <span class="p">{</span> <span class="nx">app</span> <span class="o">=</span> <span class="nf">getApps</span><span class="p">()[</span><span class="mi">0</span><span class="p">]</span> <span class="p">}</span> <span class="k">export</span> <span class="kd">const</span> <span class="nx">db</span> <span class="o">=</span> <span class="nf">getFirestore</span><span class="p">(</span><span class="nx">app</span><span class="p">)</span> </code></pre> </div> <h3> Client-Side Firebase Services </h3> <p>For client-side operations, we create services that handle authentication and data operations:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight typescript"><code><span class="c1">// Key patterns in favorites.service.ts</span> <span class="p">@</span><span class="nd">Injectable</span><span class="p">({</span> <span class="na">providedIn</span><span class="p">:</span> <span class="dl">'</span><span class="s1">root</span><span class="dl">'</span> <span class="p">})</span> <span class="k">export</span> <span class="kd">class</span> <span class="nc">FavoritesService</span> <span class="p">{</span> <span class="k">private</span> <span class="nx">user$</span> <span class="o">=</span> <span class="nf">user</span><span class="p">(</span><span class="k">this</span><span class="p">.</span><span class="nx">auth</span><span class="p">)</span> <span class="nf">addToFavorites</span><span class="p">(</span><span class="nx">job</span><span class="p">:</span> <span class="nx">Job</span><span class="p">):</span> <span class="nx">Observable</span><span class="o">&lt;</span><span class="k">void</span><span class="o">&gt;</span> <span class="p">{</span> <span class="k">return</span> <span class="k">this</span><span class="p">.</span><span class="nx">user$</span><span class="p">.</span><span class="nf">pipe</span><span class="p">(</span> <span class="nf">switchMap</span><span class="p">((</span><span class="nx">user</span><span class="p">)</span> <span class="o">=&gt;</span> <span class="p">{</span> <span class="k">if </span><span class="p">(</span><span class="o">!</span><span class="nx">user</span><span class="p">)</span> <span class="k">throw</span> <span class="k">new</span> <span class="nc">Error</span><span class="p">(</span><span class="dl">'</span><span class="s1">Authentication required</span><span class="dl">'</span><span class="p">)</span> <span class="kd">const</span> <span class="nx">favoritesRef</span> <span class="o">=</span> <span class="nf">collection</span><span class="p">(</span><span class="k">this</span><span class="p">.</span><span class="nx">firestore</span><span class="p">,</span> <span class="s2">`users/</span><span class="p">${</span><span class="nx">user</span><span class="p">.</span><span class="nx">uid</span><span class="p">}</span><span class="s2">/favorites`</span><span class="p">)</span> <span class="kd">const</span> <span class="nx">expireOn</span> <span class="o">=</span> <span class="k">new</span> <span class="nc">Date</span><span class="p">()</span> <span class="nx">expireOn</span><span class="p">.</span><span class="nf">setMonth</span><span class="p">(</span><span class="nx">expireOn</span><span class="p">.</span><span class="nf">getMonth</span><span class="p">()</span> <span class="o">+</span> <span class="mi">3</span><span class="p">)</span> <span class="c1">// 3-month expiration</span> <span class="k">return</span> <span class="k">from</span><span class="p">(</span><span class="nf">addDoc</span><span class="p">(</span><span class="nx">favoritesRef</span><span class="p">,</span> <span class="p">{</span> <span class="p">...</span><span class="nx">job</span><span class="p">,</span> <span class="nx">expireOn</span> <span class="p">}))</span> <span class="p">}),</span> <span class="p">)</span> <span class="p">}</span> <span class="p">}</span> </code></pre> </div> <p><strong>Key Learning</strong>: Use RxJS <code>switchMap</code> for complex async operations and always validate authentication before database operations.</p> <h2> Type Safety and Data Modeling </h2> <h3> Handling Partial Types from Firestore </h3> <p>One significant challenge was dealing with TypeScript types when Firestore returns partial data:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight typescript"><code><span class="c1">// types/job.types.ts</span> <span class="k">export</span> <span class="kr">interface</span> <span class="nx">Job</span> <span class="p">{</span> <span class="nl">id</span><span class="p">:</span> <span class="kr">string</span> <span class="nx">title</span><span class="p">:</span> <span class="kr">string</span> <span class="nx">company</span><span class="p">:</span> <span class="kr">string</span> <span class="nx">location</span><span class="p">:</span> <span class="kr">string</span> <span class="nx">description</span><span class="p">:</span> <span class="kr">string</span> <span class="nx">requirements</span><span class="p">:</span> <span class="kr">string</span><span class="p">[]</span> <span class="nx">benefits</span><span class="p">:</span> <span class="kr">string</span><span class="p">[]</span> <span class="nx">skills</span><span class="p">:</span> <span class="kr">string</span><span class="p">[]</span> <span class="nx">salary</span><span class="p">?:</span> <span class="p">{</span> <span class="na">min</span><span class="p">:</span> <span class="kr">number</span> <span class="na">max</span><span class="p">:</span> <span class="kr">number</span> <span class="na">currency</span><span class="p">:</span> <span class="kr">string</span> <span class="p">}</span> <span class="nl">type</span><span class="p">:</span> <span class="dl">'</span><span class="s1">full-time</span><span class="dl">'</span> <span class="o">|</span> <span class="dl">'</span><span class="s1">part-time</span><span class="dl">'</span> <span class="o">|</span> <span class="dl">'</span><span class="s1">contract</span><span class="dl">'</span> <span class="nx">experience</span><span class="p">:</span> <span class="dl">'</span><span class="s1">junior</span><span class="dl">'</span> <span class="o">|</span> <span class="dl">'</span><span class="s1">mid</span><span class="dl">'</span> <span class="o">|</span> <span class="dl">'</span><span class="s1">senior</span><span class="dl">'</span> <span class="o">|</span> <span class="dl">'</span><span class="s1">lead</span><span class="dl">'</span> <span class="nx">isRemote</span><span class="p">:</span> <span class="nx">boolean</span> <span class="nx">isUrgent</span><span class="p">:</span> <span class="nx">boolean</span> <span class="nx">postedDate</span><span class="p">:</span> <span class="kr">string</span> <span class="nx">link</span><span class="p">:</span> <span class="kr">string</span> <span class="nx">logo</span><span class="p">?:</span> <span class="kr">string</span> <span class="p">}</span> <span class="k">export</span> <span class="kr">interface</span> <span class="nx">JobFilters</span> <span class="p">{</span> <span class="nl">search</span><span class="p">:</span> <span class="kr">string</span> <span class="nx">location</span><span class="p">:</span> <span class="kr">string</span> <span class="kd">type</span><span class="p">:</span> <span class="kr">string</span> <span class="nx">experience</span><span class="p">:</span> <span class="kr">string</span> <span class="nx">isRemote</span><span class="p">:</span> <span class="nx">boolean</span> <span class="nx">salaryRange</span><span class="p">:</span> <span class="p">{</span> <span class="nl">min</span><span class="p">:</span> <span class="kr">number</span> <span class="nx">max</span><span class="p">:</span> <span class="kr">number</span> <span class="p">}</span> <span class="p">}</span> </code></pre> </div> <h3> Type-Safe Component Input Handling </h3> <p>When building reusable components, we needed to handle both full and partial job objects:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight typescript"><code><span class="c1">// Safe handling of partial data in components</span> <span class="k">export</span> <span class="kd">class</span> <span class="nc">JobDetailComponent</span> <span class="p">{</span> <span class="p">@</span><span class="nd">Input</span><span class="p">()</span> <span class="nx">job</span><span class="p">:</span> <span class="nx">Job</span> <span class="o">|</span> <span class="nb">Partial</span><span class="o">&lt;</span><span class="nx">Job</span><span class="o">&gt;</span> <span class="o">|</span> <span class="kc">null</span> <span class="o">=</span> <span class="kc">null</span> <span class="kd">get</span> <span class="nf">processedJob</span><span class="p">()</span> <span class="p">{</span> <span class="k">if </span><span class="p">(</span><span class="o">!</span><span class="k">this</span><span class="p">.</span><span class="nx">job</span><span class="p">)</span> <span class="k">return</span> <span class="kc">null</span> <span class="k">return</span> <span class="p">{</span> <span class="p">...</span><span class="k">this</span><span class="p">.</span><span class="nx">job</span><span class="p">,</span> <span class="na">requirements</span><span class="p">:</span> <span class="nb">Array</span><span class="p">.</span><span class="nf">isArray</span><span class="p">(</span><span class="k">this</span><span class="p">.</span><span class="nx">job</span><span class="p">.</span><span class="nx">requirements</span><span class="p">)</span> <span class="p">?</span> <span class="k">this</span><span class="p">.</span><span class="nx">job</span><span class="p">.</span><span class="nx">requirements</span> <span class="p">:</span> <span class="p">[],</span> <span class="na">salary</span><span class="p">:</span> <span class="k">this</span><span class="p">.</span><span class="nx">job</span><span class="p">.</span><span class="nx">salary</span> <span class="o">??</span> <span class="p">{</span> <span class="na">min</span><span class="p">:</span> <span class="mi">0</span><span class="p">,</span> <span class="na">max</span><span class="p">:</span> <span class="mi">0</span><span class="p">,</span> <span class="na">currency</span><span class="p">:</span> <span class="dl">''</span> <span class="p">},</span> <span class="na">company</span><span class="p">:</span> <span class="k">this</span><span class="p">.</span><span class="nx">job</span><span class="p">.</span><span class="nx">company</span> <span class="o">??</span> <span class="dl">''</span><span class="p">,</span> <span class="c1">// ... provide safe defaults for all fields</span> <span class="p">}</span> <span class="p">}</span> <span class="p">}</span> </code></pre> </div> <p><strong>Key Learning</strong>: Create getter methods that safely handle partial data and provide sensible defaults to prevent runtime errors.</p> <h2> Advanced Component Patterns </h2> <h3> Reusable Components with Context </h3> <p>When extracting the job detail functionality into a reusable component, we needed to handle different contexts (standalone page vs. modal):<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight typescript"><code><span class="c1">// Reusable component that adapts to different contexts</span> <span class="p">@</span><span class="nd">Component</span><span class="p">({</span> <span class="na">selector</span><span class="p">:</span> <span class="dl">'</span><span class="s1">app-job-detail</span><span class="dl">'</span><span class="p">,</span> <span class="na">template</span><span class="p">:</span> <span class="s2">` &lt;div class="min-h-screen bg-gray-50 py-8"&gt; &lt;div class="max-w-4xl mx-auto px-4 sm:px-6 lg:px-8"&gt; &lt;!-- Back Button (conditional) --&gt; &lt;button *ngIf="showBackButton" (click)="goBack()" class="flex items-center text-blue-600 hover:text-blue-800 mb-6" &gt; &lt;svg class="w-5 h-5 mr-2" fill="none" stroke="currentColor" viewBox="0 0 24 24"&gt; &lt;path stroke-linecap="round" stroke-linejoin="round" stroke-width="2" d="M15 19l-7-7 7-7" /&gt; &lt;/svg&gt; {{ backButtonText }} &lt;/button&gt; &lt;!-- Favorite Button (conditional) --&gt; &lt;button *ngIf="showFavoriteButton &amp;&amp; (user$ | async)" (click)="toggleFavorite()" [disabled]="favoriteLoading" [title]="isFavorited ? 'Remove from favorites' : 'Save to favorites (expires after 3 months)'" class="p-2 rounded-full hover:bg-gray-100 transition-colors" [class.text-red-500]="isFavorited" [class.text-gray-400]="!isFavorited" &gt; &lt;svg class="w-5 h-5" [class.fill-current]="isFavorited" fill="none" stroke="currentColor" viewBox="0 0 24 24"&gt; &lt;path stroke-linecap="round" stroke-linejoin="round" stroke-width="2" d="M4.318 6.318a4.5 4.5 0 000 6.364L12 20.364l7.682-7.682a4.5 4.5 0 00-6.364-6.364L12 7.636l-1.318-1.318a4.5 4.5 0 00-6.364 0z" /&gt; &lt;/svg&gt; &lt;/button&gt; &lt;!-- Job content --&gt; &lt;div *ngIf="processedJob" class="bg-white rounded-lg shadow-sm border border-gray-200"&gt; &lt;!-- Job details implementation --&gt; &lt;/div&gt; &lt;/div&gt; &lt;/div&gt; `</span><span class="p">,</span> <span class="p">})</span> <span class="k">export</span> <span class="kd">class</span> <span class="nc">JobDetailComponent</span> <span class="k">implements</span> <span class="nx">OnInit</span> <span class="p">{</span> <span class="p">@</span><span class="nd">Input</span><span class="p">()</span> <span class="nx">job</span><span class="p">:</span> <span class="nx">Job</span> <span class="o">|</span> <span class="nb">Partial</span><span class="o">&lt;</span><span class="nx">Job</span><span class="o">&gt;</span> <span class="o">|</span> <span class="kc">null</span> <span class="o">=</span> <span class="kc">null</span> <span class="p">@</span><span class="nd">Input</span><span class="p">()</span> <span class="nx">showBackButton</span><span class="p">:</span> <span class="nx">boolean</span> <span class="o">=</span> <span class="kc">true</span> <span class="p">@</span><span class="nd">Input</span><span class="p">()</span> <span class="nx">backButtonText</span><span class="p">:</span> <span class="kr">string</span> <span class="o">=</span> <span class="dl">'</span><span class="s1">Back to Jobs</span><span class="dl">'</span> <span class="p">@</span><span class="nd">Input</span><span class="p">()</span> <span class="nx">showFavoriteButton</span><span class="p">:</span> <span class="nx">boolean</span> <span class="o">=</span> <span class="kc">true</span> <span class="k">private</span> <span class="nx">favoritesService</span> <span class="o">=</span> <span class="nf">inject</span><span class="p">(</span><span class="nx">FavoritesService</span><span class="p">)</span> <span class="k">private</span> <span class="nx">auth</span> <span class="o">=</span> <span class="nf">inject</span><span class="p">(</span><span class="nx">Auth</span><span class="p">)</span> <span class="nx">user$</span> <span class="o">=</span> <span class="nf">user</span><span class="p">(</span><span class="k">this</span><span class="p">.</span><span class="nx">auth</span><span class="p">)</span> <span class="nx">isFavorited</span> <span class="o">=</span> <span class="kc">false</span> <span class="nx">favoriteLoading</span> <span class="o">=</span> <span class="kc">false</span> <span class="nf">ngOnInit</span><span class="p">():</span> <span class="k">void</span> <span class="p">{</span> <span class="c1">// SSR-safe initialization</span> <span class="k">if </span><span class="p">(</span><span class="k">typeof</span> <span class="nb">window</span> <span class="o">!==</span> <span class="dl">'</span><span class="s1">undefined</span><span class="dl">'</span> <span class="o">&amp;&amp;</span> <span class="k">typeof</span> <span class="nb">window</span><span class="p">.</span><span class="nx">scrollTo</span> <span class="o">===</span> <span class="dl">'</span><span class="s1">function</span><span class="dl">'</span><span class="p">)</span> <span class="p">{</span> <span class="nb">window</span><span class="p">.</span><span class="nf">scrollTo</span><span class="p">(</span><span class="mi">0</span><span class="p">,</span> <span class="mi">0</span><span class="p">)</span> <span class="p">}</span> <span class="c1">// Check if job is favorited</span> <span class="k">if </span><span class="p">(</span><span class="k">this</span><span class="p">.</span><span class="nx">job</span><span class="p">?.</span><span class="nx">id</span> <span class="o">&amp;&amp;</span> <span class="k">this</span><span class="p">.</span><span class="nx">showFavoriteButton</span><span class="p">)</span> <span class="p">{</span> <span class="k">this</span><span class="p">.</span><span class="nx">favoritesService</span><span class="p">.</span><span class="nf">isJobFavorited</span><span class="p">(</span><span class="k">this</span><span class="p">.</span><span class="nx">job</span><span class="p">.</span><span class="nx">id</span><span class="p">).</span><span class="nf">subscribe</span><span class="p">({</span> <span class="na">next</span><span class="p">:</span> <span class="p">(</span><span class="nx">isFavorited</span><span class="p">)</span> <span class="o">=&gt;</span> <span class="p">{</span> <span class="k">this</span><span class="p">.</span><span class="nx">isFavorited</span> <span class="o">=</span> <span class="nx">isFavorited</span> <span class="p">},</span> <span class="na">error</span><span class="p">:</span> <span class="p">(</span><span class="nx">error</span><span class="p">)</span> <span class="o">=&gt;</span> <span class="p">{</span> <span class="nx">console</span><span class="p">.</span><span class="nf">error</span><span class="p">(</span><span class="dl">'</span><span class="s1">Error checking favorite status:</span><span class="dl">'</span><span class="p">,</span> <span class="nx">error</span><span class="p">)</span> <span class="p">},</span> <span class="p">})</span> <span class="p">}</span> <span class="p">}</span> <span class="nf">toggleFavorite</span><span class="p">():</span> <span class="k">void</span> <span class="p">{</span> <span class="k">if </span><span class="p">(</span><span class="o">!</span><span class="k">this</span><span class="p">.</span><span class="nx">job</span> <span class="o">||</span> <span class="o">!</span><span class="k">this</span><span class="p">.</span><span class="nx">job</span><span class="p">.</span><span class="nx">id</span><span class="p">)</span> <span class="k">return</span> <span class="k">this</span><span class="p">.</span><span class="nx">favoriteLoading</span> <span class="o">=</span> <span class="kc">true</span> <span class="k">if </span><span class="p">(</span><span class="k">this</span><span class="p">.</span><span class="nx">isFavorited</span><span class="p">)</span> <span class="p">{</span> <span class="c1">// Remove from favorites logic</span> <span class="k">this</span><span class="p">.</span><span class="nx">user$</span> <span class="p">.</span><span class="nf">pipe</span><span class="p">(</span> <span class="nf">switchMap</span><span class="p">((</span><span class="nx">user</span><span class="p">)</span> <span class="o">=&gt;</span> <span class="p">{</span> <span class="k">if </span><span class="p">(</span><span class="o">!</span><span class="nx">user</span><span class="p">)</span> <span class="k">throw</span> <span class="k">new</span> <span class="nc">Error</span><span class="p">(</span><span class="dl">'</span><span class="s1">User must be authenticated</span><span class="dl">'</span><span class="p">)</span> <span class="k">return</span> <span class="k">this</span><span class="p">.</span><span class="nx">favoritesService</span><span class="p">.</span><span class="nf">getFavoriteByJobId</span><span class="p">(</span><span class="k">this</span><span class="p">.</span><span class="nx">job</span><span class="o">!</span><span class="p">.</span><span class="nx">id</span><span class="o">!</span><span class="p">)</span> <span class="p">}),</span> <span class="nf">switchMap</span><span class="p">((</span><span class="nx">favorite</span><span class="p">)</span> <span class="o">=&gt;</span> <span class="p">{</span> <span class="k">if </span><span class="p">(</span><span class="o">!</span><span class="nx">favorite</span><span class="p">?.</span><span class="nx">favoriteId</span><span class="p">)</span> <span class="k">throw</span> <span class="k">new</span> <span class="nc">Error</span><span class="p">(</span><span class="dl">'</span><span class="s1">Favorite not found</span><span class="dl">'</span><span class="p">)</span> <span class="k">return</span> <span class="k">this</span><span class="p">.</span><span class="nx">user$</span><span class="p">.</span><span class="nf">pipe</span><span class="p">(</span> <span class="nf">switchMap</span><span class="p">((</span><span class="nx">user</span><span class="p">)</span> <span class="o">=&gt;</span> <span class="p">{</span> <span class="k">if </span><span class="p">(</span><span class="o">!</span><span class="nx">user</span><span class="p">)</span> <span class="k">throw</span> <span class="k">new</span> <span class="nc">Error</span><span class="p">(</span><span class="dl">'</span><span class="s1">User must be authenticated</span><span class="dl">'</span><span class="p">)</span> <span class="k">return</span> <span class="k">this</span><span class="p">.</span><span class="nx">favoritesService</span><span class="p">.</span><span class="nf">removeFromFavorites</span><span class="p">(</span><span class="nx">user</span><span class="p">.</span><span class="nx">uid</span><span class="p">,</span> <span class="nx">favorite</span><span class="p">.</span><span class="nx">favoriteId</span><span class="o">!</span><span class="p">)</span> <span class="p">}),</span> <span class="p">)</span> <span class="p">}),</span> <span class="p">)</span> <span class="p">.</span><span class="nf">subscribe</span><span class="p">({</span> <span class="na">next</span><span class="p">:</span> <span class="p">()</span> <span class="o">=&gt;</span> <span class="p">{</span> <span class="k">this</span><span class="p">.</span><span class="nx">isFavorited</span> <span class="o">=</span> <span class="kc">false</span> <span class="k">this</span><span class="p">.</span><span class="nx">favoriteLoading</span> <span class="o">=</span> <span class="kc">false</span> <span class="p">},</span> <span class="na">error</span><span class="p">:</span> <span class="p">(</span><span class="nx">error</span><span class="p">)</span> <span class="o">=&gt;</span> <span class="p">{</span> <span class="nx">console</span><span class="p">.</span><span class="nf">error</span><span class="p">(</span><span class="dl">'</span><span class="s1">Error removing favorite:</span><span class="dl">'</span><span class="p">,</span> <span class="nx">error</span><span class="p">)</span> <span class="k">this</span><span class="p">.</span><span class="nx">favoriteLoading</span> <span class="o">=</span> <span class="kc">false</span> <span class="p">},</span> <span class="p">})</span> <span class="p">}</span> <span class="k">else</span> <span class="p">{</span> <span class="c1">// Add to favorites</span> <span class="kd">const</span> <span class="nx">jobForFavorite</span> <span class="o">=</span> <span class="k">this</span><span class="p">.</span><span class="nx">job</span> <span class="k">as</span> <span class="nx">Job</span> <span class="k">this</span><span class="p">.</span><span class="nx">favoritesService</span><span class="p">.</span><span class="nf">addToFavorites</span><span class="p">(</span><span class="nx">jobForFavorite</span><span class="p">).</span><span class="nf">subscribe</span><span class="p">({</span> <span class="na">next</span><span class="p">:</span> <span class="p">()</span> <span class="o">=&gt;</span> <span class="p">{</span> <span class="k">this</span><span class="p">.</span><span class="nx">isFavorited</span> <span class="o">=</span> <span class="kc">true</span> <span class="k">this</span><span class="p">.</span><span class="nx">favoriteLoading</span> <span class="o">=</span> <span class="kc">false</span> <span class="p">},</span> <span class="na">error</span><span class="p">:</span> <span class="p">(</span><span class="nx">error</span><span class="p">)</span> <span class="o">=&gt;</span> <span class="p">{</span> <span class="nx">console</span><span class="p">.</span><span class="nf">error</span><span class="p">(</span><span class="dl">'</span><span class="s1">Error adding favorite:</span><span class="dl">'</span><span class="p">,</span> <span class="nx">error</span><span class="p">)</span> <span class="k">this</span><span class="p">.</span><span class="nx">favoriteLoading</span> <span class="o">=</span> <span class="kc">false</span> <span class="p">},</span> <span class="p">})</span> <span class="p">}</span> <span class="p">}</span> <span class="nf">goBack</span><span class="p">():</span> <span class="k">void</span> <span class="p">{</span> <span class="k">if </span><span class="p">(</span><span class="k">typeof</span> <span class="nb">window</span> <span class="o">!==</span> <span class="dl">'</span><span class="s1">undefined</span><span class="dl">'</span><span class="p">)</span> <span class="p">{</span> <span class="nb">window</span><span class="p">.</span><span class="nx">history</span><span class="p">.</span><span class="nf">back</span><span class="p">()</span> <span class="p">}</span> <span class="p">}</span> <span class="p">}</span> </code></pre> </div> <h2> UX and Accessibility Enhancements </h2> <h3> Hover Effects and Interactions </h3> <p>Modern web applications require smooth, engaging interactions:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight typescript"><code><span class="c1">// Key accessibility patterns</span> <span class="k">export</span> <span class="kd">class</span> <span class="nc">FavoritesPageComponent</span> <span class="p">{</span> <span class="c1">// Template with hover effects and accessibility</span> <span class="nl">template</span><span class="p">:</span> <span class="s2">` &lt;div (click)="viewJobDetails(favorite)" (keydown)="onCardKeydown($event, favorite)" tabindex="0" role="button" [attr.aria-label]="'View details for ' + favorite.title" class="hover:shadow-lg hover:border-blue-300 hover:-translate-y-1 focus:ring-2 focus:ring-blue-500 transition-all duration-300" &gt; &lt;!-- Prevent event bubbling on nested buttons --&gt; &lt;button (click)="$event.stopPropagation()"&gt;Apply Now&lt;/button&gt; &lt;/div&gt; `</span> <span class="nf">onCardKeydown</span><span class="p">(</span><span class="nx">event</span><span class="p">:</span> <span class="nx">KeyboardEvent</span><span class="p">,</span> <span class="nx">favorite</span><span class="p">:</span> <span class="nx">FavoriteJob</span><span class="p">):</span> <span class="k">void</span> <span class="p">{</span> <span class="k">if </span><span class="p">(</span><span class="nx">event</span><span class="p">.</span><span class="nx">key</span> <span class="o">===</span> <span class="dl">'</span><span class="s1">Enter</span><span class="dl">'</span> <span class="o">||</span> <span class="nx">event</span><span class="p">.</span><span class="nx">key</span> <span class="o">===</span> <span class="dl">'</span><span class="s1"> </span><span class="dl">'</span><span class="p">)</span> <span class="p">{</span> <span class="nx">event</span><span class="p">.</span><span class="nf">preventDefault</span><span class="p">()</span> <span class="k">this</span><span class="p">.</span><span class="nf">viewJobDetails</span><span class="p">(</span><span class="nx">favorite</span><span class="p">)</span> <span class="p">}</span> <span class="p">}</span> <span class="p">}</span> </code></pre> </div> <p><strong>Key Learning</strong>: Always implement keyboard navigation and proper ARIA attributes for accessibility compliance.</p> <h2> State Management with Signals </h2> <p>Analog.js applications can leverage Angular's new Signals API for reactive state management:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight typescript"><code><span class="c1">// Using signals for reactive state management</span> <span class="p">@</span><span class="nd">Component</span><span class="p">({</span> <span class="na">template</span><span class="p">:</span> <span class="s2">` &lt;div *ngIf="loading()" class="loading-spinner"&gt;Loading...&lt;/div&gt; &lt;div *ngIf="error()" class="error-message"&gt;{{ error() }}&lt;/div&gt; &lt;div *ngIf="!loading() &amp;&amp; favorites().length === 0" class="empty-state"&gt;No favorites yet&lt;/div&gt; &lt;div *ngIf="favorites().length &gt; 0" class="favorites-grid"&gt; &lt;!-- Favorites content --&gt; &lt;/div&gt; `</span><span class="p">,</span> <span class="p">})</span> <span class="k">export</span> <span class="kd">class</span> <span class="nc">FavoritesPageComponent</span> <span class="k">implements</span> <span class="nx">OnInit</span> <span class="p">{</span> <span class="k">private</span> <span class="nx">favoritesService</span> <span class="o">=</span> <span class="nf">inject</span><span class="p">(</span><span class="nx">FavoritesService</span><span class="p">)</span> <span class="k">private</span> <span class="nx">auth</span> <span class="o">=</span> <span class="nf">inject</span><span class="p">(</span><span class="nx">Auth</span><span class="p">)</span> <span class="c1">// Reactive signals</span> <span class="nx">favorites</span> <span class="o">=</span> <span class="nx">signal</span><span class="o">&lt;</span><span class="nx">FavoriteJob</span><span class="p">[]</span><span class="o">&gt;</span><span class="p">([])</span> <span class="nx">loading</span> <span class="o">=</span> <span class="nx">signal</span><span class="o">&lt;</span><span class="nx">boolean</span><span class="o">&gt;</span><span class="p">(</span><span class="kc">true</span><span class="p">)</span> <span class="nx">error</span> <span class="o">=</span> <span class="nx">signal</span><span class="o">&lt;</span><span class="kr">string</span> <span class="o">|</span> <span class="kc">null</span><span class="o">&gt;</span><span class="p">(</span><span class="kc">null</span><span class="p">)</span> <span class="nx">selectedJob</span> <span class="o">=</span> <span class="nx">signal</span><span class="o">&lt;</span><span class="nx">FavoriteJob</span> <span class="o">|</span> <span class="kc">null</span><span class="o">&gt;</span><span class="p">(</span><span class="kc">null</span><span class="p">)</span> <span class="nx">user$</span> <span class="o">=</span> <span class="nf">user</span><span class="p">(</span><span class="k">this</span><span class="p">.</span><span class="nx">auth</span><span class="p">)</span> <span class="nf">ngOnInit</span><span class="p">():</span> <span class="k">void</span> <span class="p">{</span> <span class="k">this</span><span class="p">.</span><span class="nx">user$</span><span class="p">.</span><span class="nf">subscribe</span><span class="p">((</span><span class="nx">user</span><span class="p">)</span> <span class="o">=&gt;</span> <span class="p">{</span> <span class="k">if </span><span class="p">(</span><span class="nx">user</span><span class="p">)</span> <span class="p">{</span> <span class="k">this</span><span class="p">.</span><span class="nf">loadFavorites</span><span class="p">()</span> <span class="p">}</span> <span class="k">else</span> <span class="p">{</span> <span class="k">this</span><span class="p">.</span><span class="nx">loading</span><span class="p">.</span><span class="nf">set</span><span class="p">(</span><span class="kc">false</span><span class="p">)</span> <span class="p">}</span> <span class="p">})</span> <span class="p">}</span> <span class="k">private</span> <span class="nf">loadFavorites</span><span class="p">():</span> <span class="k">void</span> <span class="p">{</span> <span class="k">this</span><span class="p">.</span><span class="nx">loading</span><span class="p">.</span><span class="nf">set</span><span class="p">(</span><span class="kc">true</span><span class="p">)</span> <span class="k">this</span><span class="p">.</span><span class="nx">error</span><span class="p">.</span><span class="nf">set</span><span class="p">(</span><span class="kc">null</span><span class="p">)</span> <span class="k">this</span><span class="p">.</span><span class="nx">favoritesService</span><span class="p">.</span><span class="nf">getUserFavorites</span><span class="p">().</span><span class="nf">subscribe</span><span class="p">({</span> <span class="na">next</span><span class="p">:</span> <span class="p">(</span><span class="nx">favorites</span><span class="p">)</span> <span class="o">=&gt;</span> <span class="p">{</span> <span class="k">this</span><span class="p">.</span><span class="nx">favorites</span><span class="p">.</span><span class="nf">set</span><span class="p">(</span><span class="nx">favorites</span><span class="p">)</span> <span class="k">this</span><span class="p">.</span><span class="nx">loading</span><span class="p">.</span><span class="nf">set</span><span class="p">(</span><span class="kc">false</span><span class="p">)</span> <span class="p">},</span> <span class="na">error</span><span class="p">:</span> <span class="p">(</span><span class="nx">error</span><span class="p">)</span> <span class="o">=&gt;</span> <span class="p">{</span> <span class="nx">console</span><span class="p">.</span><span class="nf">error</span><span class="p">(</span><span class="dl">'</span><span class="s1">Error loading favorites:</span><span class="dl">'</span><span class="p">,</span> <span class="nx">error</span><span class="p">)</span> <span class="k">this</span><span class="p">.</span><span class="nx">error</span><span class="p">.</span><span class="nf">set</span><span class="p">(</span><span class="dl">'</span><span class="s1">Failed to load favorites</span><span class="dl">'</span><span class="p">)</span> <span class="k">this</span><span class="p">.</span><span class="nx">loading</span><span class="p">.</span><span class="nf">set</span><span class="p">(</span><span class="kc">false</span><span class="p">)</span> <span class="p">},</span> <span class="p">})</span> <span class="p">}</span> <span class="c1">// Type-safe conversion for component input</span> <span class="kd">get</span> <span class="nf">selectedJobForDisplay</span><span class="p">():</span> <span class="nx">Job</span> <span class="o">|</span> <span class="kc">null</span> <span class="p">{</span> <span class="kd">const</span> <span class="nx">job</span> <span class="o">=</span> <span class="k">this</span><span class="p">.</span><span class="nf">selectedJob</span><span class="p">()</span> <span class="k">if </span><span class="p">(</span><span class="o">!</span><span class="nx">job</span><span class="p">)</span> <span class="k">return</span> <span class="kc">null</span> <span class="c1">// Convert FavoriteJob to Job by omitting the extra fields</span> <span class="kd">const</span> <span class="p">{</span> <span class="nx">favoriteId</span><span class="p">,</span> <span class="nx">expireOn</span><span class="p">,</span> <span class="nx">addedOn</span><span class="p">,</span> <span class="p">...</span><span class="nx">jobData</span> <span class="p">}</span> <span class="o">=</span> <span class="nx">job</span> <span class="k">return</span> <span class="nx">jobData</span> <span class="k">as</span> <span class="nx">Job</span> <span class="p">}</span> <span class="p">}</span> </code></pre> </div> <h2> Performance Optimization </h2> <h3> Lazy Loading and Code Splitting </h3> <p>Analog.js automatically handles code splitting for routes, but we can optimize further:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight typescript"><code><span class="c1">// Lazy loading components</span> <span class="kd">const</span> <span class="nx">JobCardComponent</span> <span class="o">=</span> <span class="nf">lazy</span><span class="p">(()</span> <span class="o">=&gt;</span> <span class="k">import</span><span class="p">(</span><span class="dl">'</span><span class="s1">../job-card/job-card.component</span><span class="dl">'</span><span class="p">))</span> <span class="kd">const</span> <span class="nx">JobFiltersComponent</span> <span class="o">=</span> <span class="nf">lazy</span><span class="p">(()</span> <span class="o">=&gt;</span> <span class="k">import</span><span class="p">(</span><span class="dl">'</span><span class="s1">../job-filters/job-filters.component</span><span class="dl">'</span><span class="p">))</span> <span class="c1">// Using dynamic imports for heavy features</span> <span class="k">async</span> <span class="nf">loadFavoritesFeature</span><span class="p">()</span> <span class="p">{</span> <span class="kd">const</span> <span class="p">{</span> <span class="nx">FavoritesService</span> <span class="p">}</span> <span class="o">=</span> <span class="k">await</span> <span class="k">import</span><span class="p">(</span><span class="dl">'</span><span class="s1">../../services/favorites.service</span><span class="dl">'</span><span class="p">)</span> <span class="k">return</span> <span class="nx">FavoritesService</span> <span class="p">}</span> </code></pre> </div> <h3> Efficient Data Fetching </h3> <div class="highlight js-code-highlight"> <pre class="highlight typescript"><code><span class="c1">// server/services/firestore-jobs.service.ts</span> <span class="k">export</span> <span class="k">async</span> <span class="kd">function</span> <span class="nf">getAllJobs</span><span class="p">({</span> <span class="nx">limit</span> <span class="o">=</span> <span class="mi">10</span><span class="p">,</span> <span class="nx">filters</span> <span class="o">=</span> <span class="p">{}</span> <span class="k">as</span> <span class="nb">Partial</span><span class="o">&lt;</span><span class="nx">JobFilters</span><span class="o">&gt;</span><span class="p">,</span> <span class="nx">sort</span> <span class="o">=</span> <span class="p">{</span> <span class="na">field</span><span class="p">:</span> <span class="dl">'</span><span class="s1">postedDate</span><span class="dl">'</span><span class="p">,</span> <span class="na">direction</span><span class="p">:</span> <span class="dl">'</span><span class="s1">desc</span><span class="dl">'</span> <span class="k">as</span> <span class="dl">'</span><span class="s1">asc</span><span class="dl">'</span> <span class="o">|</span> <span class="dl">'</span><span class="s1">desc</span><span class="dl">'</span> <span class="p">},</span> <span class="nx">cursor</span> <span class="o">=</span> <span class="kc">undefined</span><span class="p">,</span> <span class="p">}</span> <span class="o">=</span> <span class="p">{})</span> <span class="p">{</span> <span class="kd">const</span> <span class="nx">baseCollection</span> <span class="o">=</span> <span class="nx">db</span><span class="p">.</span><span class="nf">collection</span><span class="p">(</span><span class="dl">'</span><span class="s1">jobs</span><span class="dl">'</span><span class="p">)</span> <span class="kd">let</span> <span class="nx">filteredQuery</span> <span class="o">=</span> <span class="nx">baseCollection</span> <span class="k">as</span> <span class="nx">FirebaseFirestore</span><span class="p">.</span><span class="nx">Query</span> <span class="c1">// Apply filters efficiently</span> <span class="k">if </span><span class="p">(</span><span class="nx">filters</span><span class="p">.</span><span class="kd">type</span><span class="p">)</span> <span class="p">{</span> <span class="nx">filteredQuery</span> <span class="o">=</span> <span class="nx">filteredQuery</span><span class="p">.</span><span class="nf">where</span><span class="p">(</span><span class="dl">'</span><span class="s1">type</span><span class="dl">'</span><span class="p">,</span> <span class="dl">'</span><span class="s1">==</span><span class="dl">'</span><span class="p">,</span> <span class="nx">filters</span><span class="p">.</span><span class="kd">type</span><span class="p">)</span> <span class="p">}</span> <span class="k">if </span><span class="p">(</span><span class="nx">filters</span><span class="p">.</span><span class="nx">experience</span><span class="p">)</span> <span class="p">{</span> <span class="nx">filteredQuery</span> <span class="o">=</span> <span class="nx">filteredQuery</span><span class="p">.</span><span class="nf">where</span><span class="p">(</span><span class="dl">'</span><span class="s1">experience</span><span class="dl">'</span><span class="p">,</span> <span class="dl">'</span><span class="s1">==</span><span class="dl">'</span><span class="p">,</span> <span class="nx">filters</span><span class="p">.</span><span class="nx">experience</span><span class="p">)</span> <span class="p">}</span> <span class="k">if </span><span class="p">(</span><span class="nx">filters</span><span class="p">.</span><span class="nx">isRemote</span><span class="p">)</span> <span class="p">{</span> <span class="nx">filteredQuery</span> <span class="o">=</span> <span class="nx">filteredQuery</span><span class="p">.</span><span class="nf">where</span><span class="p">(</span><span class="dl">'</span><span class="s1">isRemote</span><span class="dl">'</span><span class="p">,</span> <span class="dl">'</span><span class="s1">==</span><span class="dl">'</span><span class="p">,</span> <span class="nx">filters</span><span class="p">.</span><span class="nx">isRemote</span><span class="p">)</span> <span class="p">}</span> <span class="c1">// Pagination with cursors</span> <span class="nx">filteredQuery</span> <span class="o">=</span> <span class="nx">filteredQuery</span><span class="p">.</span><span class="nf">orderBy</span><span class="p">(</span><span class="nx">sort</span><span class="p">.</span><span class="nx">field</span><span class="p">,</span> <span class="nx">sort</span><span class="p">.</span><span class="nx">direction</span><span class="p">)</span> <span class="k">if </span><span class="p">(</span><span class="nx">cursor</span><span class="p">)</span> <span class="p">{</span> <span class="kd">const</span> <span class="nx">cursorDate</span> <span class="o">=</span> <span class="k">new</span> <span class="nc">Date</span><span class="p">(</span><span class="nx">cursor</span><span class="p">)</span> <span class="k">if </span><span class="p">(</span><span class="o">!</span><span class="nf">isNaN</span><span class="p">(</span><span class="nx">cursorDate</span><span class="p">.</span><span class="nf">getTime</span><span class="p">()))</span> <span class="p">{</span> <span class="nx">filteredQuery</span> <span class="o">=</span> <span class="nx">filteredQuery</span><span class="p">.</span><span class="nf">startAfter</span><span class="p">(</span><span class="nx">cursorDate</span><span class="p">)</span> <span class="p">}</span> <span class="p">}</span> <span class="kd">const</span> <span class="nx">snapshot</span> <span class="o">=</span> <span class="k">await</span> <span class="nx">filteredQuery</span><span class="p">.</span><span class="nf">limit</span><span class="p">(</span><span class="nx">limit</span><span class="p">).</span><span class="nf">get</span><span class="p">()</span> <span class="kd">let</span> <span class="nx">jobs</span> <span class="o">=</span> <span class="nx">snapshot</span><span class="p">.</span><span class="nx">docs</span><span class="p">.</span><span class="nf">map</span><span class="p">((</span><span class="nx">doc</span><span class="p">)</span> <span class="o">=&gt;</span> <span class="nf">convertJobTimestamps</span><span class="p">({</span> <span class="na">id</span><span class="p">:</span> <span class="nx">doc</span><span class="p">.</span><span class="nx">id</span><span class="p">,</span> <span class="p">...</span><span class="nx">doc</span><span class="p">.</span><span class="nf">data</span><span class="p">()</span> <span class="p">}))</span> <span class="c1">// Client-side filtering for complex queries</span> <span class="k">if </span><span class="p">(</span><span class="nx">filters</span><span class="p">.</span><span class="nx">search</span> <span class="o">&amp;&amp;</span> <span class="k">typeof</span> <span class="nx">filters</span><span class="p">.</span><span class="nx">search</span> <span class="o">===</span> <span class="dl">'</span><span class="s1">string</span><span class="dl">'</span> <span class="o">&amp;&amp;</span> <span class="nx">filters</span><span class="p">.</span><span class="nx">search</span><span class="p">.</span><span class="nf">trim</span><span class="p">()</span> <span class="o">!==</span> <span class="dl">''</span><span class="p">)</span> <span class="p">{</span> <span class="kd">const</span> <span class="nx">searchTerm</span> <span class="o">=</span> <span class="nx">filters</span><span class="p">.</span><span class="nx">search</span><span class="p">.</span><span class="nf">trim</span><span class="p">().</span><span class="nf">toLowerCase</span><span class="p">()</span> <span class="nx">jobs</span> <span class="o">=</span> <span class="nx">jobs</span><span class="p">.</span><span class="nf">filter</span><span class="p">((</span><span class="nx">job</span><span class="p">)</span> <span class="o">=&gt;</span> <span class="p">{</span> <span class="k">return </span><span class="p">(</span> <span class="p">(</span><span class="nx">job</span><span class="p">.</span><span class="nx">title</span> <span class="o">&amp;&amp;</span> <span class="nx">job</span><span class="p">.</span><span class="nx">title</span><span class="p">.</span><span class="nf">toLowerCase</span><span class="p">().</span><span class="nf">includes</span><span class="p">(</span><span class="nx">searchTerm</span><span class="p">))</span> <span class="o">||</span> <span class="p">(</span><span class="nx">job</span><span class="p">.</span><span class="nx">company</span> <span class="o">&amp;&amp;</span> <span class="nx">job</span><span class="p">.</span><span class="nx">company</span><span class="p">.</span><span class="nf">toLowerCase</span><span class="p">().</span><span class="nf">includes</span><span class="p">(</span><span class="nx">searchTerm</span><span class="p">))</span> <span class="o">||</span> <span class="p">(</span><span class="nx">job</span><span class="p">.</span><span class="nx">description</span> <span class="o">&amp;&amp;</span> <span class="nx">job</span><span class="p">.</span><span class="nx">description</span><span class="p">.</span><span class="nf">toLowerCase</span><span class="p">().</span><span class="nf">includes</span><span class="p">(</span><span class="nx">searchTerm</span><span class="p">))</span> <span class="p">)</span> <span class="p">})</span> <span class="p">}</span> <span class="kd">const</span> <span class="nx">newCursor</span> <span class="o">=</span> <span class="nx">jobs</span><span class="p">.</span><span class="nx">length</span> <span class="o">&gt;</span> <span class="mi">0</span> <span class="p">?</span> <span class="nx">jobs</span><span class="p">[</span><span class="nx">jobs</span><span class="p">.</span><span class="nx">length</span> <span class="o">-</span> <span class="mi">1</span><span class="p">].</span><span class="nx">postedDate</span> <span class="p">:</span> <span class="kc">null</span> <span class="k">return</span> <span class="p">{</span> <span class="nx">jobs</span><span class="p">,</span> <span class="na">cursor</span><span class="p">:</span> <span class="nx">newCursor</span> <span class="p">}</span> <span class="p">}</span> </code></pre> </div> <h2> Security Best Practices </h2> <h3> Firebase Security Rules </h3> <p>Implementing proper security is crucial for user data protection:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight javascript"><code><span class="c1">// firestore.rules</span> <span class="nx">rules_version</span> <span class="o">=</span> <span class="dl">'</span><span class="s1">2</span><span class="dl">'</span><span class="p">;</span> <span class="nx">service</span> <span class="nx">cloud</span><span class="p">.</span><span class="nx">firestore</span> <span class="p">{</span> <span class="nx">match</span> <span class="o">/</span><span class="nx">databases</span><span class="o">/</span><span class="p">{</span><span class="nx">database</span><span class="p">}</span><span class="sr">/documents </span><span class="err">{ </span> <span class="c1">// Helper functions</span> <span class="kd">function</span> <span class="nf">isAuthenticated</span><span class="p">()</span> <span class="p">{</span> <span class="k">return</span> <span class="nx">request</span><span class="p">.</span><span class="nx">auth</span> <span class="o">!=</span> <span class="kc">null</span><span class="p">;</span> <span class="p">}</span> <span class="kd">function</span> <span class="nf">isOwner</span><span class="p">(</span><span class="nx">userId</span><span class="p">)</span> <span class="p">{</span> <span class="k">return</span> <span class="nx">request</span><span class="p">.</span><span class="nx">auth</span> <span class="o">!=</span> <span class="kc">null</span> <span class="o">&amp;&amp;</span> <span class="nx">request</span><span class="p">.</span><span class="nx">auth</span><span class="p">.</span><span class="nx">uid</span> <span class="o">==</span> <span class="nx">userId</span><span class="p">;</span> <span class="p">}</span> <span class="kd">function</span> <span class="nf">isAdmin</span><span class="p">()</span> <span class="p">{</span> <span class="k">return</span> <span class="nx">request</span><span class="p">.</span><span class="nx">auth</span> <span class="o">!=</span> <span class="kc">null</span> <span class="o">&amp;&amp;</span> <span class="nx">resource</span><span class="p">.</span><span class="nx">data</span><span class="p">.</span><span class="nx">admins</span> <span class="o">!=</span> <span class="kc">null</span> <span class="o">&amp;&amp;</span> <span class="nx">request</span><span class="p">.</span><span class="nx">auth</span><span class="p">.</span><span class="nx">uid</span> <span class="k">in</span> <span class="nx">resource</span><span class="p">.</span><span class="nx">data</span><span class="p">.</span><span class="nx">admins</span><span class="p">;</span> <span class="p">}</span> <span class="c1">// Jobs collection - public read, admin write</span> <span class="nx">match</span> <span class="o">/</span><span class="nx">jobs</span><span class="o">/</span><span class="p">{</span><span class="nx">jobId</span><span class="p">}</span> <span class="p">{</span> <span class="nx">allow</span> <span class="na">read</span><span class="p">:</span> <span class="k">if</span> <span class="kc">true</span><span class="p">;</span> <span class="nx">allow</span> <span class="na">write</span><span class="p">:</span> <span class="k">if</span> <span class="nf">isAdmin</span><span class="p">();</span> <span class="p">}</span> <span class="c1">// User-specific favorites</span> <span class="nx">match</span> <span class="o">/</span><span class="nx">users</span><span class="o">/</span><span class="p">{</span><span class="nx">userId</span><span class="p">}</span> <span class="p">{</span> <span class="nx">allow</span> <span class="nx">read</span><span class="p">,</span> <span class="na">write</span><span class="p">:</span> <span class="k">if</span> <span class="nf">isOwner</span><span class="p">(</span><span class="nx">userId</span><span class="p">);</span> <span class="nx">match</span> <span class="o">/</span><span class="nx">favorites</span><span class="o">/</span><span class="p">{</span><span class="nx">favoriteId</span><span class="p">}</span> <span class="p">{</span> <span class="nx">allow</span> <span class="nx">read</span><span class="p">,</span> <span class="na">write</span><span class="p">:</span> <span class="k">if</span> <span class="nf">isOwner</span><span class="p">(</span><span class="nx">userId</span><span class="p">)</span> <span class="o">||</span> <span class="nf">isAdmin</span><span class="p">();</span> <span class="p">}</span> <span class="p">}</span> <span class="p">}</span> <span class="p">}</span> </code></pre> </div> <h3> Input Validation and Sanitization </h3> <div class="highlight js-code-highlight"> <pre class="highlight typescript"><code><span class="c1">// services/favorites.service.ts</span> <span class="nf">addToFavorites</span><span class="p">(</span><span class="nx">job</span><span class="p">:</span> <span class="nx">Job</span><span class="p">):</span> <span class="nx">Observable</span><span class="o">&lt;</span><span class="k">void</span><span class="o">&gt;</span> <span class="p">{</span> <span class="k">return</span> <span class="k">this</span><span class="p">.</span><span class="nx">user$</span><span class="p">.</span><span class="nf">pipe</span><span class="p">(</span> <span class="nf">switchMap</span><span class="p">((</span><span class="nx">user</span><span class="p">)</span> <span class="o">=&gt;</span> <span class="p">{</span> <span class="k">if </span><span class="p">(</span><span class="o">!</span><span class="nx">user</span><span class="p">)</span> <span class="p">{</span> <span class="k">throw</span> <span class="k">new</span> <span class="nc">Error</span><span class="p">(</span><span class="dl">'</span><span class="s1">User must be authenticated to add favorites</span><span class="dl">'</span><span class="p">)</span> <span class="p">}</span> <span class="c1">// Validate job data before saving</span> <span class="k">if </span><span class="p">(</span><span class="o">!</span><span class="nx">job</span><span class="p">.</span><span class="nx">id</span> <span class="o">||</span> <span class="o">!</span><span class="nx">job</span><span class="p">.</span><span class="nx">title</span> <span class="o">||</span> <span class="o">!</span><span class="nx">job</span><span class="p">.</span><span class="nx">company</span><span class="p">)</span> <span class="p">{</span> <span class="k">throw</span> <span class="k">new</span> <span class="nc">Error</span><span class="p">(</span><span class="dl">'</span><span class="s1">Invalid job data</span><span class="dl">'</span><span class="p">)</span> <span class="p">}</span> <span class="c1">// Sanitize and validate expiration date</span> <span class="kd">const</span> <span class="nx">expireOn</span> <span class="o">=</span> <span class="k">new</span> <span class="nc">Date</span><span class="p">()</span> <span class="nx">expireOn</span><span class="p">.</span><span class="nf">setMonth</span><span class="p">(</span><span class="nx">expireOn</span><span class="p">.</span><span class="nf">getMonth</span><span class="p">()</span> <span class="o">+</span> <span class="mi">3</span><span class="p">)</span> <span class="k">if </span><span class="p">(</span><span class="nx">expireOn</span> <span class="o">&lt;=</span> <span class="k">new</span> <span class="nc">Date</span><span class="p">())</span> <span class="p">{</span> <span class="k">throw</span> <span class="k">new</span> <span class="nc">Error</span><span class="p">(</span><span class="dl">'</span><span class="s1">Invalid expiration date</span><span class="dl">'</span><span class="p">)</span> <span class="p">}</span> <span class="kd">const</span> <span class="nx">favoritesRef</span> <span class="o">=</span> <span class="nf">collection</span><span class="p">(</span><span class="k">this</span><span class="p">.</span><span class="nx">firestore</span><span class="p">,</span> <span class="s2">`users/</span><span class="p">${</span><span class="nx">user</span><span class="p">.</span><span class="nx">uid</span><span class="p">}</span><span class="s2">/favorites`</span><span class="p">)</span> <span class="kd">const</span> <span class="na">favoriteJob</span><span class="p">:</span> <span class="nb">Omit</span><span class="o">&lt;</span><span class="nx">FavoriteJob</span><span class="p">,</span> <span class="dl">'</span><span class="s1">favoriteId</span><span class="dl">'</span><span class="o">&gt;</span> <span class="o">=</span> <span class="p">{</span> <span class="p">...</span><span class="nx">job</span><span class="p">,</span> <span class="na">expireOn</span><span class="p">:</span> <span class="nx">Timestamp</span><span class="p">.</span><span class="nf">fromDate</span><span class="p">(</span><span class="nx">expireOn</span><span class="p">),</span> <span class="na">addedOn</span><span class="p">:</span> <span class="nx">Timestamp</span><span class="p">.</span><span class="nf">fromDate</span><span class="p">(</span><span class="k">new</span> <span class="nc">Date</span><span class="p">())</span> <span class="p">}</span> <span class="k">return</span> <span class="k">from</span><span class="p">(</span><span class="nf">addDoc</span><span class="p">(</span><span class="nx">favoritesRef</span><span class="p">,</span> <span class="nx">favoriteJob</span><span class="p">))</span> <span class="p">}),</span> <span class="nf">map</span><span class="p">(()</span> <span class="o">=&gt;</span> <span class="k">void</span> <span class="mi">0</span><span class="p">)</span> <span class="p">)</span> <span class="p">}</span> </code></pre> </div> <h2> Testing Strategies </h2> <h3> Component Testing with SSR </h3> <p>Testing SSR components requires special consideration for browser APIs:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight typescript"><code><span class="c1">// job-detail.component.spec.ts</span> <span class="k">import</span> <span class="p">{</span> <span class="nx">ComponentFixture</span><span class="p">,</span> <span class="nx">TestBed</span> <span class="p">}</span> <span class="k">from</span> <span class="dl">'</span><span class="s1">@angular/core/testing</span><span class="dl">'</span> <span class="k">import</span> <span class="p">{</span> <span class="nx">JobDetailComponent</span> <span class="p">}</span> <span class="k">from</span> <span class="dl">'</span><span class="s1">./job-detail.component</span><span class="dl">'</span> <span class="k">import</span> <span class="p">{</span> <span class="nx">FavoritesService</span> <span class="p">}</span> <span class="k">from</span> <span class="dl">'</span><span class="s1">../../services/favorites.service</span><span class="dl">'</span> <span class="k">import</span> <span class="p">{</span> <span class="nx">Auth</span> <span class="p">}</span> <span class="k">from</span> <span class="dl">'</span><span class="s1">@angular/fire/auth</span><span class="dl">'</span> <span class="k">import</span> <span class="p">{</span> <span class="k">of</span> <span class="p">}</span> <span class="k">from</span> <span class="dl">'</span><span class="s1">rxjs</span><span class="dl">'</span> <span class="nf">describe</span><span class="p">(</span><span class="dl">'</span><span class="s1">JobDetailComponent</span><span class="dl">'</span><span class="p">,</span> <span class="p">()</span> <span class="o">=&gt;</span> <span class="p">{</span> <span class="kd">let</span> <span class="na">component</span><span class="p">:</span> <span class="nx">JobDetailComponent</span> <span class="kd">let</span> <span class="na">fixture</span><span class="p">:</span> <span class="nx">ComponentFixture</span><span class="o">&lt;</span><span class="nx">JobDetailComponent</span><span class="o">&gt;</span> <span class="kd">let</span> <span class="na">mockFavoritesService</span><span class="p">:</span> <span class="nx">jasmine</span><span class="p">.</span><span class="nx">SpyObj</span><span class="o">&lt;</span><span class="nx">FavoritesService</span><span class="o">&gt;</span> <span class="kd">let</span> <span class="na">mockAuth</span><span class="p">:</span> <span class="nx">jasmine</span><span class="p">.</span><span class="nx">SpyObj</span><span class="o">&lt;</span><span class="nx">Auth</span><span class="o">&gt;</span> <span class="nf">beforeEach</span><span class="p">(</span><span class="k">async </span><span class="p">()</span> <span class="o">=&gt;</span> <span class="p">{</span> <span class="c1">// Mock services</span> <span class="kd">const</span> <span class="nx">favoritesServiceSpy</span> <span class="o">=</span> <span class="nx">jasmine</span><span class="p">.</span><span class="nf">createSpyObj</span><span class="p">(</span><span class="dl">'</span><span class="s1">FavoritesService</span><span class="dl">'</span><span class="p">,</span> <span class="p">[</span> <span class="dl">'</span><span class="s1">isJobFavorited</span><span class="dl">'</span><span class="p">,</span> <span class="dl">'</span><span class="s1">addToFavorites</span><span class="dl">'</span><span class="p">,</span> <span class="dl">'</span><span class="s1">removeFromFavorites</span><span class="dl">'</span><span class="p">,</span> <span class="p">])</span> <span class="kd">const</span> <span class="nx">authSpy</span> <span class="o">=</span> <span class="nx">jasmine</span><span class="p">.</span><span class="nf">createSpyObj</span><span class="p">(</span><span class="dl">'</span><span class="s1">Auth</span><span class="dl">'</span><span class="p">,</span> <span class="p">[</span><span class="dl">'</span><span class="s1">currentUser</span><span class="dl">'</span><span class="p">])</span> <span class="k">await</span> <span class="nx">TestBed</span><span class="p">.</span><span class="nf">configureTestingModule</span><span class="p">({</span> <span class="na">imports</span><span class="p">:</span> <span class="p">[</span><span class="nx">JobDetailComponent</span><span class="p">],</span> <span class="na">providers</span><span class="p">:</span> <span class="p">[</span> <span class="p">{</span> <span class="na">provide</span><span class="p">:</span> <span class="nx">FavoritesService</span><span class="p">,</span> <span class="na">useValue</span><span class="p">:</span> <span class="nx">favoritesServiceSpy</span> <span class="p">},</span> <span class="p">{</span> <span class="na">provide</span><span class="p">:</span> <span class="nx">Auth</span><span class="p">,</span> <span class="na">useValue</span><span class="p">:</span> <span class="nx">authSpy</span> <span class="p">},</span> <span class="p">],</span> <span class="p">}).</span><span class="nf">compileComponents</span><span class="p">()</span> <span class="nx">mockFavoritesService</span> <span class="o">=</span> <span class="nx">TestBed</span><span class="p">.</span><span class="nf">inject</span><span class="p">(</span><span class="nx">FavoritesService</span><span class="p">)</span> <span class="k">as</span> <span class="nx">jasmine</span><span class="p">.</span><span class="nx">SpyObj</span><span class="o">&lt;</span><span class="nx">FavoritesService</span><span class="o">&gt;</span> <span class="nx">mockAuth</span> <span class="o">=</span> <span class="nx">TestBed</span><span class="p">.</span><span class="nf">inject</span><span class="p">(</span><span class="nx">Auth</span><span class="p">)</span> <span class="k">as</span> <span class="nx">jasmine</span><span class="p">.</span><span class="nx">SpyObj</span><span class="o">&lt;</span><span class="nx">Auth</span><span class="o">&gt;</span> <span class="p">})</span> <span class="nf">beforeEach</span><span class="p">(()</span> <span class="o">=&gt;</span> <span class="p">{</span> <span class="nx">fixture</span> <span class="o">=</span> <span class="nx">TestBed</span><span class="p">.</span><span class="nf">createComponent</span><span class="p">(</span><span class="nx">JobDetailComponent</span><span class="p">)</span> <span class="nx">component</span> <span class="o">=</span> <span class="nx">fixture</span><span class="p">.</span><span class="nx">componentInstance</span> <span class="c1">// Mock window object for SSR testing</span> <span class="nb">Object</span><span class="p">.</span><span class="nf">defineProperty</span><span class="p">(</span><span class="nb">window</span><span class="p">,</span> <span class="dl">'</span><span class="s1">scrollTo</span><span class="dl">'</span><span class="p">,</span> <span class="p">{</span> <span class="na">value</span><span class="p">:</span> <span class="nx">jasmine</span><span class="p">.</span><span class="nf">createSpy</span><span class="p">(</span><span class="dl">'</span><span class="s1">scrollTo</span><span class="dl">'</span><span class="p">),</span> <span class="na">writable</span><span class="p">:</span> <span class="kc">true</span><span class="p">,</span> <span class="p">})</span> <span class="p">})</span> <span class="nf">it</span><span class="p">(</span><span class="dl">'</span><span class="s1">should handle empty job gracefully</span><span class="dl">'</span><span class="p">,</span> <span class="p">()</span> <span class="o">=&gt;</span> <span class="p">{</span> <span class="nx">component</span><span class="p">.</span><span class="nx">job</span> <span class="o">=</span> <span class="kc">null</span> <span class="nx">fixture</span><span class="p">.</span><span class="nf">detectChanges</span><span class="p">()</span> <span class="nf">expect</span><span class="p">(</span><span class="nx">component</span><span class="p">.</span><span class="nx">processedJob</span><span class="p">).</span><span class="nf">toBeNull</span><span class="p">()</span> <span class="p">})</span> <span class="nf">it</span><span class="p">(</span><span class="dl">'</span><span class="s1">should check if job is favorited on init</span><span class="dl">'</span><span class="p">,</span> <span class="p">()</span> <span class="o">=&gt;</span> <span class="p">{</span> <span class="kd">const</span> <span class="nx">mockJob</span> <span class="o">=</span> <span class="p">{</span> <span class="na">id</span><span class="p">:</span> <span class="dl">'</span><span class="s1">test-job-id</span><span class="dl">'</span><span class="p">,</span> <span class="na">title</span><span class="p">:</span> <span class="dl">'</span><span class="s1">Test Job</span><span class="dl">'</span><span class="p">,</span> <span class="na">company</span><span class="p">:</span> <span class="dl">'</span><span class="s1">Test Company</span><span class="dl">'</span><span class="p">,</span> <span class="c1">// ... other job properties</span> <span class="p">}</span> <span class="nx">component</span><span class="p">.</span><span class="nx">job</span> <span class="o">=</span> <span class="nx">mockJob</span> <span class="nx">component</span><span class="p">.</span><span class="nx">showFavoriteButton</span> <span class="o">=</span> <span class="kc">true</span> <span class="nx">mockFavoritesService</span><span class="p">.</span><span class="nx">isJobFavorited</span><span class="p">.</span><span class="nx">and</span><span class="p">.</span><span class="nf">returnValue</span><span class="p">(</span><span class="k">of</span><span class="p">(</span><span class="kc">true</span><span class="p">))</span> <span class="nx">component</span><span class="p">.</span><span class="nf">ngOnInit</span><span class="p">()</span> <span class="nf">expect</span><span class="p">(</span><span class="nx">mockFavoritesService</span><span class="p">.</span><span class="nx">isJobFavorited</span><span class="p">).</span><span class="nf">toHaveBeenCalledWith</span><span class="p">(</span><span class="dl">'</span><span class="s1">test-job-id</span><span class="dl">'</span><span class="p">)</span> <span class="nf">expect</span><span class="p">(</span><span class="nx">component</span><span class="p">.</span><span class="nx">isFavorited</span><span class="p">).</span><span class="nf">toBe</span><span class="p">(</span><span class="kc">true</span><span class="p">)</span> <span class="p">})</span> <span class="p">})</span> </code></pre> </div> <h3> Service Testing </h3> <div class="highlight js-code-highlight"> <pre class="highlight typescript"><code><span class="c1">// favorites.service.spec.ts</span> <span class="k">import</span> <span class="p">{</span> <span class="nx">TestBed</span> <span class="p">}</span> <span class="k">from</span> <span class="dl">'</span><span class="s1">@angular/core/testing</span><span class="dl">'</span> <span class="k">import</span> <span class="p">{</span> <span class="nx">FavoritesService</span> <span class="p">}</span> <span class="k">from</span> <span class="dl">'</span><span class="s1">./favorites.service</span><span class="dl">'</span> <span class="k">import</span> <span class="p">{</span> <span class="nx">Firestore</span> <span class="p">}</span> <span class="k">from</span> <span class="dl">'</span><span class="s1">@angular/fire/firestore</span><span class="dl">'</span> <span class="k">import</span> <span class="p">{</span> <span class="nx">Auth</span> <span class="p">}</span> <span class="k">from</span> <span class="dl">'</span><span class="s1">@angular/fire/auth</span><span class="dl">'</span> <span class="k">import</span> <span class="p">{</span> <span class="k">of</span> <span class="p">}</span> <span class="k">from</span> <span class="dl">'</span><span class="s1">rxjs</span><span class="dl">'</span> <span class="nf">describe</span><span class="p">(</span><span class="dl">'</span><span class="s1">FavoritesService</span><span class="dl">'</span><span class="p">,</span> <span class="p">()</span> <span class="o">=&gt;</span> <span class="p">{</span> <span class="kd">let</span> <span class="na">service</span><span class="p">:</span> <span class="nx">FavoritesService</span> <span class="kd">let</span> <span class="na">mockFirestore</span><span class="p">:</span> <span class="nx">jasmine</span><span class="p">.</span><span class="nx">SpyObj</span><span class="o">&lt;</span><span class="nx">Firestore</span><span class="o">&gt;</span> <span class="kd">let</span> <span class="na">mockAuth</span><span class="p">:</span> <span class="nx">jasmine</span><span class="p">.</span><span class="nx">SpyObj</span><span class="o">&lt;</span><span class="nx">Auth</span><span class="o">&gt;</span> <span class="nf">beforeEach</span><span class="p">(()</span> <span class="o">=&gt;</span> <span class="p">{</span> <span class="kd">const</span> <span class="nx">firestoreSpy</span> <span class="o">=</span> <span class="nx">jasmine</span><span class="p">.</span><span class="nf">createSpyObj</span><span class="p">(</span><span class="dl">'</span><span class="s1">Firestore</span><span class="dl">'</span><span class="p">,</span> <span class="p">[</span><span class="dl">'</span><span class="s1">collection</span><span class="dl">'</span><span class="p">,</span> <span class="dl">'</span><span class="s1">doc</span><span class="dl">'</span><span class="p">])</span> <span class="kd">const</span> <span class="nx">authSpy</span> <span class="o">=</span> <span class="nx">jasmine</span><span class="p">.</span><span class="nf">createSpyObj</span><span class="p">(</span><span class="dl">'</span><span class="s1">Auth</span><span class="dl">'</span><span class="p">,</span> <span class="p">[</span><span class="dl">'</span><span class="s1">currentUser</span><span class="dl">'</span><span class="p">])</span> <span class="nx">TestBed</span><span class="p">.</span><span class="nf">configureTestingModule</span><span class="p">({</span> <span class="na">providers</span><span class="p">:</span> <span class="p">[</span> <span class="p">{</span> <span class="na">provide</span><span class="p">:</span> <span class="nx">Firestore</span><span class="p">,</span> <span class="na">useValue</span><span class="p">:</span> <span class="nx">firestoreSpy</span> <span class="p">},</span> <span class="p">{</span> <span class="na">provide</span><span class="p">:</span> <span class="nx">Auth</span><span class="p">,</span> <span class="na">useValue</span><span class="p">:</span> <span class="nx">authSpy</span> <span class="p">},</span> <span class="p">],</span> <span class="p">})</span> <span class="nx">service</span> <span class="o">=</span> <span class="nx">TestBed</span><span class="p">.</span><span class="nf">inject</span><span class="p">(</span><span class="nx">FavoritesService</span><span class="p">)</span> <span class="nx">mockFirestore</span> <span class="o">=</span> <span class="nx">TestBed</span><span class="p">.</span><span class="nf">inject</span><span class="p">(</span><span class="nx">Firestore</span><span class="p">)</span> <span class="k">as</span> <span class="nx">jasmine</span><span class="p">.</span><span class="nx">SpyObj</span><span class="o">&lt;</span><span class="nx">Firestore</span><span class="o">&gt;</span> <span class="nx">mockAuth</span> <span class="o">=</span> <span class="nx">TestBed</span><span class="p">.</span><span class="nf">inject</span><span class="p">(</span><span class="nx">Auth</span><span class="p">)</span> <span class="k">as</span> <span class="nx">jasmine</span><span class="p">.</span><span class="nx">SpyObj</span><span class="o">&lt;</span><span class="nx">Auth</span><span class="o">&gt;</span> <span class="p">})</span> <span class="nf">it</span><span class="p">(</span><span class="dl">'</span><span class="s1">should be created</span><span class="dl">'</span><span class="p">,</span> <span class="p">()</span> <span class="o">=&gt;</span> <span class="p">{</span> <span class="nf">expect</span><span class="p">(</span><span class="nx">service</span><span class="p">).</span><span class="nf">toBeTruthy</span><span class="p">()</span> <span class="p">})</span> <span class="nf">it</span><span class="p">(</span><span class="dl">'</span><span class="s1">should throw error when user is not authenticated</span><span class="dl">'</span><span class="p">,</span> <span class="p">(</span><span class="nx">done</span><span class="p">)</span> <span class="o">=&gt;</span> <span class="p">{</span> <span class="c1">// Mock unauthenticated user</span> <span class="nf">spyOnProperty</span><span class="p">(</span><span class="nx">service</span><span class="p">,</span> <span class="dl">'</span><span class="s1">user$</span><span class="dl">'</span><span class="p">,</span> <span class="dl">'</span><span class="s1">get</span><span class="dl">'</span><span class="p">).</span><span class="nx">and</span><span class="p">.</span><span class="nf">returnValue</span><span class="p">(</span><span class="k">of</span><span class="p">(</span><span class="kc">null</span><span class="p">))</span> <span class="kd">const</span> <span class="nx">mockJob</span> <span class="o">=</span> <span class="p">{</span> <span class="na">id</span><span class="p">:</span> <span class="dl">'</span><span class="s1">test-job</span><span class="dl">'</span><span class="p">,</span> <span class="na">title</span><span class="p">:</span> <span class="dl">'</span><span class="s1">Test Job</span><span class="dl">'</span><span class="p">,</span> <span class="c1">// ... other properties</span> <span class="p">}</span> <span class="nx">service</span><span class="p">.</span><span class="nf">addToFavorites</span><span class="p">(</span><span class="nx">mockJob</span> <span class="k">as</span> <span class="kr">any</span><span class="p">).</span><span class="nf">subscribe</span><span class="p">({</span> <span class="na">error</span><span class="p">:</span> <span class="p">(</span><span class="nx">error</span><span class="p">)</span> <span class="o">=&gt;</span> <span class="p">{</span> <span class="nf">expect</span><span class="p">(</span><span class="nx">error</span><span class="p">.</span><span class="nx">message</span><span class="p">).</span><span class="nf">toBe</span><span class="p">(</span><span class="dl">'</span><span class="s1">User must be authenticated to add favorites</span><span class="dl">'</span><span class="p">)</span> <span class="nf">done</span><span class="p">()</span> <span class="p">},</span> <span class="p">})</span> <span class="p">})</span> <span class="p">})</span> </code></pre> </div> <h2> Deployment and Production Considerations </h2> <h3> Build Optimization </h3> <div class="highlight js-code-highlight"> <pre class="highlight json"><code><span class="err">//</span><span class="w"> </span><span class="err">project.json</span><span class="w"> </span><span class="p">{</span><span class="w"> </span><span class="nl">"targets"</span><span class="p">:</span><span class="w"> </span><span class="p">{</span><span class="w"> </span><span class="nl">"build"</span><span class="p">:</span><span class="w"> </span><span class="p">{</span><span class="w"> </span><span class="nl">"executor"</span><span class="p">:</span><span class="w"> </span><span class="s2">"@analogjs/platform:vite"</span><span class="p">,</span><span class="w"> </span><span class="nl">"options"</span><span class="p">:</span><span class="w"> </span><span class="p">{</span><span class="w"> </span><span class="nl">"configFile"</span><span class="p">:</span><span class="w"> </span><span class="s2">"landing/vite.config.ts"</span><span class="p">,</span><span class="w"> </span><span class="nl">"main"</span><span class="p">:</span><span class="w"> </span><span class="s2">"landing/src/main.ts"</span><span class="p">,</span><span class="w"> </span><span class="nl">"outputPath"</span><span class="p">:</span><span class="w"> </span><span class="s2">"dist/landing/client"</span><span class="p">,</span><span class="w"> </span><span class="nl">"tsConfig"</span><span class="p">:</span><span class="w"> </span><span class="s2">"landing/tsconfig.app.json"</span><span class="w"> </span><span class="p">},</span><span class="w"> </span><span class="nl">"configurations"</span><span class="p">:</span><span class="w"> </span><span class="p">{</span><span class="w"> </span><span class="nl">"production"</span><span class="p">:</span><span class="w"> </span><span class="p">{</span><span class="w"> </span><span class="nl">"sourcemap"</span><span class="p">:</span><span class="w"> </span><span class="kc">false</span><span class="p">,</span><span class="w"> </span><span class="nl">"mode"</span><span class="p">:</span><span class="w"> </span><span class="s2">"production"</span><span class="w"> </span><span class="p">}</span><span class="w"> </span><span class="p">}</span><span class="w"> </span><span class="p">}</span><span class="w"> </span><span class="p">}</span><span class="w"> </span><span class="p">}</span><span class="w"> </span></code></pre> </div> <h3> Environment Configuration </h3> <div class="highlight js-code-highlight"> <pre class="highlight typescript"><code><span class="c1">// Environment-specific configuration</span> <span class="k">export</span> <span class="kd">const</span> <span class="nx">environment</span> <span class="o">=</span> <span class="p">{</span> <span class="na">production</span><span class="p">:</span> <span class="nx">process</span><span class="p">.</span><span class="nx">env</span><span class="p">[</span><span class="dl">'</span><span class="s1">NODE_ENV</span><span class="dl">'</span><span class="p">]</span> <span class="o">===</span> <span class="dl">'</span><span class="s1">production</span><span class="dl">'</span><span class="p">,</span> <span class="na">firebase</span><span class="p">:</span> <span class="p">{</span> <span class="na">projectId</span><span class="p">:</span> <span class="nx">process</span><span class="p">.</span><span class="nx">env</span><span class="p">[</span><span class="dl">'</span><span class="s1">FIREBASE_PROJECT_ID</span><span class="dl">'</span><span class="p">],</span> <span class="na">appId</span><span class="p">:</span> <span class="nx">process</span><span class="p">.</span><span class="nx">env</span><span class="p">[</span><span class="dl">'</span><span class="s1">FIREBASE_APP_ID</span><span class="dl">'</span><span class="p">],</span> <span class="c1">// ... other config</span> <span class="p">},</span> <span class="na">api</span><span class="p">:</span> <span class="p">{</span> <span class="na">baseUrl</span><span class="p">:</span> <span class="nx">process</span><span class="p">.</span><span class="nx">env</span><span class="p">[</span><span class="dl">'</span><span class="s1">API_BASE_URL</span><span class="dl">'</span><span class="p">]</span> <span class="o">||</span> <span class="dl">'</span><span class="s1">http://localhost:4200</span><span class="dl">'</span><span class="p">,</span> <span class="p">},</span> <span class="p">}</span> </code></pre> </div> <h2> Common Pitfalls and Solutions </h2> <h3> 1. Hydration Mismatch </h3> <p><strong>Problem</strong>: Server-rendered content doesn't match client-side rendering.</p> <p><strong>Solution</strong>: Ensure consistent data and avoid browser-specific logic in templates.<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight typescript"><code><span class="c1">// Use NgZone and afterNextRender for browser-specific code</span> <span class="k">import</span> <span class="p">{</span> <span class="nx">afterNextRender</span> <span class="p">}</span> <span class="k">from</span> <span class="dl">'</span><span class="s1">@angular/core</span><span class="dl">'</span> <span class="p">@</span><span class="nd">Component</span><span class="p">({...})</span> <span class="k">export</span> <span class="kd">class</span> <span class="nc">MyComponent</span> <span class="p">{</span> <span class="nf">constructor</span><span class="p">()</span> <span class="p">{</span> <span class="nf">afterNextRender</span><span class="p">(()</span> <span class="o">=&gt;</span> <span class="p">{</span> <span class="c1">// Browser-only code here</span> <span class="k">this</span><span class="p">.</span><span class="nf">initializeClientOnlyFeatures</span><span class="p">()</span> <span class="p">})</span> <span class="p">}</span> <span class="p">}</span> </code></pre> </div> <h3> 2. Firebase Auth State Persistence </h3> <p><strong>Problem</strong>: Authentication state is lost on page refresh in SSR.</p> <p><strong>Solution</strong>: Handle authentication state properly with observables.<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight typescript"><code><span class="p">@</span><span class="nd">Component</span><span class="p">({...})</span> <span class="k">export</span> <span class="kd">class</span> <span class="nc">AuthComponent</span> <span class="k">implements</span> <span class="nx">OnInit</span> <span class="p">{</span> <span class="nx">user$</span> <span class="o">=</span> <span class="nf">user</span><span class="p">(</span><span class="k">this</span><span class="p">.</span><span class="nx">auth</span><span class="p">)</span> <span class="nx">isLoading</span> <span class="o">=</span> <span class="kc">true</span> <span class="nf">ngOnInit</span><span class="p">()</span> <span class="p">{</span> <span class="k">this</span><span class="p">.</span><span class="nx">user$</span><span class="p">.</span><span class="nf">subscribe</span><span class="p">(</span><span class="nx">user</span> <span class="o">=&gt;</span> <span class="p">{</span> <span class="k">this</span><span class="p">.</span><span class="nx">isLoading</span> <span class="o">=</span> <span class="kc">false</span> <span class="c1">// Handle user state</span> <span class="p">})</span> <span class="p">}</span> <span class="p">}</span> </code></pre> </div> <h3> 3. Memory Leaks with Subscriptions </h3> <p><strong>Problem</strong>: Observable subscriptions not cleaned up properly.</p> <p><strong>Solution</strong>: Use takeUntilDestroyed operator (Angular 16+).<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight typescript"><code><span class="k">import</span> <span class="p">{</span> <span class="nx">takeUntilDestroyed</span> <span class="p">}</span> <span class="k">from</span> <span class="dl">'</span><span class="s1">@angular/core/rxjs-interop</span><span class="dl">'</span> <span class="p">@</span><span class="nd">Component</span><span class="p">({...})</span> <span class="k">export</span> <span class="kd">class</span> <span class="nc">MyComponent</span> <span class="p">{</span> <span class="k">private</span> <span class="nx">destroyRef</span> <span class="o">=</span> <span class="nf">inject</span><span class="p">(</span><span class="nx">DestroyRef</span><span class="p">)</span> <span class="nf">ngOnInit</span><span class="p">()</span> <span class="p">{</span> <span class="k">this</span><span class="p">.</span><span class="nx">dataService</span><span class="p">.</span><span class="nf">getData</span><span class="p">()</span> <span class="p">.</span><span class="nf">pipe</span><span class="p">(</span><span class="nf">takeUntilDestroyed</span><span class="p">(</span><span class="k">this</span><span class="p">.</span><span class="nx">destroyRef</span><span class="p">))</span> <span class="p">.</span><span class="nf">subscribe</span><span class="p">(</span><span class="nx">data</span> <span class="o">=&gt;</span> <span class="p">{</span> <span class="c1">// Handle data</span> <span class="p">})</span> <span class="p">}</span> <span class="p">}</span> </code></pre> </div> <h2> Future Roadmap and Improvements </h2> <p>Based on our experience building TechLeadPilot, here are some areas for future enhancement:</p> <h3> 1. Performance Optimizations </h3> <ul> <li>Implement service worker for offline functionality</li> <li>Add image optimization and lazy loading</li> <li>Implement progressive loading for large datasets</li> </ul> <h3> 2. User Experience Enhancements </h3> <ul> <li>Add real-time notifications</li> <li>Implement advanced search with filters</li> <li>Create personalized job recommendations</li> </ul> <h3> 3. Technical Improvements </h3> <ul> <li>Migrate to Angular's new control flow syntax</li> <li>Implement comprehensive error boundaries</li> <li>Add monitoring and analytics</li> </ul> <h2> Conclusion </h2> <p>Building a production-ready SSR application with Analog.js has been an enlightening experience. The framework successfully bridges the gap between Angular's robust architecture and the developer experience of modern meta-frameworks.</p> <h3> Key Takeaways: </h3> <ol> <li><p><strong>SSR-First Approach</strong>: Always consider server-side rendering implications when writing components and services.</p></li> <li><p><strong>Type Safety</strong>: Leverage TypeScript's type system extensively, especially when dealing with partial data from APIs.</p></li> <li><p><strong>Firebase Integration</strong>: Requires careful configuration for SSR environments, but provides powerful real-time capabilities.</p></li> <li><p><strong>Performance Matters</strong>: Implement proper loading states, pagination, and caching strategies from the beginning.</p></li> <li><p><strong>Accessibility</strong>: Don't treat accessibility as an afterthought - implement it from the start.</p></li> <li><p><strong>Testing Strategy</strong>: SSR applications require special testing considerations, particularly around browser API usage.</p></li> </ol> <p>Analog.js has proven to be a mature and capable framework for building complex, production-ready applications. While there are challenges specific to SSR and Firebase integration, the benefits of improved SEO, faster initial page loads, and better user experience make it a compelling choice for Angular developers.</p> <p>The combination of Analog.js's developer experience with Angular's enterprise-grade features creates a powerful platform for building modern web applications. As the framework continues to evolve, we can expect even better integration with the Angular ecosystem and improved developer tooling.</p> <p>Whether you're building a simple blog or a complex application like TechLeadPilot, Analog.js provides the foundation needed to create fast, scalable, and maintainable SSR applications with Angular.</p> <p><em>This article is based on real-world experience building <a href="https://techleadpilot.com" rel="noopener noreferrer">TechLeadPilot</a>.com, a job board platform for senior engineers and more.</em></p> angular ssr gcp webdev A Step-by-Step Guide to Deploying n8n on Oracle Cloud Free Tier Dale Nguyen Thu, 03 Jul 2025 04:08:41 +0000 https://dev.to/dalenguyen/a-step-by-step-guide-to-deploying-n8n-on-oracle-cloud-free-tier-cjp https://dev.to/dalenguyen/a-step-by-step-guide-to-deploying-n8n-on-oracle-cloud-free-tier-cjp <blockquote> <p>For those who want to jump straight to the code, I've created a starter template repository on GitHub. It includes all the configurations and scripts mentioned in this guide.</p> <p><strong><a href="https://github.com/dalenguyen/n8n-self-hosted-starter" rel="noopener noreferrer">n8n-self-hosted-cloudflare-starter on GitHub</a></strong></p> </blockquote> <p>In a previous article, we explored running n8n locally and exposing it to the internet using a Cloudflare Tunnel. This approach is great for quick setups, testing, or personal use, as it allows you to keep your workflows private and avoid complex network configurations. However, it comes with a major limitation: your server or laptop must remain powered on and connected to the internet at all times for your automations to work. This can be inconvenient, less reliable for production use, and may not be suitable for 24/7 automation needs.</p> <p><strong>Cloudflare Tunnel (Localhost) Approach:</strong></p> <ul> <li> <strong>Pros:</strong> <ul> <li>Simple to set up</li> <li>No need to manage cloud infrastructure</li> <li>Good for development and testing</li> </ul> </li> <li> <strong>Cons:</strong> <ul> <li>Requires your local machine to be always on</li> <li>Not ideal for production or critical workflows</li> <li>Limited scalability and reliability</li> </ul> </li> </ul> <p>In this guide, we take automation to the next level by installing and configuring n8n directly on Oracle Cloud's Always Free Tier. This approach provides a dedicated, always-on environment for your workflows, making it much more suitable for production or mission-critical automations.</p> <p><strong>Oracle Cloud Deployment:</strong></p> <ul> <li> <strong>Pros:</strong> <ul> <li>Always-on, reliable hosting</li> <li>No need to keep your laptop/server running</li> <li>Scalable and more secure</li> <li>Free tier offers generous resources</li> </ul> </li> <li> <strong>Cons:</strong> <ul> <li>Slightly more complex setup</li> <li>Requires managing cloud resources and security</li> <li><strong>Data on the free tier may be wiped out at any time (not guaranteed for production use)</strong></li> </ul> </li> </ul> <p>By the end of this article, you'll have a robust, cloud-hosted n8n instance that's accessible from anywhere, without the need to keep your personal device online.</p> <h2> Why Oracle Cloud (Free Tier +)? </h2> <p>Oracle Cloud Infrastructure (OCI) offers an incredibly generous "Always Free" tier, making it an attractive option for self-hosting applications like n8n. While other cloud providers often limit their free tiers to 12 months or offer minimal resources, OCI provides:</p> <ul> <li> <strong>Perpetual Free Resources:</strong> Unlike many competitors, Oracle's "Always Free" tier resources do not expire after a trial period.</li> <li> <strong>Generous Compute Resources:</strong> You can typically get a VM.Standard.A1.Flex (ARM-based) instance with up to 4 OCPUs and 24 GB of RAM, or 2 AMD-based VMs with 1 OCPU and 1 GB RAM each. These are ample resources for running n8n and its database.</li> <li> <strong>Ample Storage:</strong> Up to 200 GB of Block Volume storage.</li> <li> <strong>Free Networking:</strong> Includes a public IP address, and significant outbound data transfer.</li> <li> <strong>Complete Control:</strong> You get full root access to your Linux VM, allowing for custom installations like Docker, Nginx, and databases, giving you maximum flexibility over your n8n environment.</li> </ul> <p>This combination of free, powerful, and persistent resources makes OCI an ideal choice for running your n8n automation workflows without incurring monthly costs.</p> <h2> Step-by-Step Installation </h2> <p>This guide assumes you have an Oracle Cloud Free Tier account created, a domain name registered (e.g., <code>n8n.yourdomain.com</code>), and basic familiarity with the Linux command line. We'll use an <strong>Ubuntu</strong> instance and <strong>Docker Compose</strong> for a robust and easily manageable n8n setup.</p> <h3> 1. Create Your Oracle Cloud Instance </h3> <ol> <li> <strong>Log in to your OCI Console.</strong> </li> <li> Navigate to <strong>Compute &gt; Instances</strong>.</li> <li> Click <strong>"Create Instance"</strong>.</li> <li> <strong>Configuration:</strong> <ul> <li> <strong>Name:</strong> Give your instance a descriptive name (e.g., <code>n8n-instance</code>).</li> <li> <strong>Availability Domain &amp; Fault Domain:</strong> Choose a suitable AD and FD for your region (e.g., <code>AD-1</code>, <code>FD-2</code> in <code>ca-toronto-1</code>).</li> <li> <strong>Image and Shape:</strong> <ul> <li> <strong>Image:</strong> Click "Change Image" and select <code>Canonical Ubuntu</code> (latest version, e.g., 22.04 LTS).</li> <li> <strong>Shape:</strong> Click "Change Shape". Choose <code>Ampere</code> architecture, and select <code>VM.Standard.A1.Flex</code>. Allocate OCPUs and RAM within your Always Free limits (e.g., 2 OCPUs, 12 GB RAM for a good balance).</li> </ul> </li> <li> <strong>Networking:</strong> <ul> <li> <strong>Virtual Cloud Network:</strong> Choose your existing VCN or create a new one.</li> <li> <strong>Subnet:</strong> Choose an existing subnet or create a new one.</li> <li> <strong>Public IP:</strong> Ensure "Assign a public IP address" is checked. Note down this IP (e.g., <code>40.233.98.119</code>).</li> </ul> </li> <li> <strong>SSH Keys:</strong> Paste your existing public SSH key or generate a new one. Download the corresponding private key (<code>.key</code> file) to your local machine and keep it secure (e.g., <code>~/.ssh/my_oracle_key.key</code>).</li> <li> <strong>Boot Volume:</strong> The default 50GB is usually sufficient for n8n.</li> </ul> </li> <li> Click <strong>"Create"</strong>. Wait for the instance to provision and become "Running".</li> </ol> <h3> Map Your Domain to Your Oracle Cloud Instance </h3> <p>Before you can access your n8n instance using a custom domain (like <code>n8n.yourdomain.com</code>), you need to point your domain to your Oracle Cloud instance's public IP address. This is done by creating an <strong>A record</strong> in your domain's DNS settings.</p> <p><strong>Steps:</strong></p> <ol> <li><strong>Find your instance's public IP:</strong></li> </ol> <ul> <li>In the Oracle Cloud Console, go to your instance details and note the "Public IP Address" (e.g., <code>40.233.98.119</code>).</li> </ul> <ol> <li><strong>Log in to your domain registrar or DNS provider:</strong></li> </ol> <ul> <li>This could be Namecheap, GoDaddy, Cloudflare, Google Domains, etc.</li> </ul> <ol> <li><strong>Add an A record:</strong></li> </ol> <ul> <li> <strong>Type:</strong> A</li> <li> <strong>Name/Host:</strong> <code>n8n</code> (or the subdomain you want to use)</li> <li> <strong>Value:</strong> Your Oracle Cloud instance's public IP (e.g., <code>40.233.98.119</code>)</li> <li> <strong>TTL:</strong> Default or 5-10 minutes</li> </ul> <p>For example, to use <code>n8n.yourdomain.com</code>, set the <strong>Name/Host</strong> to <code>n8n</code> and the <strong>Value</strong> to your instance's public IP.</p> <ol> <li> <strong>Wait for DNS propagation:</strong> <ul> <li>Changes usually take a few minutes, but can take up to 24 hours. You can check if your domain points to the correct IP using tools like <a href="https://toolbox.googleapps.com/apps/dig/" rel="noopener noreferrer">Dig from Google Toolbox</a>.</li> </ul> </li> </ol> <p>Once this is set up, visiting <code>http://n8n.yourdomain.com</code> in your browser should reach your Oracle Cloud instance (after Nginx is configured in the next steps).</p> <h3> 2. Configure OCI Network Security (Firewall Rules) </h3> <p>Even with <code>iptables</code> and UFW on the instance, OCI's network security groups (NSGs) or security lists act as a critical outer firewall.</p> <ol> <li> <strong>Go to your OCI Console:</strong> Navigate to <strong>Networking &gt; Virtual Cloud Networks</strong>.</li> <li> <strong>Select your VCN</strong> that contains your instance.</li> <li> Click on <strong>Security Lists</strong> (or <strong>Network Security Groups</strong> if you're using them).</li> <li> <strong>Select the Security List/NSG</strong> associated with your instance's subnet/VNIC.</li> <li> <strong>Add Ingress Rules:</strong> <ul> <li>Click "Add Ingress Rules".</li> <li> <strong>Rule 1 (SSH):</strong> <ul> <li> <strong>Source Type:</strong> CIDR</li> <li> <strong>Source CIDR:</strong> <code>0.0.0.0/0</code> (or your specific IP for more security)</li> <li> <strong>IP Protocol:</strong> TCP</li> <li> <strong>Destination Port Range:</strong> <code>22</code> </li> </ul> </li> <li> <strong>Rule 2 (HTTP):</strong> <ul> <li> <strong>Source Type:</strong> CIDR</li> <li> <strong>Source CIDR:</strong> <code>0.0.0.0/0</code> </li> <li> <strong>IP Protocol:</strong> TCP</li> <li> <strong>Destination Port Range:</strong> <code>80</code> </li> </ul> </li> <li> <strong>Rule 3 (HTTPS):</strong> <ul> <li> <strong>Source Type:</strong> CIDR</li> <li> <strong>Source CIDR:</strong> <code>0.0.0.0/0</code> </li> <li> <strong>IP Protocol:</strong> TCP</li> <li> <strong>Destination Port Range:</strong> <code>443</code> </li> </ul> </li> </ul> </li> </ol> <p><a href="https://media2.dev.to/dynamic/image/width=800%2Cheight=%2Cfit=scale-down%2Cgravity=auto%2Cformat=auto/https%3A%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Farticles%2F5z9fpmhx0t05a8n5hz2i.png" class="article-body-image-wrapper"><img src="https://media2.dev.to/dynamic/image/width=800%2Cheight=%2Cfit=scale-down%2Cgravity=auto%2Cformat=auto/https%3A%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Farticles%2F5z9fpmhx0t05a8n5hz2i.png" alt="n8n oci ingress rules" width="800" height="416"></a></p> <h3> 3. Initial Server Setup &amp; SSH Access </h3> <ol> <li> <p><strong>SSH into your instance:</strong><br> The default username for Ubuntu instances on OCI is <code>ubuntu</code>.<br> </p> <pre class="highlight shell"><code><span class="nb">chmod </span>400 /path/to/your/my_oracle_key.key <span class="c"># Set correct permissions for private key</span> ssh <span class="nt">-i</span> /path/to/your/my_oracle_key.key ubuntu@&lt;your_instance_public_ip&gt; </code></pre> <p>(Replace with your actual private key path and public IP).</p> </li> <li> <p><strong>Update System Packages:</strong><br> </p> <pre class="highlight shell"><code><span class="nb">sudo </span>apt update <span class="nt">-y</span> <span class="nb">sudo </span>apt upgrade <span class="nt">-y</span> </code></pre> </li> <li> <p><strong>Reset <code>iptables</code> Policies (Crucial for OCI Connectivity):</strong><br> This step has resolved "No route to host" errors for many Oracle Cloud users, as it clears any hidden low-level firewall rules.<br> </p> <pre class="highlight shell"><code><span class="nb">sudo </span>iptables <span class="nt">-P</span> INPUT ACCEPT <span class="nb">sudo </span>iptables <span class="nt">-P</span> OUTPUT ACCEPT <span class="nb">sudo </span>iptables <span class="nt">-P</span> FORWARD ACCEPT <span class="nb">sudo </span>iptables <span class="nt">-F</span> <span class="nb">sudo </span>apt <span class="nb">install </span>iptables-persistent <span class="nt">-y</span> <span class="nb">sudo </span>netfilter-persistent save </code></pre> <p>During <code>iptables-persistent</code> installation, confirm saving IPv4 and IPv6 rules.</p> </li> <li> <p><strong>Configure Ubuntu Firewall (UFW):</strong><br> </p> <pre class="highlight shell"><code><span class="nb">sudo </span>ufw allow 22/tcp <span class="c"># Allow SSH</span> <span class="nb">sudo </span>ufw allow 80/tcp <span class="c"># Allow HTTP</span> <span class="nb">sudo </span>ufw allow 443/tcp <span class="c"># Allow HTTPS</span> <span class="nb">sudo </span>ufw <span class="nb">enable sudo </span>ufw status verbose <span class="c"># Verify rules are active</span> </code></pre> </li> <li> <p><strong>Reboot the Instance (Recommended):</strong><br> To ensure all network changes are applied cleanly.<br> </p> <pre class="highlight shell"><code><span class="nb">sudo </span>reboot </code></pre> <p>Wait a few minutes, then SSH back in.</p> </li> </ol> <h3> 4. Install Docker and Docker Compose </h3> <p>Docker is the recommended way to run n8n in production.</p> <ol> <li> <strong>Connect via SSH after reboot.</strong> </li> <li> <p><strong>Install Docker &amp; Docker Compose Plugin:</strong><br> </p> <pre class="highlight shell"><code><span class="nb">sudo </span>apt <span class="nb">install </span>ca-certificates curl gnupg lsb-release <span class="nt">-y</span> <span class="nb">sudo install</span> <span class="nt">-m</span> 0755 <span class="nt">-d</span> /etc/apt/keyrings curl <span class="nt">-fsSL</span> https://download.docker.com/linux/ubuntu/gpg | <span class="nb">sudo </span>gpg <span class="nt">--dearmor</span> <span class="nt">-o</span> /etc/apt/keyrings/docker.gpg <span class="nb">echo</span> <span class="se">\</span> <span class="s2">"deb [arch=</span><span class="si">$(</span>dpkg <span class="nt">--print-architecture</span><span class="si">)</span><span class="s2"> signed-by=/etc/apt/keyrings/docker.gpg] https://download.docker.com/linux/ubuntu </span><span class="se">\</span><span class="s2"> </span><span class="si">$(</span>lsb_release <span class="nt">-cs</span><span class="si">)</span><span class="s2"> stable"</span> | <span class="nb">sudo tee</span> /etc/apt/sources.list.d/docker.list <span class="o">&gt;</span> /dev/null <span class="nb">sudo </span>apt update <span class="nt">-y</span> <span class="nb">sudo </span>apt <span class="nb">install </span>docker-ce docker-ce-cli containerd.io docker-buildx-plugin docker-compose-plugin <span class="nt">-y</span> <span class="nb">sudo </span>systemctl start docker <span class="nb">sudo </span>systemctl <span class="nb">enable </span>docker </code></pre> </li> <li> <p><strong>Add your user (<code>ubuntu</code>) to the docker group:</strong><br> </p> <pre class="highlight shell"><code><span class="nb">sudo </span>usermod <span class="nt">-aG</span> docker ubuntu newgrp docker <span class="c"># Apply group changes immediately for current session</span> </code></pre> </li> </ol> <h3> 5. Install Nginx &amp; Prepare for Certbot </h3> <ol> <li> <p><strong>Install Nginx:</strong><br> </p> <pre class="highlight shell"><code><span class="nb">sudo </span>apt <span class="nb">install </span>nginx <span class="nt">-y</span> <span class="nb">sudo </span>systemctl start nginx <span class="nb">sudo </span>systemctl <span class="nb">enable </span>nginx </code></pre> </li> <li> <p><strong>Create Nginx Web Root and Test Page:</strong><br> </p> <pre class="highlight shell"><code><span class="nb">sudo mkdir</span> <span class="nt">-p</span> /var/www/html <span class="nb">echo</span> <span class="s2">"Hello from Nginx! Testing HTTP Connectivity."</span> | <span class="nb">sudo tee</span> /var/www/html/index.html <span class="nb">sudo chown</span> <span class="nt">-R</span> www-data:www-data /var/www/html <span class="nb">sudo chmod</span> <span class="nt">-R</span> 755 /var/www/html </code></pre> </li> <li> <p><strong>Configure Nginx for your Domain (HTTP only for now):</strong><br> Create a new Nginx configuration file for your domain.<br> </p> <pre class="highlight shell"><code><span class="nb">sudo </span>nano /etc/nginx/conf.d/n8n.conf </code></pre> <p>Paste this content (replace <code>n8n.yourdomain.com</code> with your domain):<br> </p> <pre class="highlight nginx"><code><span class="k">server</span> <span class="p">{</span> <span class="kn">listen</span> <span class="mi">80</span><span class="p">;</span> <span class="kn">listen</span> <span class="s">[::]:80</span><span class="p">;</span> <span class="kn">server_name</span> <span class="s">n8n.yourdomain.com</span><span class="p">;</span> <span class="c1"># Your exact domain</span> <span class="kn">location</span> <span class="n">/.well-known/acme-challenge/</span> <span class="p">{</span> <span class="kn">root</span> <span class="n">/var/www/html</span><span class="p">;</span> <span class="c1"># Used by Certbot for verification</span> <span class="kn">allow</span> <span class="s">all</span><span class="p">;</span> <span class="p">}</span> <span class="kn">location</span> <span class="n">/</span> <span class="p">{</span> <span class="kn">root</span> <span class="n">/var/www/html</span><span class="p">;</span> <span class="c1"># Temporarily serve static HTML</span> <span class="kn">index</span> <span class="s">index.html</span> <span class="s">index.htm</span><span class="p">;</span> <span class="kn">try_files</span> <span class="nv">$uri</span> <span class="nv">$uri</span><span class="n">/</span> <span class="p">=</span><span class="mi">404</span><span class="p">;</span> <span class="p">}</span> <span class="p">}</span> </code></pre> <p><em>Save and exit (<code>Ctrl+X</code>, <code>Y</code>, <code>Enter</code>).</em></p> </li> <li> <p><strong>Test Nginx Configuration and Reload:</strong><br> </p> <pre class="highlight shell"><code><span class="nb">sudo </span>nginx <span class="nt">-t</span> <span class="nb">sudo </span>systemctl reload nginx </code></pre> </li> <li><p><strong>Verify HTTP Access (from your local browser):</strong><br> Visit <code>http://n8n.yourdomain.com</code>. You should now see "Hello from Nginx! Testing HTTP Connectivity." This confirms Nginx is properly serving.</p></li> </ol> <h3> 6. Obtain SSL Certificate with Certbot (Let's Encrypt) </h3> <ol> <li> <p><strong>Install Certbot and Nginx Plugin:</strong><br> </p> <pre class="highlight shell"><code><span class="nb">sudo </span>apt <span class="nb">install </span>certbot python3-certbot-nginx <span class="nt">-y</span> </code></pre> </li> <li> <p><strong>Run Certbot:</strong><br> </p> <pre class="highlight shell"><code><span class="nb">sudo </span>certbot <span class="nt">--nginx</span> <span class="nt">-d</span> n8n.yourdomain.com </code></pre> </li> </ol> <div class="highlight js-code-highlight"> <pre class="highlight plaintext"><code>- Follow the prompts: Enter email, agree to terms, choose to redirect HTTP to HTTPS (`2`). - Certbot will automatically modify your Nginx config to include SSL and redirect HTTP traffic. </code></pre> </div> <ol> <li> <p><strong>Test Nginx Configuration and Reload (again):</strong><br> </p> <pre class="highlight shell"><code><span class="nb">sudo </span>nginx <span class="nt">-t</span> <span class="nb">sudo </span>systemctl reload nginx </code></pre> </li> <li> <p><strong>Test Automatic Renewal:</strong><br> </p> <pre class="highlight shell"><code><span class="nb">sudo </span>certbot renew <span class="nt">--dry-run</span> </code></pre> <p>This should complete successfully.</p> </li> <li><p><strong>Verify HTTPS in Browser:</strong><br> Go to <code>https://n8n.yourdomain.com</code>. You should see a secure padlock.</p></li> </ol> <h3> 7. Install n8n with Docker Compose &amp; Database </h3> <p>Now, we'll set up n8n with a PostgreSQL database using Docker Compose.</p> <ol> <li> <p><strong>Create a directory for n8n:</strong><br> </p> <pre class="highlight shell"><code><span class="nb">mkdir</span> ~/n8n <span class="nb">cd</span> ~/n8n </code></pre> </li> <li> <p><strong>Create <code>docker-compose.yml</code>:</strong><br> </p> <pre class="highlight shell"><code>nano docker-compose.yml </code></pre> <p>Paste the following content. <strong>Remember to change placeholders:</strong></p> </li> </ol> <div class="highlight js-code-highlight"> <pre class="highlight plaintext"><code>- `your_strong_database_password` - `n8n.yourdomain.com` - `America/Toronto` (to your timezone) - Generate a unique `N8N_ENCRYPTION_KEY` (run `head /dev/urandom | tr -dc A-Za-z0-9_ | head -c 32 ; echo ''` and paste the output). &lt;!-- end list --&gt; </code></pre> </div> <div class="highlight js-code-highlight"> <pre class="highlight plaintext"><code>```yaml version: '3.8' services: postgres: image: postgres:15 restart: always environment: POSTGRES_DB: n8n POSTGRES_USER: n8nuser POSTGRES_PASSWORD: your_strong_database_password # CHANGE THIS! volumes: - ./pg_data:/var/lib/postgresql/data networks: - n8n_backend healthcheck: # Ensures n8n waits for DB to be ready test: ['CMD-SHELL', 'pg_isready -U n8nuser -d n8n'] interval: 5s timeout: 5s retries: 5 n8n: image: n8nio/n8n restart: always environment: DB_TYPE: postgresdb DB_POSTGRESDB_HOST: postgres DB_POSTGRESDB_PORT: 5432 DB_POSTGRESDB_DATABASE: n8n DB_POSTGRESDB_USER: n8nuser DB_POSTGRESDB_PASSWORD: your_strong_database_password # MUST MATCH ABOVE! N8N_HOST: n8n.yourdomain.com # CHANGE THIS to your actual domain WEBHOOK_URL: https://n8n.yourdomain.com # CHANGE THIS to your actual domain N8N_PROTOCOL: https GENERIC_TIMEZONE: America/Toronto # Adjust to your timezone N8N_ENCRYPTION_KEY: your_generated_32_char_key # PASTE THE GENERATED KEY HERE ports: - '127.0.0.1:5678:5678' # Only expose to localhost for Nginx proxy volumes: - ./n8n_data:/home/node/.n8n networks: - n8n_backend depends_on: postgres: condition: service_healthy # Wait for DB to be healthy networks: n8n_backend: driver: bridge ``` </code></pre> </div> <div class="highlight js-code-highlight"> <pre class="highlight plaintext"><code>_Save and exit._ </code></pre> </div> <ol> <li> <p><strong>Set Permissions for n8n Data Volume:</strong><br> This ensures the <code>node</code> user inside the container can write to the <code>n8n_data</code> volume.<br> </p> <pre class="highlight shell"><code><span class="nb">sudo chown</span> <span class="nt">-R</span> 1000:1000 n8n_data <span class="c"># 1000:1000 is often the UID/GID of 'node' user in n8n image</span> </code></pre> <p>If <code>n8n_data</code> doesn't exist yet, Docker will create it with root permissions. You might need to run this command <em>after</em> the first <code>docker compose up -d</code> if it fails, or simply create the directory first: <code>mkdir n8n_data &amp;&amp; sudo chown -R 1000:1000 n8n_data</code>.</p> </li> <li> <p><strong>Start n8n and the Database:</strong><br> </p> <pre class="highlight shell"><code>docker compose up <span class="nt">-d</span> </code></pre> </li> <li> <p><strong>Verify Docker Containers:</strong><br> </p> <pre class="highlight shell"><code>docker ps </code></pre> <p>Both <code>n8n</code> and <code>postgres</code> (or <code>mysql</code>) containers should show <code>Up</code> status. If <code>n8n</code> is still <code>Restarting</code>, check <code>docker logs n8n-n8n-1</code> for specific errors (e.g., database connection issues, incorrect <code>N8N_ENCRYPTION_KEY</code>).</p> </li> </ol> <h3> 8. Configure Nginx Reverse Proxy for n8n </h3> <p>Finally, tell Nginx to forward traffic from your domain to the running n8n container.</p> <ol> <li> <p><strong>Edit your Nginx configuration file again:</strong><br> </p> <pre class="highlight shell"><code><span class="nb">sudo </span>nano /etc/nginx/conf.d/n8n.conf </code></pre> </li> <li><p><strong>Locate the <code>server</code> block that has <code>listen 443 ssl;</code> and <code>server_name n8n.yourdomain.com;</code>.</strong></p></li> <li> <p><strong>Inside this block, replace or add the <code>location / {}</code> block to proxy to n8n:</strong><br> </p> <pre class="highlight nginx"><code><span class="c1"># ... (other parts of the server block for listen 443 ssl) ...</span> <span class="k">location</span> <span class="n">/</span> <span class="p">{</span> <span class="kn">proxy_pass</span> <span class="s">http://localhost:5678</span><span class="p">;</span> <span class="c1"># n8n Docker container is accessible on localhost:5678</span> <span class="kn">proxy_set_header</span> <span class="s">Host</span> <span class="nv">$host</span><span class="p">;</span> <span class="kn">proxy_set_header</span> <span class="s">X-Real-IP</span> <span class="nv">$remote_addr</span><span class="p">;</span> <span class="kn">proxy_set_header</span> <span class="s">X-Forwarded-For</span> <span class="nv">$proxy_add_x_forwarded_for</span><span class="p">;</span> <span class="kn">proxy_set_header</span> <span class="s">X-Forwarded-Proto</span> <span class="nv">$scheme</span><span class="p">;</span> <span class="kn">proxy_http_version</span> <span class="mf">1.1</span><span class="p">;</span> <span class="kn">proxy_set_header</span> <span class="s">Upgrade</span> <span class="nv">$http_upgrade</span><span class="p">;</span> <span class="kn">proxy_set_header</span> <span class="s">Connection</span> <span class="s">"upgrade"</span><span class="p">;</span> <span class="kn">proxy_buffering</span> <span class="no">off</span><span class="p">;</span> <span class="c1"># Important for long-running workflows</span> <span class="p">}</span> <span class="c1"># ... (rest of the server block for listen 443 ssl) ...</span> </code></pre> <p><em>Make sure the <code>location /.well-known/acme-challenge/</code> block is still present in your <code>listen 80;</code> server block (Certbot usually handles this correctly).</em><br> <em>Save and exit.</em></p> </li> <li> <p><strong>Test Nginx Configuration and Reload:</strong><br> </p> <pre class="highlight shell"><code><span class="nb">sudo </span>nginx <span class="nt">-t</span> <span class="nb">sudo </span>systemctl reload nginx </code></pre> </li> <li><p><strong>Final Verification:</strong><br> Open your web browser and navigate to <code>https://n8n.yourdomain.com</code>. You should now see the n8n setup screen. Create your first user account, and you're ready to start automating!</p></li> </ol> <h2> Troubleshooting Common Issues </h2> <ul> <li> <p><strong><code>ERR_CONNECTION_REFUSED</code> / <code>No route to host</code> (solved in this guide!):</strong></p> <ul> <li> <strong>Reason:</strong> Often a low-level firewall or routing issue on Oracle Cloud instances.</li> <li> <strong>Fix:</strong> The <code>sudo iptables -P INPUT ACCEPT; sudo iptables -P OUTPUT ACCEPT; sudo iptables -P FORWARD ACCEPT; sudo iptables -F</code> followed by <code>iptables-persistent</code> installation and a reboot usually resolves this. Also ensure OCI Security Lists/NSGs and UFW allow ports 80/443.</li> </ul> </li> <li> <p><strong><code>EACCES: permission denied, open '/home/node/.n8n/config'</code> (n8n container restarting):</strong></p> <ul> <li> <strong>Reason:</strong> The n8n container doesn't have write permissions to the mounted <code>n8n_data</code> volume.</li> <li> <strong>Fix:</strong> <code>sudo chown -R 1000:1000 ~/n8n/n8n_data</code> (adjust path if different).</li> </ul> </li> <li> <p><strong><code>Error getting validation data</code> (Certbot failed):</strong></p> <ul> <li> <strong>Reason:</strong> Nginx is not correctly serving the <code>.well-known/acme-challenge/</code> path on port 80.</li> <li> <strong>Fix:</strong> Ensure Nginx is running, its port 80 block has <code>server_name</code> matching your domain, and the <code>location /.well-known/acme-challenge/ { root /var/www/html; allow all; }</code> block is correctly configured and pointing to a writable directory (<code>/var/www/html</code> should be owned by <code>www-data</code>). Ensure no <code>listen 443 ssl;</code> block is active before Certbot runs.</li> </ul> </li> <li> <p><strong>N8N <code>Restarting (1)</code> (not permissions/database):</strong></p> <ul> <li> <strong>Reason:</strong> Check <code>docker logs n8n-n8n-1</code>. This could be database credential mismatch, database not fully initialized, or invalid <code>N8N_ENCRYPTION_KEY</code>.</li> <li> <strong>Fix:</strong> Double-check all environment variables in <code>docker-compose.yml</code>, especially database passwords and the 32-character encryption key. Add a <code>healthcheck</code> for the database service and <code>depends_on: { postgres: { condition: service_healthy } }</code> for n8n.</li> </ul> </li> </ul> <h2> Backup and Restore Strategy </h2> <blockquote> <p><strong>See also:</strong> <a href="https://github.com/dalenguyen/n8n-self-hosted-starter/tree/main/platforms/oracle-cloud" rel="noopener noreferrer">Comprehensive backup &amp; restore scripts and automation for n8n on Oracle Cloud (GitHub)</a></p> </blockquote> <p><strong>Regular backups are crucial for self-hosted n8n!</strong></p> <ol> <li> <p><strong>Stop n8n and database containers:</strong><br> </p> <pre class="highlight shell"><code><span class="nb">cd</span> ~/n8n docker compose stop </code></pre> </li> <li> <p><strong>Create a timestamped archive of your data volumes:</strong><br> </p> <pre class="highlight shell"><code><span class="nb">tar</span> <span class="nt">-czvf</span> n8n_backup_<span class="si">$(</span><span class="nb">date</span> +%Y%m%d%H%M%S<span class="si">)</span>.tar.gz n8n_data pg_data </code></pre> <p>(Replace <code>pg_data</code> with <code>mysql_data</code> if you used MySQL).</p> </li> <li> <p><strong>Securely transfer the backup:</strong><br> Download this <code>.tar.gz</code> file to your local machine or upload it to object storage (e.g., OCI Object Storage, S3, Google Cloud Storage) for off-site redundancy.<br> </p> <pre class="highlight shell"><code><span class="c"># Example to download to your local machine from SSH</span> <span class="c"># From your LOCAL machine:</span> <span class="c"># scp -i /path/to/your/my_oracle_key.key ubuntu@&lt;your_instance_public_ip&gt;:~/n8n/n8n_backup_*.tar.gz .</span> </code></pre> </li> <li> <p><strong>Restart containers:</strong><br> </p> <pre class="highlight shell"><code>docker compose up <span class="nt">-d</span> </code></pre> </li> </ol> <p><strong>To Restore:</strong></p> <ol> <li> <strong>Stop containers:</strong> <code>docker compose stop</code> </li> <li> <strong>Remove existing data (BE CAREFUL!):</strong> <code>rm -rf n8n_data pg_data</code> </li> <li> <strong>Transfer your backup archive</strong> to <code>~/n8n/</code> on the server.</li> <li> <strong>Extract the backup:</strong> <code>tar -xzvf n8n_backup_YOUR_TIMESTAMP.tar.gz</code> </li> <li> <strong>Set correct permissions:</strong> <code>sudo chown -R 1000:1000 n8n_data pg_data</code> </li> <li> <strong>Start containers:</strong> <code>docker compose up -d</code> </li> </ol> <h2> Further Enhancements &amp; Considerations </h2> <ul> <li> <strong>Security:</strong> Always use strong, unique passwords for your database and any n8n basic auth. Keep your SSH private key secure.</li> <li> <strong>Monitoring:</strong> Implement basic monitoring for your instance's CPU, RAM, and disk usage to ensure n8n runs smoothly.</li> <li> <strong>Updates:</strong> Periodically update your n8n Docker image by running <code>docker compose pull n8n</code> followed by <code>docker compose up -d</code> (always backup first!).</li> <li> <strong>Custom Domains:</strong> If you have multiple domains, you can configure Nginx to handle more, or use a wildcard certificate if you have one.</li> <li> <strong>Node Versions:</strong> For specific n8n versions, use <code>n8nio/n8n:1.X.X</code> in your <code>docker-compose.yml</code>. <code>:latest</code> gets the newest.</li> <li> <strong>Scalability:</strong> For very heavy workloads, consider a more powerful OCI instance, or exploring n8n's queue mode and separate workers.</li> </ul> <p>By following this comprehensive guide, you've successfully deployed a powerful n8n automation server on Oracle Cloud's Free Tier, complete with domain mapping, SSL, and robust Docker management! Enjoy building your workflows.</p> n8n automation cloud webdev How to Start Your Own MCP Server with n8n Dale Nguyen Mon, 30 Jun 2025 04:13:05 +0000 https://dev.to/dalenguyen/how-to-start-your-own-mcp-server-with-n8n-2d17 https://dev.to/dalenguyen/how-to-start-your-own-mcp-server-with-n8n-2d17 <p>With recent versions of n8n, you can launch your own Model Context Protocol (MCP) server and client directly from the n8n interface—no extra installation, npm packages, or Docker images required. This built-in capability lets you expose n8n workflows as AI-usable tools and connect to other MCP servers, all within your workflow editor.</p> <blockquote> <p>For those who want to jump straight to the code, I've created a starter template repository on GitHub. It includes all the configurations and scripts mentioned in this guide.</p> <p><strong><a href="https://github.com/dalenguyen/n8n-self-hosted-starter" rel="noopener noreferrer">n8n-self-hosted-starter on GitHub</a></strong></p> </blockquote> <p>Below is a step-by-step guide to getting started.</p> <h2> What is MCP in n8n? </h2> <p>MCP (Model Context Protocol) is a standard that lets AI agents and other clients discover, call, and interact with tools—like n8n workflows—over a simple HTTP or SSE (Server-Sent Events) interface. In n8n, the <strong>MCP Server Trigger</strong> node exposes your workflows as MCP tools, while the <strong>MCP Client Tool</strong> node lets you call tools exposed by other MCP servers.</p> <h2> Prerequisites </h2> <ul> <li>n8n version <strong>1.88.0 or higher</strong> (for built-in MCP nodes)</li> <li>A running n8n instance (self-hosted or cloud)</li> </ul> <h2> Step 1: Add the MCP Server Trigger Node </h2> <ol> <li> <strong>Create a New Workflow</strong> in n8n.</li> <li> <strong>Add the MCP Server Trigger Node</strong>: <ul> <li>Search for "MCP Server Trigger" in the node panel and add it to your canvas.</li> <li>This node will expose a unique URL endpoint (e.g., <code>/mcp/abc123</code>) that MCP clients can call to access your workflow as a tool.</li> </ul> </li> <li> <strong>Configure the Node</strong>: <ul> <li> <strong>MCP URL Path:</strong> Use the default or customize it.</li> <li> <strong>Authentication:</strong> Choose "None" for open access (not recommended for production) or configure authentication (e.g., API key or header).</li> <li> <strong>Connect Tool Nodes:</strong> Attach nodes that represent the tools you want to expose (e.g., HTTP Request, Send Email, custom functions).</li> </ul> </li> </ol> <h2> Step 2: Expose Your Tools </h2> <ul> <li> <strong>Native and Custom Tools:</strong> You can expose both built-in n8n tools (like Google Calendar, HTTP Request) and your own custom logic as MCP tools.</li> <li> <strong>Workflow as a Tool:</strong> Use the "Custom n8n Workflow Tool" node to expose entire workflows as callable MCP tools.</li> </ul> <h2> Step 3: Activate and Share </h2> <ul> <li> <strong>Activate the Workflow:</strong> Toggle the workflow to active.</li> <li> <strong>Share the MCP Endpoint:</strong> The MCP Server Trigger node displays the endpoint URL. Share this with AI agents or MCP clients that need to call your tools.</li> </ul> <p><a href="https://media2.dev.to/dynamic/image/width=800%2Cheight=%2Cfit=scale-down%2Cgravity=auto%2Cformat=auto/https%3A%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Farticles%2Frtfdtoxq5zdlhp96yymy.png" class="article-body-image-wrapper"><img src="https://media2.dev.to/dynamic/image/width=800%2Cheight=%2Cfit=scale-down%2Cgravity=auto%2Cformat=auto/https%3A%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Farticles%2Frtfdtoxq5zdlhp96yymy.png" alt="MCP Server URL" width="800" height="976"></a></p> <h2> Step 4: Connect with the MCP Client Tool Node </h2> <ol> <li> <strong>Add an MCP Client Tool Node</strong> in another workflow or instance.</li> <li> <strong>Configure the Node</strong>: <ul> <li> <strong>SSE Endpoint:</strong> Enter the MCP Server URL you created earlier.</li> <li> <strong>Authentication:</strong> Set up bearer token or header authentication if required.</li> <li> <strong>Select Tools:</strong> Choose which tools to expose to your AI agent—All, Selected, or All Except.</li> </ul> </li> <li> <strong>Use with AI Agents:</strong> Connect the MCP Client Tool node to your AI Agent node or other workflow logic. The AI agent can now discover and use your exposed tools dynamically.</li> </ol> <p><a href="https://media2.dev.to/dynamic/image/width=800%2Cheight=%2Cfit=scale-down%2Cgravity=auto%2Cformat=auto/https%3A%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Farticles%2F2mqnrffwq58sbjbmedqu.png" class="article-body-image-wrapper"><img src="https://media2.dev.to/dynamic/image/width=800%2Cheight=%2Cfit=scale-down%2Cgravity=auto%2Cformat=auto/https%3A%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Farticles%2F2mqnrffwq58sbjbmedqu.png" alt="Expose MCP Server to a workflow" width="800" height="510"></a></p> <h2> Step 5: Test Your MCP Server </h2> <p>You can test your MCP endpoint by using Postman MCP client (with appropriate authentication if enabled):</p> <p><a href="https://media2.dev.to/dynamic/image/width=800%2Cheight=%2Cfit=scale-down%2Cgravity=auto%2Cformat=auto/https%3A%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Farticles%2Fvacoc8k4x20ikjtfe46f.png" class="article-body-image-wrapper"><img src="https://media2.dev.to/dynamic/image/width=800%2Cheight=%2Cfit=scale-down%2Cgravity=auto%2Cformat=auto/https%3A%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Farticles%2Fvacoc8k4x20ikjtfe46f.png" alt="Test n8n MCP server using Postman MCP" width="800" height="648"></a></p> <p>If configured correctly, n8n will execute the connected tool node and return the result.</p> <h2> Example Use Cases </h2> <ul> <li> <strong>Expose a Send Email Tool:</strong> Trigger an email-sending workflow via MCP.</li> <li> <strong>Integrate with Google Calendar:</strong> Let AI agents schedule events by calling your n8n workflow.</li> <li> <strong>Custom Data Processing:</strong> Build custom tools (e.g., data cleaning, API aggregation) and expose them for programmatic use.</li> </ul> <p><a href="https://media2.dev.to/dynamic/image/width=800%2Cheight=%2Cfit=scale-down%2Cgravity=auto%2Cformat=auto/https%3A%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Farticles%2Fkfw4b4ffm2nvr0ry52up.png" class="article-body-image-wrapper"><img src="https://media2.dev.to/dynamic/image/width=800%2Cheight=%2Cfit=scale-down%2Cgravity=auto%2Cformat=auto/https%3A%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Farticles%2Fkfw4b4ffm2nvr0ry52up.png" alt="Example of getting unread emails via Gmail MCP server" width="800" height="502"></a></p> <h2> Security Best Practices </h2> <ul> <li> <strong>Always use authentication</strong> (API key, bearer token, or header) on production MCP endpoints.</li> <li> <strong>Restrict access</strong> to your MCP endpoints using firewall rules, Cloudflare Access, or reverse proxy.</li> <li> <strong>Monitor usage</strong> and logs for unusual activity.</li> </ul> <h2> Summary Table </h2> <div class="table-wrapper-paragraph"><table> <thead> <tr> <th>Node</th> <th>Purpose</th> </tr> </thead> <tbody> <tr> <td>MCP Server Trigger</td> <td>Exposes n8n tools/workflows as MCP endpoints</td> </tr> <tr> <td>MCP Client Tool</td> <td>Connects to external MCP servers as a client</td> </tr> </tbody> </table></div> <p>With these built-in nodes, you can turn n8n into a powerful, AI-ready automation server—no extra installation or configuration required. Just add, connect, activate, and your MCP server is live!</p> n8n automation aiagents mcp Separate and Protect n8n Webhooks and MCP Endpoints from the Login UI Dale Nguyen Sat, 28 Jun 2025 04:41:36 +0000 https://dev.to/dalenguyen/free-self-host-ai-agent-workflows-with-n8n-and-cloudflare-tunnel-2bff https://dev.to/dalenguyen/free-self-host-ai-agent-workflows-with-n8n-and-cloudflare-tunnel-2bff <p>Self-hosting n8n offers flexibility and privacy, but exposing both the UI and webhooks to the public internet can create security risks. The best practice is to <strong>separate your webhook endpoints and MCP (Model Context Protocol) from the n8n login UI</strong>, and apply different security measures to each. Here's a practical guide on how to do this using Cloudflare Tunnel, subdomains, and access controls.</p> <blockquote> <p>For those who want to jump straight to the code, I've created a starter template repository on GitHub. It includes all the configurations and scripts mentioned in this guide.</p> <p><strong><a href="https://github.com/dalenguyen/n8n-self-hosted-starter" rel="noopener noreferrer">n8n-self-hosted-starter on GitHub</a></strong></p> </blockquote> <h2> Why Separate Webhooks from the n8n UI? </h2> <ul> <li> <strong>Security:</strong> The n8n UI (editor/login) should be tightly secured and only accessible to trusted users.</li> <li> <strong>Functionality:</strong> Webhooks often need to be accessible publicly for integrations but should not expose your management interface.</li> <li> <strong>Flexibility:</strong> You can apply different security policies to each endpoint.</li> </ul> <h2> Architecture Overview </h2> <div class="table-wrapper-paragraph"><table> <thead> <tr> <th>Subdomain</th> <th>Purpose</th> <th>Exposure</th> <th>Protection</th> </tr> </thead> <tbody> <tr> <td><code>n8n.example.com</code></td> <td>n8n UI (Editor/Login)</td> <td>Private</td> <td>Cloudflare Access, VPN, or IP allowlist</td> </tr> <tr> <td><code>webhook.example.com</code></td> <td>Webhook / MCP endpoints</td> <td>Public (limited)</td> <td>Token/IP checks, Cloudflare rules</td> </tr> </tbody> </table></div> <h2> Step 1: Use Separate Subdomains </h2> <p>Configure your DNS and Cloudflare Tunnel to use <strong>distinct subdomains</strong> for the UI and webhooks. For example:</p> <ul> <li> <code>n8n.example.com</code> → n8n UI</li> <li> <code>webhook.example.com</code> → n8n webhooks</li> </ul> <p>This separation allows you to route and protect each endpoint differently.</p> <h2> Step 2: Route Traffic Internally with a Reverse Proxy </h2> <blockquote> <p><strong>Note:</strong> Using a reverse proxy to separate traffic is optional. Both the UI and webhook subdomains can point to the same n8n instance. You can rely on Cloudflare to provide additional security for the webhook subdomain now or in the future, even if both subdomains route to the same backend.</p> </blockquote> <p>Use a reverse proxy (like Traefik or Caddy) to internally route requests:</p> <ul> <li>All <code>/webhook/*</code> traffic goes to the n8n webhook handler.</li> <li>All other traffic (UI, login, MCP) goes to the n8n UI.</li> </ul> <p><strong>Example with Traefik:</strong><br> </p> <div class="highlight js-code-highlight"> <pre class="highlight yaml"><code><span class="c1"># docker-compose.yml (snippet)</span> <span class="na">services</span><span class="pi">:</span> <span class="na">traefik</span><span class="pi">:</span> <span class="c1"># ...traefik config...</span> <span class="na">n8n</span><span class="pi">:</span> <span class="c1"># ...n8n config...</span> <span class="na">environment</span><span class="pi">:</span> <span class="pi">-</span> <span class="s">WEBHOOK_URL=https://webhook.example.com/</span> <span class="pi">-</span> <span class="s">N8N_HOST=n8n.example.com</span> </code></pre> </div> <h2> Step 3: Secure the n8n UI with Cloudflare Access </h2> <ul> <li>Set up a Cloudflare Access policy for <code>n8n.example.com</code>.</li> <li>Require login with your identity provider (Google, GitHub, etc.), IP allowlist, or other Zero Trust rules.</li> <li>This ensures only authorized users can access the n8n editor and login page.</li> </ul> <p><a href="https://media2.dev.to/dynamic/image/width=800%2Cheight=%2Cfit=scale-down%2Cgravity=auto%2Cformat=auto/https%3A%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Farticles%2Fc6s03rg3wfqd3sgoh5mi.png" class="article-body-image-wrapper"><img src="https://media2.dev.to/dynamic/image/width=800%2Cheight=%2Cfit=scale-down%2Cgravity=auto%2Cformat=auto/https%3A%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Farticles%2Fc6s03rg3wfqd3sgoh5mi.png" alt="Zero Trust protection for login page" width="800" height="644"></a></p> <h2> Step 4: Protect Webhook Endpoints </h2> <p>Webhooks often need to be public, but you can still apply protection:</p> <ul> <li> <strong>Bearer Token:</strong> Require a secret token in the <code>Authorization</code> header.</li> <li> <strong>IP Whitelisting:</strong> Restrict allowed source IPs in Cloudflare Firewall Rules.</li> <li> <strong>Cloudflare WAF:</strong> Set up custom rules to block suspicious or abusive traffic.</li> <li> <strong>Obscure URLs:</strong> n8n generates long, random webhook URLs, but don't rely solely on obscurity.</li> </ul> <h2> Example: Cloudflare Tunnel and Access Policy </h2> <p><strong>Cloudflare Tunnel:</strong></p> <ul> <li>Create two tunnels or two hostname routes: <ul> <li> <code>n8n.example.com</code> → n8n UI (private)</li> <li> <code>webhook.example.com</code> → n8n webhooks (public, but with WAF)</li> </ul> </li> </ul> <p><strong>Cloudflare Access Policy for UI:</strong></p> <ul> <li>Go to Cloudflare Zero Trust &gt; Access &gt; Applications</li> <li>Add your UI subdomain</li> <li>Set a policy: allow only specific emails, groups, or IPs</li> </ul> <p><strong>Cloudflare Firewall Rule for Webhooks:</strong></p> <ul> <li>Go to Security &gt; WAF &gt; Firewall Rules</li> <li>Add a rule: Allow only specific IPs or require a custom header/token</li> </ul> <h2> Summary Table </h2> <div class="table-wrapper-paragraph"><table> <thead> <tr> <th>Endpoint</th> <th>Subdomain</th> <th>Exposure</th> <th>Protection</th> </tr> </thead> <tbody> <tr> <td>n8n UI</td> <td>n8n.example.com</td> <td>Private</td> <td>Cloudflare Access, VPN, IP allowlist</td> </tr> <tr> <td>Webhooks</td> <td>webhook.example.com</td> <td>Public (limited)</td> <td>Bearer token, IP rules, WAF</td> </tr> </tbody> </table></div> <h2> Final Thoughts </h2> <p>By <strong>separating your n8n UI and webhook endpoints onto different subdomains</strong> and applying tailored security controls, you dramatically reduce the risk of unauthorized access to your automation platform. Use Cloudflare Tunnel and Access for the UI, and firewall/token protections for webhooks. For advanced setups, a reverse proxy like Traefik or Caddy can help route and isolate traffic internally.</p> <blockquote> <p>For a detailed, step-by-step configuration, see guides like <a href="https://github.com/dalenguyen/n8n-self-hosted-cloudflare-starter/blob/main/CLOUDFLARE_SETUP.md" rel="noopener noreferrer">dalenguyen's n8n Cloudflare starter</a> and community write-ups on Cloudflare Zero Trust.</p> </blockquote> <p>Secure automating!</p> n8n cloudflare automation ai