DEV Community: Zenovay The latest articles on DEV Community by Zenovay (@zenovay). https://dev.to/zenovay https://media2.dev.to/dynamic/image/width=90,height=90,fit=cover,gravity=auto,format=auto/https:%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Fuser%2Fprofile_image%2F3772909%2F8887f0bd-adb2-4162-a1ab-3e20ca842724.png DEV Community: Zenovay https://dev.to/zenovay en Scoring anonymous web visitors without storing personal data Zenovay Mon, 01 Jun 2026 19:20:38 +0000 https://dev.to/zenovay/scoring-anonymous-web-visitors-without-storing-personal-data-4n0f https://dev.to/zenovay/scoring-anonymous-web-visitors-without-storing-personal-data-4n0f <p>Most lead scoring assumes you know who the visitor is. We wanted to score how likely an anonymous session is to convert without storing anything that identifies a person. No third party cookie, no enrichment vendor, no PII. Here is how we did it for our analytics tool, including the parts that did not work.</p> <h2> The goal </h2> <p>Given a live, anonymous session, output a number from 0 to 100 that says "pay attention to this one". The constraint: we never store who the person is. We score the behavior of a session id that rotates, not a profile.</p> <h2> The signals that actually correlate </h2> <p>We tested a lot of inputs against real conversion data. The ones that held up:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight typescript"><code><span class="kd">type</span> <span class="nx">SessionFeatures</span> <span class="o">=</span> <span class="p">{</span> <span class="na">returnSessions</span><span class="p">:</span> <span class="kr">number</span><span class="p">;</span> <span class="c1">// distinct prior sessions. strongest signal by far</span> <span class="nl">viewedPricing</span><span class="p">:</span> <span class="nx">boolean</span><span class="p">;</span> <span class="nl">pricingThenReturned</span><span class="p">:</span> <span class="nx">boolean</span><span class="p">;</span> <span class="c1">// viewed pricing, left, came back</span> <span class="nl">docsDepth</span><span class="p">:</span> <span class="kr">number</span><span class="p">;</span> <span class="c1">// scroll + pages on docs/integrations</span> <span class="nl">pathShape</span><span class="p">:</span> <span class="dl">"</span><span class="s2">browse</span><span class="dl">"</span> <span class="o">|</span> <span class="dl">"</span><span class="s2">direct</span><span class="dl">"</span> <span class="o">|</span> <span class="dl">"</span><span class="s2">compare</span><span class="dl">"</span><span class="p">;</span> <span class="p">};</span> </code></pre> </div> <p>The ones we dropped because they were noise: raw time on page (a backgrounded tab destroys it), single session scroll depth on its own, and device type (much weaker than people claim).</p> <h2> The scoring function </h2> <p>For low volume sites we do not use a model. Weighted rules beat a model until you have enough data to train on:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight typescript"><code><span class="kd">function</span> <span class="nf">scoreSession</span><span class="p">(</span><span class="nx">f</span><span class="p">:</span> <span class="nx">SessionFeatures</span><span class="p">):</span> <span class="kr">number</span> <span class="p">{</span> <span class="kd">let</span> <span class="nx">score</span> <span class="o">=</span> <span class="mi">0</span><span class="p">;</span> <span class="nx">score</span> <span class="o">+=</span> <span class="nb">Math</span><span class="p">.</span><span class="nf">min</span><span class="p">(</span><span class="nx">f</span><span class="p">.</span><span class="nx">returnSessions</span><span class="p">,</span> <span class="mi">5</span><span class="p">)</span> <span class="o">*</span> <span class="mi">12</span><span class="p">;</span> <span class="c1">// return visits dominate</span> <span class="k">if </span><span class="p">(</span><span class="nx">f</span><span class="p">.</span><span class="nx">viewedPricing</span><span class="p">)</span> <span class="nx">score</span> <span class="o">+=</span> <span class="mi">10</span><span class="p">;</span> <span class="k">if </span><span class="p">(</span><span class="nx">f</span><span class="p">.</span><span class="nx">pricingThenReturned</span><span class="p">)</span> <span class="nx">score</span> <span class="o">+=</span> <span class="mi">20</span><span class="p">;</span> <span class="c1">// intent</span> <span class="nx">score</span> <span class="o">+=</span> <span class="nb">Math</span><span class="p">.</span><span class="nf">min</span><span class="p">(</span><span class="nx">f</span><span class="p">.</span><span class="nx">docsDepth</span><span class="p">,</span> <span class="mi">100</span><span class="p">)</span> <span class="o">*</span> <span class="mf">0.2</span><span class="p">;</span> <span class="k">if </span><span class="p">(</span><span class="nx">f</span><span class="p">.</span><span class="nx">pathShape</span> <span class="o">===</span> <span class="dl">"</span><span class="s2">compare</span><span class="dl">"</span><span class="p">)</span> <span class="nx">score</span> <span class="o">+=</span> <span class="mi">8</span><span class="p">;</span> <span class="k">return</span> <span class="nb">Math</span><span class="p">.</span><span class="nf">min</span><span class="p">(</span><span class="nb">Math</span><span class="p">.</span><span class="nf">round</span><span class="p">(</span><span class="nx">score</span><span class="p">),</span> <span class="mi">100</span><span class="p">);</span> <span class="p">}</span> </code></pre> </div> <p>It is deliberately boring. A heuristic you can explain beats a black box you cannot, especially when a customer asks "why is this session a 78".</p> <h2> Running it at the edge on the event stream </h2> <p>Scoring runs on each event as it arrives, so the score updates in near real time instead of in a nightly batch:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight typescript"><code><span class="k">export</span> <span class="k">default</span> <span class="p">{</span> <span class="k">async</span> <span class="nf">fetch</span><span class="p">(</span><span class="na">req</span><span class="p">:</span> <span class="nx">Request</span><span class="p">,</span> <span class="na">env</span><span class="p">:</span> <span class="nx">Env</span><span class="p">)</span> <span class="p">{</span> <span class="kd">const</span> <span class="nx">event</span> <span class="o">=</span> <span class="k">await</span> <span class="nx">req</span><span class="p">.</span><span class="nx">json</span><span class="o">&lt;</span><span class="nx">AnalyticsEvent</span><span class="o">&gt;</span><span class="p">();</span> <span class="kd">const</span> <span class="nx">features</span> <span class="o">=</span> <span class="k">await</span> <span class="nf">loadSessionFeatures</span><span class="p">(</span><span class="nx">env</span><span class="p">,</span> <span class="nx">event</span><span class="p">.</span><span class="nx">sessionId</span><span class="p">);</span> <span class="kd">const</span> <span class="nx">updated</span> <span class="o">=</span> <span class="nf">applyEvent</span><span class="p">(</span><span class="nx">features</span><span class="p">,</span> <span class="nx">event</span><span class="p">);</span> <span class="kd">const</span> <span class="nx">score</span> <span class="o">=</span> <span class="nf">scoreSession</span><span class="p">(</span><span class="nx">updated</span><span class="p">);</span> <span class="k">await</span> <span class="nx">env</span><span class="p">.</span><span class="nx">SESSIONS</span><span class="p">.</span><span class="nf">put</span><span class="p">(</span><span class="nx">event</span><span class="p">.</span><span class="nx">sessionId</span><span class="p">,</span> <span class="nx">JSON</span><span class="p">.</span><span class="nf">stringify</span><span class="p">({</span> <span class="p">...</span><span class="nx">updated</span><span class="p">,</span> <span class="nx">score</span> <span class="p">}),</span> <span class="p">{</span> <span class="na">expirationTtl</span><span class="p">:</span> <span class="mi">60</span> <span class="o">*</span> <span class="mi">30</span><span class="p">,</span> <span class="c1">// sessions expire, nothing persists about a person</span> <span class="p">});</span> <span class="k">return</span> <span class="k">new</span> <span class="nc">Response</span><span class="p">(</span><span class="nx">JSON</span><span class="p">.</span><span class="nf">stringify</span><span class="p">({</span> <span class="nx">score</span> <span class="p">}));</span> <span class="p">},</span> <span class="p">};</span> </code></pre> </div> <h2> When we switch to a learned model </h2> <p>Only once a site has enough conversions to train on. Below that, a model overfits to a handful of events and is worse than the rules. We gate it on volume, not on whether it sounds impressive.</p> <h2> The honest limitations </h2> <ul> <li>You are scoring a session, not a person. A high score might be a competitor doing research.</li> <li>No identity means no true cross device. We do not pretend otherwise.</li> <li>Low volume sites get scores barely better than a coin flip, and the product says so rather than faking confidence. ## Takeaway</li> </ul> <p>You can get genuinely useful visitor scoring without cookies or PII, but start with explainable weighted rules, not a model. The model is the last step, not the first.</p> <p><em>Disclosure: my co founder and I build a web analytics tool called Zenovay that does this. The approach above is what we actually shipped. See zenovay.com</em></p> javascript typescript webdev machinelearning Why do most SaaS dashboards still feel like enterprise software from 1998 Zenovay Sun, 31 May 2026 14:31:15 +0000 https://dev.to/zenovay/why-do-most-saas-dashboards-still-feel-like-enterprise-software-from-1998-2ben https://dev.to/zenovay/why-do-most-saas-dashboards-still-feel-like-enterprise-software-from-1998-2ben <p>Question for the frontend and UX folks here. Why do most SaaS dashboards in 2026 still feel like enterprise software from 1998 in everything but the CSS?</p> <p>I noticed this hard when redesigning my own product (Zenovay, cookieless web analytics). The first version of our dashboard had:</p> <ul> <li>a left sidebar with 14 menu items</li> <li>a top bar with 6 controls</li> <li>8 chart widgets visible at first paint</li> <li>a "configure dashboard" modal with 23 options</li> </ul> <p>It looked exactly like every other analytics tool. I could not tell my dashboard apart from PostHog or Amplitude in a screenshot.</p> <p>Then I looked at how my actual users used it. The pattern was:</p> <ul> <li>arrive at dashboard</li> <li>look at 2 numbers</li> <li>click one drill down</li> <li>leave</li> </ul> <p>Total time spent in the dashboard: 47 seconds median. Almost nobody touched the sidebar after onboarding.</p> <p>So the 14 menu items, 6 controls, 8 widgets, and 23 configuration options were all competing for attention with the 2 numbers people actually came for.</p> <h2> The redesign </h2> <p>New version:</p> <ul> <li>2 numbers at the top, big, no chart, just numbers</li> <li>1 trend chart underneath</li> <li>3 drill in cards (top pages, top sources, top conversions)</li> <li>everything else moved to a "more" menu</li> </ul> <p>Median time on dashboard went up to 1m 50s. Pages per session went up. The "I can't find X" support emails dropped.</p> <h2> Why this took 4 years across the industry to figure out </h2> <p><strong>Hypothesis 1: founders look at their own tools through builder eyes, not user eyes.</strong> We see all 14 menu items because we built them. A new user sees noise.</p> <p><strong>Hypothesis 2: dashboard density correlates with perceived "powerful".</strong> We're rewarded by the prospect's "wow this is comprehensive" reaction in the sales call. The customer then ignores 90% of it.</p> <p><strong>Hypothesis 3: the B2B buying loop selects for tools that look like they have lots of features.</strong> Procurement teams want checklists. Engineers want simplicity. The buyer is rarely the user.</p> <p><strong>Hypothesis 4: it's just hard.</strong> Saying no to a chart widget that someone, somewhere, wants is a daily resistance pattern. The default is to add.</p> <h2> The pattern I'm trying to follow now </h2> <ol> <li> <strong>First paint is sacred.</strong> Whatever is on first paint is what the user thinks the product is. Choose ruthlessly.</li> <li> <strong>Power users get a different surface.</strong> Don't try to make one UI that pleases the casual visitor and the power user. Casual visitor gets a minimal dashboard. Power user gets a separate "explorer" route.</li> <li> <strong>Sidebar items are debt.</strong> Every item is one more thing the user has to mentally ignore. Items must earn their place by being clicked.</li> <li> <strong>Configuration is for users who asked for it.</strong> Default to opinionated defaults. Configuration is a power user feature. The setting hidden in a submenu is rarely the same one that's exposed at first paint.</li> </ol> <h2> Counter argument I can hear </h2> <p>"You're describing a consumer UI pattern. Enterprise customers want density." Maybe. But I think the gap between consumer and enterprise UI standards is closing fast, and the new buyer who is a millennial PM or technical founder is closer to consumer expectations than to circa 2010 enterprise.</p> <h2> Real question for the thread </h2> <p>What's a SaaS dashboard you actually enjoy using? Specifically: not respect, not "admire from a distance", but actually open with mild satisfaction. Curious where the bar actually is.</p> <p>I'm Valerio. Built <a href="https://zenovay.com" rel="noopener noreferrer">Zenovay</a>, spent an embarrassing amount of time learning this lesson on my own product.</p> webdev ux design discuss Six weeks of dedicated distribution as a solo founder. What i underestimated, what i overestimated Zenovay Sat, 30 May 2026 10:43:35 +0000 https://dev.to/zenovay/six-weeks-of-dedicated-distribution-as-a-solo-founder-what-i-underestimated-what-i-overestimated-41dm https://dev.to/zenovay/six-weeks-of-dedicated-distribution-as-a-solo-founder-what-i-underestimated-what-i-overestimated-41dm <p>I'm Valerio, solo founder of Zenovay (cookieless web analytics). I spent the last 6 weeks doing dedicated distribution work. Not feature shipping. Just writing, posting, and engaging.</p> <p>Posting this on a saturday because the audience for this thread is other founders, and saturday morning is when we read things we should have read earlier in the week.</p> <h2> What i underestimated </h2> <p><strong>The time required to actually do distribution well.</strong></p> <p>I budgeted 10 hours per week. The honest number was 25. Writing a post that is worth reading takes time. Responding to comments takes time. Researching the platform's tone takes time. The act of clicking 'submit' is 5%. The rest is preparation.</p> <p><strong>The cost of context switching.</strong></p> <p>I tried doing 2 hours of distribution and 6 hours of product in the same day. The distribution work was bad, the product work was worse. Both kinds of work need a different brain mode. I now schedule whole days for each.</p> <p><strong>How much hand drafting matters.</strong></p> <p>Both reddit and hacker news react badly to anything that smells like ai generated text right now. I had to retrain myself to write the way i actually talk, including the awkward pauses and sentence fragments. it actually performs better.</p> <p><strong>The slow accumulation of cred.</strong></p> <p>First few posts on a new community got buried. The third or fourth one started landing. There's a 'this person actually shows up here' signal that builds over weeks. No shortcut for it.</p> <h2> What i overestimated </h2> <p><strong>The importance of the perfect post.</strong></p> <p>I rewrote my first reddit post 6 times before posting. The one that actually got the most traffic that week was a 4 line comment on someone else's thread. Time spent perfecting the post was time not spent participating.</p> <p><strong>The reach of any single platform.</strong></p> <p>I thought hacker news would be the big lever. It was modest. The slow accumulation across 5 platforms outperformed any single home run. Diversification matters more than i thought.</p> <p><strong>The persuasive power of features.</strong></p> <p>I kept writing posts about cool features (3d globe, terminal cli, mcp server). They were interesting. They did not move signups much. The posts that moved signups were about outcomes (post launch numbers, what did and did not work, here's what i learned).</p> <h2> What i changed mid stream </h2> <p>Around week 4 i shifted from 'tell people what we built' to 'tell people what i learned'. Same factual content underneath, different framing. Signups per post roughly doubled. The post is not 'this is our cli', it is 'here's what i discovered while building a cli for analytics that no one writes about'.</p> <h2> The hardest part </h2> <p>Honesty in public. Sharing real numbers when the numbers are small. Admitting that a feature didn't work. Writing a post that contradicts a post you wrote 2 weeks ago because you learned something new.</p> <p>Every time i was tempted to round a number up or hide a failure, the post performed worse. Every time i shared the awkward truth, the post performed better. There is something deeply correct about the platforms' bullshit detectors.</p> <h2> What i'd tell my earlier self </h2> <ol> <li>Pick 3 platforms, not 5. Five is too many for one person to do well.</li> <li>Write 70% of the week's content on monday. Improvising mid week burns out faster than you'd think.</li> <li>Spend an hour reading other founders' posts before writing your own. Pattern match the tone.</li> <li>Track utm params from day one, not from when you remember.</li> <li>Reply to every comment in the first hour. Algorithms reward velocity, not lifetime engagement.</li> </ol> <p>Zenovay at <a href="https://zenovay.com" rel="noopener noreferrer">zenovay.com</a>. Web analytics with revenue attribution. Built by one person, distributed by the same person, both functions equally underbudgeted.</p> indiehackers solopreneur productivity discuss Stripe revenue attribution in a cookieless world. The webhook patterns that hold up Zenovay Tue, 26 May 2026 21:30:29 +0000 https://dev.to/zenovay/stripe-revenue-attribution-in-a-cookieless-world-the-webhook-patterns-that-hold-up-3a23 https://dev.to/zenovay/stripe-revenue-attribution-in-a-cookieless-world-the-webhook-patterns-that-hold-up-3a23 <p>Tying a stripe payment back to the marketing channel that produced it is a classic problem. The classic solutions all rely on third party cookies or shared identifiers across tools. Neither survives 2026.</p> <p>I built revenue attribution into Zenovay (cookieless web analytics) and the implementation had more gotchas than expected. Sharing the patterns that ended up holding.</p> <h2> The minimal viable attribution flow </h2> <div class="highlight js-code-highlight"> <pre class="highlight plaintext"><code>browser analytics worker stripe checkout stripe webhook | | | | | sessionId | | | |-------------&gt;| | | | | | redirect to checkout with sessionId in metadata | |------------------------------&gt; | | payment | | ---&gt; | | fires event | | -----------&gt; | | read sessionId | attribute revenue </code></pre> </div> <h2> Step 1, injecting sessionId into stripe metadata </h2> <div class="highlight js-code-highlight"> <pre class="highlight javascript"><code><span class="c1">// in the customer's checkout creation code</span> <span class="kd">const</span> <span class="nx">sessionId</span> <span class="o">=</span> <span class="nb">window</span><span class="p">.</span><span class="nx">zenovay</span><span class="p">?.</span><span class="nf">sessionId</span><span class="p">();</span> <span class="kd">const</span> <span class="nx">checkout</span> <span class="o">=</span> <span class="k">await</span> <span class="nx">stripe</span><span class="p">.</span><span class="nx">checkout</span><span class="p">.</span><span class="nx">sessions</span><span class="p">.</span><span class="nf">create</span><span class="p">({</span> <span class="na">line_items</span><span class="p">:</span> <span class="p">[...],</span> <span class="na">mode</span><span class="p">:</span> <span class="dl">'</span><span class="s1">payment</span><span class="dl">'</span><span class="p">,</span> <span class="na">metadata</span><span class="p">:</span> <span class="p">{</span> <span class="na">zenovay_session_id</span><span class="p">:</span> <span class="nx">sessionId</span><span class="p">,</span> <span class="na">zenovay_utm_source</span><span class="p">:</span> <span class="nb">window</span><span class="p">.</span><span class="nx">zenovay</span><span class="p">?.</span><span class="nf">attribution</span><span class="p">()?.</span><span class="nx">utmSource</span><span class="p">,</span> <span class="na">zenovay_first_seen</span><span class="p">:</span> <span class="nb">window</span><span class="p">.</span><span class="nx">zenovay</span><span class="p">?.</span><span class="nf">attribution</span><span class="p">()?.</span><span class="nx">firstSeen</span><span class="p">,</span> <span class="p">},</span> <span class="na">success_url</span><span class="p">:</span> <span class="dl">'</span><span class="s1">https://example.com/success</span><span class="dl">'</span><span class="p">,</span> <span class="na">cancel_url</span><span class="p">:</span> <span class="dl">'</span><span class="s1">https://example.com/cancel</span><span class="dl">'</span><span class="p">,</span> <span class="p">});</span> </code></pre> </div> <p>This is a one line integration for the customer. The js sdk exposes sessionId and attribution helpers. Everything else flows from these few fields landing in stripe metadata.</p> <h2> Step 2, the webhook handler </h2> <div class="highlight js-code-highlight"> <pre class="highlight typescript"><code><span class="k">export</span> <span class="k">async</span> <span class="kd">function</span> <span class="nf">handleStripeWebhook</span><span class="p">(</span><span class="nx">req</span><span class="p">:</span> <span class="nx">Request</span><span class="p">,</span> <span class="nx">env</span><span class="p">:</span> <span class="nx">Env</span><span class="p">):</span> <span class="nb">Promise</span><span class="o">&lt;</span><span class="nx">Response</span><span class="o">&gt;</span> <span class="p">{</span> <span class="kd">const</span> <span class="nx">sig</span> <span class="o">=</span> <span class="nx">req</span><span class="p">.</span><span class="nx">headers</span><span class="p">.</span><span class="nf">get</span><span class="p">(</span><span class="dl">'</span><span class="s1">stripe-signature</span><span class="dl">'</span><span class="p">)</span> <span class="o">??</span> <span class="dl">''</span><span class="p">;</span> <span class="kd">const</span> <span class="nx">body</span> <span class="o">=</span> <span class="k">await</span> <span class="nx">req</span><span class="p">.</span><span class="nf">text</span><span class="p">();</span> <span class="kd">let</span> <span class="na">event</span><span class="p">:</span> <span class="nx">Stripe</span><span class="p">.</span><span class="nx">Event</span><span class="p">;</span> <span class="k">try</span> <span class="p">{</span> <span class="nx">event</span> <span class="o">=</span> <span class="nx">stripe</span><span class="p">.</span><span class="nx">webhooks</span><span class="p">.</span><span class="nf">constructEvent</span><span class="p">(</span><span class="nx">body</span><span class="p">,</span> <span class="nx">sig</span><span class="p">,</span> <span class="nx">env</span><span class="p">.</span><span class="nx">STRIPE_WEBHOOK_SECRET</span><span class="p">);</span> <span class="p">}</span> <span class="k">catch</span> <span class="p">{</span> <span class="k">return</span> <span class="k">new</span> <span class="nc">Response</span><span class="p">(</span><span class="dl">'</span><span class="s1">invalid signature</span><span class="dl">'</span><span class="p">,</span> <span class="p">{</span> <span class="na">status</span><span class="p">:</span> <span class="mi">400</span> <span class="p">});</span> <span class="p">}</span> <span class="k">if </span><span class="p">(</span><span class="nx">event</span><span class="p">.</span><span class="kd">type</span> <span class="o">===</span> <span class="dl">'</span><span class="s1">checkout.session.completed</span><span class="dl">'</span><span class="p">)</span> <span class="p">{</span> <span class="kd">const</span> <span class="nx">session</span> <span class="o">=</span> <span class="nx">event</span><span class="p">.</span><span class="nx">data</span><span class="p">.</span><span class="nx">object</span> <span class="k">as</span> <span class="nx">Stripe</span><span class="p">.</span><span class="nx">Checkout</span><span class="p">.</span><span class="nx">Session</span><span class="p">;</span> <span class="k">await</span> <span class="nf">attributeRevenue</span><span class="p">(</span><span class="nx">env</span><span class="p">,</span> <span class="p">{</span> <span class="na">sessionId</span><span class="p">:</span> <span class="nx">session</span><span class="p">.</span><span class="nx">metadata</span><span class="p">?.</span><span class="nx">zenovay_session_id</span><span class="p">,</span> <span class="na">amount</span><span class="p">:</span> <span class="nx">session</span><span class="p">.</span><span class="nx">amount_total</span><span class="p">,</span> <span class="na">currency</span><span class="p">:</span> <span class="nx">session</span><span class="p">.</span><span class="nx">currency</span><span class="p">,</span> <span class="na">stripeEventId</span><span class="p">:</span> <span class="nx">event</span><span class="p">.</span><span class="nx">id</span><span class="p">,</span> <span class="na">utmSource</span><span class="p">:</span> <span class="nx">session</span><span class="p">.</span><span class="nx">metadata</span><span class="p">?.</span><span class="nx">zenovay_utm_source</span><span class="p">,</span> <span class="p">});</span> <span class="p">}</span> <span class="k">if </span><span class="p">(</span><span class="nx">event</span><span class="p">.</span><span class="kd">type</span> <span class="o">===</span> <span class="dl">'</span><span class="s1">charge.refunded</span><span class="dl">'</span><span class="p">)</span> <span class="p">{</span> <span class="k">await</span> <span class="nf">reverseAttribution</span><span class="p">(</span><span class="nx">env</span><span class="p">,</span> <span class="nx">event</span><span class="p">.</span><span class="nx">data</span><span class="p">.</span><span class="nx">object</span><span class="p">.</span><span class="nx">payment_intent</span> <span class="k">as</span> <span class="kr">string</span><span class="p">);</span> <span class="p">}</span> <span class="k">return</span> <span class="k">new</span> <span class="nc">Response</span><span class="p">(</span><span class="dl">'</span><span class="s1">ok</span><span class="dl">'</span><span class="p">);</span> <span class="p">}</span> </code></pre> </div> <h2> Step 3, idempotency </h2> <p>Stripe retries webhooks. You will receive the same event multiple times. Always idempotent by <code>event.id</code>:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight typescript"><code><span class="k">async</span> <span class="kd">function</span> <span class="nf">attributeRevenue</span><span class="p">(</span><span class="nx">env</span><span class="p">:</span> <span class="nx">Env</span><span class="p">,</span> <span class="nx">data</span><span class="p">:</span> <span class="nx">AttributionInput</span><span class="p">)</span> <span class="p">{</span> <span class="kd">const</span> <span class="nx">seen</span> <span class="o">=</span> <span class="k">await</span> <span class="nx">env</span><span class="p">.</span><span class="nx">KV</span><span class="p">.</span><span class="nf">get</span><span class="p">(</span><span class="s2">`stripe:event:</span><span class="p">${</span><span class="nx">data</span><span class="p">.</span><span class="nx">stripeEventId</span><span class="p">}</span><span class="s2">`</span><span class="p">);</span> <span class="k">if </span><span class="p">(</span><span class="nx">seen</span><span class="p">)</span> <span class="k">return</span><span class="p">;</span> <span class="k">await</span> <span class="nx">env</span><span class="p">.</span><span class="nx">DB</span><span class="p">.</span><span class="nf">prepare</span><span class="p">(</span> <span class="s2">`INSERT INTO revenue_attribution (session_id, amount, currency, utm_source, stripe_event_id, created_at) VALUES (?, ?, ?, ?, ?, ?)`</span> <span class="p">)</span> <span class="p">.</span><span class="nf">bind</span><span class="p">(</span><span class="nx">data</span><span class="p">.</span><span class="nx">sessionId</span><span class="p">,</span> <span class="nx">data</span><span class="p">.</span><span class="nx">amount</span><span class="p">,</span> <span class="nx">data</span><span class="p">.</span><span class="nx">currency</span><span class="p">,</span> <span class="nx">data</span><span class="p">.</span><span class="nx">utmSource</span><span class="p">,</span> <span class="nx">data</span><span class="p">.</span><span class="nx">stripeEventId</span><span class="p">,</span> <span class="nb">Date</span><span class="p">.</span><span class="nf">now</span><span class="p">())</span> <span class="p">.</span><span class="nf">run</span><span class="p">();</span> <span class="k">await</span> <span class="nx">env</span><span class="p">.</span><span class="nx">KV</span><span class="p">.</span><span class="nf">put</span><span class="p">(</span><span class="s2">`stripe:event:</span><span class="p">${</span><span class="nx">data</span><span class="p">.</span><span class="nx">stripeEventId</span><span class="p">}</span><span class="s2">`</span><span class="p">,</span> <span class="dl">'</span><span class="s1">1</span><span class="dl">'</span><span class="p">,</span> <span class="p">{</span> <span class="na">expirationTtl</span><span class="p">:</span> <span class="mi">86400</span> <span class="o">*</span> <span class="mi">30</span> <span class="p">});</span> <span class="p">}</span> </code></pre> </div> <h2> The five non obvious gotchas </h2> <ol> <li><p><code>checkout.session.completed</code> does not fire for direct charge api usage. If your customers do not all use stripe checkout, you also need to listen to <code>payment_intent.succeeded</code> and look up metadata from there.</p></li> <li><p>Subscriptions. <code>checkout.session.completed</code> fires once. <code>invoice.paid</code> fires every cycle. Decide which is your 'attribution event'. We attribute the first, separately track recurring as ltv.</p></li> <li><p><code>metadata</code> is string only. Numbers and booleans become strings. Convert when reading.</p></li> <li><p>Stripe metadata has a 500 character limit per value, 50 keys max. You will hit this if you try to dump the entire attribution object. Pick the few fields you really need.</p></li> <li><p>Webhook signature validation must use the raw body, not the parsed json. Most frameworks have to be told this explicitly.</p></li> </ol> <h2> Reversals on refunds </h2> <p>Charge refunded fires <code>charge.refunded</code>. Use the <code>payment_intent</code> field to find the original attribution row and either soft delete it or write a negative attribution event. We chose soft delete with an <code>revoked_at</code> field. Easier to audit.</p> <h2> The data model </h2> <p>Keep it simple. One row per attributed revenue event. Index by session_id and by created_at for the common queries. Roll up nightly into the channel reports.</p> <p>I build <a href="https://zenovay.com" rel="noopener noreferrer">Zenovay</a>. Cookieless web analytics with stripe revenue attribution as the default view, not an addon.</p> stripe javascript webdev payments Real time event streams with Cloudflare Durable Objects, the missing tutorial Zenovay Mon, 25 May 2026 10:29:50 +0000 https://dev.to/zenovay/real-time-event-streams-with-cloudflare-durable-objects-the-missing-tutorial-4h98 https://dev.to/zenovay/real-time-event-streams-with-cloudflare-durable-objects-the-missing-tutorial-4h98 <p>Most tutorials for real time on Cloudflare jump straight to Pages + Pusher or to a third party broker. Durable Objects do the job natively, are stateful, and the cost is great if you keep the connection pattern simple. The catch is that the official docs are correct but not opinionated enough for someone shipping their first one.</p> <p>I learned this building Zenovay (cookieless web analytics) where we needed <code>events tail</code> to stream live visitor events into a browser dashboard and into our cli. Same source of truth, two consumers, low latency.</p> <p>Here is the pattern that ended up working, end to end.</p> <h2> The architecture </h2> <div class="highlight js-code-highlight"> <pre class="highlight plaintext"><code>[ browser sdk ] [ dashboard ws client ] | ^ v | [ ingest worker ] -&gt; [ durable object per site ] -&gt; [ ws / sse fanout ] | v [ d1 / r2 for storage ] </code></pre> </div> <p>One durable object per site. The DO holds the active websocket connections for that site's dashboards and forwards every ingested event to them. Storage is separate.</p> <h2> The Durable Object </h2> <div class="highlight js-code-highlight"> <pre class="highlight typescript"><code><span class="k">export</span> <span class="kd">class</span> <span class="nc">SiteEventStream</span> <span class="p">{</span> <span class="nl">state</span><span class="p">:</span> <span class="nx">DurableObjectState</span><span class="p">;</span> <span class="nl">sockets</span><span class="p">:</span> <span class="nb">Set</span><span class="o">&lt;</span><span class="nx">WebSocket</span><span class="o">&gt;</span> <span class="o">=</span> <span class="k">new</span> <span class="nc">Set</span><span class="p">();</span> <span class="nf">constructor</span><span class="p">(</span><span class="nx">state</span><span class="p">:</span> <span class="nx">DurableObjectState</span><span class="p">)</span> <span class="p">{</span> <span class="k">this</span><span class="p">.</span><span class="nx">state</span> <span class="o">=</span> <span class="nx">state</span><span class="p">;</span> <span class="p">}</span> <span class="k">async</span> <span class="nf">fetch</span><span class="p">(</span><span class="nx">request</span><span class="p">:</span> <span class="nx">Request</span><span class="p">):</span> <span class="nb">Promise</span><span class="o">&lt;</span><span class="nx">Response</span><span class="o">&gt;</span> <span class="p">{</span> <span class="kd">const</span> <span class="nx">url</span> <span class="o">=</span> <span class="k">new</span> <span class="nc">URL</span><span class="p">(</span><span class="nx">request</span><span class="p">.</span><span class="nx">url</span><span class="p">);</span> <span class="k">if </span><span class="p">(</span><span class="nx">url</span><span class="p">.</span><span class="nx">pathname</span> <span class="o">===</span> <span class="dl">'</span><span class="s1">/subscribe</span><span class="dl">'</span><span class="p">)</span> <span class="p">{</span> <span class="k">return</span> <span class="k">this</span><span class="p">.</span><span class="nf">handleSubscribe</span><span class="p">(</span><span class="nx">request</span><span class="p">);</span> <span class="p">}</span> <span class="k">if </span><span class="p">(</span><span class="nx">url</span><span class="p">.</span><span class="nx">pathname</span> <span class="o">===</span> <span class="dl">'</span><span class="s1">/publish</span><span class="dl">'</span><span class="p">)</span> <span class="p">{</span> <span class="k">return</span> <span class="k">this</span><span class="p">.</span><span class="nf">handlePublish</span><span class="p">(</span><span class="nx">request</span><span class="p">);</span> <span class="p">}</span> <span class="k">return</span> <span class="k">new</span> <span class="nc">Response</span><span class="p">(</span><span class="dl">'</span><span class="s1">not found</span><span class="dl">'</span><span class="p">,</span> <span class="p">{</span> <span class="na">status</span><span class="p">:</span> <span class="mi">404</span> <span class="p">});</span> <span class="p">}</span> <span class="nf">handleSubscribe</span><span class="p">(</span><span class="nx">request</span><span class="p">:</span> <span class="nx">Request</span><span class="p">):</span> <span class="nx">Response</span> <span class="p">{</span> <span class="kd">const</span> <span class="nx">pair</span> <span class="o">=</span> <span class="k">new</span> <span class="nc">WebSocketPair</span><span class="p">();</span> <span class="kd">const</span> <span class="p">[</span><span class="nx">client</span><span class="p">,</span> <span class="nx">server</span><span class="p">]</span> <span class="o">=</span> <span class="nb">Object</span><span class="p">.</span><span class="nf">values</span><span class="p">(</span><span class="nx">pair</span><span class="p">);</span> <span class="nx">server</span><span class="p">.</span><span class="nf">accept</span><span class="p">();</span> <span class="k">this</span><span class="p">.</span><span class="nx">sockets</span><span class="p">.</span><span class="nf">add</span><span class="p">(</span><span class="nx">server</span><span class="p">);</span> <span class="nx">server</span><span class="p">.</span><span class="nf">addEventListener</span><span class="p">(</span><span class="dl">'</span><span class="s1">close</span><span class="dl">'</span><span class="p">,</span> <span class="p">()</span> <span class="o">=&gt;</span> <span class="k">this</span><span class="p">.</span><span class="nx">sockets</span><span class="p">.</span><span class="k">delete</span><span class="p">(</span><span class="nx">server</span><span class="p">));</span> <span class="nx">server</span><span class="p">.</span><span class="nf">addEventListener</span><span class="p">(</span><span class="dl">'</span><span class="s1">error</span><span class="dl">'</span><span class="p">,</span> <span class="p">()</span> <span class="o">=&gt;</span> <span class="k">this</span><span class="p">.</span><span class="nx">sockets</span><span class="p">.</span><span class="k">delete</span><span class="p">(</span><span class="nx">server</span><span class="p">));</span> <span class="k">return</span> <span class="k">new</span> <span class="nc">Response</span><span class="p">(</span><span class="kc">null</span><span class="p">,</span> <span class="p">{</span> <span class="na">status</span><span class="p">:</span> <span class="mi">101</span><span class="p">,</span> <span class="na">webSocket</span><span class="p">:</span> <span class="nx">client</span> <span class="p">});</span> <span class="p">}</span> <span class="k">async</span> <span class="nf">handlePublish</span><span class="p">(</span><span class="nx">request</span><span class="p">:</span> <span class="nx">Request</span><span class="p">):</span> <span class="nb">Promise</span><span class="o">&lt;</span><span class="nx">Response</span><span class="o">&gt;</span> <span class="p">{</span> <span class="kd">const</span> <span class="nx">event</span> <span class="o">=</span> <span class="k">await</span> <span class="nx">request</span><span class="p">.</span><span class="nf">json</span><span class="p">();</span> <span class="kd">const</span> <span class="nx">payload</span> <span class="o">=</span> <span class="nx">JSON</span><span class="p">.</span><span class="nf">stringify</span><span class="p">(</span><span class="nx">event</span><span class="p">);</span> <span class="k">for </span><span class="p">(</span><span class="kd">const</span> <span class="nx">ws</span> <span class="k">of</span> <span class="k">this</span><span class="p">.</span><span class="nx">sockets</span><span class="p">)</span> <span class="p">{</span> <span class="k">try</span> <span class="p">{</span> <span class="nx">ws</span><span class="p">.</span><span class="nf">send</span><span class="p">(</span><span class="nx">payload</span><span class="p">);</span> <span class="p">}</span> <span class="k">catch</span> <span class="p">{</span> <span class="k">this</span><span class="p">.</span><span class="nx">sockets</span><span class="p">.</span><span class="k">delete</span><span class="p">(</span><span class="nx">ws</span><span class="p">);</span> <span class="p">}</span> <span class="p">}</span> <span class="k">return</span> <span class="k">new</span> <span class="nc">Response</span><span class="p">(</span><span class="dl">'</span><span class="s1">ok</span><span class="dl">'</span><span class="p">);</span> <span class="p">}</span> <span class="p">}</span> </code></pre> </div> <h2> The ingest worker </h2> <div class="highlight js-code-highlight"> <pre class="highlight typescript"><code><span class="k">export</span> <span class="k">default</span> <span class="p">{</span> <span class="k">async</span> <span class="nf">fetch</span><span class="p">(</span><span class="na">request</span><span class="p">:</span> <span class="nx">Request</span><span class="p">,</span> <span class="na">env</span><span class="p">:</span> <span class="nx">Env</span><span class="p">):</span> <span class="nb">Promise</span><span class="o">&lt;</span><span class="nx">Response</span><span class="o">&gt;</span> <span class="p">{</span> <span class="kd">const</span> <span class="nx">event</span> <span class="o">=</span> <span class="k">await</span> <span class="nx">request</span><span class="p">.</span><span class="nf">json</span><span class="p">();</span> <span class="kd">const</span> <span class="nx">siteId</span> <span class="o">=</span> <span class="nx">event</span><span class="p">.</span><span class="nx">siteId</span><span class="p">;</span> <span class="kd">const</span> <span class="nx">id</span> <span class="o">=</span> <span class="nx">env</span><span class="p">.</span><span class="nx">SITE_EVENTS</span><span class="p">.</span><span class="nf">idFromName</span><span class="p">(</span><span class="nx">siteId</span><span class="p">);</span> <span class="kd">const</span> <span class="nx">stub</span> <span class="o">=</span> <span class="nx">env</span><span class="p">.</span><span class="nx">SITE_EVENTS</span><span class="p">.</span><span class="nf">get</span><span class="p">(</span><span class="nx">id</span><span class="p">);</span> <span class="k">await</span> <span class="nx">stub</span><span class="p">.</span><span class="nf">fetch</span><span class="p">(</span><span class="dl">'</span><span class="s1">https://do/publish</span><span class="dl">'</span><span class="p">,</span> <span class="p">{</span> <span class="na">method</span><span class="p">:</span> <span class="dl">'</span><span class="s1">POST</span><span class="dl">'</span><span class="p">,</span> <span class="na">body</span><span class="p">:</span> <span class="nx">JSON</span><span class="p">.</span><span class="nf">stringify</span><span class="p">(</span><span class="nx">event</span><span class="p">),</span> <span class="p">});</span> <span class="k">return</span> <span class="k">new</span> <span class="nc">Response</span><span class="p">(</span><span class="dl">'</span><span class="s1">ok</span><span class="dl">'</span><span class="p">);</span> <span class="p">}</span> <span class="p">};</span> </code></pre> </div> <h2> Why one DO per site, not one global DO </h2> <p>Durable Objects are single threaded. A global DO would be a single bottleneck for every site's events. With one DO per site, sites scale horizontally and a noisy site does not starve a quiet one. The <code>idFromName</code> pattern means the same siteId always routes to the same DO instance.</p> <h2> The mistakes i made first </h2> <p><strong>Trying to use the DO for both events and metric aggregation.</strong><br> The DO became a complex state machine, hard to reason about, and any bug killed both real time and aggregation. Now: DO does fanout only. Aggregation is a separate worker.</p> <p><strong>Not cleaning up dead sockets.</strong><br> If a dashboard closes its tab the websocket goes away but the DO does not know until it tries to send and fails. Always handle close and error events and remove from the set.</p> <p><strong>Holding too much state in the DO.</strong><br> Durable Objects can hold state but they are not a database. We tried caching the last 1000 events. Memory pressure killed it. Now the DO is stateless except for the active sockets.</p> <h2> Latency </h2> <p>End to end (browser ingest to dashboard receive) is consistently under 100ms in our measurements. The DO adds maybe 5 to 10ms on top of the raw worker. Acceptable for the simplicity.</p> <h2> Where this approach breaks </h2> <p>It does not handle reconnection well. If a dashboard drops and reconnects, it misses events in the gap. For analytics this is fine (the data is still in d1). For something like chat you need a different design with a small replay buffer.</p> <p>I'm Valerio, building <a href="https://zenovay.com" rel="noopener noreferrer">Zenovay</a>, a privacy first web analytics tool. If you want to see this pattern in action you can install the script and watch <code>events tail</code> light up in real time.</p> javascript webdev cloudflare tutorial Building an MCP server so Claude can query my SaaS analytics directly Zenovay Sat, 23 May 2026 13:26:52 +0000 https://dev.to/zenovay/building-an-mcp-server-so-claude-can-query-my-saas-analytics-directly-49cg https://dev.to/zenovay/building-an-mcp-server-so-claude-can-query-my-saas-analytics-directly-49cg <p>Last week I shipped a Model Context Protocol (MCP) server for my analytics SaaS. Now Claude Desktop, Cursor, and any MCP compatible client can query traffic, revenue, and funnel data directly.</p> <p>This is a walkthrough of how I built it, what worked, and a couple of patterns that surprised me.</p> <h2> What MCP is, briefly </h2> <p>MCP is a protocol that lets AI clients invoke tools and read resources from external servers. Think of it as REST for LLM tool calling, with a stable schema and discovery.</p> <h2> Server skeleton </h2> <div class="highlight js-code-highlight"> <pre class="highlight typescript"><code><span class="k">import</span> <span class="p">{</span> <span class="nx">Server</span> <span class="p">}</span> <span class="k">from</span> <span class="dl">'</span><span class="s1">@modelcontextprotocol/sdk/server/index.js</span><span class="dl">'</span> <span class="k">import</span> <span class="p">{</span> <span class="nx">StdioServerTransport</span> <span class="p">}</span> <span class="k">from</span> <span class="dl">'</span><span class="s1">@modelcontextprotocol/sdk/server/stdio.js</span><span class="dl">'</span> <span class="kd">const</span> <span class="nx">server</span> <span class="o">=</span> <span class="k">new</span> <span class="nc">Server</span><span class="p">({</span> <span class="na">name</span><span class="p">:</span> <span class="dl">'</span><span class="s1">zenovay</span><span class="dl">'</span><span class="p">,</span> <span class="na">version</span><span class="p">:</span> <span class="dl">'</span><span class="s1">1.0.0</span><span class="dl">'</span><span class="p">,</span> <span class="p">},</span> <span class="p">{</span> <span class="na">capabilities</span><span class="p">:</span> <span class="p">{</span> <span class="na">tools</span><span class="p">:</span> <span class="p">{},</span> <span class="na">resources</span><span class="p">:</span> <span class="p">{}</span> <span class="p">}</span> <span class="p">})</span> </code></pre> </div> <h2> Defining tools </h2> <div class="highlight js-code-highlight"> <pre class="highlight typescript"><code><span class="nx">server</span><span class="p">.</span><span class="nf">setRequestHandler</span><span class="p">(</span><span class="dl">'</span><span class="s1">tools/list</span><span class="dl">'</span><span class="p">,</span> <span class="k">async </span><span class="p">()</span> <span class="o">=&gt;</span> <span class="p">({</span> <span class="na">tools</span><span class="p">:</span> <span class="p">[</span> <span class="p">{</span> <span class="na">name</span><span class="p">:</span> <span class="dl">'</span><span class="s1">get_traffic</span><span class="dl">'</span><span class="p">,</span> <span class="na">description</span><span class="p">:</span> <span class="dl">'</span><span class="s1">Get pageview and visitor counts for a site over a date range</span><span class="dl">'</span><span class="p">,</span> <span class="na">inputSchema</span><span class="p">:</span> <span class="p">{</span> <span class="na">type</span><span class="p">:</span> <span class="dl">'</span><span class="s1">object</span><span class="dl">'</span><span class="p">,</span> <span class="na">properties</span><span class="p">:</span> <span class="p">{</span> <span class="na">site</span><span class="p">:</span> <span class="p">{</span> <span class="na">type</span><span class="p">:</span> <span class="dl">'</span><span class="s1">string</span><span class="dl">'</span> <span class="p">},</span> <span class="na">from</span><span class="p">:</span> <span class="p">{</span> <span class="na">type</span><span class="p">:</span> <span class="dl">'</span><span class="s1">string</span><span class="dl">'</span> <span class="p">},</span> <span class="na">to</span><span class="p">:</span> <span class="p">{</span> <span class="na">type</span><span class="p">:</span> <span class="dl">'</span><span class="s1">string</span><span class="dl">'</span> <span class="p">}</span> <span class="p">},</span> <span class="na">required</span><span class="p">:</span> <span class="p">[</span><span class="dl">'</span><span class="s1">site</span><span class="dl">'</span><span class="p">,</span> <span class="dl">'</span><span class="s1">from</span><span class="dl">'</span><span class="p">,</span> <span class="dl">'</span><span class="s1">to</span><span class="dl">'</span><span class="p">]</span> <span class="p">}</span> <span class="p">}</span> <span class="p">]</span> <span class="p">}))</span> </code></pre> </div> <h2> The pattern that surprised me: structured returns </h2> <p>Way better than raw JSON: return a short natural language summary plus the data. Claude uses the summary for its response and the JSON for follow up questions.</p> <h2> What I did not expect </h2> <p>Users started asking Claude to do things I had not built dashboards for:</p> <ul> <li>"Compare my paid traffic conversion rate this week vs last week"</li> <li>"Which 5 pages had the biggest week over week drop in pageviews"</li> <li>"Summarize what changed in my funnel completion rate over the last 30 days"</li> </ul> <p>Claude does this by chaining multiple tool calls. I did not need to build any of those views. The tools are atomic, Claude composes.</p> <p>This is the part I think is genuinely new about MCP. The interface is the LLM, the backend is just well shaped tools.</p> <h2> Install </h2> <p><code>npm install -g @zenovay/mcp</code> then add to your Claude Desktop config.</p> <p>Site: <a href="https://zenovay.com" rel="noopener noreferrer">zenovay.com</a></p> <p>Open source MCP server work happening here too? Curious what patterns others have found.</p> <p>Valerio</p> mcp ai saas typescript Cookieless web analytics: how it actually works under the hood Zenovay Fri, 22 May 2026 14:34:15 +0000 https://dev.to/zenovay/cookieless-web-analytics-how-it-actually-works-under-the-hood-5fip https://dev.to/zenovay/cookieless-web-analytics-how-it-actually-works-under-the-hood-5fip <p>'Cookieless analytics' gets thrown around as a marketing term. What does it actually mean technically? How do you identify unique visitors without a cookie?</p> <p>This post is a complete technical breakdown of how it works in <a href="https://zenovay.com" rel="noopener noreferrer">Zenovay</a>, in case you are building something similar or evaluating tools.</p> <h2> What a traditional analytics cookie does </h2> <p>In GA4 and most legacy tools:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight http"><code><span class="err">Set-Cookie: _ga=GA1.2.1234567890.1697123456; Max-Age=63072000; Path=/ </span></code></pre> </div> <p>Two roles: unique identifier for the visitor + persistence across sessions.</p> <h2> The cookieless approach: ephemeral fingerprinting </h2> <p>Instead of storing an ID, generate one server-side per visit using non-identifying signals:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight javascript"><code><span class="kd">function</span> <span class="nf">generateVisitorId</span><span class="p">(</span><span class="nx">request</span><span class="p">)</span> <span class="p">{</span> <span class="kd">const</span> <span class="nx">signals</span> <span class="o">=</span> <span class="p">[</span> <span class="nx">request</span><span class="p">.</span><span class="nx">headers</span><span class="p">.</span><span class="nf">get</span><span class="p">(</span><span class="dl">'</span><span class="s1">User-Agent</span><span class="dl">'</span><span class="p">),</span> <span class="nx">request</span><span class="p">.</span><span class="nx">headers</span><span class="p">.</span><span class="nf">get</span><span class="p">(</span><span class="dl">'</span><span class="s1">Accept-Language</span><span class="dl">'</span><span class="p">),</span> <span class="nx">request</span><span class="p">.</span><span class="nx">cf</span><span class="p">?.</span><span class="nx">country</span><span class="p">,</span> <span class="nf">salt</span><span class="p">(</span><span class="nf">getCurrentDay</span><span class="p">())</span> <span class="p">].</span><span class="nf">join</span><span class="p">(</span><span class="dl">'</span><span class="s1">|</span><span class="dl">'</span><span class="p">)</span> <span class="k">return</span> <span class="nx">crypto</span><span class="p">.</span><span class="nx">subtle</span><span class="p">.</span><span class="nf">digest</span><span class="p">(</span><span class="dl">'</span><span class="s1">SHA-256</span><span class="dl">'</span><span class="p">,</span> <span class="k">new</span> <span class="nc">TextEncoder</span><span class="p">().</span><span class="nf">encode</span><span class="p">(</span><span class="nx">signals</span><span class="p">))</span> <span class="p">}</span> </code></pre> </div> <p>Key property: this ID cannot be reversed to identify the person, rotates daily, and is consistent within a single day for the same browser.</p> <h2> Sessions without cookies </h2> <p>A session in cookieless analytics is defined as: events from the same visitor ID within a 30-minute inactivity window. Handled server-side via Cloudflare KV with TTL.</p> <h2> The tracking script </h2> <p>Has to be tiny. Zenovay's is <strong>1.4kb gzipped</strong>.<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight javascript"><code><span class="p">;(</span><span class="kd">function</span><span class="p">()</span> <span class="p">{</span> <span class="kd">const</span> <span class="nx">send</span> <span class="o">=</span> <span class="p">(</span><span class="nx">type</span><span class="p">,</span> <span class="nx">data</span><span class="p">)</span> <span class="o">=&gt;</span> <span class="p">{</span> <span class="nf">fetch</span><span class="p">(</span><span class="dl">'</span><span class="s1">https://e.zenovay.com/c</span><span class="dl">'</span><span class="p">,</span> <span class="p">{</span> <span class="na">method</span><span class="p">:</span> <span class="dl">'</span><span class="s1">POST</span><span class="dl">'</span><span class="p">,</span> <span class="na">headers</span><span class="p">:</span> <span class="p">{</span> <span class="dl">'</span><span class="s1">Content-Type</span><span class="dl">'</span><span class="p">:</span> <span class="dl">'</span><span class="s1">application/json</span><span class="dl">'</span> <span class="p">},</span> <span class="na">body</span><span class="p">:</span> <span class="nx">JSON</span><span class="p">.</span><span class="nf">stringify</span><span class="p">({</span> <span class="nx">type</span><span class="p">,</span> <span class="na">site</span><span class="p">:</span> <span class="dl">'</span><span class="s1">your-site-id</span><span class="dl">'</span><span class="p">,</span> <span class="na">url</span><span class="p">:</span> <span class="nx">location</span><span class="p">.</span><span class="nx">href</span><span class="p">,</span> <span class="na">ref</span><span class="p">:</span> <span class="nb">document</span><span class="p">.</span><span class="nx">referrer</span><span class="p">,</span> <span class="na">ts</span><span class="p">:</span> <span class="nb">Date</span><span class="p">.</span><span class="nf">now</span><span class="p">(),</span> <span class="p">...</span><span class="nx">data</span> <span class="p">}),</span> <span class="na">keepalive</span><span class="p">:</span> <span class="kc">true</span> <span class="p">})</span> <span class="p">}</span> <span class="nf">send</span><span class="p">(</span><span class="dl">'</span><span class="s1">pageview</span><span class="dl">'</span><span class="p">,</span> <span class="p">{})</span> <span class="p">})()</span> </code></pre> </div> <p>Notice: no cookies set, no localStorage written, no fingerprinting library loaded.</p> <h2> What you give up </h2> <ul> <li>Cannot track returning visitors across days as the same visitor</li> <li>Cannot do persistent A/B test assignment client-side</li> <li>Cannot do detailed multi-session funnel analysis for anonymous users</li> </ul> <p><strong>What you keep:</strong> accurate per-session funnels, pageviews, events, bounce rate, per-day unique counts, path analysis, revenue attribution via auth bridge.</p> <h2> Why this matters </h2> <p>In typical European traffic, GA4 reports roughly 40–60% of actual sessions due to consent rejection. Cookieless reports close to 100% because there is nothing to consent to.</p> <p>If you want to see this in action on a real product: <a href="https://zenovay.com" rel="noopener noreferrer">zenovay.com</a></p> <p>— Valerio</p> webdev analytics javascript privacy Building a terminal interface for my analytics SaaS with Cloudflare Durable Objects Zenovay Thu, 21 May 2026 12:44:08 +0000 https://dev.to/zenovay/building-a-terminal-interface-for-my-analytics-saas-with-cloudflare-durable-objects-c8g https://dev.to/zenovay/building-a-terminal-interface-for-my-analytics-saas-with-cloudflare-durable-objects-c8g <p>Every analytics dashboard lives in a browser tab. My terminal is always open. So I built <code>@zenovay/cli</code>, a terminal interface for my analytics SaaS.</p> <p>The killer command is <code>zenovay events tail</code>: a live stream of pageviews and events, filterable, pipeable, scriptable. Think <code>stripe listen</code> but for your web traffic.</p> <p>This post covers how the live tail actually works.</p> <h2> The product surface </h2> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code><span class="nv">$ </span>zenovay events <span class="nb">tail</span> <span class="nt">--site</span> mysite.com <span class="nt">--path</span> /pricing <span class="o">[</span>14:32:18] mysite.com pageview /pricing US Chrome <span class="o">[</span>14:32:21] mysite.com pageview /pricing DE Firefox <span class="o">[</span>14:32:24] mysite.com click /pricing#cta-pro US Chrome <span class="o">[</span>14:32:28] mysite.com pageview /pricing GB Safari </code></pre> </div> <p>You can pipe it:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code><span class="nv">$ </span>zenovay events <span class="nb">tail</span> <span class="nt">--site</span> mysite.com | jq .country | <span class="nb">sort</span> | <span class="nb">uniq</span> <span class="nt">-c</span> </code></pre> </div> <h2> The architecture </h2> <p>Three components:</p> <ol> <li>CLI binary (TypeScript, distributed via npm)</li> <li>WebSocket gateway (Cloudflare Worker with Durable Objects)</li> <li>Event broadcast (Workers pushing to subscribed Durable Objects)</li> </ol> <h2> The Durable Object as fanout point </h2> <p>Each tracked site gets a Durable Object that holds the list of active WebSocket subscribers.<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight typescript"><code><span class="k">export</span> <span class="kd">class</span> <span class="nc">SiteStream</span> <span class="p">{</span> <span class="nf">constructor</span><span class="p">(</span><span class="k">private</span> <span class="nx">state</span><span class="p">:</span> <span class="nx">DurableObjectState</span><span class="p">)</span> <span class="p">{</span> <span class="k">this</span><span class="p">.</span><span class="nx">sockets</span> <span class="o">=</span> <span class="k">new</span> <span class="nb">Set</span><span class="o">&lt;</span><span class="nx">WebSocket</span><span class="o">&gt;</span><span class="p">()</span> <span class="p">}</span> <span class="k">async</span> <span class="nf">fetch</span><span class="p">(</span><span class="nx">request</span><span class="p">:</span> <span class="nx">Request</span><span class="p">)</span> <span class="p">{</span> <span class="k">if </span><span class="p">(</span><span class="nx">request</span><span class="p">.</span><span class="nx">headers</span><span class="p">.</span><span class="nf">get</span><span class="p">(</span><span class="dl">'</span><span class="s1">Upgrade</span><span class="dl">'</span><span class="p">)</span> <span class="o">===</span> <span class="dl">'</span><span class="s1">websocket</span><span class="dl">'</span><span class="p">)</span> <span class="p">{</span> <span class="kd">const</span> <span class="nx">pair</span> <span class="o">=</span> <span class="k">new</span> <span class="nc">WebSocketPair</span><span class="p">()</span> <span class="k">this</span><span class="p">.</span><span class="nf">handleSocket</span><span class="p">(</span><span class="nx">pair</span><span class="p">[</span><span class="mi">1</span><span class="p">])</span> <span class="k">return</span> <span class="k">new</span> <span class="nc">Response</span><span class="p">(</span><span class="kc">null</span><span class="p">,</span> <span class="p">{</span> <span class="na">status</span><span class="p">:</span> <span class="mi">101</span><span class="p">,</span> <span class="na">webSocket</span><span class="p">:</span> <span class="nx">pair</span><span class="p">[</span><span class="mi">0</span><span class="p">]</span> <span class="p">})</span> <span class="p">}</span> <span class="k">if </span><span class="p">(</span><span class="nx">request</span><span class="p">.</span><span class="nx">method</span> <span class="o">===</span> <span class="dl">'</span><span class="s1">POST</span><span class="dl">'</span><span class="p">)</span> <span class="p">{</span> <span class="kd">const</span> <span class="nx">event</span> <span class="o">=</span> <span class="k">await</span> <span class="nx">request</span><span class="p">.</span><span class="nf">json</span><span class="p">()</span> <span class="k">this</span><span class="p">.</span><span class="nf">broadcast</span><span class="p">(</span><span class="nx">event</span><span class="p">)</span> <span class="k">return</span> <span class="k">new</span> <span class="nc">Response</span><span class="p">(</span><span class="dl">'</span><span class="s1">ok</span><span class="dl">'</span><span class="p">)</span> <span class="p">}</span> <span class="p">}</span> <span class="nf">broadcast</span><span class="p">(</span><span class="nx">event</span><span class="p">:</span> <span class="nx">unknown</span><span class="p">)</span> <span class="p">{</span> <span class="kd">const</span> <span class="nx">data</span> <span class="o">=</span> <span class="nx">JSON</span><span class="p">.</span><span class="nf">stringify</span><span class="p">(</span><span class="nx">event</span><span class="p">)</span> <span class="k">for </span><span class="p">(</span><span class="kd">const</span> <span class="nx">ws</span> <span class="k">of</span> <span class="k">this</span><span class="p">.</span><span class="nx">sockets</span><span class="p">)</span> <span class="p">{</span> <span class="k">try</span> <span class="p">{</span> <span class="nx">ws</span><span class="p">.</span><span class="nf">send</span><span class="p">(</span><span class="nx">data</span><span class="p">)</span> <span class="p">}</span> <span class="k">catch</span> <span class="p">{</span> <span class="k">this</span><span class="p">.</span><span class="nx">sockets</span><span class="p">.</span><span class="k">delete</span><span class="p">(</span><span class="nx">ws</span><span class="p">)</span> <span class="p">}</span> <span class="p">}</span> <span class="p">}</span> <span class="p">}</span> </code></pre> </div> <h2> The CLI side </h2> <p>Built with Commander for argument parsing and just plain WebSocket for the stream. Catppuccin Mocha palette via chalk hex codes.</p> <h2> Install </h2> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code>npm <span class="nb">install</span> <span class="nt">-g</span> @zenovay/cli zenovay auth login zenovay events <span class="nb">tail</span> <span class="nt">--site</span> yoursite.com </code></pre> </div> <p>Free tier of Zenovay includes the CLI. Site is <a href="https://zenovay.com" rel="noopener noreferrer">zenovay.com</a>.</p> <p>Anyone else building TUIs for SaaS products? Curious what patterns you have found.</p> <p>Valerio</p> typescript cloudflare cli websockets Building a live 3D globe of real time web traffic with Three.js and Server Sent Events Zenovay Wed, 20 May 2026 12:05:41 +0000 https://dev.to/zenovay/building-a-live-3d-globe-of-real-time-web-traffic-with-threejs-and-server-sent-events-3lok https://dev.to/zenovay/building-a-live-3d-globe-of-real-time-web-traffic-with-threejs-and-server-sent-events-3lok <p><a href="https://media2.dev.to/dynamic/image/width=800%2Cheight=%2Cfit=scale-down%2Cgravity=auto%2Cformat=auto/https%3A%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Farticles%2Fwb83ffotp56qusk6of8b.png" class="article-body-image-wrapper"><img src="https://media2.dev.to/dynamic/image/width=800%2Cheight=%2Cfit=scale-down%2Cgravity=auto%2Cformat=auto/https%3A%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Farticles%2Fwb83ffotp56qusk6of8b.png" alt="3D globe of live web traffic" width="800" height="452"></a></p> <p>For the new Zenovay landing page I built a 3D globe that shows actual live visits from customer sites in close to real time. Dots glow and fade where visits happen.</p> <p>For the new Zenovay landing page I built a 3D globe that shows actual live visits from customer sites in close to real time. Dots glow and fade where visits happen.</p> <p>This post is a complete walkthrough of how it's built, in case you want to do something similar.</p> <h2> What you see vs what it actually is </h2> <p>What the visitor sees: a smooth spinning Earth with bright dots appearing in different countries every few seconds.</p> <p>What it actually is:</p> <ul> <li>A <code>THREE.SphereGeometry</code> with an Earth texture</li> <li>A <code>THREE.Points</code> instance updated in place as events arrive</li> <li>A custom GLSL fragment shader for the glow effect</li> <li>Server Sent Events streaming batched data from Cloudflare Workers</li> <li>Lazy initialization to keep LCP fast</li> </ul> <h2> The data flow </h2> <div class="highlight js-code-highlight"> <pre class="highlight plaintext"><code>Visitor on customer site -&gt; Tracking script POSTs event to Cloudflare Worker (sub 100ms) -&gt; Worker pushes to Queue -&gt; Consumer aggregates per region every 2s -&gt; SSE stream pushes to landing page -&gt; Three.js animates new dot </code></pre> </div> <h2> The points system (the tricky part) </h2> <p>Points need to appear, glow, and fade. Re creating geometry every event is too expensive. Instead, allocate a fixed buffer and reuse slots.<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight javascript"><code><span class="nf">buildPointsSystem</span><span class="p">()</span> <span class="p">{</span> <span class="k">this</span><span class="p">.</span><span class="nx">maxPoints</span> <span class="o">=</span> <span class="mi">1000</span> <span class="k">this</span><span class="p">.</span><span class="nx">points</span> <span class="o">=</span> <span class="k">new</span> <span class="nc">Float32Array</span><span class="p">(</span><span class="k">this</span><span class="p">.</span><span class="nx">maxPoints</span> <span class="o">*</span> <span class="mi">3</span><span class="p">)</span> <span class="k">this</span><span class="p">.</span><span class="nx">lifetimes</span> <span class="o">=</span> <span class="k">new</span> <span class="nc">Float32Array</span><span class="p">(</span><span class="k">this</span><span class="p">.</span><span class="nx">maxPoints</span><span class="p">)</span> <span class="k">this</span><span class="p">.</span><span class="nx">cursor</span> <span class="o">=</span> <span class="mi">0</span> <span class="k">this</span><span class="p">.</span><span class="nx">pointsGeometry</span> <span class="o">=</span> <span class="k">new</span> <span class="nx">THREE</span><span class="p">.</span><span class="nc">BufferGeometry</span><span class="p">()</span> <span class="k">this</span><span class="p">.</span><span class="nx">pointsGeometry</span><span class="p">.</span><span class="nf">setAttribute</span><span class="p">(</span><span class="dl">'</span><span class="s1">position</span><span class="dl">'</span><span class="p">,</span> <span class="k">new</span> <span class="nx">THREE</span><span class="p">.</span><span class="nc">BufferAttribute</span><span class="p">(</span><span class="k">this</span><span class="p">.</span><span class="nx">points</span><span class="p">,</span> <span class="mi">3</span><span class="p">))</span> <span class="k">this</span><span class="p">.</span><span class="nx">pointsGeometry</span><span class="p">.</span><span class="nf">setAttribute</span><span class="p">(</span><span class="dl">'</span><span class="s1">lifetime</span><span class="dl">'</span><span class="p">,</span> <span class="k">new</span> <span class="nx">THREE</span><span class="p">.</span><span class="nc">BufferAttribute</span><span class="p">(</span><span class="k">this</span><span class="p">.</span><span class="nx">lifetimes</span><span class="p">,</span> <span class="mi">1</span><span class="p">))</span> <span class="p">}</span> <span class="nf">addPoint</span><span class="p">(</span><span class="nx">lat</span><span class="p">,</span> <span class="nx">lng</span><span class="p">)</span> <span class="p">{</span> <span class="kd">const</span> <span class="p">[</span><span class="nx">x</span><span class="p">,</span> <span class="nx">y</span><span class="p">,</span> <span class="nx">z</span><span class="p">]</span> <span class="o">=</span> <span class="nf">latLngToVec3</span><span class="p">(</span><span class="nx">lat</span><span class="p">,</span> <span class="nx">lng</span><span class="p">,</span> <span class="mf">5.05</span><span class="p">)</span> <span class="kd">const</span> <span class="nx">i</span> <span class="o">=</span> <span class="k">this</span><span class="p">.</span><span class="nx">cursor</span> <span class="o">*</span> <span class="mi">3</span> <span class="k">this</span><span class="p">.</span><span class="nx">points</span><span class="p">[</span><span class="nx">i</span><span class="p">]</span> <span class="o">=</span> <span class="nx">x</span> <span class="k">this</span><span class="p">.</span><span class="nx">points</span><span class="p">[</span><span class="nx">i</span> <span class="o">+</span> <span class="mi">1</span><span class="p">]</span> <span class="o">=</span> <span class="nx">y</span> <span class="k">this</span><span class="p">.</span><span class="nx">points</span><span class="p">[</span><span class="nx">i</span> <span class="o">+</span> <span class="mi">2</span><span class="p">]</span> <span class="o">=</span> <span class="nx">z</span> <span class="k">this</span><span class="p">.</span><span class="nx">lifetimes</span><span class="p">[</span><span class="k">this</span><span class="p">.</span><span class="nx">cursor</span><span class="p">]</span> <span class="o">=</span> <span class="mf">1.0</span> <span class="k">this</span><span class="p">.</span><span class="nx">cursor</span> <span class="o">=</span> <span class="p">(</span><span class="k">this</span><span class="p">.</span><span class="nx">cursor</span> <span class="o">+</span> <span class="mi">1</span><span class="p">)</span> <span class="o">%</span> <span class="k">this</span><span class="p">.</span><span class="nx">maxPoints</span> <span class="k">this</span><span class="p">.</span><span class="nx">pointsGeometry</span><span class="p">.</span><span class="nx">attributes</span><span class="p">.</span><span class="nx">position</span><span class="p">.</span><span class="nx">needsUpdate</span> <span class="o">=</span> <span class="kc">true</span> <span class="p">}</span> </code></pre> </div> <h2> The glow shader </h2> <div class="highlight js-code-highlight"> <pre class="highlight glsl"><code><span class="c1">// Vertex shader</span> <span class="k">attribute</span> <span class="kt">float</span> <span class="n">lifetime</span><span class="p">;</span> <span class="k">varying</span> <span class="kt">float</span> <span class="n">vLifetime</span><span class="p">;</span> <span class="kt">void</span> <span class="nf">main</span><span class="p">()</span> <span class="p">{</span> <span class="n">vLifetime</span> <span class="o">=</span> <span class="n">lifetime</span><span class="p">;</span> <span class="kt">vec4</span> <span class="n">mvPosition</span> <span class="o">=</span> <span class="n">modelViewMatrix</span> <span class="o">*</span> <span class="kt">vec4</span><span class="p">(</span><span class="n">position</span><span class="p">,</span> <span class="mi">1</span><span class="p">.</span><span class="mi">0</span><span class="p">);</span> <span class="nb">gl_PointSize</span> <span class="o">=</span> <span class="mi">8</span><span class="p">.</span><span class="mi">0</span> <span class="o">*</span> <span class="n">lifetime</span><span class="p">;</span> <span class="nb">gl_Position</span> <span class="o">=</span> <span class="n">projectionMatrix</span> <span class="o">*</span> <span class="n">mvPosition</span><span class="p">;</span> <span class="p">}</span> <span class="c1">// Fragment shader</span> <span class="k">varying</span> <span class="kt">float</span> <span class="n">vLifetime</span><span class="p">;</span> <span class="kt">void</span> <span class="nf">main</span><span class="p">()</span> <span class="p">{</span> <span class="kt">vec2</span> <span class="n">center</span> <span class="o">=</span> <span class="nb">gl_PointCoord</span> <span class="o">-</span> <span class="kt">vec2</span><span class="p">(</span><span class="mi">0</span><span class="p">.</span><span class="mi">5</span><span class="p">);</span> <span class="kt">float</span> <span class="n">dist</span> <span class="o">=</span> <span class="n">length</span><span class="p">(</span><span class="n">center</span><span class="p">);</span> <span class="k">if</span> <span class="p">(</span><span class="n">dist</span> <span class="o">&gt;</span> <span class="mi">0</span><span class="p">.</span><span class="mi">5</span><span class="p">)</span> <span class="k">discard</span><span class="p">;</span> <span class="kt">float</span> <span class="n">intensity</span> <span class="o">=</span> <span class="mi">1</span><span class="p">.</span><span class="mi">0</span> <span class="o">-</span> <span class="n">smoothstep</span><span class="p">(</span><span class="mi">0</span><span class="p">.</span><span class="mi">0</span><span class="p">,</span> <span class="mi">0</span><span class="p">.</span><span class="mi">5</span><span class="p">,</span> <span class="n">dist</span><span class="p">);</span> <span class="kt">vec3</span> <span class="n">color</span> <span class="o">=</span> <span class="n">mix</span><span class="p">(</span><span class="kt">vec3</span><span class="p">(</span><span class="mi">0</span><span class="p">.</span><span class="mi">3</span><span class="p">,</span> <span class="mi">1</span><span class="p">.</span><span class="mi">0</span><span class="p">,</span> <span class="mi">0</span><span class="p">.</span><span class="mi">7</span><span class="p">),</span> <span class="kt">vec3</span><span class="p">(</span><span class="mi">0</span><span class="p">.</span><span class="mi">5</span><span class="p">,</span> <span class="mi">1</span><span class="p">.</span><span class="mi">0</span><span class="p">,</span> <span class="mi">0</span><span class="p">.</span><span class="mi">9</span><span class="p">),</span> <span class="n">vLifetime</span><span class="p">);</span> <span class="nb">gl_FragColor</span> <span class="o">=</span> <span class="kt">vec4</span><span class="p">(</span><span class="n">color</span><span class="p">,</span> <span class="n">intensity</span> <span class="o">*</span> <span class="n">vLifetime</span><span class="p">);</span> <span class="p">}</span> </code></pre> </div> <h2> Coordinates: lat/lng to 3D </h2> <div class="highlight js-code-highlight"> <pre class="highlight javascript"><code><span class="kd">function</span> <span class="nf">latLngToVec3</span><span class="p">(</span><span class="nx">lat</span><span class="p">,</span> <span class="nx">lng</span><span class="p">,</span> <span class="nx">radius</span><span class="p">)</span> <span class="p">{</span> <span class="kd">const</span> <span class="nx">phi</span> <span class="o">=</span> <span class="p">(</span><span class="mi">90</span> <span class="o">-</span> <span class="nx">lat</span><span class="p">)</span> <span class="o">*</span> <span class="p">(</span><span class="nb">Math</span><span class="p">.</span><span class="nx">PI</span> <span class="o">/</span> <span class="mi">180</span><span class="p">)</span> <span class="kd">const</span> <span class="nx">theta</span> <span class="o">=</span> <span class="p">(</span><span class="nx">lng</span> <span class="o">+</span> <span class="mi">180</span><span class="p">)</span> <span class="o">*</span> <span class="p">(</span><span class="nb">Math</span><span class="p">.</span><span class="nx">PI</span> <span class="o">/</span> <span class="mi">180</span><span class="p">)</span> <span class="k">return</span> <span class="p">[</span> <span class="o">-</span><span class="nx">radius</span> <span class="o">*</span> <span class="nb">Math</span><span class="p">.</span><span class="nf">sin</span><span class="p">(</span><span class="nx">phi</span><span class="p">)</span> <span class="o">*</span> <span class="nb">Math</span><span class="p">.</span><span class="nf">cos</span><span class="p">(</span><span class="nx">theta</span><span class="p">),</span> <span class="nx">radius</span> <span class="o">*</span> <span class="nb">Math</span><span class="p">.</span><span class="nf">cos</span><span class="p">(</span><span class="nx">phi</span><span class="p">),</span> <span class="nx">radius</span> <span class="o">*</span> <span class="nb">Math</span><span class="p">.</span><span class="nf">sin</span><span class="p">(</span><span class="nx">phi</span><span class="p">)</span> <span class="o">*</span> <span class="nb">Math</span><span class="p">.</span><span class="nf">sin</span><span class="p">(</span><span class="nx">theta</span><span class="p">)</span> <span class="p">]</span> <span class="p">}</span> </code></pre> </div> <h2> Performance notes </h2> <ul> <li> <code>THREE.Points</code> with <code>BufferGeometry</code> keeps GPU memory stable</li> <li>Fixed size buffer avoids GC pressure</li> <li>Pixel ratio capped at 2 (no point rendering 3x on retina)</li> <li>Lazy initialization: globe loads after main content paint</li> <li>60fps on iPhone 12, ~45fps on a 5 year old budget Android</li> </ul> <p>See the final result on the landing page: <a href="https://zenovay.com" rel="noopener noreferrer">zenovay.com</a></p> <p>If you want the full source as a template, drop a comment and I'll open source it.</p> <p>Valerio</p> threejs java javascript cloudflare Achieving sub 100ms response times at the edge with Cloudflare Workers: lessons from analytics in production Zenovay Tue, 19 May 2026 18:29:41 +0000 https://dev.to/zenovay/achieving-sub-100ms-response-times-at-the-edge-with-cloudflare-workers-lessons-from-analytics-in-5f8o https://dev.to/zenovay/achieving-sub-100ms-response-times-at-the-edge-with-cloudflare-workers-lessons-from-analytics-in-5f8o <p>Running web analytics ingestion at the edge sounds simple. POST event, write to database, return 200. The reality has more nuance.</p> <p>This is a technical writeup of how Zenovay (my analytics SaaS) handles 50M+ monthly events with sub 100ms p99 response times globally on Cloudflare Workers.</p> <h2> The naive version </h2> <div class="highlight js-code-highlight"> <pre class="highlight javascript"><code><span class="k">export</span> <span class="k">default</span> <span class="p">{</span> <span class="k">async</span> <span class="nf">fetch</span><span class="p">(</span><span class="nx">request</span><span class="p">,</span> <span class="nx">env</span><span class="p">)</span> <span class="p">{</span> <span class="kd">const</span> <span class="nx">event</span> <span class="o">=</span> <span class="k">await</span> <span class="nx">request</span><span class="p">.</span><span class="nf">json</span><span class="p">()</span> <span class="k">await</span> <span class="nx">env</span><span class="p">.</span><span class="nx">DB</span><span class="p">.</span><span class="nf">prepare</span><span class="p">(</span> <span class="dl">'</span><span class="s1">INSERT INTO events (...) VALUES (...)</span><span class="dl">'</span> <span class="p">).</span><span class="nf">bind</span><span class="p">(...).</span><span class="nf">run</span><span class="p">()</span> <span class="k">return</span> <span class="k">new</span> <span class="nc">Response</span><span class="p">(</span><span class="dl">'</span><span class="s1">ok</span><span class="dl">'</span><span class="p">)</span> <span class="p">}</span> <span class="p">}</span> </code></pre> </div> <p>This works. It also blocks the response on a database write. P99 latency was 280ms.</p> <h2> Step 1: Decouple the write </h2> <p>Workers have <code>ctx.waitUntil()</code> which lets you do work after returning the response.<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight javascript"><code><span class="k">export</span> <span class="k">default</span> <span class="p">{</span> <span class="k">async</span> <span class="nf">fetch</span><span class="p">(</span><span class="nx">request</span><span class="p">,</span> <span class="nx">env</span><span class="p">,</span> <span class="nx">ctx</span><span class="p">)</span> <span class="p">{</span> <span class="kd">const</span> <span class="nx">event</span> <span class="o">=</span> <span class="k">await</span> <span class="nx">request</span><span class="p">.</span><span class="nf">json</span><span class="p">()</span> <span class="nx">ctx</span><span class="p">.</span><span class="nf">waitUntil</span><span class="p">(</span><span class="nf">persistEvent</span><span class="p">(</span><span class="nx">event</span><span class="p">,</span> <span class="nx">env</span><span class="p">))</span> <span class="k">return</span> <span class="k">new</span> <span class="nc">Response</span><span class="p">(</span><span class="dl">'</span><span class="s1">ok</span><span class="dl">'</span><span class="p">,</span> <span class="p">{</span> <span class="na">status</span><span class="p">:</span> <span class="mi">202</span> <span class="p">})</span> <span class="p">}</span> <span class="p">}</span> </code></pre> </div> <p>Response time dropped to ~40ms. But now you have a reliability question: what if the worker dies before the write completes?</p> <h2> Step 2: Queue the write </h2> <p>Cloudflare Queues turned out to be the right abstraction. Workers push events to a queue, a consumer worker handles writes in batches.</p> <p>P99 now 38ms. Throughput went up because batched inserts are way more efficient than single row inserts.</p> <h2> Step 3: Edge caching for reads </h2> <p>The dashboard side has different constraints. Most dashboard queries can tolerate 5 to 10 seconds of staleness.</p> <p>Workers KV is too slow for this (read latency ~50ms). Cache API on the response is way faster.<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight javascript"><code><span class="kd">const</span> <span class="nx">cache</span> <span class="o">=</span> <span class="nx">caches</span><span class="p">.</span><span class="k">default</span> <span class="kd">const</span> <span class="nx">cacheKey</span> <span class="o">=</span> <span class="k">new</span> <span class="nc">Request</span><span class="p">(</span><span class="nx">url</span><span class="p">,</span> <span class="nx">request</span><span class="p">)</span> <span class="kd">let</span> <span class="nx">response</span> <span class="o">=</span> <span class="k">await</span> <span class="nx">cache</span><span class="p">.</span><span class="nf">match</span><span class="p">(</span><span class="nx">cacheKey</span><span class="p">)</span> <span class="k">if </span><span class="p">(</span><span class="o">!</span><span class="nx">response</span><span class="p">)</span> <span class="p">{</span> <span class="nx">response</span> <span class="o">=</span> <span class="k">await</span> <span class="nf">fetchFromOrigin</span><span class="p">(</span><span class="nx">request</span><span class="p">,</span> <span class="nx">env</span><span class="p">)</span> <span class="nx">response</span><span class="p">.</span><span class="nx">headers</span><span class="p">.</span><span class="nf">set</span><span class="p">(</span><span class="dl">'</span><span class="s1">Cache-Control</span><span class="dl">'</span><span class="p">,</span> <span class="dl">'</span><span class="s1">s-maxage=10</span><span class="dl">'</span><span class="p">)</span> <span class="nx">ctx</span><span class="p">.</span><span class="nf">waitUntil</span><span class="p">(</span><span class="nx">cache</span><span class="p">.</span><span class="nf">put</span><span class="p">(</span><span class="nx">cacheKey</span><span class="p">,</span> <span class="nx">response</span><span class="p">.</span><span class="nf">clone</span><span class="p">()))</span> <span class="p">}</span> <span class="k">return</span> <span class="nx">response</span> </code></pre> </div> <p>Dashboard query P99 went from 180ms to 22ms cached, 95% cache hit rate.</p> <h2> Step 4: Geographic routing </h2> <p>One thing that surprised me: even with edge workers, your D1 or origin database location matters. A worker in Singapore writing to a D1 instance in Frankfurt adds ~180ms latency.</p> <p>For Zenovay I run regional write workers that funnel to the closest D1 replica, then async sync to the primary. This is more complex but cut p99 in APAC from 240ms to 75ms.</p> <h2> Numbers in production </h2> <ul> <li>P50 response: 18ms</li> <li>P95 response: 62ms</li> <li>P99 response: 89ms</li> <li>Cache hit rate (dashboard): 95.4%</li> <li>Cost per million events: ~$0.42</li> </ul> <p>If you want to see this in action: <a href="https://zenovay.com" rel="noopener noreferrer">zenovay.com</a>. The 3D globe on the homepage is showing live events flowing through this exact pipeline.</p> <p>Valerio</p> cloudflare webdev performance analytics How I rebuilt my SaaS landing page in 6 weeks: Essential lessons for developer founders Zenovay Thu, 14 May 2026 16:01:32 +0000 https://dev.to/zenovay/how-i-rebuilt-my-saas-landing-page-in-6-weeks-essential-lessons-for-developer-founders-4ma1 https://dev.to/zenovay/how-i-rebuilt-my-saas-landing-page-in-6-weeks-essential-lessons-for-developer-founders-4ma1 <h3> I'm a developer founder. </h3> <p>I love writing code. I hate writing copy. For 8 months I shipped features and ignored my landing page.</p> <p>My conversion rate was 0.5%. I was confused why "such a powerful product" was not selling.</p> <p>Then I spent 6 weeks rebuilding the landing page from scratch. Conversion is now roughly 3x. Same product. Different page.</p> <p>This is what I learned, focused on the technical and decision making side, since most "landing page tips" articles are written by marketers and miss the developer perspective.</p> <h2> The shift in mental model </h2> <p>The first thing I had to accept: a landing page is a piece of software with one job. Get the right visitors to take one action. It should be debugged, profiled, and iterated like any other code.</p> <p>Once I treated it like code, the whole rewrite became tractable.</p> <h2> Stack choices that matter </h2> <p>For Zenovay's new landing page I went with:<br> Next.js 15 (App Router)<br> Tailwind 4<br> Three.js (raw, not R3F)<br> Cloudflare Pages for hosting<br> Cloudflare Workers for the live data stream</p> <p>Three things drove these choices:</p> <ol> <li> <strong>Edge first.</strong> The page needs to load fast in every geography. Cloudflare Pages plus Workers means sub 100ms TTFB worldwide.</li> <li> <strong>No framework lock in on the hero animation.</strong> Raw Three.js gave me 60fps with ~5000 dots. React Three Fiber added overhead I did not need.</li> <li> <strong>Tailwind 4's new engine</strong> cut my CSS bundle by ~40% over what I had with Tailwind 3.</li> </ol> <h2> The hero is the entire pitch </h2> <p>For an analytics product, the natural hero is a screenshot of the dashboard. That is what I had for months.</p> <p>I replaced it with a live 3D globe showing actual incoming visits from real customer sites. Same data the dashboard shows, but in motion, in 3D, instantly.</p> <p>Here's the simplified Three.js setup for the globe:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight javascript"><code><span class="k">import</span> <span class="o">*</span> <span class="k">as</span> <span class="nx">THREE</span> <span class="k">from</span> <span class="dl">'</span><span class="s1">three</span><span class="dl">'</span> <span class="kd">const</span> <span class="nx">scene</span> <span class="o">=</span> <span class="k">new</span> <span class="nx">THREE</span><span class="p">.</span><span class="nc">Scene</span><span class="p">()</span> <span class="kd">const</span> <span class="nx">camera</span> <span class="o">=</span> <span class="k">new</span> <span class="nx">THREE</span><span class="p">.</span><span class="nc">PerspectiveCamera</span><span class="p">(</span><span class="mi">45</span><span class="p">,</span> <span class="nx">aspect</span><span class="p">,</span> <span class="mf">0.1</span><span class="p">,</span> <span class="mi">1000</span><span class="p">)</span> <span class="kd">const</span> <span class="nx">renderer</span> <span class="o">=</span> <span class="k">new</span> <span class="nx">THREE</span><span class="p">.</span><span class="nc">WebGLRenderer</span><span class="p">({</span> <span class="na">antialias</span><span class="p">:</span> <span class="kc">true</span><span class="p">,</span> <span class="na">alpha</span><span class="p">:</span> <span class="kc">true</span> <span class="p">})</span> <span class="c1">// Globe sphere</span> <span class="kd">const</span> <span class="nx">globe</span> <span class="o">=</span> <span class="k">new</span> <span class="nx">THREE</span><span class="p">.</span><span class="nc">Mesh</span><span class="p">(</span> <span class="k">new</span> <span class="nx">THREE</span><span class="p">.</span><span class="nc">SphereGeometry</span><span class="p">(</span><span class="mi">5</span><span class="p">,</span> <span class="mi">64</span><span class="p">,</span> <span class="mi">64</span><span class="p">),</span> <span class="k">new</span> <span class="nx">THREE</span><span class="p">.</span><span class="nc">MeshBasicMaterial</span><span class="p">({</span> <span class="na">map</span><span class="p">:</span> <span class="nx">earthTexture</span><span class="p">,</span> <span class="na">transparent</span><span class="p">:</span> <span class="kc">true</span><span class="p">,</span> <span class="na">opacity</span><span class="p">:</span> <span class="mf">0.9</span> <span class="p">})</span> <span class="p">)</span> <span class="nx">scene</span><span class="p">.</span><span class="nf">add</span><span class="p">(</span><span class="nx">globe</span><span class="p">)</span> <span class="c1">// Points for visits, custom shader for glow</span> <span class="kd">const</span> <span class="nx">pointsGeometry</span> <span class="o">=</span> <span class="k">new</span> <span class="nx">THREE</span><span class="p">.</span><span class="nc">BufferGeometry</span><span class="p">()</span> <span class="kd">const</span> <span class="nx">pointsMaterial</span> <span class="o">=</span> <span class="k">new</span> <span class="nx">THREE</span><span class="p">.</span><span class="nc">ShaderMaterial</span><span class="p">({</span> <span class="na">vertexShader</span><span class="p">:</span> <span class="nx">glowVertexShader</span><span class="p">,</span> <span class="na">fragmentShader</span><span class="p">:</span> <span class="nx">glowFragmentShader</span><span class="p">,</span> <span class="na">transparent</span><span class="p">:</span> <span class="kc">true</span> <span class="p">})</span> </code></pre> </div> <p>The events come in via Server Sent Events from Cloudflare Workers, batched every 2 seconds.</p> <h2> Performance budget </h2> <p>I gave myself a hard performance budget for the new page:</p> <ul> <li>LCP under 1.5s on a midrange phone</li> <li>CLS under 0.05</li> <li>JS bundle under 180kb gzipped</li> <li>Three.js scene under 60fps target</li> </ul> <p>Final numbers: LCP 1.2s, CLS 0.02, JS 167kb, Three.js scene 58 to 60fps on iPhone 12.</p> <h2> What I would do differently </h2> <ol> <li> <strong>Start with the hero animation.</strong> I built the hero last, which meant the rest of the design had to bend around it. Building the visual first would have saved me 2 rewrites.</li> <li> <strong>Write copy before opening Figma.</strong> I designed 3 versions with placeholder text. All 3 broke when I wrote real copy.</li> <li> <strong>Test on slow networks earlier.</strong> My LP felt fast on fiber. On 4G with throttled CPU, the Three.js initial paint was a problem. Lazy loading the globe below initial paint fixed it.</li> </ol> <p>If you want to see the result: <a href="https://zenovay.com" rel="noopener noreferrer">zenovay.com</a> (there is an interactive demo)</p> <p>Questions about any of the technical pieces, drop them below. Happy to share more detail on the SSE batching, the binary event format, or the shader work.</p> showdev privacy webdev javascript The "Privacy-First" Mirage: Why Your Analytics Hash is Still Fingerprinting Zenovay Thu, 16 Apr 2026 19:12:02 +0000 https://dev.to/zenovay/the-privacy-first-mirage-why-your-analytics-hash-is-still-fingerprinting-44ac https://dev.to/zenovay/the-privacy-first-mirage-why-your-analytics-hash-is-still-fingerprinting-44ac <p>"Privacy-first" has become the favorite marketing buzzword for every new analytics tool. But as developers, we shouldn't trust the landing page we should trust the implementation.</p> <p>I've been building <a href="https://zenovay.com" rel="noopener noreferrer">Zenovay</a>, a lean alternative to the GA4 nightmare, and I spent a lot of time auditing how "privacy-friendly" tools actually handle visitor identity. What I found was a lot of "Fingerprinting Lite" masquerading as privacy.</p> <h2> The Trap: User Agent Persistence </h2> <p>Most indie analytics tools use a hash to identify unique visitors without storing an IP. You'll often see logic similar to this in their backends (let's call this the "GhostlyX" approach):<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight php"><code><span class="c1">// The problematic approach</span> <span class="nv">$visitorHash</span> <span class="o">=</span> <span class="nb">hash_hmac</span><span class="p">(</span><span class="s1">'sha256'</span><span class="p">,</span> <span class="nv">$ip</span> <span class="mf">.</span> <span class="nv">$ua</span> <span class="mf">.</span> <span class="nv">$site</span><span class="o">-&gt;</span><span class="n">id</span> <span class="mf">.</span> <span class="nv">$today</span><span class="p">,</span> <span class="nf">config</span><span class="p">(</span><span class="s1">'app.key'</span><span class="p">));</span> </code></pre> </div> <p>The issue is the <code>$ua</code> (User Agent). By including the User Agent in the hash, you are effectively <strong>fingerprinting the user's device</strong>.</p> <p>If a user moves from their home Wi-Fi to a 5G network, their IP changes but their User Agent stays identical. The tool can still link those sessions. This creates a persistent identifier that survives network changes, which is exactly what "privacy-first" is supposed to prevent.</p> <h2> A Cleaner Approach: Daily Rotating Salts </h2> <p>When we built the tracking engine for Zenovay, we decided: if the data is supposed to be anonymous, it should be <em>actually</em> anonymous. No fingerprints. No persistence beyond 24 hours.</p> <p>We use the <strong>Web Crypto API</strong> (available natively in edge environments like Cloudflare Workers) to process the IP the millisecond it hits our server.</p> <h3> The Implementation </h3> <div class="highlight js-code-highlight"> <pre class="highlight typescript"><code><span class="k">async</span> <span class="kd">function</span> <span class="nf">hashIPForVisitor</span><span class="p">(</span><span class="nx">ip</span><span class="p">:</span> <span class="kr">string</span><span class="p">,</span> <span class="nx">websiteId</span><span class="p">:</span> <span class="kr">string</span><span class="p">):</span> <span class="nb">Promise</span><span class="o">&lt;</span><span class="kr">string</span><span class="o">&gt;</span> <span class="p">{</span> <span class="c1">// Daily salt ensures no long-term tracking</span> <span class="kd">const</span> <span class="nx">today</span> <span class="o">=</span> <span class="k">new</span> <span class="nc">Date</span><span class="p">().</span><span class="nf">toISOString</span><span class="p">().</span><span class="nf">slice</span><span class="p">(</span><span class="mi">0</span><span class="p">,</span> <span class="mi">10</span><span class="p">);</span> <span class="c1">// YYYY-MM-DD</span> <span class="kd">const</span> <span class="nx">encoder</span> <span class="o">=</span> <span class="k">new</span> <span class="nc">TextEncoder</span><span class="p">();</span> <span class="c1">// We combine IP, Website ID, and the daily salt.</span> <span class="c1">// NOTICE: No User Agent. No device fingerprinting.</span> <span class="kd">const</span> <span class="nx">data</span> <span class="o">=</span> <span class="nx">encoder</span><span class="p">.</span><span class="nf">encode</span><span class="p">(</span><span class="s2">`</span><span class="p">${</span><span class="nx">ip</span><span class="p">}</span><span class="s2">|</span><span class="p">${</span><span class="nx">websiteId</span><span class="p">}</span><span class="s2">|</span><span class="p">${</span><span class="nx">today</span><span class="p">}</span><span class="s2">`</span><span class="p">);</span> <span class="kd">const</span> <span class="nx">hashBuffer</span> <span class="o">=</span> <span class="k">await</span> <span class="nx">crypto</span><span class="p">.</span><span class="nx">subtle</span><span class="p">.</span><span class="nf">digest</span><span class="p">(</span><span class="dl">'</span><span class="s1">SHA-256</span><span class="dl">'</span><span class="p">,</span> <span class="nx">data</span><span class="p">);</span> <span class="kd">const</span> <span class="nx">hashArray</span> <span class="o">=</span> <span class="nb">Array</span><span class="p">.</span><span class="k">from</span><span class="p">(</span><span class="k">new</span> <span class="nc">Uint8Array</span><span class="p">(</span><span class="nx">hashBuffer</span><span class="p">));</span> <span class="k">return</span> <span class="nx">hashArray</span> <span class="p">.</span><span class="nf">map</span><span class="p">(</span><span class="nx">b</span> <span class="o">=&gt;</span> <span class="nx">b</span><span class="p">.</span><span class="nf">toString</span><span class="p">(</span><span class="mi">16</span><span class="p">).</span><span class="nf">padStart</span><span class="p">(</span><span class="mi">2</span><span class="p">,</span> <span class="dl">'</span><span class="s1">0</span><span class="dl">'</span><span class="p">))</span> <span class="p">.</span><span class="nf">join</span><span class="p">(</span><span class="dl">''</span><span class="p">);</span> <span class="p">}</span> </code></pre> </div> <p>Why this is technically superior:</p> <p><strong>Zero Persistence</strong> Because we include <code>${today}</code>, the hash for the same visitor changes at midnight. We have no way of "following" a user across multiple days.</p> <p><strong>No Fingerprinting</strong> By omitting the User Agent, we ensure we're only measuring "a connection at a specific time," not "a specific device."</p> <p><strong>Database Integrity</strong> In our Supabase schema, <code>ip_address</code> is hard-coded to <code>null</code>. The raw IP never touches the disk.<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight typescript"><code><span class="kd">const</span> <span class="nx">visitorHash</span> <span class="o">=</span> <span class="k">await</span> <span class="nf">hashIPForVisitor</span><span class="p">(</span><span class="nx">clientIP</span><span class="p">,</span> <span class="nx">website</span><span class="p">.</span><span class="nx">id</span><span class="p">);</span> <span class="k">await</span> <span class="nx">supabase</span><span class="p">.</span><span class="k">from</span><span class="p">(</span><span class="dl">'</span><span class="s1">hits</span><span class="dl">'</span><span class="p">).</span><span class="nf">insert</span><span class="p">({</span> <span class="na">website_id</span><span class="p">:</span> <span class="nx">website</span><span class="p">.</span><span class="nx">id</span><span class="p">,</span> <span class="na">ip_hash</span><span class="p">:</span> <span class="nx">visitorHash</span><span class="p">,</span> <span class="na">ip_address</span><span class="p">:</span> <span class="kc">null</span><span class="p">,</span> <span class="c1">// Raw IP is never stored</span> <span class="na">pathname</span><span class="p">:</span> <span class="nx">request</span><span class="p">.</span><span class="nx">url</span><span class="p">.</span><span class="nx">pathname</span><span class="p">,</span> <span class="c1">// ...</span> <span class="p">});</span> </code></pre> </div> <h2> The Architecture: Cloudflare + Supabase + Next.js </h2> <p>Building on a modern edge stack allowed us to keep the entire tracking script under <strong>1KB</strong>.</p> <ul> <li> <strong>Cloudflare Workers</strong> Handle incoming requests and hash at the edge, before any data leaves the user's network hop.</li> <li> <strong>Supabase (PostgreSQL)</strong> Stores hashed events. No bloated tracking data means queries stay fast even at millions of rows.</li> <li> <strong>Next.js (App Router)</strong> Powers the dashboard, connecting hits to real-time Stripe revenue attribution.</li> </ul> <h2> Privacy Marketing vs. Privacy Engineering </h2> <p>The difference comes down to transparency. If a tool doesn't tell you exactly how they generate visitor IDs, they're probably fingerprinting you.</p> <p>Real privacy isn't about obfuscating data it's about making sure sensitive data is <strong>gone before it ever hits your database</strong>.</p> <p>I'm bootstrapping Zenovay to prove that you can get world-class business insights and revenue attribution without turning your users into a product.</p> <p><em>How are you handling PII in your tracking stacks? Are you using the Web Crypto API or sticking to traditional server-side hashing? Drop it in the comments.</em></p> privacy react webdev typescript