knee-cola/evidencija-rezija
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
472 Commits 3 Branches 0 Tags
691715c8b4e79ea80c1b5d20462b2d530bbafe7b
Go to file
Clone
Open with VS Code Open with VSCodium Open with Intellij IDEA
Download ZIP Download TAR.GZ Download BUNDLE
Nikola Derežić 691715c8b4 ažuriran readme
2025-07-23 10:55:16 +02:00
.vscode
fixed tasks which kills mongo
2024-02-02 12:32:43 +01:00
app
BugFix: fixing types
2025-01-13 16:32:38 +01:00
etc
modified NextJS publishing port
2024-01-15 14:35:50 +01:00
messages
implementiran share by link
2024-12-13 17:50:12 +01:00
public
added opengraph metadata
2024-02-17 08:51:36 +01:00
.dockerignore
ignoring mongo-volume dir
2024-01-10 20:45:10 +01:00
.env
supported login via linkedin
2024-02-19 09:11:59 +01:00
.eslintrc.json
initial import
2023-12-27 15:45:49 +01:00
.gitignore
dev compose: renamed mongo volume
2024-01-10 20:50:23 +01:00
.nvmrc
initial import
2023-12-27 15:45:49 +01:00
build.sh
dodane build i deploy skripte
2024-03-23 01:42:59 +01:00
client_secret.apps.googleusercontent.com.json
added config for google auth
2024-01-07 13:08:29 +01:00
debug-deploy.sh
finished docker build & deploy
2024-01-10 13:27:25 +01:00
deploy.sh
dodane build i deploy skripte
2024-03-23 01:42:59 +01:00
docker-compose-debug.yml
monogo verzija u dev okruženju usklađena sa prod env
2024-12-14 09:55:26 +01:00
docker-compose-deploy.yml
updating version
2025-01-13 16:32:48 +01:00
Dockerfile
added custom login screen
2024-02-13 16:07:50 +01:00
middleware.ts
implementiran share by link
2024-12-13 17:50:12 +01:00
next.config.js
fixed next js config imports
2024-02-16 16:02:14 +01:00
package-lock.json
instaliran toast
2024-12-13 15:38:31 +01:00
package.json
instaliran toast
2024-12-13 15:38:31 +01:00
postcss.config.js
initial import
2023-12-27 15:45:49 +01:00
prettier.config.js
initial import
2023-12-27 15:45:49 +01:00
README.md
ažuriran readme
2025-07-23 10:55:16 +02:00
tailwind.config.ts
disabled white theme
2025-06-18 15:33:20 +02:00
tsconfig.json
initial import
2023-12-27 15:45:49 +01:00

README.md

ToDo

  • Public page with instructions

Authentication

Authentication consists of the following parts:

  • next-auth boilerplate
    • middleware.ts = hooks-up next-auth into the page processing pipeline - user session is checked before any page is rendered
    • auth.ts = defines how the authentication is done, and how session is checked (used by middleware)
    • /app/api/[...nextauth]/route.ts = defines route which shows an authentication form

Source:

Multi-User Support

Each location record is marked with a user ID.

All the actions user withUser to fetch user ID, which is then used in all the DB operations.

Deploying

The deployment is done via Docker:

  • build docker image
  • deploy Docker service

Building Docker image

Run the following command:

build.sh

The image will be stored in the local Docker instance.

Deploying Docker service

Run the following command:

deploy.sh

Implementation details

Issues with HOSTNAME

When deplyed via docker and published via Cloudflare there's an issue with HOSTNAME env variable:

  • if left unset, the server will use IP address assigned to container by Docker (i.e. 10.0.20.3) and will not accept connections from outside
▲ Next.js 14.0.2
- Local:        http://68db6c9ebafe:80
- Network:      http://10.0.20.3:80
  • if set to "0.0.0.0" the server will serve static pages, but will reject API calls when submitting form
▲ Next.js 14.0.2
- Local:        http://localhost:80
- Network:      http://0.0.0.0:80

utility-bills-tracker_web-app.1.Error: Invalid Server Actions request.

`x-forwarded-host` header with value `0.0.0.0:80` does not match `origin` header with value `rezije.app` from a forwarded Server Actions request. Aborting the action.
  • if set to "rezije.app" the server will not start since the IP address it resolves with the given FQDN does not match any of the IP addresses assigned to the container
▲ Next.js 14.0.2
- Local:        http://localhost:80
- Network:      http://0.0.0.0:80

utility-bills-tracker_web-app.1.Error: Invalid Server Actions request.

`x-forwarded-host` header with value `rezije.app:80` does not match `origin` header with value `rezije.app` from a forwarded Server Actions request. Aborting the action.

So there are the following issues:

  • server will not accept external request - can be fixed by setting HOSTNAME to 0.0.0.0
  • server rejects API requests - can be fixed by adding serverActions.allowedOrigins option to nextjs.config.js file

So these are the fixes which were implemented in order to be able to run server in production.

This is a hack indicating that I don't understand how the damn thing should be configured!

Even when this hack is emplyed the server still logs the followig error:

failed to get redirect response TypeError: fetch failed
    at Object.fetch (node:internal/deps/undici/undici:11730:11)
    at process.processTicksAndRejections (node:internal/process/task_queues:95:5) {
  cause: Error: connect ECONNREFUSED 0.0.0.0:443
      at TCPConnectWrap.afterConnect [as oncomplete] (node:net:1555:16)
      at TCPConnectWrap.callbackTrampoline (node:internal/async_hooks:128:17) {
    errno: -111,
    code: 'ECONNREFUSED',
    syscall: 'connect',
    address: '0.0.0.0',
    port: 443
  }
}

Mongo DB & AVX Instructions

The MongoDB server v > 5.0 will not run on and old machine such as Acer Revo due to it's CPU.

This issue was solved by using an older Mongo DB Version 4.4.27

Decoding Barcode

Barcode decoding is slow and can lead to locking of the main thread. This heavy lifting could be moved to background thread.

The new solution could be based on the following code: https://github.com/pocesar/react-use-qrcode That solution uses video to decode the QR code. This could be modified so that it uses data stored in canvas.

OAuth verification video transcript

This is Rezije app demonstration for Google OAuth login process for the users of our app. The video shows that our usage of OAuth scopes complies with Google API services user data policy.

Our app does not use any of the sensitive and restricted scopes.

User's can access Privacy policy and Terms of service by clicking links in footer of the page.

Let's first click on the "Privacy policy" link. Here we can see our Privacy policy.

Now let's click on the "Terms of service" link. Here We can see our Terms of service.

Links to these pages are assigned in the apropriate fields in the Google's Cloud Console and are listed in the Google's OAuth window.

From our homepage you can login by clicking on the "Sign in with Google" button.

Here in the address bar you can see that the client ID is present in the URL.

Select the account with which you would like to sign-in with and you will be logged in into the app.

We are using two scopes:

  1. OAuth ID, which is used to assign ownership to the application specific data when it's is stored and retrieved from our database.
  2. user's e-mail address, which is stored in our database so that we can contact our users in case such action is needed.

For any questions regarding the use of the Google API service please feel free to reach out at support@rezije.app

Localization

Localization was done by following video: https://www.youtube.com/watch?v=uZQ5d2bRMO4

Reference in New Issue View Git Blame Copy Permalink
Description
No description provided
Readme 9.4 MiB
Languages
JavaScript 74.7%
TypeScript 24.3%
Shell 0.9%