Software Development

General

Tech Stack Overview Recommended Libraries Development Workflow Architecture Decision Records Tech Radar

Frontend

Rendering Strategies Routing, Layouts, and Modules State Management Data Loading and Cache API Client and Types Forms and Validation Styling and Design System Auth on Frontend i18n and Localization Accessibility (A11y)Error Handling Patterns Frontend Testing

Backend

Backend Overview Architecture and Module Boundaries API Design (REST + OpenAPI)Auth and Permissions Database Schema and Migrations Transactions and Idempotency Background Jobs and Scheduling Payments System Mailing System Webhooks and Event Processing File Handling and Storage Realtime Features (WebSockets and SSE)Caching Strategies Error Handling Patterns Backend Testing Logging, Monitoring, and Alerting

Dev Environment & Tooling

Runtime (Node and Bun)Package Managers (pnpm and Bun)Monorepo Workspaces Local HTTPS Proxy and Certs Local Infra with Docker Compose External Services in Dev Debugging and Troubleshooting

Quality & Security

Coding Standards and Review Security Baseline for Web Apps Rate Limiting and Abuse Protection Dependency and Secret Management Release Readiness Checklist

Boilerplate

Overview Architecture Map Start a New Project Upgrade and Maintenance

Engineering Guides

Software Development Cloud Engineering AI Engineering (soon)

Auth on Frontend

Implement authentication UX and routing boundaries safely on the client.

Recommended approach

Ideally use Better Auth for a full auth stack with session management, but principles apply to any auth solution.
Keep permission checks at route and component boundaries.
Use middleware or route guards to protect private routes and redirect unauthenticated users to sign-in / dashboards.
Separate session retrieval from feature-specific authorization logic.

Implementation checklist

Define public vs private route groups.
Handle expired sessions gracefully with redirect to sign-in and optional "session expired" messaging.
Keep permission checks in route modules and avoid sprinkling them in shared UI components.

Common pitfalls

Relying on frontend-only authorization checks.
Permission logic duplicated across screens.

Related pages

Auth and Permissions
Forms and Validation

Styling and Design System

Create consistent UI patterns while keeping implementation speed high.

i18n and Localization

Prepare UI for multiple languages, locale formats, and translation workflows.

On this page

Recommended approach Implementation checklist Common pitfalls Related pages