Web Application Overview

The Jubiloop web application is a modern React SPA built with TanStack Router, featuring type-safe routing, authentication, and responsive UI components.

Technology Stack

• Framework: React 19 with TypeScript
• Build Tool: Vite
• Routing: TanStack Router (file-based)
• State Management: Zustand
• API Client: TanStack Query
• UI Components: shadcn/ui with Tailwind CSS
• Testing: Vitest and React Testing Library

Architecture Overview

Core Concepts

1. File-Based Routing

   • Routes defined in /src/routes/ directory
   • Automatic code splitting per route
   • Type-safe navigation and parameters

2. Authentication Flow

   • Session-based auth with HTTP-only cookies
   • Protected route groups: (auth) vs (public)
   • Automatic redirects based on auth state

3. State Management Strategy

   • Zustand for auth and global app state
   • TanStack Query for server state caching
   • Local React state for component UI

4. API Integration

   • Type-safe API client
   • Automatic request/response handling
   • Optimistic updates for better UX

Project Structure

src/
├── routes/                 # TanStack Router file-based routes
│   ├── __root.tsx         # Root layout with auth logic
│   ├── index.tsx          # Home page (redirects to dashboard)
│   ├── (public)/          # Unauthenticated route group
│   │   ├── sign-in.tsx    # Login page
│   │   └── sign-up.tsx    # Registration page
│   └── (auth)/            # Authenticated route group
│       └── dashboard/     # Dashboard pages
│           └── route.tsx
├── components/
│   ├── auth/              # Authentication components
│   │   ├── SignInForm.tsx
│   │   └── SignUpForm.tsx
│   └── Header.tsx         # Main navigation
├── hooks/
│   └── auth/              # Authentication hooks
│       └── useSession.ts
├── stores/
│   └── authStore.ts       # Zustand auth store
├── lib/
│   └── api/
│       └── setup.ts       # Central api object — auth-client + Tuyau setup
└── main.tsx               # App entry with router setup

TanStack Router Configuration

Router Setup (main.tsx)

const router = createRouter({
  routeTree,
  context: {
    ...TanstackQuery.getContext(),
  },
  defaultPreload: 'intent',
  scrollRestoration: true,
  defaultStructuralSharing: true,
  defaultPreloadStaleTime: 0,
})

Route Structure

1. Root Route (__root.tsx)

   • Handles authentication checks
   • Provides layout wrapper
   • Manages redirects

2. Public Routes ((public)/)

   • Sign in/up pages
   • Accessible without auth
   • Auto-redirect if already authenticated

3. Protected Routes ((auth)/)

   • Dashboard and app features
   • Requires authentication
   • Auto-redirect to login if not authenticated

Route Generation

Routes are automatically generated by TanStack Router:

• Source: /src/routes/ directory
• Output: /src/routeTree.gen.ts (auto-generated)
• Never edit the generated file directly

Features

Authentication System

1. Session Management

   • HTTP-only cookies for security
   • Automatic session refresh
   • Remember me functionality

2. Protected Routes

   • Route-level auth checks
   • Automatic redirects
   • Preserved intended destination

3. Auth State

   • Global auth store (Zustand)
   • Persisted user data
   • Loading states

Navigation

// Declarative navigation
import { Link } from '@tanstack/react-router'
<Link to="/dashboard">Dashboard</Link>

// Programmatic navigation
import { useNavigate } from '@tanstack/react-router'
const navigate = useNavigate()
navigate({ to: '/dashboard' })

UI/UX

• Responsive design

Performance

• Automatic code splitting per route
• Lazy loading with React.lazy
• Optimistic UI updates
• Request deduplication

Development Workflow

Available Scripts

pnpm run dev          # Start dev server (Vite)
pnpm run build        # Build for production
pnpm run preview      # Preview production build
pnpm run test         # Run tests with Vitest
pnpm run lint         # Run ESLint
pnpm run lint-fix     # Fix ESLint issues
pnpm run format       # Format code with Prettier
pnpm run check        # Run all checks (lint + format)
pnpm run check-types  # TypeScript type checking

Pre-commit Hooks

The project includes pre-commit hooks that:

• Enforce Node.js v24+ for development
• Run lint-staged on staged files
• Prevent commits if checks fail

Best Practices

1. Routing

   • Use file-based routing for organization
   • Group related routes with folders
   • Keep route components focused

2. State Management

   • Zustand is installed but no stores have been implemented yet — do not add Zustand stores without discussing first
   • Prefer server state with TanStack Query
   • Local state for component-specific UI

3. Component Design

   • Small, focused components
   • Composition over complex components
   • Proper TypeScript types

4. Performance

   • Implement route-level code splitting
   • Use React.memo for expensive components
   • Optimize re-renders with proper dependencies

API Integration

The webapp uses two client libraries:

• @jubiloop/auth-client — Auth and organization operations (Better Auth + TanStack Query hooks)
• Tuyau — End-to-end type-safe client for all other API calls (events, health, etc.), generated from the AdonisJS backend
• @jubiloop/logger — Structured logging with adaptor pattern

Webapp Configuration

Located in src/lib/api/setup.ts:

// api exposes:
// auth.authClient      — Better Auth client
// auth.hooks.auth      — { useAuth } (sign-in, sign-up, sign-out, session)
// auth.hooks.organization — org management hooks
// auth.auth.getSessionData(queryClient) — cache-first session fetch
// auth.auth.isAuthenticated(data)       — Boolean(data?.session && data?.user)

Key characteristics:

• Auth via auth-client: Session management, sign-in/up/out, organizations
• General API via Tuyau: Type-safe calls for events, health checks, and all non-auth endpoints
• Query Cache Integration: Both clients work with TanStack Query's cache

TanStack Query Setup

Located in src/integrations/tanstack-query/:

• Query client configuration
• Default stale times
• Cache management
• Global error handling

Data Fetching Pattern

// Auth/org hooks (from @jubiloop/auth-client)
// General API calls use Tuyau (type-safe, generated from backend)
import { useQuery } from '@tanstack/react-query'

import { auth } from '@/lib/api/setup'

const auth = auth.hooks.auth.useAuth()
const { data: orgs } = auth.hooks.organization.useOrganizations()

const { data, isLoading, error } = useQuery({
  queryKey: ['events', orgId],
  queryFn: () => tuyau.organizations({ id: orgId }).events.$get(),
})

Authentication Implementation

Session Hook

Located in src/hooks/auth/useSession.ts:

• Checks session validity
• Handles token refresh
• Provides loading states

Auth Store

Located in src/stores/authStore.ts:

• User data management
• Login/logout actions
• Persistent state

Protected Route Pattern

// In __root.tsx
beforeLoad: async ({ context, location }) => {
  const session = await checkSession()
  if (!session && isProtectedRoute(location)) {
    throw redirect({ to: '/sign-in' })
  }
}

Testing Strategy

1. Unit Tests

   • Test utilities and helpers
   • Test custom hooks
   • Test store actions

2. Component Tests

   • Test component rendering
   • Test user interactions
   • Test error states

3. Integration Tests

   • Test auth flows
   • Test API interactions
   • Test routing behavior

Build & Deployment

The webapp is deployed to Cloudflare Pages:

1. Build Process

   • Vite builds optimized bundles
   • Assets are hashed for caching
   • Environment variables injected

2. Deployment

   • Automatic deployment on push
   • Preview deployments for PRs
   • Production deployment on main branch

Environment Variables

Required environment variables:

• VITE_API_URL - Backend API URL
• VITE_APP_URL - Frontend app URL
• VITE_APP_ENV - Deployment environment (local/development/qa/production/test)

Set in .env.local for development:

VITE_API_URL=http://localhost:3333
VITE_APP_URL=http://localhost:5173

Common Tasks

Adding a New Route

1. Create route file in /src/routes/
2. Route is auto-discovered by TanStack Router
3. Add navigation links as needed

Adding Authentication to a Route

1. Place route in (auth) directory
2. Route automatically requires authentication
3. Unauthenticated users redirected to login

Managing Global State

1. Define store slice in /src/stores/
2. Use Zustand's create function
3. Import and use in components

Troubleshooting

Route Not Found

• Ensure route file is in /src/routes/
• Check file naming conventions
• Restart dev server if needed

Authentication Issues

• Check session cookie in browser
• Verify API endpoint is correct
• Check network tab for failed requests

State Not Persisting

• Verify store persistence config
• Check browser storage limits
• Clear storage and retry