A high-performance, full-stack e-commerce platform built with a focus on Brutalist Design, Type Safety, and Scalable Cloud Infrastructure.
Triepe is built using a modern, decoupled monorepo architecture, ensuring separation of concerns, independent scaling, and a hardened production environment.
- Framework: Next.js 15 (App Router & Turbopack)
- Language: TypeScript (Strict Mode)
- Styling: Tailwind CSS (Brutalist UI Design System)
- State Management: Zustand
- Hosting: Vercel (Edge Network)
- Runtime: Node.js
- Framework: Express.js
- Language: TypeScript
- ORM: Prisma 7
- Hosting: Google Cloud Run (Serverless Containers)
- Process Management: Native JS execution in production for high-performance cold starts and dynamic DB seeding.
- Database: PostgreSQL (Hosted on Neon.tech Serverless)
- Media Storage: Cloudinary (Optimized image and video delivery)
- DNS & Infrastructure: Cloudflare (Full Strict SSL, DNS-only API routing)
This repository is "Hardened" for production. We follow industry-standard DevOps practices to ensure the main branch remains a sacred, stable environment.
Every Pull Request triggers an automated Triepe CI Pipeline that:
- Isolates Backend and Frontend builds into concurrent, parallel jobs.
- Runs TypeScript compiler checks (
tsc) to catch type-mismatches across the stack. - Generates Prisma clients to verify database schema integrity.
- Prevents merging if any build, type-check, or linting fails.
- Admin-Enforced Protection: No direct pushes allowed to
main, even for owners. - Status Check Mandates:
test-backendandtest-frontendmust pass before the "Merge" button is enabled. - PR-First Workflow: All changes require a formal Pull Request, creating a transparent audit trail.
- Primary Domain:
triepe.com - Redirects:
www.triepe.com→triepe.comvia Permanent 308 Redirects. - Backend API: Hosted on Google Cloud Run with custom origin-matching security and secure SSL/TLS handshakes via Cloudflare.
- CORS Management: Strict origin-matching. In production, only authorized domains and Vercel preview URLs can communicate with the API.
- Rate Limiting: Global limits applied to the API (100 req/15min) with strict limiters on Auth and Checkout routes.
- Proxy Trust: Configured to
trust proxyfor accurate IP tracking through Cloudflare and GCP layers. - Helmet.js: Integrated to secure HTTP headers against common vulnerabilities like XSS and Clickjacking.
- JWT Authentication: Secure token-based access using
bcrypthashing for Admin operations and sensitive order management.