[ [0x00] Core ] Architecture

Architecture

> A deep dive into Fabrk's enterprise-grade stack and design patterns.

Overview

[ [0x00] STATUS ]

Built on the T3 Stack philosophy but extended for enterprise SaaS. Next.js 15 (App Router) ensures type safety from database to frontend. Scales from 0 to 1M+ users.

Features

[ [0x01] APP_ROUTER ]

STATUS: READY

DESC: Next.js 15 RSC + Server Actions.

[ [0x02] NEXTAUTH_V5 ]

STATUS: READY

DESC: JWT sessions, RBAC, 2FA.

[ [0x03] PRISMA_ORM ]

STATUS: READY

DESC: Type-safe PostgreSQL queries.

[ [0x04] SERVICE_LAYE ]

STATUS: READY

DESC: Clean separation of concerns.

Usage

[ [0x7C] MUTATION FLOW (SERVER ACTIONS) ]

Example of a typical server action flow

1// 1. Client invokes action
2const { execute, status } = useAction(updateUserProfile);
3
4// 2. Server Action (src/app/_actions/user.ts)
5export const updateUserProfile = action(schema, async ({ input, ctx }) => {
6  // 3. Authorization Check
7  if (!ctx.session) throw new UnauthorizedError();
8
9  // 4. Database Operation
10  const user = await prisma.user.update({...});
11
12  // 5. Revalidation
13  revalidatePath('/dashboard/settings');
14
15  return user;
16});

High-Level Overview

[ [0xC2] SYSTEM DIAGRAM ]

CLIENT

Browser / Mobile

│

▼

EDGE

Vercel Edge

Network

→

Middleware.ts

(Auth/Routing)

│

▼

SERVER

Next.js App Router

RSC Pages

Server Actions

│

▼▼▼

PostgreSQL

(Prisma)

Stripe

Payments

Resend

Core Components

[ [0x48] AUTH SECURITY ]

Built on NextAuth.js v5. Sessions are stateless (JWT) by default for edge compatibility, but can be database-persisted for strict session management.

├─ Role-Based Access Control (RBAC)

├─ Middleware protection for routes

└─ CSRF & Rate Limiting pre-configured

[ [0xB4] DATABASE LAYER ]

Prisma ORM provides a type-safe interface to PostgreSQL. We use a "Service Layer" pattern to abstract database logic from UI components.

├─ Automated migrations

├─ Connection pooling (serverless ready)

└─ Zod schema validation

Data Flow & Patterns

[ [0x1C] DATA FLOW ]

We strictly follow unidirectional data flow. Server Actions are used for mutations, while React Server Components (RSC) handle data fetching.

├─ RSC for data fetching (no useEffect)

├─ Server Actions for mutations

├─ revalidatePath for cache invalidation

└─ Zod schemas for input validation

Scalability Considerations

[ [0xD1] SCALABILITY ]

Fabrk is designed to scale from 0 to 1M+ users without major refactoring.

├─ Edge Caching: Static assets and ISR pages cached at the edge

├─ Serverless Database: Compatible with Neon/Supabase for auto-scaling

└─ Job Queues: Background jobs decoupled using Inngest (optional)

Next Steps

[ [0x00] DATABASE ]

DESC: Prisma ORM and PostgreSQL setup

[ [0x00] AUTHENTICATION ]

DESC: NextAuth.js v5 configuration

Usage

[ [0x7C] MUTATION FLOW (SERVER ACTIONS) ]

Example of a typical server action flow

1// 1. Client invokes action
2const { execute, status } = useAction(updateUserProfile);
3
4// 2. Server Action (src/app/_actions/user.ts)
5export const updateUserProfile = action(schema, async ({ input, ctx }) => {
6  // 3. Authorization Check
7  if (!ctx.session) throw new UnauthorizedError();
8
9  // 4. Database Operation
10  const user = await prisma.user.update({...});
11
12  // 5. Revalidation
13  revalidatePath('/dashboard/settings');
14
15  return user;
16});

Core Components

[ [0x48] AUTH SECURITY ]

Built on NextAuth.js v5. Sessions are stateless (JWT) by default for edge compatibility, but can be database-persisted for strict session management.

├─ Role-Based Access Control (RBAC)

├─ Middleware protection for routes

└─ CSRF & Rate Limiting pre-configured

[ [0xB4] DATABASE LAYER ]

Prisma ORM provides a type-safe interface to PostgreSQL. We use a "Service Layer" pattern to abstract database logic from UI components.

├─ Automated migrations

├─ Connection pooling (serverless ready)

└─ Zod schema validation

Data Flow & Patterns

[ [0x1C] DATA FLOW ]

We strictly follow unidirectional data flow. Server Actions are used for mutations, while React Server Components (RSC) handle data fetching.

├─ RSC for data fetching (no useEffect)

├─ Server Actions for mutations

├─ revalidatePath for cache invalidation

└─ Zod schemas for input validation

Scalability Considerations

[ [0xD1] SCALABILITY ]

Fabrk is designed to scale from 0 to 1M+ users without major refactoring.

├─ Edge Caching: Static assets and ISR pages cached at the edge

├─ Serverless Database: Compatible with Neon/Supabase for auto-scaling

└─ Job Queues: Background jobs decoupled using Inngest (optional)