search

MinaFoundation / pgt-web-app

A web-based platform enabling community-driven voting to allocate funding for projects
0 stars 0 forks source link

readme

GovBot Web Application

A decentralized governance platform for managing proposals and grants on the Mina Protocol blockchain. Built with Next.js 14, TypeScript, and Prisma.

TypeScript Next.js Prisma

Features

Tech Stack

Getting Started

Prerequisites

Environment Setup

Create a .env file in the root directory:

JWT_PRIVATE_KEY_RS512="-----BEGIN PRIVATE KEY-----
...
-----END PRIVATE KEY-----"

JWT_PUBLIC_KEY_RS512="-----BEGIN PUBLIC KEY-----
...
-----END PUBLIC KEY-----"

# PGAdmin Configuration
PGADMIN_EMAIL=admin@example.com
PGADMIN_PASSWORD=pgadmin_password
# Database Configuration
POSTGRES_DB=govbot
POSTGRES_PASSWORD=your_secure_password_here
DATABASE_URL="postgresql://postgres:your_secure_password_here@db:5432/govbot?schema=public"

Development with Docker

  1. Start the development environment:
docker-compose up

This will start:

  1. Access the application:

Local Development

  1. Install dependencies:
npm install
  1. Start PostgreSQL:
docker-compose up db
  1. Run migrations:
npx prisma migrate dev
  1. Start development server:
npm run dev

OR

docker compose up --build

Architecture

Authentication System

The platform supports multiple authentication sources:

  1. Auth Sources:

    • Discord (via bot)
    • Telegram (via bot)
    • Mina Protocol Wallet

  2. JWT Implementation:

    • Short-lived access tokens (15 minutes)
    • Refresh tokens (7 days)
    • Secure httpOnly cookies
    • Token rotation on refresh

  3. User Resolution:

    // User ID derivation
userId = UUIDv5(authSource.type + authSource.id);

Account Linking

Users can link multiple authentication sources:

  1. Linking Process:

    • Each user has a linkId
    • Linked accounts share the same linkId
    • All linked accounts can access shared resources

  2. Implementation:

    interface User {
 id: string; // Derived from auth source
 linkId: string; // Shared between linked accounts
 metadata: Json; // Auth source info
}

API Routes

Authentication

POST /api/auth/exchange
- Exchange initial token for access/refresh tokens

POST /api/auth/refresh
- Refresh access token

POST /api/auth/logout
- Clear auth tokens

Proposals

GET /api/proposals
- List user's proposals

POST /api/proposals
- Create new proposal

GET /api/proposals/:id
- Get proposal details

PUT /api/proposals/:id
- Update proposal

DELETE /api/proposals/:id
- Delete draft proposal

Contributing

  1. Fork the repository
  2. Create your feature branch (git checkout -b feature/amazing-feature)
  3. Commit your changes (git commit -m 'Add amazing feature')
  4. Push to the branch (git push origin feature/amazing-feature)
  5. Open a Pull Request

Development Guidelines

  1. TypeScript:

    • Enable strict mode
    • Use proper type inference
    • Define clear interfaces

  2. Components:

    • Use Server Components by default
    • Implement proper error boundaries
    • Follow accessibility guidelines

  3. Styling:

    • Use Tailwind CSS classes
    • Follow shadcn/ui patterns
    • Maintain consistent theming

Deployment

  1. Production Build:
npm run build
  1. Docker Production:
docker-compose -f docker-compose.prod.yml up

Contributing

To contribute, follow these steps:

  1. Make an issue that includes details about the feature or bug or something else.
  2. Get that issue tested by: Cristina Echeverry.
  3. Get that issue approved by the product owners: Cristina Echeverry (CristinaEche) & Illya Gerasymchuk (iluxonchik)
  4. Write a PR and get it approved by the code owners and Mina devops: Illya Gerasymchuk (developer & code-owner), johnmarcou (Mina devops). Each PR must correspond to an approved issue. By default, PRs should be merged by the PR submitter, though in some cases if changes are needed, they can be merged by code owners.