2026-04-10 12:52:17 -07:00
# SolaceScan Explorer - Tiered Architecture
2025-12-23 16:19:10 -08:00
2026-02-10 11:32:49 -08:00
## 🚀 Quick Start - Complete Deployment
2025-12-23 16:19:10 -08:00
2026-02-10 11:32:49 -08:00
**Execute this single command to complete all deployment steps:**
2025-12-23 16:19:10 -08:00
```bash
2026-02-10 11:32:49 -08:00
cd ~/projects/proxmox/explorer-monorepo
bash EXECUTE_DEPLOYMENT.sh
2025-12-23 16:19:10 -08:00
```
2026-02-10 11:32:49 -08:00
## What This Does
2025-12-23 16:19:10 -08:00
2026-02-10 11:32:49 -08:00
1. ✅ Tests database connection
2. ✅ Runs migration (if needed)
3. ✅ Stops existing server
4. ✅ Starts server with database
5. ✅ Tests all endpoints
6. ✅ Provides status summary
2025-12-23 16:19:10 -08:00
2026-02-10 11:32:49 -08:00
## Manual Execution
2025-12-23 16:19:10 -08:00
chore: consolidate documentation — delete status/fix/progress cruft
Before: 335 tracked .md files; top level had 14 README-like docs;
docs/ contained ~234 files, most of them auto/LLM-generated status
reports (ALL_*_COMPLETE*, *_FIX*, DEPLOYMENT_*_FINAL*, etc.).
After: 132 tracked .md files. Repo now has exactly five top-level
docs: README.md, QUICKSTART.md, RUNBOOK.md, CONTRIBUTING.md,
CHANGELOG.md (moved up from docs/).
Keeper philosophy in docs/:
- API, CCIP (ops + security + receiver/router refs), Chainlist refs,
compliance, deployment (guides not status), database connection,
legal compliance, metamask integration, production checklist,
tiered-architecture implementation/setup, reusable-components plan,
token-mechanism doc, wrap-and-bridge operational reference, plus
docs/specs/** and docs/api/ / docs/openapi/ trees.
Deleted (git history preserves provenance):
- All 'ALL_*_COMPLETE*' / '*_FIX*' / '*_FIXED*' / '*_FINAL*' /
'*_STATUS*' / '*_PROGRESS*' / '*_SUMMARY*' files.
- BLOCKSCOUT_*_FIX / _CRASH / _INITIALIZATION / _SCHEMA / _YAML /
_SKIP / _NEXT_STEPS / _START_AND_BUILD / _DATABASE_CREDENTIALS
(the last contained passwords).
- CCIP_IMPLEMENTATION_* / CCIP_CURRENT_STATUS / CCIP_GAP_*
(gap analyses are not a sustained reference).
- NPMPLUS_CREDENTIALS_GUIDE.md (contained creds).
- LETSENCRYPT_CONFIGURATION_GUIDE.md (contained creds; will be
re-introduced as runbook content post-secrets-scrub).
- docs/diagnostic-reports/, docs/feature-flags/ (run-time artifacts).
README.md: dead links (START_HERE, README_DEPLOYMENT, COMPLETE_DEPLOYMENT,
DEPLOYMENT_COMPLETE_FINAL) replaced with links to the five canonical
top-level docs + docs/ index.
2026-04-18 18:56:17 +00:00
If the script doesn't work, see [QUICKSTART.md ](QUICKSTART.md ) for step-by-step manual commands.
2025-12-23 16:19:10 -08:00
Docs: update all documentation and add overview
- README: add Frontend section, deploy script, docs links, status
- docs/README.md: new documentation overview (entry points, frontend, deployment)
- docs/EXPLORER_API_ACCESS.md: reference deploy-frontend-to-vmid5000.sh for frontend-only deploy
- docs/INDEX.md: add Frontend & Explorer section, fix Quick Start, Last Updated
- README_DEPLOYMENT: add docs/README, EXPLORER_API_ACCESS, deploy script, deployment guide
- frontend/FRONTEND_REVIEW.md: add post-review update (C1–L4 implemented)
Co-authored-by: Cursor <cursoragent@cursor.com>
2026-02-10 19:02:19 -08:00
## Frontend
2026-04-07 23:22:12 -07:00
- **Production (canonical target):** the current **Next.js standalone frontend ** in `frontend/src/` , built from `frontend/` with `npm run build` and deployed to VMID 5000 as a Node service behind nginx.
- **Canonical deploy script:** `./scripts/deploy-next-frontend-to-vmid5000.sh`
- **Canonical nginx wiring:** keep `/api` , `/api/config/*` , `/explorer-api/*` , `/token-aggregation/api/v1/*` , `/snap/` , and `/health` ; proxy `/` and `/_next/` to the frontend service using `deployment/common/nginx-next-frontend-proxy.conf` .
2026-04-12 06:33:54 -07:00
- **Legacy fallback only:** the static SPA (`frontend/public/index.html` + `explorer-spa.js` ) remains in-repo for compatibility/reference, but it is not a supported primary deployment target.
2026-04-07 23:22:12 -07:00
- **Architecture command center:** `frontend/public/chain138-command-center.html` — tabbed Mermaid topology (Chain 138 hub, network, stack, flows, cross-chain, cW Mainnet, off-chain, integrations). Linked from the SPA **More → Explore → Visual Command Center ** .
2026-04-12 06:33:54 -07:00
- **Legacy static deploy scripts:** `./scripts/deploy-frontend-to-vmid5000.sh` and `./scripts/deploy.sh` now fail fast with a deprecation message and point to the canonical Next.js deploy path.
Docs: update all documentation and add overview
- README: add Frontend section, deploy script, docs links, status
- docs/README.md: new documentation overview (entry points, frontend, deployment)
- docs/EXPLORER_API_ACCESS.md: reference deploy-frontend-to-vmid5000.sh for frontend-only deploy
- docs/INDEX.md: add Frontend & Explorer section, fix Quick Start, Last Updated
- README_DEPLOYMENT: add docs/README, EXPLORER_API_ACCESS, deploy script, deployment guide
- frontend/FRONTEND_REVIEW.md: add post-review update (C1–L4 implemented)
Co-authored-by: Cursor <cursoragent@cursor.com>
2026-02-10 19:02:19 -08:00
- **Frontend review & tasks:** [frontend/FRONTEND_REVIEW.md ](frontend/FRONTEND_REVIEW.md ), [frontend/FRONTEND_TASKS_AND_REVIEW.md ](frontend/FRONTEND_TASKS_AND_REVIEW.md )
2026-02-10 11:32:49 -08:00
## Documentation
2025-12-23 16:19:10 -08:00
chore: consolidate documentation — delete status/fix/progress cruft
Before: 335 tracked .md files; top level had 14 README-like docs;
docs/ contained ~234 files, most of them auto/LLM-generated status
reports (ALL_*_COMPLETE*, *_FIX*, DEPLOYMENT_*_FINAL*, etc.).
After: 132 tracked .md files. Repo now has exactly five top-level
docs: README.md, QUICKSTART.md, RUNBOOK.md, CONTRIBUTING.md,
CHANGELOG.md (moved up from docs/).
Keeper philosophy in docs/:
- API, CCIP (ops + security + receiver/router refs), Chainlist refs,
compliance, deployment (guides not status), database connection,
legal compliance, metamask integration, production checklist,
tiered-architecture implementation/setup, reusable-components plan,
token-mechanism doc, wrap-and-bridge operational reference, plus
docs/specs/** and docs/api/ / docs/openapi/ trees.
Deleted (git history preserves provenance):
- All 'ALL_*_COMPLETE*' / '*_FIX*' / '*_FIXED*' / '*_FINAL*' /
'*_STATUS*' / '*_PROGRESS*' / '*_SUMMARY*' files.
- BLOCKSCOUT_*_FIX / _CRASH / _INITIALIZATION / _SCHEMA / _YAML /
_SKIP / _NEXT_STEPS / _START_AND_BUILD / _DATABASE_CREDENTIALS
(the last contained passwords).
- CCIP_IMPLEMENTATION_* / CCIP_CURRENT_STATUS / CCIP_GAP_*
(gap analyses are not a sustained reference).
- NPMPLUS_CREDENTIALS_GUIDE.md (contained creds).
- LETSENCRYPT_CONFIGURATION_GUIDE.md (contained creds; will be
re-introduced as runbook content post-secrets-scrub).
- docs/diagnostic-reports/, docs/feature-flags/ (run-time artifacts).
README.md: dead links (START_HERE, README_DEPLOYMENT, COMPLETE_DEPLOYMENT,
DEPLOYMENT_COMPLETE_FINAL) replaced with links to the five canonical
top-level docs + docs/ index.
2026-04-18 18:56:17 +00:00
- **[QUICKSTART.md ](QUICKSTART.md )** — 5-minute bring-up for local development
- **[RUNBOOK.md ](RUNBOOK.md )** — Operational runbook for the live deployment
- **[CONTRIBUTING.md ](CONTRIBUTING.md )** — Contribution workflow and conventions
- **[CHANGELOG.md ](CHANGELOG.md )** — Release notes
- **[docs/README.md ](docs/README.md )** — Documentation index (API, architecture, CCIP, legal)
- **[docs/EXPLORER_API_ACCESS.md ](docs/EXPLORER_API_ACCESS.md )** — API access, CSP, frontend deploy
- **[deployment/DEPLOYMENT_GUIDE.md ](deployment/DEPLOYMENT_GUIDE.md )** — Full LXC/Nginx/Cloudflare deployment guide
2025-12-23 16:19:10 -08:00
2026-02-10 11:32:49 -08:00
## Architecture
2025-12-23 16:19:10 -08:00
2026-02-10 11:32:49 -08:00
- **Track 1 (Public):** RPC Gateway - No authentication required
- **Track 2 (Approved):** Indexed Explorer - Requires authentication
- **Track 3 (Analytics):** Analytics Dashboard - Requires Track 3+
- **Track 4 (Operator):** Operator Tools - Requires Track 4 + IP whitelist
2025-12-23 16:19:10 -08:00
2026-02-10 11:32:49 -08:00
## Configuration
fix(security): fail-fast on missing JWT_SECRET, harden CSP, strip hardcoded passwords
backend/api/rest/server.go:
- NewServer() now delegates to loadJWTSecret(), which:
- Rejects JWT_SECRET < 32 bytes (log.Fatal).
- Requires JWT_SECRET when APP_ENV=production or GO_ENV=production.
- Generates a 32-byte crypto/rand ephemeral secret in dev only.
- Treats rand.Read failure as fatal (removes the prior time-based
fallback that was deterministic and forgeable).
- Default Content-Security-Policy rewritten:
- Drops 'unsafe-inline' and 'unsafe-eval'.
- Drops private CIDRs (192.168.11.221:854[5|6]).
- Adds frame-ancestors 'none', base-uri 'self', form-action 'self'.
- CSP_HEADER is required in production; fatal if unset there.
backend/api/rest/server_security_test.go (new):
- Covers the three loadJWTSecret() paths (valid, whitespace-trimmed,
ephemeral in dev).
- Covers isProductionEnv() across APP_ENV / GO_ENV combinations.
- Asserts defaultDevCSP contains no unsafe directives or private CIDRs
and includes the frame-ancestors / base-uri / form-action directives.
scripts/*.sh:
- Removed '***REDACTED-LEGACY-PW***' default value from SSH_PASSWORD / NEW_PASSWORD in
7 helper scripts. Each script now fails with exit 2 and points to
docs/SECURITY.md if the password isn't supplied via env or argv.
EXECUTE_DEPLOYMENT.sh, EXECUTE_NOW.sh:
- Replaced hardcoded DB_PASSWORD='***REDACTED-LEGACY-PW***' with a ':?' guard that
aborts with a clear error if DB_PASSWORD (and, for EXECUTE_DEPLOYMENT,
RPC_URL) is not exported. Other env vars keep sensible non-secret
defaults via ${VAR:-default}.
README.md:
- Removed the hardcoded Database Password / RPC URL lines. Replaced with
an env-variable reference table pointing at docs/SECURITY.md and
docs/DATABASE_CONNECTION_GUIDE.md.
docs/DEPLOYMENT.md:
- Replaced 'PASSWORD: SSH password (default: ***REDACTED-LEGACY-PW***)' with a
required-no-default contract and a link to docs/SECURITY.md.
docs/SECURITY.md (new):
- Full secret inventory keyed to the env variable name and the file that
consumes it.
- Five-step rotation checklist covering the Postgres role, the Proxmox
VM SSH password, JWT_SECRET, vendor API keys, and a gitleaks-based
history audit.
- Explicit note that merging secret-scrub PRs does NOT invalidate
already-leaked credentials; rotation is the operator's responsibility.
Verification:
- go build ./... + go vet ./... pass clean.
- Targeted tests (LoadJWTSecret*, IsProduction*, DefaultDevCSP*) pass.
Advances completion criterion 2 (Secrets & config hardened). Residual
leakage from START_HERE.md / LETSENCRYPT_CONFIGURATION_GUIDE.md is
handled by PR #2 (doc consolidation), which deletes those files.
2026-04-18 19:02:27 +00:00
All secrets and environment-specific endpoints are read from environment
variables — nothing is committed to this repo. See
[docs/SECURITY.md ](docs/SECURITY.md ) for the rotation checklist and
[docs/DATABASE_CONNECTION_GUIDE.md ](docs/DATABASE_CONNECTION_GUIDE.md ) for
setup.
| Variable | Purpose | Example |
|---|---|---|
| `DB_USER` | Postgres role | `explorer` |
| `DB_PASSWORD` | Postgres password (required, no default) | — |
| `DB_HOST` | Postgres host | `localhost` |
| `DB_NAME` | Database name | `explorer` |
| `RPC_URL` | Besu / execution client RPC endpoint | `http://rpc.internal:8545` |
| `CHAIN_ID` | EVM chain ID | `138` |
| `PORT` | API listen port | `8080` |
| `JWT_SECRET` | HS256 signing key (≥32 bytes, required in prod) | — |
| `CSP_HEADER` | Content-Security-Policy header (required in prod) | — |
2025-12-23 16:19:10 -08:00
2026-03-02 12:14:13 -08:00
## Reusable libs (extraction)
Reusable components live under `backend/libs/` and `frontend/libs/` and may be split into separate repos and linked via **git submodules ** . Clone with submodules:
```bash
git clone --recurse-submodules <repo-url>
# or after clone:
git submodule update --init --recursive
```
See [docs/REUSABLE_COMPONENTS_EXTRACTION_PLAN.md ](docs/REUSABLE_COMPONENTS_EXTRACTION_PLAN.md ) for the full plan.
## Testing
- **All unit/lint:** `make test` — backend `go test ./...` and frontend `npm test` (lint + type-check).
- **Backend:** `cd backend && go test ./...` — API tests run without a real DB; health returns 200 or 503, DB-dependent endpoints return 503 when DB is nil.
- **Frontend:** `cd frontend && npm run build` or `npm test` — Next.js build (includes lint) or lint + type-check only.
2026-04-10 12:52:17 -07:00
- **E2E:** `make test-e2e` or `npm run e2e` from repo root — Playwright tests against https://blockscout.defi-oracle.io by default; use `EXPLORER_URL=http://localhost:3000` for local.
2026-03-02 12:14:13 -08:00
2026-02-10 11:32:49 -08:00
## Status
2025-12-23 16:19:10 -08:00
2026-02-10 11:32:49 -08:00
✅ All implementation complete
✅ All scripts ready
✅ All documentation complete
2026-03-02 12:14:13 -08:00
✅ Frontend: C1– –
✅ CI: backend + frontend tests; lint job runs `go vet` , `npm run lint` , `npm run type-check`
✅ Tests: `make test` , `make test-e2e` , `make build` all pass
2025-12-23 16:19:10 -08:00
2026-02-10 11:32:49 -08:00
**Ready for deployment!**
