← Back to Documentation

Infrastructure & Deployment

Autofocus runs on a modern cloud infrastructure combining AWS Amplify for hosting, GitHub Actions for CI/CD, and Supabase for backend services. This setup ensures scalability, reliability, and fast global content delivery.

🚀 Deployment Pipeline

Git-to-Production Workflow

1. Developer pushes to main branch
2. GitHub Actions triggers build process
3. AWS Amplify detects repository changes
4. Next.js application builds with optimization
5. Static assets deployed to global CDN
6. Live site updated automatically

Deployment Triggers

  • • Push to main branch
  • • Pull request merges
  • • Manual deployment triggers
  • • Scheduled deployments (if configured)

Build Optimization

  • • Automatic code splitting
  • • Image optimization and WebP conversion
  • • Bundle size analysis
  • • Tree shaking for unused code

☁️ AWS Amplify Configuration

Build Configuration

Amplify uses the amplify.yml file to define build steps, artifact locations, and caching strategies.

# amplify.yml
version: 1
frontend:
  phases:
    preBuild:
      commands:
        - npm ci                    # Install dependencies
    build:
      commands:
        - npm run build           # Next.js production build
  artifacts:
    baseDirectory: .next         # Build output directory
    files:
      - '**/*'                    # Include all build artifacts
  cache:
    paths:
      - node_modules/**/*        # Cache dependencies
      - .next/cache/**/*         # Cache Next.js build cache

Environment Configuration

Environment Variables

# Supabase Configuration
NEXT_PUBLIC_SUPABASE_URL
NEXT_PUBLIC_SUPABASE_ANON_KEY
SUPABASE_SERVICE_ROLE_KEY
# Application Settings
NEXT_PUBLIC_APP_URL
NODE_ENV

Build Settings

  • • Node.js 18.x runtime
  • • npm for package management
  • • Next.js 14 framework detection
  • • Automatic HTTPS certificate
  • • Global CDN distribution

Custom Domain & SSL

Domain Configuration

Primary: autofoc.us
Redirect: www.autofoc.us → autofoc.us
SSL: Automatic certificate management
DNS: Route 53 integration

Performance Features

  • • HTTP/2 and HTTP/3 support
  • • Gzip and Brotli compression
  • • Edge caching for static assets
  • • Global content delivery network
  • • Automatic security headers

🔄 GitHub Actions CI/CD

Automated Workflows

GitHub Actions handle continuous integration, testing, and deployment triggers to ensure code quality and seamless deployments.

Build & Test Workflow

# .github/workflows/ci.yml
name: CI/CD Pipeline
on:
  push:
    branches: [main, develop]
  pull_request:
    branches: [main]

jobs:
  test:
    runs-on: ubuntu-latest
    steps:
      - uses: actions/checkout@v3
      - uses: actions/setup-node@v3
        with:
          node-version: '18'
          cache: 'npm'
      
      - name: Install dependencies
        run: npm ci
      
      - name: Run linter
        run: npm run lint
      
      - name: Run type check
        run: npm run type-check
      
      - name: Build application
        run: npm run build
        env:
          NEXT_PUBLIC_SUPABASE_URL: ${{ secrets.NEXT_PUBLIC_SUPABASE_URL }}
          NEXT_PUBLIC_SUPABASE_ANON_KEY: ${{ secrets.NEXT_PUBLIC_SUPABASE_ANON_KEY }}
      
      - name: Run E2E tests
        run: npm run cypress:run

Deployment Trigger

  deploy:
    needs: test
    runs-on: ubuntu-latest
    if: github.ref == 'refs/heads/main'
    steps:
      - name: Trigger Amplify Deployment
        run: |
          curl -X POST \
            -H "Authorization: token ${{ secrets.AMPLIFY_WEBHOOK_TOKEN }}" \
            "${{ secrets.AMPLIFY_WEBHOOK_URL }}"
      
      - name: Wait for deployment
        run: |
          echo "Deployment triggered. Check AWS Amplify console for status."
      
      - name: Notify Slack
        if: always()
        uses: 8398a7/action-slack@v3
        with:
          status: ${{ job.status }}
          webhook_url: ${{ secrets.SLACK_WEBHOOK }}

Quality Gates

Pre-Deployment Checks

  • • ESLint code quality checks
  • • TypeScript type validation
  • • Unit test suite execution
  • • Build success verification
  • • Bundle size analysis

Post-Deployment Validation

  • • End-to-end test execution
  • • Lighthouse performance audit
  • • Accessibility compliance checks
  • • SSL certificate validation
  • • Health check endpoint monitoring

📊 Performance & Monitoring

Performance Optimization

Next.js Optimizations

  • • Image optimization with WebP/AVIF
  • • Automatic code splitting
  • • Static generation where possible
  • • Dynamic imports for heavy components
  • • Bundle analyzer integration

CDN & Caching

  • • Global edge locations
  • • Static asset caching (1 year)
  • • HTML caching with invalidation
  • • API response caching
  • • Browser cache optimization

Monitoring & Analytics

AWS CloudWatch

• Build time and success rate
• Deployment frequency
• Error rate monitoring
• Performance metrics
• Custom log analysis

Application Monitoring

• Real user monitoring (RUM)
• Core Web Vitals tracking
• JavaScript error reporting
• API response time monitoring
• User journey analytics

Next.js Configuration

// next.config.js - Production optimizations
const nextConfig = {
  productionBrowserSourceMaps: true,    // Enable source maps for debugging
  reactStrictMode: true,                // Strict mode for development
  output: 'standalone',                 // Optimized for serverless deployment
  
  webpack: (config, { isServer }) => {
    config.experiments = { 
      ...config.experiments, 
      topLevelAwait: true                // Enable top-level await
    }
    
    // Client-side optimizations
    if (!isServer) {
      config.resolve.fallback = {
        fs: false,
        path: false,
        os: false,
      }
    }
    
    return config
  },
  
  images: {
    unoptimized: true,                  // Handled by Amplify
    remotePatterns: [
      {
        protocol: 'https',
        hostname: 'i.imgur.com',
        pathname: '/**',
      },
      {
        protocol: 'https',
        hostname: 'axldgpriuvgigpfwqxrg.supabase.co',
        pathname: '/**',
      }
    ]
  }
}

📈 Scaling & High Availability

Horizontal Scaling

Frontend Scaling

  • • Automatic global distribution via CDN
  • • Edge computing for dynamic content
  • • Serverless function scaling
  • • Regional failover capabilities
  • • Traffic-based auto-scaling

Backend Scaling

  • • Supabase connection pooling
  • • Read replica distribution
  • • Database query optimization
  • • API rate limiting and throttling
  • • Caching layer optimization

Disaster Recovery

Backup Strategy

Database: Automatic daily backups with point-in-time recovery (Supabase)
Code: Git repository with multiple remote backups
Assets: S3 bucket replication across regions
Configuration: Infrastructure as Code with version control
Recovery Time: Target RTO < 1 hour, RPO < 15 minutes

🔒 Security & Compliance

Infrastructure Security

  • HTTPS Only: TLS 1.3 with automatic certificate renewal
  • Security Headers: HSTS, CSP, X-Frame-Options
  • Network Security: WAF protection and DDoS mitigation
  • Access Control: IAM roles with least privilege
  • Vulnerability Scanning: Automated dependency checks

Data Protection

  • Encryption at Rest: AES-256 for all stored data
  • Encryption in Transit: TLS 1.3 for all connections
  • Secret Management: AWS Secrets Manager integration
  • Data Isolation: Row-level security policies
  • Audit Logging: Comprehensive access logs

🚀 Explore More

Advanced Features →
Analytics, admin tools, and platform extensibility
Architecture Overview →
High-level system architecture and tech stack