This document outlines the technical architecture of a Next.js, Expo, and Supabase template for building full-stack web and mobile applications. This project provides a comprehensive foundation for building cross-platform applications with a modern tech stack.
graph TB
subgraph "Web Platform"
direction TB
subgraph "Next.js Application"
W[Web Frontend<br/>shadcn/ui]
A[API Routes]
SA[Server Actions]
end
end
subgraph "Mobile Platform"
M[Expo Mobile App<br/>Tamagui]
end
subgraph "Backend Services"
S[Supabase]
subgraph "Supabase Services"
Auth[Authentication]
DB[(PostgreSQL)]
Storage[File Storage]
RT[Realtime Engine]
Edge[Edge Functions]
end
end
W --> A
W --> SA
M --> A
W --> S
M --> S
A --> S
SA --> S
Auth --> DB
Storage --> DB
RT --> DB
Edge --> DB
classDef nextjs fill:#0070f3,color:#fff;
classDef expo fill:#000,color:#fff;
classDef supabase fill:#3ECF8E,color:#fff;
class W,A,SA nextjs;
class M expo;
class S,Auth,DB,Storage,RT,Edge supabase;
- Framework: Next.js 15 with App Router
- UI Library: shadcn/ui for consistent design
- State Management: Legend State for global state
- Authentication: Supabase Auth with SSR support
- API Integration: Direct Supabase client + API routes
- Framework: Expo with Expo Router
- UI Library: Tamagui for native UI components
- State Management: Legend State for global state
- Authentication: Supabase Auth with secure storage
- API Integration: Supabase client + shared API layer
- Handles complex business logic
- Manages data aggregation and transformation
- Provides unified API for both web and mobile
- Implements rate limiting and request validation
- Authentication: JWT-based auth with social providers
- Database: PostgreSQL with RLS policies
- Storage: File storage with access controls
- Realtime: WebSocket subscriptions for live updates
- Edge Functions: Serverless compute for specific tasks
- Shared state management between web components and mobile components
- Persistent storage capabilities
- Type-safe state definitions
- Real-time state synchronization
// Authentication Store
export const authStore = observable({
user: null as User | null,
session: null as Session | null,
isLoading: false,
});
// Notifications Store
export const notificationsStore = observable({
notifications: [] as Notification[],
unreadCount: 0,
isOpen: false,
});-
User Interactions
- UI events trigger state updates
- State changes propagate through Legend State
- API calls initiated through services layer
-
API Communication
- REST endpoints for CRUD operations
- WebSocket connections for real-time updates
- File uploads through Supabase storage
-
Data Persistence
- PostgreSQL for structured data
- Supabase storage for files and media
- Local storage for offline capabilities
- User signs in through Supabase Auth
- JWT tokens stored securely
- Tokens refreshed automatically
- Session management handled by Supabase
- Row Level Security (RLS) in PostgreSQL
- Role-based access control (RBAC)
- File access permissions in Storage
- API route protection
apps/
├── web-app/
│ ├── app/ # Next.js app router
│ ├── components/ # React components
│ ├── services/ # API services
│ └── store/ # Legend State setup
│
├── mobile-app/
│ ├── app/ # Expo router
│ ├── components/ # React Native components
│ ├── services/ # API services
│ └── store/ # Legend State setup
│
├── supabase/
│ ├── migrations/ # Database migrations
│ ├── functions/ # Edge functions
│ └── seed/ # Seed data
│
└── shared/
├── types/ # Shared TypeScript types
├── utils/ # Shared utilities
└── store/ # Shared state definitions
-
Local Development
- Supabase local instance
- Next.js development server
- Expo development server
-
Testing Strategy
- Unit tests for utilities
- Integration tests for API routes
- E2E tests for critical flows
-
Deployment Pipeline
- Staging environment for testing
- Production deployment through Coolify
- Database migrations through Supabase CLI