AKharytonchyk
diff --git a/‎.env.example‎
Lines changed: 78 additions & 0 deletions b/‎.env.example‎
Lines changed: 78 additions & 0 deletions
diff --git a/‎.env.local.example‎
Lines changed: 39 additions & 0 deletions b/‎.env.local.example‎
Lines changed: 39 additions & 0 deletions
diff --git a/‎README.md‎
Lines changed: 118 additions & 7 deletions b/‎README.md‎
Lines changed: 118 additions & 7 deletions
@@ -0,0 +1,78 @@
+# GitHub PR Dashboard Environment Variables
+# Copy this file to .env.local and update the values as needed
+
+# ================================
+# GitHub API Configuration
+# ================================
+
+# GitHub API base URL
+# Default: https://api.github.com
+# For GitHub Enterprise Server, use your enterprise URL (e.g., https://ghe.company.com/api/v3)
+VITE_GITHUB_API_URL=https://api.github.com
+
+# GitHub Avatar URL (optional - will be auto-detected from API URL if not set)
+# Default: https://avatars.githubusercontent.com (for github.com)
+# For GitHub Enterprise Server: https://avatars.ghe.company.com
+# VITE_GITHUB_AVATAR_URL=https://avatars.githubusercontent.com
+
+# GitHub Base URL (optional - will be auto-detected from API URL if not set)
+# Default: https://github.com (for github.com)
+# For GitHub Enterprise Server: https://ghe.company.com
+# VITE_GITHUB_BASE_URL=https://github.com
+
+# ================================
+# Rate Limiting Configuration
+# ================================
+
+# Maximum number of requests per minute to GitHub API
+# Default: 200 (conservative limit to avoid rate limiting)
+# GitHub's rate limit for authenticated requests is 5000/hour (83/minute)
+# Adjust based on your usage patterns and GitHub plan
+# Range: 1-5000
+VITE_MAX_REQUESTS_PER_MINUTE=200
+
+# ================================
+# Development Configuration
+# ================================
+
+# Node environment (automatically set by Vite)
+# Values: development | production | test
+# This is automatically handled by Vite and doesn't need to be set manually
+# NODE_ENV=development
+
+# ================================
+# Optional Configuration
+# ================================
+
+# Enable debug logging (not currently implemented but reserved for future use)
+# VITE_DEBUG=false
+
+# Custom theme configuration (not currently implemented but reserved for future use)
+# VITE_DEFAULT_THEME=light
+
+# Session timeout in milliseconds (not currently implemented but reserved for future use)
+# Default is 8 hours (28800000 ms) as set in TokenManager
+# VITE_SESSION_TIMEOUT=28800000
+
+# ================================
+# Production Deployment Notes
+# ================================
+
+# For production deployments:
+# 1. Set VITE_GITHUB_API_URL to your GitHub instance
+# 2. Adjust VITE_MAX_REQUESTS_PER_MINUTE based on your expected load
+# 3. Ensure HTTPS is enabled for secure token transmission
+# 4. Configure proper CSP headers as documented in docs/SECURITY.md
+
+# For GitHub Enterprise Server:
+# VITE_GITHUB_API_URL=https://ghe.your-company.com/api/v3
+# VITE_GITHUB_AVATAR_URL=https://avatars.ghe.your-company.com
+# VITE_GITHUB_BASE_URL=https://ghe.your-company.com
+
+# Example for ACME GitHub Enterprise:
+# VITE_GITHUB_API_URL=https://ghe.acme.com/api/v3
+# VITE_GITHUB_AVATAR_URL=https://avatars.ghe.acme.com
+# VITE_GITHUB_BASE_URL=https://ghe.acme.com
+
+# For high-traffic deployments, you may increase the rate limit:
+# VITE_MAX_REQUESTS_PER_MINUTE=500
@@ -0,0 +1,39 @@
+# Local Development Environment
+# This file is for local development only and will be ignored by git
+
+# ================================
+# GitHub API Configuration
+# ================================
+
+# For local development, you can use the default GitHub API
+VITE_GITHUB_API_URL=https://api.github.com
+
+# For ACME GitHub Enterprise (uncomment to use):
+# Replace 'acme.com' with your actual GitHub Enterprise domain
+# VITE_GITHUB_API_URL=https://ghe.acme.com/api/v3
+# VITE_GITHUB_AVATAR_URL=https://avatars.ghe.acme.com
+# VITE_GITHUB_BASE_URL=https://ghe.acme.com
+
+# ================================
+# Development Rate Limiting
+# ================================
+
+# For development, you might want a lower rate limit to test rate limiting behavior
+# Or a higher limit if you're doing intensive testing
+VITE_MAX_REQUESTS_PER_MINUTE=100
+
+# ================================
+# Development Notes
+# ================================
+
+# 1. This file should be copied to .env.local for your local development
+# 2. .env.local is gitignored and won't be committed to the repository
+# 3. Values in .env.local override values in .env.example
+# 4. Vite automatically loads .env.local in development mode
+
+# For testing with GitHub Enterprise Server:
+# VITE_GITHUB_API_URL=https://ghe.your-company.com/api/v3
+# VITE_GITHUB_AVATAR_URL=https://avatars.ghe.your-company.com
+# VITE_GITHUB_BASE_URL=https://ghe.your-company.com
+
+# Note: Avatar and Base URLs are auto-detected from API URL if not specified
@@ -6,15 +6,23 @@ The GitHub PR Dashboard is a comprehensive tool designed to streamline the monit
 
 [Go to demo -->](https://akharytonchyk.github.io/git-pull-request-dashboard/)
 
+## Documentation
+
+- 📖 [Deployment Guide](docs/DEPLOYMENT.md) - Production deployment and CSP configuration
+- 🔒 [Security Guidelines](docs/SECURITY.md) - Token management and security best practices  
+- ⚡ [Performance Guidelines](docs/PERFORMANCE.md) - Optimization and caching strategies
+
 ## Features
 
-- **Connect with GitHub**: Securely connect using GitHub Personal Access Tokens (PAT).
+- **Secure GitHub Integration**: Securely connect using GitHub Personal Access Tokens (PAT) with enhanced token management and automatic expiration.
 - **Organization and Repository Selection**: Choose which organizations and repositories you want to monitor within the dashboard.
 - **Pull Request Overview**: Get a consolidated view of all pull requests across your selected repositories.
-- **Issue Overview**: Get a consolidate view of all issues actross you selected repositories and organizations.
-- **Dark Mode**: Toggle between light and dark themes.
+- **Issue Overview**: Get a consolidated view of all issues across your selected repositories and organizations.
+- **Dark Mode**: Toggle between light and dark themes with persistent user preferences.
 - **Settings Management**: Easily manage your settings within the app. Setting sharing is now available via raw setting toggle.
 - **Repository Focus View**: Access repository view and navigate to see PRs and Issues for this particular repository.
+- **Enhanced Error Handling**: User-friendly error messages and notifications with automatic retry mechanisms.
+- **Performance Optimizations**: Efficient caching, rate limiting, and lazy loading for improved user experience.
 
 ## UI Example
 
@@ -66,37 +74,140 @@ Follow these instructions to get your GitHub PR Dashboard up and running on your
    cd github-pr-dashboard
    ```
 
-3. Install the necessary dependencies:
+3. Configure environment variables (optional):
+
+   ```bash
+   cp .env.example .env.local
+   ```
+   
+   Edit `.env.local` to customize API endpoints and rate limiting if needed. See [Environment Configuration](#environment-configuration) for details.
+
+4. Install the necessary dependencies:
 
    ```bash
    npm install
    ```
 
-4. Start the application:
+5. Start the application:
 
    ```bash
    npm start
    ```
 
-   This will run the app in development mode. Open [http://localhost:3000](http://localhost:3000) to view it in the browser.
+   This will run the app in development mode. Open [http://localhost:5173](http://localhost:5173) to view it in the browser.
+
+## Security and Performance
+
+This application implements enterprise-grade security and performance optimizations. For detailed information, see:
+
+- 🔒 **[Security Guidelines](docs/SECURITY.md)** - Token security, CSP configuration, and best practices
+- ⚡ **[Performance Guidelines](docs/PERFORMANCE.md)** - Caching strategies, optimization techniques, and monitoring
+- 🚀 **[Deployment Guide](docs/DEPLOYMENT.md)** - Production deployment with dynamic CSP and environment configuration
+
+## Environment Configuration
+
+The application can be customized using environment variables. Copy `.env.example` to `.env.local` and modify as needed:
+
+```bash
+cp .env.example .env.local
+```
+
+### Available Variables
+
+| Variable | Default | Description |
+|----------|---------|-------------|
+| `VITE_GITHUB_API_URL` | `https://api.github.com` | GitHub API endpoint. Use your GitHub Enterprise Server URL if applicable |
+| `VITE_GITHUB_AVATAR_URL` | Auto-detected | GitHub avatar URL (optional - auto-detected from API URL) |
+| `VITE_GITHUB_BASE_URL` | Auto-detected | GitHub base URL (optional - auto-detected from API URL) |
+| `VITE_MAX_REQUESTS_PER_MINUTE` | `200` | Rate limit for API requests (1-5000) |
+
+### Examples
+
+**GitHub.com (default):**
+```env
+VITE_GITHUB_API_URL=https://api.github.com
+VITE_MAX_REQUESTS_PER_MINUTE=200
+```
+
+**ACME GitHub Enterprise:**
+```env
+VITE_GITHUB_API_URL=https://ghe.acme.com/api/v3
+VITE_GITHUB_AVATAR_URL=https://avatars.ghe.acme.com
+VITE_GITHUB_BASE_URL=https://ghe.acme.com
+VITE_MAX_REQUESTS_PER_MINUTE=300
+```
+
+**GitHub Enterprise Server:**
+```env
+VITE_GITHUB_API_URL=https://ghe.your-company.com/api/v3
+VITE_GITHUB_AVATAR_URL=https://avatars.ghe.your-company.com
+VITE_GITHUB_BASE_URL=https://ghe.your-company.com
+VITE_MAX_REQUESTS_PER_MINUTE=300
+```
+
+**High-traffic deployment:**
+```env
+VITE_GITHUB_API_URL=https://api.github.com
+VITE_MAX_REQUESTS_PER_MINUTE=500
+```
+
+### Features
+
+- **Auto-detection**: Avatar and base URLs are automatically derived from the API URL if not specified
+- **Dynamic CSP**: Content Security Policy headers are automatically generated based on your GitHub environment
+- **Validation**: All URLs are validated during application startup
 
 ## How to Use
 
 ### Setting Up Your Personal Access Token
 
-1. Log in to your GitHub account.Fv
+1. Log in to your GitHub account.
 2. Navigate to Settings > Developer settings > Personal access tokens > Generate new token.
 3. Select `repo` and `read:org` scopes.
 4. Generate the token and copy it.
 
+**Security Note**: Your token is stored securely in session storage with automatic expiration for enhanced security.
+
 ### Connecting Your GitHub Account
 
 - On the GitHub PR Dashboard, enter your PAT and connect your GitHub account.
+- The application will validate your token and provide feedback on successful authentication.
+- Your authentication session will automatically expire for security purposes.
 
 ### Selecting Repositories
 
 - Choose the organizations and repositories you want to monitor through the dashboard.
 
+## Troubleshooting
+
+### Common Issues
+
+**Authentication Failures**
+- Verify your token has the correct permissions (`repo` and `read:org`)
+- Check if your token has expired
+- Ensure you're connected to the internet
+
+**No Pull Requests Showing**
+- Confirm you've selected repositories in the settings
+- Check if the repositories have any open pull requests
+- Verify your token has access to the selected repositories
+
+**Rate Limiting**
+- The application automatically handles GitHub API rate limits
+- If you encounter rate limiting, wait a few minutes and try again
+- Consider reducing the number of monitored repositories if the issue persists
+
+**Performance Issues**
+- Clear your browser cache and session storage
+- Reduce the number of monitored repositories
+- Check your internet connection speed
+- See [Performance Guidelines](docs/PERFORMANCE.md) for optimization tips
+
+**Need Help?**
+- 📖 [Deployment Guide](docs/DEPLOYMENT.md) for production setup
+- 🔒 [Security Guidelines](docs/SECURITY.md) for token and security issues
+- ⚡ [Performance Guidelines](docs/PERFORMANCE.md) for performance optimization
+
 ## Contributing
 
 We welcome contributions to the GitHub PR Dashboard! Please read our [Contributing Guide](CONTRIBUTING.md) (when it will be available) for details on our code of conduct and the process for submitting pull requests to us.