Skip to content
/ museum-app Public

A web platform for managing, sharing, and cataloging plant species from the Herbário Virtual Felisberto Camargo (UFRA), with taxonomic search, user roles, and modern UI.

museum-app-taupe.vercel.app

License

MIT license
1 star 0 forks Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

dunseen/museum-app

BranchesTags

Repository files navigation

🌿 Herbário Virtual Felisberto Camargo (Museum App)

Next.js React TypeScript TailwindCSS PWA CSP Docker Monitoring

📘 About

A modern web platform for the Felisberto Camargo Herbarium at the Federal Rural University of the Amazon (UFRA). This application serves as a digital catalog for plant species management, enabling researchers, students, and the public worldwide to explore and study the herbarium's collection.

Built as an undergraduate thesis (TCC) in Information Systems, the platform combines scientific rigor with modern web technologies to make botanical research more accessible and collaborative.

✨ Key Features

🔍 Public Herbarium Interface

  • Browse and search plant species with advanced filtering
  • View detailed taxonomic hierarchies and botanical characteristics
  • Interactive maps showing collection locations (Leaflet integration)
  • High-resolution specimen images with zoom capabilities
  • QR code generation for specimen labels
  • Responsive design optimized for mobile and desktop
  • Progressive Web App (PWA): Install on any device for offline-capable, app-like experience

🛠️ Administrative Dashboard

  • Species Management: CRUD operations with image upload (MinIO integration)
  • Taxonomy System: Hierarchical taxonomy management with parent-child relationships
  • Characteristics: Define and assign botanical characteristics to species
  • User Management: Role-based access control (Admin, Editor, Operator, User)
  • Change Request System: Review and approve/reject modifications with diff visualization
  • Activity Logs: Track all changes with detailed audit trails
  • Data Export: Export species data to PDF with QR codes

🔐 Security & Performance

  • Content Security Policy (CSP): Strict CSP headers with configurable sources
  • NextAuth.js: Secure authentication with JWT and refresh token rotation
  • CASL: Fine-grained permission-based access control
  • Server Components: Optimized performance with React Server Components
  • Token Management: Automatic token refresh with request queuing
  • Security Headers: X-Frame-Options, X-Content-Type-Options, CSP, and more

📊 Monitoring & Observability

  • Grafana Faro: Real-time frontend monitoring and error tracking
  • Performance Tracking: Web Vitals and custom metrics
  • Error Boundaries: Graceful error handling with detailed logging

📱 Progressive Web App (PWA)

  • Installable: Add to home screen on mobile and desktop devices
  • Offline Support: Service worker for basic offline functionality
  • App-like Experience: Standalone display mode without browser UI
  • Fast Loading: Optimized assets and caching strategies
  • Responsive Icons: Adaptive icons for different platforms (192x192, 512x512)
  • Manifest Configuration: Custom theme colors, orientation, and categories

🏗️ Architecture

Tech Stack

Frontend Framework

  • Next.js 15 - App Router with Turbopack
  • React 19 - Server & Client Components
  • TypeScript 5.9 - Type safety

State & Data Management

  • TanStack Query v5 - Server state management with caching
  • React Hook Form - Form management with Zod validation
  • Axios - HTTP client with interceptors

UI & Styling

  • Tailwind CSS 3.4 - Utility-first CSS
  • shadcn/ui - Radix UI components
  • Lucide React - Icon library
  • next-themes - Dark mode support

Maps & Visualization

  • React Leaflet - Interactive maps
  • Recharts - Data visualization
  • html2canvas + jsPDF - PDF generation

Authentication & Authorization

  • NextAuth.js 4.24 - Authentication
  • CASL - Permission management

Monitoring

  • Grafana Faro - Frontend observability

Architecture Patterns

src/
├── app/                      # Next.js App Router
│   ├── (auth)/              # Authentication routes (login, password reset)
│   ├── museu/herbario/      # Public herbarium interface
│   └── dashboard/           # Protected admin dashboard
│       ├── collection/      # Species, taxonomy, characteristics
│       ├── system/          # Change requests & activity logs
│       └── users/           # User management
├── components/              # Reusable UI components
│   └── ui/                 # shadcn/ui components
├── lib/                     # Utilities & configurations
│   ├── casl.ts             # Permission definitions
│   └── react-query.ts      # Query client setup
├── server/                  # Server utilities
│   ├── api.ts              # Axios instance with interceptors
│   └── auth.ts             # NextAuth configuration
└── types/                   # TypeScript type definitions

Key Principles:

  • Server-first: Pages use React Server Components for optimal performance
  • Progressive Enhancement: Client components only where needed
  • Type Safety: End-to-end TypeScript with Zod schemas
  • Separation of Concerns: API hooks, formatters, and sections in dedicated files

🚀 Getting Started

Prerequisites

  • Node.js 20.x or higher
  • Yarn 1.22.x
  • Docker (optional, for containerized deployment)

Environment Variables

Create a .env file based on .env.example:

# App URLs
NEXT_PUBLIC_APP_URL=http://localhost:3000
NEXT_PUBLIC_API_URL=http://localhost:3333/api/v1

# NextAuth
NEXTAUTH_SECRET=your-secret-key-here
NEXTAUTH_URL=http://localhost:3000

# Grafana Faro (optional)
NEXT_PUBLIC_FARO_URL=https://faro-collector-prod-sa-east-1.grafana.net/collect/...

Local Development

# Install dependencies
yarn install

# Run development server with Turbopack
yarn dev

# Open http://localhost:3000

Build for Production

# Run linter
yarn lint

# Build optimized production bundle
yarn build

# Start production server
yarn start

🐳 Docker Deployment

Build Image

docker build -t museum-app \
  --build-arg NEXTAUTH_SECRET=your-secret \
  --build-arg NEXTAUTH_URL=https://your-domain.com \
  --build-arg NEXT_PUBLIC_API_URL=https://api.your-domain.com/api/v1 \
  --build-arg NEXT_PUBLIC_APP_URL=https://your-domain.com .

Run Container

docker run -p 3000:3000 \
  -e NEXTAUTH_SECRET=your-secret \
  -e NEXTAUTH_URL=https://your-domain.com \
  -e NEXT_PUBLIC_API_URL=https://api.your-domain.com/api/v1 \
  -e NEXT_PUBLIC_APP_URL=https://your-domain.com \
  museum-app

The Dockerfile uses Next.js standalone output for minimal image size and runs as a non-root user for enhanced security.

🔒 Security Features

Content Security Policy (CSP)

The application implements a strict CSP with configurable sources in next.config.js:

const CSP_SOURCES = {
  default: ["'self'"],
  script: [
    "'self'",
    "'unsafe-eval'",
    "'unsafe-inline'",
    'https://static.cloudflareinsights.com',
  ],
  style: ["'self'", "'unsafe-inline'", 'https://fonts.googleapis.com'],
  img: [
    "'self'",
    'data:',
    'blob:',
    'https://herb-storage-api.dlima-consulting.com',
  ],
  // ... more directives
};

Security Headers

  • Content-Security-Policy: Prevents XSS and data injection
  • X-Frame-Options: DENY (prevents clickjacking)
  • X-Content-Type-Options: nosniff
  • Referrer-Policy: strict-origin-when-cross-origin
  • Permissions-Policy: Restricts browser features

Authentication

  • JWT-based authentication with refresh tokens
  • Automatic token rotation on expiry
  • Request queue during token refresh to prevent race conditions
  • Secure session storage with HttpOnly cookies

📦 Key Dependencies

Package Version Purpose
next 15.4.7 React framework
react 19.2.0 UI library
@tanstack/react-query 5.90.11 Server state management
next-auth 4.24.13 Authentication
axios 1.13.2 HTTP client
react-hook-form 7.67.0 Form management
zod 3.25.76 Schema validation
@casl/ability 6.7.3 Authorization
tailwindcss 3.4.18 CSS framework
leaflet 1.9.4 Maps
@grafana/faro-web-sdk 1.19.0 Monitoring

🎨 Recent Updates

Version 1.0.0 (November 2025)

New Features:

  • ✅ Change Request System with diff visualization
  • ✅ Activity logs with detailed audit trails
  • ✅ Advanced filtering (characteristics + taxonomy)
  • ✅ QR code generation for specimens
  • ✅ PDF export functionality
  • ✅ Dark mode support
  • ✅ Grafana Faro integration for monitoring
  • ✅ Interactive maps with geolocation

Improvements:

  • ✅ Refactored components for better maintainability (formatters, sections)
  • ✅ Enhanced CSP configuration with structured sources
  • ✅ Improved type safety across all modules
  • ✅ Optimized formatters to prevent object stringification
  • ✅ Better error handling and validation

Performance:

  • ✅ Server Components for faster initial loads
  • ✅ Turbopack for faster development builds
  • ✅ Image optimization with Next.js Image
  • ✅ React Query caching strategies

🤝 Contributing

This is an academic project developed as part of a TCC. Contributions are welcome for:

  • Bug fixes
  • Documentation improvements
  • Feature enhancements
  • Security improvements

Please open an issue first to discuss proposed changes.

👥 Contributors

Davys Lima
Davys Lima
📧 💻 		Denis Charles
Denis Charles
📧 💻

📄 License

This project is licensed under the MIT License - see the LICENSE file for details.

🔗 Related Projects

📞 Contact

For questions, suggestions, or collaboration opportunities:

  • Open an issue on GitHub
  • Contact the maintainers via email

Made with ❤️ for UFRA's Felisberto Camargo Herbarium

About

A web platform for managing, sharing, and cataloging plant species from the Herbário Virtual Felisberto Camargo (UFRA), with taxonomic search, user roles, and modern UI.

museum-app-taupe.vercel.app

Topics

museum webapp herbarium museu herbario

Resources

Readme

License

MIT license
Activity

Stars

1 star

Watchers

1 watching

Forks

0 forks
Report repository

Releases 1

v1.0.0 Latest
Nov 29, 2025

Contributors 5

Languages