Forem: nareshipme The latest articles on Forem by nareshipme (@nareshipme). https://forem.com/nareshipme https://media2.dev.to/dynamic/image/width=90,height=90,fit=cover,gravity=auto,format=auto/https:%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Fuser%2Fprofile_image%2F3824471%2F4940ab6f-46ad-4ee3-a988-83f89f976689.png Forem: nareshipme https://forem.com/nareshipme en Adding YouTube thumbnails and real titles to existing projects — without a migration nareshipme Sun, 03 May 2026 11:54:08 +0000 https://forem.com/nareshipme/adding-youtube-thumbnails-and-real-titles-to-existing-projects-without-a-migration-4jmf https://forem.com/nareshipme/adding-youtube-thumbnails-and-real-titles-to-existing-projects-without-a-migration-4jmf <p>Sometimes the best UX fix is the one that requires no new infrastructure. Here's how we added YouTube thumbnails and real video titles to <a href="https://getclipcrafter.com" rel="noopener noreferrer">ClipCrafter</a> project cards — using only what was already in the database and what YouTube freely provides.</p> <h2> The problem </h2> <p>Project cards on the dashboard looked like this:</p> <ul> <li>Title: <code>YouTube video (8fcJ4Y-uxCw)</code> </li> <li>Thumbnail: none</li> <li>Status badge, timestamp, action buttons</li> </ul> <p>Not great. Users couldn't tell their projects apart at a glance. The fix seemed obvious — store the real title and a thumbnail URL. But that would mean:</p> <ol> <li>A database migration to add a <code>thumbnail_url</code> column</li> <li>A backfill for existing rows</li> <li>Storing the title at upload time</li> </ol> <p>We did none of those things.</p> <h2> Fix 1: Real titles via YouTube's oEmbed API </h2> <p>YouTube's oEmbed endpoint returns video metadata including the title — <strong>no API key required</strong>:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight http"><code><span class="err">GET https://www.youtube.com/oembed?url=https://www.youtube.com/watch?v=VIDEO_ID&amp;format=json </span></code></pre> </div> <p>Response:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight json"><code><span class="p">{</span><span class="w"> </span><span class="nl">"title"</span><span class="p">:</span><span class="w"> </span><span class="s2">"The actual video title"</span><span class="p">,</span><span class="w"> </span><span class="nl">"author_name"</span><span class="p">:</span><span class="w"> </span><span class="s2">"Channel Name"</span><span class="p">,</span><span class="w"> </span><span class="nl">"thumbnail_url"</span><span class="p">:</span><span class="w"> </span><span class="s2">"https://i.ytimg.com/vi/.../hqdefault.jpg"</span><span class="p">,</span><span class="w"> </span><span class="err">...</span><span class="w"> </span><span class="p">}</span><span class="w"> </span></code></pre> </div> <p>We call this during project creation, before inserting to the database:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight typescript"><code><span class="k">async</span> <span class="kd">function</span> <span class="nf">fetchYoutubeTitle</span><span class="p">(</span><span class="nx">url</span><span class="p">:</span> <span class="kr">string</span><span class="p">):</span> <span class="nb">Promise</span><span class="o">&lt;</span><span class="kr">string</span> <span class="o">|</span> <span class="kc">null</span><span class="o">&gt;</span> <span class="p">{</span> <span class="k">try</span> <span class="p">{</span> <span class="kd">const</span> <span class="nx">res</span> <span class="o">=</span> <span class="k">await</span> <span class="nf">fetch</span><span class="p">(</span> <span class="s2">`https://www.youtube.com/oembed?url=</span><span class="p">${</span><span class="nf">encodeURIComponent</span><span class="p">(</span><span class="nx">url</span><span class="p">)}</span><span class="s2">&amp;format=json`</span> <span class="p">);</span> <span class="k">if </span><span class="p">(</span><span class="o">!</span><span class="nx">res</span><span class="p">.</span><span class="nx">ok</span><span class="p">)</span> <span class="k">return</span> <span class="kc">null</span><span class="p">;</span> <span class="kd">const</span> <span class="nx">data</span> <span class="o">=</span> <span class="k">await</span> <span class="nx">res</span><span class="p">.</span><span class="nf">json</span><span class="p">()</span> <span class="k">as</span> <span class="p">{</span> <span class="nx">title</span><span class="p">?:</span> <span class="kr">string</span> <span class="p">};</span> <span class="k">return</span> <span class="nx">data</span><span class="p">.</span><span class="nx">title</span> <span class="o">??</span> <span class="kc">null</span><span class="p">;</span> <span class="p">}</span> <span class="k">catch</span> <span class="p">{</span> <span class="k">return</span> <span class="kc">null</span><span class="p">;</span> <span class="p">}</span> <span class="p">}</span> <span class="k">async</span> <span class="kd">function</span> <span class="nf">submitYoutubeUrl</span><span class="p">(</span><span class="nx">url</span><span class="p">:</span> <span class="kr">string</span><span class="p">):</span> <span class="nb">Promise</span><span class="o">&lt;</span><span class="k">void</span><span class="o">&gt;</span> <span class="p">{</span> <span class="kd">const</span> <span class="nx">ytMatch</span> <span class="o">=</span> <span class="nx">url</span><span class="p">.</span><span class="nf">match</span><span class="p">(</span><span class="sr">/</span><span class="se">(?:</span><span class="sr">v=|youtu</span><span class="se">\.</span><span class="sr">be</span><span class="se">\/)([</span><span class="sr">a-zA-Z0-9_-</span><span class="se">]{11})</span><span class="sr">/</span><span class="p">);</span> <span class="kd">const</span> <span class="nx">fallback</span> <span class="o">=</span> <span class="nx">ytMatch</span> <span class="p">?</span> <span class="s2">`YouTube video (</span><span class="p">${</span><span class="nx">ytMatch</span><span class="p">[</span><span class="mi">1</span><span class="p">]}</span><span class="s2">)`</span> <span class="p">:</span> <span class="nx">url</span><span class="p">;</span> <span class="kd">const</span> <span class="nx">title</span> <span class="o">=</span> <span class="p">(</span><span class="k">await</span> <span class="nf">fetchYoutubeTitle</span><span class="p">(</span><span class="nx">url</span><span class="p">))</span> <span class="o">??</span> <span class="nx">fallback</span><span class="p">;</span> <span class="c1">// title is now "How to Build a Rocket" instead of "YouTube video (dQw4w9WgXcQ)"</span> <span class="k">await</span> <span class="nf">createProject</span><span class="p">({</span> <span class="nx">title</span><span class="p">,</span> <span class="na">type</span><span class="p">:</span> <span class="dl">"</span><span class="s2">youtube</span><span class="dl">"</span><span class="p">,</span> <span class="na">youtubeUrl</span><span class="p">:</span> <span class="nx">url</span> <span class="p">});</span> <span class="p">}</span> </code></pre> </div> <p>A few things worth noting:</p> <ul> <li> <strong>The fallback is always safe.</strong> If the oEmbed call fails (private video, network error, rate limit), we fall back to the ID-based title. The user flow never breaks.</li> <li> <strong>The title is stored, not fetched on read.</strong> This means no repeated API calls and the title survives even if the video is later deleted or made private.</li> <li> <strong>No API key.</strong> YouTube's oEmbed endpoint is publicly accessible. It works for any public video.</li> </ul> <h2> Fix 2: Thumbnails from a predictable URL pattern </h2> <p>YouTube serves thumbnails at deterministic URLs:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight plaintext"><code>https://img.youtube.com/vi/{VIDEO_ID}/mqdefault.jpg // 320×180 https://img.youtube.com/vi/{VIDEO_ID}/hqdefault.jpg // 480×360 https://img.youtube.com/vi/{VIDEO_ID}/maxresdefault.jpg // max resolution </code></pre> </div> <p>No API call needed — just the video ID. The question was: how do we get the video ID from our stored data?</p> <p><strong>For new projects</strong>, we store the normalized YouTube URL in <code>r2_key</code> (e.g. <code>https://www.youtube.com/watch?v=8fcJ4Y-uxCw</code>), so extracting the ID is straightforward.</p> <p><strong>For old projects</strong>, the stored <code>r2_key</code> is the R2 object path of the downloaded video file (<code>videos/{uuid}/video.mp4</code>) — no video ID there. But old projects have a predictable title format: <code>YouTube video (8fcJ4Y-uxCw)</code>. The ID is right there in the title.</p> <p>This gave us a two-path function with a graceful fallback:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight typescript"><code><span class="kd">function</span> <span class="nf">getYoutubeThumbnail</span><span class="p">(</span><span class="nx">project</span><span class="p">:</span> <span class="nx">Project</span><span class="p">):</span> <span class="kr">string</span> <span class="o">|</span> <span class="kc">null</span> <span class="p">{</span> <span class="k">if </span><span class="p">(</span><span class="nx">project</span><span class="p">.</span><span class="kd">type</span> <span class="o">!==</span> <span class="dl">"</span><span class="s2">youtube</span><span class="dl">"</span><span class="p">)</span> <span class="k">return</span> <span class="kc">null</span><span class="p">;</span> <span class="c1">// New projects: r2_key is the YouTube URL</span> <span class="kd">const</span> <span class="nx">fromKey</span> <span class="o">=</span> <span class="nx">project</span><span class="p">.</span><span class="nx">r2_key</span><span class="p">?.</span><span class="nf">match</span><span class="p">(</span><span class="sr">/</span><span class="se">[</span><span class="sr">?&amp;</span><span class="se">]</span><span class="sr">v=</span><span class="se">([</span><span class="sr">a-zA-Z0-9_-</span><span class="se">]{11})</span><span class="sr">/</span><span class="p">)?.[</span><span class="mi">1</span><span class="p">];</span> <span class="k">if </span><span class="p">(</span><span class="nx">fromKey</span><span class="p">)</span> <span class="k">return</span> <span class="s2">`https://img.youtube.com/vi/</span><span class="p">${</span><span class="nx">fromKey</span><span class="p">}</span><span class="s2">/mqdefault.jpg`</span><span class="p">;</span> <span class="c1">// Old projects: r2_key is a storage path, but title has the ID</span> <span class="kd">const</span> <span class="nx">fromTitle</span> <span class="o">=</span> <span class="nx">project</span><span class="p">.</span><span class="nx">title</span><span class="p">.</span><span class="nf">match</span><span class="p">(</span><span class="sr">/</span><span class="se">\(([</span><span class="sr">a-zA-Z0-9_-</span><span class="se">]{11})\)</span><span class="sr">$/</span><span class="p">)?.[</span><span class="mi">1</span><span class="p">];</span> <span class="k">return</span> <span class="nx">fromTitle</span> <span class="p">?</span> <span class="s2">`https://img.youtube.com/vi/</span><span class="p">${</span><span class="nx">fromTitle</span><span class="p">}</span><span class="s2">/mqdefault.jpg`</span> <span class="p">:</span> <span class="kc">null</span><span class="p">;</span> <span class="p">}</span> </code></pre> </div> <p>No migration. No backfill script. Every existing project gets thumbnails automatically.</p> <h2> Wiring it into the card </h2> <p>The project card uses Next.js <code>&lt;Image&gt;</code> with the YouTube thumbnail domain added to <code>next.config.ts</code>:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight typescript"><code><span class="c1">// next.config.ts</span> <span class="kd">const</span> <span class="nx">nextConfig</span> <span class="o">=</span> <span class="p">{</span> <span class="na">images</span><span class="p">:</span> <span class="p">{</span> <span class="na">remotePatterns</span><span class="p">:</span> <span class="p">[{</span> <span class="na">protocol</span><span class="p">:</span> <span class="dl">"</span><span class="s2">https</span><span class="dl">"</span><span class="p">,</span> <span class="na">hostname</span><span class="p">:</span> <span class="dl">"</span><span class="s2">img.youtube.com</span><span class="dl">"</span> <span class="p">}],</span> <span class="p">},</span> <span class="p">};</span> </code></pre> </div> <p>The card component:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight tsx"><code><span class="kd">function</span> <span class="nf">YoutubeThumbnail</span><span class="p">({</span> <span class="nx">project</span> <span class="p">}:</span> <span class="p">{</span> <span class="nl">project</span><span class="p">:</span> <span class="nx">Project</span> <span class="p">})</span> <span class="p">{</span> <span class="kd">const</span> <span class="nx">src</span> <span class="o">=</span> <span class="nf">getYoutubeThumbnail</span><span class="p">(</span><span class="nx">project</span><span class="p">);</span> <span class="k">if </span><span class="p">(</span><span class="o">!</span><span class="nx">src</span><span class="p">)</span> <span class="k">return</span> <span class="kc">null</span><span class="p">;</span> <span class="k">return </span><span class="p">(</span> <span class="p">&lt;</span><span class="nt">div</span> <span class="na">className</span><span class="p">=</span><span class="s">"relative w-full aspect-video"</span><span class="p">&gt;</span> <span class="p">&lt;</span><span class="nc">Image</span> <span class="na">src</span><span class="p">=</span><span class="si">{</span><span class="nx">src</span><span class="si">}</span> <span class="na">alt</span><span class="p">=</span><span class="s">""</span> <span class="na">fill</span> <span class="na">className</span><span class="p">=</span><span class="s">"object-cover"</span> <span class="na">sizes</span><span class="p">=</span><span class="s">"(max-width: 640px) 100vw, (max-width: 1024px) 50vw, 33vw"</span> <span class="na">unoptimized</span> <span class="p">/&gt;</span> <span class="p">&lt;/</span><span class="nt">div</span><span class="p">&gt;</span> <span class="p">);</span> <span class="p">}</span> <span class="k">export</span> <span class="k">default</span> <span class="kd">function</span> <span class="nf">ProjectCard</span><span class="p">({</span> <span class="nx">project</span> <span class="p">}:</span> <span class="nx">ProjectCardProps</span><span class="p">)</span> <span class="p">{</span> <span class="k">return </span><span class="p">(</span> <span class="p">&lt;</span><span class="nt">div</span> <span class="na">className</span><span class="p">=</span><span class="s">"bg-gray-900 border border-gray-800 rounded-xl overflow-hidden flex flex-col"</span><span class="p">&gt;</span> <span class="p">&lt;</span><span class="nc">YoutubeThumbnail</span> <span class="na">project</span><span class="p">=</span><span class="si">{</span><span class="nx">project</span><span class="si">}</span> <span class="p">/&gt;</span> <span class="p">&lt;</span><span class="nt">div</span> <span class="na">className</span><span class="p">=</span><span class="s">"p-4 flex flex-col gap-3"</span><span class="p">&gt;</span> <span class="si">{</span><span class="cm">/* title, status, timestamp, actions */</span><span class="si">}</span> <span class="p">&lt;/</span><span class="nt">div</span><span class="p">&gt;</span> <span class="p">&lt;/</span><span class="nt">div</span><span class="p">&gt;</span> <span class="p">);</span> <span class="p">}</span> </code></pre> </div> <p><code>unoptimized</code> is set because YouTube's CDN already serves optimized images — running them through Next.js image optimization would be redundant.</p> <h2> The broader pattern </h2> <p>Before reaching for a migration or a new API integration, ask:</p> <ol> <li> <strong>Is the data already in the database?</strong> The video ID was in the title all along.</li> <li> <strong>Does the platform expose it for free?</strong> YouTube's oEmbed gives us the real title with no authentication.</li> <li> <strong>Can the URL be derived deterministically?</strong> Thumbnail URLs follow a predictable pattern once you have the ID.</li> </ol> <p>Data you already have, combined with free platform APIs and predictable URL structures, can cover a lot of ground before you need to store anything new.</p> <p>We're building <a href="https://getclipcrafter.com" rel="noopener noreferrer">ClipCrafter</a> — AI-powered video clip extraction for creators. If you found this useful, follow along for more engineering notes.</p> nextjs webdev javascript ux Three CI failures we fixed this week (and what each one taught us) nareshipme Sun, 03 May 2026 11:53:20 +0000 https://forem.com/nareshipme/three-ci-failures-we-fixed-this-week-and-what-each-one-taught-us-end https://forem.com/nareshipme/three-ci-failures-we-fixed-this-week-and-what-each-one-taught-us-end <p>A green CI pipeline is a contract. When it breaks in ways that differ from your local environment, something in the contract is wrong — not the code. Here are three failures we debugged this week on <a href="https://getclipcrafter.com" rel="noopener noreferrer">ClipCrafter</a> and the underlying problems each exposed.</p> <h2> Failure 1: CI fails typecheck, local passes </h2> <h3> What we saw </h3> <div class="highlight js-code-highlight"> <pre class="highlight typescript"><code><span class="nx">error</span> <span class="nx">TS2345</span><span class="p">:</span> <span class="nx">Argument</span> <span class="k">of</span> <span class="kd">type</span> <span class="dl">'</span><span class="s1">{ quality: number; }</span><span class="dl">'</span> <span class="k">is</span> <span class="nx">not</span> <span class="nx">assignable</span> <span class="nx">to</span> <span class="nx">parameter</span> <span class="k">of</span> <span class="kd">type</span> <span class="dl">'</span><span class="s1">ExportOptions</span><span class="dl">'</span><span class="p">.</span> <span class="nx">Types</span> <span class="k">of</span> <span class="nx">property</span> <span class="dl">'</span><span class="s1">quality</span><span class="dl">'</span> <span class="nx">are</span> <span class="nx">incompatible</span><span class="p">.</span> <span class="nx">Type</span> <span class="dl">'</span><span class="s1">number</span><span class="dl">'</span> <span class="k">is</span> <span class="nx">not</span> <span class="nx">assignable</span> <span class="nx">to</span> <span class="kd">type</span> <span class="dl">'</span><span class="s1">QualityPreset | undefined</span><span class="dl">'</span><span class="p">.</span> </code></pre> </div> <p>Passed locally. Failed in CI. Classic.</p> <h3> The investigation </h3> <p>First instinct: the code changed the type. But <code>quality</code> was already a string in our code — we were passing <code>"medium"</code> or <code>"original"</code>. So why was CI complaining about <code>number</code>?</p> <p>The error message says <code>QualityPreset</code> — a type that didn't exist in our local type definitions at all.<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code><span class="nv">$ </span><span class="nb">cat </span>node_modules/framewebworker/package.json | <span class="nb">grep </span>version <span class="s2">"version"</span>: <span class="s2">"0.4.0"</span> <span class="nv">$ </span><span class="nb">cat </span>package.json | <span class="nb">grep </span>framewebworker <span class="s2">"framewebworker"</span>: <span class="s2">"^0.5.5"</span> </code></pre> </div> <p>Local <code>node_modules</code> was 0.4.0. CI installs fresh from npm every run and got 0.5.5. The library changed <code>quality</code> between versions:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight typescript"><code><span class="c1">// 0.4.0 — quality is a number (0-1)</span> <span class="nx">quality</span><span class="p">?:</span> <span class="kr">number</span><span class="p">;</span> <span class="c1">// 0.5.5 — quality is a named preset</span> <span class="kd">type</span> <span class="nx">QualityPreset</span> <span class="o">=</span> <span class="dl">'</span><span class="s1">medium</span><span class="dl">'</span> <span class="o">|</span> <span class="dl">'</span><span class="s1">original</span><span class="dl">'</span><span class="p">;</span> <span class="nl">quality</span><span class="p">?:</span> <span class="nx">QualityPreset</span><span class="p">;</span> </code></pre> </div> <p>We had already written <code>quality: "medium"</code> — which is correct for 0.5.5. But with 0.4.0 installed locally, the compiler accepted <code>number</code> too loosely.</p> <h3> The wrong fix we almost made </h3> <p>We initially mapped the string to a number:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight typescript"><code><span class="c1">// ❌ wrong — fighting the type instead of fixing the environment</span> <span class="kd">const</span> <span class="nx">quality</span> <span class="o">=</span> <span class="nx">quality</span> <span class="o">===</span> <span class="dl">"</span><span class="s2">original</span><span class="dl">"</span> <span class="p">?</span> <span class="mi">1</span> <span class="p">:</span> <span class="mf">0.8</span><span class="p">;</span> </code></pre> </div> <p>This made local typecheck pass — but would have broken CI even harder.</p> <h3> The actual fix </h3> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code>npm <span class="nb">install</span> <span class="c"># update node_modules to match package.json</span> </code></pre> </div> <p>With 0.5.5 installed locally, our original string values were already correct. No code change needed.</p> <h3> The lesson </h3> <p><strong>When CI typecheck fails but local passes, suspect the environment before the code.</strong> Check <code>node_modules</code> version vs <code>package.json</code> declared version. A stale install is invisible until CI runs fresh.</p> <p>Add this to your debugging checklist before changing code to satisfy a type error:</p> <ol> <li>Is the installed version what <code>package.json</code> declares?</li> <li>Is the CI environment installing the same lockfile?</li> <li>Did a transitive dependency change?</li> </ol> <h2> Failure 2: Worker sync check fails after billing changes </h2> <h3> What we saw </h3> <div class="highlight js-code-highlight"> <pre class="highlight plaintext"><code>❌ Worker files are out of sync with src/. Run: bash scripts/sync-worker.sh Then commit the changes in worker/src/. </code></pre> </div> <h3> The context </h3> <p>The project runs a separate worker process alongside the Next.js app. Certain lib files are shared between them, but the worker uses relative imports instead of path aliases (<code>@/lib/billing</code> → <code>./billing</code>). Rather than maintaining two copies by hand, a sync script rewrites imports and copies the files:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code><span class="c"># scripts/sync-worker.sh (simplified)</span> <span class="k">for </span>f <span class="k">in </span>supabase r2 billing transcribe highlights<span class="p">;</span> <span class="k">do </span><span class="nb">sed</span> <span class="s1">'s|from "@/lib/\([^"]*\)"|from "./\1"|g'</span> <span class="se">\</span> src/lib/<span class="nv">$f</span>.ts <span class="o">&gt;</span> worker/src/lib/<span class="nv">$f</span>.ts <span class="k">done</span> </code></pre> </div> <p>CI diffs the expected output against the committed <code>worker/src/</code> files. Any divergence fails the build.</p> <h3> What happened </h3> <p>We'd updated <code>src/lib/billing.ts</code> as part of the billing hardening work and didn't run the sync script before pushing. The worker copy was one commit behind.</p> <h3> The fix </h3> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code>bash scripts/sync-worker.sh git add worker/src/lib/billing.ts git commit <span class="nt">-m</span> <span class="s2">"chore: sync worker billing"</span> </code></pre> </div> <h3> The lesson </h3> <p><strong>Automated sync checks are worth the setup cost.</strong> Without the CI check, the worker would have silently run old billing code while the app used the new atomic RPC call — a subtle, hard-to-debug divergence. The check makes the implicit dependency explicit and enforced.</p> <p>If you have files that need to stay in sync across boundaries (monorepo packages, generated types, worker copies), automate both the sync <em>and</em> the verification.</p> <h2> Failure 3: Linter flags complexity after a refactor </h2> <h3> What we saw </h3> <div class="highlight js-code-highlight"> <pre class="highlight plaintext"><code>error Async function 'POST' has a complexity of 13. Maximum allowed is 10 complexity error Async function 'POST' has a complexity of 11. Maximum allowed is 10 complexity </code></pre> </div> <h3> The context </h3> <p>The project enforces <code>complexity: ["error", 10]</code> in ESLint — cyclomatic complexity measures the number of independent paths through a function. Each <code>if</code>, <code>else if</code>, <code>||</code>, <code>&amp;&amp;</code>, <code>try/catch</code>, and ternary adds one.</p> <p>A refactor had added idempotency checking (a <code>try/catch</code> + an <code>if</code>) and plan ID mapping (a three-way condition) directly into two <code>POST</code> route handlers. Both tipped over 10.</p> <h3> The fix: extract the decision logic </h3> <p><strong>Webhook handler</strong> — moved idempotency check into its own function:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight typescript"><code><span class="c1">// Before: all inline in POST, complexity = 13</span> <span class="c1">// After: extracted, POST complexity drops to 8</span> <span class="k">async</span> <span class="kd">function</span> <span class="nf">isDuplicate</span><span class="p">(</span><span class="nx">payload</span><span class="p">:</span> <span class="nb">Record</span><span class="o">&lt;</span><span class="kr">string</span><span class="p">,</span> <span class="nx">unknown</span><span class="o">&gt;</span><span class="p">):</span> <span class="nb">Promise</span><span class="o">&lt;</span><span class="nx">boolean</span><span class="o">&gt;</span> <span class="p">{</span> <span class="kd">const</span> <span class="nx">eventId</span> <span class="o">=</span> <span class="nx">payload</span><span class="p">.</span><span class="nx">id</span> <span class="k">as</span> <span class="kr">string</span> <span class="o">|</span> <span class="kc">undefined</span><span class="p">;</span> <span class="k">if </span><span class="p">(</span><span class="o">!</span><span class="nx">eventId</span><span class="p">)</span> <span class="k">return</span> <span class="kc">false</span><span class="p">;</span> <span class="kd">const</span> <span class="p">{</span> <span class="nx">error</span> <span class="p">}</span> <span class="o">=</span> <span class="k">await</span> <span class="nx">supabaseAdmin</span> <span class="p">.</span><span class="k">from</span><span class="p">(</span><span class="dl">"</span><span class="s2">webhook_events</span><span class="dl">"</span><span class="p">)</span> <span class="p">.</span><span class="nf">insert</span><span class="p">({</span> <span class="na">id</span><span class="p">:</span> <span class="nx">eventId</span><span class="p">,</span> <span class="na">event</span><span class="p">:</span> <span class="p">(</span><span class="nx">payload</span><span class="p">.</span><span class="nx">event</span> <span class="k">as</span> <span class="kr">string</span><span class="p">)</span> <span class="o">??</span> <span class="dl">"</span><span class="s2">unknown</span><span class="dl">"</span> <span class="p">});</span> <span class="k">return</span> <span class="nx">error</span><span class="p">?.</span><span class="nx">code</span> <span class="o">===</span> <span class="dl">"</span><span class="s2">23505</span><span class="dl">"</span><span class="p">;</span> <span class="p">}</span> </code></pre> </div> <p><strong>Upgrade handler</strong> — extracted the plan validation guard:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight typescript"><code><span class="c1">// Before: three-way comparison inline, adds 2 complexity points</span> <span class="k">if </span><span class="p">(</span><span class="nx">plan</span> <span class="o">!==</span> <span class="dl">"</span><span class="s2">starter</span><span class="dl">"</span> <span class="o">&amp;&amp;</span> <span class="nx">plan</span> <span class="o">!==</span> <span class="dl">"</span><span class="s2">pro</span><span class="dl">"</span> <span class="o">&amp;&amp;</span> <span class="nx">plan</span> <span class="o">!==</span> <span class="dl">"</span><span class="s2">unlimited</span><span class="dl">"</span><span class="p">)</span> <span class="p">{</span> <span class="p">...</span> <span class="p">}</span> <span class="c1">// After: extracted to a type guard</span> <span class="kd">function</span> <span class="nf">isValidPlan</span><span class="p">(</span><span class="nx">plan</span><span class="p">:</span> <span class="kr">string</span><span class="p">):</span> <span class="nx">plan</span> <span class="k">is</span> <span class="nx">ValidPlan</span> <span class="p">{</span> <span class="k">return</span> <span class="nx">plan</span> <span class="o">===</span> <span class="dl">"</span><span class="s2">starter</span><span class="dl">"</span> <span class="o">||</span> <span class="nx">plan</span> <span class="o">===</span> <span class="dl">"</span><span class="s2">pro</span><span class="dl">"</span> <span class="o">||</span> <span class="nx">plan</span> <span class="o">===</span> <span class="dl">"</span><span class="s2">unlimited</span><span class="dl">"</span><span class="p">;</span> <span class="p">}</span> </code></pre> </div> <h3> The lesson </h3> <p><strong>Complexity limits force good decomposition.</strong> The <code>isDuplicate</code> function is now:</p> <ul> <li>Named (self-documenting)</li> <li>Independently testable</li> <li>Reusable if a second handler needs the same check</li> </ul> <p>None of that would have happened without the linter pushing back. Cyclomatic complexity rules feel annoying until you're reading someone else's 200-line function with 15 nested conditions.</p> <p>If your project doesn't have one, consider adding:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight json"><code><span class="err">//</span><span class="w"> </span><span class="err">.eslintrc</span><span class="w"> </span><span class="err">or</span><span class="w"> </span><span class="err">eslint.config.mjs</span><span class="w"> </span><span class="nl">"complexity"</span><span class="p">:</span><span class="w"> </span><span class="p">[</span><span class="s2">"error"</span><span class="p">,</span><span class="w"> </span><span class="mi">10</span><span class="p">]</span><span class="w"> </span></code></pre> </div> <p>Start with 15 if 10 feels too aggressive — the discipline it enforces is worth it.</p> <h2> The common thread </h2> <p>All three failures had the same shape: <strong>a local environment that hid a real problem</strong>. Stale <code>node_modules</code> hid a version mismatch. No sync check would have hidden a worker divergence. No complexity rule would have hidden spaghetti accumulating in route handlers.</p> <p>CI's job is to be stricter than your local setup. When it catches something your machine didn't, that's it working correctly.</p> <p>We build <a href="https://getclipcrafter.com" rel="noopener noreferrer">ClipCrafter</a> — AI-powered video clip extraction. If CI war stories resonate, follow along.</p> devops typescript testing webdev Two billing bugs that looked fine until production proved otherwise nareshipme Sun, 03 May 2026 11:43:02 +0000 https://forem.com/nareshipme/two-billing-bugs-that-looked-fine-until-production-proved-otherwise-1nme https://forem.com/nareshipme/two-billing-bugs-that-looked-fine-until-production-proved-otherwise-1nme <p>Billing code is the most dangerous place to have subtle bugs. It rarely crashes — it just silently does the wrong thing. Here are two we found and fixed in <a href="https://getclipcrafter.com" rel="noopener noreferrer">ClipCrafter</a>, an AI video clip extraction tool.</p> <h2> Bug 1: The usage counter that lost data under load </h2> <p>We track how many seconds of video each user processes per day to enforce plan limits. The original increment looked like this:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight typescript"><code><span class="kd">const</span> <span class="p">{</span> <span class="nx">data</span> <span class="p">}</span> <span class="o">=</span> <span class="k">await</span> <span class="nx">db</span> <span class="p">.</span><span class="k">from</span><span class="p">(</span><span class="dl">"</span><span class="s2">users</span><span class="dl">"</span><span class="p">)</span> <span class="p">.</span><span class="nf">select</span><span class="p">(</span><span class="dl">"</span><span class="s2">daily_usage_seconds</span><span class="dl">"</span><span class="p">)</span> <span class="p">.</span><span class="nf">eq</span><span class="p">(</span><span class="dl">"</span><span class="s2">clerk_id</span><span class="dl">"</span><span class="p">,</span> <span class="nx">clerkUserId</span><span class="p">)</span> <span class="p">.</span><span class="nf">single</span><span class="p">();</span> <span class="kd">const</span> <span class="nx">next</span> <span class="o">=</span> <span class="p">(</span><span class="nx">data</span><span class="p">.</span><span class="nx">daily_usage_seconds</span> <span class="o">??</span> <span class="mi">0</span><span class="p">)</span> <span class="o">+</span> <span class="nx">seconds</span><span class="p">;</span> <span class="k">await</span> <span class="nx">db</span> <span class="p">.</span><span class="k">from</span><span class="p">(</span><span class="dl">"</span><span class="s2">users</span><span class="dl">"</span><span class="p">)</span> <span class="p">.</span><span class="nf">update</span><span class="p">({</span> <span class="na">daily_usage_seconds</span><span class="p">:</span> <span class="nx">next</span> <span class="p">})</span> <span class="p">.</span><span class="nf">eq</span><span class="p">(</span><span class="dl">"</span><span class="s2">clerk_id</span><span class="dl">"</span><span class="p">,</span> <span class="nx">clerkUserId</span><span class="p">);</span> </code></pre> </div> <p>This is a textbook read-modify-write race. Here's the scenario that breaks it:</p> <ol> <li>Request A reads <code>daily_usage_seconds = 120</code> </li> <li>Request B reads <code>daily_usage_seconds = 120</code> (before A has written)</li> <li>Request A writes <code>120 + 300 = 420</code> </li> <li>Request B writes <code>120 + 180 = 300</code> — <strong>overwriting A's write</strong> </li> </ol> <p>The user processed 480 seconds of video but the counter shows 300. They get more usage than they're supposed to. At scale — multiple clips rendering simultaneously — this happens constantly.</p> <p>The code <em>looks</em> correct. It reads, adds, writes. The problem is invisible in single-user testing.</p> <h3> The fix: push the increment into Postgres </h3> <div class="highlight js-code-highlight"> <pre class="highlight sql"><code><span class="k">CREATE</span> <span class="k">OR</span> <span class="k">REPLACE</span> <span class="k">FUNCTION</span> <span class="n">increment_daily_usage</span><span class="p">(</span> <span class="n">p_clerk_id</span> <span class="nb">TEXT</span><span class="p">,</span> <span class="n">p_seconds</span> <span class="nb">INTEGER</span> <span class="p">)</span> <span class="k">RETURNS</span> <span class="n">void</span> <span class="k">LANGUAGE</span> <span class="n">plpgsql</span> <span class="k">SECURITY</span> <span class="k">DEFINER</span> <span class="k">AS</span> <span class="err">$$</span> <span class="k">BEGIN</span> <span class="k">UPDATE</span> <span class="n">users</span> <span class="k">SET</span> <span class="n">daily_usage_seconds</span> <span class="o">=</span> <span class="n">COALESCE</span><span class="p">(</span><span class="n">daily_usage_seconds</span><span class="p">,</span> <span class="mi">0</span><span class="p">)</span> <span class="o">+</span> <span class="n">p_seconds</span> <span class="k">WHERE</span> <span class="n">clerk_id</span> <span class="o">=</span> <span class="n">p_clerk_id</span><span class="p">;</span> <span class="k">END</span><span class="p">;</span> <span class="err">$$</span><span class="p">;</span> </code></pre> </div> <p>A single <code>UPDATE ... SET col = col + n</code> is atomic. Postgres takes a row-level lock for the duration of the update — no two concurrent updates can interleave. The application becomes:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight typescript"><code><span class="k">await</span> <span class="nx">supabaseAdmin</span><span class="p">.</span><span class="nf">rpc</span><span class="p">(</span><span class="dl">"</span><span class="s2">increment_daily_usage</span><span class="dl">"</span><span class="p">,</span> <span class="p">{</span> <span class="na">p_clerk_id</span><span class="p">:</span> <span class="nx">clerkUserId</span><span class="p">,</span> <span class="na">p_seconds</span><span class="p">:</span> <span class="nx">seconds</span><span class="p">,</span> <span class="p">});</span> </code></pre> </div> <p>One network round-trip instead of two, and no race condition.</p> <p><strong>Why <code>SECURITY DEFINER</code>?</strong> It lets the function run with the privileges of its creator (the DB owner), bypassing row-level security for this specific operation. Since the app calls it via a service-role client that already bypasses RLS, this is consistent — but it's worth knowing the tradeoff.</p> <h2> Bug 2: The webhook handler that processed events twice </h2> <p>Payment providers retry webhook deliveries when they don't receive a <code>200</code> response quickly enough — network blip, slow cold start, anything. Our handler wasn't idempotent:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight typescript"><code><span class="k">export</span> <span class="k">async</span> <span class="kd">function</span> <span class="nf">POST</span><span class="p">(</span><span class="nx">request</span><span class="p">:</span> <span class="nx">Request</span><span class="p">)</span> <span class="p">{</span> <span class="c1">// ... verify signature ...</span> <span class="kd">const</span> <span class="p">{</span> <span class="nx">event</span><span class="p">,</span> <span class="nx">clerkUserId</span><span class="p">,</span> <span class="nx">subscriptionId</span> <span class="p">}</span> <span class="o">=</span> <span class="nf">parseEvent</span><span class="p">(</span><span class="nx">body</span><span class="p">);</span> <span class="k">if </span><span class="p">(</span><span class="nx">event</span> <span class="o">===</span> <span class="dl">"</span><span class="s2">subscription.activated</span><span class="dl">"</span><span class="p">)</span> <span class="p">{</span> <span class="c1">// This runs twice if the webhook is retried</span> <span class="k">await</span> <span class="nf">activateSubscription</span><span class="p">(</span><span class="nx">clerkUserId</span><span class="p">,</span> <span class="nx">subscriptionId</span><span class="p">);</span> <span class="p">}</span> <span class="p">}</span> </code></pre> </div> <p>If the provider retried after a slow response, the user's subscription could be activated twice — not catastrophic here, but the pattern generalises to things like crediting accounts or sending emails.</p> <h3> The fix: a deduplication table </h3> <div class="highlight js-code-highlight"> <pre class="highlight sql"><code><span class="k">CREATE</span> <span class="k">TABLE</span> <span class="n">IF</span> <span class="k">NOT</span> <span class="k">EXISTS</span> <span class="n">webhook_events</span> <span class="p">(</span> <span class="n">id</span> <span class="nb">TEXT</span> <span class="k">PRIMARY</span> <span class="k">KEY</span><span class="p">,</span> <span class="n">event</span> <span class="nb">TEXT</span> <span class="k">NOT</span> <span class="k">NULL</span><span class="p">,</span> <span class="n">processed_at</span> <span class="n">TIMESTAMPTZ</span> <span class="k">NOT</span> <span class="k">NULL</span> <span class="k">DEFAULT</span> <span class="n">NOW</span><span class="p">()</span> <span class="p">);</span> </code></pre> </div> <p>Every webhook payload has a unique event ID. We try to insert it; a primary key conflict means we've already processed it:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight typescript"><code><span class="k">async</span> <span class="kd">function</span> <span class="nf">isDuplicate</span><span class="p">(</span><span class="nx">payload</span><span class="p">:</span> <span class="nb">Record</span><span class="o">&lt;</span><span class="kr">string</span><span class="p">,</span> <span class="nx">unknown</span><span class="o">&gt;</span><span class="p">):</span> <span class="nb">Promise</span><span class="o">&lt;</span><span class="nx">boolean</span><span class="o">&gt;</span> <span class="p">{</span> <span class="kd">const</span> <span class="nx">eventId</span> <span class="o">=</span> <span class="nx">payload</span><span class="p">.</span><span class="nx">id</span> <span class="k">as</span> <span class="kr">string</span> <span class="o">|</span> <span class="kc">undefined</span><span class="p">;</span> <span class="k">if </span><span class="p">(</span><span class="o">!</span><span class="nx">eventId</span><span class="p">)</span> <span class="k">return</span> <span class="kc">false</span><span class="p">;</span> <span class="kd">const</span> <span class="p">{</span> <span class="nx">error</span> <span class="p">}</span> <span class="o">=</span> <span class="k">await</span> <span class="nx">supabaseAdmin</span> <span class="p">.</span><span class="k">from</span><span class="p">(</span><span class="dl">"</span><span class="s2">webhook_events</span><span class="dl">"</span><span class="p">)</span> <span class="p">.</span><span class="nf">insert</span><span class="p">({</span> <span class="na">id</span><span class="p">:</span> <span class="nx">eventId</span><span class="p">,</span> <span class="na">event</span><span class="p">:</span> <span class="p">(</span><span class="nx">payload</span><span class="p">.</span><span class="nx">event</span> <span class="k">as</span> <span class="kr">string</span><span class="p">)</span> <span class="o">??</span> <span class="dl">"</span><span class="s2">unknown</span><span class="dl">"</span> <span class="p">});</span> <span class="c1">// 23505 = unique_violation in Postgres</span> <span class="k">return</span> <span class="nx">error</span><span class="p">?.</span><span class="nx">code</span> <span class="o">===</span> <span class="dl">"</span><span class="s2">23505</span><span class="dl">"</span><span class="p">;</span> <span class="p">}</span> <span class="k">export</span> <span class="k">async</span> <span class="kd">function</span> <span class="nf">POST</span><span class="p">(</span><span class="nx">request</span><span class="p">:</span> <span class="nx">Request</span><span class="p">)</span> <span class="p">{</span> <span class="c1">// ...</span> <span class="k">if </span><span class="p">(</span><span class="k">await</span> <span class="nf">isDuplicate</span><span class="p">(</span><span class="nx">rawPayload</span><span class="p">))</span> <span class="p">{</span> <span class="k">return</span> <span class="nx">Response</span><span class="p">.</span><span class="nf">json</span><span class="p">({</span> <span class="na">received</span><span class="p">:</span> <span class="kc">true</span> <span class="p">});</span> <span class="c1">// 200 so provider stops retrying</span> <span class="p">}</span> <span class="c1">// ... process event ...</span> <span class="p">}</span> </code></pre> </div> <p>Key details:</p> <ul> <li>Return <code>200</code> on duplicate — returning an error would cause the provider to retry <em>again</em> </li> <li>The insert-and-check-conflict is itself atomic — no TOCTOU gap</li> <li>The table doubles as an audit log of every event ever received</li> </ul> <h3> Shipping both as one migration </h3> <p>Both fixes are database objects, so they went into a single migration file:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight sql"><code><span class="c1">-- 016_billing_fixes.sql</span> <span class="k">CREATE</span> <span class="k">OR</span> <span class="k">REPLACE</span> <span class="k">FUNCTION</span> <span class="n">increment_daily_usage</span><span class="p">(</span><span class="n">p_clerk_id</span> <span class="nb">TEXT</span><span class="p">,</span> <span class="n">p_seconds</span> <span class="nb">INTEGER</span><span class="p">)</span> <span class="k">RETURNS</span> <span class="n">void</span> <span class="k">LANGUAGE</span> <span class="n">plpgsql</span> <span class="k">SECURITY</span> <span class="k">DEFINER</span> <span class="k">AS</span> <span class="err">$$</span> <span class="k">BEGIN</span> <span class="k">UPDATE</span> <span class="n">users</span> <span class="k">SET</span> <span class="n">daily_usage_seconds</span> <span class="o">=</span> <span class="n">COALESCE</span><span class="p">(</span><span class="n">daily_usage_seconds</span><span class="p">,</span> <span class="mi">0</span><span class="p">)</span> <span class="o">+</span> <span class="n">p_seconds</span> <span class="k">WHERE</span> <span class="n">clerk_id</span> <span class="o">=</span> <span class="n">p_clerk_id</span><span class="p">;</span> <span class="k">END</span><span class="p">;</span> <span class="err">$$</span><span class="p">;</span> <span class="k">CREATE</span> <span class="k">TABLE</span> <span class="n">IF</span> <span class="k">NOT</span> <span class="k">EXISTS</span> <span class="n">webhook_events</span> <span class="p">(</span> <span class="n">id</span> <span class="nb">TEXT</span> <span class="k">PRIMARY</span> <span class="k">KEY</span><span class="p">,</span> <span class="n">event</span> <span class="nb">TEXT</span> <span class="k">NOT</span> <span class="k">NULL</span><span class="p">,</span> <span class="n">processed_at</span> <span class="n">TIMESTAMPTZ</span> <span class="k">NOT</span> <span class="k">NULL</span> <span class="k">DEFAULT</span> <span class="n">NOW</span><span class="p">()</span> <span class="p">);</span> </code></pre> </div> <p>They land together or not at all. Code that depends on both objects was deployed in the same release.</p> <h2> The pattern to remember </h2> <p>Both bugs share the same root cause: <strong>state mutation across multiple round-trips is never safe under concurrency</strong>. The fix in both cases was the same: push the mutation into the database where it can be made atomic.</p> <ul> <li>Use <code>UPDATE ... SET col = col + n</code> instead of read-then-write</li> <li>Use an insert-with-conflict as an atomic check-and-record for idempotency</li> </ul> <p>Postgres is very good at this. Let it do the work.</p> <p>We're building <a href="https://getclipcrafter.com" rel="noopener noreferrer">ClipCrafter</a> — AI-powered short clip extraction from long videos. If you're working on similar problems, I'd love to hear how you handle billing correctness at scale.</p> postgres webdev typescript saas Fixing "No Credentials Found" when using AWS SSO Profiles in Zsh nareshipme Mon, 27 Apr 2026 05:50:42 +0000 https://forem.com/nareshipme/fixing-no-credentials-found-when-using-aws-sso-profiles-in-zsh-3ia7 https://forem.com/nareshipme/fixing-no-credentials-found-when-using-aws-sso-profiles-in-zsh-3ia7 <p><strong>TL;DR:</strong> An AWS SSO login was successful, but subsequent AWS commands failed with "No credentials found" because the shell alias was pointing to a profile name that didn't match the configured credential block in <code>~/.aws/config</code>.</p> <p>I wanted to automate my AWS authentication by creating an alias in my <code>.zshrc</code> to trigger the SSO login process. After running the command, the terminal reported <code>Login successful</code>, but any subsequent attempt to list S3 buckets or use the AWS CLI resulted in a credential error.</p> <p>The issue stemmed from a mismatch between how the profile was defined in <code>~/.aws/config</code> and how I was calling it via the CLI. </p> <p>Here is the configuration block I had in my <code>~/.aws/config</code>:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight ini"><code><span class="nn">[profile 123456789012_AWSEngineerAccessRole]</span> <span class="py">sso_start_url</span> <span class="p">=</span> <span class="s">https://your-org.awsapps.com/start</span> <span class="py">sso_region</span> <span class="p">=</span> <span class="s">eu-west-2</span> <span class="py">sso_account_id</span> <span class="p">=</span> <span class="s">123456789012</span> <span class="py">sso_role_name</span> <span class="p">=</span> <span class="s">AWSEngineerAccessRole</span> <span class="py">region</span> <span class="p">=</span> <span class="s">eu-west-2</span> </code></pre> </div> <p>When I ran my login command, the output was:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight plaintext"><code>Login successful </code></pre> </div> <p>However, running a basic AWS command immediately after produced this error:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight plaintext"><code>Unable to locate credentials. You can configure credentials manually via the 'aws configure' command. </code></pre> </div> <p>The failure happened because even though the SSO session was active in the background, the AWS CLI does not automatically know which profile to use for subsequent commands unless explicitly instructed. If my alias or environment variable was pointing to a generic <code>default</code> profile, the CLI looked for credentials under <code>[default]</code>, found nothing, and failed—ignoring the fact that a valid SSO session existed for the specific <code>123456789012_AWSEngineerAccessRole</code> profile.</p> <p>To fix this, I updated my <code>.zshrc</code> alias to ensure every command explicitly references the correct profile name defined in the config file:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code><span class="c"># Before (failed because it defaulted to 'default' profile)</span> <span class="nb">alias </span><span class="nv">awslogin</span><span class="o">=</span><span class="s2">"aws sso login"</span> <span class="c"># After (explicitly targets the SSO profile)</span> <span class="nb">alias </span><span class="nv">awslogin</span><span class="o">=</span><span class="s2">"aws sso login --profile 123456789012_AWSEngineerAccessRole"</span> <span class="nb">alias </span><span class="nv">aws</span><span class="o">=</span><span class="s1">'aws --profile 123456789012_AWSEngineerAccessRole'</span> </code></pre> </div> <p>By appending <code>--profile 123456789012_AWSEngineerAccessRole</code> to the login command, the CLI maps the successful authentication token specifically to that profile block. By aliasing <code>aws</code> itself, I ensure all subsequent commands bypass the empty <code>[default]</code> profile and use the authenticated SSO session.</p> aws zsh devops cli Why We Switched to Streaming Frame Extraction for Mobile Video Editing nareshipme Fri, 24 Apr 2026 15:32:19 +0000 https://forem.com/nareshipme/why-we-switched-to-streaming-frame-extraction-for-mobile-video-editing-3cea https://forem.com/nareshipme/why-we-switched-to-streaming-frame-extraction-for-mobile-video-editing-3cea <p>When we first started building ClipCrafter's browser-based video engine, our biggest enemy wasn’t the complexity of FFmpeg—it was something much more silent and deadly: <strong>Memory Exhaustion.</strong></p> <p>If you are working with high-resolution clips or long durations in a Web Worker, there is an invisible wall you will eventually hit. We call it "The OOM (Out Of Render) Wall." </p> <p>Recently, we noticed that while our desktop users were enjoying smooth multi-clip stitching, mobile Chrome and Safari users on mid-range Androids/iPhones were experiencing frequent tab crashes during the rendering process. The culprit? Our frame extraction logic was attempting to hold too much in memory at once.</p> <h3> The Problem: $O(n)$ Memory Complexity </h3> <p>In our early architecture of <code>framewebworker</code>, we used a pattern that looked like this conceptually (simplified for clarity):<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight typescript"><code><span class="c1">// ❌ THE OLD WAY: High risk of OOM crashes on mobile</span> <span class="k">async</span> <span class="kd">function</span> <span class="nf">extractFramesAllAtOnce</span><span class="p">(</span><span class="nx">videoSource</span><span class="p">:</span> <span class="nx">Blob</span><span class="p">)</span> <span class="p">{</span> <span class="kd">const</span> <span class="nx">frames</span> <span class="o">=</span> <span class="p">[];</span> <span class="c1">// This array grows linearly with video length!</span> <span class="kd">let</span> <span class="nx">currentTime</span> <span class="o">=</span> <span class="mi">0</span><span class="p">;</span> <span class="k">while </span><span class="p">(</span><span class="nx">currentTime</span> <span class="o">&lt;</span> <span class="nx">duration</span><span class="p">)</span> <span class="p">{</span> <span class="c1">// We were grabbing a frame, converting it to an ImageBitmap/Blob...</span> <span class="kd">const</span> <span class="nx">frame</span> <span class="o">=</span> <span class="k">await</span> <span class="nf">captureFrameAt</span><span class="p">(</span><span class="nx">videoSource</span><span class="p">,</span> <span class="nx">currentTime</span><span class="p">);</span> <span class="nx">frames</span><span class="p">.</span><span class="nf">push</span><span class="p">(</span><span class="nx">frame</span><span class="p">);</span> <span class="c1">// Every single frame stays in RAM until the end</span> <span class="nx">currentTime</span> <span class="o">+=</span> <span class="nx">interval</span><span class="p">;</span> <span class="p">}</span> <span class="k">return</span> <span class="nx">frames</span><span class="p">;</span> <span class="c1">// If you have 500 frames of a long clip? Goodbye memory!</span> <span class="p">}</span> </code></pre> </div> <p>In this "Load-All" approach, our memory complexity was $O(n)$, where $n$ is total number of extracted frames. For an 8MB video file might be fine—but for high-bitrate clips or longer sequences involving multiple stitches, the browser's heap would balloon until it hit its limit and killed the worker thread (and usually our entire app tab).</p> <h3> The Solution: Streaming Extraction </h3> <p>To fix this, we upgraded <code>framewebworker</code> to version 0.4.0 with a focus on <strong>Streaming Frame Extraction</strong>. Instead of accumulating an array of frames in memory before starting the stitch process, we moved toward $O(1)$ spatial complexity relative to total frame count (per step).</p> <p>We refactored our pipeline so that each extracted frame is processed through its next stage immediately—whether it's being passed into a WebCodecs encoder or written as part of an intermediate stream. </p> <p>Here’s how we restructured the logic:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight typescript"><code><span class="c1">// ✅ THE NEW WAY: Streaming approach (O(1) memory footprint per step)</span> <span class="k">async</span> <span class="kd">function</span> <span class="nf">processFramesStreaming</span><span class="p">(</span><span class="nx">videoSource</span><span class="p">:</span> <span class="nx">Blob</span><span class="p">,</span> <span class="nx">onFrameReady</span><span class="p">:</span> <span class="nx">Callback</span><span class="o">&lt;</span><span class="nx">Blob</span><span class="o">&gt;</span><span class="p">)</span> <span class="p">{</span> <span class="kd">let</span> <span class="nx">currentTime</span> <span class="o">=</span> <span class="mi">0</span><span class="p">;</span> <span class="kd">const</span> <span class="nx">interval</span> <span class="o">=</span> <span class="mi">1</span> <span class="o">/</span> <span class="mi">30</span><span class="p">;</span> <span class="c1">// target fps</span> <span class="k">while </span><span class="p">(</span><span class="nx">currentTime</span> <span class="o">&lt;</span> <span class="nx">duration</span><span class="p">)</span> <span class="p">{</span> <span class="c1">// Extract ONLY the current frame needed for this specific timestamp</span> <span class="kd">const</span> <span class="nx">singleFrameBuffer</span> <span class="o">=</span> <span class="k">await</span> <span class="nf">captureSingleFrame</span><span class="p">(</span><span class="nx">videoSource</span><span class="p">,</span> <span class="nx">currentTime</span><span class="p">);</span> <span class="cm">/** * Instead of pushing to a massive global array 'frames', * we emit it immediately. The downstream consumer (WebCodecs) * processes the frame and then allows this buffer to be garbage collected. */</span> <span class="k">await</span> <span class="nf">onFrameReady</span><span class="p">(</span><span class="nx">singleFrameBuffer</span><span class="p">);</span> <span class="nx">currentTime</span> <span class="o">+=</span> <span class="nx">interval</span><span class="p">;</span> <span class="p">}</span> <span class="p">}</span> </code></pre> </div> <h3> Why This Matters for Developers Building Heavy Web Apps </h3> <p>By moving from an "Accumulate-then-Process" model to a <strong>Streaming</strong> model, we achieved two critical wins:</p> <ol> <li> <strong>Memory Stability:</strong> The memory footprint of our worker is now tied more closely to the size of <em>one single frame</em> rather than total video duration/frame count. This makes mobile rendering significantly more reliable even on low-end devices with restricted heap sizes.</li> <li> <strong>Time To First Byte (TTFB) for Rendering:</strong> Because we start processing frames as soon as they are extracted, our downstream encoders can begin working immediately without waiting for the "extraction phase" to finish entirely.</li> </ol> <h3> The Takeaway </h3> <p>When building resource-intensive features in JavaScript—whether it’s video editing with FFmpeg/WebCodecs or heavy data visualization—always ask yourself: <strong>Is my memory usage $O(n)$?</strong> </p> <p>If your app's stability degrades as the input size increases, you don't have a logic bug; you have an architectural bottleneck. Switching to streaming-based processing is often more difficult than simple array manipulation (due to managing backpressure and state), but it’s what makes "pro" web tools possible on mobile browsers.</p> <p><em>ClipCrafter continues to evolve! Check out our latest updates for even faster WebCodecs hardware acceleration.</em></p> webdev typescript performance javascript Fixing "No Credentials Found" when using AWS SSO Profiles in Zsh nareshipme Fri, 24 Apr 2026 06:31:24 +0000 https://forem.com/nareshipme/fixing-no-credentials-found-when-using-aws-sso-profiles-in-zsh-3ogp https://forem.com/nareshipme/fixing-no-credentials-found-when-using-aws-sso-profiles-in-zsh-3ogp <p><strong>TL;DR:</strong> An AWS CLI alias was failing with "No credentials found" because the shell command was not explicitly pointing to the specific named profile configured for SSO. I fixed this by appending <code>--profile</code> to the command execution within the Zsh alias.</p> <p>I set up a new Zsh alias to automate my AWS SSO login process and update my local <code>~/.aws/credentials</code> file. The configuration in my <code>~/ .aws/config</code> looked correct:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight ini"><code><span class="nn">[profile 123456789012_AWSEngineerAccessRole]</span> <span class="py">sso_start_url</span> <span class="p">=</span> <span class="s">https://your-org.awsapps.com/start</span> <span class="py">sso_region</span> <span class="p">=</span> <span class="s">eu-west-2</span> <span class="py">sso_account_id</span> <span class="p">=</span> <span class="s">123456789012</span> <span class="py">sso_role_name</span> <span class="p">=</span> <span class="s">AWSEngineerAccessRole</span> <span class="py">region</span> <span class="p">=</span> <span class="s">eu-west-2</span> </code></pre> </div> <p>However, when running my custom login alias, the CLI returned this error:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight plaintext"><code>error: No credentials found in the configured profile. </code></pre> </div> <p>The issue was that <code>aws sso login</code> does not automatically assume you want to use a specific named profile if it isn't the <code>[default]</code> profile. If your configuration uses a custom profile name like <code>123456789012_AWSEngineerAccessRole</code>, running a bare <code>aws sso login</code> command causes the CLI to look for credentials under the <code>[default]</code> block. Since that block was empty or missing the SSO metadata, it failed immediately.</p> <p>To fix this, I updated my <code>.zshrc</code> alias to explicitly reference the profile name using the <code>--profile</code> flag:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code><span class="c"># Before (Failing)</span> <span class="nb">alias </span><span class="nv">awslogin</span><span class="o">=</span><span class="s2">"aws sso login"</span> <span class="c"># After (Working)</span> <span class="nb">alias </span><span class="nv">awslogin</span><span class="o">=</span><span class="s2">"aws sso login --profile 123456789012_AWSEngineerAccessRole"</span> </code></pre> </div> <p>By adding <code>--profile</code>, the AWS CLI knows exactly which block in <code>~/.aws/config</code> to parse for the <code>sso_start_url</code> and <code>sso_account_id</code>. Now, running <code>awslogin</code> triggers the browser authentication flow and correctly maps the session tokens to that specific profile.</p> aws cli zsh devops The domain name was just productive procrastination nareshipme Thu, 23 Apr 2026 15:54:37 +0000 https://forem.com/nareshipme/the-domain-name-was-just-productive-procrastination-16j2 https://forem.com/nareshipme/the-domain-name-was-just-productive-procrastination-16j2 <p>I finally reached a point with ClipCrafter where I had nothing left to hide behind in the code. </p> <p>The features were all there—authentication flows working perfectly, transcription logic solid, clip generation functional, and even an export system that didn't crash every five minutes. After about 238 pull requests, it wasn’t just a "cool experiment" anymore; it was actually running like a real product. But despite having the tech ready to go, I kept delaying one specific thing: getting a domain name.</p> <p>There is something deeply uncomfortable about attaching your own URL to an unfinished idea. As long as everything lived on some random deployment sub-domain or localhost, any bugs were just "developer quirks." Once you buy <code>something.com</code>, the project becomes real. It’s no longer yours alone; it belongs to whoever finds that link in a Google search and decides whether they like what they see.</p> <p>When I finally forced myself to face this hurdle last week, I hit an immediate wall of frustration. </p> <ul> <li>clipcrafter.com? Taken.</li> <li>clipcrafter.app? Taken.</li> <li>clipcrafter.io? Taken.</li> <li>clipcrafter.video? Also taken.</li> </ul> <p>I even had a brief moment where I considered just using my personal brand domain, <code>kshan.ai</code>. It felt safe because it was already mine and nothing could change with me personally failing at this project—but that would have been dishonest to the product itself. ClipCrafter needed its own identity. </p> <p>Instead of spiraling into a naming crisis, I decided to stop manual searching and wrote a quick script to check availability for different prefixes across various TLDs programmatically. It was much less emotional than clicking through domain registrars one by one. That’s when I found <code>getclipcrafter.com</code>. </p> <p>It wasn't "perfect," but it followed the classic indie hacker playbook—the same pattern used by giants like Postman (<code>getpostman.com</code>) or Figma (before they moved to their primary). It was cheap, available, and descriptive enough that people would know exactly what I do. Within minutes of buying it, my DNS records were updated and pointed at a live production deployment.</p> <p>Looking back on the last few days spent obsessing over TLDs ($com vs $io) or prefix choices (get- vs try-) was actually quite revealing to me. The domain research wasn't about branding; it was productive procrastination. I used "finding the perfect name" as a shield against launching because once that URL is live, you can no longer hide from feedback.</p> <p>The fear of someone using the tool and finding it broken or useless became much more concrete the moment <code>getclipcrafter.com</code> appeared in my browser bar. But strangely enough, making that fear real made it easier to face. You can't fix a product if nobody is looking at you actually ship it.</p> <p>The app is officially live now. No more excuses—time to find those first users and see what they think of the mess I’ve built.</p> webdev entrepreneurship buildinginpublic indiehackers When Turbopack Breaks Your Web Worker Builds nareshipme Thu, 23 Apr 2026 15:32:10 +0000 https://forem.com/nareshipme/when-turbopack-breaks-your-web-worker-builds-1ahe https://forem.com/nareshipme/when-turbopack-breaks-your-web-worker-builds-1ahe <p>In the world of modern frontend development, "speed" is usually a good thing. We want faster hot reloads during development and lightning-fast build times for production. </p> <p>Recently at ClipCrafter, we hit this wall head-on when upgrading to Next.js 16. While moving towards Turbopack promised us incredible developer experience improvements, it introduced a silent killer: our video processing engine stopped working in production builds because of how Webpack handles worker files differently than Turbo/Turbopack does during the build pipeline.</p> <h3> The Problem: A Broken Worker Pipeline </h3> <p>ClipCrafter relies heavily on <code>@ffmpeg/ffmpeg</code> to handle heavy-duty video manipulation directly in the browser. This requires loading a specific <code>.wasm</code> file and an ESM worker via a Blob URL at runtime. </p> <p>To make this work, we had configured a custom Webpack loader in <code>next.config.ts</code>. We needed specifically told webpack how to treat these files so they wouldn't be mangled during the bundling process:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight typescript"><code><span class="c1">// next.config.ts (The "Old" Way that worked)</span> <span class="kd">const</span> <span class="nx">nextConfig</span> <span class="o">=</span> <span class="p">{</span> <span class="na">webpack</span><span class="p">:</span> <span class="p">(</span><span class="nx">config</span><span class="p">,</span> <span class="p">{</span> <span class="nx">isServer</span> <span class="p">})</span> <span class="o">=&gt;</span> <span class="p">{</span> <span class="k">if </span><span class="p">(</span><span class="o">!</span><span class="nx">isServer</span><span class="p">)</span> <span class="p">{</span> <span class="c1">// We needed this custom loader to ensure ffmpeg-core </span> <span class="c1">// could be resolved correctly via Blob URLs at runtime.</span> <span class="nx">config</span><span class="p">.</span><span class="kr">module</span><span class="p">.</span><span class="nx">rules</span><span class="p">.</span><span class="nf">push</span><span class="p">({</span> <span class="na">test</span><span class="p">:</span> <span class="sr">/ffmpeg</span><span class="se">\/</span><span class="sr">dist</span><span class="se">\/</span><span class="sr">esm</span><span class="se">\/</span><span class="sr">worker</span><span class="se">\.</span><span class="sr">js$/</span><span class="p">,</span> <span class="na">loader</span><span class="p">:</span> <span class="dl">'</span><span class="s1">url-loader</span><span class="dl">'</span><span class="p">,</span> <span class="c1">// Or specialized worker loaders</span> <span class="p">});</span> <span class="p">}</span> <span class="k">return</span> <span class="nx">config</span><span class="p">;</span> <span class="p">},</span> <span class="p">};</span> </code></pre> </div> <p>When we upgraded, Next.js started defaulting to Turbopack for builds in certain environments. Since our configuration was strictly targeting the <code>webpack</code> object and didn't provide a corresponding Turbo-compatible instruction set via <code>turbo: { rules: ... }</code>, those critical worker files were being bundled incorrectly. The result? A production build that looked perfect but crashed with an "Uncaught TypeError" as soon as you tried to initialize any video clip processing.</p> <h3> Moving Toward Hardware Acceleration </h3> <p>While fixing the bundler, we also had a chance to look at our performance bottleneck. We realized <code>ffmpeg.wasm</code> was great for compatibility, but it's essentially running software-based encoding in JavaScript—which is slow and heavy on CPU usage. </p> <p>We decided to upgrade/integrate with <code>@framewebworker@0.3.0</code>. This library uses <strong>WebCodecs</strong>, a modern browser API that allows us to tap into the device’s hardware acceleration (H.264). The difference was night and day: we saw encoding speeds jump from "painfully slow" up to 10–50× faster on supported browsers, with an automatic fallback to our existing FFmpeg setup for older devices.</p> <h3> How We Fixed It </h3> <p>To get the build pipeline stable again while embracing these upgrades, we had two main tasks in a single PR:</p> <ol> <li><p><strong>Force Webpack for Production:</strong> Until Next.js provides more robust Turbopack configuration hooks specifically for complex WASM/Worker loaders like ours, we explicitly forced <code>webpack</code> during our production builds to ensure the <code>@ffmpeg/ffmpeg</code> worker remains intact and resolvable at runtime. </p></li> <li><p><strong>Clean up Route Exports:</strong> We also had a minor type-safety issue where arbitrary constants (like language lists) were being exported from Next.js App Router files, causing TypeScript violations in generated types during build time. In <code>route.ts</code>, you should <em>only</em> export HTTP handlers (<code>GET</code>, <code>POST</code>) and config objects.</p></li> </ol> <h3> The Lesson Learned </h3> <p>If your application relies on "heavy" browser APIs like WebAssembly (WASM), SharedArrayBuffer, or complex Worker threads: <strong>Don't assume the new default bundler just works.</strong> </p> <p>The transition from Webpack to Turbopack is a massive leap forward for dev speed, but it requires you to audit how your most critical pieces of infrastructure—the ones that don't follow standard "UI component" rules—are being bundled. We fixed our build by reverting the production engine back to its proven Webpack configuration while keeping all other Next.js 16 benefits intact.</p> <p><strong>Have you run into bundling issues with newer versions of Next.js? Let us know in the comments!</strong></p> nextjs typescript webassembly websockets Debugging "No Credentials Found" when Aliasing AWS SSO Login in ZSH nareshipme Thu, 23 Apr 2026 12:13:53 +0000 https://forem.com/nareshipme/debugging-the-ghost-credentials-when-your-cli-says-one-thing-and-your-config-says-another-4kf4 https://forem.com/nareshipme/debugging-the-ghost-credentials-when-your-cli-says-one-thing-and-your-config-says-another-4kf4 <p><strong>TL;DR:</strong> Creating a ZSH alias that runs <code>aws sso login</code> appeared to succeed, but subsequent commands failed with "no credentials found" because the alias was not correctly setting the profile for downstream tools.</p> <p>I was trying to streamline my workflow by adding an alias to my <code>.zshrc</code> to automate logging into a specific AWS SSO profile. The goal was simple: run one command, and have all subsequent AWS CLI commands work immediately using that authenticated session.</p> <p>The alias looked like this in my <code>.zshrc</code>:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code><span class="nb">alias </span><span class="nv">awslogin</span><span class="o">=</span><span class="s2">"aws sso login --profile 123456789012_AWSEngineerAccessRole"</span> </code></pre> </div> <p>When I ran <code>awslogin</code>, the terminal returned:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight plaintext"><code>Login successful </code></pre> </div> <p>However, as soon as I tried to list my S3 buckets using that same profile, the CLI threw a credential error:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight plaintext"><code>fatal error: An error occurred (NoCredentialsError) when calling the ListBuckets operation: unable to locate credentials. </code></pre> </div> <h3> The Root Cause </h3> <p>The issue was not with the SSO login itself — the browser-based authentication was completing successfully and updating the token cache in <code>~/.aws/sso/cache</code>. The problem was a mismatch between how I was initiating the session and how my AWS configuration was structured.</p> <p>In my <code>~/.aws/config</code>, I had defined the profile like this:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight ini"><code><span class="nn">[profile 123456789012_AWSEngineerAccessRole]</span> <span class="py">sso_start_url</span> <span class="p">=</span> <span class="s">https://your-org.awsapps.com/start</span> <span class="py">sso_region</span> <span class="p">=</span> <span class="s">eu-west-2</span> <span class="py">sso_account_id</span> <span class="p">=</span> <span class="s">123456789012</span> <span class="py">sso_role_name</span> <span class="p">=</span> <span class="s">AWSEngineerAccessRole</span> <span class="py">region</span> <span class="p">=</span> <span class="s">eu-west-2</span> </code></pre> </div> <p>While <code>aws sso login --profile &lt;name&gt;</code> successfully refreshed the SSO token, subsequent commands were failing because they were not explicitly told to use that specific profile. The AWS CLI defaults to looking for a <code>[default]</code> profile or <code>AWS_ACCESS_KEY_ID</code> environment variables. Since neither was set, it found nothing — even though the SSO token was valid.</p> <h3> The Fix </h3> <p>Update the alias to also export <code>AWS_PROFILE</code> after a successful login:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code><span class="nb">alias </span><span class="nv">awslogin</span><span class="o">=</span><span class="s1">'aws sso login --profile 123456789012_AWSEngineerAccessRole &amp;&amp; export AWS_PROFILE=123456789012_AWSEngineerAccessRole'</span> </code></pre> </div> <p>The <code>&amp;&amp;</code> means the export only runs if the login succeeded. From that point, every subsequent command in the shell session picks up the correct profile automatically — no <code>--profile</code> flag needed.</p> <p>Verification:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code><span class="nv">$ </span>awslogin Login successful <span class="nv">$ </span>aws s3 <span class="nb">ls</span> <span class="o">[</span>your buckets appear] <span class="nv">$ </span>aws sts get-caller-identity <span class="o">{</span> <span class="s2">"UserId"</span>: <span class="s2">"..."</span>, <span class="s2">"Account"</span>: <span class="s2">"123456789012"</span>, <span class="s2">"Arn"</span>: <span class="s2">"arn:aws:sts::123456789012:assumed-role/AWSEngineerAccessRole/..."</span> <span class="o">}</span> </code></pre> </div> <p>The <code>sts get-caller-identity</code> check is worth adding to your alias or running manually after login — it confirms the session is actually active, not just that the token handshake completed.</p> aws zsh devops cli Why We Switched from Stripe to Razorpay for ClipCrafter’s Billing Engine nareshipme Wed, 22 Apr 2026 14:01:20 +0000 https://forem.com/nareshipme/why-we-switched-from-stripe-to-razorpay-for-clipcrafters-billing-engine-331o https://forem.com/nareshipme/why-we-switched-from-stripe-to-razorpay-for-clipcrafters-billing-engine-331o <p>Building a SaaS is rarely just about the core feature. For us at ClipCrafter—an AI-powered video editor—the "video" part was actually one of our easier challenges. The real complexity crept in when we had to figure out how to charge people for it.</p> <p>Recently, we hit a major milestone: moving from an experimental Stripe setup into a production-ready billing system powered by Razorpay. While many developers default to Stripe because of its incredible documentation and global footprint, scaling ClipCrafter required us to rethink our payment architecture based on specific regional needs and usage enforcement.</p> <h3> The "Why" Behind the Pivot </h3> <p>When we first started prototyping Phase 10 (our Billing &amp; Payments phase), a dual-provider approach seemed attractive for international coverage via Stripe + Razorpay. However, as development progressed, it became clear that maintaining two separate webhooks, two different subscription lifec/ycles, and twofold error handling was creating massive technical debt in our Inngest workflows.</p> <p>We decided to simplify: <strong>Razorpay only.</strong> </p> <p>By focusing on a single provider for the initial launch phase (specifically targeting India-based payments), we were able to prune significant amounts of boilerplate code from both our Next.js API routes and our background workers. We removed <code>stripe_subscription_id</code> entirely, cleaned up our database migrations in Supabase, and focused strictly on usage enforcement via a unified schema.</p> <h3> Implementing Usage Enforcement </h3> <p>The real challenge wasn't just "taking money"—it was ensuring that if someone is on the 'Starter' plan, they don’t accidentally trigger an unlimited number of high-compute video renders using our WebWorker architecture. </p> <p>We needed a way to check usage limits before every single rendering job hit our worker queue via Inngest. Here is how we structured that logic in TypeScript:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight typescript"><code><span class="c1">// src/lib/billing.ts - Simplified Usage Check Logic</span> <span class="k">import</span> <span class="p">{</span> <span class="nx">createClient</span> <span class="p">}</span> <span class="k">from</span> <span class="dl">'</span><span class="s1">@supabase/supabase-js</span><span class="dl">'</span><span class="p">;</span> <span class="kr">interface</span> <span class="nx">UserBillingRow</span> <span class="p">{</span> <span class="nl">planKey</span><span class="p">:</span> <span class="dl">'</span><span class="s1">starter</span><span class="dl">'</span> <span class="o">|</span> <span class="dl">'</span><span class="s1">pro</span><span class="dl">'</span><span class="p">;</span> <span class="nl">videoCreditsRemaining</span><span class="p">:</span> <span class="kr">number</span><span class="p">;</span> <span class="p">}</span> <span class="k">export</span> <span class="k">async</span> <span class="kd">function</span> <span class="nf">validateRenderPermissions</span><span class="p">(</span><span class="nx">userId</span><span class="p">:</span> <span class="kr">string</span><span class="p">,</span> <span class="nx">supabaseClient</span><span class="p">:</span> <span class="kr">any</span><span class="p">)</span> <span class="p">{</span> <span class="c1">// 1. Fetch the current user billing status from Supabase</span> <span class="kd">const</span> <span class="p">{</span> <span class="na">data</span><span class="p">:</span> <span class="nx">billingData</span><span class="p">,</span> <span class="nx">error</span> <span class="p">}</span> <span class="o">=</span> <span class="k">await</span> <span class="nx">supabaseClient</span> <span class="p">.</span><span class="k">from</span><span class="p">(</span><span class="dl">'</span><span class="s1">user_billing</span><span class="dl">'</span><span class="p">)</span> <span class="p">.</span><span class="nf">select</span><span class="p">(</span><span class="dl">'</span><span class="s1">planKey, videoCreditsRemaining</span><span class="dl">'</span><span class="p">)</span> <span class="p">.</span><span class="nf">eq</span><span class="p">(</span><span class="dl">'</span><span class="s1">id</span><span class="dl">'</span><span class="p">,</span> <span class="nx">userId</span><span class="p">)</span> <span class="p">.</span><span class="nf">single</span><span class="p">();</span> <span class="k">if </span><span class="p">(</span><span class="nx">error</span> <span class="o">||</span> <span class="o">!</span><span class="nx">billingData</span><span class="p">)</span> <span class="p">{</span> <span class="k">throw</span> <span class="k">new</span> <span class="nc">Error</span><span class="p">(</span><span class="dl">"</span><span class="s2">Could not retrieve billing information.</span><span class="dl">"</span><span class="p">);</span> <span class="p">}</span> <span class="kd">const</span> <span class="p">{</span> <span class="nx">planKey</span><span class="p">,</span> <span class="nx">videoCreditsRemaining</span> <span class="p">}</span> <span class="o">=</span> <span class="nx">billingData</span> <span class="k">as</span> <span class="nx">UserBillingRow</span><span class="p">;</span> <span class="c1">// 2. Enforce hard limits based on the Plan Key</span> <span class="nx">console</span><span class="p">.</span><span class="nf">log</span><span class="p">(</span><span class="s2">`Checking permissions for </span><span class="p">${</span><span class="nx">planKey</span><span class="p">}</span><span class="s2"> user...`</span><span class="p">);</span> <span class="k">if </span><span class="p">(</span><span class="nx">videoCreditsRemaining</span> <span class="o">&lt;=</span> <span class="mi">0</span><span class="p">)</span> <span class="p">{</span> <span class="k">throw</span> <span class="k">new</span> <span class="nc">Error</span><span class="p">(</span><span class="dl">"</span><span class="s2">No credits remaining! Please upgrade your plan.</span><span class="dl">"</span><span class="p">);</span> <span class="p">}</span> <span class="k">return</span> <span class="kc">true</span><span class="p">;</span> <span class="c1">// Permission granted to proceed with rendering task</span> <span class="p">}</span> </code></pre> </div> <h3> The Lesson: Pruning is as important as Adding </h3> <p>The most satisfying part of this refactor wasn't adding the Razorpay integration—it was deleting everything related to Stripe. We removed entire client libraries, deleted webhook listeners that were no longer being triggered, and cleaned up our <code>PlanBadge</code> components which previously had "zombie" styles for plans we weren't even supporting anymore via a specific provider.</p> <p>In software engineering (and especially in early-stage startups), there is an immense temptation to build every possible integration from Day 1 just because you <em>might</em> need it later. We learned that the complexity of managing two payment gateways far outweighed any potential benefit for our current user base.</p> <h3> Takeaway </h3> <p>If you're building a global SaaS, don't let "feature creep" infect your core infrastructure before they even pay their first invoice. Pick one provider, master its webhook lifecycle and usage enforcement patterns (like we did with Inngest + Supabase), and only expand when the market—not your imagination—demands it.</p> <p><strong>What’s your experience with payment gateways? Did you stick to Stripe or find a more localized solution for much of less friction? Let us know in the comments!</strong></p> typescript nextjs razorpay webdev Dev Journal: 2026-04-21 nareshipme Tue, 21 Apr 2026 06:42:21 +0000 https://forem.com/nareshipme/dev-journal-2026-04-21-1iei https://forem.com/nareshipme/dev-journal-2026-04-21-1iei <p>/Users/ONBAdmin/Development/term-sheet/scripts/daily-blog.sh: line 132: /users/ONBAdmin/.nvm/versions/node/v20.19.0/bin/claude: No such file or directory</p> Dev Journal: 2026-04-21 nareshipme Tue, 21 Apr 2026 06:30:08 +0000 https://forem.com/nareshipme/dev-journal-2026-04-21-4ph https://forem.com/nareshipme/dev-journal-2026-04-21-4ph <p>Not logged in · Please run /login</p>