# Chapter 45: Building a Blog Platform

Building a production-ready blog platform demonstrates how Next.js features integrate into cohesive architectures. This chapter walks through creating a modern content management system with rich text editing, authentication, SEO optimization, and scalable deployment strategies. You'll apply patterns from Server Components, caching strategies, and database integration to build a platform that rivals dedicated CMS solutions.

By the end of this chapter, you'll architect a scalable blog project structure, design normalized database schemas for content relationships, implement secure authentication flows for authors, build MDX-based content management with syntax highlighting, generate dynamic SEO metadata and sitemaps, deploy with ISR for instant global performance, and plan for traffic scaling with connection pooling and edge caching.

## 45.1 Project Planning

Establishing architecture decisions before coding prevents costly refactoring.

### Architecture Overview

Feature-Sliced Design (FSD) adapted for Next.js App Router:

```typescript
// Project structure
my-blog/
├── app/                          # Next.js App Router
│   ├── (blog)/                   # Route group for blog layout
│   │   ├── [slug]/page.tsx       # Individual post
│   │   ├── category/[id]/page.tsx
│   │   ├── layout.tsx            # Blog layout with nav
│   │   └── page.tsx              # Blog home
│   ├── api/                      # API routes & Server Actions
│   ├── layout.tsx                # Root layout
│   └── page.tsx                  # Marketing home
├── src/
│   ├── entities/                 # Business entities
│   │   ├── post/
│   │   │   ├── model/            # Types & validation
│   │   │   ├── queries/          # Database queries
│   │   │   └── ui/               # Post components
│   │   ├── author/
│   │   └── category/
│   ├── features/                 # User features
│   │   ├── create-post/          # Server Actions + UI
│   │   ├── auth/
│   │   └── comment/
│   ├── widgets/                  # Complex compositions
│   │   ├── post-card/
│   │   └── comment-section/
│   ├── shared/                   # Shared infrastructure
│   │   ├── lib/                  # Utilities, prisma client
│   │   ├── ui/                   # Design system
│   │   └── config/               # Env, constants
│   └── middleware.ts             # Auth guards
├── prisma/
│   └── schema.prisma             # Database schema
├── content/                      # Static MDX fallback
└── public/                       # Static assets
```

### Technical Requirements Specification

Define the platform capabilities:

```typescript
// shared/config/requirements.ts
export const blogRequirements = {
  content: {
    formats: ['mdx', 'markdown'],
    features: [
      'syntax-highlighting',
      'interactive-components',
      'math-equations',
      'image-optimization',
    ],
    publishing: ['draft', 'scheduled', 'published'],
  },
  performance: {
    targetLCP: 1200, // ms
    targetFID: 100,  // ms
    targetCLS: 0.1,
    caching: {
      posts: 3600,      // 1 hour ISR
      home: 300,        // 5 minutes ISR
      static: 'immutable',
    },
  },
  seo: {
    generateSitemap: true,
    structuredData: true,
    rss: true,
    openGraph: true,
  },
  auth: {
    providers: ['github', 'google'],
    roles: ['reader', 'author', 'admin'],
    sessions: 'jwt', // or 'database'
  },
} as const;

// Type-safe feature flags
export type Feature = typeof blogRequirements.content.features[number];
```

### Environment Configuration

Separate concerns across environments:

```env
# .env.local (development)
DATABASE_URL="postgresql://user:pass@localhost:5432/blog"
NEXTAUTH_URL="http://localhost:3000"
NEXTAUTH_SECRET="dev-secret-change-in-production"
GITHUB_ID="..."
GITHUB_SECRET="..."
UPSTASH_REDIS_REST_URL="..."
UPSTASH_REDIS_REST_TOKEN="..."

# Production-specific (Vercel Environment Variables)
# DATABASE_URL - Neon or Supabase pooled connection
# NEXTAUTH_URL - https://yourdomain.com
# ANALYZE_BUNDLE="true" (for build analysis)
```

## 45.2 Database Schema Design

Relational schema optimized for content relationships and query performance.

### Prisma Schema Definition

```prisma
// prisma/schema.prisma
generator client {
  provider = "prisma-client-js"
}

datasource db {
  provider = "postgresql"
  url      = env("DATABASE_URL")
  directUrl = env("DIRECT_URL") // For migrations (non-pooled)
}

// User management with NextAuth
model Account {
  id                String  @id @default(cuid())
  userId            String
  type              String
  provider          String
  providerAccountId String
  refresh_token     String? @db.Text
  access_token      String? @db.Text
  expires_at        Int?
  token_type        String?
  scope             String?
  id_token          String? @db.Text
  session_state     String?

  user User @relation(fields: [userId], references: [id], onDelete: Cascade)

  @@unique([provider, providerAccountId])
  @@index([userId])
}

model Session {
  id           String   @id @default(cuid())
  sessionToken String   @unique
  userId       String
  expires      DateTime
  user         User     @relation(fields: [userId], references: [id], onDelete: Cascade)
  
  @@index([userId])
}

model User {
  id            String    @id @default(cuid())
  name          String?
  email         String    @unique
  emailVerified DateTime?
  image         String?
  role          UserRole  @default(READER)
  accounts      Account[]
  sessions      Session[]
  posts         Post[]
  comments      Comment[]
  createdAt     DateTime  @default(now())
}

model VerificationToken {
  identifier String
  token      String   @unique
  expires    DateTime

  @@unique([identifier, token])
}

enum UserRole {
  READER
  AUTHOR
  ADMIN
}

// Content schema
model Post {
  id          String   @id @default(cuid())
  slug        String   @unique
  title       String
  excerpt     String?  @db.Text
  content     String   @db.Text // MDX content
  status      PostStatus @default(DRAFT)
  featured    Boolean  @default(false)
  readingTime Int      @default(0)
  views       Int      @default(0)
  
  // Relations
  authorId    String
  author      User     @relation(fields: [authorId], references: [id])
  
  categories  Category[]
  tags        Tag[]
  comments    Comment[]
  
  // Metadata
  coverImage  String?
  publishedAt DateTime?
  createdAt   DateTime @default(now())
  updatedAt   DateTime @updatedAt

  @@index([status, publishedAt])
  @@index([slug])
  @@index([authorId])
  @@fulltext([title, content]) // For search
}

model Category {
  id          String    @id @default(cuid())
  name        String    @unique
  slug        String    @unique
  description String?
  posts       Post[]
  
  @@index([slug])
}

model Tag {
  id    String @id @default(cuid())
  name  String @unique
  slug  String @unique
  posts Post[]
  
  @@index([slug])
}

model Comment {
  id        String   @id @default(cuid())
  content   String   @db.Text
  postId    String
  post      Post     @relation(fields: [postId], references: [id], onDelete: Cascade)
  authorId  String
  author    User     @relation(fields: [authorId], references: [id], onDelete: Cascade)
  parentId  String?  // For nested replies
  parent    Comment? @relation("CommentReplies", fields: [parentId], references: [id])
  replies   Comment[] @relation("CommentReplies")
  createdAt DateTime @default(now())
  
  @@index([postId])
  @@index([authorId])
}

enum PostStatus {
  DRAFT
  SCHEDULED
  PUBLISHED
  ARCHIVED
}
```

### Database Access Patterns

Optimized query layer with connection pooling:

```typescript
// shared/lib/db.ts
import { PrismaClient } from '@prisma/client';
import { Pool } from '@neondatabase/serverless';
import { PrismaNeon } from '@prisma/adapter-neon';

const globalForPrisma = global as unknown as { prisma: PrismaClient };

// Connection pooling for serverless environments
const createPrismaClient = () => {
  if (process.env.DATABASE_URL?.includes('neon.tech')) {
    const pool = new Pool({ connectionString: process.env.DATABASE_URL });
    const adapter = new PrismaNeon(pool);
    return new PrismaClient({ adapter });
  }
  
  return new PrismaClient({
    log: process.env.NODE_ENV === 'development' ? ['query', 'error', 'warn'] : ['error'],
  });
};

export const prisma = globalForPrisma.prisma || createPrismaClient();

if (process.env.NODE_ENV !== 'production') globalForPrisma.prisma = prisma;

// Optimized queries for blog operations
export const postQueries = {
  // Get published posts with pagination
  getPublished: async ({ page = 1, limit = 10, category }: { 
    page?: number; 
    limit?: number;
    category?: string;
  }) => {
    const where = {
      status: 'PUBLISHED' as const,
      publishedAt: { lte: new Date() },
      ...(category && { categories: { some: { slug: category } } }),
    };

    const [posts, total] = await Promise.all([
      prisma.post.findMany({
        where,
        include: {
          author: {
            select: { name: true, image: true },
          },
          categories: { select: { name: true, slug: true } },
          _count: { select: { comments: true } },
        },
        orderBy: { publishedAt: 'desc' },
        skip: (page - 1) * limit,
        take: limit,
      }),
      prisma.post.count({ where }),
    ]);

    return { posts, total, pages: Math.ceil(total / limit) };
  },

  // Get single post by slug with related content
  getBySlug: async (slug: string) => {
    return prisma.post.findUnique({
      where: { slug },
      include: {
        author: {
          select: { name: true, image: true, email: true },
        },
        categories: true,
        tags: true,
        comments: {
          where: { parentId: null },
          include: {
            author: { select: { name: true, image: true } },
            replies: {
              include: {
                author: { select: { name: true, image: true } },
              },
            },
          },
          orderBy: { createdAt: 'desc' },
        },
      },
    });
  },

  // Increment view count (fire and forget)
  incrementViews: (id: string) => {
    return prisma.post.update({
      where: { id },
      data: { views: { increment: 1 } },
    }).catch(() => null); // Silent fail for analytics
  },
};
```

## 45.3 Authentication Setup

Secure access control for content management.

### NextAuth Configuration

```typescript
// app/api/auth/[...nextauth]/route.ts
import NextAuth from 'next-auth';
import GithubProvider from 'next-auth/providers/github';
import GoogleProvider from 'next-auth/providers/google';
import { PrismaAdapter } from '@auth/prisma-adapter';
import { prisma } from '@/shared/lib/db';
import { NextAuthOptions } from 'next-auth';

export const authOptions: NextAuthOptions = {
  adapter: PrismaAdapter(prisma),
  providers: [
    GithubProvider({
      clientId: process.env.GITHUB_ID!,
      clientSecret: process.env.GITHUB_SECRET!,
    }),
    GoogleProvider({
      clientId: process.env.GOOGLE_ID!,
      clientSecret: process.env.GOOGLE_SECRET!,
    }),
  ],
  callbacks: {
    async session({ session, user }) {
      if (session.user) {
        session.user.id = user.id;
        session.user.role = user.role;
      }
      return session;
    },
    async signIn({ user, account, profile }) {
      // Restrict sign-in to specific domains for internal blogs
      if (process.env.ALLOWED_EMAIL_DOMAIN) {
        const email = user.email || profile?.email;
        if (!email?.endsWith(`@${process.env.ALLOWED_EMAIL_DOMAIN}`)) {
          return false;
        }
      }
      return true;
    },
  },
  pages: {
    signIn: '/auth/signin',
    error: '/auth/error',
  },
  session: {
    strategy: 'database',
    maxAge: 30 * 24 * 60 * 60, // 30 days
  },
};

const handler = NextAuth(authOptions);
export { handler as GET, handler as POST };
```

### Protected Route Handlers

```typescript
// app/api/posts/route.ts
import { authOptions } from '@/app/api/auth/[...nextauth]/route';
import { getServerSession } from 'next-auth';
import { NextResponse } from 'next/server';
import { z } from 'zod';
import { prisma } from '@/shared/lib/db';
import { revalidatePath } from 'next/cache';

const createPostSchema = z.object({
  title: z.string().min(1).max(200),
  content: z.string().min(1),
  excerpt: z.string().optional(),
  slug: z.string().regex(/^[a-z0-9-]+$/),
  categoryIds: z.array(z.string()).optional(),
  published: z.boolean().default(false),
});

export async function POST(request: Request) {
  const session = await getServerSession(authOptions);
  
  if (!session?.user || !['AUTHOR', 'ADMIN'].includes(session.user.role)) {
    return NextResponse.json({ error: 'Unauthorized' }, { status: 401 });
  }

  try {
    const body = await request.json();
    const data = createPostSchema.parse(body);

    const post = await prisma.post.create({
      data: {
        ...data,
        authorId: session.user.id,
        status: data.published ? 'PUBLISHED' : 'DRAFT',
        publishedAt: data.published ? new Date() : null,
        categories: {
          connect: data.categoryIds?.map(id => ({ id })),
        },
      },
    });

    // Revalidate cache
    revalidatePath('/(blog)');
    revalidatePath(`/(blog)/${data.slug}`);

    return NextResponse.json(post, { status: 201 });
  } catch (error) {
    if (error instanceof z.ZodError) {
      return NextResponse.json({ error: error.errors }, { status: 400 });
    }
    console.error('Post creation error:', error);
    return NextResponse.json({ error: 'Internal error' }, { status: 500 });
  }
}
```

## 45.4 Content Management

MDX-powered content with live preview and validation.

### MDX Processing Pipeline

```typescript
// shared/lib/mdx.ts
import { compileMDX } from 'next-mdx-remote/rsc';
import { readFileSync } from 'fs';
import { join } from 'path';
import rehypePrettyCode from 'rehype-pretty-code';
import rehypeSlug from 'rehype-slug';
import rehypeAutolinkHeadings from 'rehype-autolink-headings';
import remarkGfm from 'remark-gfm';
import { components } from '@/shared/ui/mdx-components';

export async function getPostContent(content: string) {
  const { content: mdxContent, frontmatter } = await compileMDX({
    source: content,
    components,
    options: {
      parseFrontmatter: true,
      mdxOptions: {
        remarkPlugins: [remarkGfm],
        rehypePlugins: [
          rehypeSlug,
          [rehypeAutolinkHeadings, { behavior: 'wrap' }],
          [rehypePrettyCode, {
            theme: 'github-dark',
            keepBackground: true,
          }],
        ],
      },
    },
  });

  return { content: mdxContent, frontmatter };
}

// Custom MDX components
// shared/ui/mdx-components.tsx
import Image from 'next/image';
import { CodeBlock } from './code-block';
import { Callout } from './callout';

export const components = {
  Image: (props: any) => (
    <div className="my-6 overflow-hidden rounded-lg">
      <Image
        {...props}
        width={800}
        height={400}
        className="w-full h-auto"
        alt={props.alt || ''}
      />
    </div>
  ),
  pre: CodeBlock,
  Callout,
  h2: (props: any) => <h2 className="text-2xl font-bold mt-8 mb-4" {...props} />,
  h3: (props: any) => <h3 className="text-xl font-bold mt-6 mb-3" {...props} />,
  p: (props: any) => <p className="my-4 leading-7 text-gray-700" {...props} />,
  ul: (props: any) => <ul className="list-disc pl-6 my-4" {...props} />,
  ol: (props: any) => <ol className="list-decimal pl-6 my-4" {...props} />,
  code: (props: any) => (
    <code className="bg-gray-100 px-1.5 py-0.5 rounded text-sm font-mono" {...props} />
  ),
};
```

### Post Editor Interface

Server Actions for content management:

```typescript
// features/create-post/actions.ts
'use server';

import { revalidatePath } from 'next/cache';
import { redirect } from 'next/navigation';
import { prisma } from '@/shared/lib/db';
import { slugify } from '@/shared/lib/utils';
import { authOptions } from '@/app/api/auth/[...nextauth]/route';
import { getServerSession } from 'next-auth';

export async function createPost(formData: FormData) {
  const session = await getServerSession(authOptions);
  
  if (!session?.user || session.user.role === 'READER') {
    throw new Error('Unauthorized');
  }

  const title = formData.get('title') as string;
  const content = formData.get('content') as string;
  const excerpt = formData.get('excerpt') as string;
  const published = formData.get('published') === 'on';
  
  const slug = slugify(title);

  // Check for duplicate slug
  const existing = await prisma.post.findUnique({ where: { slug } });
  if (existing) {
    throw new Error('A post with this title already exists');
  }

  const post = await prisma.post.create({
    data: {
      title,
      content,
      excerpt: excerpt || content.slice(0, 200) + '...',
      slug,
      authorId: session.user.id,
      status: published ? 'PUBLISHED' : 'DRAFT',
      publishedAt: published ? new Date() : null,
    },
  });

  revalidatePath('/(blog)');
  redirect(`/${post.slug}`);
}

export async function saveDraft(postId: string, content: string) {
  await prisma.post.update({
    where: { id: postId },
    data: { content, updatedAt: new Date() },
  });
  
  // No revalidation for drafts - keep them private
}
```

## 45.5 SEO Optimization

Comprehensive search engine optimization with dynamic metadata.

### Dynamic Metadata Generation

```typescript
// app/(blog)/[slug]/page.tsx
import { Metadata } from 'next';
import { notFound } from 'next/navigation';
import { postQueries } from '@/shared/lib/db';
import { PostContent } from '@/entities/post/ui/post-content';
import { PostSidebar } from '@/widgets/post-sidebar';

interface Props {
  params: { slug: string };
}

export async function generateMetadata({ params }: Props): Promise<Metadata> {
  const post = await postQueries.getBySlug(params.slug);
  
  if (!post) return { title: 'Post Not Found' };

  const ogImage = post.coverImage || `/api/og?title=${encodeURIComponent(post.title)}`;

  return {
    title: post.title,
    description: post.excerpt,
    authors: [{ name: post.author.name }],
    openGraph: {
      title: post.title,
      description: post.excerpt,
      type: 'article',
      publishedTime: post.publishedAt?.toISOString(),
      authors: [post.author.name],
      images: [{ url: ogImage, width: 1200, height: 630 }],
    },
    twitter: {
      card: 'summary_large_image',
      title: post.title,
      description: post.excerpt,
      images: [ogImage],
    },
    alternates: {
      canonical: `https://yourdomain.com/${post.slug}`,
    },
    robots: {
      index: post.status === 'PUBLISHED',
      follow: post.status === 'PUBLISHED',
    },
  };
}

export async function generateStaticParams() {
  const posts = await prisma.post.findMany({
    where: { status: 'PUBLISHED' },
    select: { slug: true },
  });

  return posts.map((post) => ({
    slug: post.slug,
  }));
}

export default async function PostPage({ params }: Props) {
  const post = await postQueries.getBySlug(params.slug);

  if (!post || post.status !== 'PUBLISHED') {
    notFound();
  }

  // Fire and forget view increment
  postQueries.incrementViews(post.id);

  return (
    <article className="max-w-4xl mx-auto py-8">
      <header className="mb-8">
        <h1 className="text-4xl font-bold mb-4">{post.title}</h1>
        <div className="flex items-center gap-4 text-gray-600">
          <span>{post.author.name}</span>
          <span>•</span>
          <time dateTime={post.publishedAt?.toISOString()}>
            {new Date(post.publishedAt!).toLocaleDateString()}
          </time>
          <span>•</span>
          <span>{post.readingTime} min read</span>
        </div>
      </header>

      <div className="grid grid-cols-1 md:grid-cols-4 gap-8">
        <div className="md:col-span-3">
          <PostContent content={post.content} />
        </div>
        <aside className="hidden md:block">
          <PostSidebar categories={post.categories} tags={post.tags} />
        </aside>
      </div>
    </article>
  );
}
```

### Sitemap and RSS Generation

```typescript
// app/sitemap.ts
import { MetadataRoute } from 'next';
import { prisma } from '@/shared/lib/db';

export default async function sitemap(): Promise<MetadataRoute.Sitemap> {
  const baseUrl = 'https://yourdomain.com';

  // Get all published posts
  const posts = await prisma.post.findMany({
    where: { status: 'PUBLISHED' },
    select: { slug: { updatedAt: true } },
  });

  // Get all categories
  const categories = await prisma.category.findMany({
    select: { slug: true, updatedAt: true },
  });

  const postUrls = posts.map((post) => ({
    url: `${baseUrl}/${post.slug}`,
    lastModified: post.updatedAt,
    changeFrequency: 'weekly' as const,
    priority: 0.8,
  }));

  const categoryUrls = categories.map((cat) => ({
    url: `${baseUrl}/category/${cat.slug}`,
    lastModified: cat.updatedAt,
    changeFrequency: 'daily' as const,
    priority: 0.6,
  }));

  return [
    {
      url: baseUrl,
      lastModified: new Date(),
      changeFrequency: 'daily',
      priority: 1,
    },
    ...postUrls,
    ...categoryUrls,
  ];
}

// app/rss.xml/route.ts
export async function GET() {
  const posts = await prisma.post.findMany({
    where: { status: 'PUBLISHED' },
    include: { author: { select: { name: true } } },
    orderBy: { publishedAt: 'desc' },
    take: 20,
  });

  const rss = `<?xml version="1.0" encoding="UTF-8"?>
<rss version="2.0" xmlns:atom="http://www.w3.org/2005/Atom">
  <channel>
    <title>My Blog</title>
    <link>https://yourdomain.com</link>
    <description>Latest posts from my blog</description>
    <language>en</language>
    <lastBuildDate>${new Date().toUTCString()}</lastBuildDate>
    <atom:link href="https://yourdomain.com/rss.xml" rel="self" type="application/rss+xml"/>
    ${posts.map(post => `
      <item>
        <title>${escapeXml(post.title)}</title>
        <link>https://yourdomain.com/${post.slug}</link>
        <guid>https://yourdomain.com/${post.slug}</guid>
        <pubDate>${new Date(post.publishedAt!).toUTCString()}</pubDate>
        <author>${post.author.email}</author>
        <description>${escapeXml(post.excerpt || '')}</description>
      </item>
    `).join('')}
  </channel>
</rss>`;

  return new Response(rss, {
    headers: {
      'Content-Type': 'application/xml',
      'Cache-Control': 'public, max-age=3600',
    },
  });
}

function escapeXml(unsafe: string): string {
  return unsafe.replace(/[<>&'"]/g, (c) => {
    switch (c) {
      case '<': return '&lt;';
      case '>': return '&gt;';
      case '&': return '&amp;';
      case '\'': return '&apos;';
      case '"': return '&quot;';
      default: return c;
    }
  });
}
```

## 45.6 Deployment

Production deployment with ISR and edge optimization.

### Build Configuration

```typescript
// next.config.js
/** @type {import('next').NextConfig} */
const nextConfig = {
  experimental: {
    ppr: true, // Partial Prerendering
  },
  images: {
    formats: ['image/avif', 'image/webp'],
    remotePatterns: [
      { hostname: 'avatars.githubusercontent.com' },
      { hostname: '**.supabase.co' },
    ],
  },
  headers: async () => [
    {
      source: '/:path*',
      headers: [
        {
          key: 'X-DNS-Prefetch-Control',
          value: 'on',
        },
      ],
    },
  ],
  redirects: async () => [
    {
      source: '/blog/:slug',
      destination: '/:slug',
      permanent: true,
    },
  ],
};

module.exports = nextConfig;
```

### Vercel Deployment Setup

```json
// vercel.json
{
  "functions": {
    "app/api/posts/route.ts": {
      "maxDuration": 30
    }
  },
  "crons": [
    {
      "path": "/api/revalidate",
      "schedule": "0 */6 * * *"
    }
  ]
}
```

### ISR Revalidation Strategy

```typescript
// app/api/revalidate/route.ts
import { revalidatePath, revalidateTag } from 'next/cache';
import { NextRequest, NextResponse } from 'next/server';

export async function GET(request: NextRequest) {
  const secret = request.nextUrl.searchParams.get('secret');
  
  if (secret !== process.env.REVALIDATE_SECRET) {
    return NextResponse.json({ error: 'Invalid secret' }, { status: 401 });
  }

  try {
    // Revalidate home and blog index
    revalidatePath('/', 'page');
    revalidatePath('/(blog)', 'layout');
    
    // Revalidate popular posts
    const popularPosts = await prisma.post.findMany({
      where: { status: 'PUBLISHED' },
      orderBy: { views: 'desc' },
      take: 10,
      select: { slug: true },
    });

    await Promise.all(
      popularPosts.map(post => 
        revalidatePath(`/${post.slug}`, 'page')
      )
    );

    return NextResponse.json({ 
      revalidated: true, 
      timestamp: Date.now(),
      paths: popularPosts.map(p => p.slug),
    });
  } catch (error) {
    return NextResponse.json(
      { error: 'Revalidation failed' }, 
      { status: 500 }
    );
  }
}
```

## 45.7 Scaling Considerations

Architectural decisions for high-traffic scenarios.

### Database Connection Management

```typescript
// shared/lib/db-edge.ts
// Edge-compatible database client for middleware/edge functions
import { Pool } from '@neondatabase/serverless';
import { PrismaNeon } from '@prisma/adapter-neon';
import { PrismaClient } from '@prisma/client';

const globalForPrismaEdge = global as unknown as { 
  prismaEdge: PrismaClient 
};

export const prismaEdge = 
  globalForPrismaEdge.prismaEdge || 
  new PrismaClient({
    adapter: new PrismaNeon(
      new Pool({ 
        connectionString: process.env.DATABASE_URL,
        maxConnections: 10, // Limit for edge functions
      })
    ),
  });

if (process.env.NODE_ENV !== 'production') {
  globalForPrismaEdge.prismaEdge = prismaEdge;
}
```

### Caching Strategy

```typescript
// shared/lib/cache.ts
import { unstable_cache } from 'next/cache';
import { prisma } from './db';

// Cached queries with tags for invalidation
export const getCachedCategories = unstable_cache(
  async () => {
    return prisma.category.findMany({
      include: { _count: { select: { posts: true } } },
    });
  },
  ['categories'],
  { revalidate: 3600, tags: ['categories'] }
);

export const getCachedPopularPosts = unstable_cache(
  async (limit = 5) => {
    return prisma.post.findMany({
      where: { status: 'PUBLISHED' },
      orderBy: { views: 'desc' },
      take: limit,
      select: {
        slug: true,
        title: true,
        views: true,
        publishedAt: true,
      },
    });
  },
  ['popular-posts'],
  { revalidate: 1800, tags: ['posts', 'analytics'] }
);
```

### Rate Limiting for API Routes

```typescript
// middleware.ts
import { NextResponse } from 'next/server';
import type { NextRequest } from 'next/server';
import { Ratelimit } from '@upstash/ratelimit';
import { Redis } from '@upstash/redis';

const ratelimit = new Ratelimit({
  redis: Redis.fromEnv(),
  limiter: Ratelimit.slidingWindow(10, '10 s'),
  analytics: true,
});

export async function middleware(request: NextRequest) {
  // Rate limit comment submissions
  if (request.nextUrl.pathname === '/api/comments') {
    const ip = request.ip ?? '127.0.0.1';
    const { success, limit, reset, remaining } = await ratelimit.limit(ip);

    if (!success) {
      return new NextResponse('Too Many Requests', {
        status: 429,
        headers: {
          'X-RateLimit-Limit': limit.toString(),
          'X-RateLimit-Remaining': remaining.toString(),
          'X-RateLimit-Reset': reset.toString(),
        },
      });
    }
  }

  return NextResponse.next();
}

export const config = {
  matcher: ['/api/comments', '/api/posts'],
};
```

## Key Takeaways from Chapter 45

1. **Project Architecture**: Organize code using Feature-Sliced Design with clear separation between entities (posts, authors), features (create-post, auth), and widgets (post-card). Keep the App Router directory for routing concerns only, moving business logic to the `src` folder for better maintainability.

2. **Database Design**: Use Prisma with PostgreSQL for relational content (posts, categories, tags, comments). Implement connection pooling via Neon or PgBouncer for serverless environments. Create compound indexes on `(status, publishedAt)` for efficient published post queries, and use full-text search for content discovery.

3. **Authentication Flow**: Configure NextAuth.js with PrismaAdapter for session management, restricting registration to specific email domains for internal blogs. Implement role-based access control (READER, AUTHOR, ADMIN) in the session callback and protect Server Actions by checking session roles before executing database operations.

4. **Content Pipeline**: Process MDX content using `next-mdx-remote` with rehype plugins for syntax highlighting (rehype-pretty-code), heading anchors (rehype-autolink-headings), and GitHub-flavored markdown (remark-gfm). Create a component mapping system for custom MDX elements (Callout, Image, CodeBlock) that optimizes images and maintains consistent typography.

5. **SEO Implementation**: Generate dynamic metadata in `generateMetadata` using post data for OpenGraph images, Twitter cards, and canonical URLs. Create automated sitemap.ts and rss.xml/route.ts files that query the database at build time (or use ISR for large sites) to ensure search engines discover all content immediately upon publishing.

6. **Deployment Optimization**: Enable Partial Prerendering (PPR) for pages with both static shells and dynamic data. Configure ISR with `revalidatePath` triggered by webhooks or cron jobs to refresh content without full rebuilds. Use Vercel's edge network for global caching of static assets and API responses.

7. **Scaling Patterns**: Implement connection pooling with 10-max connections for edge functions to prevent database saturation. Use `unstable_cache` with tags for expensive queries (popular posts, categories) to reduce database load. Add rate limiting via Upstash Redis for mutation endpoints (comments, form submissions) to prevent spam and abuse during traffic spikes.

## Coming Up Next

**Chapter 46: Building an E-commerce Store**

Now that you've built a content platform, it's time to tackle transactional applications. In Chapter 46, we'll architect a full e-commerce solution with product catalogs, shopping cart state management, Stripe payment integration, inventory tracking, and order management systems. You'll learn to handle secure payment flows, implement optimistic UI updates for cart operations, and build admin dashboards for store management using Next.js Server Actions and third-party API integrations.