# Chapter 12: DApp Architecture

---

## 12.1 Understanding DApps

### 12.1.1 Definition and Characteristics

A **Decentralized Application (DApp)** is an application that runs on a decentralized network (typically a blockchain) rather than on centralized servers. Unlike traditional apps where the backend code runs on company-owned servers, DApps have their backend logic executed on a peer-to-peer network, with data stored on a distributed ledger.

Think of a DApp as a traditional web application, but instead of the backend being a black box controlled by a company, the backend is a smart contract running on a blockchain, visible to everyone, and executed by a global network of computers.

```
Traditional App vs. DApp:

Traditional Application:
┌─────────────────────────────────────────────────────┐
│                                                     │
│   ┌──────────┐         ┌──────────┐                │
│   │ Frontend │────────▶│ Backend  │                │
│   │ (Browser)│         │ (Server) │                │
│   └──────────┘         └────┬─────┘                │
│                             │                      │
│                             ▼                      │
│                       ┌────────────┐               │
│                       │  Database  │               │
│                       └────────────┘               │
│                                                     │
│   • Backend controlled by single entity             │
│   • Database is private                             │
│   • Can be shut down or censored                    │
│   • User must trust the operator                    │
└─────────────────────────────────────────────────────┘

Decentralized Application (DApp):
┌─────────────────────────────────────────────────────┐
│                                                     │
│   ┌──────────┐                                      │
│   │ Frontend │────┐                                 │
│   │ (Browser)│    │                                 │
│   └──────────┘    │                                 │
│                   ▼                                 │
│   ┌─────────────────────────────────────────────┐  │
│   │             BLOCKCHAIN NETWORK               │  │
│   │  ┌─────────┐  ┌─────────┐  ┌─────────┐      │  │
│   │  │ Node 1  │  │ Node 2  │  │ Node 3  │      │  │
│   │  │ Smart   │  │ Smart   │  │ Smart   │      │  │
│   │  │Contract │  │Contract │  │Contract │      │  │
│   │  └─────────┘  └─────────┘  └─────────┘      │  │
│   └─────────────────────────────────────────────┘  │
│                           │                        │
│                           ▼                        │
│   ┌─────────────────────────────────────────────┐  │
│   │         Decentralized Storage               │  │
│   │         (IPFS / Filecoin)                   │  │
│   └─────────────────────────────────────────────┘  │
│                                                     │
│   • Backend logic runs on blockchain                │
│   • Data is public and immutable                    │
│   • Cannot be shut down by any single party         │
│   • User verifies via cryptography                  │
└─────────────────────────────────────────────────────┘
```

**Key Characteristics of DApps:**

| Characteristic | Description |
|----------------|-------------|
| **Decentralized** | No single point of failure; operates on a P2P network. |
| **Open Source** | Code is publicly auditable; often governed by community. |
| **Incentivized** | Validators/miners are rewarded with cryptographic tokens. |
| **Protocol/Algorithm** | Rules are defined by smart contracts, not by a central authority. |
| **Deterministic** | Same input always produces same output across all nodes. |
| **Tamper-Proof** | Once data is on-chain, it cannot be altered. |
| **User Sovereignty** | Users control their own data and assets via private keys. |

### 12.1.2 DApps vs. Traditional Web Applications

The fundamental difference lies in **where the logic and data live** and **who controls them**.

```
┌─────────────────────────────────────────────────────────────────┐
│                    COMPARISON TABLE                              │
├──────────────────────────────┬──────────────────────────────────┤
│ Traditional Web App          │ DApp                              │
├──────────────────────────────┼──────────────────────────────────┤
│ Backend runs on centralized  │ Backend runs on blockchain       │
│ servers (AWS, Heroku, etc.)  │ (EVM, Solana, etc.)              │
├──────────────────────────────┼──────────────────────────────────┤
│ Database is private, owned   │ Data is public on ledger (or     │
│ by the company               │ on decentralized storage)        │
├──────────────────────────────┼──────────────────────────────────┤
│ Authentication via username/ │ Authentication via wallet        │
│ password (server knows you)  │ (cryptographic signatures)       │
├──────────────────────────────┼──────────────────────────────────┤
│ Downtime possible if server  │ No downtime (network continues   │
│ goes down                    │ as long as nodes exist)          │
├──────────────────────────────┼──────────────────────────────────┤
│ Censorship possible by       │ Censorship resistant             │
│ platform or government       │                                  │
├──────────────────────────────┼──────────────────────────────────┤
│ Updates controlled by        │ Updates require community        │
│ company                      │ consensus (or upgrade mechanism) │
├──────────────────────────────┼──────────────────────────────────┤
│ Revenue often from selling   │ Revenue from token economics,    │
│ user data or ads             │ fees, or services                │
└──────────────────────────────┴──────────────────────────────────┘
```

### 12.1.3 DApp Categories and Use Cases

DApps span a wide range of industries. Here are the most common categories:

| Category | Description | Examples |
|----------|-------------|----------|
| **DeFi (Decentralized Finance)** | Financial services without intermediaries: lending, borrowing, trading. | Uniswap, Aave, Compound |
| **NFTs & Gaming** | Digital ownership of unique assets, in-game items, collectibles. | OpenSea, Axie Infinity, CryptoKitties |
| **DAOs (Decentralized Autonomous Organizations)** | Community-governed organizations with treasury and voting. | MakerDAO, Uniswap DAO |
| **Social Networks** | Censorship-resistant social platforms. | Lens Protocol, Farcaster |
| **Marketplaces** | Peer-to-peer exchange of goods/services. | OpenBazaar, Rarible |
| **Identity & Credentials** | Self-sovereign identity, verifiable credentials. | Civic, SpruceID |
| **Supply Chain** | Tracking provenance of goods. | VeChain, IBM Food Trust |
| **Storage** | Decentralized file storage. | Filecoin, Arweave, Storj |

**Example: A Simple DApp Use Case – Crowdfunding**

In a traditional crowdfunding platform (like Kickstarter), the platform holds the funds and decides whether to release them to the project creator. In a DApp-based crowdfunding:

```solidity
// Smart contract for crowdfunding
contract Crowdfunding {
    address public creator;
    uint public goal;
    uint public deadline;
    mapping(address => uint) public contributions;

    event Contributed(address indexed backer, uint amount);
    event FundsReleased(uint total);
    event RefundsIssued();

    constructor(uint _goal, uint _durationInDays) {
        creator = msg.sender;
        goal = _goal;
        deadline = block.timestamp + _durationInDays * 1 days;
    }

    function contribute() public payable {
        require(block.timestamp < deadline, "Campaign ended");
        contributions[msg.sender] += msg.value;
        emit Contributed(msg.sender, msg.value);
    }

    function releaseFunds() public {
        require(block.timestamp >= deadline, "Campaign not ended");
        require(address(this).balance >= goal, "Goal not reached");
        payable(creator).transfer(address(this).balance);
        emit FundsReleased(address(this).balance);
    }

    function refund() public {
        require(block.timestamp >= deadline, "Campaign not ended");
        require(address(this).balance < goal, "Goal reached, no refunds");
        uint amount = contributions[msg.sender];
        require(amount > 0, "Nothing to refund");
        contributions[msg.sender] = 0;
        payable(msg.sender).transfer(amount);
    }
}
```

In this DApp:
- Funds are held by the smart contract, not a company.
- Rules are enforced by code (goal, deadline).
- Anyone can verify the balance and contributions on-chain.
- No platform can arbitrarily cancel the campaign or freeze funds.

---

## 12.2 DApp Architecture Components

A typical DApp consists of several layers, each with distinct responsibilities.

```
DApp Architecture Layers:

┌─────────────────────────────────────────────────────┐
│                   FRONTEND LAYER                     │
│  • Web/Mobile UI                                      │
│  • React, Vue, etc.                                   │
│  • Wallet connection (MetaMask, WalletConnect)        │
└─────────────────────┬─────────────────────────────────┘
                      │
                      ▼
┌─────────────────────────────────────────────────────┐
│                   WEB3 LAYER                         │
│  • ethers.js / web3.js                               │
│  • Reads/writes to blockchain                         │
│  • Queries events, calls contracts                    │
└─────────────────────┬─────────────────────────────────┘
                      │
          ┌───────────┴───────────┐
          │                       │
          ▼                       ▼
┌─────────────────────┐  ┌─────────────────────────────┐
│   SMART CONTRACT    │  │   DECENTRALIZED STORAGE     │
│       LAYER         │  │           LAYER              │
│  • Business logic   │  │ • IPFS / Filecoin / Arweave  │
│  • On-chain state   │  │ • Large files, images, etc.  │
└─────────────────────┘  └─────────────────────────────┘
          │                       │
          └───────────┬───────────┘
                      │
                      ▼
┌─────────────────────────────────────────────────────┐
│                BLOCKCHAIN NETWORK                    │
│  • Ethereum, Polygon, etc.                           │
│  • Consensus, finality                                │
└─────────────────────────────────────────────────────┘
```

### 12.2.1 Frontend Layer

The frontend is what users see and interact with. It's similar to traditional web development but with the addition of blockchain connectivity. Typically built with frameworks like React, Next.js, or Vue.

**Key Responsibilities:**
- Presenting the user interface.
- Connecting to the user's wallet (MetaMask, WalletConnect).
- Reading data from smart contracts.
- Sending transactions to the blockchain.
- Interacting with decentralized storage (e.g., displaying images from IPFS).

**Example: A simple React component that displays token balance:**

```jsx
import { useState, useEffect } from 'react';
import { ethers } from 'ethers';

function TokenBalance({ tokenAddress, userAddress }) {
  const [balance, setBalance] = useState('0');
  const [loading, setLoading] = useState(false);

  useEffect(() => {
    async function fetchBalance() {
      if (!tokenAddress || !userAddress) return;
      
      setLoading(true);
      try {
        const provider = new ethers.providers.Web3Provider(window.ethereum);
        const tokenABI = [
          'function balanceOf(address owner) view returns (uint256)',
          'function decimals() view returns (uint8)'
        ];
        const tokenContract = new ethers.Contract(tokenAddress, tokenABI, provider);
        
        const rawBalance = await tokenContract.balanceOf(userAddress);
        const decimals = await tokenContract.decimals();
        setBalance(ethers.utils.formatUnits(rawBalance, decimals));
      } catch (error) {
        console.error('Error fetching balance:', error);
      } finally {
        setLoading(false);
      }
    }

    fetchBalance();
  }, [tokenAddress, userAddress]);

  return (
    <div>
      <h3>Token Balance</h3>
      {loading ? <p>Loading...</p> : <p>{balance} MTK</p>}
    </div>
  );
}

export default TokenBalance;
```

### 12.2.2 Smart Contract Layer

The smart contract layer contains the core business logic and on-chain state. Contracts are written in Solidity (or other languages) and deployed to the blockchain.

**Key Responsibilities:**
- Enforcing business rules.
- Managing ownership and access control.
- Holding and transferring value (ETH, tokens).
- Emitting events for off-chain consumption.

**Example: A simple marketplace contract (partial):**
```solidity
contract Marketplace {
    struct Listing {
        address seller;
        uint price;
        bool active;
    }
    mapping(uint => Listing) public listings;
    uint public nextListingId;

    event ItemListed(uint indexed id, address indexed seller, uint price);
    event ItemSold(uint indexed id, address buyer, uint price);

    function listItem(uint price) public {
        require(price > 0, "Price must be >0");
        listings[nextListingId] = Listing(msg.sender, price, true);
        emit ItemListed(nextListingId, msg.sender, price);
        nextListingId++;
    }

    function buyItem(uint listingId) public payable {
        Listing storage listing = listings[listingId];
        require(listing.active, "Not for sale");
        require(msg.value >= listing.price, "Insufficient payment");

        listing.active = false;
        payable(listing.seller).transfer(listing.price);
        // Refund excess if any
        if (msg.value > listing.price) {
            payable(msg.sender).transfer(msg.value - listing.price);
        }
        emit ItemSold(listingId, msg.sender, listing.price);
    }
}
```

### 12.2.3 Storage Layer (IPFS, Filecoin)

Blockchains are not designed for storing large amounts of data (like images, videos, or documents). Storing large files on-chain is prohibitively expensive. Therefore, DApps use decentralized storage systems like IPFS (InterPlanetary File System) and Filecoin.

- **IPFS**: A peer-to-peer hypermedia protocol for storing and sharing data in a distributed file system. Files are addressed by their content (CID – Content Identifier), not by location. If the file changes, the CID changes.
- **Filecoin**: A blockchain-based storage network that incentivizes storage providers to store data. It builds on IPFS and adds a market and proofs.
- **Arweave**: A permanent, decentralized storage network where you pay once to store data forever.

**How DApps use decentralized storage:**
- NFT metadata (JSON) and images are stored on IPFS; the NFT contract stores only the IPFS hash (tokenURI).
- User-generated content (like posts, profiles) can be stored on IPFS, with references stored on-chain.
- Large application state can be stored off-chain with merkle proofs.

**Example: Uploading to IPFS via Pinata (a pinning service):**

```javascript
// Node.js script to upload file to IPFS via Pinata
const axios = require('axios');
const FormData = require('form-data');
const fs = require('fs');

async function uploadToIPFS(filePath) {
  const url = 'https://api.pinata.cloud/pinning/pinFileToIPFS';
  
  let data = new FormData();
  data.append('file', fs.createReadStream(filePath));

  const res = await axios.post(url, data, {
    maxBodyLength: 'Infinity',
    headers: {
      'Content-Type': `multipart/form-data; boundary=${data._boundary}`,
      pinata_api_key: process.env.PINATA_API_KEY,
      pinata_secret_api_key: process.env.PINATA_SECRET_KEY
    }
  });

  console.log('IPFS Hash:', res.data.IpfsHash);
  return res.data.IpfsHash;
}
```

In a frontend, you might use a library like `ipfs-http-client` to upload directly from the browser, or use a pinning service's API.

### 12.2.4 Backend Services (Optional)

While DApps aim to be fully decentralized, sometimes off-chain services are used for practical reasons:

- **Indexers**: The Graph protocol indexes blockchain events and provides GraphQL APIs for fast querying.
- **Relayers**: Services that submit transactions on behalf of users (e.g., for gasless transactions).
- **Oracle nodes**: Provide external data to smart contracts (Chainlink).
- **Caching/API layer**: For improved performance, some DApps use traditional servers to cache data and serve it quickly (e.g., NFT marketplace APIs).

These services are considered "trusted" to some extent, but many DApps minimize reliance on them or use decentralized alternatives.

---

## 12.3 The Web3 Paradigm

### 12.3.1 Web1, Web2, Web3 Comparison

To understand the significance of DApps, it's helpful to see the evolution of the web.

```
Web Evolution:

Web1 (Read-Only) – 1990s–2004:
┌─────────────────────────────────────────────────────┐
│  • Static web pages                                   │
│  • Users are consumers                                │
│  • Information published by few                       │
│  • Decentralized protocol (HTTP) but static content   │
│  • Examples: Personal websites, early portals         │
└─────────────────────────────────────────────────────┘

Web2 (Read-Write) – 2004–Present:
┌─────────────────────────────────────────────────────┐
│  • Interactive, dynamic platforms                    │
│  • Users create content                               │
│  • Centralized platforms own user data               │
│  • Monetization through ads, data selling             │
│  • Examples: Facebook, YouTube, Twitter              │
└─────────────────────────────────────────────────────┘

Web3 (Read-Write-Own) – Present and Future:
┌─────────────────────────────────────────────────────┐
│  • Decentralized applications                        │
│  • Users own their data and assets                    │
│  • Identity and reputation are portable               │
│  • Value transfer without intermediaries              │
│  • Native payments and tokens                         │
│  • Examples: Uniswap, Lens Protocol, ENS             │
└─────────────────────────────────────────────────────┘
```

### 12.3.2 User Identity and Wallets

In Web3, identity is not tied to an email/password but to a cryptographic key pair. Users interact with DApps through **wallets** (like MetaMask, WalletConnect, or hardware wallets). The wallet:
- Stores the user's private keys.
- Signs transactions and messages.
- Manages multiple accounts and networks.
- Provides a secure interface for DApps to request signatures.

**How a DApp authenticates a user:**

1. User clicks "Connect Wallet".
2. DApp requests the user's accounts via `window.ethereum.request({ method: 'eth_requestAccounts' })`.
3. Wallet prompts user to approve connection.
4. DApp receives the user's address.
5. For actions requiring authentication, the DApp may ask the user to sign a message (e.g., "Sign this message to prove you own this address.").
6. The DApp verifies the signature off-chain or on-chain.

**Example: Sign-in with Ethereum (SIWE):**
```javascript
// Generate a nonce (from server) and message
const message = `example.com wants you to sign in with your Ethereum account:
0x...

URI: https://example.com
Version: 1
Chain ID: 1
Nonce: 12345678
Issued At: 2023-01-01T00:00:00.000Z`;

// Request signature from wallet
const signature = await provider.send('personal_sign', [message, userAddress]);

// Verify signature on server
const recoveredAddress = ethers.utils.verifyMessage(message, signature);
if (recoveredAddress.toLowerCase() === userAddress.toLowerCase()) {
  // User authenticated
}
```

### 12.3.3 Decentralized Identity (DID)

Decentralized Identifiers (DIDs) are a new type of identifier that enables verifiable, self-sovereign digital identity. A DID is a URI that:
- Is globally unique.
- Is resolvable to a DID Document (containing public keys, service endpoints).
- Is controlled by the subject (the user) without requiring a centralized registry.

**Example DID:**
```
did:example:123456789abcdefghi
```

**DID Document (JSON-LD):**
```json
{
  "@context": "https://www.w3.org/ns/did/v1",
  "id": "did:example:123456789abcdefghi",
  "verificationMethod": [{
    "id": "did:example:123456789abcdefghi#keys-1",
    "type": "Ed25519VerificationKey2020",
    "controller": "did:example:123456789abcdefghi",
    "publicKeyMultibase": "zH3C2AVvLMv6gmMNam3uVAjZpfkcJCwDwnZn6z3wXmqPV"
  }],
  "authentication": ["did:example:123456789abcdefghi#keys-1"],
  "service": [{
    "id": "did:example:123456789abcdefghi#vcs",
    "type": "VerifiableCredentialService",
    "serviceEndpoint": "https://example.com/vc/"
  }]
}
```

**DIDs in DApps:**
- Users can have a DID tied to their wallet.
- DApps can issue verifiable credentials (e.g., "This user is over 18") without revealing personal data.
- Interoperable across platforms – you own your identity, not the platform.

Projects like **Ceramic** and **IDX** use DIDs to create portable user profiles across DApps.

---

## Chapter Summary

```
┌─────────────────────────────────────────────────────────────────┐
│                    CHAPTER 12 SUMMARY                           │
├─────────────────────────────────────────────────────────────────┤
│                                                                 │
│  DApps are applications where backend logic runs on blockchain │
│  and users control their own data and assets.                  │
│                                                                 │
│  ARCHITECTURE:                                                 │
│  • Frontend (UI + Web3 library)                                │
│  • Smart Contracts (business logic on-chain)                   │
│  • Decentralized Storage (IPFS, Filecoin for files)            │
│  • Optional Backend Services (indexers, relayers)              │
│                                                                 │
│  WEB3 PARADIGM:                                                │
│  • Web1: read-only                                             │
│  • Web2: read-write (centralized)                              │
│  • Web3: read-write-own (decentralized)                        │
│                                                                 │
│  IDENTITY:                                                     │
│  • Wallets (MetaMask) as the user's gateway                    │
│  • Sign-in with Ethereum (SIWE) for authentication             │
│  • DIDs (Decentralized Identifiers) for portable identity      │
│                                                                 │
└─────────────────────────────────────────────────────────────────┘
```

**Key Takeaways:**
- DApps are not just websites with a blockchain backend; they embody principles of decentralization, transparency, and user sovereignty.
- The architecture separates concerns: frontend (UI), contracts (logic), storage (data), and optional services (performance).
- Users interact via wallets, and their identity is cryptographic, not account-based.
- Understanding this architecture is essential before building your own DApp.

**Next Chapter Preview:** Chapter 13 – Web3.js and ethers.js Libraries. We'll dive deep into the libraries that connect frontends to the blockchain, exploring providers, signers, contracts, and utilities.

<div style='width:100%; display:flex; justify-content:space-between; align-items:center; margin: 1em 0;'>
  <a href='../3. ethereum_and_smart_contracts/11. development_tools_and_frameworks.ipynb' style='font-weight:bold; font-size:1.05em;'>&larr; Previous</a>
  <a href='../TOC.md' style='font-weight:bold; font-size:1.05em; text-align:center;'>Table of Contents</a>
  <a href='13. web3js_and_ethersjs_libraries.ipynb' style='font-weight:bold; font-size:1.05em;'>Next &rarr;</a>
</div>
