gnx/GNX-WEB
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

update

Browse Source
This commit is contained in:
Iliyan Angelov
2025-11-24 03:52:08 +02:00
parent dfcaebaf8c
commit 366f28677a
18241 changed files with 865352 additions and 567 deletions
Download Patch File Download Diff File Expand all files Collapse all files

165
frontEnd/next.config.js Normal file
View File

@@ -0,0 +1,165 @@
/** @type {import('next').NextConfig} */
const nextConfig = {
images: {
remotePatterns: [
{
protocol: 'http',
hostname: 'localhost',
port: '8000',
pathname: '/media/**',
},
{
protocol: 'https',
hostname: 'localhost',
port: '8000',
pathname: '/media/**',
},
{
protocol: 'http',
hostname: 'localhost',
port: '8080',
pathname: '/images/**',
},
{
protocol: 'https',
hostname: 'localhost',
port: '8080',
pathname: '/images/**',
},
// Add your production domain when ready
// {
// protocol: 'https',
// hostname: 'your-api-domain.com',
// pathname: '/media/**',
// },
],
formats: ['image/avif', 'image/webp'],
deviceSizes: [640, 750, 828, 1080, 1200, 1920, 2048, 3840],
imageSizes: [16, 32, 48, 64, 96, 128, 256, 384],
minimumCacheTTL: 60,
},
sassOptions: {
includePaths: ['./public/styles', './node_modules'],
quietDeps: true, // Suppress deprecation warnings from dependencies
},
// Compiler optimizations
compiler: {
removeConsole: process.env.NODE_ENV === 'production' ? {
exclude: ['error', 'warn'],
} : false,
},
// Compression
compress: true,
// Production optimizations
productionBrowserSourceMaps: false,
// Performance optimizations (swcMinify removed - default in Next.js 15)
// Enterprise Security Headers
async headers() {
return [
{
source: '/:path*',
headers: [
// Security Headers
{
key: 'X-DNS-Prefetch-Control',
value: 'on'
},
{
key: 'Strict-Transport-Security',
value: 'max-age=63072000; includeSubDomains; preload'
},
{
key: 'X-Frame-Options',
value: 'SAMEORIGIN'
},
{
key: 'X-Content-Type-Options',
value: 'nosniff'
},
{
key: 'X-XSS-Protection',
value: '1; mode=block'
},
{
key: 'Referrer-Policy',
value: 'strict-origin-when-cross-origin'
},
{
key: 'Permissions-Policy',
value: 'camera=(), microphone=(), geolocation=(), interest-cohort=()'
},
{
key: 'Content-Security-Policy',
value: "default-src 'self'; script-src 'self' 'unsafe-eval' 'unsafe-inline' https://www.googletagmanager.com https://www.google-analytics.com; style-src 'self' 'unsafe-inline'; img-src 'self' data: https: http://localhost:8000 http://localhost:8080; font-src 'self' data:; connect-src 'self' http://localhost:8000 https://www.google-analytics.com; frame-src 'self' https://www.google.com; frame-ancestors 'self'; base-uri 'self'; form-action 'self'"
},
// Performance Headers
{
key: 'Cache-Control',
value: 'public, max-age=31536000, immutable'
},
],
},
// Static assets caching
{
source: '/images/:path*',
headers: [
{
key: 'Cache-Control',
value: 'public, max-age=31536000, immutable',
},
],
},
{
source: '/icons/:path*',
headers: [
{
key: 'Cache-Control',
value: 'public, max-age=31536000, immutable',
},
],
},
// API responses - no cache for dynamic content
{
source: '/api/:path*',
headers: [
{
key: 'Cache-Control',
value: 'no-store, must-revalidate',
},
],
},
]
},
// Redirects for SEO
async redirects() {
return [
// Temporarily disabled - causing API issues
// {
// source: '/((?!api/).*)+/',
// destination: '/$1',
// permanent: true,
// },
]
},
// Rewrites for API proxy (Production: routes /api to backend through nginx)
async rewrites() {
// In development, proxy to Django backend
// In production, nginx handles this
if (process.env.NODE_ENV === 'development') {
return [
{
source: '/api/:path*',
destination: `${process.env.NEXT_PUBLIC_API_URL || 'http://localhost:8000'}/api/:path*`,
},
{
source: '/media/:path*',
destination: `${process.env.NEXT_PUBLIC_API_URL || 'http://localhost:8000'}/media/:path*`,
},
]
}
// In production, these are handled by nginx reverse proxy
return []
},
}
module.exports = nextConfig