js17.dev
Architecture
Infrastructure
DevOps
Cost Optimization
Transparency
System Design

The Blueprint: Every Provider, Every Connection, Every Dollar Behind js17.dev

A fully transparent architecture map of js17.dev — 13 providers, 6 connection types, $36/month total. Every integration documented, every cost justified, every decision explained.

March 7, 20267 min read·

Most portfolios show you the result. This article shows you the entire machine.

Every provider. Every API connection. Every dollar. Fully documented, fully interactive.

The Architecture

infrastructure-blueprint.arch
13 providers~$36/mo

System Architecture

Click any provider to expand details · Every connection documented

EDGEDNS + CDN + SSL
HTTPS / Reverse Proxy
PLATFORMHosting + CI/CD
Serverless Runtime + Edge Functions
APPLICATIONjs17.dev
REST API / SDK / OAuth 2.0
AI SERVICESIntelligence Layer
DISTRIBUTIONPublishing + Notifications
AUTH & STORAGESecurity + Persistence

Monthly Cost Breakdown

~$36
total/month
Free tier servicesx10
$0
OpenAI (AI generation)x1
~$10
Shotstack (video)x1
~$25
GoDaddy (domain)x1
~$1
vs. traditional equivalent$25,000+/mo

Connection Types

REST APIHTTP/JSON endpoints
SDKNative client library
OAuth 2.0Token-based auth flow
DNSDomain name resolution
GitPush-triggered deploys
CronScheduled execution

That is not a concept diagram. It is the live production architecture powering the page you are reading right now. Click any provider to expand its details.

13 integrated services. 6 connection types. One engineer. ~$36/month.

How Traffic Flows

Every request to js17.dev passes through a precise chain of services before reaching your browser. Here is the path:

Step 1DNS resolves js17.dev via Cloudflare (proxied, DDoS-protected)
Step 2Cloudflare terminates SSL, applies edge caching and security rules
Step 3Request forwarded to Vercel's Edge Network via HTTPS
Step 4Vercel routes to serverless function (API) or serves static page (SSG/ISR)
Step 5Next.js App Router renders with React Server Components
Step 6Dynamic data fetched from Vercel Blob, external APIs, or ISR cache
Step 7Response sent back through Cloudflare CDN to user

Average response time: under 200ms globally. Zero servers to manage. Zero containers to orchestrate.

The Cost Equation

$
$0
Hosting (Vercel Hobby)
$
$0
CDN + SSL (Cloudflare)
$
~$35
AI + Video services
$
~$1
Domain (GoDaddy)

10 out of 13 providers run on free tiers. The only paid services are the ones that generate revenue-driving content: OpenAI for AI-powered script generation and content moderation, Shotstack for automated video rendering, and GoDaddy for the domain registration.

This is not accidental frugality. It is architectural discipline — choosing providers that offer generous free tiers, designing systems that stay within those limits, and only paying for services that directly produce value.

Layer-by-Layer Breakdown

Edge Layer: The First Line

\u{1F6E1}\uFE0FCloudflareFree
DNS Proxy$0/mo

All traffic flows through Cloudflare before reaching Vercel. This provides automatic SSL/TLS certificates, global CDN edge caching, DDoS protection, and DNS management. The free plan includes unlimited bandwidth and requests.

\uD83C\uDF10GoDaddyPaid
DNS Delegation~$12/yr

Domain registrar for js17.dev. Nameservers are delegated to Cloudflare (ns1/ns2.cloudflare.com) for full DNS control. GoDaddy handles only the annual domain renewal.

Platform Layer: The Foundation

\u25B2VercelFree
Git Deploy$0/mo

The Hobby plan provides serverless functions, Edge runtime, automatic preview deployments on every PR, Vercel Blob storage, and cron jobs. Two live environments: production (js17.dev) and sandbox (sandbox.js17.dev). Every git push triggers an automatic deployment.

\uD83D\uDC19GitHubFree
Git + REST API$0/mo

Source control with branch protection rules enforced via API. GitHub Actions runs CI on every PR: type-check, lint, and build. Automated releases via standard-version. Conventional commits enforced by commitlint + husky pre-commit hooks.

Application Core: The Engine

The core application is built entirely on open-source technology:

\u26A1
FrameworkNext.js 14

App Router with React Server Components, static generation, ISR, Edge API routes, and middleware. TypeScript strict mode.

\u269B\uFE0F
UI RuntimeReact 18 + R3F

Server Components for zero-JS rendering. Client components with hooks. React Three Fiber for 3D architecture visualizations.

\uD83C\uDFA8
StylingTailwind CSS + shadcn/ui

Utility-first CSS with 4 custom palettes. shadcn-style components on Radix UI primitives. CSS variable-based theming.

\uD83D\uDCDD
ContentMDX Engine

next-mdx-remote for dynamic compilation. rehype-pretty-code + shiki for syntax highlighting. Custom component registry for interactive content.

AI Services: The Intelligence

\uD83E\uDDE0OpenAIPaid
REST API (SDK)~$10/mo

GPT-4o generates structured video narration scripts. OpenAI TTS (onyx voice, HD) produces broadcast-quality audio. Moderation API powers 3-layer content filtering with autonomous learning blocklist. GPT-4o-mini generates newsletter synopses. All clients instantiated inside handlers to avoid build-time errors.

\uD83C\uDFACShotstackPaid
REST API~$25/mo

Cloud video composition API. Composites AI-generated slide images with TTS audio into MP4 videos. 8 visual templates across dual formats: 1080x1920 (YouTube Short) and 1280x720 (Long). Approximately 3 minutes render time per video. SSRF-protected via hostname whitelist.

Distribution: The Amplifiers

\uD83D\uDCFAYouTubeFree
OAuth 2.0 + REST$0/mo

YouTube Data API v3 for automated server-side video upload, metadata management, categorization, and playlist organization. OAuth 2.0 with automatic token refresh on 1-hour expiry. Per-article tracking persisted in Vercel Blob.

\uD83D\uDCE7ResendFree
REST API (SDK)$0/mo

Full email infrastructure: transactional emails for proposals, newsletter system with HMAC-SHA256 unsubscribe tokens (RFC 8058), MX DNS validation, IP rate limiting, disposable domain blocklist, welcome/goodbye emails, and batch send with AI-generated synopsis.

\uD83C\uDFC5CredlyFree
REST API (Public)$0/mo

Public API for verified professional certification badges. Server-side fetch with 24-hour ISR caching. No authentication required — fully public endpoint.

Auth and Storage: The Backbone

\uD83D\uDD10Google OAuthFree
OAuth 2.0$0/mo

NextAuth.js v4 with Google provider. JWT-based sessions with automatic refresh token rotation. Admin access gated by ADMIN_EMAIL. OAuth scopes include YouTube upload permissions. Uses getToken (JWT) in API route handlers for reliable auth.

\uD83D\uDCBEVercel BlobFree
SDK (@vercel/blob)$0/mo

Object storage for TTS audio, moderation records, newsletter subscribers, blocklist, YouTube tracking, metrics cache, and sent-posts log. Included in Vercel Hobby plan at no additional cost.

Connection Architecture

Every external integration uses one of six connection patterns:

| Pattern | Providers | Security | |---------|-----------|----------| | REST API | OpenAI, Shotstack, Resend, Credly | API keys in server-side env vars | | SDK | Vercel Blob, OpenAI (node), Resend | Native client libraries with key injection | | OAuth 2.0 | YouTube, Google Auth | Token-based with automatic refresh | | DNS | Cloudflare, GoDaddy | Proxied records, SSL termination | | Git | GitHub, Vercel | SSH keys + deploy hooks | | Cron | Vercel (metrics refresh) | CRON_SECRET auto-verified |

Security posture: Zero API keys exposed client-side. All external calls routed through server-side API routes. SSRF protection on proxy endpoints. OAuth tokens never touch the browser. Admin routes protected by JWT verification.

Why This Matters

This architecture is not an academic exercise. It is a capability demonstration.

Enterprise-Grade Infrastructure at Startup Cost

The same services that Fortune 500 companies pay thousands for — CDN, CI/CD, automated video production, AI-powered content, email infrastructure — running on ~$36/month. The difference is not the technology. It is the architectural decisions that keep each service within its free tier limits.

Zero-Ops Production System

No servers to patch. No containers to orchestrate. No databases to backup. Every service is managed, every deployment is automated, every failure is handled by the platform. The engineer focuses on product, not infrastructure maintenance.

Full Transparency as a Trust Signal

Publishing your complete architecture — including costs, connection types, and security decisions — is something most companies would never do. Doing it demonstrates confidence in the engineering and invites scrutiny that only strengthens trust.

The Architect Behind the Blueprint

ℹ️

Every provider selection, every connection pattern, every cost optimization in this architecture was designed by one senior engineer using AI-augmented development practices. No infrastructure team. No DevOps department. One person with the right methodology.

This is the same architectural discipline I bring to every client engagement — choosing the right tools, staying within budget constraints, and building systems that scale without scaling costs.

Your Infrastructure, Reimagined

What would your architecture look like at $36/month?

I design production systems that maximize capability while minimizing cost. The blueprint you just explored is not a template — it is a methodology.

What I deliver:

  • Architecture design with provider selection and cost optimization
  • CI/CD pipeline from first commit to production deployment
  • AI integration for content, moderation, and automation
  • Zero-ops infrastructure that runs itself

The blueprint is proven. The methodology is repeatable. Let's design yours.

Request a Proposal

Architecture reviews available within 48 hours.