LexFlow Development Assistant

Expert guidance for working with LexFlow, a micro-SaaS platform for legal client intake and e-signing with multi-tenant architecture.

Project Overview

LexFlow is a **monorepo** with FastAPI backend and Next.js frontend designed for law firm client intake forms, e-signature workflows (DocuSign/HelloSign), payment processing (Stripe), and multi-tenant data isolation.

Step-by-Step Instructions

1. Understanding the Architecture

**Backend Structure (`backend/app/`):**

`api/v1/` - API endpoints organized by resource

`core/` - Config, security, dependencies

`db/` - Database session management

`models/` - SQLAlchemy ORM models

`schemas/` - Pydantic request/response schemas

`services/` - Business logic layer

`main.py` - FastAPI app initialization

**Frontend Structure (`frontend/`):**

`app/` - Next.js App Router pages

`components/` - Reusable React components

`lib/` - Utilities, API clients, helpers

**Multi-Tenancy Model:**

`Firm` (tenant root) → `User` (attorneys/staff) → `Client` (end users)

`IntakeForm` (templates) → `IntakeSubmission` (client submissions)

`Document` (stored files with S3)

**Critical:** Most models have `firm_id` for tenant isolation

2. Development Workflow

**Starting the Development Environment:**

Use Docker (recommended):

```bash

docker-compose up -d

docker-compose logs -f [service] # View logs

```

Or run services individually:

```bash

Backend

cd backend

uvicorn app.main:app --reload --port 8000

Frontend

cd frontend

npm run dev

```

3. Adding a New API Endpoint

**Step-by-step:**

1. Create route in `backend/app/api/v1/endpoints/[resource].py`

2. Define Pydantic schemas in `backend/app/schemas/` (request/response models)

3. Implement business logic in `backend/app/services/`

4. Include router in `backend/app/api/v1/router.py`

5. **Always filter queries by `firm_id`** to enforce multi-tenancy

**Example pattern:**

Use async/await for all database operations

UUID primary keys for all models

Row-level security at application layer via `firm_id`

4. Database Migrations

**Creating and applying migrations:**

```bash

Create migration

alembic revision --autogenerate -m "description"

Review generated file in backend/alembic/versions/

Apply migration

alembic upgrade head

Rollback if needed

alembic downgrade -1

```

**When adding new models:**

1. Create model in `backend/app/models/`

2. Import in `backend/app/models/__init__.py`

3. Run autogenerate migration

4. Apply migration

5. Frontend Page Development

**Adding a new page:**

1. Create route in `frontend/app/[route]/page.tsx`

2. Add components in `frontend/components/`

3. Use `fetch` or HTTP client to call backend API at `NEXT_PUBLIC_API_URL`

**Patterns:**

Server components by default

Add `"use client"` directive when client-side features needed

Tailwind CSS for styling

6. Testing

**Backend tests:**

```bash

pytest

pytest --cov=app tests/ # With coverage

```

**Code quality checks:**

```bash

black app/ # Format

ruff check app/ # Lint

mypy app/ # Type check

```

7. Environment Configuration

**Backend (`.env`):**

`DATABASE_URL` - PostgreSQL with asyncpg driver

`REDIS_URL` - Redis for caching/sessions

`STRIPE_SECRET_KEY` - Stripe payments (NEVER expose to frontend)

`DOCUSIGN_*` - E-signature credentials

`S3_*` - S3-compatible storage

**Frontend (`.env.local`):**

`NEXT_PUBLIC_API_URL` - Backend API URL

`NEXT_PUBLIC_STRIPE_PUBLISHABLE_KEY` - Stripe public key only

Critical Security Constraints

1. **Multi-tenancy enforcement:** ALWAYS filter queries by `firm_id` to prevent data leaks between firms

2. **Secret management:** Never expose Stripe secret keys or DocuSign credentials to frontend

3. **API versioning:** All endpoints under `/api/v1/` prefix

4. **Type safety:** Use Python type hints + mypy (backend), TypeScript (frontend)

Common Commands Reference

**Docker:**

Start: `docker-compose up -d`

Logs: `docker-compose logs -f [service]`

Stop: `docker-compose down`

**Backend:**

Dev server: `uvicorn app.main:app --reload --port 8000`

Migration: `alembic revision --autogenerate -m "desc"` → `alembic upgrade head`

Test: `pytest --cov=app tests/`

**Frontend:**

Dev: `npm run dev`

Build: `npm run build && npm run start`

Lint: `npm run lint && npm run type-check`

Notes

**Async everywhere:** Backend uses async/await exclusively - don't mix sync code

**Background tasks:** Celery worker for async processing

**Deployment:** Dockerized for Fly.io or Railway with PostgreSQL 16+ and Redis

Services: `backend`, `frontend`, `postgres`, `redis`, `celery-worker`

LexFlow Development Assistant

LexFlow Development Assistant

Project Overview

Step-by-Step Instructions

1. Understanding the Architecture

2. Development Workflow

Backend

Frontend

3. Adding a New API Endpoint

4. Database Migrations

Create migration

Review generated file in backend/alembic/versions/

Apply migration

Rollback if needed

5. Frontend Page Development

6. Testing

7. Environment Configuration

Critical Security Constraints

Common Commands Reference

Notes

Reviews (0)