LucidData Privacy-First Development

Build features for LucidData, a privacy-first personal data bank that empowers users to own, control, and share their data on their terms. Follow established patterns for encryption, audit logging, and consent management.

Core Philosophy

**Data as property**: Treat user data as property, not product

**Transparency**: Immutable audit trails for all operations

**Granular consent**: Time-bound permissions with explicit user control

**Data sovereignty**: User-controlled encryption and portability

**Open standards**: JSON-LD, VerifiableCredential, FHIR support

Critical Security Rules (Apply to ALL Features)

Encryption (AES-256-GCM)

1. Always encrypt vault data before storing using `lib/crypto/encryption.ts`

2. Never log decrypted data in errors, logs, or responses

3. Use `getMasterKey()` only - never access `process.env.ENCRYPTION_KEY` directly

4. Store IV format as `"hexIv:hexAuthTag"` in the `iv` field (colon-separated hex strings)

Audit Logging (Hash Chains)

1. Create audit log for ALL vault/consent operations (create, read, update, delete, grant, revoke)

2. Include `previousHash` to maintain immutable chain integrity

3. Use `lib/crypto/hashing.ts` - `createAuditHash()` for hash generation

4. Never modify existing audit log entries (immutable by design)

Authentication (Supabase)

1. Always validate user with `lib/supabase/server.ts` in API routes

2. Always check `user` exists before proceeding (never assume authentication)

3. Filter all queries by `userId` - never trust client-provided IDs

4. Use correct Supabase client: server for API routes, client for Client Components

Tech Stack

**Next.js 15.1.3** with App Router (React 19) - Path alias: `@/*` maps to project root

**TypeScript 5** with strict mode enabled

**PostgreSQL** via Supabase

**Prisma 6.19.1** - Use `npx dotenv -e .env.local -- npx prisma <command>`

**Supabase Auth** (`@supabase/supabase-js ^2.89.0`, `@supabase/ssr ^0.8.0`)

**shadcn/ui** with Radix UI primitives, Lucide React 0.562.0 icons

**React Hook Form 7.70.0** with Zod 4.3.5 validation

**Node.js crypto** for AES-256-GCM encryption and SHA-256 hashing

Key Database Models

VaultData

Encrypted user data with field-level encryption on `encryptedData`

Metadata (`label`, `category`, `tags`) unencrypted for queryability

Categories: personal, health, financial, credentials, other

Optional schema types (JSON-LD, FHIR) for portability

Consent

Time-bound permissions with `startDate`, `endDate`

Permissions: read, export, verify

Status: active, revoked, expired

Tracks revocation details and terms version

AuditLog

Hash chain structure with `currentHash` and `previousHash`

Event types: data_created, data_accessed, consent_granted, etc.

Actor types: user, system, service

Tamper-evident trail verified with `verifyHashChain()`

Development Instructions

Step 1: Reference Documentation

Before implementing ANY feature:

1. Review `.github/copilot/critical/security-patterns.md` for encryption, auth, and audit patterns

2. Check `.github/copilot/critical/api-patterns.md` for API route structure

3. Review `.github/copilot/critical/database-schema.md` for data models

4. Consult `.github/copilot/common/component-patterns.md` for UI patterns

Step 2: Authentication Pattern

For API routes:

```typescript

import { createClient } from '@/lib/supabase/server';

export async function GET(request: Request) {

const supabase = await createClient();

const { data: { user } } = await supabase.auth.getUser();

if (!user) {

return Response.json({ error: 'Unauthorized' }, { status: 401 });

}

// Filter all queries by user.id

}

```

Step 3: Encryption Pattern

For vault data:

```typescript

import { encrypt, decrypt } from '@/lib/crypto/encryption';

// Storing data

const { encryptedData, iv, authTag } = encrypt(JSON.stringify(data));

const ivString = `${iv.toString('hex')}:${authTag.toString('hex')}`;

// Retrieving data

const [ivHex, authTagHex] = record.iv.split(':');

const decryptedData = decrypt(

record.encryptedData,

Buffer.from(ivHex, 'hex'),

Buffer.from(authTagHex, 'hex')

);

```

Step 4: Audit Logging Pattern

For all vault/consent operations:

```typescript

import { createAuditHash, getLastAuditLog } from '@/lib/crypto/hashing';

import { db } from '@/lib/db';

const lastLog = await getLastAuditLog(userId);

const currentHash = createAuditHash({

userId,

eventType: 'data_created',

action: 'Created vault entry',

actorId: userId,

actorType: 'user',

previousHash: lastLog?.currentHash || null,

timestamp: new Date(),

});

await db.auditLog.create({

data: {

userId,

vaultDataId,

eventType: 'data_created',

action: 'Created vault entry',

actorId: userId,

actorType: 'user',

currentHash,

previousHash: lastLog?.currentHash,

ipAddress: getClientIp(request),

timestamp: new Date(),

});

```

Step 5: Validation Pattern

Use Zod schemas from `lib/validations/`:

```typescript

import { vaultDataSchema } from '@/lib/validations/vault';

// In API routes (throws on failure)

const validatedData = vaultDataSchema.parse(await request.json());

// In forms (returns result)

const result = vaultDataSchema.safeParse(formData);

if (!result.success) {

// Handle validation errors

}

```

Step 6: Component Pattern

Default to Server Components:

```typescript

// Server Component (no 'use client')

export default async function VaultPage() {

const supabase = await createClient();

const { data: { user } } = await supabase.auth.getUser();

// Direct database access

}

// Client Component (only for interactivity)

'use client';

import { useState } from 'react';

export function VaultForm() {

const [data, setData] = useState('');

// Event handlers, state, effects

}

```

Step 7: Error Handling

Never expose sensitive details:

```typescript

try {

// Operation

} catch (error) {

console.error('Internal error:', error); // Log server-side only

return Response.json(

{ error: 'Operation failed' }, // Generic message

{ status: 500 }

);

}

```

File Organization

`app/(auth)/` - Authentication pages

`app/(dashboard)/` - Protected pages

`app/api/` - API routes

`components/ui/` - shadcn/ui components

`components/vault/` - Feature-specific components

`lib/crypto/` - Encryption & hashing utilities

`lib/db/` - Prisma client & queries

`lib/supabase/` - Supabase clients

`lib/validations/` - Zod schemas

`prisma/schema.prisma` - Database schema

Naming Conventions

**Files**: kebab-case (`vault-data.ts`)

**Components**: PascalCase (`VaultPage`, `Button`)

**Functions**: camelCase (`createClient`, `generateKey`)

**Types**: PascalCase (`VaultDataInput`, `User`)

**Constants**: UPPER_SNAKE_CASE (`ALGORITHM`, `KEY_LENGTH`)

**Database**: snake_case (`vault_data`, `created_at`)

**API Routes**: kebab-case, RESTful (`/api/vault`)

Critical Environment Variables

`ENCRYPTION_KEY` - 256-bit AES key (base64) - **Never change in production**

`DATABASE_URL` - PostgreSQL connection string

`NEXT_PUBLIC_SUPABASE_URL` / `NEXT_PUBLIC_SUPABASE_ANON_KEY` - Supabase config

Common Commands

Start dev: `npm run dev` (http://localhost:3000)

Prisma: `npx dotenv -e .env.local -- npx prisma <command>`

Supabase Studio: http://127.0.0.1:54323

Important Notes

Current MVP uses mock data in API routes; ready for database integration

Never commit `.env.local` to git

Changing `ENCRYPTION_KEY` makes existing data unreadable

All vault/consent operations must create audit logs

Filter all database queries by authenticated `userId`

Use shadcn/ui patterns for new UI components

Validate all inputs with Zod schemas

LucidData Privacy-First Development

LucidData Privacy-First Development

Core Philosophy

Critical Security Rules (Apply to ALL Features)

Encryption (AES-256-GCM)

Audit Logging (Hash Chains)

Authentication (Supabase)

Tech Stack

Key Database Models

VaultData

Consent

AuditLog

Development Instructions

Step 1: Reference Documentation

Step 2: Authentication Pattern

Step 3: Encryption Pattern

Step 4: Audit Logging Pattern

Step 5: Validation Pattern

Step 6: Component Pattern

Step 7: Error Handling

File Organization

Naming Conventions

Critical Environment Variables

Common Commands

Important Notes

Reviews (0)