Data

Tools

Indexes

Applications

Experiments

Awesome

An open API service indexing awesome lists of open source software.

https://github.com/aspsptyd/tracker-task

Live time tracker task (vibe coding)
https://github.com/aspsptyd/tracker-task

ai-assistant javascript mysql-database vibe-coding

Last synced: 5 months ago
JSON representation

Live time tracker task (vibe coding)

Awesome Lists containing this project

README 

          
# โฐ Time Tracker Application



A full-stack time tracking and task management application with user authentication, built using Node.js/Express.js backend with Supabase database and vanilla JavaScript frontend.



## ๐Ÿš€ Features



- **Task Management**: Create, edit, and delete tasks with titles and descriptions

- **Time Tracking**: Start and stop timers for individual tasks with live updates

- **Session Management**: Track multiple sessions per task with start/end times and durations

- **User Authentication**: Secure registration and login functionality with user management

- **Statistics Dashboard**: View daily and weekly statistics including total tasks and duration

- **History Task Section**: View task completion history organized by creation date

- **Session Tracking**: Detailed session tracking with timestamps and duration calculation

- **Dashboard Session Info**: Real-time display of active sessions and remaining time

- **Dark/Light Theme**: Toggle between themes with persistent preference

- **Responsive UI**: Clean, modern interface optimized for productivity

- **Enhanced Security**: Content Security Policy (CSP) and conditional debug output for production environments



## ๐Ÿ› ๏ธ Tech Stack



- **Backend**: Node.js + Express.js

- **Database**: Supabase (PostgreSQL)

- **Authentication**: Supabase Auth

- **Frontend**: Vanilla JavaScript, HTML, CSS

- **Deployment**: Vercel (Backend), GitHub Pages (Frontend)

- **Security**: Content Security Policy (CSP), Conditional Debug Output



## ๐Ÿ“ฆ Modular Architecture



The backend follows a modular architecture with the following structure:



```

backend/

โ”œโ”€โ”€ api/                      # API routes directory

โ”œโ”€โ”€ src/

โ”‚   โ”œโ”€โ”€ auth/                 # Authentication module

โ”‚   โ”‚   โ”œโ”€โ”€ controller.js     # Authentication business logic

โ”‚   โ”‚   โ”œโ”€โ”€ routes.js         # Authentication API routes

โ”‚   โ”‚   โ””โ”€โ”€ middleware.js     # Authentication middleware

โ”‚   โ”œโ”€โ”€ middleware/           # Shared middleware

โ”‚   โ”‚   โ””โ”€โ”€ auth.js           # Authentication middleware

โ”‚   โ”œโ”€โ”€ tasks/                # Task management module

โ”‚   โ”‚   โ”œโ”€โ”€ controller.js     # Task business logic

โ”‚   โ”‚   โ”œโ”€โ”€ statsController.js # Statistics business logic

โ”‚   โ”‚   โ”œโ”€โ”€ historyController.js # History business logic

โ”‚   โ”‚   โ””โ”€โ”€ routes.js         # Task API routes

โ”‚   โ”œโ”€โ”€ sessions/             # Session management module

โ”‚   โ”‚   โ””โ”€โ”€ controller.js     # Session business logic

โ”‚   โ””โ”€โ”€ utils/                # Utility functions

โ”‚       โ””โ”€โ”€ format.js         # Formatting utilities

โ”œโ”€โ”€ index.js                  # Main application entry point

โ”œโ”€โ”€ app.js                    # Frontend JavaScript

โ”œโ”€โ”€ style.css                 # Styling

โ”œโ”€โ”€ index.html                # Main HTML

โ”œโ”€โ”€ login.html                # Login page

โ”œโ”€โ”€ register.html             # Registration page

โ”œโ”€โ”€ vercel.json               # Vercel deployment configuration

โ””โ”€โ”€ package.json              # Project dependencies and scripts

```



## ๐Ÿ“‹ Prerequisites



- Node.js installed

- Supabase project with database tables created

- Supabase Auth enabled for user authentication



## ๐Ÿš€ Installation & Setup



### 1. Clone the Repository



```bash

git clone 

cd time-tracker

```



### 2. Backend Setup



```bash

# Navigate to backend directory

cd backend



# Install dependencies

npm install



# Create environment file

cp .env.example .env



# Edit .env with your Supabase configuration

```



### 3. Database Setup



Create the required database tables in your Supabase project:



```sql

-- Tasks table

CREATE TABLE tasks (

  id BIGSERIAL PRIMARY KEY,

  title VARCHAR(255) NOT NULL,

  description TEXT,

  status TEXT DEFAULT 'active' CHECK (status IN ('active', 'completed')),

  created_at TIMESTAMP WITH TIME ZONE DEFAULT NOW(),

  completed_at TIMESTAMP WITH TIME ZONE,

  user_id UUID REFERENCES auth.users(id)

);



-- Task sessions table

CREATE TABLE task_sessions (

  id BIGSERIAL PRIMARY KEY,

  task_id BIGINT REFERENCES tasks(id) ON DELETE CASCADE,

  start_time TIMESTAMP WITH TIME ZONE NOT NULL,

  end_time TIMESTAMP WITH TIME ZONE NOT NULL,

  duration INTEGER NOT NULL,

  keterangan TEXT,

  created_at TIMESTAMP WITH TIME ZONE DEFAULT NOW(),

  user_id UUID REFERENCES auth.users(id)

);



-- Profiles table for user information

CREATE TABLE profiles (

  id UUID REFERENCES auth.users(id) ON DELETE CASCADE,

  email TEXT UNIQUE,

  nama_lengkap TEXT NOT NULL,

  alamat TEXT,

  username TEXT UNIQUE NOT NULL,

  created_at TIMESTAMP WITH TIME ZONE DEFAULT NOW(),

  updated_at TIMESTAMP WITH TIME ZONE DEFAULT NOW(),

  PRIMARY KEY (id)

);

```



### 4. Environment Configuration



Configure your `.env` file:



```env

# Supabase Configuration

NEXT_PUBLIC_SUPABASE_URL=https://your-project.supabase.co

NEXT_PUBLIC_SUPABASE_ANON_KEY=your-anon-key

SUPABASE_SERVICE_ROLE_KEY=your-service-role-key



# Server Configuration

PORT=3000

NODE_ENV=development



# API Base URL (for frontend to connect to backend)

NEXT_PUBLIC_API_BASE_URL=http://localhost:3000

```



### 5. Run the Application



```bash

# Navigate to backend directory and start the server

cd backend

npm start

```



The application will be available at `http://localhost:3000`



## ๐Ÿ” Authentication System



The application includes a comprehensive authentication system:



### Registration

- User fields: email, nama_lengkap, alamat, username, password

- Validation: Email format validation, password strength requirements

- Security: Passwords are securely hashed using Supabase Auth



### Login

- Credentials: Accepts email or username with password

- Session Management: Secure session handling with JWT tokens

- After successful login, user sessions are maintained via JWT tokens stored in localStorage

- All subsequent API requests include the authorization header with the JWT token



### API Endpoints for Authentication



| Method | Endpoint | Description | Body |

|--------|----------|-------------|------|

| POST | `/auth/register` | Register new user | `{ email, nama_lengkap, alamat, username, password }` |

| POST | `/auth/login` | Authenticate user | `{ email_or_username, password }` |

| POST | `/auth/logout` | End user session | - |

| GET | `/auth/me` | Get current user profile | - (requires authentication) |

| PUT | `/auth/profile` | Update user profile | `{ nama_lengkap, alamat, username }` |



## ๐ŸŒ API Endpoints



### Task Management Endpoints



| Method | Endpoint | Description | Body |

|--------|----------|-------------|------|

| GET | `/api/ping` | Health check | - |

| GET | `/api/stats` | Dashboard statistics | - |

| GET | `/api/tasks` | List all tasks with aggregated info | - |

| POST | `/api/tasks` | Create new task | `{ title, description }` |

| GET | `/api/tasks/:id` | Get task detail with sessions | - |

| PUT | `/api/tasks/:id` | Update task | `{ title, description }` |

| DELETE | `/api/tasks/:id` | Delete task | - |

| POST | `/api/tasks/:id/sessions` | Add session to task | `{ start_time, end_time }` (ISO) |

| PUT | `/api/tasks/:taskId/sessions/:sessionId` | Update session | `{ start_time, end_time }` |

| DELETE | `/api/tasks/:taskId/sessions/:sessionId` | Delete session | - |

| PUT | `/api/tasks/:id` | Update task (including status) | `{ title, description, status }` |

| GET | `/api/history` | Get task history organized by completion date | - |



## ๐Ÿ”’ Security Features



### Content Security Policy (CSP)

- **Script Protection**: Restricts script sources to prevent XSS attacks

- **Frame Protection**: Controls which sources can be embedded in iframes

- **Style Protection**: Limits where stylesheets can be loaded from

- **Connect Protection**: Restricts API endpoint connections

- **Vercel Integration**: Properly configured to allow Vercel live feedback features



### Conditional Debug Output

- **Production Safe**: Debug logs are disabled in production environments

- **Development Friendly**: Full debug information available during development

- **Information Protection**: Prevents sensitive system information from being exposed

- **Environment Detection**: Automatically detects NODE_ENV to determine logging level



## ๐ŸŽจ Frontend Features



### Session Timeout Management

- **Countdown Timer**: Shows remaining session time with continuous updates every second

- **Visual Indicators**: Different colors and animations indicate session status

  - Normal: White/black text (depending on theme)

  - Warning (< 10 minutes): Orange/yellow text with bold styling

  - Critical (< 5 minutes): Red text with pulsing animation

  - Expired: Red/black text indicating session has expired

- **Automatic Logout**: User is automatically logged out when session expires

- **Theme Compatibility**: Colors adjust automatically for light/dark mode

- **Fallback Mechanism**: Uses login time if JWT expiration data is unavailable

- **Session Storage**: Tracks login time in localStorage for fallback calculations



### Dashboard

- **Total Hari Ini**: Shows the total accumulated time worked today

- **Total Keseluruhan**: Shows the total accumulated time across all tasks

- **Task Running**: Count of currently active timers

- **Total Task in Week**: Number of tasks completed this week

- **Active Session Timer**: Real-time display of currently running sessions with elapsed time

- **Session Duration**: Shows duration for each completed session

- **Session Status**: Visual indicators for active vs completed sessions



### Task Management

- Create new tasks with title and description

- Edit existing tasks

- Delete tasks (and all associated sessions)

- Mark tasks as completed/incomplete

- Tasks are organized into "Active Tasks" and "Completed Tasks" sections



### Time Tracking

- Start/Stop timers for individual tasks

- Dynamic button visibility: When a task is running, the "Start" button is hidden and replaced with a "Stop" button

- Live timer display with real-time updates

- Session history with start/end times and duration



### Session Management After Login

- **Session Persistence**: After login, user sessions are maintained via JWT tokens

- **Session Tracking**: Each task can have multiple time tracking sessions

- **Session Details**: View detailed information about each session including start time, end time, and duration

- **Session Editing**: Modify session times or add descriptions (keterangan) to sessions

- **Session History**: All sessions are stored and accessible even after logout and login

- **User Isolation**: Sessions are tied to the authenticated user, ensuring privacy

- **Dashboard Session Display**: Active sessions are prominently displayed on the dashboard with real-time timers

- **Remaining Time Calculation**: The application calculates and shows how much time remains in active sessions

- **Session Continuation**: If a session was active when the user logged out, it can be resumed after login

- **Session Timeout Management**: Displays countdown timer showing remaining session time with visual indicators

- **Theme-Aware Colors**: Session timer colors adjust automatically based on light/dark theme

- **Automatic Logout**: User is automatically logged out when session expires for security

- **Visual Warnings**: Color changes and animations warn users when session is about to expire



### History Task Section

- **Date-based Organization**: Tasks are grouped by creation date

- **Today's Label**: Current day shows as "Hari Ini" (Today in Indonesian)

- **Date Formatting**: Previous days show in "DD MMM YYYY" format

- **Progress Indicators**: Each date group shows progress in "X/Y" format



## โ˜๏ธ Deploying to Vercel



### Prerequisites

- A Vercel account

- The Vercel CLI installed (`npm i -g vercel`)



### Security Best Practices for Deployment



When deploying to production, ensure you follow these security practices:



- **Environment Variables**: Never commit sensitive data to version control

- **Supabase Keys**: Use proper role-based keys (anon for client, service role for server)

- **Debug Output**: The application automatically disables debug logs in production

- **CSP Headers**: Content Security Policy is enforced in production environments



### Deployment Steps



1. Navigate to the backend directory:

   ```bash

   cd backend

   ```



2. Deploy to Vercel:

   ```bash

   vercel

   ```



3. Set Environment Variables in the Vercel dashboard:

   - `NEXT_PUBLIC_SUPABASE_URL`: Your Supabase project URL

   - `NEXT_PUBLIC_SUPABASE_ANON_KEY`: Your Supabase anon key

   - `SUPABASE_SERVICE_ROLE_KEY`: Your Supabase service role key



## ๐Ÿงช Testing



### Running Unit Tests



To run the existing unit tests:



```bash

cd backend

node test/secondsToString.test.js

```



This will run the unit tests for the `secondsToString` function and display the results.



## ๐Ÿ”ง Troubleshooting



### Common Issues



#### Port Already in Use Error

If you encounter `listen EADDRINUSE: address already in use ::1:3000`:

```bash

# Identify the process using port 3000

lsof -i :3000



# Kill the process (replace PID with actual process ID)

kill 



# Or use a different port

PORT=3001 npm start

```



#### Registration Error: "Unexpected token '<'"

Common causes and solutions:

1. Ensure the backend server is running

2. Verify your Supabase configuration in `.env` file

3. Check that the `profiles` table exists in your Supabase database

4. Look at server console for specific error messages



#### Session Management Issues After Login

- Ensure JWT tokens are properly stored in localStorage after login

- Check that authorization headers are included in all authenticated API requests

- Verify that session data is properly associated with the logged-in user

- Confirm that session times are accurately calculated and displayed

- Active sessions will continue to run and show remaining time on the dashboard after login

- Session timeout countdown appears in the header next to the user's name after login

- Session automatically expires after 1 hour (or as configured in JWT) with automatic logout

- Session timer colors adjust based on light/dark theme for optimal visibility



## ๐Ÿค Contributing



1. Fork the repository

2. Create a feature branch (`git checkout -b feature/amazing-feature`)

3. Commit your changes (`git commit -m 'Add some amazing feature'`)

4. Push to the branch (`git push origin feature.amazing-feature`)

5. Open a Pull Request



## ๐Ÿ› Known Issues & Future Enhancements



- Export functionality for reports (CSV/PDF)

- Daily/weekly summary charts

- Idle detection to improve accuracy

- Task tagging and categorization

- More advanced filtering and search capabilities



## ๐Ÿ“„ License



This project is licensed under the MIT License - see the LICENSE file for details.