That card animation is hands down, the best one I've seen so far anywhere in payment auth pages.

The risk is high because after the @, the server returns all matching emails by json, so the attacker can just gather those. Your service could be a method to just collect emails.

Hey man, I'm always excited to see how people build their dreams software. Quick notes. 1. The login screen where you show an error message for when the email entered is already in use is classic case of over enginnering. You could've just had a email form for both login/sign up together. If the email is in the db, ask for password and if the email is a new one, ask user to create a password. 2. I love how awesome you're making the experience but I still think you could be working on parts that differentiate your site from others more than those parts which every site has like the auth pages and payment pages. I'd love to see how you build the actual amazing learning experience you wish to build. That'll also give you an mvp to start getting test users for.

Hi Filip, regarding the database, I think it depends on the data structure that you want to store. With MongoDB, since it’s a schema-free db, it provides you a lot of flexibility to store data. It’s great to use MongoDB when you need to do a lot of query with your db. However, MongoDB is not as secure as other SQL dbs like PostgreSQL. If you care about consistency, security, and scalability in terms of transactions or queries, and you can create a relationship between different objects that you want to store in your db. PostgreSQL is the one to take. Anyway, it’s up to you to choose which db that you feel more comfortable to work with. Great works on the UI man. Keep going!

Make sure to leave suggestions/improvements below and SMASH the like button! ;-)

I love TailwindCSS and for the lengthy inline classes, I use vscode and I installed the 'Inline fold' extension. It simply fold these lines, and you can inform it by clicking on it.

13:05 username definitely should be live! It's a different pain when you see your favourite username is already taken after fully typing it in. 😂

change the card color to something like a glass material it is much better and its also friendly for the eye in my opinion

The Ui is pretty good filip, You should add rounded ui for users and dark mode/white mode I suggest also add a Login with google, The card needs a bit of filtering like validating a real car not fake cards to stop scams

Wow the payment card details is so amazing! Keep on coding and im curious to see how this project develops

8:08 I think this depends on what you plan to implement or the features you're planning to add in the future. Sometimes I use both relational and non-relational in the same project.

Looks Amazing!!

Hey Filip! Since I have some some experience in angel investing for startups with decent exists I just want to tell you few things, that can be helpful. 1. Competition is for losers When you're entering such competetive market don't focus on UI, focus on your unique value proposition. Can your users do something essential they couldn't done before? Can they do something 10x faster, 10x less expensive, 10x better? What is the process you're going to change radically? Why has no one done this before? I think that in Edu-Tech there are generally 2 segments of customers: I-won't-pay-you type, which is generally learning from youtube, google and blogs, since nobody likes to change to new enviroments [trust, lack of content, need to learn new UI etc.] His best day in his life was when he discovered what adblock does. Internet bookworm, which has a lot of money, is treating learning as an investment and doesn't care about paying few bucks for exclusive content/courses. 2. Some ideas are better for small-business, not for startups. A real startup is a company that creates something 10X, magical solution that customers can't get anywhere else. 'Unicorn' term should be seen as in customers-with-problem eyes, not in investors who love buzzwords. There are millions of restaurants, but there are only few big companies like mcdonalds. A fake startup is a small business, that is struggling to take over 5% of their first sub-market selling the same shit in the same way that have been sold for yers at slightly better prices $50 -> $40, $10 -> freemium or with slightly better UI, UX or different non-essential functions. These businesses still can growth to 6-7 number income, but that's usually the ceiling. If you're determined to make 6-7 figures with this idea, you'll probably achieve it after few years. Especially when you'll focus on youtube marketing, since from what I can see- it's your passion. I hope this can help you, keep up your good work! :)

You need more full time jobs!

While rate limiting make sure to keep in mind some people have long emails and they'll require more requests than others.

Hey Filip, I hope you're doing well. I noticed here you said that you'll be using an IP-based rate limiting. I am a security researcher and please keep in that there is this attack that can be easily performed after getting a free AWS instance. It's called IP rotating which will easily bypass IP-based rate limiting. Also, about password brute force, it's okay to have a week rate-limiting system in terms of security as it will be virtually impossible (it will take way too much time making this attack impractical) if the password is more that 5 characters with AlphaNumeric combination. However, use a good rate limiting technique that doesn't rely on IP for the OTP (if you decide to use OTP)

You are doing so well so far. I am really excited to see how do you end up with this startup. I do have some suggestions: 1. You are implementing different logics for validation for your forms. It should have one logic & UX for validation throughout the website. 2. The Payment Card UI is so fascinating, but tbh it's not User-Friendly. You may use Stripe default card UI; people have already seen Stripe default Card UI on many platforms they are much familiar with. 3. Try to add right border to the labels in inputs, Currently when its onblur. It looks like Labels are actually the text written in the inputs

Sooo gooood !! Well I think it hard to understand what you have to do with the card at first, but I LOVE the animation so much !!

I think the current implementation might make the user think that it’s just a picture of a card. Maybe adding a border or background color to distinguish the input fields could help. It will be less confusing for the user.

Was waiting for this 🤩❤️✨

Yeah, I like the card registration. Just maybe that would be cool to have some tips there advising users to click in the card so they can insert the text

Would be sick if you could show us a little bit more code👍 I would also like to see a video in which you go over the tech stack that you used, and your opinions about it :) btw the animation is fire 🔥

You could use tailwind within your SCSS with the @apply keyword so you won't have so many classes in the JSX files.

You can do it like most other websites where if you've input your email/password incorrectly 3-5 times, it requires you to do a captcha for the rest of your tries. If, however, the tries exceed the limit, then the user will be restricted from trying again for a specified amount of time.

For mobile screen I think you can flip the card and show the CVC field

That card screen should have three buttons, retrun, skip, and save, or if you fill in the card info should change text of the button to continue, that would be better As always really good content!

Rate limiting can be bypassed via proxies, I would recommend doing rate limiting and recaptcha V3 (the user doesn't notice it)

this is sick mam hats off to you 🙂

Great series! I too am working on a SaaS app and am following along as I do. I wanted to comment on your database question: there is a third option. in my current app, I am using RDBMS, but with only one table for accounts and app state stored in a max-length string. Granted it's unusual but with good app-state management in place, it greatly simplifies my app, I have the benefits of indexing and throughput that come with a good RDBMS, and it still behaves like NoSQL.

on mobile you can make that card small after completely filled and then add the same animation as laptop

At 17:55 you have different error messages for "user not found" and "invalid username or password". But this way someone can still bruteforce account names by checking the error message :) So make sure you use the same message when the user is not found or when the password is incorrect. Also I'm curious, GSAP requires you to buy their license when users have to pay on your website to use your website. Did you buy their license or do you think it's not necessary in your case?

You are amazing as a developer and you can be a good voice artist for BATMAN ............

I suggest When User starts entering Card Information, you should change Skip Button Text to Submit

I'm a bit late, but - you shouldn't ask for CCV when you are adding the card on login. The CCV should be asked every time someone made a purchase. Also, your data should be encrypted.

I see 2 problems in the card UI 1.) What about names which are longer than the space in the UI 2.) Clicking and getting the CVC field might leave some non-technical users wondering where to fill the CVC field.

I wanted to suggest you add an email authentication feature to make sure the user inputs a valid email

Again an Amazing video to showcase. The card animation is awesome. I guess going with MongoDB would be a better choice and it's just my opinion 😊.

you can make the input validation live until it hits a rate limit, and then you just do it on submit. Very few people would notice

would love to see that card built with html,css & gsap

Nice video! A solution to the long tailwind classes list would be to enable word wrapping in VSCode.

For the CSS classes, why not just add some carriage returns between them? Or does this break next.js?

You should support micro payments with bsv... :D

Hello Filip, I was wondering is there a documentation you follow so as to do login and registration with mongo db and next js?

From my perspective I think relational db are the best suitable for ur project Why let redesign ur system U hv teachers students and admin maybe Teacher should have id , course number , name Student should hv name , id , boughted courses Ok obviously the PK( primary key for both is id (BCS it is not repeated name can be repeated. So we made the infra database design now if we go with nosql we can store them as obj but to relate them like how we could now the number of students with this teacher it will be hard because we need to recreate a new obj for this one metadata . But with SQL it will be easy because we can creat relationship btw student and teacher Teacher table id name courseNum Student table id name courseBght With simple query we can creat new table to the courseNum that had all the students IDs and the teach id Without using obj because on the future the no SQL it is gonna be so expensive for u if ur indexing all this data from an obj

Can you talk about your gears? I'm looking to the same kinda video for my startup but I've been stuck on the gears to buy (Camera, Mic etc)

Hey fillip ! what's tech stack you are using in your startup??

Sooo nice a series! I really hope you'll keep on making these even though you have a full-time job and a girlfriend haha. I will atleast love to see them. So inspiring!

The video is amazing. Adding a 2FA system would be nice too.

I really want to know how you made the password section and I have a design for the card if you want to se it but every thing is amazing btw 🔥🔥

Yup, that's a really good animation for the payment. However i do think that people who have no clue for this video will need some guidance to input their card information on that card, cause it kinda looks like an image and it might confuse users.

You don't sound like a database person and you definitely would not want to write those complex queries, so NoSQL should do just fine. But one thing you need to know is that when it get to the point where you need to make multi document transaction you'll use more resources (disk and maybe CPU) compared to if you had gone with a RDBMS.

Are you from Poland or something?

You should create a button on the 404 page which directs you to the home page

AMEX uses a different card number format. It's not a 4x4 format. Just FIY

brahhh waiting for the new video....😅😅

discord gang here in seconds ✊🏻

Hey Filip! , you can use scss or css with tailwind, for example you can have a class called auth-container and in scss apply tailwind styles to auth-container class using the @apply keyword, which will reduce the cluttering inline styling of tailwind. Also, the series is amazing good luck with your job and startup :)

When filling in the card information on mobile you won't see the card because of the virtual keyboard

I understand what you mean and that you want to keep that mechanism with the email. However I don‘t want other people to know my email address, it‘s a brilliant idea really but you are technically exposing your users email addresses, even with a rate limit or a captcha. Personally I would stick to the old fashioned „is this email taken“ - request. You have to show the user that something is happening in the background, this results in a great UX even with a request delay

waiting for your new video.... come on man upload.😢

I believe PostgreSQL is far better, especially for your use case

I know that you just want to show your progress but since I guess a lot of people want do similar things it would be a good reminder to use established software and work with their documentations. You are showing so many dangerous practices that it probably won‘t be a secure and accessible platform. I don‘t want to attack you :) but let security researchers provide you with security related stuff (e.g. handling credit cards) and don‘t reinvent the wheel with a fancy half way through email validation where you would have to do some low-level crypto, and let people who know about usability and psychology help you with the ui (e.g. libraries or guidelines, e.g. for accessibility), your password input is nice but I‘m pretty sure it will create a bias toward certain symbols and characters compared to more established variants

💻💻❤🙏🏼

Come one, been a boyfriend is time! Is like a job, I’m you 😂

I am just a student when I start my projects and learning you should help me and collab with me

I think if you hate tailwind, you may try something like chakra-ui. P.S I really love chakra-ui and does a lot better job than tailwind.

You have a girlfriend? how in hell do you have any time left

Firstt

Play clash royale ????

I know that you just want to show your progress but since I guess a lot of people want do similar things it would be a good reminder to use established software and work with their documentations. You are showing so many dangerous practices that it probably won‘t be a secure and accessible platform. I don‘t want to attack you :) but let security researchers provide you with security related stuff (e.g. handling credit cards) and don‘t reinvent the wheel with a fancy half way through email validation where you would have to do some low-level crypto, and let people who know about usability and psychology help you with the ui (e.g. libraries or guidelines, e.g. for accessibility), your password input is nice but I‘m pretty sure it will create a bias towards certain symbols and characters compared to more established variants