# Frontend Best Practices Modern frontend development standards for accessibility, testing, TypeScript, and Tailwind CSS. --- ## Table of Contents - [Accessibility (a11y)](#accessibility-a11y) - [Testing Strategies](#testing-strategies) - [TypeScript Patterns](#typescript-patterns) - [Tailwind CSS](#tailwind-css) - [Project Structure](#project-structure) - [Security](#security) --- ## Accessibility (a11y) ### Semantic HTML ```tsx // BAD - Divs for everything

Click me

...

// GOOD - Semantic elements

...

``` ### Keyboard Navigation ```tsx // Ensure all interactive elements are keyboard accessible function Modal({ isOpen, onClose, children }: ModalProps) { const modalRef = useRef(null); useEffect(() => { if (isOpen) { // Focus first focusable element const focusable = modalRef.current?.querySelectorAll( 'button, [href], input, select, textarea, [tabindex]:not([tabindex="-1"])' ); (focusable?.[0] as HTMLElement)?.focus(); // Trap focus within modal const handleTab = (e: KeyboardEvent) => { if (e.key === 'Tab' && focusable) { const first = focusable[0] as HTMLElement; const last = focusable[focusable.length - 1] as HTMLElement; if (e.shiftKey && document.activeElement === first) { e.preventDefault(); last.focus(); } else if (!e.shiftKey && document.activeElement === last) { e.preventDefault(); first.focus(); } } if (e.key === 'Escape') { onClose(); } }; document.addEventListener('keydown', handleTab); return () => document.removeEventListener('keydown', handleTab); } }, [isOpen, onClose]); if (!isOpen) return null; return ( ); } ``` ### ARIA Attributes ```tsx // Live regions for dynamic content

{status &&

{status}

}

// Loading states // Form labels Email address {errors.email && (

{errors.email}

)} // Navigation // Toggle buttons // Expandable sections ``` ### Color Contrast ```tsx // Ensure 4.5:1 contrast ratio for text (WCAG AA) // Use tools like @axe-core/react for testing // tailwind.config.js - Define accessible colors module.exports = { theme: { colors: { // Primary with proper contrast primary: { DEFAULT: '#2563eb', // Blue 600 foreground: '#ffffff', }, // Error state error: { DEFAULT: '#dc2626', // Red 600 foreground: '#ffffff', }, // Text colors with proper contrast foreground: '#0f172a', // Slate 900 muted: '#64748b', // Slate 500 - minimum 4.5:1 on white }, }, }; // Never rely on color alone ``` ### Screen Reader Only Content ```tsx // Visually hidden but accessible to screen readers const srOnly = 'absolute w-px h-px p-0 -m-px overflow-hidden whitespace-nowrap border-0'; // Skip link for keyboard users Skip to main content // Icon buttons need labels // Or use visually hidden text ``` --- ## Testing Strategies ### Component Testing with Testing Library ```tsx // Button.test.tsx import { render, screen, fireEvent } from '@testing-library/react'; import userEvent from '@testing-library/user-event'; import { Button } from './Button'; describe('Button', () => { it('renders with correct text', () => { render(); expect(screen.getByRole('button', { name: 'Click me' })).toBeInTheDocument(); }); it('calls onClick when clicked', async () => { const user = userEvent.setup(); const handleClick = jest.fn(); render(); await user.click(screen.getByRole('button')); expect(handleClick).toHaveBeenCalledTimes(1); }); it('is disabled when loading', () => { render(); expect(screen.getByRole('button')).toBeDisabled(); expect(screen.getByRole('button')).toHaveAttribute('aria-busy', 'true'); }); it('shows loading text when loading', () => { render(); expect(screen.getByText('Submitting...')).toBeInTheDocument(); }); }); ``` ### Hook Testing ```tsx // useCounter.test.ts import { renderHook, act } from '@testing-library/react'; import { useCounter } from './useCounter'; describe('useCounter', () => { it('initializes with default value', () => { const { result } = renderHook(() => useCounter()); expect(result.current.count).toBe(0); }); it('initializes with custom value', () => { const { result } = renderHook(() => useCounter(10)); expect(result.current.count).toBe(10); }); it('increments count', () => { const { result } = renderHook(() => useCounter()); act(() => { result.current.increment(); }); expect(result.current.count).toBe(1); }); it('resets to initial value', () => { const { result } = renderHook(() => useCounter(5)); act(() => { result.current.increment(); result.current.increment(); result.current.reset(); }); expect(result.current.count).toBe(5); }); }); ``` ### Integration Testing ```tsx // LoginForm.test.tsx import { render, screen, waitFor } from '@testing-library/react'; import userEvent from '@testing-library/user-event'; import { LoginForm } from './LoginForm'; import { AuthProvider } from '@/contexts/AuthContext'; const mockLogin = jest.fn(); jest.mock('@/lib/auth', () => ({ login: (...args: unknown[]) => mockLogin(...args), })); describe('LoginForm', () => { beforeEach(() => { mockLogin.mockReset(); }); it('submits form with valid credentials', async () => { const user = userEvent.setup(); mockLogin.mockResolvedValueOnce({ user: { id: '1', name: 'Test' } }); render( ); await user.type(screen.getByLabelText(/email/i), 'test@example.com'); await user.type(screen.getByLabelText(/password/i), 'password123'); await user.click(screen.getByRole('button', { name: /sign in/i })); await waitFor(() => { expect(mockLogin).toHaveBeenCalledWith('test@example.com', 'password123'); }); }); it('shows validation errors for empty fields', async () => { const user = userEvent.setup(); render( ); await user.click(screen.getByRole('button', { name: /sign in/i })); expect(await screen.findByText(/email is required/i)).toBeInTheDocument(); expect(await screen.findByText(/password is required/i)).toBeInTheDocument(); expect(mockLogin).not.toHaveBeenCalled(); }); }); ``` ### E2E Testing with Playwright ```typescript // e2e/checkout.spec.ts import { test, expect } from '@playwright/test'; test.describe('Checkout flow', () => { test.beforeEach(async ({ page }) => { await page.goto('/'); await page.click('[data-testid="product-1"] button'); await page.click('[data-testid="cart-button"]'); }); test('completes checkout with valid payment', async ({ page }) => { await page.click('text=Proceed to Checkout'); // Fill shipping info await page.fill('[name="email"]', 'test@example.com'); await page.fill('[name="address"]', '123 Test St'); await page.fill('[name="city"]', 'Test City'); await page.selectOption('[name="state"]', 'CA'); await page.fill('[name="zip"]', '90210'); await page.click('text=Continue to Payment'); await page.click('text=Place Order'); // Verify success await expect(page).toHaveURL(/\/order\/confirmation/); await expect(page.locator('h1')).toHaveText('Order Confirmed!'); }); }); ``` --- ## TypeScript Patterns ### Component Props ```tsx // Use interface for component props interface ButtonProps { variant?: 'primary' | 'secondary' | 'ghost'; size?: 'sm' | 'md' | 'lg'; isLoading?: boolean; children: React.ReactNode; onClick?: () => void; } // Extend HTML attributes interface ButtonProps extends React.ButtonHTMLAttributes { variant?: 'primary' | 'secondary'; isLoading?: boolean; } function Button({ variant = 'primary', isLoading, children, ...props }: ButtonProps) { return ( ); } // Polymorphic components type PolymorphicProps = { as?: E; } & React.ComponentPropsWithoutRef; function Box({ as, children, ...props }: PolymorphicProps) { const Component = as || 'div'; return {children}; } // Usage Content Article content ``` ### Discriminated Unions ```tsx // State machines with exhaustive type checking type AsyncState = | { status: 'idle' } | { status: 'loading' } | { status: 'success'; data: T } | { status: 'error'; error: Error }; function DataDisplay({ state, render }: { state: AsyncState; render: (data: T) => React.ReactNode; }) { switch (state.status) { case 'idle': return null; case 'loading': return ; case 'success': return <>{render(state.data)}; case 'error': return ; // TypeScript ensures all cases are handled } } ``` ### Generic Components ```tsx // Generic list component interface ListProps { items: T[]; renderItem: (item: T, index: number) => React.ReactNode; keyExtractor: (item: T) => string; emptyMessage?: string; } function List({ items, renderItem, keyExtractor, emptyMessage }: ListProps) { if (items.length === 0) { return

{emptyMessage || 'No items'}

; } return (

{renderItem(item, index)}

); } // Usage user.id} renderItem={(user) => } /> ``` ### Type Guards ```tsx // User-defined type guards interface User { id: string; name: string; email: string; } interface Admin extends User { role: 'admin'; permissions: string[]; } function isAdmin(user: User): user is Admin { return 'role' in user && user.role === 'admin'; } function UserBadge({ user }: { user: User }) { if (isAdmin(user)) { // TypeScript knows user is Admin here return Admin ({user.permissions.length} perms); } return User; } // API response type guards interface ApiSuccess { success: true; data: T; } interface ApiError { success: false; error: string; } type ApiResponse = ApiSuccess | ApiError; function isApiSuccess(response: ApiResponse): response is ApiSuccess { return response.success === true; } ``` --- ## Tailwind CSS ### Component Variants with CVA ```tsx import { cva, type VariantProps } from 'class-variance-authority'; import { cn } from '@/lib/utils'; const buttonVariants = cva( // Base styles 'inline-flex items-center justify-center rounded-md font-medium transition-colors focus-visible:outline-none focus-visible:ring-2 focus-visible:ring-offset-2 disabled:pointer-events-none disabled:opacity-50', { variants: { variant: { primary: 'bg-blue-600 text-white hover:bg-blue-700 focus-visible:ring-blue-500', secondary: 'bg-gray-100 text-gray-900 hover:bg-gray-200 focus-visible:ring-gray-500', ghost: 'hover:bg-gray-100 hover:text-gray-900', destructive: 'bg-red-600 text-white hover:bg-red-700 focus-visible:ring-red-500', }, size: { sm: 'h-8 px-3 text-sm', md: 'h-10 px-4 text-sm', lg: 'h-12 px-6 text-base', icon: 'h-10 w-10', }, }, defaultVariants: { variant: 'primary', size: 'md', }, } ); interface ButtonProps extends React.ButtonHTMLAttributes, VariantProps {} function Button({ className, variant, size, ...props }: ButtonProps) { return ( ``` ### Responsive Design ```tsx // Mobile-first responsive design

{products.map(product => )}

// Container with responsive padding

Content

// Hide/show based on breakpoint ``` ### Animation Utilities ```tsx // Skeleton loading

// Transitions // Custom animations in tailwind.config.js module.exports = { theme: { extend: { animation: { 'fade-in': 'fadeIn 0.3s ease-out', 'slide-up': 'slideUp 0.3s ease-out', 'spin-slow': 'spin 3s linear infinite', }, keyframes: { fadeIn: { '0%': { opacity: '0' }, '100%': { opacity: '1' }, }, slideUp: { '0%': { transform: 'translateY(10px)', opacity: '0' }, '100%': { transform: 'translateY(0)', opacity: '1' }, }, }, }, }, }; // Usage

Fading in

``` --- ## Project Structure ### Feature-Based Structure ``` src/ ├── app/ # Next.js App Router │ ├── (auth)/ # Auth route group │ │ ├── login/ │ │ └── register/ │ ├── dashboard/ │ │ ├── page.tsx │ │ └── layout.tsx │ └── layout.tsx ├── components/ │ ├── ui/ # Shared UI components │ │ ├── Button.tsx │ │ ├── Input.tsx │ │ └── index.ts │ └── features/ # Feature-specific components │ ├── auth/ │ │ ├── LoginForm.tsx │ │ └── RegisterForm.tsx │ └── dashboard/ │ ├── StatsCard.tsx │ └── RecentActivity.tsx ├── hooks/ # Custom React hooks │ ├── useAuth.ts │ ├── useDebounce.ts │ └── useLocalStorage.ts ├── lib/ # Utilities and configs │ ├── utils.ts │ ├── api.ts │ └── constants.ts ├── types/ # TypeScript types │ ├── user.ts │ └── api.ts └── styles/ └── globals.css ``` ### Barrel Exports ```tsx // components/ui/index.ts export { Button } from './Button'; export { Input } from './Input'; export { Card, CardHeader, CardContent, CardFooter } from './Card'; export { Dialog, DialogTrigger, DialogContent } from './Dialog'; // Usage import { Button, Input, Card } from '@/components/ui'; ``` --- ## Security ### XSS Prevention React escapes content by default, which prevents most XSS attacks. When you need to render HTML content: 1. **Avoid rendering raw HTML** when possible 2. **Sanitize with DOMPurify** for trusted content sources 3. **Use allow-lists** for permitted tags and attributes ```tsx // React escapes by default - this is safe

{userInput}

// When you must render HTML, sanitize first import DOMPurify from 'dompurify'; function SafeHTML({ html }: { html: string }) { const sanitized = DOMPurify.sanitize(html, { ALLOWED_TAGS: ['b', 'i', 'em', 'strong', 'a', 'p'], ALLOWED_ATTR: ['href'], }); return

; } ``` ### Input Validation ```tsx import { z } from 'zod'; import { useForm } from 'react-hook-form'; import { zodResolver } from '@hookform/resolvers/zod'; const schema = z.object({ email: z.string().email('Invalid email address'), password: z.string() .min(8, 'Password must be at least 8 characters') .regex(/[A-Z]/, 'Password must contain uppercase letter') .regex(/[0-9]/, 'Password must contain number'), confirmPassword: z.string(), }).refine((data) => data.password === data.confirmPassword, { message: 'Passwords do not match', path: ['confirmPassword'], }); type FormData = z.infer; function RegisterForm() { const { register, handleSubmit, formState: { errors } } = useForm({ resolver: zodResolver(schema), }); return ( ); } ``` ### Secure API Calls ```tsx // Use environment variables for API endpoints const API_URL = process.env.NEXT_PUBLIC_API_URL; // Never include secrets in client code - use server-side API routes // app/api/data/route.ts export async function GET() { const response = await fetch('https://api.example.com/data', { headers: { 'Authorization': `Bearer ${process.env.API_SECRET}`, // Server-side only }, }); return Response.json(await response.json()); } ```