Profile

🏦 Thái Nguyễn - Profile Website (Restructured)

Business Developer tại Home Credit - Đồng hành cùng doanh nghiệp ngành dịch vụ tăng trưởng bền vững

📊 Version 1.1.0 - Restructured with improved security, performance & architecture

🌐 Website

⚡ What’s New in v1.1.0

✅ Security: Telegram token moved to server-side, no client exposure ✅ Performance: Response caching, lazy loading, request deduplication ✅ Architecture: Modular directory structure, separated concerns ✅ Validation: Server-side input validation & sanitization ✅ Rate Limiting: 5 req/min to prevent abuse ✅ Better Code: Centralized utilities, shared validators & formatters

See RESTRUCTURE.md for detailed migration guide.

🚀 Quick Start

# Install deps
npm install

# Setup environment
cp .env.example .env.local
# Edit .env.local with your Telegram credentials

# Start backend
npm run dev

# In another terminal - Start profile app
cd apps/profile && npm run dev

# In another terminal - Start xfilm app
cd apps/xfilm && python3 -m http.server 8080

📋 Tính năng

🏠 Trang chủ (`index.html`)

✅ Hero section với CTA
✅ Quy trình hợp tác
✅ Giải pháp dịch vụ
✅ Kết quả thực tế
✅ Form liên hệ với Telegram notification
✅ FAQ section
✅ Responsive design

💰 Tính lãi suất (`calculator.html`)

✅ Calculator trả góp
✅ Hiển thị kết quả theo tháng/ngày
✅ Responsive mobile-friendly

🤝 Đăng ký đối tác (`partner.html`)

✅ Form đăng ký chi tiết
✅ Validation đầy đủ
✅ Loading animation
✅ Success notification đẹp
✅ Telegram bot notification
✅ Custom select dropdown với emoji

🛠️ Công nghệ sử dụng

HTML5 - Cấu trúc
Tailwind CSS - Styling
JavaScript - Interactive
Telegram Bot API - Notifications

🤖 Telegram Bot Integration (v1.1.0)

Security Model: Server-side API gateway

✅ Bot token stored in .env.local (server only)
✅ Client calls /api/telegram/send (secure endpoint)
✅ Server validates & sends to Telegram
✅ Rate limited: 5 requests/minute per IP
❌ Token NEVER exposed in browser/network

Features:

✅ Partner registration notifications
✅ Real-time alerts with emoji formatting
✅ HTML-formatted rich messages
✅ Input validation before sending
✅ Automatic message escaping (prevent injection)

📞 Liên hệ

Email: thai.nguyenv2@homecredit.vn
Zalo: 0333.747.807
Website: vanthai.io.vn

🚀 Deploy

Website được host tại custom domain: vanthai.io.vn

📝 SEO

✅ Meta tags đầy đủ
✅ Open Graph tags
✅ Twitter cards
✅ Sitemap.xml
✅ Robots.txt
✅ Favicon

🎨 Design

Theme màu: Home Credit Red (#C8102E)
Font: Inter, Poppins
Max width: 960px container
Responsive: Mobile-first approach

⚡ Performance

Custom scrollbar
Smooth animations
Loading states
Form validation
Error handling

📁 Project Structure (v1.1.0)

apps/
├── profile/        # Business profile (Next.js)
└── xfilm/         # Movie app (Vanilla JS SPA)

server/            # Express backend
├── routes/        # API endpoints
├── middleware/    # Auth, rate limit, validation
└── services/      # Business logic

shared/            # Reusable utilities
├── validators.js  # Input validation
├── constants.js   # Centralized config
├── formatters.js  # Data formatting
└── errors.js      # Custom errors

workers/           # Cloudflare Workers

🔒 Security Improvements

Secrets Management

Protection Features

✅ Server-side rate limiting (5 req/min)
✅ Input validation & sanitization
✅ HTML escaping (prevent XSS)
✅ CORS whitelist
✅ No credentials in git history

⚡ Performance Features

📦 Caching: IndexedDB + localStorage (10 min TTL)
🔄 Deduplication: Concurrent same requests share promise
🚀 Lazy Loading: Sections load on-demand
🖼️ Image Opt: Lazy loading with responsive images
📊 API Cache: Response headers for browser caching

🛠️ Backend API

POST `/api/telegram/send`

Send partner registration

curl -X POST http://localhost:3000/api/telegram/send \
  -H "Content-Type: application/json" \
  -d '{
    "businessName": "ABC Corp",
    "taxCode": "0123456789",
    "contactPhone": "0987654321",
    "contactEmail": "contact@example.com"
  }'

GET `/api/health`

Server health check

curl http://localhost:3000/api/health