Glossary
Terminology, acronyms, and services used in Refresh App Web.
General Terms
Edge Computing Running code at Cloudflare's edge network (300+ data centers worldwide) instead of centralized servers. Provides low latency globally.
Multi-Tenancy Architecture where a single application instance serves multiple organizations (tenants), with complete data isolation.
Row-Level Security (RLS) Database security feature that filters query results based on user identity/context. Enforced by PostgreSQL.
Server-Side Rendering (SSR) Rendering web pages on the server before sending to the client. Improves SEO and initial load times.
Serverless Cloud execution model where the cloud provider manages server infrastructure. Pay only for actual usage.
Acronyms
API - Application Programming Interface APAC - Asia-Pacific AWS - Amazon Web Services CCPA - California Consumer Privacy Act CDN - Content Delivery Network CI/CD - Continuous Integration/Continuous Deployment CORS - Cross-Origin Resource Sharing CSP - Content Security Policy CSRF - Cross-Site Request Forgery EU - European Union GDPR - General Data Protection Regulation HMR - Hot Module Replacement HSTS - HTTP Strict Transport Security JWT - JSON Web Token JWKS - JSON Web Key Set KMS - Key Management Service KV - Key-Value MFA - Multi-Factor Authentication NA - North America OAuth - Open Authorization ORM - Object-Relational Mapping PKCE - Proof Key for Code Exchange PR - Pull Request R2 - Cloudflare Object Storage (S3-compatible) RBAC - Role-Based Access Control RLS - Row-Level Security RS256 - RSA Signature with SHA-256 SOC 2 - Service Organization Control 2 SSM - AWS Systems Manager Parameter Store SSO - Single Sign-On TLS - Transport Layer Security TTL - Time To Live UUID - Universally Unique Identifier XSS - Cross-Site Scripting
Technologies
Auth.js (NextAuth) Authentication library for SvelteKit. Handles OAuth providers, sessions, and JWT.
Bits UI Accessible component library for Svelte. Provides headless UI components.
Cloudflare Pages Static site hosting on Cloudflare's edge network.
Cloudflare Workers Serverless compute platform running on Cloudflare's edge. V8 isolates with Node.js compatibility.
Drizzle ORM TypeScript-first ORM for SQL databases. Type-safe query builder.
Neon Serverless PostgreSQL with auto-scaling, branching, and multi-region support.
PostHog Product analytics and error tracking platform.
SvelteKit Meta-framework for Svelte. Provides routing, SSR, and build tooling.
Svelte 5 Reactive UI framework with runes for explicit reactivity.
Tailwind CSS Utility-first CSS framework.
Vite Frontend build tool. Fast dev server with HMR.
Vitest Test framework built on Vite. Compatible with Jest API.
Wrangler CLI for Cloudflare Workers development and deployment.
Database Terms
Connection Pooling Reusing database connections instead of creating new ones. Improves performance.
Migration Version-controlled database schema change. Applied sequentially.
Read Replica Copy of primary database for read-only queries. Improves performance and availability.
Logical Replication PostgreSQL feature to replicate data from one database to another.
Tenant ID Unique identifier for an organization/tenant. Used in RLS policies.
Cloudflare Terms
Worker Serverless function running on Cloudflare's edge.
Binding Connection between Worker and Cloudflare service (R2, KV, etc.).
Zone DNS zone managed by Cloudflare (e.g., refresh.tech).
Placement Mode Strategy for routing requests to Workers (smart = intelligent routing).
Security Terms
Affordance Feature flag that controls UI element visibility based on tenant settings.
JWT Claims Data payload in JWT (e.g., user_id, tenant_id, role).
Private JWK Private key in JSON Web Key format. Used to sign JWTs.
Public JWK Public key in JSON Web Key format. Used to verify JWT signatures.
Session Cache In-memory cache of user session data. Reduces database queries.
Tenant Isolation Ensuring one tenant cannot access another tenant's data.
Development Terms
Hot Reload Automatically updating the browser when code changes. Preserves application state.
Type Inference TypeScript automatically determining types without explicit annotations.
Runes Svelte 5 syntax for explicit reactivity ($state, $derived, $effect, $props).
Load Function SvelteKit function for fetching data before rendering a page.
Form Action Server-side handler for form submissions in SvelteKit.
Layout Reusable wrapper component for nested routes.
Roles
Platform Admin User with ADMIN role. Has access to all tenants and platform settings.
Tenant Owner User with OWNER role for a tenant. Full control over tenant.
Tenant Admin User with ADMIN role for a tenant. Can manage tenant settings and users.
Group Admin User with ADMIN role for a group. Can manage group settings and members.
Member Regular user with basic access.
Related Documentation
Last updated: October 2025
Last updated