Skip to content

thinkgrid-labs/react-local-fetch

BranchesTags

Repository files navigation

@thinkgrid/react-local-fetch

CI npm version License: MIT

Ultra-lightweight, resilient, and secure data fetching for React and Next.js.

react-local-fetch is a zero-dependency library that implements a powerful Hydrate-and-Sync (SWR) pattern. It uses native IndexedDB for persistent local caching and the Web Crypto API for optional, high-performance AES-GCM 256-bit encryption. Perfect for building offline-first, local-first, and privacy-conscious web applications.

✨ Why react-local-fetch?

  • ⚡ Zero Latency: Return cached data instantly while refreshing from your API in the background.
  • 🛡️ Secure by Design: Optional hardware-accelerated encryption for sensitive local data.
  • 📦 Zero Dependencies: Pure ESM/CJS build using only browser native APIs.
  • 🔄 Smart Invalidation: Version-based cache busting for schema changes and deployments.
  • 🌐 Next.js & SSR Ready: Automatically bypasses client-side storage during server rendering.
  • 🔌 Resilient: Gracefully returns stale data if the network is down or the API fails.
  • 🚀 Tiny Footprint: < 4KB gzipped.

📦 Installation

npm install @thinkgrid/react-local-fetch

🛠️ Usage

1. Basic Example (SWR + Persistence)

import { useLocalFetch } from '@thinkgrid/react-local-fetch';

function StationList() {
  const { data, isLoading, error } = useLocalFetch('/api/v1/stations', {
    key: 'stations-cache',
    ttl: 86400, // 24 hours
  });

  if (isLoading && !data) return <p>Loading...</p>;
  if (error && !data) return <p>Network Error</p>;

  return (
    <ul>
      {data.map(station => <li key={station.id}>{station.name}</li>)}
    </ul>
  );
}

2. Advanced Example (Encryption + Versioning)

Best for protecting sensitive metadata or ensuring code-data compatibility across deployments.

const { data } = useLocalFetch('/api/v1/user/private-routes', {
  key: 'user-routes',
  version: 2,           // Increment this to nuke old caches
  encrypt: true,        // Toggle AES-GCM encryption
  secret: 'my-secret',  // Used to derive encryption key
  fallbackToCache: true, // Use old data if API fails
  headers: {
    'Authorization': `Bearer ${token}`
  }
});

3. Integration with TanStack Query (React Query)

You can use the core localFetch function inside your queryFn to gain encryption and persistent SWR while keeping React Query's powerful features (caching, window focus refetching, etc).

import { useQuery } from '@tanstack/react-query';
import { localFetch } from '@thinkgrid/react-local-fetch';

function useSecureStations() {
  return useQuery({
    queryKey: ['stations'],
    queryFn: () => localFetch('/api/v1/stations', {
      key: 'stations-persistent-db',
      encrypt: true,
      secret: process.env.NEXT_PUBLIC_CRYPTO_SECRET,
      version: 1, // Automatic cache busting on deployment
      ttl: 3600 * 24 // 24h
    })
  });
}

4. Manual Cache Management

Sometimes you need to manually clear items (e.g., on logout) or remove specific keys.

import { removeFromStorage, clearAllStorage } from '@thinkgrid/react-local-fetch';

// Remove a specific item
await removeFromStorage('user-routes');

// Clear ALL data stored by this package
await clearAllStorage();

🔐 Security Best Practices

When using encrypt: true, you MUST NOT hardcode the secret in your frontend source code! Doing so renders the encryption completely useless, as anyone can inspect your client bundle and find the key.

Instead, the secret should either be:

  1. Derived from user input (e.g., a PIN code or password they enter).
  2. Retrieved dynamically from your backend for the active session and stored only in memory.

⚙️ Configuration Options

Option Type Default Description
key string Required Unique ID for the data in IndexedDB.
version number 0 If the stored version is lower than this, the cache is cleared.
ttl number 0 Time-to-live in seconds. 0 means forever.
encrypt boolean false Whether to encrypt data before storing.
secret string undefined The string used to derive the AES key (required if encrypt: true).
headers object {} Standard fetch headers.
fallbackToCache boolean true If true, returns stale data if network fetch fails.

📐 Architecture: The "Hydrate-and-Sync" Pattern

  1. Initial Load: Check IndexedDB. If data exists, return it instantly to the UI (0ms latency).
  2. Background Fetch: Trigger a non-blocking API call.
  3. Silent Update: If the API returns new data, update IndexedDB and the UI state automatically.
  4. Resilience: If the user is offline or the API is down, the UI stays functional using the last known good data.

👥 Contributors

🤝 Contributing

Contributions are welcome! Please feel free to submit a Pull Request.

📄 License

MIT © thinkgrid-labs

About

A lightweight, resilient, and secure data fetching layer for React and Next.js. It implements a Hydrate-and-Sync (SWR) pattern using IndexedDB for persistence and the Web Crypto API for optional hardware-accelerated encryption.

Topics

caching typescript encryption offline-first reactjs nextjs aes-gcm data-fetching web-crypto indexdb secure-storage swr react-hooks local-first pesistence

Resources

Readme

Contributing

Contributing
Activity
Custom properties

Stars

1 star

Watchers

0 watching

Forks

0 forks
Report repository

Releases

3 tags

Packages

 
 
 

Contributors

Languages