Ouro Certo Enterprise Dashboard
(2026)A BI and operational management platform featuring 12 layers of security and atomic financial auditing.
Next.jsReactSupabaseTailwind CSSTypeScriptSecurity (CSP/RLS)Server Actions
More Details
Ouro Certo Dashboard is a professional-grade internal management system designed for a high-value gold-buying network. It centralizes critical operations from multiple stores, transforming raw daily reports into actionable business intelligence through automated auditing, karat-specific stock tracking, and multi-enterprise data aggregation.
Business Intelligence & Precision
- Real-Time Financial Control: Automatically calculates expected vs. declared closing cash, integrating dedicated flows for Nickel and Oco’s network movements, including off-balance bank transfer entries.
- Karat-Specific Metrics: Tracks gold stock by purity, providing administration with average €/g metrics to monitor buying efficiency across the entire network.
- Enterprise-Scale Reporting: Aggregates data across distinct brands (OuroCerto and OuroCerto Premium), offering daily summaries, enterprise subtotals, and monthly growth views.
- Atomic Audit Trail: Maintains a persistent and immutable audit log of all write operations, featuring a 7-day automated rotation and secure export system for full administrative transparency.
- Data Lifecycle & Archiving: Implements a CSV export and import system, enabling two-phase data purges to optimize database storage without sacrificing historical access.
The 12-Layer Security Framework
The system implements a rigorous, industry-standard security architecture to protect sensitive financial data:
- JWT Role Integrity: Access control (RBAC) is embedded directly into JWT claims via custom database hooks, eliminating database round-trips for middleware and API authorization.
- Atomic Transactions: Critical write operations utilize PostgreSQL RPC functions to ensure all-or-nothing data integrity across multiple tables in a single transaction.
- Perimeter Security: Strict Content Security Policy (CSP), HSTS force-HTTPS encryption, and origin validation to block CSRF, XSS, and injection attacks.
- Access Control: Multi-layer protection enforced via Next.js Middleware, per-IP rate limiting, and Database Row-Level Security (RLS).
Engineering Excellence
- Modern Stack: Built with Next.js 16 and React 19, utilizing Supabase RPC for high-performance, atomic server-side data mutations.
- Performance Architecture: Optimized PostgreSQL queries using explicit field selection and parallel data fetching via Suspense to eliminate client-side waterfalls.
- Operational Control: Strict Lisbon timezone enforcement and a specialized 30-day reporting window ensure maximum data reliability for daily store operations.