Nexa

Multi-tenant scheduling and CRM platform built with Laravel and Vue.

Nexa allows organizations to create branded booking pages, manage team availability, capture booking attribution data, and track leads through a CRM pipeline. The project explores tenant isolation, scheduling automation, webhook integrations, custom domains, and offline-first client workflows.

Current Features

Nexa is a fully functional, production-ready workspace scheduling and sales CRM application. Core capabilities include:

• Multi-Tenant Workspace Architecture: Isolated branding, schedules, settings, and users per organization.
• Premium Interactive Date Picker: A polished, custom-designed inline monthly calendar grid that replaces default HTML input pickers.
• Team & Collective Scheduling: Dynamic unions of provider schedules to show unified booking availability slots.
• Workload-Balanced Round-Robin Routing: Distributes appointments dynamically to the staff member with the lowest scheduled meetings count.
• CRM Pipeline & UTM Attribution: Automatically creates company, contact, and opportunity records from bookings while preserving marketing source parameters (utm_*).
• Google Calendar Synchronization: Encrypted OAuth credentials connection to automatically sync scheduled meetings.
• HMAC-Signed Outbound Webhooks: Secure webhook subscription pipeline utilizing SHA256 HMAC headers to send real-time events to external developer targets.
• Domain & Branding Wizard: Manage custom domains and dynamically trigger mocked Let's Encrypt SSL edge certificates verification checks.
• Offline Resiliency Sync Queue: Client-side Axios interceptors queue and serialize mutations during connection losses, flushing them sequentially when online.
• Autofill Typewriter Simulations: Built-in interactive simulations showing autofill typing flows on login and schedule views for premium demonstrations.

Technical Overview

Nexa uses a single-database multi-tenant architecture where application data is scoped by tenant identifiers. Bookings, CRM records, webhook subscriptions, and user accounts are isolated at the application and database layers.

The scheduling engine supports availability checks, provider assignment, and workload-balanced routing. Booking events can trigger outbound webhooks and CRM updates while preserving attribution metadata captured during the booking process.

This repository is currently an active development project and serves as both a learning platform and a foundation for future SaaS experimentation.

Why I Built This

Most scheduling applications stop at appointment booking. Nexa explores what happens after a booking is created:

• How should appointments be distributed across a team?
• How can attribution data be preserved?
• How can bookings automatically flow into CRM workflows?
• How can organizations manage branding and domains in a multi-tenant environment?

The project serves as a practical exploration of scheduling systems, CRM workflows, webhook infrastructure, and SaaS architecture using Laravel and Vue.

Future Roadmap

Nexa is actively maintained and designed to support enterprise capabilities. Our roadmap includes:

1. Multi-Tenant Database Isolation: Migrate from a single-database scoping paradigm to dedicated, isolated databases per tenant (e.g., using spatie/laravel-multitenancy) to meet strict compliance and data protection guidelines.
2. Stripe Billing & Subscriptions Checkout: Integrate subscription cycles and plan configurations to charge tenants based on staff seat counts, webhook quotas, and booking volumes.
3. Real-Time Live WebSockets Feed: Implement Laravel Reverb channels to stream real-time updates directly to the administrator dashboard, providing instant updates for lead stage changes on the CRM Kanban board and timeline feeds.
4. Busy Day Tooltips & Availability Indicators: Add micro-tooltips (e.g., "3 slots left") and crossed-out dates directly to the calendar days in the date picker to guide visitors to high-availability dates.

---

Local Demo Walkthrough Guide

Nexa is designed to run locally on your development system to avoid unnecessary hosting costs.

Quick Walkthrough Guide

To explore the scheduling and CRM pipelines:

1. Authentication (Demo Auto-Login):
   • Access the local /demo route. The system will automatically generate a mock demo workspace (demo slug), seed initial analytics, and log you in as a system administrator.
2. Branding & Custom Domain:
   • Go to Settings -> Branding & Logo and modify the organization name, brand color, and custom domain (e.g. book.acme.com). The system dynamically updates the layout variables (--primary-color) across all client-facing scheduling interfaces.
3. Automated SSL Lifecycle:
   • Navigate to the new Settings -> Domains & SSL widget. Observe CNAME record instructions, and click Verify DNS & Activate SSL to trigger a simulated edge Let's Encrypt validation routine.
4. Outbound Developer Webhooks:
   • Navigate to the new Settings -> Webhooks panel. Configure an endpoint (e.g., mock target URL) and a signing secret. Use the Test Payload button to queue a simulated event, and check the delivery logs list.
5. Offline Resiliency Syncing:
   • To test offline resiliency: disconnect your network connection (or toggle offline mode in browser devtools). Update a deal stage on the CRM Pipeline board. A floating red warning alert will indicate offline mode. Reconnect your network to trigger automatic client-side synchronization and see the green success banner.
6. Simulate a Booking (Round-Robin):
   • Visit the public booking link for the workspace (/booking/team) and append UTM parameters to the URL: /booking/team?utm_source=google&utm_medium=cpc&utm_campaign=summer_promo.
   • Select the Collective Team Booking option. Book an available slot. The round-robin algorithm will automatically resolve active providers and route the slot to the available provider with the lowest daily appointment count.
7. Inspect the CRM Kanban & Attribution:
   • Navigate back to the CRM Pipeline tab. Verify that the newly created deal has the captured UTM attribution parameters (utm_source=google, etc.) and the deal is associated with the selected provider.

---

Table of Contents

1. Local Demo Walkthrough Guide
2. Future Roadmap
3. System Architecture
4. Core Technical Specifications
5. Directory Workspace Layout
6. Deployment & Architectural Considerations
7. Prerequisites & Development Setup
8. Testing & Verification

---

System Architecture

Nexa manages tenancy, resolves custom domains, handles collective team availability, executes workload-based round-robin routing, and runs outbound webhook sync hooks:

flowchart TD
    subgraph ClientLayer["🌐 Public Booking & HUD HUD"]
        A[Visitor to acme.localhost:8000]
        U[URL Query Params: utm_source, utm_medium...]
        O[Offline Interceptor Queue: LocalStorage]
    end

    subgraph AppBoundary["⚙️ Nexa Multi-Tenant App Boundary"]
        B[TenantResolutionMiddleware]
        
        subgraph SchedulingEngine["📅 Scheduling & Routing Core"]
            AE[Availability Engine: Conflict Checker]
            RR[Round-Robin Workload Allocator]
        end

        subgraph CRM["💼 CRM Pipeline & Attribution"]
            C[Auto-created CRM Company]
            D[Auto-created CRM Contact]
            E[CRM Deal + UTM Attribution]
        end

        db[("💾 SQLite Database <br> [Scoped tenant_id Index]")]
        
        subgraph DeveloperWebhooks["📡 Developer Webhook Pipeline"]
            WS[Webhook Service]
            QJ[Queue: DispatchWebhookJob]
            WL[Webhook Delivery Logs]
        end
    end

    subgraph External["🔔 Integrations & Edge Protocols"]
        G[Google Calendar OAuth API]
        LE[Mock Let's Encrypt Certificate Edge Validations]
        R[Outbound Developer Endpoint]
    end

    %% Routing
    A -->|1. Resolve Subdomain| B
    B -->|2. Scopes Session| db
    
    %% Booking wizard
    A -->|3. Check Slots| AE
    AE -->|4. Query Calendar Syncs| G
    
    A -->|5. Book Slot| RR
    U -->|6. Append Attribution| RR
    
    %% Round-Robin workload selection
    RR -->|Lowest Workload Provider| db
    
    %% CRM and Attribution
    RR -->|7. Auto-Sync Profile| C
    RR -->|8. Link Contact| D
    RR -->|9. Write Deal with UTM| E
    
    %% Offline Syncing
    O -->|11. Sequenced Flush when Online| B
    
    %% Outbound Webhooks
    db -->|12. Event Trigger| WS
    WS -->|13. HMAC SHA256 Signature| QJ
    QJ -->|14. HTTP POST + Retry Backoff| R
    QJ -->|15. Log Latency| WL
    
    %% SSL Provisioning
    B -->|16. Dynamic SSL verification| LE

Loading

---

Technical Highlights

1. Webhook Signing & HMAC Authentication

To protect external endpoints against payload injection attacks, Nexa computes an HMAC SHA256 signature using the webhook's configured secret and attaches it to the X-Nexa-Signature header:

// From /app/Jobs/DispatchWebhookJob.php
$payloadJson = json_encode($this->payload);
$signature = hash_hmac('sha256', $payloadJson, $subscription->secret);

$response = Http::withHeaders([
    'Content-Type' => 'application/json',
    'X-Nexa-Event' => $this->event,
    'X-Nexa-Signature' => $signature,
])->timeout(10)->post($subscription->url, $this->payload);

2. Workload-Balanced Round-Robin Allocation

Collective booking slots route dynamically to the staff member with the lowest appointment count for the selected day. If counts are equal, the system routes to the first available member (lowest User ID):

// From /app/Http/Controllers/PublicBookingController.php
foreach ($providers as $p) {
    $check = $availabilityService->checkAvailability($p, $start, $end);
    if ($check['available']) {
        $count = Appointment::where('staff_id', $p->id)
            ->whereBetween('start_time', [$startOfDay, $endOfDay])
            ->count();
        $eligibleProviders[] = ['provider' => $p, 'count' => $count];
    }
}
usort($eligibleProviders, function($a, $b) {
    if ($a['count'] === $b['count']) {
        return $a['provider']->id <=> $b['provider']->id;
    }
    return $a['count'] <=> $b['count'];
});
$provider = $eligibleProviders[0]['provider'];

3. Offline Synchronization Queue

Nexa intercepts data mutations (POST, PUT, DELETE, PATCH) on network failure or offline states, serializes them to localStorage, and queues them for sequential FIFO syncing when connection returns:

// From /resources/js/utils/offlineQueue.js
export function registerOfflineInterceptor(onOfflineTriggered, onSyncCompleted) {
    axios.interceptors.request.use((config) => {
        if (isMutation(config) && !navigator.onLine) {
            addToQueue(config);
            if (onOfflineTriggered) onOfflineTriggered(config);
            return Promise.reject({ isOfflineQueue: true, config });
        }
        return config;
    });
}

4. Tenant-Aware User Constraints

To support tenant data scoping without risking duplicate guest emails colliding across organizations, Nexa drops the global database-level index and enforces a composite database-level index:

// From /database/migrations/2026_06_08_000000_fix_users_unique_constraint.php
Schema::table('users', function (Blueprint $table) {
    $table->dropUnique(['email']);
    $table->unique(['email', 'tenant_id']);
});

---

Directory Workspace Layout

Nexa/
├── app/
│   ├── Http/
│   │   ├── Controllers/
│   │   │   └── Admin/           # Admin Dashboard, CRM, AI, Webhook & OAuth Controllers
│   │   └── Middleware/          # Tenant Resolution & Subscription Limit Checkers
│   ├── Jobs/                    # Outbound Webhooks (DispatchWebhookJob) & Calendar Sync
│   ├── Models/                  # Multi-tenant Eloquent models (WebhookSubscription, WebhookDelivery)
│   ├── Services/                # Availability, WebhookService, Google & Outlook calendar APIs
│   └── Traits/                  # BelongsToTenant global scoping traits
├── database/
│   └── migrations/              # Webhooks schema & CRM UTM column migrations
├── resources/
│   ├── js/                      # Vue 3 SPA Client Workspace
│   │   ├── pages/               # Calendar, Settings (Webhook/SSL panel), and Auth views
│   │   └── utils/               # Offline queue helper (offlineQueue.js)
│   └── views/                   # Server-side Blade layouts (app.blade.php)
└── routes/
    └── web.php                  # Web, public bookings, and protected admin API routing

---

Deployment & Architectural Considerations

Nexa is optimized for local environments and cost-free execution. To avoid cloud hosting fees, the production platform has purposefully not been deployed to a live server. Below is an architectural overview of why serverless platforms like Vercel are unsuitable for Nexa, followed by budget-friendly alternatives.

Why Vercel is Not Suitable for Nexa

1. Stateless Serverless Runtimes (SQLite Conflict): Nexa uses a local SQLite database (database.sqlite) for storing bookings and CRM data. Vercel's serverless functions are ephemeral—they spin down and reset, which would completely erase your database contents and cause data desynchronization across concurrent client requests.
2. Persistent Background Queues: Developer webhook dispatches and email schedules run on Laravel's queue worker (php artisan queue:work). Vercel does not support long-running, persistent processes to process queue jobs.
3. No Native PHP Support: Vercel is designed for Node.js/frontend runtimes. Running Laravel on Vercel requires community-built runtimes (like vercel-php) and complex routing layers (vercel.json) that are fragile and harder to maintain.

Recommended Free & Cheap Hosting Alternatives

If you decide to deploy Nexa in the future without incurring high costs, consider these alternatives:

• Fly.io / Railway / Render (Zero-to-Low Cost PaaS): These platforms offer a git-push workflow like Vercel but run standard persistent containers. You can attach a persistent volume for the SQLite database or host a free tier PostgreSQL database alongside the app.
• VPS + Laravel Forge / Ploi (~$4/mo): You can rent a low-cost VPS from Hetzner, OVH, or DigitalOcean, and manage it with Laravel Forge or Ploi. This automatically sets up Nginx, PHP, SSL (Let's Encrypt), queues, and scheduled cron jobs.

---

Prerequisites & Development Setup

System Requirements

• PHP >= 8.2 (with PDO SQLite extension enabled)
• Composer
• Node.js >= 18
• SQLite 3

Installation

1. Clone & Configure Environment:

   git clone https://github.com/Hubrisdog/nexa.git
   cd nexa
   cp .env.example .env

2. Install Dependencies:

   composer install
   npm install

3. Database Initialization:

   php artisan key:generate
   php artisan migrate --seed

4. Run Vite Development Server:

   npm run dev

5. Start PHP Server:

   php artisan serve

   Open http://localhost:8000 in your browser.

---

Testing & Verification

Run the full PHPUnit verification suite, including our webhooks and round-robin features:

php artisan test

The test suite runs on an isolated in-memory database, verifying:

• Webhook Subscriptions CRUD and HMAC signatures.
• Outbound event delivery and request telemetry logging.
• Team scheduling union calculations.
• Lowest-workload workload round-robin allocation logic.