What happens if the primary backend goes down?
The Cloudflare Worker at the edge detects failure within 10 seconds and automatically retries the request on the failover backend. This happens transparently within the same user request โ the end user sees a slightly slower response, not an error. POST requests (form submissions, authentication) are buffered so they survive the retry. Both backends serve identical data from the same database.
What happens if both backends are down simultaneously?
The frontend is served from Cloudflare's CDN and loads independently of the backend. Every data category has embedded fallback data โ the map renders 12,000+ facility markers from hardcoded market data, the news feed shows cached articles, and transaction/pipeline views display recent records. Users can still browse, search, filter, and export. API-dependent features like live discovery, alerts, and authentication will show graceful error states until a backend recovers.
How does DC Hub prevent data loss?
All data is stored in Neon PostgreSQL, which provides point-in-time recovery, automated backups, and provider-managed high availability. An independent nightly backup pipeline dumps the full database to Cloudflare R2 object storage with gzip compression and 30-day automatic retention โ providing disaster recovery even in the unlikely event of a database provider failure. Write operations (facility discovery, news ingestion, auto-approval) are gated to execute on a single backend via environment flags, preventing duplicate writes or race conditions. The database supports instant branching for safe migrations and testing.
What is the uptime target?
DC Hub targets 99.9% uptime for the platform overall. The frontend (Cloudflare Pages) operates at 99.99%+ availability through edge caching. The API layer achieves high availability through multi-provider failover โ both compute providers would need to fail simultaneously for API unavailability, and even then the frontend continues to function with cached data.
How does the multi-cloud strategy reduce risk?
DC Hub's infrastructure spans three independent cloud providers: Cloudflare (edge/CDN + R2 backup storage + KV stale cache), Railway (compute), and Neon (managed serverless PostgreSQL). The CF Worker layer holds JSON responses in KV for up to 24h stale-while-revalidate, so a Railway outage shows visitors a possibly-stale-but-served page instead of a hard 5xx. Nightly database backups to Cloudflare R2 give data-layer disaster recovery independent of Neon. A Railway outage is felt as "data 10 min behind" rather than "site down." The autonomous brain runs frontend-endpoint health probes (Phase OOO detector) and surfaces degradations into the autopilot work queue.
How does the map handle 21,000+ facilities without performance issues?
The map uses progressive loading: 2,000 facilities render on first paint, with remaining records loading in 5,000-record background batches at 500ms intervals. A marker sampling algorithm caps visible map pins at 2,000 for smooth interaction while keeping all records available for search, filter, and CSV export. The initial page load requires zero API calls โ Leaflet map tiles load from CDN and fallback facility data is embedded in the HTML.
How do AI agents access DC Hub data?
DC Hub supports 12+ AI platforms through multiple integration points: a public REST API with OpenAPI specification, MCP (Model Context Protocol) server for Claude and compatible agents, and discovery files (llms.txt, ai-plugin.json, openapi.json) served directly from the Cloudflare edge. Agent discovery files are served inline from the Worker โ they never hit the backend, ensuring AI platforms can always discover and connect to DC Hub even during backend maintenance.
What monitoring and observability is in place?
Every proxied request includes an X-DC-Worker-Version header identifying the CF Worker build that served it. Cloudflare Analytics provides real-time traffic metrics, error rates, and edge performance data. Plausible tracks user engagement (cookie-free, GDPR-friendly). Backend application logs stream from Railway. The autonomous brain (15+ autonomous autopilot patterns) runs a 60+ detector sweep every cron tick and writes findings into queryable worklists (tier_drift_proposals, cron_collision_proposals, package_install_stats).
Is customer data secure?
All traffic is encrypted via TLS/SSL end-to-end. Authentication supports Google OAuth 2.0 and email/password with JWT tokens. API keys are scoped per user with configurable rate limits (Free: 100/day, Pro: 10,000/day, Enterprise: 100,000/day). The Cloudflare Worker enforces CORS policy restricting API access to dchub.cloud origins. Neon PostgreSQL provides encryption at rest and in transit.
What is the technology stack?
Frontend: Vanilla HTML/CSS/JavaScript, Leaflet.js (maps), Chart.js (visualizations), Stripe.js (payments), served via Cloudflare Pages.
Backend: Python/Flask REST + MCP server, deployed on Railway.
Database: Neon serverless PostgreSQL with nightly backups to Cloudflare R2.
Edge: Cloudflare Workers (proxy, CORS, agent discovery, 24h KV stale cache).
Integrations: Resend (email), Stripe (payments), Google OAuth, LinkedIn + X + Bluesky (auto-distribution), Anthropic + Perplexity (AI citation tracking), 40+ news sources, EIA/HIFLD/NASA government APIs.
Client packages: dchub-mcp-helper on PyPI +
@dchub/mcp-helper on npm โ drop-in fetch middleware for AI agents.