ClubAssemble Logo

ClubAssemble.com

Back to Diary
Chapter 2: Choosing the Platform — The Architecture of a Community
By M. Lightfoot, founder of ClubAssemble on 15 May 2024

Every new project, whether it's building a house or writing a novel, begins with a terrifyingly blank page. For a software engineer, that "blank page" is the first, most fundamental decision: what are we going to build this on?

This isn't just an academic question. It's the digital bedrock. It's the choice of foundation that will support every feature, every user, and every line of code that follows. Choose wisely, and you build a skyscraper that can flex in the wind. Choose poorly, and you spend the next five years patching a crumbling bungalow.

For ClubAssemble, that question was about so much more than just code.

In Chapter 1, I talked about the "why"—the human problem of "admin quicksand" I was trying to solve. The platform, therefore, had to be a direct reflection of that vision. It had to be a digital home for sports clubs that was, from its very first byte, secure, scalable, fast, and reliable.

It also needed to be practical. I'm a pragmatist. ClubAssemble was starting as a small, focused team (in the very beginning, a team of one). I needed to leverage technology that would let us punch far above our weight. I couldn't afford to waste months, or even years, reinventing the wheel. My time had to be spent building features for coaches and parents, not debugging server configurations at 3 AM.

This is the story of that decision. It's a story of trade-offs, non-negotiables, and ultimately, a rational choice that would define the entire future of the product.

Defining the Non-Negotiables: The Four Pillars of ClubAssemble

Before I could even look at a single service, I had to define the "must-haves." These were the core technical requirements that would act as a filter for every option.

Pillar 1: A Fortress for User Data (Security & Compliance)

This was, and will always be, the number one priority. It is non-negotiable.

We are building a platform for communities. Those communities include adults, but critically, they include children. This means we would be handling personally identifiable information (PII) for minors, including names, teams, and parental contact details.

In a post-GDPR world—and operating under the UK's Data Protection Act—you cannot "bolt on" security as an afterthought. It has to be the first thing you build.

This meant I needed a platform where:

  • Authentication was a solved problem. I did not want to build my own "login" system. It's a security minefield. I needed a battle-hardened, industry-standard service for managing user accounts, passwords, and social logins.
  • Permissions were granular. I needed to be able to define, at a database level, "This user is a 'Coach' for 'Team A' and can only read/write data for Team A." "This user is a 'Parent' and can only see information related to their linked child."
  • Data was encrypted at rest and in transit, by default.
  • Regional compliance was possible. For UK and EU users, their data must, wherever possible, be stored in data centres within that region.

Any platform that couldn't provide this "fortress" out of the box was an immediate "no."

Pillar 2: The "Elastic" Platform (Scalability & Performance)

My goal wasn't just to support my local club. It was to build a system that could one day support thousands of clubs.

This brings up the classic "nightmare scenario" for any tech founder: what happens when you succeed? What happens on the first Saturday of the football season, when 500 clubs all log on at 9:00 AM to check their fixtures?

In a traditional, old-school setup, you'd provision a single server (a "virtual machine" or "droplet"). It would have, say, 4GB of RAM and 2 CPUs. That one server would run your application code, your database, everything. The 9:00 AM rush would hit, the server's CPU would spike to 100%, and the entire platform would crash. Every user would see a "500 error." Game over.

I needed a "serverless" or "managed" architecture. This is the "elastic" part. I wanted a system that would:

  • Scale horizontally, automatically. If one user logs on, the platform uses a tiny bit of resource. If 10,000 users log on, the platform automatically spins up hundreds of "instances" to handle the load, then spins them back down when the rush is over.
  • Be "pay-as-you-go." I shouldn't be paying for a massive server on a quiet Wednesday afternoon. I wanted to pay only for the compute and storage I was actually using.
  • Include a global CDN. A Content Delivery Network is vital. It means a user in Manchester loading their club's logo is pulling that image from a high-speed server in Manchester, not from a single server in London or Virginia. This makes the app feel fast, which is critical for user experience.

Pillar 3: The "Single Source of Truth" (An Integrated Backend)

As I discussed in Chapter 1, the core problem of club admin is "digital chaos." The solution is a "Single Source of Truth."

Technically, this meant I needed an integrated suite of backend services. I couldn't have my database in one place, my user authentication in another, and my file storage in a third—all cobbled together with custom code. That's just trading one kind of chaos for another.

I needed a unified backend that could handle:

  • Structured Data: All the core information. User profiles, team data, fixture times, availability status (Yes/No/Maybe), event details, booking records. This needed to be a fast, scalable database.
  • Unstructured Content: All the "files." Club logos, user profile pictures, photos from a match, documents (like a code of conduct PDF). This needed a "blob storage" solution.
  • Real-Time Data: This was a "magic" feature I was insistent on. I wanted a parent to be able to tap "Available" on their phone and have the coach's "Team Sheet" update live, without the coach having to refresh the page. This "real-time" capability traditionally requires a complex setup of "WebSockets"—a full-time job in itself. I was looking for a platform that gave me this for free.

Pillar 4: The AI "Co-Pilot" (The Force Multiplier)

This was the final, and perhaps most modern, requirement. With a small team, my most valuable resource was development time. I wanted to use AI as a genuine development partner—not a gimmick, but a practical tool to streamline coding, testing, and design.

I was looking for a platform with deeply embedded AI assistance (like Google's Gemini). I envisioned a workflow where I could ask my development environment, "Write me a secure React hook to fetch the current user's team data from the 'teams' collection."

The AI, having context of my entire project—my database schema, my authentication rules, my front-end code—could then provide a clean, secure, and efficient code snippet. This wouldn't replace me as the developer; it would accelerate me. It would handle the boilerplate, write unit tests, and document code, allowing me to focus on the complex, human-centric logic of the app.

The "Bake-Off": Evaluating the Alternatives

With these four pillars, I had a clear scorecard. I began evaluating the "Big Three" ways to build a modern web application.

Option 1: The "DIY" Monolith (The Traditional Way)

What it is: The old-school, "roll-your-own" stack. I would rent a Virtual Private Server (VPS) from a provider like DigitalOcean or AWS (EC2). I would manually install Linux, a Node.js server, a PostgreSQL database, and a web server like Nginx.

The Verdict: An immediate "No."

Reasoning: This approach fails Pillar 2 (Scalability) and Pillar 3 (Integrated Backend) completely. It might give me total control, but at what cost? I would become a full-time "SysAdmin" (Systems Administrator), not a product builder. I would be responsible for database backups, security patches, uptime, load balancing... everything. This is the definition of "admin quicksand," just in a technical context. It's the path to burnout, not to a product.

Option 2: The "PaaS" (Platform-as-a-Service) - e.g., Heroku

What it is: A "Platform-as-a-Service" like Heroku. This is a big step up. You just write your code and git push heroku master. Heroku handles the server, the scaling (to a point), and the deployment.

The Verdict: A "Maybe," but with major flaws.

Reasoning: It's much simpler, but it only solves part of the problem. It's not an integrated backend. I'd get my Node.js app hosted, but I'd still need to:

  • Buy and provision a separate database (e.g., Heroku Postgres add-on).
  • Find and integrate a separate file storage solution (e.g., an AWS S3 bucket).
  • Find and integrate a separate authentication service (e.g., Auth0).
  • Build the real-time "WebSocket" system myself.

By the time I'd stitched all these different, third-party, paid services together, I'd have a complex, expensive, and fragile system. It wasn't the "Single Source of Truth" I was looking for.

Option 3: The "Other" Super-Stack - AWS Amplify

What it is: This was the heavyweight contender. AWS is the biggest cloud provider on Earth. Amplify is their "Firebase equivalent"—a suite of tools including Cognito (for auth), S3 (for storage), and DynamoDB (for data).

The Verdict: Incredibly powerful, but ultimately, the wrong fit.

Reasoning: AWS is a universe of a-la-carte services. It is an "enterprise-first" platform. While Amplify tries to tie it all together, the developer experience can be... a cliff. The AWS console is famously complex. Getting Cognito, S3, and DynamoDB to talk to each other with the correct, granular permissions is a project in itself. It felt like using a sledgehammer to crack a nut. The "time to first feature" would be slow. It’s a masterpiece of engineering, but it's not optimised for developer speed and simplicity in the way I needed.

The Decision: Firebase on Google Cloud Platform (GCP)

This brings me to the final choice. After exploring all the options, the combination of Firebase + Google Cloud emerged as the clear, rational, and obvious winner.

It was as if I'd written my four Pillars and Firebase had built a product page directly answering them.

Pillar 1 (Security): Solved by Firebase Authentication. A world-class, managed service that handles email, password, and social logins (Google, Facebook, etc.). It's secure, scalable, and I could implement it in a day, not six months. Its security rules integrate directly with the database.

Pillar 2 (Scalability): Solved by its "serverless" nature. Firebase Hosting is a global CDN. The backend services scale automatically. I would never, ever have to think about provisioning a server.

Pillar 3 (Integrated Backend): This was the magic. It's a single, unified suite.

  • For Structured Data: Firestore. A "NoSQL" document database that is "real-time" by default. That "magic" feature I wanted? It's just... how Firestore works. You "subscribe" to a query, and as the data changes, your app is updated. Instantly. This was the killer feature.
  • For Unstructured Content: Firebase Storage. A scalable file-storage solution (built on Google Cloud Storage) that integrates directly with Firebase Auth. This allows me to write rules like, "A user can only upload a profile picture to their own user folder."
  • For Custom Logic: Cloud Functions. What if I need to run server-side code? (e.g., "When a new user signs up, send them a welcome email"). I just write a small, single-purpose "Cloud Function." Firebase handles the rest.

Pillar 4 (AI Co-Pilot): Solved by Google's integration of Gemini. Developing within the Google Cloud ecosystem (including Firebase Studio) means I have access to Gemini AI that is context-aware. It understands my Firestore schema. It can see my Cloud Functions. This allows for that "co-pilot" workflow I dreamed of, radically accelerating development.

Acknowledging the "Dragons": The Trade-Offs

No platform is perfect. My engineering experience demands that I acknowledge the risks and trade-offs.

The "Vendor Lock-in" Dragon: This is the big one. By going all-in on Firebase, I am "locking" ClubAssemble into Google's ecosystem. Migating away from Firestore to, say, a PostgreSQL database, would be a complete, ground-up rewrite.

My Justification: I am making a pragmatic bet. The risk of failing because we are too slow is 1,000,000x greater than the risk of succeeding so much that we need to migrate off Firebase in 5-10 years. It's a "success problem" I am 100% willing to have.

The "Pricing at Scale" Dragon: Firebase is famously generous to start, but at massive scale (billions of database reads), the costs can ramp up.

My Justification: This is another "success problem." The "pay-as-you-go" model is a huge benefit for a startup. It means my costs are directly proportional to my usage. If my bill is high, it's because my platform is successful. I can (and will) design my data structures to be "read-efficient" to manage this, but again, I'll take this problem over the "server-is-on-fire" problem any day.

The "NoSQL Mindset" Dragon: Firestore is not a traditional SQL database. You can't do complex "JOIN" queries. This requires a different way of thinking about your data, often "denormalising" it (e.g., storing the team's name on the "player" document, even though it's redundant).

My Justification: This is a learning curve, not a blocker. For the "real-time," flexible, and scalable nature of the data I'd be handling, a NoSQL model is actually a better fit than a rigid SQL table.

The Final, Rational Choice

In the end, it wasn't even close.

Firebase offered the perfect balance of agility and power. It allowed me to focus on building features, not managing servers. It gave me a secure, scalable, real-time backend, and a global CDN, all configured in a single afternoon.

The AI integration was the final accelerator, empowering a small team to build a large, ambitious, and modern application.

With the platform chosen, the technical foundations were no longer a "blank page." They were a blueprint. The "what ifs" were settled. The environment was configured.

The next, and most symbolic, step was to mark the territory. I opened a new tab, navigated to a domain registrar, and typed in the name.

ClubAssemble.com was available.

I clicked "buy."

That was the official start. The infrastructure was ready. The tools were chosen. And the first lines of code were about to be written.

The next diary entry will dive into that next phase: turning concept into code. We'll talk about the first builds, the front-end decisions (React!), and the pure excitement of logging in to ClubAssemble for the very first time.

PreviousNext