Skip to main content

Production Readiness Baseline

Why this chapter matters

Frontend architecture is not ready when the happy path works locally. It is ready when the team can explain how the surface behaves under realistic devices, networks, permissions, data failures, accessibility needs, dependency failures, rollout mistakes, and operational incidents.

This chapter defines the baseline every important frontend surface should meet before the deeper architecture chapters.

Readiness dimensions

DimensionBaseline question
User journeyCan the critical path be completed under realistic constraints?
RuntimeAre expensive browser, network, and rendering costs understood?
DataAre loading, stale, empty, error, pending, and conflict states explicit?
AccessibilityCan users complete the workflow without pointer-only or visual-only assumptions?
Security/privacyAre trust boundaries, sensitive data, and third-party scripts controlled?
PerformanceAre route and interaction budgets defined and measured?
ReliabilityCan the surface degrade, retry, recover, or roll back?
ObservabilityCan production signals identify failure by route, device, user segment, and release?
DeliveryAre flags, rollout, rollback, dependency, and build risks known?
OwnershipDoes someone own the surface after launch?

The pre-launch review packet

For meaningful surfaces, create a short readiness packet:

SectionContent
ScopeRoute, feature, users, launch cohort, owner
User contractPrimary journey and recovery paths
Architecture sketchRendering, data, state, third-party scripts, dependencies
Failure matrixAPI, network, permission, empty, partial outage, offline, third-party failure
Quality gatesTests, accessibility checks, budgets, security review, manual QA
ObservabilityMetrics, logs, traces, dashboards, alerts
RolloutFeature flags, cohorts, kill switches, rollback
Open riskExceptions, expiry dates, owners

The packet should fit in a few pages. If it becomes a document no one reads, it is too heavy for Part 0 baseline work.

Failure matrix template

FailureUser experienceDetectionRecoveryOwner
API timeout
stale data
unauthorized action
partial outage
slow mobile interaction
third-party script failure
accessibility regression
experiment misconfiguration

Launch gates

Use gates proportionally. A low-risk internal admin page does not need the same review as checkout, onboarding, billing, health, finance, or identity flows.

Default gates for high-risk surfaces:

  • critical journey E2E passes
  • component and integration tests cover risky logic
  • accessibility keyboard/focus/name checks pass
  • route performance budget exists
  • Core Web Vitals and key interaction monitoring exist where relevant
  • security/privacy review completed for scripts, storage, auth, and sensitive data
  • feature flag and rollback path tested
  • dashboard or alert covers primary failure modes
  • owner and on-call/escalation path are named

Degradation standards

A production-ready frontend should degrade deliberately:

Dependency failsExpected behavior
analyticsuser workflow continues; event loss is observable
recommendation/personalizationdeterministic fallback appears
chart datatable or summary fallback where useful
export servicepending/retry state with notification or later retrieval
AI workflowdeterministic baseline or safe plain-text fallback
third-party tagapp shell and critical path remain usable
image/CDNlayout remains stable and content has useful alternatives

Anti-patterns

  • Calling a surface production-ready because it passed local manual testing.
  • Treating observability as a post-launch task.
  • Shipping feature flags without knowing which flag disables which behavior.
  • Having rollback only at full deploy level when the risky behavior is a single integration.
  • Documenting known risks without owner or expiry.
  • Verifying accessibility only through automated checks.
  • Measuring page load but not the interaction users actually care about.

Exercises

  1. Create a readiness packet for a critical route in your current or past product.
  2. Fill out the failure matrix for a route with three APIs and one third-party script.
  3. Define launch gates for a low-risk internal page and a high-risk checkout or billing page. Compare the difference.
  4. Write a rollback plan that disables one risky feature without reverting the whole release.

Source lens

This baseline pulls together Part 0 performance, browser runtime, forms, security, testing, delivery, observability, and debugging material. It prepares you for Part XII review packets and Part XI case studies.