Building a High-Performance Quiz Platform with Next.js and Firebase

Creating an online quiz platform can be challenging, especially when you need to handle user authentication, store scores, and display dynamic content. In this comprehensive guide, I'll walk you through how to optimize a Next.js quiz application that leverages Firebase for authentication and Firestore for data storage.

The Challenge of Quiz Applications

Many educational platforms struggle with performance issues, security vulnerabilities, and code maintainability when implementing quiz functionality. Whether you're building a learning management system, an educational app, or just a fun quiz site, these challenges can significantly impact user experience.

Let's explore how to streamline a Next.js quiz platform with Firebase integration to create a secure, fast, and maintainable solution.

1. Centralizing Firebase Initialization

One common mistake is initializing Firebase multiple times across different components. This not only affects performance but can also lead to unexpected behaviors.

The Solution: Single Firebase Instance

Create a dedicated firebase.js file to handle initialization once:

JavaScript
// firebase.js
import { initializeApp } from 'firebase/app';
import { getAuth } from 'firebase/auth';
import { getFirestore } from 'firebase/firestore';

const firebaseConfig = {
  apiKey: 'YOUR_KEY',
  authDomain: 'your-app.firebaseapp.com',
  projectId: 'your-app',
  storageBucket: 'your-app.appspot.com',
  messagingSenderId: '123456789',
  appId: '1:123456789:web:abcdef123456789'
};

// Initialize Firebase only once
const app = initializeApp(firebaseConfig);
const auth = getAuth(app);
const db = getFirestore(app);

export { auth, db };

By exporting the initialized auth and db instances, you can import them wherever needed without creating redundant Firebase connections.

2. Optimizing the Quiz Page Component

Your quiz page should efficiently handle quiz rendering and score saving without unnecessary re-renders or network calls.

Implementation Approach #1: Direct HTML Rendering

JavaScript
// pages/quiz/[id].js
import { useEffect } from 'react';
import { useRouter } from 'next/router';
import { doc, setDoc } from 'firebase/firestore';
import { auth, db } from '../../firebase';

const QuizPage = ({ quizHtml }) => {
  const router = useRouter();
  const { id } = router.query;

  useEffect(() => {
    // Expose the saveScore function to the quiz content
    const saveScore = async (score) => {
      const user = auth.currentUser;
      if (user) {
        const userDoc = doc(db, 'grades', user.uid);
        await setDoc(
          userDoc,
          { [id]: { score, updatedAt: new Date() } },
          { merge: true }
        );
      }
    };

    window.saveScore = saveScore;
  }, [id]);

  return (
    
      
    
  );
};

export async function getStaticProps({ params }) {
  const quizHtml = await getQuizHTML(params.id); // Implement this function to fetch quiz HTML
  return { props: { quizHtml } };
}

export async function getStaticPaths() {
  // Implement this function to generate paths for all quizzes
  return {
    paths: [
      { params: { id: 'quiz1' } },
      { params: { id: 'quiz2' } },
      // Add more quizzes as needed
    ],
    fallback: false
  };
}

export default QuizPage;

This approach works but has potential security risks due to the use of dangerouslySetInnerHTML.

3. Enhancing Security with Iframe Isolation

A more secure approach is to isolate quiz content within an iframe, preventing potential XSS attacks and providing better content separation.

Implementation Approach #2: Iframe Isolation

JavaScript
// pages/quiz/[id].js
import { useEffect } from 'react';
import { useRouter } from 'next/router';
import { doc, setDoc } from 'firebase/firestore';
import { auth, db } from '../../firebase';

const QuizPage = ({ quizPath }) => {
  const router = useRouter();
  const { id } = router.query;

  useEffect(() => {
    const saveScore = async (score) => {
      const user = auth.currentUser;
      if (user) {
        const userDoc = doc(db, 'grades', user.uid);
        await setDoc(
          userDoc,
          { [id]: { score, updatedAt: new Date() } },
          { merge: true }
        );
      } else {
        // Handle unauthenticated user scenario
        console.log('User not authenticated. Score not saved.');
        router.push('/login?returnUrl=' + router.asPath);
      }
    };

    // Listen for messages from the iframe
    window.addEventListener('message', (event) => {
      if (event.data.type === 'saveScore') {
        saveScore(event.data.score);
      }
    });

    // Cleanup event listener
    return () => {
      window.removeEventListener('message', (event) => {
        if (event.data.type === 'saveScore') {
          saveScore(event.data.score);
        }
      });
    };
  }, [id, router]);

  return (
    
      Quiz {id}
      
    </div>
  );
};

export async function getStaticProps({ params }) {
  const quizPath = `/quizzes/${params.id}.html`; // Path to quiz HTML files in public directory
  return { props: { quizPath } };
}

export async function getStaticPaths() {
  // Generate paths for all quizzes
  return {
    paths: [
      { params: { id: 'quiz1' } },
      { params: { id: 'quiz2' } },
      // Add more quizzes as needed
    ],
    fallback: false
  };
}

export default QuizPage;
</code></pre></div></pre>
<p>To make this approach work, your quiz HTML files (stored in the <code node="[object Object]">public/quizzes/</code> directory) should include code to communicate with the parent page:</p>
<pre class="bg-secondary border border-border rounded-lg p-4 overflow-x-auto"><div class="relative group my-6"><div class="absolute top-0 left-0 right-0 flex items-center justify-between px-4 py-2 bg-zinc-800/80 dark:bg-zinc-900/80 rounded-t-lg border-b border-border/50 z-10"><span class="text-xs font-medium text-zinc-400 uppercase tracking-wider">JavaScript</span><span class="flex-1"></span><button data-slot="button" data-variant="ghost" data-size="icon-xs" class="inline-flex items-center justify-center gap-2 whitespace-nowrap text-sm font-medium transition-all disabled:pointer-events-none disabled:opacity-50 [&amp;_svg]:pointer-events-none shrink-0 [&amp;_svg]:shrink-0 outline-none focus-visible:border-ring focus-visible:ring-ring/50 focus-visible:ring-[3px] aria-invalid:ring-destructive/20 dark:aria-invalid:ring-destructive/40 aria-invalid:border-destructive hover:text-accent-foreground dark:hover:bg-accent/50 size-6 rounded-md [&amp;_svg:not([class*=&#x27;size-&#x27;])]:size-3 h-7 w-7 hover:bg-zinc-700/50" aria-label="Copy code"><svg xmlns="http://www.w3.org/2000/svg" width="24" height="24" viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2" stroke-linecap="round" stroke-linejoin="round" class="lucide lucide-copy h-3.5 w-3.5 text-zinc-400" aria-hidden="true"><rect width="14" height="14" x="8" y="8" rx="2" ry="2"></rect><path d="M4 16c-1.1 0-2-.9-2-2V4c0-1.1.9-2 2-2h10c1.1 0 2 .9 2 2"></path></svg></button></div><pre class="block pt-12 pb-4 px-4 bg-zinc-950 dark:bg-zinc-900 rounded-lg overflow-x-auto"><code class="language-html"><!-- public/quizzes/quiz1.html -->
<!DOCTYPE html>
<html lang="en">
<head>
  <meta charset="UTF-8">
  <meta name="viewport" content="width=device-width, initial-scale=1.0">
  <title>Quiz 1</title>
  <style>
    body { font-family: Arial, sans-serif; max-width: 800px; margin: 0 auto; padding: 20px; }
    .question { margin-bottom: 20px; }
    button { padding: 10px 20px; background: #4285f4; color: white; border: none; border-radius: 4px; cursor: pointer; }
  </style>
</head>
<body>
  <h2>Science Quiz</h2>
  <form id="quizForm" onsubmit="calculateScore(); return false;">
    <div class="question">
      <p>1. What is the chemical symbol for water?</p>
      <input type="radio" name="q1" value="a" id="q1a">
      <label for="q1a">O2</label><br>
      <input type="radio" name="q1" value="b" id="q1b">
      <label for="q1b">H2O</label><br>
      <input type="radio" name="q1" value="c" id="q1c">
      <label for="q1c">CO2</label>
    </div>
    
    <div class="question">
      <p>2. Which planet is known as the Red Planet?</p>
      <input type="radio" name="q2" value="a" id="q2a">
      <label for="q2a">Venus</label><br>
      <input type="radio" name="q2" value="b" id="q2b">
      <label for="q2b">Mars</label><br>
      <input type="radio" name="q2" value="c" id="q2c">
      <label for="q2c">Jupiter</label>
    </div>
    
    <button type="submit">Submit Quiz</button>
  </form>

  <script>
    function calculateScore() {
      const form = document.getElementById('quizForm');
      let score = 0;
      const answers = {
        q1: 'b', // H2O
        q2: 'b'  // Mars
      };
      
      // Check each question
      for (const [question, correctAnswer] of Object.entries(answers)) {
        const selectedValue = form.elements[question].value;
        if (selectedValue === correctAnswer) {
          score += 1;
        }
      }
      
      const totalQuestions = Object.keys(answers).length;
      const percentage = Math.round((score / totalQuestions) * 100);
      
      // Send score to parent page
      window.parent.postMessage({ type: 'saveScore', score: percentage }, '*');
      
      // Show results to user
      alert(`You scored ${percentage}% (${score}/${totalQuestions} correct)`);
    }
  </script>
</body>
</html>
</code></pre></div></pre>
<h2 id="4-security-considerations">4. Security Considerations</h2>
<p>Even with the iframe approach, there are additional security measures to consider:</p>
<h3 id="content-security-policy-csp">Content Security Policy (CSP)</h3>
<p>Set up a proper Content Security Policy in your Next.js application:</p>
<pre class="bg-secondary border border-border rounded-lg p-4 overflow-x-auto"><div class="relative group my-6"><div class="absolute top-0 left-0 right-0 flex items-center justify-between px-4 py-2 bg-zinc-800/80 dark:bg-zinc-900/80 rounded-t-lg border-b border-border/50 z-10"><span class="text-xs font-medium text-zinc-400 uppercase tracking-wider">JavaScript</span><span class="flex-1"></span><button data-slot="button" data-variant="ghost" data-size="icon-xs" class="inline-flex items-center justify-center gap-2 whitespace-nowrap text-sm font-medium transition-all disabled:pointer-events-none disabled:opacity-50 [&amp;_svg]:pointer-events-none shrink-0 [&amp;_svg]:shrink-0 outline-none focus-visible:border-ring focus-visible:ring-ring/50 focus-visible:ring-[3px] aria-invalid:ring-destructive/20 dark:aria-invalid:ring-destructive/40 aria-invalid:border-destructive hover:text-accent-foreground dark:hover:bg-accent/50 size-6 rounded-md [&amp;_svg:not([class*=&#x27;size-&#x27;])]:size-3 h-7 w-7 hover:bg-zinc-700/50" aria-label="Copy code"><svg xmlns="http://www.w3.org/2000/svg" width="24" height="24" viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2" stroke-linecap="round" stroke-linejoin="round" class="lucide lucide-copy h-3.5 w-3.5 text-zinc-400" aria-hidden="true"><rect width="14" height="14" x="8" y="8" rx="2" ry="2"></rect><path d="M4 16c-1.1 0-2-.9-2-2V4c0-1.1.9-2 2-2h10c1.1 0 2 .9 2 2"></path></svg></button></div><pre class="block pt-12 pb-4 px-4 bg-zinc-950 dark:bg-zinc-900 rounded-lg overflow-x-auto"><code class="language-javascript">// next.config.js
module.exports = {
  async headers() {
    return [
      {
        source: '/(.*)',
        headers: [
          {
            key: 'Content-Security-Policy',
            value: "default-src 'self'; frame-src 'self'; script-src 'self' 'unsafe-inline'; style-src 'self' 'unsafe-inline'"
          }
        ]
      }
    ]
  }
}
</code></pre></div></pre>
<h3 id="html-sanitization">HTML Sanitization</h3>
<p>If you&#x27;re using the direct HTML rendering approach, always sanitize any external HTML content:</p>
<pre class="bg-secondary border border-border rounded-lg p-4 overflow-x-auto"><div class="relative group my-6"><div class="absolute top-0 left-0 right-0 flex items-center justify-between px-4 py-2 bg-zinc-800/80 dark:bg-zinc-900/80 rounded-t-lg border-b border-border/50 z-10"><span class="text-xs font-medium text-zinc-400 uppercase tracking-wider">JavaScript</span><span class="flex-1"></span><button data-slot="button" data-variant="ghost" data-size="icon-xs" class="inline-flex items-center justify-center gap-2 whitespace-nowrap text-sm font-medium transition-all disabled:pointer-events-none disabled:opacity-50 [&amp;_svg]:pointer-events-none shrink-0 [&amp;_svg]:shrink-0 outline-none focus-visible:border-ring focus-visible:ring-ring/50 focus-visible:ring-[3px] aria-invalid:ring-destructive/20 dark:aria-invalid:ring-destructive/40 aria-invalid:border-destructive hover:text-accent-foreground dark:hover:bg-accent/50 size-6 rounded-md [&amp;_svg:not([class*=&#x27;size-&#x27;])]:size-3 h-7 w-7 hover:bg-zinc-700/50" aria-label="Copy code"><svg xmlns="http://www.w3.org/2000/svg" width="24" height="24" viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2" stroke-linecap="round" stroke-linejoin="round" class="lucide lucide-copy h-3.5 w-3.5 text-zinc-400" aria-hidden="true"><rect width="14" height="14" x="8" y="8" rx="2" ry="2"></rect><path d="M4 16c-1.1 0-2-.9-2-2V4c0-1.1.9-2 2-2h10c1.1 0 2 .9 2 2"></path></svg></button></div><pre class="block pt-12 pb-4 px-4 bg-zinc-950 dark:bg-zinc-900 rounded-lg overflow-x-auto"><code class="language-javascript">import DOMPurify from 'dompurify';

// In your component
const sanitizedHtml = DOMPurify.sanitize(quizHtml);

return (
  <div dangerouslySetInnerHTML={{ __html: sanitizedHtml }} />
);
</code></pre></div></pre>
<h2 id="5-enhancing-your-quiz-platform">5. Enhancing Your Quiz Platform</h2>
<p>To create a truly robust quiz platform, consider these additional features:</p>
<h3 id="authentication-ui">Authentication UI</h3>
<p>Integrate Firebase Authentication UI for a seamless login experience:</p>
<pre class="bg-secondary border border-border rounded-lg p-4 overflow-x-auto"><div class="relative group my-6"><div class="absolute top-0 left-0 right-0 flex items-center justify-between px-4 py-2 bg-zinc-800/80 dark:bg-zinc-900/80 rounded-t-lg border-b border-border/50 z-10"><span class="text-xs font-medium text-zinc-400 uppercase tracking-wider">JavaScript</span><span class="flex-1"></span><button data-slot="button" data-variant="ghost" data-size="icon-xs" class="inline-flex items-center justify-center gap-2 whitespace-nowrap text-sm font-medium transition-all disabled:pointer-events-none disabled:opacity-50 [&amp;_svg]:pointer-events-none shrink-0 [&amp;_svg]:shrink-0 outline-none focus-visible:border-ring focus-visible:ring-ring/50 focus-visible:ring-[3px] aria-invalid:ring-destructive/20 dark:aria-invalid:ring-destructive/40 aria-invalid:border-destructive hover:text-accent-foreground dark:hover:bg-accent/50 size-6 rounded-md [&amp;_svg:not([class*=&#x27;size-&#x27;])]:size-3 h-7 w-7 hover:bg-zinc-700/50" aria-label="Copy code"><svg xmlns="http://www.w3.org/2000/svg" width="24" height="24" viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2" stroke-linecap="round" stroke-linejoin="round" class="lucide lucide-copy h-3.5 w-3.5 text-zinc-400" aria-hidden="true"><rect width="14" height="14" x="8" y="8" rx="2" ry="2"></rect><path d="M4 16c-1.1 0-2-.9-2-2V4c0-1.1.9-2 2-2h10c1.1 0 2 .9 2 2"></path></svg></button></div><pre class="block pt-12 pb-4 px-4 bg-zinc-950 dark:bg-zinc-900 rounded-lg overflow-x-auto"><code class="language-javascript">// components/AuthUI.js
import { useState, useEffect } from 'react';
import { onAuthStateChanged, signOut } from 'firebase/auth';
import { auth } from '../firebase';

const AuthUI = () => {
  const [user, setUser] = useState(null);
  const [loading, setLoading] = useState(true);

  useEffect(() => {
    const unsubscribe = onAuthStateChanged(auth, (user) => {
      setUser(user);
      setLoading(false);
    });

    return unsubscribe;
  }, []);

  const handleSignOut = async () => {
    try {
      await signOut(auth);
    } catch (error) {
      console.error('Error signing out:', error);
    }
  };

  if (loading) return <div>Loading...</div>;

  return (
    <div className="auth-ui">
      {user ? (
        <div>
          <p>Welcome, {user.displayName || user.email}</p>
          <button onClick={handleSignOut}>Sign Out</button>
        </div>
      ) : (
        <button onClick={() => window.location.href = '/login'}>Sign In</button>
      )}
    </div>
  );
};

export default AuthUI;
</code></pre></div></pre>
<h3 id="score-dashboard">Score Dashboard</h3>
<p>Create a dashboard to display users&#x27; quiz scores:</p>
<pre class="bg-secondary border border-border rounded-lg p-4 overflow-x-auto"><div class="relative group my-6"><div class="absolute top-0 left-0 right-0 flex items-center justify-between px-4 py-2 bg-zinc-800/80 dark:bg-zinc-900/80 rounded-t-lg border-b border-border/50 z-10"><span class="text-xs font-medium text-zinc-400 uppercase tracking-wider">JavaScript</span><span class="flex-1"></span><button data-slot="button" data-variant="ghost" data-size="icon-xs" class="inline-flex items-center justify-center gap-2 whitespace-nowrap text-sm font-medium transition-all disabled:pointer-events-none disabled:opacity-50 [&amp;_svg]:pointer-events-none shrink-0 [&amp;_svg]:shrink-0 outline-none focus-visible:border-ring focus-visible:ring-ring/50 focus-visible:ring-[3px] aria-invalid:ring-destructive/20 dark:aria-invalid:ring-destructive/40 aria-invalid:border-destructive hover:text-accent-foreground dark:hover:bg-accent/50 size-6 rounded-md [&amp;_svg:not([class*=&#x27;size-&#x27;])]:size-3 h-7 w-7 hover:bg-zinc-700/50" aria-label="Copy code"><svg xmlns="http://www.w3.org/2000/svg" width="24" height="24" viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2" stroke-linecap="round" stroke-linejoin="round" class="lucide lucide-copy h-3.5 w-3.5 text-zinc-400" aria-hidden="true"><rect width="14" height="14" x="8" y="8" rx="2" ry="2"></rect><path d="M4 16c-1.1 0-2-.9-2-2V4c0-1.1.9-2 2-2h10c1.1 0 2 .9 2 2"></path></svg></button></div><pre class="block pt-12 pb-4 px-4 bg-zinc-950 dark:bg-zinc-900 rounded-lg overflow-x-auto"><code class="language-javascript">// pages/dashboard.js
import { useState, useEffect } from 'react';
import { doc, getDoc } from 'firebase/firestore';
import { onAuthStateChanged } from 'firebase/auth';
import { auth, db } from '../firebase';

const Dashboard = () => {
  const [scores, setScores] = useState({});
  const [loading, setLoading] = useState(true);
  const [user, setUser] = useState(null);

  useEffect(() => {
    const unsubscribe = onAuthStateChanged(auth, async (currentUser) => {
      setUser(currentUser);
      
      if (currentUser) {
        try {
          const userDocRef = doc(db, 'grades', currentUser.uid);
          const userDoc = await getDoc(userDocRef);
          
          if (userDoc.exists()) {
            setScores(userDoc.data());
          }
        } catch (error) {
          console.error('Error fetching scores:', error);
        } finally {
          setLoading(false);
        }
      } else {
        setLoading(false);
      }
    });
    
    return unsubscribe;
  }, []);

  if (loading) return <div>Loading your scores...</div>;
  
  if (!user) return <div>Please log in to view your dashboard</div>;

  return (
    <div className="dashboard">
      <h1>Your Quiz Scores</h1>
      
      {Object.keys(scores).length > 0 ? (
        <ul className="scores-list">
          {Object.entries(scores).map(([quizId, data]) => (
            <li key={quizId} className="score-item">
              <div className="quiz-name">Quiz: {quizId}</div>
              <div className="quiz-score">Score: {data.score}%</div>
              <div className="quiz-date">
                Completed: {new Date(data.updatedAt.toDate()).toLocaleString()}
              </div>
            </li>
          ))}
        </ul>
      ) : (
        <p>You haven't completed any quizzes yet.</p>
      )}
    </div>
  );
};

export default Dashboard;
</code></pre></div></pre>
<h3 id="admin-quiz-management">Admin Quiz Management</h3>
<p>For educators or administrators, implement a quiz management system:</p>
<pre class="bg-secondary border border-border rounded-lg p-4 overflow-x-auto"><div class="relative group my-6"><div class="absolute top-0 left-0 right-0 flex items-center justify-between px-4 py-2 bg-zinc-800/80 dark:bg-zinc-900/80 rounded-t-lg border-b border-border/50 z-10"><span class="text-xs font-medium text-zinc-400 uppercase tracking-wider">JavaScript</span><span class="flex-1"></span><button data-slot="button" data-variant="ghost" data-size="icon-xs" class="inline-flex items-center justify-center gap-2 whitespace-nowrap text-sm font-medium transition-all disabled:pointer-events-none disabled:opacity-50 [&amp;_svg]:pointer-events-none shrink-0 [&amp;_svg]:shrink-0 outline-none focus-visible:border-ring focus-visible:ring-ring/50 focus-visible:ring-[3px] aria-invalid:ring-destructive/20 dark:aria-invalid:ring-destructive/40 aria-invalid:border-destructive hover:text-accent-foreground dark:hover:bg-accent/50 size-6 rounded-md [&amp;_svg:not([class*=&#x27;size-&#x27;])]:size-3 h-7 w-7 hover:bg-zinc-700/50" aria-label="Copy code"><svg xmlns="http://www.w3.org/2000/svg" width="24" height="24" viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2" stroke-linecap="round" stroke-linejoin="round" class="lucide lucide-copy h-3.5 w-3.5 text-zinc-400" aria-hidden="true"><rect width="14" height="14" x="8" y="8" rx="2" ry="2"></rect><path d="M4 16c-1.1 0-2-.9-2-2V4c0-1.1.9-2 2-2h10c1.1 0 2 .9 2 2"></path></svg></button></div><pre class="block pt-12 pb-4 px-4 bg-zinc-950 dark:bg-zinc-900 rounded-lg overflow-x-auto"><code class="language-javascript">// pages/admin/quizzes.js
import { useState } from 'react';
import { ref, uploadBytes, getDownloadURL } from 'firebase/storage';
import { storage } from '../../firebase';

const QuizManagement = () => {
  const [file, setFile] = useState(null);
  const [quizId, setQuizId] = useState('');
  const [uploading, setUploading] = useState(false);
  const [message, setMessage] = useState('');

  const handleFileChange = (e) => {
    if (e.target.files[0]) {
      setFile(e.target.files[0]);
    }
  };

  const handleUpload = async (e) => {
    e.preventDefault();
    
    if (!file || !quizId) {
      setMessage('Please select a file and provide a quiz ID');
      return;
    }
    
    setUploading(true);
    setMessage('');
    
    try {
      // Upload to Firebase Storage
      const storageRef = ref(storage, `quizzes/${quizId}.html`);
      await uploadBytes(storageRef, file);
      const downloadURL = await getDownloadURL(storageRef);
      
      setMessage(`Quiz uploaded successfully! URL: ${downloadURL}`);
      setFile(null);
      setQuizId('');
    } catch (error) {
      console.error('Error uploading quiz:', error);
      setMessage(`Error uploading quiz: ${error.message}`);
    } finally {
      setUploading(false);
    }
  };

  return (
    <div className="admin-panel">
      <h1>Quiz Management</h1>
      
      <form onSubmit={handleUpload} className="upload-form">
        <div className="form-group">
          <label htmlFor="quizId">Quiz ID:</label>
          <input
            type="text"
            id="quizId"
            value={quizId}
            onChange={(e) => setQuizId(e.target.value)}
            placeholder="e.g., science-quiz-1"
            required
          />
        </div>
        
        <div className="form-group">
          <label htmlFor="quizFile">Quiz HTML File:</label>
          <input
            type="file"
            id="quizFile"
            accept=".html"
            onChange={handleFileChange}
            required
          />
        </div>
        
        <button type="submit" disabled={uploading}>
          {uploading ? 'Uploading...' : 'Upload Quiz'}
        </button>
      </form>
      
      {message && <div className="message">{message}</div>}
    </div>
  );
};

export default QuizManagement;
</code></pre></div></pre>
<h2 id="performance-optimization">Performance Optimization</h2>
<p>To ensure your quiz platform runs smoothly, implement these additional optimizations:</p>
<ol>
<li>
<p><strong>Implement caching</strong>: Use Firestore&#x27;s offline capabilities to allow users to take quizzes without an internet connection.</p>
</li>
<li>
<p><strong>Lazy loading</strong>: Only load quiz content when necessary to reduce initial page load times.</p>
</li>
<li>
<p><strong>Server-side rendering for dashboard pages</strong>: Pre-render data-heavy pages to improve perceived performance.</p>
</li>
<li>
<p><strong>Implement analytics</strong>: Track quiz completion rates and user engagement to identify areas for improvement.</p>
</li>
</ol>
<h2 id="conclusion">Conclusion</h2>
<p>Building a high-performance quiz platform with Next.js and Firebase requires careful planning and implementation. By centralizing Firebase initialization, securing content with iframes or proper sanitization, and implementing additional features like user dashboards and admin panels, you can create a robust, maintainable quiz application.</p>
<p>The approaches outlined in this guide will help you avoid common pitfalls, enhance security, and provide a seamless experience for both students and educators. Whether you&#x27;re building an educational platform, a corporate training tool, or just a fun quiz site, these techniques will help you create a professional-grade solution.</p>
<p>Remember that security should always be a priority when handling user data and displaying dynamic content. Regularly audit your code and stay updated with the latest security best practices for web applications.</p></div><section class="mt-16 pt-8 border-t border-border"><h2 class="text-2xl font-bold mb-6 text-foreground flex items-center gap-2"><svg xmlns="http://www.w3.org/2000/svg" width="24" height="24" viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2" stroke-linecap="round" stroke-linejoin="round" class="lucide lucide-book-open w-5 h-5" aria-hidden="true"><path d="M12 7v14"></path><path d="M3 18a1 1 0 0 1-1-1V4a1 1 0 0 1 1-1h5a4 4 0 0 1 4 4 4 4 0 0 1 4-4h5a1 1 0 0 1 1 1v13a1 1 0 0 1-1 1h-6a3 3 0 0 0-3 3 3 3 0 0 0-3-3z"></path></svg>Related Articles</h2><div class="flex items-center justify-center py-8 text-muted-foreground"><svg xmlns="http://www.w3.org/2000/svg" width="24" height="24" viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2" stroke-linecap="round" stroke-linejoin="round" class="lucide lucide-loader-circle w-5 h-5 mr-2 animate-spin" aria-hidden="true"><path d="M21 12a9 9 0 1 1-6.219-8.56"></path></svg>Loading related articles...</div></section></div><aside class="hidden lg:block"><div class="sticky top-24"><h3 class="text-sm font-semibold text-foreground mb-4 uppercase tracking-wider">Table of Contents</h3><nav class="space-y-2"><a href="#building-a-high-performance-quiz-platform-with-nextjs-and-firebase" class="block text-sm text-muted-foreground hover:text-foreground transition-colors ">Building a High-Performance Quiz Platform with Next.js and Firebase</a><a href="#the-challenge-of-quiz-applications" class="block text-sm text-muted-foreground hover:text-foreground transition-colors pl-0">The Challenge of Quiz Applications</a><a href="#1-centralizing-firebase-initialization" class="block text-sm text-muted-foreground hover:text-foreground transition-colors pl-0">1. Centralizing Firebase Initialization</a><a href="#the-solution-single-firebase-instance" class="block text-sm text-muted-foreground hover:text-foreground transition-colors pl-4">The Solution: Single Firebase Instance</a><a href="#2-optimizing-the-quiz-page-component" class="block text-sm text-muted-foreground hover:text-foreground transition-colors pl-0">2. Optimizing the Quiz Page Component</a><a href="#implementation-approach-1-direct-html-rendering" class="block text-sm text-muted-foreground hover:text-foreground transition-colors pl-4">Implementation Approach #1: Direct HTML Rendering</a><a href="#3-enhancing-security-with-iframe-isolation" class="block text-sm text-muted-foreground hover:text-foreground transition-colors pl-0">3. Enhancing Security with Iframe Isolation</a><a href="#implementation-approach-2-iframe-isolation" class="block text-sm text-muted-foreground hover:text-foreground transition-colors pl-4">Implementation Approach #2: Iframe Isolation</a><a href="#4-security-considerations" class="block text-sm text-muted-foreground hover:text-foreground transition-colors pl-0">4. Security Considerations</a><a href="#content-security-policy-csp" class="block text-sm text-muted-foreground hover:text-foreground transition-colors pl-4">Content Security Policy (CSP)</a><a href="#html-sanitization" class="block text-sm text-muted-foreground hover:text-foreground transition-colors pl-4">HTML Sanitization</a><a href="#5-enhancing-your-quiz-platform" class="block text-sm text-muted-foreground hover:text-foreground transition-colors pl-0">5. Enhancing Your Quiz Platform</a><a href="#authentication-ui" class="block text-sm text-muted-foreground hover:text-foreground transition-colors pl-4">Authentication UI</a><a href="#score-dashboard" class="block text-sm text-muted-foreground hover:text-foreground transition-colors pl-4">Score Dashboard</a><a href="#admin-quiz-management" class="block text-sm text-muted-foreground hover:text-foreground transition-colors pl-4">Admin Quiz Management</a><a href="#performance-optimization" class="block text-sm text-muted-foreground hover:text-foreground transition-colors pl-0">Performance Optimization</a><a href="#conclusion" class="block text-sm text-muted-foreground hover:text-foreground transition-colors pl-0">Conclusion</a></nav></div></aside></div></article><!--$--><!--/$--></main><script src="/_next/static/chunks/ca7c464890d0e8da.js" id="_R_" async=""></script><script>(self.__next_f=self.__next_f||[]).push([0])</script><script>self.__next_f.push([1,"1:\"$Sreact.fragment\"\n2:I[2355,[\"/_next/static/chunks/a2b8d4a1cdff0364.js\",\"/_next/static/chunks/e3b299ee8c272c5f.js\",\"/_next/static/chunks/5b18bef1a05fed16.js\",\"/_next/static/chunks/8d9ce281e2699520.js\",\"/_next/static/chunks/f2bcd5b1588de598.js\"],\"Analytics\"]\n3:I[55068,[\"/_next/static/chunks/a2b8d4a1cdff0364.js\",\"/_next/static/chunks/e3b299ee8c272c5f.js\",\"/_next/static/chunks/5b18bef1a05fed16.js\",\"/_next/static/chunks/8d9ce281e2699520.js\",\"/_next/static/chunks/f2bcd5b1588de598.js\"],\"SiteNav\"]\n4:I[39756,[\"/_next/static/chunks/ff1a16fafef87110.js\",\"/_next/static/chunks/bd395c328f5600f0.js\"],\"default\"]\n5:I[37457,[\"/_next/static/chunks/ff1a16fafef87110.js\",\"/_next/static/chunks/bd395c328f5600f0.js\"],\"default\"]\n9:I[68027,[],\"default\"]\n:HL[\"/_next/static/chunks/5bd76f0f07e1e8f5.css\",\"style\"]\n:HL[\"/_next/static/chunks/7d997037a4f8c17b.css\",\"style\"]\n:HL[\"/_next/static/media/2a65768255d6b625-s.p.d19752fb.woff2\",\"font\",{\"crossOrigin\":\"\",\"type\":\"font/woff2\"}]\n:HL[\"/_next/static/media/797e433ab948586e-s.p.dbea232f.woff2\",\"font\",{\"crossOrigin\":\"\",\"type\":\"font/woff2\"}]\n:HL[\"/_next/static/media/caa3a2e1cccd8315-s.p.853070df.woff2\",\"font\",{\"crossOrigin\":\"\",\"type\":\"font/woff2\"}]\n"])</script><script>self.__next_f.push([1,"0:{\"P\":null,\"b\":\"6uZ8qrgjcJrZScikhKOfx\",\"c\":[\"\",\"blog\",\"2025-03-09-nextjs-firebase\"],\"q\":\"\",\"i\":false,\"f\":[[[\"\",{\"children\":[\"blog\",{\"children\":[[\"slug\",\"2025-03-09-nextjs-firebase\",\"d\"],{\"children\":[\"__PAGE__\",{}]}]}]},\"$undefined\",\"$undefined\",true],[[\"$\",\"$1\",\"c\",{\"children\":[[[\"$\",\"link\",\"0\",{\"rel\":\"stylesheet\",\"href\":\"/_next/static/chunks/5bd76f0f07e1e8f5.css\",\"precedence\":\"next\",\"crossOrigin\":\"$undefined\",\"nonce\":\"$undefined\"}],[\"$\",\"link\",\"1\",{\"rel\":\"stylesheet\",\"href\":\"/_next/static/chunks/7d997037a4f8c17b.css\",\"precedence\":\"next\",\"crossOrigin\":\"$undefined\",\"nonce\":\"$undefined\"}],[\"$\",\"script\",\"script-0\",{\"src\":\"/_next/static/chunks/a2b8d4a1cdff0364.js\",\"async\":true,\"nonce\":\"$undefined\"}],[\"$\",\"script\",\"script-1\",{\"src\":\"/_next/static/chunks/e3b299ee8c272c5f.js\",\"async\":true,\"nonce\":\"$undefined\"}],[\"$\",\"script\",\"script-2\",{\"src\":\"/_next/static/chunks/5b18bef1a05fed16.js\",\"async\":true,\"nonce\":\"$undefined\"}],[\"$\",\"script\",\"script-3\",{\"src\":\"/_next/static/chunks/8d9ce281e2699520.js\",\"async\":true,\"nonce\":\"$undefined\"}],[\"$\",\"script\",\"script-4\",{\"src\":\"/_next/static/chunks/f2bcd5b1588de598.js\",\"async\":true,\"nonce\":\"$undefined\"}]],[\"$\",\"html\",null,{\"lang\":\"en\",\"className\":\"dark\",\"suppressHydrationWarning\":true,\"children\":[[\"$\",\"head\",null,{\"children\":[[\"$\",\"script\",null,{\"type\":\"application/ld+json\",\"dangerouslySetInnerHTML\":{\"__html\":\"[{\\\"@type\\\":\\\"WebSite\\\",\\\"name\\\":\\\"Daniel Kliewer\\\",\\\"url\\\":\\\"https://danielkliewer.com\\\",\\\"potentialAction\\\":{\\\"@type\\\":\\\"SearchAction\\\",\\\"target\\\":{\\\"@type\\\":\\\"EntryPoint\\\",\\\"urlTemplate\\\":\\\"https://danielkliewer.com/blog?q={search_term_string}\\\"},\\\"query-input\\\":\\\"required name=search_term_string\\\"}},{\\\"@type\\\":\\\"Person\\\",\\\"name\\\":\\\"Daniel Kliewer\\\",\\\"url\\\":\\\"https://danielkliewer.com\\\",\\\"jobTitle\\\":\\\"Software Engineer \u0026 AI Practitioner\\\",\\\"address\\\":{\\\"@type\\\":\\\"PostalAddress\\\",\\\"addressLocality\\\":\\\"Austin\\\",\\\"addressRegion\\\":\\\"TX\\\",\\\"addressCountry\\\":\\\"US\\\"},\\\"sameAs\\\":[\\\"https://github.com/kliewerdaniel\\\",\\\"https://linkedin.com/in/danielkliewer\\\"],\\\"knowsAbout\\\":[\\\"Artificial Intelligence\\\",\\\"Large Language Models\\\",\\\"Retrieval-Augmented Generation\\\",\\\"Autonomous Agents\\\",\\\"Next.js\\\",\\\"React\\\",\\\"Python\\\"]}]\"}}],[\"$\",\"link\",null,{\"rel\":\"canonical\",\"href\":\"https://danielkliewer.com\"}],[\"$\",\"meta\",null,{\"name\":\"apple-mobile-web-app-capable\",\"content\":\"yes\"}],[\"$\",\"meta\",null,{\"name\":\"apple-mobile-web-app-status-bar-style\",\"content\":\"black-translucent\"}]]}],[\"$\",\"body\",null,{\"className\":\"geist_a71539c9-module__T19VSG__variable geist_mono_8d43a2aa-module__8Li5zG__variable playfair_display_d5eda251-module__JGL7aG__variable antialiased min-h-screen bg-background text-foreground\",\"children\":[[\"$\",\"$L2\",null,{}],[\"$\",\"$L3\",null,{}],[\"$\",\"main\",null,{\"className\":\"min-h-screen\",\"children\":[\"$\",\"$L4\",null,{\"parallelRouterKey\":\"children\",\"error\":\"$undefined\",\"errorStyles\":\"$undefined\",\"errorScripts\":\"$undefined\",\"template\":[\"$\",\"$L5\",null,{}],\"templateStyles\":\"$undefined\",\"templateScripts\":\"$undefined\",\"notFound\":[[[\"$\",\"title\",null,{\"children\":\"404: This page could not be found.\"}],[\"$\",\"div\",null,{\"style\":{\"fontFamily\":\"system-ui,\\\"Segoe UI\\\",Roboto,Helvetica,Arial,sans-serif,\\\"Apple Color Emoji\\\",\\\"Segoe UI Emoji\\\"\",\"height\":\"100vh\",\"textAlign\":\"center\",\"display\":\"flex\",\"flexDirection\":\"column\",\"alignItems\":\"center\",\"justifyContent\":\"center\"},\"children\":[\"$\",\"div\",null,{\"children\":[[\"$\",\"style\",null,{\"dangerouslySetInnerHTML\":{\"__html\":\"body{color:#000;background:#fff;margin:0}.next-error-h1{border-right:1px solid rgba(0,0,0,.3)}@media (prefers-color-scheme:dark){body{color:#fff;background:#000}.next-error-h1{border-right:1px solid rgba(255,255,255,.3)}}\"}}],[\"$\",\"h1\",null,{\"className\":\"next-error-h1\",\"style\":{\"display\":\"inline-block\",\"margin\":\"0 20px 0 0\",\"padding\":\"0 23px 0 0\",\"fontSize\":24,\"fontWeight\":500,\"verticalAlign\":\"top\",\"lineHeight\":\"49px\"},\"children\":404}],[\"$\",\"div\",null,{\"style\":{\"display\":\"inline-block\"},\"children\":[\"$\",\"h2\",null,{\"style\":{\"fontSize\":14,\"fontWeight\":400,\"lineHeight\":\"49px\",\"margin\":0},\"children\":\"This page could not be found.\"}]}]]}]}]],[]],\"forbidden\":\"$undefined\",\"unauthorized\":\"$undefined\"}]}]]}]]}]]}],{\"children\":[[\"$\",\"$1\",\"c\",{\"children\":[null,[\"$\",\"$L4\",null,{\"parallelRouterKey\":\"children\",\"error\":\"$undefined\",\"errorStyles\":\"$undefined\",\"errorScripts\":\"$undefined\",\"template\":[\"$\",\"$L5\",null,{}],\"templateStyles\":\"$undefined\",\"templateScripts\":\"$undefined\",\"notFound\":\"$undefined\",\"forbidden\":\"$undefined\",\"unauthorized\":\"$undefined\"}]]}],{\"children\":[[\"$\",\"$1\",\"c\",{\"children\":[null,[\"$\",\"$L4\",null,{\"parallelRouterKey\":\"children\",\"error\":\"$undefined\",\"errorStyles\":\"$undefined\",\"errorScripts\":\"$undefined\",\"template\":\"$L6\",\"templateStyles\":\"$undefined\",\"templateScripts\":\"$undefined\",\"notFound\":\"$undefined\",\"forbidden\":\"$undefined\",\"unauthorized\":\"$undefined\"}]]}],{\"children\":[\"$L7\",{},null,false,false]},null,false,false]},null,false,false]},null,false,false],\"$L8\",false]],\"m\":\"$undefined\",\"G\":[\"$9\",[]],\"S\":true}\n"])</script><script>self.__next_f.push([1,"b:I[97367,[\"/_next/static/chunks/ff1a16fafef87110.js\",\"/_next/static/chunks/bd395c328f5600f0.js\"],\"OutletBoundary\"]\nc:\"$Sreact.suspense\"\ne:I[97367,[\"/_next/static/chunks/ff1a16fafef87110.js\",\"/_next/static/chunks/bd395c328f5600f0.js\"],\"ViewportBoundary\"]\n10:I[97367,[\"/_next/static/chunks/ff1a16fafef87110.js\",\"/_next/static/chunks/bd395c328f5600f0.js\"],\"MetadataBoundary\"]\n6:[\"$\",\"$L5\",null,{}]\n7:[\"$\",\"$1\",\"c\",{\"children\":[\"$La\",[[\"$\",\"script\",\"script-0\",{\"src\":\"/_next/static/chunks/8178183a3ca3d9dc.js\",\"async\":true,\"nonce\":\"$undefined\"}],[\"$\",\"script\",\"script-1\",{\"src\":\"/_next/static/chunks/345e895c375d62af.js\",\"async\":true,\"nonce\":\"$undefined\"}]],[\"$\",\"$Lb\",null,{\"children\":[\"$\",\"$c\",null,{\"name\":\"Next.MetadataOutlet\",\"children\":\"$@d\"}]}]]}]\n8:[\"$\",\"$1\",\"h\",{\"children\":[null,[\"$\",\"$Le\",null,{\"children\":\"$Lf\"}],[\"$\",\"div\",null,{\"hidden\":true,\"children\":[\"$\",\"$L10\",null,{\"children\":[\"$\",\"$c\",null,{\"name\":\"Next.Metadata\",\"children\":\"$L11\"}]}]}],[\"$\",\"meta\",null,{\"name\":\"next-size-adjust\",\"content\":\"\"}]]}]\n"])</script><script>self.__next_f.push([1,"a:[\"$\",\"article\",null,{\"className\":\"container px-4 py-16 mx-auto max-w-6xl min-h-screen bg-background\",\"children\":[[\"$\",\"div\",null,{\"className\":\"lg:grid lg:grid-cols-[1fr_250px] lg:gap-12\",\"children\":[[\"$\",\"div\",null,{\"children\":[[\"$\",\"header\",null,{\"className\":\"mb-12\",\"children\":[[\"$\",\"h1\",null,{\"className\":\"text-4xl md:text-5xl font-bold mb-4 text-foreground tracking-wide\",\"style\":{\"fontFamily\":\"var(--font-playfair), Georgia, serif\"},\"children\":\"Complete Guide: Building a High-Performance Quiz Platform with Next.js and Firebase Integration\"}],[\"$\",\"div\",null,{\"className\":\"flex flex-wrap items-center gap-4 text-muted-foreground mb-6\",\"children\":[[\"$\",\"time\",null,{\"dateTime\":\"2025-03-09 11:42:44 -0500\",\"children\":\"March 9, 2025\"}],\"$undefined\",[[\"$\",\"span\",null,{\"children\":\"•\"}],[\"$\",\"span\",null,{\"className\":\"flex items-center gap-1\",\"children\":[[\"$\",\"svg\",null,{\"ref\":\"$undefined\",\"xmlns\":\"http://www.w3.org/2000/svg\",\"width\":24,\"height\":24,\"viewBox\":\"0 0 24 24\",\"fill\":\"none\",\"stroke\":\"currentColor\",\"strokeWidth\":2,\"strokeLinecap\":\"round\",\"strokeLinejoin\":\"round\",\"className\":\"lucide lucide-clock w-4 h-4\",\"aria-hidden\":\"true\",\"children\":[[\"$\",\"path\",\"mmk7yg\",{\"d\":\"M12 6v6l4 2\"}],[\"$\",\"circle\",\"1mglay\",{\"cx\":\"12\",\"cy\":\"12\",\"r\":\"10\"}],\"$undefined\"]}],10,\" min read\"]}]]]}],[\"$\",\"div\",null,{\"className\":\"flex flex-wrap gap-2\",\"children\":[[\"$\",\"span\",\"Next.js\",{\"data-slot\":\"badge\",\"data-variant\":\"secondary\",\"className\":\"inline-flex items-center justify-center rounded-full px-2 py-0.5 text-xs font-medium w-fit whitespace-nowrap shrink-0 [\u0026\u003esvg]:size-3 gap-1 [\u0026\u003esvg]:pointer-events-none focus-visible:border-ring focus-visible:ring-ring/50 focus-visible:ring-[3px] aria-invalid:ring-destructive/20 dark:aria-invalid:ring-destructive/40 aria-invalid:border-destructive transition-[color,box-shadow] overflow-hidden [a\u0026]:hover:bg-secondary/90 bg-secondary text-muted-foreground border border-border\",\"children\":\"Next.js\"}],[\"$\",\"span\",\"Firebase\",{\"data-slot\":\"badge\",\"data-variant\":\"secondary\",\"className\":\"inline-flex items-center justify-center rounded-full px-2 py-0.5 text-xs font-medium w-fit whitespace-nowrap shrink-0 [\u0026\u003esvg]:size-3 gap-1 [\u0026\u003esvg]:pointer-events-none focus-visible:border-ring focus-visible:ring-ring/50 focus-visible:ring-[3px] aria-invalid:ring-destructive/20 dark:aria-invalid:ring-destructive/40 aria-invalid:border-destructive transition-[color,box-shadow] overflow-hidden [a\u0026]:hover:bg-secondary/90 bg-secondary text-muted-foreground border border-border\",\"children\":\"Firebase\"}],[\"$\",\"span\",\"Quiz Platform\",{\"data-slot\":\"badge\",\"data-variant\":\"secondary\",\"className\":\"inline-flex items-center justify-center rounded-full px-2 py-0.5 text-xs font-medium w-fit whitespace-nowrap shrink-0 [\u0026\u003esvg]:size-3 gap-1 [\u0026\u003esvg]:pointer-events-none focus-visible:border-ring focus-visible:ring-ring/50 focus-visible:ring-[3px] aria-invalid:ring-destructive/20 dark:aria-invalid:ring-destructive/40 aria-invalid:border-destructive transition-[color,box-shadow] overflow-hidden [a\u0026]:hover:bg-secondary/90 bg-secondary text-muted-foreground border border-border\",\"children\":\"Quiz Platform\"}],[\"$\",\"span\",\"Authentication\",{\"data-slot\":\"badge\",\"data-variant\":\"secondary\",\"className\":\"inline-flex items-center justify-center rounded-full px-2 py-0.5 text-xs font-medium w-fit whitespace-nowrap shrink-0 [\u0026\u003esvg]:size-3 gap-1 [\u0026\u003esvg]:pointer-events-none focus-visible:border-ring focus-visible:ring-ring/50 focus-visible:ring-[3px] aria-invalid:ring-destructive/20 dark:aria-invalid:ring-destructive/40 aria-invalid:border-destructive transition-[color,box-shadow] overflow-hidden [a\u0026]:hover:bg-secondary/90 bg-secondary text-muted-foreground border border-border\",\"children\":\"Authentication\"}],\"$L12\",\"$L13\",\"$L14\",\"$L15\",\"$L16\",\"$L17\"]}]]}],\"$undefined\",\"$L18\",\"$L19\"]}],\"$L1a\"]}],\"$L1b\"]}]\n"])</script><script>self.__next_f.push([1,"1c:I[52947,[\"/_next/static/chunks/a2b8d4a1cdff0364.js\",\"/_next/static/chunks/e3b299ee8c272c5f.js\",\"/_next/static/chunks/5b18bef1a05fed16.js\",\"/_next/static/chunks/8d9ce281e2699520.js\",\"/_next/static/chunks/f2bcd5b1588de598.js\",\"/_next/static/chunks/8178183a3ca3d9dc.js\",\"/_next/static/chunks/345e895c375d62af.js\"],\"CodeBlock\"]\n43:I[62867,[\"/_next/static/chunks/a2b8d4a1cdff0364.js\",\"/_next/static/chunks/e3b299ee8c272c5f.js\",\"/_next/static/chunks/5b18bef1a05fed16.js\",\"/_next/static/chunks/8d9ce281e2699520.js\",\"/_next/static/chunks/f2bcd5b1588de598.js\",\"/_next/static/chunks/8178183a3ca3d9dc.js\",\"/_next/static/chunks/345e895c375d62af.js\"],\"RelatedPosts\"]\n46:I[47331,[\"/_next/static/chunks/a2b8d4a1cdff0364.js\",\"/_next/static/chunks/e3b299ee8c272c5f.js\",\"/_next/static/chunks/5b18bef1a05fed16.js\",\"/_next/static/chunks/8d9ce281e2699520.js\",\"/_next/static/chunks/f2bcd5b1588de598.js\",\"/_next/static/chunks/8178183a3ca3d9dc.js\",\"/_next/static/chunks/345e895c375d62af.js\"],\"ScrollToTop\"]\n:HL[\"/images/ComfyUI_00206_.png\",\"image\"]\n12:[\"$\",\"span\",\"Firestore\",{\"data-slot\":\"badge\",\"data-variant\":\"secondary\",\"className\":\"inline-flex items-center justify-center rounded-full px-2 py-0.5 text-xs font-medium w-fit whitespace-nowrap shrink-0 [\u0026\u003esvg]:size-3 gap-1 [\u0026\u003esvg]:pointer-events-none focus-visible:border-ring focus-visible:ring-ring/50 focus-visible:ring-[3px] aria-invalid:ring-destructive/20 dark:aria-invalid:ring-destructive/40 aria-invalid:border-destructive transition-[color,box-shadow] overflow-hidden [a\u0026]:hover:bg-secondary/90 bg-secondary text-muted-foreground border border-border\",\"children\":\"Firestore\"}]\n13:[\"$\",\"span\",\"Real-Time\",{\"data-slot\":\"badge\",\"data-variant\":\"secondary\",\"className\":\"inline-flex items-center justify-center rounded-full px-2 py-0.5 text-xs font-medium w-fit whitespace-nowrap shrink-0 [\u0026\u003esvg]:size-3 gap-1 [\u0026\u003esvg]:pointer-events-none focus-visible:border-ring focus-visible:ring-ring/50 focus-visible:ring-[3px] aria-invalid:ring-destructive/20 dark:aria-invalid:ring-destructive/40 aria-invalid:border-destructive transition-[color,box-shadow] overflow-hidden [a\u0026]:hover:bg-secondary/90 bg-secondary text-muted-foreground border border-border\",\"children\":\"Real-Time\"}]\n14:[\"$\",\"span\",\"Iframe Security\",{\"data-slot\":\"badge\",\"data-variant\":\"secondary\",\"className\":\"inline-flex items-center justify-center rounded-full px-2 py-0.5 text-xs font-medium w-fit whitespace-nowrap shrink-0 [\u0026\u003esvg]:size-3 gap-1 [\u0026\u003esvg]:pointer-events-none focus-visible:border-ring focus-visible:ring-ring/50 focus-visible:ring-[3px] aria-invalid:ring-destructive/20 dark:aria-invalid:ring-destructive/40 aria-invalid:border-destructive transition-[color,box-shadow] overflow-hidden [a\u0026]:hover:bg-secondary/90 bg-secondary text-muted-foreground border border-border\",\"children\":\"Iframe Security\"}]\n15:[\"$\",\"span\",\"Admin Dashboard\",{\"data-slot\":\"badge\",\"data-variant\":\"secondary\",\"className\":\"inline-flex items-center justify-center rounded-full px-2 py-0.5 text-xs font-medium w-fit whitespace-nowrap shrink-0 [\u0026\u003esvg]:size-3 gap-1 [\u0026\u003esvg]:pointer-events-none focus-visible:border-ring focus-visible:ring-ring/50 focus-visible:ring-[3px] aria-invalid:ring-destructive/20 dark:aria-invalid:ring-destructive/40 aria-invalid:border-destructive transition-[color,box-shadow] overflow-hidden [a\u0026]:hover:bg-secondary/90 bg-secondary text-muted-foreground border border-border\",\"children\":\"Admin Dashboard\"}]\n16:[\"$\",\"span\",\"Educational Technology\",{\"data-slot\":\"badge\",\"data-variant\":\"secondary\",\"className\":\"inline-flex items-center justify-center rounded-full px-2 py-0.5 text-xs font-medium w-fit whitespace-nowrap shrink-0 [\u0026\u003esvg]:size-3 gap-1 [\u0026\u003esvg]:pointer-events-none focus-visible:border-ring focus-visible:ring-ring/50 focus-visible:ring-[3px] aria-invalid:ring-destructive/20 dark:aria-invalid:ring-destructive/40 aria-invalid:border-destructive transition-[color,box-shadow] overflow-hidden [a\u0026]:hover:bg-secondary/90 bg-secondary text-muted-foreground border border-border\",\"children\":\"Educational Technology\"}]\n17:[\"$\",\"span\",\"Web Development\",{\"data-slot\":\"badge\",\"data-var"])</script><script>self.__next_f.push([1,"iant\":\"secondary\",\"className\":\"inline-flex items-center justify-center rounded-full px-2 py-0.5 text-xs font-medium w-fit whitespace-nowrap shrink-0 [\u0026\u003esvg]:size-3 gap-1 [\u0026\u003esvg]:pointer-events-none focus-visible:border-ring focus-visible:ring-ring/50 focus-visible:ring-[3px] aria-invalid:ring-destructive/20 dark:aria-invalid:ring-destructive/40 aria-invalid:border-destructive transition-[color,box-shadow] overflow-hidden [a\u0026]:hover:bg-secondary/90 bg-secondary text-muted-foreground border border-border\",\"children\":\"Web Development\"}]\n"])</script><script>self.__next_f.push([1,"18:[\"$\",\"div\",null,{\"className\":\"prose prose-lg dark:prose-invert max-w-none  prose-headings:text-foreground prose-headings:font-bold prose-headings:tracking-wide prose-p:text-muted-foreground prose-p:leading-relaxed prose-a:text-foreground prose-a:underline hover:prose-a:opacity-70 prose-strong:text-foreground prose-code:text-foreground prose-code:bg-secondary prose-code:px-1 prose-code:py-0.5 prose-code:rounded prose-pre:bg-secondary prose-pre:border prose-pre:border-border prose-blockquote:border-l-foreground prose-blockquote:text-muted-foreground prose-li:text-muted-foreground prose-img:rounded-lg prose-pre:relative prose-pre:overflow-hidden \",\"children\":[[\"$\",\"p\",\"p-0\",{\"children\":[\"$\",\"img\",\"img-0\",{\"src\":\"/images/ComfyUI_00206_.png\",\"alt\":\"Image\"}]}],\"\\n\",[\"$\",\"h1\",\"h1-0\",{\"id\":\"building-a-high-performance-quiz-platform-with-nextjs-and-firebase\",\"children\":\"Building a High-Performance Quiz Platform with Next.js and Firebase\"}],\"\\n\",[\"$\",\"p\",\"p-1\",{\"children\":\"Creating an online quiz platform can be challenging, especially when you need to handle user authentication, store scores, and display dynamic content. In this comprehensive guide, I'll walk you through how to optimize a Next.js quiz application that leverages Firebase for authentication and Firestore for data storage.\"}],\"\\n\",[\"$\",\"h2\",\"h2-0\",{\"id\":\"the-challenge-of-quiz-applications\",\"children\":\"The Challenge of Quiz Applications\"}],\"\\n\",[\"$\",\"p\",\"p-2\",{\"children\":\"Many educational platforms struggle with performance issues, security vulnerabilities, and code maintainability when implementing quiz functionality. Whether you're building a learning management system, an educational app, or just a fun quiz site, these challenges can significantly impact user experience.\"}],\"\\n\",[\"$\",\"p\",\"p-3\",{\"children\":\"Let's explore how to streamline a Next.js quiz platform with Firebase integration to create a secure, fast, and maintainable solution.\"}],\"\\n\",[\"$\",\"h2\",\"h2-1\",{\"id\":\"1-centralizing-firebase-initialization\",\"children\":\"1. Centralizing Firebase Initialization\"}],\"\\n\",[\"$\",\"p\",\"p-4\",{\"children\":\"One common mistake is initializing Firebase multiple times across different components. This not only affects performance but can also lead to unexpected behaviors.\"}],\"\\n\",[\"$\",\"h3\",\"h3-0\",{\"id\":\"the-solution-single-firebase-instance\",\"children\":\"The Solution: Single Firebase Instance\"}],\"\\n\",[\"$\",\"p\",\"p-5\",{\"children\":[\"Create a dedicated \",[\"$\",\"code\",\"code-0\",{\"className\":\"$undefined\",\"node\":{\"type\":\"element\",\"tagName\":\"code\",\"properties\":{},\"children\":[{\"type\":\"text\",\"value\":\"firebase.js\",\"position\":{\"start\":{\"line\":21,\"column\":20,\"offset\":1190},\"end\":{\"line\":21,\"column\":33,\"offset\":1203}}}],\"position\":{\"start\":{\"line\":21,\"column\":20,\"offset\":1190},\"end\":{\"line\":21,\"column\":33,\"offset\":1203}}},\"children\":\"firebase.js\"}],\" file to handle initialization once:\"]}],\"\\n\",[\"$\",\"pre\",\"pre-0\",{\"className\":\"bg-secondary border border-border rounded-lg p-4 overflow-x-auto\",\"children\":[\"$\",\"$L1c\",\"code-0\",{\"className\":\"language-javascript\",\"children\":\"// firebase.js\\nimport { initializeApp } from 'firebase/app';\\nimport { getAuth } from 'firebase/auth';\\nimport { getFirestore } from 'firebase/firestore';\\n\\nconst firebaseConfig = {\\n  apiKey: 'YOUR_KEY',\\n  authDomain: 'your-app.firebaseapp.com',\\n  projectId: 'your-app',\\n  storageBucket: 'your-app.appspot.com',\\n  messagingSenderId: '123456789',\\n  appId: '1:123456789:web:abcdef123456789'\\n};\\n\\n// Initialize Firebase only once\\nconst app = initializeApp(firebaseConfig);\\nconst auth = getAuth(app);\\nconst db = getFirestore(app);\\n\\nexport { auth, db };\\n\"}]}],\"\\n\",[\"$\",\"p\",\"p-6\",{\"children\":[\"By exporting the initialized \",[\"$\",\"code\",\"code-0\",{\"className\":\"$undefined\",\"node\":{\"type\":\"element\",\"tagName\":\"code\",\"properties\":{},\"children\":[{\"type\":\"text\",\"value\":\"auth\",\"position\":{\"start\":{\"line\":46,\"column\":30,\"offset\":1834},\"end\":{\"line\":46,\"column\":36,\"offset\":1840}}}],\"position\":{\"start\":{\"line\":46,\"column\":30,\"offset\":1834},\"end\":{\"line\":46,\"column\":36,\"offset\":1840}}},\"children\":\"auth\"}],\" and \",\"$L1d\",\" instances, you can import them wherever needed without creating redundant Firebase connections.\"]}],\"\\n\",\"$L1e\",\"\\n\",\"$L1f\",\"\\n\",\"$L20\",\"\\n\",\"$L21\",\"\\n\",\"$L22\",\"\\n\",\"$L23\",\"\\n\",\"$L24\",\"\\n\",\"$L25\",\"\\n\",\"$L26\",\"\\n\",\"$L27\",\"\\n\",\"$L28\",\"\\n\",\"$L29\",\"\\n\",\"$L2a\",\"\\n\",\"$L2b\",\"\\n\",\"$L2c\",\"\\n\",\"$L2d\",\"\\n\",\"$L2e\",\"\\n\",\"$L2f\",\"\\n\",\"$L30\",\"\\n\",\"$L31\",\"\\n\",\"$L32\",\"\\n\",\"$L33\",\"\\n\",\"$L34\",\"\\n\",\"$L35\",\"\\n\",\"$L36\",\"\\n\",\"$L37\",\"\\n\",\"$L38\",\"\\n\",\"$L39\",\"\\n\",\"$L3a\",\"\\n\",\"$L3b\",\"\\n\",\"$L3c\",\"\\n\",\"$L3d\",\"\\n\",\"$L3e\",\"\\n\",\"$L3f\",\"\\n\",\"$L40\",\"\\n\",\"$L41\",\"\\n\",\"$L42\"]}]\n"])</script><script>self.__next_f.push([1,"19:[\"$\",\"$L43\",null,{\"currentSlug\":\"2025-03-09-nextjs-firebase\",\"searchQuery\":\"Complete Guide: Building a High-Performance Quiz Platform with Next.js and Firebase Integration Next.js Firebase Quiz Platform Authentication Firestore Real-Time Iframe Security Admin Dashboard Educational Technology Web Development A comprehensive guide to building a secure, high-performance quiz platform with Next.js and Firebase, featuring authentication, real-time scoring, iframe isolation, and admin management capabilities.\"}]\n"])</script><script>self.__next_f.push([1,"1a:[\"$\",\"aside\",null,{\"className\":\"hidden lg:block\",\"children\":[\"$\",\"div\",null,{\"className\":\"sticky top-24\",\"children\":[[\"$\",\"h3\",null,{\"className\":\"text-sm font-semibold text-foreground mb-4 uppercase tracking-wider\",\"children\":\"Table of Contents\"}],[\"$\",\"nav\",null,{\"className\":\"space-y-2\",\"children\":[[\"$\",\"a\",\"building-a-high-performance-quiz-platform-with-nextjs-and-firebase\",{\"href\":\"#building-a-high-performance-quiz-platform-with-nextjs-and-firebase\",\"className\":\"block text-sm text-muted-foreground hover:text-foreground transition-colors \",\"children\":\"Building a High-Performance Quiz Platform with Next.js and Firebase\"}],[\"$\",\"a\",\"the-challenge-of-quiz-applications\",{\"href\":\"#the-challenge-of-quiz-applications\",\"className\":\"block text-sm text-muted-foreground hover:text-foreground transition-colors pl-0\",\"children\":\"The Challenge of Quiz Applications\"}],[\"$\",\"a\",\"1-centralizing-firebase-initialization\",{\"href\":\"#1-centralizing-firebase-initialization\",\"className\":\"block text-sm text-muted-foreground hover:text-foreground transition-colors pl-0\",\"children\":\"1. Centralizing Firebase Initialization\"}],[\"$\",\"a\",\"the-solution-single-firebase-instance\",{\"href\":\"#the-solution-single-firebase-instance\",\"className\":\"block text-sm text-muted-foreground hover:text-foreground transition-colors pl-4\",\"children\":\"The Solution: Single Firebase Instance\"}],[\"$\",\"a\",\"2-optimizing-the-quiz-page-component\",{\"href\":\"#2-optimizing-the-quiz-page-component\",\"className\":\"block text-sm text-muted-foreground hover:text-foreground transition-colors pl-0\",\"children\":\"2. Optimizing the Quiz Page Component\"}],[\"$\",\"a\",\"implementation-approach-1-direct-html-rendering\",{\"href\":\"#implementation-approach-1-direct-html-rendering\",\"className\":\"block text-sm text-muted-foreground hover:text-foreground transition-colors pl-4\",\"children\":\"Implementation Approach #1: Direct HTML Rendering\"}],[\"$\",\"a\",\"3-enhancing-security-with-iframe-isolation\",{\"href\":\"#3-enhancing-security-with-iframe-isolation\",\"className\":\"block text-sm text-muted-foreground hover:text-foreground transition-colors pl-0\",\"children\":\"3. Enhancing Security with Iframe Isolation\"}],[\"$\",\"a\",\"implementation-approach-2-iframe-isolation\",{\"href\":\"#implementation-approach-2-iframe-isolation\",\"className\":\"block text-sm text-muted-foreground hover:text-foreground transition-colors pl-4\",\"children\":\"Implementation Approach #2: Iframe Isolation\"}],[\"$\",\"a\",\"4-security-considerations\",{\"href\":\"#4-security-considerations\",\"className\":\"block text-sm text-muted-foreground hover:text-foreground transition-colors pl-0\",\"children\":\"4. Security Considerations\"}],[\"$\",\"a\",\"content-security-policy-csp\",{\"href\":\"#content-security-policy-csp\",\"className\":\"block text-sm text-muted-foreground hover:text-foreground transition-colors pl-4\",\"children\":\"Content Security Policy (CSP)\"}],[\"$\",\"a\",\"html-sanitization\",{\"href\":\"#html-sanitization\",\"className\":\"block text-sm text-muted-foreground hover:text-foreground transition-colors pl-4\",\"children\":\"HTML Sanitization\"}],[\"$\",\"a\",\"5-enhancing-your-quiz-platform\",{\"href\":\"#5-enhancing-your-quiz-platform\",\"className\":\"block text-sm text-muted-foreground hover:text-foreground transition-colors pl-0\",\"children\":\"5. Enhancing Your Quiz Platform\"}],[\"$\",\"a\",\"authentication-ui\",{\"href\":\"#authentication-ui\",\"className\":\"block text-sm text-muted-foreground hover:text-foreground transition-colors pl-4\",\"children\":\"Authentication UI\"}],[\"$\",\"a\",\"score-dashboard\",{\"href\":\"#score-dashboard\",\"className\":\"block text-sm text-muted-foreground hover:text-foreground transition-colors pl-4\",\"children\":\"Score Dashboard\"}],[\"$\",\"a\",\"admin-quiz-management\",{\"href\":\"#admin-quiz-management\",\"className\":\"block text-sm text-muted-foreground hover:text-foreground transition-colors pl-4\",\"children\":\"Admin Quiz Management\"}],\"$L44\",\"$L45\"]}]]}]}]\n"])</script><script>self.__next_f.push([1,"1b:[\"$\",\"$L46\",null,{}]\n"])</script><script>self.__next_f.push([1,"1d:[\"$\",\"code\",\"code-1\",{\"className\":\"$undefined\",\"node\":{\"type\":\"element\",\"tagName\":\"code\",\"properties\":{},\"children\":[{\"type\":\"text\",\"value\":\"db\",\"position\":{\"start\":{\"line\":46,\"column\":41,\"offset\":1845},\"end\":{\"line\":46,\"column\":45,\"offset\":1849}}}],\"position\":{\"start\":{\"line\":46,\"column\":41,\"offset\":1845},\"end\":{\"line\":46,\"column\":45,\"offset\":1849}}},\"children\":\"db\"}]\n1e:[\"$\",\"h2\",\"h2-2\",{\"id\":\"2-optimizing-the-quiz-page-component\",\"children\":\"2. Optimizing the Quiz Page Component\"}]\n1f:[\"$\",\"p\",\"p-7\",{\"children\":\"Your quiz page should efficiently handle quiz rendering and score saving without unnecessary re-renders or network calls.\"}]\n20:[\"$\",\"h3\",\"h3-1\",{\"id\":\"implementation-approach-1-direct-html-rendering\",\"children\":\"Implementation Approach #1: Direct HTML Rendering\"}]\n47:T50b,// pages/quiz/[id].js\nimport { useEffect } from 'react';\nimport { useRouter } from 'next/router';\nimport { doc, setDoc } from 'firebase/firestore';\nimport { auth, db } from '../../firebase';\n\nconst QuizPage = ({ quizHtml }) =\u003e {\n  const router = useRouter();\n  const { id } = router.query;\n\n  useEffect(() =\u003e {\n    // Expose the saveScore function to the quiz content\n    const saveScore = async (score) =\u003e {\n      const user = auth.currentUser;\n      if (user) {\n        const userDoc = doc(db, 'grades', user.uid);\n        await setDoc(\n          userDoc,\n          { [id]: { score, updatedAt: new Date() } },\n          { merge: true }\n        );\n      }\n    };\n\n    window.saveScore = saveScore;\n  }, [id]);\n\n  return (\n    \u003cdiv\u003e\n      \u003cdiv dangerouslySetInnerHTML={{ __html: quizHtml }} /\u003e\n    \u003c/div\u003e\n  );\n};\n\nexport async function getStaticProps({ params }) {\n  const quizHtml = await getQuizHTML(params.id); // Implement this function to fetch quiz HTML\n  return { props: { quizHtml } };\n}\n\nexport async function getStaticPaths() {\n  // Implement this function to generate paths for all quizzes\n  return {\n    paths: [\n      { params: { id: 'quiz1' } },\n      { params: { id: 'quiz2' } },\n      // Add more quizzes as needed\n    ],\n    fallback: false\n  };\n}\n\nexport default QuizPage;\n21:[\"$\",\"pre\",\"pre-1\",{\"className\":\"bg-secondary border border-border rounded-lg p-4 overflow-x-auto\",\"children\":[\"$\",\"$L1c\",\"code-0\",{\"className\":\"language-javascript\",\"children\":\"$47\"}]}]\n22:[\"$\",\"p\",\"p-8\",{\"children\":[\"This approach works but has potential security risks due to the use of \",[\"$\",\"code\",\"code-0\",{\"className\":\"$undefined\",\"node\":{\"type\":\"element\",\"tagName\":\"code\",\"properties\":{},\"children\":[{\"type\":\"text\",\"value\":\"dangerouslySetInnerHTML\",\"position\":{\"start\":{\"line\":109,\"column\":72,\"offset\":3548},\"end\":{\"line\":109,\"column\":97,\"offset\":3573}}}],\"position\":{\"start\":{\"line\":109,\"column\":72,\"offset\":3548},\"end\":{\"line\":109,\"column\":97,\"offset\":3573}}},\"children\":\"dangerouslySetInnerHTML\"}],\".\"]}]\n23:[\"$\",\"h2\",\"h2-3\",{\"id\":\"3-enhancing-security-with-iframe-isolation\",\"children\":\"3. Enhancing Security with Iframe Isolation\"}]\n24:[\"$\",\"p\",\"p-9\",{\"children\":\"A more secure approach is to isolate quiz content within an iframe, preventing potential XSS attacks and providing better content separation.\"}]\n25:[\"$\",\"h3\",\"h3-2\",{\"id\":\"implementation-approach-2-iframe-isolation\",\"children\":\"Implementation Approach #2: Iframe Isolation\"}]\n48:T786,"])</script><script>self.__next_f.push([1,"// pages/quiz/[id].js\nimport { useEffect } from 'react';\nimport { useRouter } from 'next/router';\nimport { doc, setDoc } from 'firebase/firestore';\nimport { auth, db } from '../../firebase';\n\nconst QuizPage = ({ quizPath }) =\u003e {\n  const router = useRouter();\n  const { id } = router.query;\n\n  useEffect(() =\u003e {\n    const saveScore = async (score) =\u003e {\n      const user = auth.currentUser;\n      if (user) {\n        const userDoc = doc(db, 'grades', user.uid);\n        await setDoc(\n          userDoc,\n          { [id]: { score, updatedAt: new Date() } },\n          { merge: true }\n        );\n      } else {\n        // Handle unauthenticated user scenario\n        console.log('User not authenticated. Score not saved.');\n        router.push('/login?returnUrl=' + router.asPath);\n      }\n    };\n\n    // Listen for messages from the iframe\n    window.addEventListener('message', (event) =\u003e {\n      if (event.data.type === 'saveScore') {\n        saveScore(event.data.score);\n      }\n    });\n\n    // Cleanup event listener\n    return () =\u003e {\n      window.removeEventListener('message', (event) =\u003e {\n        if (event.data.type === 'saveScore') {\n          saveScore(event.data.score);\n        }\n      });\n    };\n  }, [id, router]);\n\n  return (\n    \u003cdiv className=\"quiz-container\"\u003e\n      \u003ch1\u003eQuiz {id}\u003c/h1\u003e\n      \u003ciframe\n        src={quizPath}\n        width=\"100%\"\n        height=\"600px\"\n        style={{ border: 'none' }}\n        title={`Quiz ${id}`}\n      /\u003e\n    \u003c/div\u003e\n  );\n};\n\nexport async function getStaticProps({ params }) {\n  const quizPath = `/quizzes/${params.id}.html`; // Path to quiz HTML files in public directory\n  return { props: { quizPath } };\n}\n\nexport async function getStaticPaths() {\n  // Generate paths for all quizzes\n  return {\n    paths: [\n      { params: { id: 'quiz1' } },\n      { params: { id: 'quiz2' } },\n      // Add more quizzes as needed\n    ],\n    fallback: false\n  };\n}\n\nexport default QuizPage;\n"])</script><script>self.__next_f.push([1,"26:[\"$\",\"pre\",\"pre-2\",{\"className\":\"bg-secondary border border-border rounded-lg p-4 overflow-x-auto\",\"children\":[\"$\",\"$L1c\",\"code-0\",{\"className\":\"language-javascript\",\"children\":\"$48\"}]}]\n27:[\"$\",\"p\",\"p-10\",{\"children\":[\"To make this approach work, your quiz HTML files (stored in the \",[\"$\",\"code\",\"code-0\",{\"className\":\"$undefined\",\"node\":{\"type\":\"element\",\"tagName\":\"code\",\"properties\":{},\"children\":[{\"type\":\"text\",\"value\":\"public/quizzes/\",\"position\":{\"start\":{\"line\":196,\"column\":65,\"offset\":5826},\"end\":{\"line\":196,\"column\":82,\"offset\":5843}}}],\"position\":{\"start\":{\"line\":196,\"column\":65,\"offset\":5826},\"end\":{\"line\":196,\"column\":82,\"offset\":5843}}},\"children\":\"public/quizzes/\"}],\" directory) should include code to communicate with the parent page:\"]}]\n49:T8da,"])</script><script>self.__next_f.push([1,"\u003c!-- public/quizzes/quiz1.html --\u003e\n\u003c!DOCTYPE html\u003e\n\u003chtml lang=\"en\"\u003e\n\u003chead\u003e\n  \u003cmeta charset=\"UTF-8\"\u003e\n  \u003cmeta name=\"viewport\" content=\"width=device-width, initial-scale=1.0\"\u003e\n  \u003ctitle\u003eQuiz 1\u003c/title\u003e\n  \u003cstyle\u003e\n    body { font-family: Arial, sans-serif; max-width: 800px; margin: 0 auto; padding: 20px; }\n    .question { margin-bottom: 20px; }\n    button { padding: 10px 20px; background: #4285f4; color: white; border: none; border-radius: 4px; cursor: pointer; }\n  \u003c/style\u003e\n\u003c/head\u003e\n\u003cbody\u003e\n  \u003ch2\u003eScience Quiz\u003c/h2\u003e\n  \u003cform id=\"quizForm\" onsubmit=\"calculateScore(); return false;\"\u003e\n    \u003cdiv class=\"question\"\u003e\n      \u003cp\u003e1. What is the chemical symbol for water?\u003c/p\u003e\n      \u003cinput type=\"radio\" name=\"q1\" value=\"a\" id=\"q1a\"\u003e\n      \u003clabel for=\"q1a\"\u003eO2\u003c/label\u003e\u003cbr\u003e\n      \u003cinput type=\"radio\" name=\"q1\" value=\"b\" id=\"q1b\"\u003e\n      \u003clabel for=\"q1b\"\u003eH2O\u003c/label\u003e\u003cbr\u003e\n      \u003cinput type=\"radio\" name=\"q1\" value=\"c\" id=\"q1c\"\u003e\n      \u003clabel for=\"q1c\"\u003eCO2\u003c/label\u003e\n    \u003c/div\u003e\n    \n    \u003cdiv class=\"question\"\u003e\n      \u003cp\u003e2. Which planet is known as the Red Planet?\u003c/p\u003e\n      \u003cinput type=\"radio\" name=\"q2\" value=\"a\" id=\"q2a\"\u003e\n      \u003clabel for=\"q2a\"\u003eVenus\u003c/label\u003e\u003cbr\u003e\n      \u003cinput type=\"radio\" name=\"q2\" value=\"b\" id=\"q2b\"\u003e\n      \u003clabel for=\"q2b\"\u003eMars\u003c/label\u003e\u003cbr\u003e\n      \u003cinput type=\"radio\" name=\"q2\" value=\"c\" id=\"q2c\"\u003e\n      \u003clabel for=\"q2c\"\u003eJupiter\u003c/label\u003e\n    \u003c/div\u003e\n    \n    \u003cbutton type=\"submit\"\u003eSubmit Quiz\u003c/button\u003e\n  \u003c/form\u003e\n\n  \u003cscript\u003e\n    function calculateScore() {\n      const form = document.getElementById('quizForm');\n      let score = 0;\n      const answers = {\n        q1: 'b', // H2O\n        q2: 'b'  // Mars\n      };\n      \n      // Check each question\n      for (const [question, correctAnswer] of Object.entries(answers)) {\n        const selectedValue = form.elements[question].value;\n        if (selectedValue === correctAnswer) {\n          score += 1;\n        }\n      }\n      \n      const totalQuestions = Object.keys(answers).length;\n      const percentage = Math.round((score / totalQuestions) * 100);\n      \n      // Send score to parent page\n      window.parent.postMessage({ type: 'saveScore', score: percentage }, '*');\n      \n      // Show results to user\n      alert(`You scored ${percentage}% (${score}/${totalQuestions} correct)`);\n    }\n  \u003c/script\u003e\n\u003c/body\u003e\n\u003c/html\u003e\n"])</script><script>self.__next_f.push([1,"28:[\"$\",\"pre\",\"pre-3\",{\"className\":\"bg-secondary border border-border rounded-lg p-4 overflow-x-auto\",\"children\":[\"$\",\"$L1c\",\"code-0\",{\"className\":\"language-html\",\"children\":\"$49\"}]}]\n29:[\"$\",\"h2\",\"h2-4\",{\"id\":\"4-security-considerations\",\"children\":\"4. Security Considerations\"}]\n2a:[\"$\",\"p\",\"p-11\",{\"children\":\"Even with the iframe approach, there are additional security measures to consider:\"}]\n2b:[\"$\",\"h3\",\"h3-3\",{\"id\":\"content-security-policy-csp\",\"children\":\"Content Security Policy (CSP)\"}]\n2c:[\"$\",\"p\",\"p-12\",{\"children\":\"Set up a proper Content Security Policy in your Next.js application:\"}]\n2d:[\"$\",\"pre\",\"pre-4\",{\"className\":\"bg-secondary border border-border rounded-lg p-4 overflow-x-auto\",\"children\":[\"$\",\"$L1c\",\"code-0\",{\"className\":\"language-javascript\",\"children\":\"// next.config.js\\nmodule.exports = {\\n  async headers() {\\n    return [\\n      {\\n        source: '/(.*)',\\n        headers: [\\n          {\\n            key: 'Content-Security-Policy',\\n            value: \\\"default-src 'self'; frame-src 'self'; script-src 'self' 'unsafe-inline'; style-src 'self' 'unsafe-inline'\\\"\\n          }\\n        ]\\n      }\\n    ]\\n  }\\n}\\n\"}]}]\n2e:[\"$\",\"h3\",\"h3-4\",{\"id\":\"html-sanitization\",\"children\":\"HTML Sanitization\"}]\n2f:[\"$\",\"p\",\"p-13\",{\"children\":\"If you're using the direct HTML rendering approach, always sanitize any external HTML content:\"}]\n30:[\"$\",\"pre\",\"pre-5\",{\"className\":\"bg-secondary border border-border rounded-lg p-4 overflow-x-auto\",\"children\":[\"$\",\"$L1c\",\"code-0\",{\"className\":\"language-javascript\",\"children\":\"import DOMPurify from 'dompurify';\\n\\n// In your component\\nconst sanitizedHtml = DOMPurify.sanitize(quizHtml);\\n\\nreturn (\\n  \u003cdiv dangerouslySetInnerHTML={{ __html: sanitizedHtml }} /\u003e\\n);\\n\"}]}]\n31:[\"$\",\"h2\",\"h2-5\",{\"id\":\"5-enhancing-your-quiz-platform\",\"children\":\"5. Enhancing Your Quiz Platform\"}]\n32:[\"$\",\"p\",\"p-14\",{\"children\":\"To create a truly robust quiz platform, consider these additional features:\"}]\n33:[\"$\",\"h3\",\"h3-5\",{\"id\":\"authentication-ui\",\"children\":\"Authentication UI\"}]\n34:[\"$\",\"p\",\"p-15\",{\"children\":\"Integrate Firebase Authentication UI for a seamless login experience:\"}]\n35:[\"$\",\"pre\",\"pre-6\",{\"className\":\"bg-secondary border border-border rounded-lg p-4 overflow-x-auto\",\"children\":[\"$\",\"$L1c\",\"code-0\",{\"className\":\"language-javascript\",\"children\":\"// components/AuthUI.js\\nimport { useState, useEffect } from 'react';\\nimport { onAuthStateChanged, signOut } from 'firebase/auth';\\nimport { auth } from '../firebase';\\n\\nconst AuthUI = () =\u003e {\\n  const [user, setUser] = useState(null);\\n  const [loading, setLoading] = useState(true);\\n\\n  useEffect(() =\u003e {\\n    const unsubscribe = onAuthStateChanged(auth, (user) =\u003e {\\n      setUser(user);\\n      setLoading(false);\\n    });\\n\\n    return unsubscribe;\\n  }, []);\\n\\n  const handleSignOut = async () =\u003e {\\n    try {\\n      await signOut(auth);\\n    } catch (error) {\\n      console.error('Error signing out:', error);\\n    }\\n  };\\n\\n  if (loading) return \u003cdiv\u003eLoading...\u003c/div\u003e;\\n\\n  return (\\n    \u003cdiv className=\\\"auth-ui\\\"\u003e\\n      {user ? (\\n        \u003cdiv\u003e\\n          \u003cp\u003eWelcome, {user.displayName || user.email}\u003c/p\u003e\\n          \u003cbutton onClick={handleSignOut}\u003eSign Out\u003c/button\u003e\\n        \u003c/div\u003e\\n      ) : (\\n        \u003cbutton onClick={() =\u003e window.location.href = '/login'}\u003eSign In\u003c/button\u003e\\n      )}\\n    \u003c/div\u003e\\n  );\\n};\\n\\nexport default AuthUI;\\n\"}]}]\n36:[\"$\",\"h3\",\"h3-6\",{\"id\":\"score-dashboard\",\"children\":\"Score Dashboard\"}]\n37:[\"$\",\"p\",\"p-16\",{\"children\":\"Create a dashboard to display users' quiz scores:\"}]\n4a:T72e,"])</script><script>self.__next_f.push([1,"// pages/dashboard.js\nimport { useState, useEffect } from 'react';\nimport { doc, getDoc } from 'firebase/firestore';\nimport { onAuthStateChanged } from 'firebase/auth';\nimport { auth, db } from '../firebase';\n\nconst Dashboard = () =\u003e {\n  const [scores, setScores] = useState({});\n  const [loading, setLoading] = useState(true);\n  const [user, setUser] = useState(null);\n\n  useEffect(() =\u003e {\n    const unsubscribe = onAuthStateChanged(auth, async (currentUser) =\u003e {\n      setUser(currentUser);\n      \n      if (currentUser) {\n        try {\n          const userDocRef = doc(db, 'grades', currentUser.uid);\n          const userDoc = await getDoc(userDocRef);\n          \n          if (userDoc.exists()) {\n            setScores(userDoc.data());\n          }\n        } catch (error) {\n          console.error('Error fetching scores:', error);\n        } finally {\n          setLoading(false);\n        }\n      } else {\n        setLoading(false);\n      }\n    });\n    \n    return unsubscribe;\n  }, []);\n\n  if (loading) return \u003cdiv\u003eLoading your scores...\u003c/div\u003e;\n  \n  if (!user) return \u003cdiv\u003ePlease log in to view your dashboard\u003c/div\u003e;\n\n  return (\n    \u003cdiv className=\"dashboard\"\u003e\n      \u003ch1\u003eYour Quiz Scores\u003c/h1\u003e\n      \n      {Object.keys(scores).length \u003e 0 ? (\n        \u003cul className=\"scores-list\"\u003e\n          {Object.entries(scores).map(([quizId, data]) =\u003e (\n            \u003cli key={quizId} className=\"score-item\"\u003e\n              \u003cdiv className=\"quiz-name\"\u003eQuiz: {quizId}\u003c/div\u003e\n              \u003cdiv className=\"quiz-score\"\u003eScore: {data.score}%\u003c/div\u003e\n              \u003cdiv className=\"quiz-date\"\u003e\n                Completed: {new Date(data.updatedAt.toDate()).toLocaleString()}\n              \u003c/div\u003e\n            \u003c/li\u003e\n          ))}\n        \u003c/ul\u003e\n      ) : (\n        \u003cp\u003eYou haven't completed any quizzes yet.\u003c/p\u003e\n      )}\n    \u003c/div\u003e\n  );\n};\n\nexport default Dashboard;\n"])</script><script>self.__next_f.push([1,"38:[\"$\",\"pre\",\"pre-7\",{\"className\":\"bg-secondary border border-border rounded-lg p-4 overflow-x-auto\",\"children\":[\"$\",\"$L1c\",\"code-0\",{\"className\":\"language-javascript\",\"children\":\"$4a\"}]}]\n39:[\"$\",\"h3\",\"h3-7\",{\"id\":\"admin-quiz-management\",\"children\":\"Admin Quiz Management\"}]\n3a:[\"$\",\"p\",\"p-17\",{\"children\":\"For educators or administrators, implement a quiz management system:\"}]\n4b:T8ee,"])</script><script>self.__next_f.push([1,"// pages/admin/quizzes.js\nimport { useState } from 'react';\nimport { ref, uploadBytes, getDownloadURL } from 'firebase/storage';\nimport { storage } from '../../firebase';\n\nconst QuizManagement = () =\u003e {\n  const [file, setFile] = useState(null);\n  const [quizId, setQuizId] = useState('');\n  const [uploading, setUploading] = useState(false);\n  const [message, setMessage] = useState('');\n\n  const handleFileChange = (e) =\u003e {\n    if (e.target.files[0]) {\n      setFile(e.target.files[0]);\n    }\n  };\n\n  const handleUpload = async (e) =\u003e {\n    e.preventDefault();\n    \n    if (!file || !quizId) {\n      setMessage('Please select a file and provide a quiz ID');\n      return;\n    }\n    \n    setUploading(true);\n    setMessage('');\n    \n    try {\n      // Upload to Firebase Storage\n      const storageRef = ref(storage, `quizzes/${quizId}.html`);\n      await uploadBytes(storageRef, file);\n      const downloadURL = await getDownloadURL(storageRef);\n      \n      setMessage(`Quiz uploaded successfully! URL: ${downloadURL}`);\n      setFile(null);\n      setQuizId('');\n    } catch (error) {\n      console.error('Error uploading quiz:', error);\n      setMessage(`Error uploading quiz: ${error.message}`);\n    } finally {\n      setUploading(false);\n    }\n  };\n\n  return (\n    \u003cdiv className=\"admin-panel\"\u003e\n      \u003ch1\u003eQuiz Management\u003c/h1\u003e\n      \n      \u003cform onSubmit={handleUpload} className=\"upload-form\"\u003e\n        \u003cdiv className=\"form-group\"\u003e\n          \u003clabel htmlFor=\"quizId\"\u003eQuiz ID:\u003c/label\u003e\n          \u003cinput\n            type=\"text\"\n            id=\"quizId\"\n            value={quizId}\n            onChange={(e) =\u003e setQuizId(e.target.value)}\n            placeholder=\"e.g., science-quiz-1\"\n            required\n          /\u003e\n        \u003c/div\u003e\n        \n        \u003cdiv className=\"form-group\"\u003e\n          \u003clabel htmlFor=\"quizFile\"\u003eQuiz HTML File:\u003c/label\u003e\n          \u003cinput\n            type=\"file\"\n            id=\"quizFile\"\n            accept=\".html\"\n            onChange={handleFileChange}\n            required\n          /\u003e\n        \u003c/div\u003e\n        \n        \u003cbutton type=\"submit\" disabled={uploading}\u003e\n          {uploading ? 'Uploading...' : 'Upload Quiz'}\n        \u003c/button\u003e\n      \u003c/form\u003e\n      \n      {message \u0026\u0026 \u003cdiv className=\"message\"\u003e{message}\u003c/div\u003e}\n    \u003c/div\u003e\n  );\n};\n\nexport default QuizManagement;\n"])</script><script>self.__next_f.push([1,"3b:[\"$\",\"pre\",\"pre-8\",{\"className\":\"bg-secondary border border-border rounded-lg p-4 overflow-x-auto\",\"children\":[\"$\",\"$L1c\",\"code-0\",{\"className\":\"language-javascript\",\"children\":\"$4b\"}]}]\n3c:[\"$\",\"h2\",\"h2-6\",{\"id\":\"performance-optimization\",\"children\":\"Performance Optimization\"}]\n3d:[\"$\",\"p\",\"p-18\",{\"children\":\"To ensure your quiz platform runs smoothly, implement these additional optimizations:\"}]\n3e:[\"$\",\"ol\",\"ol-0\",{\"children\":[\"\\n\",[\"$\",\"li\",\"li-0\",{\"children\":[\"\\n\",[\"$\",\"p\",\"p-0\",{\"children\":[[\"$\",\"strong\",\"strong-0\",{\"children\":\"Implement caching\"}],\": Use Firestore's offline capabilities to allow users to take quizzes without an internet connection.\"]}],\"\\n\"]}],\"\\n\",[\"$\",\"li\",\"li-1\",{\"children\":[\"\\n\",[\"$\",\"p\",\"p-0\",{\"children\":[[\"$\",\"strong\",\"strong-0\",{\"children\":\"Lazy loading\"}],\": Only load quiz content when necessary to reduce initial page load times.\"]}],\"\\n\"]}],\"\\n\",[\"$\",\"li\",\"li-2\",{\"children\":[\"\\n\",[\"$\",\"p\",\"p-0\",{\"children\":[[\"$\",\"strong\",\"strong-0\",{\"children\":\"Server-side rendering for dashboard pages\"}],\": Pre-render data-heavy pages to improve perceived performance.\"]}],\"\\n\"]}],\"\\n\",[\"$\",\"li\",\"li-3\",{\"children\":[\"\\n\",[\"$\",\"p\",\"p-0\",{\"children\":[[\"$\",\"strong\",\"strong-0\",{\"children\":\"Implement analytics\"}],\": Track quiz completion rates and user engagement to identify areas for improvement.\"]}],\"\\n\"]}],\"\\n\"]}]\n3f:[\"$\",\"h2\",\"h2-7\",{\"id\":\"conclusion\",\"children\":\"Conclusion\"}]\n40:[\"$\",\"p\",\"p-19\",{\"children\":\"Building a high-performance quiz platform with Next.js and Firebase requires careful planning and implementation. By centralizing Firebase initialization, securing content with iframes or proper sanitization, and implementing additional features like user dashboards and admin panels, you can create a robust, maintainable quiz application.\"}]\n41:[\"$\",\"p\",\"p-20\",{\"children\":\"The approaches outlined in this guide will help you avoid common pitfalls, enhance security, and provide a seamless experience for both students and educators. Whether you're building an educational platform, a corporate training tool, or just a fun quiz site, these techniques will help you create a professional-grade solution.\"}]\n42:[\"$\",\"p\",\"p-21\",{\"children\":\"Remember that security should always be a priority when handling user data and displaying dynamic content. Regularly audit your code and stay updated with the latest security best practices for web applications.\"}]\n44:[\"$\",\"a\",\"performance-optimization\",{\"href\":\"#performance-optimization\",\"className\":\"block text-sm text-muted-foreground hover:text-foreground transition-colors pl-0\",\"children\":\"Performance Optimization\"}]\n45:[\"$\",\"a\",\"conclusion\",{\"href\":\"#conclusion\",\"className\":\"block text-sm text-muted-foreground hover:text-foreground transition-colors pl-0\",\"children\":\"Conclusion\"}]\n"])</script><script>self.__next_f.push([1,"f:[[\"$\",\"meta\",\"0\",{\"charSet\":\"utf-8\"}],[\"$\",\"meta\",\"1\",{\"name\":\"viewport\",\"content\":\"width=device-width, initial-scale=1\"}],[\"$\",\"meta\",\"2\",{\"name\":\"theme-color\",\"content\":\"#000000\"}]]\n"])</script><script>self.__next_f.push([1,"4c:I[27201,[\"/_next/static/chunks/ff1a16fafef87110.js\",\"/_next/static/chunks/bd395c328f5600f0.js\"],\"IconMark\"]\nd:null\n"])</script><script>self.__next_f.push([1,"11:[[\"$\",\"title\",\"0\",{\"children\":\"Complete Guide: Building a High-Performance Quiz Platform with Next.js and Firebase Integration\"}],[\"$\",\"meta\",\"1\",{\"name\":\"description\",\"content\":\"A comprehensive guide to building a secure, high-performance quiz platform with Next.js and Firebase, featuring authentication, real-time scoring, iframe isolation, and admin management capabilities.\"}],[\"$\",\"meta\",\"2\",{\"name\":\"author\",\"content\":\"Daniel Kliewer\"}],[\"$\",\"meta\",\"3\",{\"name\":\"keywords\",\"content\":\"AI,LLM,RAG,Software Engineer,Machine Learning,Next.js,React,Python,TypeScript,Local LLM,Ollama,Autonomous Agents,Data Sovereignty,Privacy-Focused AI,Knowledge Graphs,GraphRAG,Austin,Texas,Freelance\"}],[\"$\",\"meta\",\"4\",{\"name\":\"creator\",\"content\":\"Daniel Kliewer\"}],[\"$\",\"meta\",\"5\",{\"name\":\"publisher\",\"content\":\"Daniel Kliewer\"}],[\"$\",\"meta\",\"6\",{\"name\":\"robots\",\"content\":\"index, follow\"}],[\"$\",\"meta\",\"7\",{\"name\":\"googlebot\",\"content\":\"index, follow, max-video-preview:-1, max-image-preview:large, max-snippet:-1\"}],[\"$\",\"meta\",\"8\",{\"name\":\"category\",\"content\":\"technology\"}],[\"$\",\"link\",\"9\",{\"rel\":\"canonical\",\"href\":\"https://danielkliewer.com\"}],[\"$\",\"link\",\"10\",{\"rel\":\"alternate\",\"hrefLang\":\"en-US\",\"href\":\"https://danielkliewer.com\"}],[\"$\",\"meta\",\"11\",{\"name\":\"apple-itunes-app\",\"content\":\"app-id=123456789\"}],[\"$\",\"meta\",\"12\",{\"name\":\"format-detection\",\"content\":\"telephone=no, address=no, email=no\"}],[\"$\",\"meta\",\"13\",{\"name\":\"google-site-verification\",\"content\":\"google-site-verification-code\"}],[\"$\",\"meta\",\"14\",{\"name\":\"yandex-verification\",\"content\":\"yandex-verification-code\"}],[\"$\",\"meta\",\"15\",{\"property\":\"al:ios:url\",\"content\":\"https://apps.apple.com/app/id123456789\"}],[\"$\",\"meta\",\"16\",{\"property\":\"al:ios:app_store_id\",\"content\":\"123456789\"}],[\"$\",\"meta\",\"17\",{\"property\":\"al:android:package\",\"content\":\"com.danielkliewer.app\"}],[\"$\",\"meta\",\"18\",{\"property\":\"al:android:app_name\",\"content\":\"Daniel Kliewer\"}],[\"$\",\"link\",\"19\",{\"rel\":\"icon\",\"href\":\"/favicon.ico?favicon.0b3bf435.ico\",\"sizes\":\"256x256\",\"type\":\"image/x-icon\"}],[\"$\",\"$L4c\",\"20\",{}]]\n"])</script></body></html>