admin/38789-vm
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

Initial commit of pro-se-litigant application

Browse Source
This commit is contained in:
gamvo74 2026-02-22 02:52:17 -05:00
parent 1a92f4afa0
commit 427e7b12e3
42 changed files with 15199 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

58
apps/api/.gitignore vendored Normal file
View File

@ -0,0 +1,58 @@
# compiled output
/dist
/node_modules
/build
# Logs
logs
*.log
npm-debug.log*
pnpm-debug.log*
yarn-debug.log*
yarn-error.log*
lerna-debug.log*
# OS
.DS_Store
# Tests
/coverage
/.nyc_output
# IDEs and editors
/.idea
.project
.classpath
.c9/
*.launch
.settings/
*.sublime-workspace
# IDE - VSCode
.vscode/*
!.vscode/settings.json
!.vscode/tasks.json
!.vscode/launch.json
!.vscode/extensions.json
# dotenv environment variable files
.env
.env.development.local
.env.test.local
.env.production.local
.env.local
# temp directory
.temp
.tmp
# Runtime data
pids
*.pid
*.seed
*.pid.lock
# Diagnostic reports (https://nodejs.org/api/report.html)
report.[0-9]*.[0-9]*.[0-9]*.[0-9]*.json
/generated/prisma

4
apps/api/.prettierrc Normal file
View File

@ -0,0 +1,4 @@
{
"singleQuote": true,
"trailingComma": "all"
}

43
apps/api/Dockerfile Normal file
View File

@ -0,0 +1,43 @@
# Stage 1: Build
FROM node:22-alpine AS builder
WORKDIR /app
# Copy package files
COPY package*.json ./
COPY prisma ./prisma/
# Install dependencies
RUN npm ci
# Copy source code
COPY . .
# Generate Prisma client
RUN npx prisma generate
# Build the application
RUN npm run build
# Stage 2: Production
FROM node:22-alpine
WORKDIR /app
# Install compatibility libraries for Prisma
RUN apk add --no-cache libc6-compat gcompat openssl
COPY --from=builder /app/package*.json ./
COPY --from=builder /app/node_modules ./node_modules
COPY --from=builder /app/dist ./dist
COPY --from=builder /app/prisma ./prisma
# Create a non-root user
RUN addgroup -S appgroup && adduser -S appuser -G appgroup
USER appuser
EXPOSE 4000
ENV NODE_ENV=production
CMD ["node", "dist/main"]

104
apps/api/README.md Normal file
View File

@ -0,0 +1,104 @@
<p align="center">
<a href="http://nestjs.com/" target="blank"><img src="https://nestjs.com/img/logo-small.svg" width="120" alt="Nest Logo" /></a>
</p>
[circleci-image]: https://img.shields.io/circleci/build/github/nestjs/nest/master?token=abc123def456
[circleci-url]: https://circleci.com/gh/nestjs/nest
<p align="center">A progressive <a href="http://nodejs.org" target="_blank">Node.js</a> framework for building efficient and scalable server-side applications.</p>
<p align="center">
<a href="https://www.npmjs.com/~nestjscore" target="_blank"><img src="https://img.shields.io/npm/v/@nestjs/core.svg" alt="NPM Version" /></a>
<a href="https://www.npmjs.com/~nestjscore" target="_blank"><img src="https://img.shields.io/npm/l/@nestjs/core.svg" alt="Package License" /></a>
<a href="https://www.npmjs.com/~nestjscore" target="_blank"><img src="https://img.shields.io/npm/dm/@nestjs/common.svg" alt="NPM Downloads" /></a>
<a href="https://circleci.com/gh/nestjs/nest" target="_blank"><img src="https://img.shields.io/circleci/build/github/nestjs/nest/master" alt="CircleCI" /></a>
<a href="https://discord.gg/G7Qnnhy" target="_blank"><img src="https://img.shields.io/badge/discord-online-brightgreen.svg" alt="Discord"/></a>
<a href="https://opencollective.com/nest#backer" target="_blank"><img src="https://opencollective.com/nest/backers/badge.svg" alt="Backers on Open Collective" /></a>
<a href="https://opencollective.com/nest#sponsor" target="_blank"><img src="https://opencollective.com/nest/sponsors/badge.svg" alt="Sponsors on Open Collective" /></a>
<a href="https://paypal.me/kamilmysliwiec" target="_blank"><img src="https://img.shields.io/badge/Donate-PayPal-ff3f59.svg" alt="Donate us"/></a>
<a href="https://opencollective.com/nest#sponsor" target="_blank"><img src="https://img.shields.io/badge/Support%20us-Open%20Collective-41B883.svg" alt="Support us"></a>
<a href="https://twitter.com/nestframework" target="_blank"><img src="https://img.shields.io/twitter/follow/nestframework.svg?style=social&label=Follow" alt="Follow us on Twitter"></a>
</p>
<!--[![Backers on Open Collective](https://opencollective.com/nest/backers/badge.svg)](https://opencollective.com/nest#backer)
[![Sponsors on Open Collective](https://opencollective.com/nest/sponsors/badge.svg)](https://opencollective.com/nest#sponsor)-->
## Description
[Nest](https://github.com/nestjs/nest) framework TypeScript starter repository for the Pro Se Litigant API.
## Features Added
- **RBAC (Role-Based Access Control):** Uses `@Roles` decorator and global `RolesGuard` to manage access (USER/ADMIN).
- **Rate Limiting:** Global throttling enabled via `ThrottlerModule`.
- **Structured Logging:** Uses `nestjs-pino` with custom request ID correlation.
- **CI/CD:** Automated deployment to AWS ECS with GitHub Actions.
## Project setup
```bash
$ npm install
```
## Compile and run the project
```bash
# development
$ npm run start
# watch mode
$ npm run start:dev
# production mode
$ npm run start:prod
```
## Run tests
```bash
# unit tests
$ npm run test
# e2e tests
$ npm run test:e2e
# test coverage
$ npm run test:cov
```
## Deployment
When you're ready to deploy your NestJS application to production, there are some key steps you can take to ensure it runs as efficiently as possible. Check out the [deployment documentation](https://docs.nestjs.com/deployment) for more information.
If you are looking for a cloud-based platform to deploy your NestJS application, check out [Mau](https://mau.nestjs.com), our official platform for deploying NestJS applications on AWS. Mau makes deployment straightforward and fast, requiring just a few simple steps:
```bash
$ npm install -g @nestjs/mau
$ mau deploy
```
With Mau, you can deploy your application in just a few clicks, allowing you to focus on building features rather than managing infrastructure.
## Resources
Check out a few resources that may come in handy when working with NestJS:
- Visit the [NestJS Documentation](https://docs.nestjs.com) to learn more about the framework.
- For questions and support, please visit our [Discord channel](https://discord.gg/G7Qnnhy).
- To dive deeper and get more hands-on experience, check out our official video [courses](https://courses.nestjs.com/).
- Deploy your application to AWS with the help of [NestJS Mau](https://mau.nestjs.com) in just a few clicks.
- Visualize your application graph and interact with the NestJS application in real-time using [NestJS Devtools](https://devtools.nestjs.com).
- Need help with your project (part-time to full-time)? Check out our official [enterprise support](https://enterprise.nestjs.com).
- To stay in the loop and get updates, follow us on [X](https://x.com/nestframework) and [LinkedIn](https://linkedin.com/company/nestjs).
- Looking for a job, or have a job to offer? Check out our official [Jobs board](https://jobs.nestjs.com).
## Support
Nest is an MIT-licensed open source project. It can grow thanks to the sponsors and support by the amazing backers. If you'd like to join them, please [read more here](https://docs.nestjs.com/support).
## Stay in touch
- Author - [Kamil Myśliwiec](https://twitter.com/kammysliwiec)
- Website - [https://nestjs.com](https://nestjs.com/)
- Twitter - [@nestframework](https://twitter.com/nestframework)
## License
Nest is [MIT licensed](https://github.com/nestjs/nest/blob/master/LICENSE).

35
apps/api/eslint.config.mjs Normal file
View File

@ -0,0 +1,35 @@
// @ts-check
import eslint from '@eslint/js';
import eslintPluginPrettierRecommended from 'eslint-plugin-prettier/recommended';
import globals from 'globals';
import tseslint from 'typescript-eslint';
export default tseslint.config(
{
ignores: ['eslint.config.mjs'],
},
eslint.configs.recommended,
...tseslint.configs.recommendedTypeChecked,
eslintPluginPrettierRecommended,
{
languageOptions: {
globals: {
...globals.node,
...globals.jest,
},
sourceType: 'commonjs',
parserOptions: {
projectService: true,
tsconfigRootDir: import.meta.dirname,
},
},
},
{
rules: {
'@typescript-eslint/no-explicit-any': 'off',
'@typescript-eslint/no-floating-promises': 'warn',
'@typescript-eslint/no-unsafe-argument': 'warn',
"prettier/prettier": ["error", { endOfLine: "auto" }],
},
},
);

8
apps/api/nest-cli.json Normal file
View File

@ -0,0 +1,8 @@
{
"$schema": "https://json.schemastore.org/nest-cli",
"collection": "@nestjs/schematics",
"sourceRoot": "src",
"compilerOptions": {
"deleteOutDir": true
}
}

14103
apps/api/package-lock.json generated Normal file
View File

File diff suppressed because it is too large Load Diff

100
apps/api/package.json Normal file
View File

@ -0,0 +1,100 @@
{
"name": "api",
"version": "0.0.1",
"description": "",
"author": "",
"private": true,
"license": "UNLICENSED",
"scripts": {
"build": "nest build",
"format": "prettier --write \"src/**/*.ts\" \"test/**/*.ts\"",
"start": "nest start",
"start:dev": "nest start --watch",
"start:debug": "nest start --debug --watch",
"start:prod": "node dist/main",
"lint": "eslint \"{src,apps,libs,test}/**/*.ts\" --fix",
"test": "jest",
"test:watch": "jest --watch",
"test:cov": "jest --coverage",
"test:debug": "node --inspect-brk -r tsconfig-paths/register -r ts-node/register node_modules/.bin/jest --runInBand",
"test:e2e": "jest --config ./test/jest-e2e.json"
},
"dependencies": {
"@nestjs/common": "^11.0.1",
"@nestjs/config": "^4.0.3",
"@nestjs/core": "^11.0.1",
"@nestjs/jwt": "^11.0.2",
"@nestjs/passport": "^11.0.5",
"@nestjs/platform-express": "^11.0.1",
"@nestjs/terminus": "^11.1.1",
"@nestjs/throttler": "^6.5.0",
"@prisma/client": "^5.13.0",
"aws-sdk": "^2.1693.0",
"bcrypt": "^6.0.0",
"bullmq": "^5.69.3",
"class-transformer": "^0.5.1",
"class-validator": "^0.14.3",
"helmet": "^8.1.0",
"ioredis": "^5.9.3",
"nestjs-pino": "^4.6.0",
"openai": "^6.22.0",
"passport": "^0.7.0",
"passport-jwt": "^4.0.1",
"pino-http": "^11.0.0",
"prisma": "^5.13.0",
"prisma-generator-typescript-interfaces": "^3.1.0",
"reflect-metadata": "^0.2.2",
"rxjs": "^7.8.1",
"stripe": "^20.3.1",
"uuid": "^11.0.5"
},
"devDependencies": {
"@elastic/elasticsearch": "^9.3.1",
"@eslint/eslintrc": "^3.2.0",
"@eslint/js": "^9.18.0",
"@nestjs/cli": "^11.0.0",
"@nestjs/schematics": "^11.0.0",
"@nestjs/testing": "^11.0.1",
"@types/bcrypt": "^6.0.0",
"@types/express": "^5.0.0",
"@types/jest": "^30.0.0",
"@types/node": "^22.10.7",
"@types/passport-jwt": "^4.0.1",
"@types/supertest": "^6.0.2",
"@types/uuid": "^10.0.0",
"eslint": "^9.18.0",
"eslint-config-prettier": "^10.0.1",
"eslint-plugin-prettier": "^5.2.2",
"globals": "^16.0.0",
"install": "^0.13.0",
"jest": "^30.0.0",
"npm": "^11.10.0",
"pino-pretty": "^13.1.3",
"prettier": "^3.4.2",
"source-map-support": "^0.5.21",
"supertest": "^7.0.0",
"ts-jest": "^29.2.5",
"ts-loader": "^9.5.2",
"ts-node": "^10.9.2",
"tsconfig-paths": "^4.2.0",
"typescript": "^5.7.3",
"typescript-eslint": "^8.20.0"
},
"jest": {
"moduleFileExtensions": [
"js",
"json",
"ts"
],
"rootDir": "src",
"testRegex": ".*\\.spec\\.ts$",
"transform": {
"^.+\\.(t|j)s$": "ts-jest"
},
"collectCoverageFrom": [
"**/*.(t|j)s"
],
"coverageDirectory": "../coverage",
"testEnvironment": "node"
}
}

29
apps/api/prisma/migrations/20260218160400_init/migration.sql Normal file
View File

@ -0,0 +1,29 @@
-- CreateEnum
CREATE TYPE "Role" AS ENUM ('FreeUser', 'PremiumUser', 'Admin');
-- CreateTable
CREATE TABLE "User" (
"id" TEXT NOT NULL,
"email" TEXT NOT NULL,
"password" TEXT NOT NULL,
"role" "Role" NOT NULL DEFAULT 'FreeUser',
"createdAt" TIMESTAMP(3) NOT NULL DEFAULT CURRENT_TIMESTAMP,
CONSTRAINT "User_pkey" PRIMARY KEY ("id")
);
-- CreateTable
CREATE TABLE "Matter" (
"id" TEXT NOT NULL,
"title" TEXT NOT NULL,
"userId" TEXT NOT NULL,
"createdAt" TIMESTAMP(3) NOT NULL DEFAULT CURRENT_TIMESTAMP,
CONSTRAINT "Matter_pkey" PRIMARY KEY ("id")
);
-- CreateIndex
CREATE UNIQUE INDEX "User_email_key" ON "User"("email");
-- AddForeignKey
ALTER TABLE "Matter" ADD CONSTRAINT "Matter_userId_fkey" FOREIGN KEY ("userId") REFERENCES "User"("id") ON DELETE RESTRICT ON UPDATE CASCADE;

28
apps/api/prisma/migrations/20260220015604_add_matters/migration.sql Normal file
View File

@ -0,0 +1,28 @@
/*
Warnings:
- The values [FreeUser,PremiumUser,Admin] on the enum `Role` will be removed. If these variants are still used in the database, this will fail.
*/
-- AlterEnum
BEGIN;
CREATE TYPE "Role_new" AS ENUM ('USER', 'ADMIN');
ALTER TABLE "User" ALTER COLUMN "role" DROP DEFAULT;
ALTER TABLE "User" ALTER COLUMN "role" TYPE "Role_new" USING ("role"::text::"Role_new");
ALTER TYPE "Role" RENAME TO "Role_old";
ALTER TYPE "Role_new" RENAME TO "Role";
DROP TYPE "Role_old";
ALTER TABLE "User" ALTER COLUMN "role" SET DEFAULT 'USER';
COMMIT;
-- DropForeignKey
ALTER TABLE "Matter" DROP CONSTRAINT "Matter_userId_fkey";
-- AlterTable
ALTER TABLE "Matter" ADD COLUMN "description" TEXT;
-- AlterTable
ALTER TABLE "User" ALTER COLUMN "role" SET DEFAULT 'USER';
-- AddForeignKey
ALTER TABLE "Matter" ADD CONSTRAINT "Matter_userId_fkey" FOREIGN KEY ("userId") REFERENCES "User"("id") ON DELETE CASCADE ON UPDATE CASCADE;

3
apps/api/prisma/migrations/migration_lock.toml Normal file
View File

@ -0,0 +1,3 @@
# Please do not edit this file manually
# It should be added in your version-control system (i.e. Git)
provider = "postgresql"

32
apps/api/prisma/schema.prisma Normal file
View File

@ -0,0 +1,32 @@
generator client {
provider = "prisma-client-js"
binaryTargets = ["native", "linux-musl-openssl-3.0.x"]
}
datasource db {
provider = "postgresql"
url = env("DATABASE_URL")
}
enum Role {
USER
ADMIN
}
model User {
id String @id @default(uuid())
email String @unique
password String
role Role @default(USER)
matters Matter[]
createdAt DateTime @default(now())
}
model Matter {
id String @id @default(uuid())
title String
description String?
userId String
user User @relation(fields: [userId], references: [id], onDelete: Cascade)
createdAt DateTime @default(now())
}

22
apps/api/src/app.controller.spec.ts Normal file
View File

@ -0,0 +1,22 @@
import { Test, TestingModule } from '@nestjs/testing';
import { AppController } from './app.controller';
import { AppService } from './app.service';
describe('AppController', () => {
let appController: AppController;
beforeEach(async () => {
const app: TestingModule = await Test.createTestingModule({
controllers: [AppController],
providers: [AppService],
}).compile();
appController = app.get<AppController>(AppController);
});
describe('root', () => {
it('should return "Hello World!"', () => {
expect(appController.getHello()).toBe('Hello World!');
});
});
});

9
apps/api/src/app.controller.ts Normal file
View File

@ -0,0 +1,9 @@
import { Controller, Get } from '@nestjs/common';
@Controller()
export class AppController {
@Get()
getHello() {
return { status: 'API running' };
}
}

55
apps/api/src/app.module.ts Normal file
View File

@ -0,0 +1,55 @@
import { Module } from '@nestjs/common';
import { ConfigModule, ConfigService } from '@nestjs/config';
import { ThrottlerModule, ThrottlerModuleOptions, ThrottlerGuard } from '@nestjs/throttler';
import { APP_GUARD } from '@nestjs/core';
import { LoggerModule } from 'nestjs-pino';
import { v4 as uuidv4 } from 'uuid';
import configuration from './config/configuration';
import { AuthModule } from './auth/auth.module';
import { MattersModule } from './matters/matters.module';
import { PrismaService } from './prisma.service';
import { HealthModule } from './health/health.module';
import { RolesGuard } from './auth/roles.guard';
@Module({
imports: [
ConfigModule.forRoot({
isGlobal: true,
load: [configuration],
}),
ThrottlerModule.forRootAsync({
imports: [ConfigModule],
inject: [ConfigService],
useFactory: (config: ConfigService): ThrottlerModuleOptions => [
{
ttl: config.get<number>('rateLimit.ttl') || 60,
limit: config.get<number>('rateLimit.limit') || 100,
},
],
}),
LoggerModule.forRoot({
pinoHttp: {
genReqId: (req) => req.headers['x-request-id'] || uuidv4(),
level: process.env.NODE_ENV !== 'production' ? 'debug' : 'info',
transport: process.env.NODE_ENV !== 'production'
? { target: 'pino-pretty', options: { colorize: true } }
: undefined,
},
}),
AuthModule,
MattersModule,
HealthModule,
],
providers: [
PrismaService,
{
provide: APP_GUARD,
useClass: ThrottlerGuard,
},
{
provide: APP_GUARD,
useClass: RolesGuard,
},
],
})
export class AppModule {}

8
apps/api/src/app.service.ts Normal file
View File

@ -0,0 +1,8 @@
import { Injectable } from '@nestjs/common';
@Injectable()
export class AppService {
getHello(): string {
return 'Hello World!';
}
}

32
apps/api/src/auth/auth.controller.ts Normal file
View File

@ -0,0 +1,32 @@
import {
Body,
Controller,
Post,
Get,
UseGuards,
Request,
} from '@nestjs/common';
import { AuthService } from './auth.service';
import { JwtAuthGuard } from './jwt.guard';
import { RegisterDto, LoginDto } from './dto/auth.dto';
@Controller('auth')
export class AuthController {
constructor(private authService: AuthService) {}
@Post('register')
register(@Body() body: RegisterDto) {
return this.authService.register(body.email, body.password);
}
@Post('login')
login(@Body() body: LoginDto) {
return this.authService.login(body.email, body.password);
}
@UseGuards(JwtAuthGuard)
@Get('profile')
getProfile(@Request() req: any) {
return req.user;
}
}

22
apps/api/src/auth/auth.module.ts Normal file
View File

@ -0,0 +1,22 @@
import { Module } from '@nestjs/common';
import { JwtModule } from '@nestjs/jwt';
import { ConfigModule, ConfigService } from '@nestjs/config';
import { AuthService } from './auth.service';
import { AuthController } from './auth.controller';
import { PrismaService } from '../prisma.service';
import { JwtStrategy } from './jwt.strategy';
@Module({
imports: [
ConfigModule,
JwtModule.registerAsync({
inject: [ConfigService],
useFactory: (config: ConfigService) => ({
secret: config.get<string>('JWT_SECRET'),
signOptions: { expiresIn: '1d' },
}),
}),
],
providers: [AuthService, PrismaService, JwtStrategy],
controllers: [AuthController],
})
export class AuthModule {}

44
apps/api/src/auth/auth.service.ts Normal file
View File

@ -0,0 +1,44 @@
import { Injectable, UnauthorizedException } from '@nestjs/common';
import { JwtService } from '@nestjs/jwt';
import { PrismaService } from '../prisma.service';
import * as bcrypt from 'bcrypt';
@Injectable()
export class AuthService {
constructor(
private prisma: PrismaService,
private jwtService: JwtService,
) {}
async register(email: string, password: string) {
const hashed = await bcrypt.hash(password, 10);
const user = await this.prisma.user.create({
data: { email, password: hashed },
});
return this.signToken(user.id, user.email, user.role);
}
async login(email: string, password: string) {
const user = await this.prisma.user.findUnique({
where: { email },
});
if (!user) throw new UnauthorizedException();
const valid = await bcrypt.compare(password, user.password);
if (!valid) throw new UnauthorizedException();
return this.signToken(user.id, user.email, user.role);
}
private async signToken(userId: string, email: string, role: string) {
const payload = { sub: userId, email, role };
return {
access_token: await this.jwtService.signAsync(payload),
};
}
}

19
apps/api/src/auth/dto/auth.dto.ts Normal file
View File

@ -0,0 +1,19 @@
import { IsEmail, IsString, MinLength, MaxLength } from 'class-validator';
export class RegisterDto {
@IsEmail({}, { message: 'Invalid email format' })
email: string;
@IsString()
@MinLength(8, { message: 'Password must be at least 8 characters long' })
@MaxLength(64, { message: 'Password is too long' })
password: string;
}
export class LoginDto {
@IsEmail()
email: string;
@IsString()
password: string;
}

5
apps/api/src/auth/jwt.guard.ts Normal file
View File

@ -0,0 +1,5 @@
import { Injectable } from '@nestjs/common';
import { AuthGuard } from '@nestjs/passport';
@Injectable()
export class JwtAuthGuard extends AuthGuard('jwt') {}

24
apps/api/src/auth/jwt.strategy.ts Normal file
View File

@ -0,0 +1,24 @@
import { Injectable } from '@nestjs/common';
import { PassportStrategy } from '@nestjs/passport';
import { ExtractJwt, Strategy } from 'passport-jwt';
import { ConfigService } from '@nestjs/config';
@Injectable()
export class JwtStrategy extends PassportStrategy(Strategy) {
constructor(config: ConfigService) {
const secret = config.get<string>('JWT_SECRET');
if (!secret) {
throw new Error('JWT_SECRET is not defined');
}
super({
jwtFromRequest: ExtractJwt.fromAuthHeaderAsBearerToken(),
secretOrKey: secret,
});
}
async validate(payload: any) {
return payload;
}
}

4
apps/api/src/auth/public.decorator.ts Normal file
View File

@ -0,0 +1,4 @@
import { SetMetadata } from '@nestjs/common';
export const IS_PUBLIC_KEY = 'isPublic';
export const Public = () => SetMetadata(IS_PUBLIC_KEY, true);

0
apps/api/src/auth/register.ts Normal file
View File

5
apps/api/src/auth/roles.decorator.ts Normal file
View File

@ -0,0 +1,5 @@
import { SetMetadata } from '@nestjs/common';
import { Role } from '@prisma/client';
export const ROLES_KEY = 'roles';
export const Roles = (...roles: Role[]) => SetMetadata(ROLES_KEY, roles);

24
apps/api/src/auth/roles.guard.ts Normal file
View File

@ -0,0 +1,24 @@
import { Injectable, CanActivate, ExecutionContext } from '@nestjs/common';
import { Reflector } from '@nestjs/core';
import { Role } from '@prisma/client';
import { ROLES_KEY } from './roles.decorator';
@Injectable()
export class RolesGuard implements CanActivate {
constructor(private reflector: Reflector) {}
canActivate(context: ExecutionContext): boolean {
const requiredRoles = this.reflector.getAllAndOverride<Role[]>(ROLES_KEY, [
context.getHandler(),
context.getClass(),
]);
if (!requiredRoles) {
return true;
}
const { user } = context.switchToHttp().getRequest();
if (!user) {
return false;
}
return requiredRoles.some((role) => user.role === role);
}
}

45
apps/api/src/common/filters/http-exception.filter.ts Normal file
View File

@ -0,0 +1,45 @@
import {
ExceptionFilter,
Catch,
ArgumentsHost,
HttpException,
HttpStatus,
Logger,
} from '@nestjs/common';
import { HttpAdapterHost } from '@nestjs/core';
@Catch()
export class AllExceptionsFilter implements ExceptionFilter {
private readonly logger = new Logger(AllExceptionsFilter.name);
constructor(private readonly httpAdapterHost: HttpAdapterHost) {}
catch(exception: unknown, host: ArgumentsHost): void {
const { httpAdapter } = this.httpAdapterHost;
const ctx = host.switchToHttp();
const httpStatus =
exception instanceof HttpException
? exception.getStatus()
: HttpStatus.INTERNAL_SERVER_ERROR;
const responseBody = {
statusCode: httpStatus,
timestamp: new Date().toISOString(),
path: httpAdapter.getRequestUrl(ctx.getRequest()),
message:
exception instanceof HttpException
? exception.getResponse()
: 'Internal server error',
};
if (httpStatus === HttpStatus.INTERNAL_SERVER_ERROR) {
this.logger.error(
`Exception: ${JSON.stringify(exception)}`,
exception instanceof Error ? exception.stack : '',
);
}
httpAdapter.reply(ctx.getResponse(), responseBody, httpStatus);
}
}

14
apps/api/src/config/configuration.ts Normal file
View File

@ -0,0 +1,14 @@
export default () => ({
port: parseInt(process.env.PORT!, 10) || 4000,
database: {
url: process.env.DATABASE_URL,
},
cors: {
origin: process.env.CORS_ORIGIN || '*',
},
rateLimit: {
ttl: parseInt(process.env.THROTTLE_TTL!, 10) || 60,
limit: parseInt(process.env.THROTTLE_LIMIT!, 10) || 100,
},
environment: process.env.NODE_ENV || 'development',
});

20
apps/api/src/health/health.controller.ts Normal file
View File

@ -0,0 +1,20 @@
import { Controller, Get } from '@nestjs/common';
import { HealthCheckService, HealthCheck, PrismaHealthIndicator } from '@nestjs/terminus';
import { PrismaService } from '../prisma.service';
@Controller('health')
export class HealthController {
constructor(
private health: HealthCheckService,
private prisma: PrismaHealthIndicator,
private prismaService: PrismaService,
) {}
@Get()
@HealthCheck()
check() {
return this.health.check([
() => this.prisma.pingCheck('database', this.prismaService),
]);
}
}

11
apps/api/src/health/health.module.ts Normal file
View File

@ -0,0 +1,11 @@
import { Module } from '@nestjs/common';
import { TerminusModule } from '@nestjs/terminus';
import { HealthController } from './health.controller';
import { PrismaService } from '../prisma.service';
@Module({
imports: [TerminusModule],
controllers: [HealthController],
providers: [PrismaService],
})
export class HealthModule {}

44
apps/api/src/main.ts Normal file
View File

@ -0,0 +1,44 @@
import { NestFactory, HttpAdapterHost } from '@nestjs/core';
import { ValidationPipe, Logger } from '@nestjs/common';
import { ConfigService } from '@nestjs/config';
import helmet from 'helmet';
import { Logger as PinoLogger } from 'nestjs-pino';
import { AppModule } from './app.module';
import { AllExceptionsFilter } from './common/filters/http-exception.filter';
async function bootstrap() {
const app = await NestFactory.create(AppModule, { bufferLogs: true });
const configService = app.get(ConfigService);
const logger = app.get(PinoLogger);
const httpAdapterHost = app.get(HttpAdapterHost);
// Structured Logging
app.useLogger(logger);
// Security Headers (Helmet)
app.use(helmet());
// Global Validation Pipe
app.useGlobalPipes(
new ValidationPipe({
whitelist: true,
forbidNonWhitelisted: true,
transform: true,
}),
);
// CORS Policy
app.enableCors({
origin: configService.get<string>('cors.origin'),
credentials: true,
});
// Centralized Exception Filter
app.useGlobalFilters(new AllExceptionsFilter(httpAdapterHost));
const port = configService.get<number>('port') || 4000;
await app.listen(port);
new Logger('Bootstrap').log(`API running on http://localhost:${port}`);
}
bootstrap();

13
apps/api/src/matters/dto/matter.dto.ts Normal file
View File

@ -0,0 +1,13 @@
import { IsString, IsNotEmpty, IsOptional, MaxLength } from 'class-validator';
export class CreateMatterDto {
@IsString()
@IsNotEmpty()
@MaxLength(255)
title: string;
@IsString()
@IsOptional()
@MaxLength(1000)
description?: string;
}

18
apps/api/src/matters/matters.controller.spec.ts Normal file
View File

@ -0,0 +1,18 @@
import { Test, TestingModule } from '@nestjs/testing';
import { MattersController } from './matters.controller';
describe('MattersController', () => {
let controller: MattersController;
beforeEach(async () => {
const module: TestingModule = await Test.createTestingModule({
controllers: [MattersController],
}).compile();
controller = module.get<MattersController>(MattersController);
});
it('should be defined', () => {
expect(controller).toBeDefined();
});
});

46
apps/api/src/matters/matters.controller.ts Normal file
View File

@ -0,0 +1,46 @@
import {
Controller,
Post,
Get,
Delete,
Param,
Body,
UseGuards,
Request,
} from '@nestjs/common';
import { MattersService } from './matters.service';
import { JwtAuthGuard } from '../auth/jwt.guard';
import { CreateMatterDto } from './dto/matter.dto';
@UseGuards(JwtAuthGuard)
@Controller('matters')
export class MattersController {
constructor(private mattersService: MattersService) {}
@Post()
create(
@Request() req: any,
@Body() body: CreateMatterDto,
) {
return this.mattersService.create(
req.user.sub,
body.title,
body.description,
);
}
@Get()
findAll(@Request() req: any) {
return this.mattersService.findAll(req.user.sub);
}
@Get(':id')
findOne(@Request() req: any, @Param('id') id: string) {
return this.mattersService.findOne(req.user.sub, id);
}
@Delete(':id')
delete(@Request() req: any, @Param('id') id: string) {
return this.mattersService.delete(req.user.sub, id);
}
}

10
apps/api/src/matters/matters.module.ts Normal file
View File

@ -0,0 +1,10 @@
import { Module } from '@nestjs/common';
import { MattersService } from './matters.service';
import { MattersController } from './matters.controller';
import { PrismaService } from '../prisma.service';
@Module({
controllers: [MattersController],
providers: [MattersService, PrismaService],
})
export class MattersModule {}

18
apps/api/src/matters/matters.service.spec.ts Normal file
View File

@ -0,0 +1,18 @@
import { Test, TestingModule } from '@nestjs/testing';
import { MattersService } from './matters.service';
describe('MattersService', () => {
let service: MattersService;
beforeEach(async () => {
const module: TestingModule = await Test.createTestingModule({
providers: [MattersService],
}).compile();
service = module.get<MattersService>(MattersService);
});
it('should be defined', () => {
expect(service).toBeDefined();
});
});

50
apps/api/src/matters/matters.service.ts Normal file
View File

@ -0,0 +1,50 @@
import { Injectable, ForbiddenException } from '@nestjs/common';
import { PrismaService } from '../prisma.service';
@Injectable()
export class MattersService {
constructor(private prisma: PrismaService) {}
async create(userId: string, title: string, description?: string) {
return this.prisma.matter.create({
data: {
title,
description,
userId,
},
});
}
async findAll(userId: string) {
return this.prisma.matter.findMany({
where: { userId },
orderBy: { createdAt: 'desc' },
});
}
async findOne(userId: string, id: string) {
const matter = await this.prisma.matter.findUnique({
where: { id },
});
if (!matter || matter.userId !== userId) {
throw new ForbiddenException('Access denied');
}
return matter;
}
async delete(userId: string, id: string) {
const matter = await this.prisma.matter.findUnique({
where: { id },
});
if (!matter || matter.userId !== userId) {
throw new ForbiddenException('Access denied');
}
return this.prisma.matter.delete({
where: { id },
});
}
}

27
apps/api/src/prisma.service.ts Normal file
View File

@ -0,0 +1,27 @@
import { Injectable, OnModuleInit, OnModuleDestroy } from '@nestjs/common';
import { PrismaClient } from '@prisma/client';
import { ConfigService } from '@nestjs/config';
@Injectable()
export class PrismaService
extends PrismaClient
implements OnModuleInit, OnModuleDestroy
{
constructor(config: ConfigService) {
super({
datasources: {
db: {
url: config.get<string>('database.url'),
},
},
});
}
async onModuleInit() {
await this.$connect();
}
async onModuleDestroy() {
await this.$disconnect();
}
}

25
apps/api/test/app.e2e-spec.ts Normal file
View File

@ -0,0 +1,25 @@
import { Test, TestingModule } from '@nestjs/testing';
import { INestApplication } from '@nestjs/common';
import request from 'supertest';
import { App } from 'supertest/types';
import { AppModule } from './../src/app.module';
describe('AppController (e2e)', () => {
let app: INestApplication<App>;
beforeEach(async () => {
const moduleFixture: TestingModule = await Test.createTestingModule({
imports: [AppModule],
}).compile();
app = moduleFixture.createNestApplication();
await app.init();
});
it('/ (GET)', () => {
return request(app.getHttpServer())
.get('/')
.expect(200)
.expect('Hello World!');
});
});

9
apps/api/test/jest-e2e.json Normal file
View File

@ -0,0 +1,9 @@
{
"moduleFileExtensions": ["js", "json", "ts"],
"rootDir": ".",
"testEnvironment": "node",
"testRegex": ".e2e-spec.ts$",
"transform": {
"^.+\\.(t|j)s$": "ts-jest"
}
}

4
apps/api/tsconfig.build.json Normal file
View File

@ -0,0 +1,4 @@
{
"extends": "./tsconfig.json",
"exclude": ["node_modules", "test", "dist", "**/*spec.ts"]
}

25
apps/api/tsconfig.json Normal file
View File

@ -0,0 +1,25 @@
{
"compilerOptions": {
"module": "nodenext",
"moduleResolution": "nodenext",
"resolvePackageJsonExports": true,
"esModuleInterop": true,
"isolatedModules": true,
"declaration": true,
"removeComments": true,
"emitDecoratorMetadata": true,
"experimentalDecorators": true,
"allowSyntheticDefaultImports": true,
"target": "ES2023",
"sourceMap": true,
"outDir": "./dist",
"baseUrl": "./",
"incremental": true,
"skipLibCheck": true,
"strictNullChecks": true,
"forceConsistentCasingInFileNames": true,
"noImplicitAny": false,
"strictBindCallApply": false,
"noFallthroughCasesInSwitch": false
}
}