🚀 NestJS Microservice Boilerplate API

Enterprise-grade, production-ready NestJS boilerplate with modern architecture patterns

Code Coverage

Statements	Branches	Functions	Lines

📑 Table of Contents

Overview
Architecture
Key Features
Tech Stack
Prerequisites
Quick Start
Running the Application
Database Migrations
CRUD Scaffolding
Testing
API Documentation
Documentation
Observability
Code Quality
Project Structure
Advanced Usage
Contributing
License
Contributors
Support
Resources

🎯 Overview

This boilerplate provides a production-ready foundation for building scalable microservices with NestJS. It implements industry-standard architecture patterns including Onion Architecture, Domain-Driven Design (DDD), and Ports and Adapters (Hexagonal Architecture).

Built with enterprise needs in mind, it offers comprehensive features for authentication, authorization, multi-database support, observability, and automated CRUD generation - allowing teams to focus on business logic rather than infrastructure.

🏗️ Architecture

This project follows Clean Architecture principles with a focus on maintainability, testability, and scalability.

Architectural Patterns

1. Onion Architecture

The codebase is organized in concentric layers where dependencies point inward:

Core Layer: Contains business entities, use cases, and repository interfaces
Infrastructure Layer: Implements external concerns (databases, cache, HTTP clients)
Application Layer: Modules that wire everything together
Presentation Layer: Controllers and API adapters

2. Domain-Driven Design (DDD)

Entities: Business objects with identity (src/core/*/entity)
Use Cases: Application-specific business rules (src/core/*/use-cases)
Repository Pattern: Abstract data access (src/core/*/repository)
Value Objects: Validated domain primitives

3. Ports and Adapters (Hexagonal)

Ports: Abstract interfaces defining contracts
Adapters: Concrete implementations for external systems
Dependency Inversion: Core logic independent of frameworks

Layer Responsibilities

┌─────────────────────────────────────────┐
│         Controllers (Modules)           │  ← HTTP/API Layer
├─────────────────────────────────────────┤
│         Use Cases (Core)                │  ← Business Logic
├─────────────────────────────────────────┤
│     Entities & Repositories (Core)      │  ← Domain Layer
├─────────────────────────────────────────┤
│    Infrastructure (DB, Cache, HTTP)     │  ← External Services
└─────────────────────────────────────────┘

User Flow Example

✨ Key Features

🔐 Authentication & Authorization

JWT-based Authentication
- Login/Logout endpoints
- Access token generation
- Refresh token mechanism
- Token blacklisting on logout
Password Management
- Secure password hashing
- Password change functionality
- Forgot password flow with email
- Reset password with token validation
Role-Based Access Control (RBAC)
- Dynamic role assignment
- Granular permission system
- Endpoint-level authorization
- Permission inheritance

💾 Multi-Database Support

PostgreSQL (TypeORM)

Relational data modeling
Complex queries and joins
Transaction support
Migration system
Soft delete functionality

MongoDB (Mongoose)

Document-based storage
3-node Replica Set for high availability
Automatic failover and data redundancy
Flexible schema design
Built-in pagination
Text search capabilities
Migration support

🚀 CRUD Scaffolding

Automatically generate complete CRUD operations in seconds:

Entity generation with validation
Use cases (Create, Read, Update, Delete, List)
Repository implementation
Controller with routes
Swagger documentation
Unit tests (100% coverage)
Input/Output DTOs

📊 Observability Stack

Distributed Tracing

OpenTelemetry integration
Zipkins for trace visualization
HTTP request tracing
Database query tracing
Inter-service call tracking
Custom span creation

Logging

Pino high-performance logger
Structured JSON logging
Request/Response logging
Error tracking with stack traces
Log aggregation with Loki
Configurable log levels

Metrics

Request duration
HTTP status codes
Database query performance
Cache hit/miss ratio
Custom business metrics
Prometheus-compatible format

Health Checks

Database connectivity
Cache availability
Memory usage
CPU metrics
Custom health indicators

🔄 Resilience Patterns

Circuit Breaker (Opossum)
- Automatic failure detection
- Fallback mechanisms
- Configurable thresholds
- Service degradation
Retry Logic
- Exponential backoff
- Configurable retry policies
- Request timeout handling

🌍 Internationalization (i18n)

Multi-language support
Dynamic language switching
Validation message translation
API response localization
Supported languages: English, Portuguese

📦 Caching Strategies

Redis for distributed caching
NodeCache for in-memory caching
TTL configuration
Cache invalidation
Cache-aside pattern

🛡️ Security Features

Helmet.js for HTTP headers
CORS configuration
Request rate limiting
Input validation with Zod
SQL injection prevention
XSS protection
CSRF protection ready

📧 Email System

Handlebars templates
Welcome emails
Password reset emails
SMTP configuration
HTML/Plain text support

🛠️ Tech Stack

Core Framework

NestJS 11.x - Progressive Node.js framework
TypeScript 5.9.3 - Type-safe development
Node.js 22.x - Runtime environment

Databases & ORMs

PostgreSQL with TypeORM - Relational database
MongoDB with Mongoose - Document database
Redis - Caching and sessions

Observability

OpenTelemetry - Distributed tracing
Pino - High-performance logging
Zipkins - Trace visualization
Prometheus - Metrics collection

Testing

Jest - Testing framework
Supertest - HTTP assertions
Testcontainers - Integration testing with Docker

Code Quality

ESLint - Linting
Prettier - Code formatting
Husky - Git hooks
Commitlint - Commit message linting
Lint-staged - Staged files linting

DevOps

Docker - Containerization
Docker Compose - Multi-container orchestration
PM2 - Process management
Artillery - Load testing

Additional Libraries

Zod - Schema validation
Axios - HTTP client
JWT - Token management
Nodemailer - Email sending
Swagger - API documentation

📋 Prerequisites

Before you begin, ensure you have the following installed:

Node.js >= 22.0.0 (Download)
npm >= 9.x or yarn >= 1.22.x
Docker >= 20.x (Download)
Docker Compose >= 2.x
NVM (Node Version Manager) - Recommended

System Requirements

OS: Linux, macOS, or Windows (with WSL2)
Memory: Minimum 4GB RAM (8GB recommended)
Disk Space: 2GB free space

🚀 Quick Start

1. Clone the Repository

git clone https://github.com/mikemajesty/nestjs-microservice-boilerplate-api.git
cd nestjs-microservice-boilerplate-api

2. Install Node Version

# Install the required Node.js version
nvm install

# Use the installed version
nvm use

3. Install Dependencies

npm install

4. Setup Infrastructure

Start all required services (PostgreSQL, MongoDB, Redis, Zipkins, etc.):

npm run setup

This command will:

Stop and remove existing containers
Clean up volumes
Start fresh containers for all services
Wait for services to be ready

5. Run Migrations

Migrations run automatically on application start, but you can run them manually:

# Run all migrations
npm run migration:run

6. Start the Application

# Development mode with hot-reload
npm run start:dev

# Debug mode
npm run start:debug

# Production mode
npm run start

The API will be available at: http://localhost:5000

7. Access Swagger Documentation

Open your browser and navigate to:

http://localhost:5000/api-docs

8. Test the API

Login with default credentials:

curl -X 'POST' \
  'http://localhost:5000/api/v1/login' \
  -H 'accept: application/json' \
  -H 'Content-Type: application/json' \
  -d '{
    "email": "admin@admin.com",
    "password": "admin"
  }'

Configuration Files

nest-cli.json - NestJS CLI configuration
tsconfig.json - TypeScript compiler options
jest.config.ts - Testing configuration
eslint.config.mjs - Linting rules
.prettierrc - Code formatting rules
docker-compose-infra.yml - Infrastructure services

Infrastructure Services

After running npm run setup, the following services will be available:

Databases

Service	URL	Credentials	Description
PostgreSQL	`localhost:5432`	User: `admin` Password: `admin`	Primary relational database
MongoDB Replica Set	`localhost:27017` (Primary) `localhost:27018` (Secondary) `localhost:27019` (Tertiary)	User: `admin` Password: `admin123`	3-node MongoDB replica set for high availability
Redis	`localhost:6379`	Password: `redis123`	In-memory cache and session store

Database Management Tools

Service	URL	Credentials	Description
PgAdmin	`http://localhost:16543`	Email: `pgadmin@gmail.com` Password: `PgAdmin2019!`	PostgreSQL administration
Mongo Express	`http://localhost:8081`	-	MongoDB web interface

Observability Stack

Service	URL	Credentials	Description
Zipkin	`http://localhost:9411`	-	Distributed tracing UI
Prometheus	`http://localhost:9090`	-	Metrics collection and querying
Grafana	`http://localhost:3000`	User: `admin` Password: `grafana123`	Metrics visualization and dashboards
Loki	`http://localhost:3100`	-	Log aggregation system
AlertManager	`http://localhost:9093`	-	Alert management and routing

Supporting Services

Service	Ports	Description
OpenTelemetry Collector	`4317` (gRPC) `4318` (HTTP) `9464` (Prometheus)	Receives, processes and exports telemetry data
Promtail	-	Ships logs to Loki

🏃 Running the Application

Development Mode

Hot-reload enabled for rapid development:

npm run start:dev

Debug Mode

Attach a debugger to inspect and debug:

npm run start:debug

Then attach your IDE debugger to port 9229.

Production Mode

Optimized build for production:

# Build the application
npm run build

# Start production server
npm run start

Using Docker

Run the entire application stack with Docker Compose:

# Start all services
docker-compose up -d

# View logs
docker-compose logs -f microservice-api

# Stop services
docker-compose down

Using PM2 (Production)

PM2 provides process management and monitoring:

# Start with PM2
npm run start

# Monitor processes
pm2 monit

# View logs
pm2 logs

# Restart application
pm2 restart ecosystem.config.js

# Stop application
pm2 stop ecosystem.config.js

🗄️ Database Migrations

PostgreSQL Migrations

Create a New Migration

npm run migration-postgres:create

This creates a new migration file in src/infra/database/postgres/migrations/.

Run Migrations

npm run migration-postgres:run

Revert Last Migration

npm run migration-postgres:undo

MongoDB Migrations

Create a New Migration

npm run migration-mongo:create

Provide a name when prompted (e.g., createUsersCollection).

Run Migrations

npm run migration-mongo:run

Revert Last Migration

npm run migration-mongo:undo

Run All Migrations

Run both PostgreSQL and MongoDB migrations concurrently:

npm run migration:run

🎨 CRUD Scaffolding

Generate a complete, production-ready CRUD module in seconds!

Usage

npm run scaffold

Interactive Prompts

Choose Database
- POSTGRES:CRUD - Generate CRUD for PostgreSQL
- MONGO:CRUD - Generate CRUD for MongoDB
- LIB - Generate a library module
- INFRA - Generate infrastructure component
- MODULE - Generate a custom module
- CORE - Generate core domain logic
Enter Module Name
- Use singular form (e.g., product, order, customer)
- Follow camelCase or kebab-case naming

What Gets Generated

For a module named product:

src/
├── core/
│   └── product/
│       ├── entity/
│       │   └── product.ts                    # Domain entity with validation
│       ├── repository/
│       │   └── product.ts                    # Repository interface
│       └── use-cases/
│           ├── product-create.ts             # Create use case
│           ├── product-update.ts             # Update use case
│           ├── product-delete.ts             # Delete use case (soft)
│           ├── product-get-by-id.ts          # Find by ID use case
│           ├── product-list.ts               # List with pagination/search
│           └── __tests__/                    # Unit tests (100% coverage)
│               ├── product-create.spec.ts
│               ├── product-update.spec.ts
│               ├── product-delete.spec.ts
│               ├── product-get-by-id.spec.ts
│               └── product-list.spec.ts
├── modules/
│   └── product/
│       ├── adapter.ts                        # Use case adapters
│       ├── controller.ts                     # REST controller
│       ├── module.ts                         # NestJS module
│       ├── repository.ts                     # Repository implementation
│       └── swagger.ts                        # API documentation
└── infra/
    └── database/
        └── [postgres|mongo]/
            └── schemas/
                └── product.ts                # Database schema

Generated Features

Each CRUD module includes:

✅ Entity Validation - Zod schemas for type-safe validation
✅ Pagination - Offset/limit based pagination
✅ Search - Full-text search capabilities
✅ Sorting - Multi-field sorting
✅ Soft Delete - Logical deletion with deletedAt
✅ Filtering - Dynamic query filters
✅ Swagger Docs - Auto-generated API documentation
✅ Unit Tests - 100% test coverage
✅ Type Safety - Full TypeScript support
✅ Error Handling - Consistent error responses

Example

After generation, follow the instructions in the CLI output to:

Import the module in app.module.ts
Run migrations if database schema was created
Access the new endpoints in Swagger

🧪 Testing

This project maintains 100% code coverage with comprehensive test suites.

Test Structure

test/
├── initialization.ts           # Global test setup
└── **/*.spec.ts               # Unit tests

src/
└── core/
    └── */use-cases/__tests__/  # Use case tests

Running Tests

Run All Tests

npm run test

Run Tests with Coverage

npm run test:cov

Coverage reports are generated in:

coverage/ - HTML report
coverage/lcov.info - LCOV format
Badges automatically updated in README

Debug Tests

npm run test:debug

Then attach your debugger to the Node process.

Watch Mode

npm run test -- --watch

Test Types

Unit Tests

Use Case Tests: Business logic validation
Entity Tests: Domain model validation
Service Tests: Infrastructure service testing

Integration Tests

API Tests: End-to-end API testing with Supertest
Database Tests: Using Testcontainers for real databases
Cache Tests: Redis integration testing

Test Utilities

Located in src/utils/tests.ts:

Mock factories
Test data generators
Common assertions
Setup/teardown helpers

Testcontainers

Automatically spins up isolated Docker containers for integration tests:

PostgreSQL container
MongoDB container
Redis container

Ensures tests run in isolation with clean state.

Writing Tests

This project follows best practices for test data generation using ZodMockSchema to automatically generate type-safe mock data from Zod schemas.

Automatic Mock Generation (Recommended)

Use ZodMockSchema to generate test data automatically from your entity schemas:

import { ZodMockSchema } from '@mikemajesty/zod-mock-schema';
import { CatEntitySchema } from '../../entity/cat';

describe('CatCreateUseCase', () => {
  let useCase: CatCreateUseCase;
  let repository: jest.Mocked<ICatRepository>;

  beforeEach(() => {
    repository = createMockRepository();
    useCase = new CatCreateUseCase(repository);
  });

  // Generate mock data automatically from schema
  const mock = new ZodMockSchema(CatEntitySchema);
  const input = mock.generate();

  it('should create a cat successfully', async () => {
    repository.create = jest.fn().mockResolvedValue(input);
    
    const result = await useCase.execute(input, mockTracing);
    
    expect(result).toEqual(input);
    expect(repository.create).toHaveBeenCalledWith(
      expect.objectContaining(input)
    );
  });
});

Why use ZodMockSchema?

✅ Type Safety: Generates data that matches your Zod schemas
✅ Automatic Updates: Mock data updates when schema changes
✅ Consistency: Same data structure across all tests
✅ Less Boilerplate: No need to manually create test fixtures
✅ Valid Data: Generated data always passes schema validation

Documentation: For advanced usage and customization, see ZodMockSchema Documentation

Manual Test Data (Alternative)

For specific test cases where you need custom data:

it('should create a product successfully', async () => {
  const input = { name: 'Test Product', price: 99.99 };
  const result = await useCase.execute(input);
  
  expect(result).toMatchObject(input);
  expect(repository.create).toHaveBeenCalledWith(
    expect.objectContaining(input)
  );
});

Code Coverage Badges

Coverage badges are automatically generated and updated in the README after running npm run test:cov.

📚 API Documentation

Interactive API Documentation

This project uses TypeSpec to generate OpenAPI specifications, providing interactive API documentation via Swagger UI.

Access Swagger UI

Open your browser and navigate to:

http://localhost:5000/api-docs

The Swagger UI provides:

Interactive endpoint testing
Request/response schemas
Authentication flows
Real-time API exploration

OpenAPI Specification

The OpenAPI 3.0 specification is auto-generated from TypeSpec definitions and available at:

docs/tsp-output/@typespec/openapi3/openapi.api.1.0.yaml

API Endpoints Overview

All API endpoints follow a versioned structure: /api/{version}/resource

Authentication

Method	Endpoint	Description
POST	`/api/v1/login`	User login
POST	`/api/v1/logout`	User logout
POST	`/api/v1/forgot-password`	Request password reset
POST	`/api/v1/reset-password`	Reset password with token

Users

Method	Endpoint	Description
GET	`/api/v1/users`	List users (paginated)
GET	`/api/v1/users/:id`	Get user by ID
POST	`/api/v1/users`	Create new user
PUT	`/api/v1/users/:id`	Update user
DELETE	`/api/v1/users/:id`	Delete user (soft)

Roles

Method	Endpoint	Description
GET	`/api/v1/roles`	List roles
GET	`/api/v1/roles/:id`	Get role by ID
POST	`/api/v1/roles`	Create role
PUT	`/api/v1/roles/:id`	Update role
DELETE	`/api/v1/roles/:id`	Delete role

Permissions

Method	Endpoint	Description
GET	`/api/v1/permissions`	List permissions
GET	`/api/v1/permissions/:id`	Get permission by ID
POST	`/api/v1/permissions`	Create permission
PUT	`/api/v1/permissions/:id`	Update permission
DELETE	`/api/v1/permissions/:id`	Delete permission

Health

Method	Endpoint	Description
GET	`/health`	Application health check
GET	`/health/database`	Database connectivity
GET	`/health/cache`	Cache availability

Request Examples

Login

curl -X 'POST' \
  'http://localhost:5000/api/v1/login' \
  -H 'Content-Type: application/json' \
  -d '{
    "email": "admin@admin.com",
    "password": "admin"
  }'

List Users with Pagination

curl -X 'GET' \
  'http://localhost:5000/api/v1/users?limit=10&offset=0&sort=createdAt:desc' \
  -H 'Authorization: Bearer YOUR_TOKEN'

Create a User

curl -X 'POST' \
  'http://localhost:5000/api/v1/users' \
  -H 'Content-Type: application/json' \
  -H 'Authorization: Bearer YOUR_TOKEN' \
  -d '{
    "name": "John Doe",
    "email": "john@example.com",
    "password": "securePassword123",
    "roles": ["user"]
  }'

Response Format

Success Response

Success responses return the data directly from use cases without additional wrapping:

{
  "id": "123e4567-e89b-12d3-a456-426614174000",
  "name": "John Doe",
  "email": "john@example.com",
  "createdAt": "2024-12-08T00:00:00.000Z"
}

For list endpoints with pagination:

{
  "docs": [
    {
      "id": "123e4567-e89b-12d3-a456-426614174000",
      "name": "John Doe",
      "email": "john@example.com"
    }
  ],
  "page": 1,
  "limit": 10,
  "total": 100
}

Error Response

Error responses follow a standardized structure:

{
  "error": {
    "code": 400,
    "traceid": "abc-def-123",
    "context": "UserModule",
    "message": [
      "email: Invalid email format",
      "name: String must contain at least 1 character(s)"
    ],
    "timestamp": "08/12/2024 10:30:45",
    "path": "/api/v1/users"
  }
}

Error Response Fields:

code - HTTP status code
traceid - Request trace ID for debugging
context - Module/context where the error occurred
message - Array of error messages
timestamp - Error timestamp in configured format
path - Request path where error occurred

📖 Documentation

This project uses TypeSpec as a modern, type-safe way to define API contracts and generate OpenAPI specifications.

What is TypeSpec?

TypeSpec is a language for describing cloud service APIs and generating other API description languages, client and service code, documentation, and other assets. It provides excellent IDE support with auto-completion and type checking.

Documentation Structure

docs/
├── README.md              # Documentation overview
├── package.json           # TypeSpec dependencies
├── tspconfig.yaml         # TypeSpec configuration
├── docker-compose.yml     # Documentation services
├── src/
│   ├── main.tsp          # Main TypeSpec entry point
│   ├── modules/          # API module specifications
│   │   ├── cat/          # Example: Cat module
│   │   │   ├── controller.tsp
│   │   │   ├── model.tsp
│   │   │   └── exception.tsp
│   │   ├── user/
│   │   ├── role/
│   │   ├── permission/
│   │   ├── login/
│   │   ├── logout/
│   │   ├── reset-password/
│   │   └── health/
│   └── utils/
│       ├── exceptions.tsp    # Common exceptions
│       ├── model.tsp         # Common models
│       └── versioning.tsp    # API versioning
└── tsp-output/           # Generated OpenAPI specs
    └── @typespec/
        └── openapi3/
            └── openapi.api.1.0.yaml

Working with TypeSpec Documentation

1. Install Dependencies

cd docs
npm install
# or
yarn doc:install

2. Start Documentation Development Server

This starts a live-reload documentation server:

yarn start

This will:

Compile TypeSpec files on changes
Serve Swagger UI with live reload
Watch for file changes automatically

3. Compile TypeSpec to OpenAPI

To manually compile TypeSpec specifications:

cd docs
yarn doc:compiler

Generated files will be in docs/tsp-output/@typespec/openapi3/

Adding New API Documentation

Step 1: Create Module Structure

For a new module (e.g., product), create these files in docs/src/modules/product/:

controller.tsp - Defines the API endpoints

import "@typespec/http";
import "@typespec/rest";
import "@typespec/openapi3";
import "../../utils/model.tsp";
import "./model.tsp";
import "./exception.tsp";

using TypeSpec.Http;
using Utils.Model;

namespace api.Product;

@tag("Product")
@route("api/{version}/products")
@useAuth(BearerAuth)
interface ProductController {
  @post
  @doc("Create product")
  @returnsDoc("Product created successfully")
  create(
    ...VersionParams,
    @body body: CreateInput
  ): CreateOutput | CreateValidationException;

  @get
  @doc("List products")
  @returnsDoc("Products retrieved successfully")
  list(
    ...VersionParams,
    ...ListQueryInput
  ): ListOutput;
}

model.tsp - Defines data models

import "../../utils/model.tsp";

using Utils.Model;

namespace api.Product;

model CreateInput {
  name: string;
  price: decimal;
  description?: string;
}

model CreateOutput {
  id: string;
  name: string;
  price: decimal;
  description?: string;
  createdAt: utcDateTime;
}

model ListOutput is PaginatedResponse<CreateOutput>;

exception.tsp - Defines error responses

import "../../utils/exceptions.tsp";

using Utils.Exceptions;

namespace api.Product;

model CreateValidationException is Exception<400, "Validation failed">;
model NotFoundException is Exception<404, "Product not found">;

Step 2: Import in Main File

Add your module to docs/src/main.tsp:

import "./modules/product/controller.tsp";

Step 3: Compile and Test

cd docs
yarn doc:compiler

Check the generated OpenAPI spec in docs/tsp-output/@typespec/openapi3/openapi.api.1.0.yaml

TypeSpec Best Practices

Consistency

Follow the existing module structure
Use consistent naming conventions (PascalCase for models, camelCase for properties)
Leverage common models from utils/model.tsp
Reuse exception definitions from utils/exceptions.tsp

Type Safety

Define explicit types for all properties
Use TypeSpec's built-in types (string, int32, decimal, utcDateTime)
Leverage models for request/response validation
Use unions for multiple possible responses

Documentation

Add @doc decorator for endpoint descriptions
Use @returnsDoc for response descriptions
Include @example for complex models
Add @summary for concise endpoint summaries

Versioning

All endpoints use the {version} path parameter
Leverage the VersionParams model from utils/versioning.tsp
Follow semantic versioning for API changes

TypeSpec vs Swagger Decorators

Why TypeSpec instead of NestJS Swagger decorators?

✅ Type Safety: TypeSpec provides compile-time type checking
✅ Separation of Concerns: API contracts separated from implementation
✅ Better DX: Superior IDE support with IntelliSense
✅ Reusability: Shared models and types across endpoints
✅ Tooling: Auto-generation of clients, mocks, and documentation
✅ Standard: OpenAPI 3.0 compliant output
✅ Maintainability: Single source of truth for API contracts

Additional Resources

📊 Observability

Distributed Tracing

Zipkin UI

Access Zipkin for distributed tracing:

http://localhost:9411

Tracing Features

Automatic Instrumentation: HTTP requests, database queries
Custom Spans: Create application-specific spans
Context Propagation: Trace requests across services
Performance Analysis: Identify bottlenecks

Using Tracing in Code

See TRACING.md for detailed documentation.

Basic example:

// In your use case
async execute(input: Input, httpService: IHttpAdapter): Promise<Output> {
  const http = httpService.instance();
  const span = httpService.tracing.createSpan('external-api-call');
  
  try {
    span.setTag(httpService.tracing.tags.PEER_SERVICE, 'external-api');
    const result = await http.get('https://api.example.com/data');
    span.finish();
    return result;
  } catch (error) {
    span.setTag(httpService.tracing.tags.ERROR, true);
    span.setTag('message', error.message);
    span.finish();
    throw error;
  }
}

Logging

Log Levels

fatal: System is unusable
error: Error events
warn: Warning messages
info: Informational messages
debug: Debug messages
trace: Very detailed trace messages

Structured Logging

All logs are JSON-formatted for easy parsing:

{
  "level": "info",
  "time": 1702000000000,
  "msg": "User created",
  "userId": "123e4567-e89b-12d3-a456-426614174000",
  "correlationId": "abc-def-ghi",
  "service": "microservice-api"
}

Request Logging

Automatic logging of all HTTP requests:

Request method and URL
Request headers
Request body
Response status
Response time
User information

Viewing Logs

# Application logs
tail -f logs/app.log

# Error logs only
tail -f logs/error.log

# With PM2
pm2 logs microservice-api

# With Docker
docker-compose logs -f microservice-api

Loki for Log Aggregation

Logs are automatically shipped to Loki for centralized log aggregation:

http://localhost:3100

View logs in Grafana with Loki data source pre-configured.

Metrics

Metrics are exposed in Prometheus format:

http://localhost:5000/metrics

Prometheus UI

Access Prometheus for metrics visualization:

http://localhost:9090

Grafana Dashboard

Access Grafana for advanced monitoring dashboards:

http://localhost:3000

Default credentials:

Username: admin
Password: grafana123

Available Metrics

HTTP Metrics
- Request count
- Request duration (histogram)
- Response status codes
- Active requests
Database Metrics
- Query count
- Query duration
- Connection pool status
Cache Metrics
- Hit/miss ratio
- Cache size
- Eviction count
Application Metrics
- Memory usage
- CPU usage
- Event loop lag

Health Checks

Liveness Probe

curl http://localhost:5000/health

Response:

{
  "status": "ok",
  "info": {
    "database": { "status": "up" },
    "cache": { "status": "up" }
  },
  "details": {
    "database": { "status": "up" },
    "cache": { "status": "up" }
  }
}

Readiness Probe

Checks if the application is ready to receive traffic:

Database connectivity
Cache availability
Required migrations applied

🎯 Code Quality

Linting

Run Linter

npm run lint

Auto-fix Issues

npm run lint -- --fix

ESLint Configuration

Located in eslint.config.mjs:

TypeScript rules
NestJS best practices
Security rules
Import sorting
No lodash/underscore (prefer native JS)

Code Formatting

Format Code

npm run prettier

Prettier Configuration

Located in .prettierrc:

Single quotes
No semicolons
100 character line width
2 space indentation

Git Hooks

Pre-commit Hook (Husky)

Automatically runs on git commit:

Lints staged files
Runs type checking
Validates commit message format

Lint-staged

Only lints files staged for commit:

{
  "*.{ts,js}": ["eslint --fix"],
  "*.json": ["prettier --write"]
}

Commit Message Convention

This project uses a hybrid approach based on Conventional Commits with mandatory scopes enforced by Commitlint.

<type>(<scope>): <subject>

<body>

<footer>

Important: The <scope> is mandatory and must be one of the allowed values.

Types

feat: New feature
fix: Bug fix
docs: Documentation changes
style: Code style changes (formatting)
refactor: Code refactoring
perf: Performance improvements
test: Adding or updating tests
build: Build system changes
ci: CI/CD changes
chore: Other changes

Allowed Scopes

Scopes are dynamically generated from the project structure (src/ directories) plus the following fixed scopes:

Project Structure Scopes: Automatically includes all directory names from:

src/core/* - Core domain modules (user, role, permission, cat, etc.)
src/infra/* - Infrastructure components (database, cache, http, email, etc.)
src/libs/* - Shared libraries (token, event, i18n, etc.)
src/modules/* - Application modules
src/utils/* - Utility directories

Fixed Scopes:

remove - Removing files or features
revert - Reverting previous commits
conflict - Resolving merge conflicts
config - Configuration changes
entity - Entity-related changes
utils - Utility functions
deps - Dependency updates
modules - Module-level changes
test - Test files
migration - Database migrations
core - Core layer changes
swagger - API documentation
usecases - Use case implementations

Scope Validation

The scope is validated on commit using Commitlint configuration in commitlint.config.js. Invalid scopes will reject the commit.

To see all available scopes, check the project structure or run:

node -e "console.log(require('./commitlint.config.js').rules['scope-enum'][2])"

Examples

feat(user): add email verification feature

fix(auth): resolve token refresh issue

docs(readme): update API documentation section

test(user): add unit tests for user creation use case

refactor(database): optimize connection pooling

chore(deps): update nestjs to version 11.x

Invalid Examples ❌

# Missing scope
feat: add new feature

# Invalid scope
feat(invalid-scope): add new feature

# These will be rejected by Commitlint

Continuous Integration

Semantic Release

Automatic versioning and changelog generation based on commit messages:

Analyzes commits
Determines version bump (major/minor/patch)
Generates changelog
Creates GitHub release
Publishes to npm (if configured)

📁 Project Structure

nestjs-microservice-boilerplate-api/
├── .artillery/                 # Load testing configuration
├── .docker/                    # Docker-related files
├── .github/                    # GitHub Actions workflows
├── .husky/                     # Git hooks
├── .vscode/                    # VS Code settings
├── docs/                       # Additional documentation
├── scripts/                    # Utility scripts
├── src/
│   ├── core/                   # 🎯 Business Logic Layer
│   │   ├── cat/                # Example domain: Cat
│   │   │   ├── entity/         # Domain entities
│   │   │   │   └── cat.ts
│   │   │   ├── repository/     # Repository interfaces
│   │   │   │   └── cat.ts
│   │   │   └── use-cases/      # Business use cases
│   │   │       ├── cat-create.ts
│   │   │       ├── cat-update.ts
│   │   │       ├── cat-delete.ts
│   │   │       ├── cat-get-by-id.ts
│   │   │       ├── cat-list.ts
│   │   │       └── __tests__/  # Use case tests
│   │   ├── user/               # User domain
│   │   ├── role/               # Role domain
│   │   ├── permission/         # Permission domain
│   │   └── reset-password/     # Password reset domain
│   │
│   ├── infra/                  # 🔧 Infrastructure Layer
│   │   ├── database/           # Database implementations
│   │   │   ├── mongo/          # MongoDB setup
│   │   │   │   ├── config.ts
│   │   │   │   ├── migrations/
│   │   │   │   ├── schemas/
│   │   │   │   └── service.ts
│   │   │   └── postgres/       # PostgreSQL setup
│   │   │       ├── config.ts
│   │   │       ├── migrations/
│   │   │       ├── schemas/
│   │   │       └── service.ts
│   │   ├── cache/              # Cache implementations
│   │   │   ├── redis/
│   │   │   └── memory/
│   │   ├── http/               # HTTP client service
│   │   ├── email/              # Email service
│   │   │   ├── service.ts
│   │   │   └── templates/      # Email templates
│   │   ├── logger/             # Logging service
│   │   ├── secrets/            # Secrets management
│   │   └── repository/         # Generic repository implementations
│   │
│   ├── libs/                   # 📚 Shared Libraries
│   │   ├── token/              # JWT token service
│   │   ├── event/              # Event emitter
│   │   └── i18n/               # Internationalization
│   │       ├── languages/
│   │       │   ├── en/
│   │       │   └── pt/
│   │       └── service.ts
│   │
│   ├── modules/                # 🚀 Application Modules
│   │   ├── cat/                # Cat module
│   │   │   ├── adapter.ts      # Use case adapters
│   │   │   ├── controller.ts   # REST controller
│   │   │   ├── module.ts       # NestJS module
│   │   │   ├── repository.ts   # Repository implementation
│   │   │   └── swagger.ts      # Swagger documentation
│   │   ├── user/               # User module
│   │   ├── role/               # Role module
│   │   ├── permission/         # Permission module
│   │   ├── login/              # Login module
│   │   ├── logout/             # Logout module
│   │   ├── reset-password/     # Password reset module
│   │   └── health/             # Health check module
│   │
│   ├── observables/            # 👁️ Cross-cutting Concerns
│   │   ├── filters/            # Exception filters
│   │   │   └── http-exception.filter.ts
│   │   ├── guards/             # Route guards
│   │   │   └── auth.guard.ts
│   │   ├── interceptors/       # Request/Response interceptors
│   │   │   ├── http-logger.interceptor.ts
│   │   │   ├── tracing.interceptor.ts
│   │   │   ├── metrics.interceptor.ts
│   │   │   └── request-timeout.interceptor.ts
│   │   └── middlewares/        # Express middlewares
│   │       └── authentication.middleware.ts
│   │
│   ├── utils/                  # 🛠️ Utility Functions
│   │   ├── decorators/         # Custom decorators
│   │   │   ├── role.decorator.ts
│   │   │   ├── validate-schema.decorator.ts
│   │   │   └── request-timeout.decorator.ts
│   │   ├── docs/               # Documentation utilities
│   │   │   ├── swagger.ts
│   │   │   └── data/           # Swagger example data
│   │   ├── entity.ts           # Base entity class
│   │   ├── exception.ts        # Custom exceptions
│   │   ├── pagination.ts       # Pagination utilities
│   │   ├── search.ts           # Search utilities
│   │   ├── sort.ts             # Sort utilities
│   │   ├── tracing.ts          # Tracing utilities
│   │   ├── tests.ts            # Test utilities
│   │   └── validator.ts        # Zod validation helpers
│   │
│   ├── app.module.ts           # Root application module
│   └── main.ts                 # Application entry point
│
├── test/                       # 🧪 Test Configuration
│   └── initialization.ts       # Global test setup
├── .env                        # Environment variables
├── .nvmrc                      # Node version
├── commitlint.config.js        # Commit lint configuration
├── docker-compose.yml          # Main docker compose
├── docker-compose-infra.yml    # Infrastructure services
├── Dockerfile                  # Application dockerfile
├── ecosystem.config.js         # PM2 configuration
├── eslint.config.mjs           # ESLint configuration
├── jest.config.ts              # Jest configuration
├── nest-cli.json               # NestJS CLI configuration
├── package.json                # Dependencies and scripts
├── tsconfig.json               # TypeScript configuration
└── README.md                   # This file

Layer Descriptions

Core Layer (`src/core/`)

Contains the business logic, independent of frameworks and external services. Includes:

Entities: Domain models with business rules
Use Cases: Application-specific business operations
Repository Interfaces: Abstract data access contracts

Infrastructure Layer (`src/infra/`)

Implements external concerns and technical details:

Database connections and schemas
Third-party API clients
Caching mechanisms
Email services
Logging infrastructure

Libraries Layer (`src/libs/`)

Reusable, framework-agnostic libraries:

Token management
Event handling
Internationalization

Modules Layer (`src/modules/`)

NestJS modules that wire everything together:

Controllers for HTTP endpoints
Dependency injection configuration
Route definitions
Swagger documentation

Observables Layer (`src/observables/`)

Cross-cutting concerns applied to the entire application:

Authentication and authorization
Request/response logging
Error handling
Performance monitoring

🚀 Advanced Usage

Custom Decorators

Role-Based Authorization

import { Roles } from '@/utils/decorators';

@Controller('admin')
export class AdminController {
  @Get('users')
  @Roles('admin', 'superadmin')
  async listUsers() {
    // Only accessible by admin and superadmin roles
  }
}

Request Timeout

import { RequestTimeout } from '@/utils/decorators';

@Controller('data')
export class DataController {
  @Get('export')
  @RequestTimeout(60000) // 60 seconds
  async exportLargeDataset() {
    // Long-running operation
  }
}

Schema Validation

import { ValidateSchema } from '@/utils/decorators';
import { z } from 'zod';

const CreateProductSchema = z.object({
  name: z.string().min(1).max(200),
  price: z.number().positive(),
  description: z.string().optional()
});

@Controller('products')
export class ProductController {
  @Post()
  @ValidateSchema(CreateProductSchema)
  async create(@Body() data: z.infer<typeof CreateProductSchema>) {
    // Data is validated and type-safe
  }
}

Circuit Breaker Pattern

Protect your services from cascading failures:

import CircuitBreaker from 'opossum';

const options = {
  timeout: 3000, // If function takes longer than 3 seconds, trigger a failure
  errorThresholdPercentage: 50, // Open circuit if 50% of requests fail
  resetTimeout: 30000 // Try again after 30 seconds
};

const breaker = new CircuitBreaker(asyncFunction, options);

breaker.fire()
  .then(result => console.log(result))
  .catch(err => console.error(err));

Event-Driven Architecture

Use the event emitter for decoupled communication:

// Emit an event
this.eventEmitter.emit('user.created', {
  userId: user.id,
  email: user.email
});

// Listen to an event
@OnEvent('user.created')
handleUserCreated(payload: { userId: string; email: string }) {
  // Send welcome email
  this.emailService.sendWelcome(payload.email);
}

Load Testing

Run load tests with Artillery:

npm run test:load

Configure tests in .artillery/config.yaml.

Database Connection Pooling

PostgreSQL pool configuration:

// In postgres config
{
  host: process.env.POSTGRES_HOST,
  port: parseInt(process.env.POSTGRES_PORT),
  poolSize: 20,
  maxQueryExecutionTime: 1000,
  extra: {
    max: 20, // Maximum pool size
    min: 5,  // Minimum pool size
    idleTimeoutMillis: 30000
  }
}

Caching Strategies

Cache-Aside Pattern

async getUser(id: string): Promise<User> {
  // Try cache first
  const cached = await this.cache.get(`user:${id}`);
  if (cached) return cached;

  // Cache miss - fetch from database
  const user = await this.repository.findById(id);
  
  // Update cache
  await this.cache.set(`user:${id}`, user, 3600);
  
  return user;
}

Cache Invalidation

async updateUser(id: string, data: UpdateUserDTO): Promise<User> {
  const user = await this.repository.update(id, data);
  
  // Invalidate cache
  await this.cache.del(`user:${id}`);
  
  return user;
}

Secrets Management

Access secrets securely:

import { ISecretsAdapter } from '@/infra/secrets';

constructor(private readonly secrets: ISecretsAdapter) {}

async someMethod() {
  const apiKey = await this.secrets.get('EXTERNAL_API_KEY');
  // Use the secret
}

🤝 Contributing

Contributions are welcome! Please follow these guidelines:

Getting Started

Fork the repository
Create a feature branch: git checkout -b feature/amazing-feature
Make your changes
Run tests: npm run test
Run linter: npm run lint
Commit your changes: git commit -m 'feat: add amazing feature'
Push to the branch: git push origin feature/amazing-feature
Open a Pull Request

Commit Message Guidelines

Follow Conventional Commits:

Use feat: for new features
Use fix: for bug fixes
Use docs: for documentation
Use test: for tests
Use refactor: for code refactoring

Code Style

Follow the existing code style
Use TypeScript strict mode
Write unit tests for new features
Update documentation as needed
Maintain 100% test coverage

Pull Request Process

Update the README.md with details of changes if applicable
Update the CHANGELOG.md following Keep a Changelog format
Ensure all tests pass
Request review from maintainers
Squash commits before merging

📄 License

This project is licensed under the MIT License - see the LICENSE file for details.

MIT License Summary

Copyright (c) 2024

Permission is hereby granted, free of charge, to any person obtaining a copy
of this software and associated documentation files (the "Software"), to deal
in the Software without restriction, including without limitation the rights
to use, copy, modify, merge, publish, distribute, sublicense, and/or sell
copies of the Software, and to permit persons to whom the Software is
furnished to do so, subject to the following conditions:

The above copyright notice and this permission notice shall be included in all
copies or substantial portions of the Software.

THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR
IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY,
FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE
AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER
LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM,
OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE
SOFTWARE.

👥 Contributors

Thanks to all contributors who have helped make this project better!

_{Mike Lima}
💻 🚧

📞 Support

Documentation: docs/README.md
Issues: GitHub Issues
Discussions: GitHub Discussions

🎓 Resources

Architecture Patterns

NestJS

Observability

⭐ If you find this project useful, please consider giving it a star! ⭐

_{Built with ❤️ by Mike Lima}

Name		Name	Last commit message	Last commit date
Latest commit History 822 Commits
.artillery		.artillery
.docker		.docker
.github/workflows		.github/workflows
.husky		.husky
.vscode		.vscode
docs		docs
scripts		scripts
src		src
test		test
.dockerignore		.dockerignore
.env		.env
.gitignore		.gitignore
.lintstagedrc.json		.lintstagedrc.json
.nvmrc		.nvmrc
.prettierrc		.prettierrc
.releaserc.json		.releaserc.json
.swcrc		.swcrc
CHANGELOG.md		CHANGELOG.md
Dockerfile		Dockerfile
OnionGraph.jpg		OnionGraph.jpg
README.md		README.md
commitlint.config.js		commitlint.config.js
diagram.png		diagram.png
docker-compose-infra.yml		docker-compose-infra.yml
docker-compose.yml		docker-compose.yml
ecosystem.config.js		ecosystem.config.js
eslint.config.mjs		eslint.config.mjs
jest-coverage.config.ts		jest-coverage.config.ts
jest.config.ts		jest.config.ts
nest-cli.json		nest-cli.json
ohmy.gif		ohmy.gif
package-lock.json		package-lock.json
package.json		package.json
tsconfig.build.json		tsconfig.build.json
tsconfig.json		tsconfig.json
yarn.lock		yarn.lock

mikemajesty/nestjs-microservice-boilerplate-api

Folders and files

Latest commit

History

Repository files navigation

🚀 NestJS Microservice Boilerplate API

Code Coverage

📑 Table of Contents

🎯 Overview

🏗️ Architecture

Architectural Patterns

1. Onion Architecture

2. Domain-Driven Design (DDD)

3. Ports and Adapters (Hexagonal)

Layer Responsibilities

User Flow Example

✨ Key Features

🔐 Authentication & Authorization

💾 Multi-Database Support

PostgreSQL (TypeORM)

MongoDB (Mongoose)

🚀 CRUD Scaffolding

📊 Observability Stack

Distributed Tracing

Logging

Metrics

Health Checks

🔄 Resilience Patterns

🌍 Internationalization (i18n)

📦 Caching Strategies

🛡️ Security Features

📧 Email System

🛠️ Tech Stack

Core Framework

Databases & ORMs

Observability

Testing

Code Quality

DevOps

Additional Libraries

📋 Prerequisites

System Requirements

🚀 Quick Start

1. Clone the Repository

2. Install Node Version

3. Install Dependencies

4. Setup Infrastructure

5. Run Migrations

6. Start the Application

7. Access Swagger Documentation

8. Test the API

Configuration Files

Infrastructure Services

Databases

Database Management Tools

Observability Stack

Supporting Services

🏃 Running the Application

Development Mode

Debug Mode

Production Mode

Using Docker

Using PM2 (Production)

🗄️ Database Migrations

PostgreSQL Migrations

Create a New Migration

Run Migrations

Revert Last Migration

MongoDB Migrations

Create a New Migration

Run Migrations

Revert Last Migration

Run All Migrations

🎨 CRUD Scaffolding

Usage

Interactive Prompts

What Gets Generated

Generated Features

Example

🧪 Testing