This project is a simple and lightweight Node.js boilerplate using TypeScript. It includes Docker configurations to run the application in both development and production modes, along with enhanced security features such as rate limiting and brute force protection.
- Prerequisites
- Installation
- Running the Application
- Project Structure
- Scripts Explanation
- Environment Variables
- Docker Configuration
- Security Features
- Linting and Formatting
- Commit Message Guidelines
- Accessing Services
- Contributing
Ensure you have the following installed on your system:
- Node.js (version 18 or above)
- Docker
- Docker Compose
To set up the project, follow these steps:
-
Clone the repository:
git clone https://github.com/your-username/node-ts-starter.git cd node-ts-starter -
Run the installation script:
bash bin/install.sh
This script will:
- Copy the
.env.examplefile to.env. - Install the necessary npm dependencies.
- Copy the
You can run the application in either development or production mode.
To run the application in development mode:
bash bin/start.shTo run the application in production mode:
bash bin/start.sh --prodHere is an overview of the project's structure:
/home/raouf/workspaces/personnal/projects/node-ts-starter
├── .eslintrc.json
├── .env
├── .env.example
├── .eslintignore
├── .prettierrc
├── bin
│ ├── install.sh
│ └── start.sh
├── Dockerfile
├── docker-compose.yaml
├── package.json
├── package-lock.json
├── README.md
├── src
│ ├── app
│ │ ├── controllers
│ │ │ └── user.controller.ts
│ │ ├── models
│ │ │ └── user.model.ts
│ │ ├── repositories
│ │ │ ├── base.repo.ts
│ │ │ └── user.repo.ts
│ │ ├── routes
│ │ │ ├── routes.ts
│ │ │ └── user.routes.ts
│ │ ├── services
│ │ │ ├── base.service.ts
│ │ │ └── user.service.ts
│ │ ├── templates
│ │ │ ├── app
│ │ │ │ └── presentation.html
│ │ │ └── mail
│ │ │ └── welcome.html
│ │ ├── utils
│ │ │ ├── handlers
│ │ │ │ ├── error
│ │ │ │ │ ├── global.ts
│ │ │ │ │ ├── notfound.ts
│ │ │ │ │ └── index.ts
│ │ │ │ ├── res
│ │ │ │ │ └── index.ts
│ │ │ │ └── index.ts
│ │ │ ├── middlewares
│ │ │ │ ├── bruteforce.ts
│ │ │ │ ├── client-authentication.ts
│ │ │ │ ├── rate-limiter.ts
│ │ │ │ ├── validate.ts
│ │ │ │ └── index.ts
│ │ │ ├── types
│ │ │ │ ├── service-response.ts
│ │ │ │ ├── user.ts
│ │ │ │ └── index.ts
│ │ │ └── validators
│ │ │ ├── user.ts
│ │ │ └── index.ts
│ ├── config
│ │ └── index.ts
│ ├── constants
│ │ └── index.ts
│ ├── framework
│ │ ├── database
│ │ │ ├── mongoose
│ │ │ │ └── db.ts
│ │ │ ├── redis
│ │ │ │ └── redis.ts
│ │ │ └── index.ts
│ │ ├── storage
│ │ │ └── minio
│ │ │ └── minio.ts
│ │ ├── webserver
│ │ │ └── express.ts
│ │ └── index.ts
│ ├── helpers
│ │ ├── db-connection-test.ts
│ │ ├── index.ts
│ │ ├── init-services.ts
│ │ ├── minio-test.ts
│ │ ├── redis-test.ts
│ │ ├── string.ts
│ │ └── time.ts
│ ├── server.ts
│ └── index.ts
├── commitlint.config.js
├── tsconfig.json
└── .prettierignore
This script sets up the project by performing the following tasks:
- Copies the
.env.examplefile to.env, replacing any existing.envfile. - Installs npm dependencies.
This script runs the application by performing the following tasks:
- Checks if Docker and Docker Compose are installed.
- Runs the
install.shscript to ensure dependencies are installed. - Sets the
NODE_ENVenvironment variable based on the provided argument (--prodfor production). - Starts the Docker containers using Docker Compose.
The Dockerfile defines how the Docker image is built. It includes steps for setting up the working directory, installing dependencies, copying the source code, building the TypeScript project, and defining the startup command.
This file defines the Docker services for the application, including the application itself, MongoDB, Redis, MinIO, and Maildev. It uses environment variables from the .env file to configure the services.
The .env file contains the environment variables required by the application. It is generated from the .env.example file during installation. Ensure the following variables are set:
# Engine
PORT=9095
ENABLE_CLIENT_AUTH=true
# Client authentication
BASIC_AUTH_USER=admin
BASIC_AUTH_PASS=secret
# Rate limiting
RATE_LIMIT_WINDOW_MS=900000
RATE_LIMIT_MAX=100
# Brute force protection
BRUTE_FORCE_FREE_RETRIES=5
BRUTE_FORCE_MIN_WAIT=300000
BRUTE_FORCE_MAX_WAIT=3600000
BRUTE_FORCE_LIFETIME=86400
# Database
DB_URI=mongodb://mongo:27017
DB_NAME=mydatabase
MONGO_CLIENT_PORT=9005
# Cache
REDIS_HOST=redis
REDIS_SERVER_PORT=9079
# MinIO
MINIO_ENDPOINT=minio
MINIO_ACCESS_KEY=minio-access-key
MINIO_SECRET_KEY=minio-secret-key
MINIO_API_PORT=9500
MINIO_CONSOLE_PORT=9050
# Maildev
MAILDEV_HOST=maildev
MAILDEV_PORT=1025
MAILDEV_SMTP=9025
MAILDEV_WEBAPP_PORT=9080The Docker configuration allows the application to run in isolated containers. The services defined in docker-compose.yml include:
- app: The main Node.js application.
- mongo: MongoDB database service.
- redis: Redis caching service.
- minio: MinIO object storage service.
- maildev: Maildev service for testing email sending.
To build and start the Docker containers, run:
docker-compose up --buildThis command will build the Docker images and start the services defined in docker-compose.yml.
The rate limiter middleware is configured to limit the number of requests to the API within a specified time window. This helps protect against DoS attacks.
Brute force protection is implemented using express-brute and express-brute-mongo. It limits the number of failed login attempts and progressively increases the wait time between attempts after reaching a threshold.
The helmet middleware is used to hide the X-Powered-By header to
obscure the technology stack of the application.
A strict content security policy is enforced using the helmet middleware to prevent loading of unauthorized resources.
This project uses ESLint and Prettier for code linting and formatting.
To check for linting errors:
npm run lintTo fix linting errors automatically:
npm run lint:fixTo format your code:
npm run formatTo ensure consistent commit messages, this project uses commitlint with husky to enforce commit message guidelines.
- build: Changes that affect the build system or external dependencies
- chore: Miscellaneous changes that don't affect the main codebase (e.g., configuring development tools, setting up project-specific settings)
- ci: Changes to our CI configuration files and scripts
- docs: Documentation only changes
- feat: A new feature
- fix: A bug fix
- update: Update something for a specific use case
- perf: A code change that improves performance
- refactor: A code change that neither fixes a bug nor adds a feature
- style: Changes that do not affect the meaning of the code (e.g., white-space, formatting, missing semi-colons)
- test: Adding missing tests or correcting existing tests
- translation: Changes related to translations or language localization
- sec: Changes that address security vulnerabilities, implement security measures, or enhance the overall security of the codebase
Commitlint and Husky are already configured and set up to ensure that commit messages follow the specified format before they are committed to the repository.
After running the application, you can access the following services:
- Node.js Application: http://localhost:9095
- MongoDB: Accessible on port
9005 - Redis: Accessible on port
9079 - MinIO API: Accessible on port
9500 - MinIO WebApp: Accessible on port
9050 - MailDev SMTP (external): Accessible on port
9025 - MailDev WebApp: Accessible on port
9080
Contributions, issues, and feature requests are welcome!
Feel free to check the issues page if you want to contribute.
Don't forget to give a star if you find this project useful!