A production-ready, type-safe Node.js Express application built with TypeScript, Prisma ORM, PostgreSQL, and JWT authentication.

• TypeScript - Full type safety across the application
• Express.js - Fast, unopinionated web framework
• Prisma ORM - Modern database toolkit with type-safe queries
• PostgreSQL - Robust relational database
• JWT Authentication - Secure token-based authentication
• Yup Validation - Schema validation for environment variables and request data
• Performance Optimized - Database indexing and Gzip response compression
• Error Handling - Centralized error handling middleware
• Security - Helmet and CORS protection
• Hot Reload - Development server with automatic restart

Before you begin, ensure you have the following installed:

• Node.js (v18 or higher)
• npm or yarn
• PostgreSQL (v14 or higher)

git clone <repository-url>
cd backend_sample

npm install

Copy the example environment file and update it with your configuration:

cp env.example .env

Edit .env and configure the following variables:

NODE_ENV=development
PORT=8000
DATABASE_URL=postgresql://username:password@localhost:5432/database_name?schema=public
JWT_SECRET=your-super-secret-jwt-key-change-this-in-production
JWT_EXPIRES_IN=7d

Important: Make sure your JWT_SECRET is at least 32 characters long for security.

Generate Prisma Client:

npm run prisma:generate

Run database migrations:

npm run prisma:migrate

When prompted, enter a name for the migration (e.g., "init").

Start the development server with hot reload:

npm run dev

The server will start on http://localhost:8000

Build the TypeScript code:

npm run build

Start the production server:

npm start

backend_sample/
├── prisma/
│   └── schema.prisma          # Prisma schema definition (with indexes)
├── src/
│   ├── config/
│   │   ├── database.ts        # Prisma client configuration
│   │   └── env.ts             # Environment variable validation
│   ├── controllers/
│   │   ├── auth.controller.ts # Authentication logic
│   │   ├── event.controller.ts # Event management & filtering
│   │   ├── organizer.controller.ts # Organizer dashboard & statistics
│   │   ├── review.controller.ts # Review & rating system
│   │   └── transaction.controller.ts # Transaction & payment logic
│   ├── middleware/
│   │   ├── auth.middleware.ts # JWT verification & role protection
│   │   ├── error.middleware.ts # Centralized error handling
│   │   ├── upload.middleware.ts # Cloudinary file upload
│   │   └── validation.middleware.ts # Request validation using Yup
│   ├── routes/
│   │   ├── auth.routes.ts, event.routes.ts, etc.
│   │   └── index.ts           # Route aggregation
│   ├── utils/
│   │   ├── transaction.cron.ts # Automated transaction expiry
│   │   ├── jwt.util.ts, password.util.ts, etc.
│   │   └── logger.ts          # Unified logging system
│   ├── app.ts                 # Express app (Security, Compression, Routes)
│   └── index.ts               # Server entry point & graceful shutdown
└── README.md                  # This file

• GET /api/health - Check server status

• POST /api/auth/signup - Register a new user

  {
    "email": "[email protected]",
    "password": "SecurePass123"
  }

• POST /api/auth/signin - Sign in a user

  {
    "email": "[email protected]",
    "password": "SecurePass123"
  }

• GET /api/users/profile - Get current user profile

  • Requires: Authorization: Bearer <token>

• GET /api/users - Get all users

  • Requires: Authorization: Bearer <token>

This application uses JWT (JSON Web Tokens) for authentication. After signing in or signing up, you'll receive a token that must be included in the Authorization header for protected routes:

Authorization: Bearer <your-jwt-token>

Open Prisma Studio to view and edit your database:

npm run prisma:studio

After modifying prisma/schema.prisma:

npm run prisma:migrate

npm run prisma:push

• npm run dev - Start development server with hot reload
• npm run build - Compile TypeScript to JavaScript
• npm start - Run production server
• npm run prisma:generate - Generate Prisma Client
• npm run prisma:migrate - Run database migrations
• npm run prisma:studio - Open Prisma Studio
• npm run prisma:push - Push schema changes to database
• npm run lint - Type-check without emitting files

Sign Up:

curl -X POST http://localhost:8000/api/auth/signup \
  -H "Content-Type: application/json" \
  -d '{"email":"[email protected]","password":"SecurePass123"}'

Sign In:

curl -X POST http://localhost:8000/api/auth/signin \
  -H "Content-Type: application/json" \
  -d '{"email":"[email protected]","password":"SecurePass123"}'

Get Profile (Protected):

curl -X GET http://localhost:8000/api/users/profile \
  -H "Authorization: Bearer YOUR_JWT_TOKEN"

1. Import the endpoints listed above
2. For protected routes, add the JWT token to the Authorization header
3. Set the type to "Bearer Token"

• ✅ Environment variables validated with Yup
• ✅ Passwords hashed with bcrypt (10 salt rounds)
• ✅ JWT tokens with configurable expiration
• ✅ Helmet.js for security headers
• ✅ CORS protection
• ✅ Input validation with Yup schemas
• ✅ Type-safe database queries with Prisma
• ✅ Error handling without exposing sensitive information

If you encounter database connection errors:

1. Ensure PostgreSQL is running
2. Verify your DATABASE_URL in .env
3. Check that the database exists
4. Ensure the user has proper permissions

If migrations fail:

# Reset the database (WARNING: This will delete all data)
npx prisma migrate reset

# Then run migrations again
npm run prisma:migrate

Run type checking:

npm run lint

• Runtime: Node.js
• Language: TypeScript
• Framework: Express.js
• ORM: Prisma
• Database: PostgreSQL
• Authentication: JWT (jsonwebtoken)
• Validation: Yup
• Password Hashing: bcrypt
• Security: Helmet, CORS
• Dev Tools: ts-node-dev, nodemon

ISC

fikrirazor (https://github.com/fikrirazor)

endangit (https://github.com/endang-git)

Happy Coding! 🚀