DEV Community: Georges HELOUSSATO The latest articles on DEV Community by Georges HELOUSSATO (@georges_heloussato_d6ff14). https://dev.to/georges_heloussato_d6ff14 https://media2.dev.to/dynamic/image/width=90,height=90,fit=cover,gravity=auto,format=auto/https:%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Fuser%2Fprofile_image%2F2073568%2F6c5a2085-b447-4012-8294-0eab2a3c761f.png DEV Community: Georges HELOUSSATO https://dev.to/georges_heloussato_d6ff14 en Setting Up Shopify App + NestJS Backend: A Step-by-Step Local Development Guide Georges HELOUSSATO Sun, 07 Sep 2025 22:41:20 +0000 https://dev.to/georges_heloussato_d6ff14/setting-up-shopify-app-nestjs-backend-a-step-by-step-local-development-guide-2ca9 https://dev.to/georges_heloussato_d6ff14/setting-up-shopify-app-nestjs-backend-a-step-by-step-local-development-guide-2ca9 <p>Ever wanted to connect a Shopify app to your own backend? Here's a complete walkthrough to get both servers running on your local machine and talking to each other.</p> <h2> What We're Building 🎯 </h2> <ul> <li> <strong>Shopify App</strong>: Handles webhooks from Shopify stores</li> <li> <strong>NestJS Backend</strong>: Processes webhook data and handles business logic</li> <li> <strong>Connection</strong>: Shopify app forwards order data to NestJS API</li> </ul> <p>Let's get both servers up and running!</p> <h2> Part 1: Setting Up the Shopify App 🏪 </h2> <h3> Step 1: Create the Shopify App </h3> <p>Open your terminal and run:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code>npm init @shopify/app@latest </code></pre> </div> <p><strong>Answer the prompts:</strong></p> <ul> <li> <strong>App name:</strong> <code>bridge-app</code> (or any name you prefer)</li> <li> <strong>Type:</strong> <code>Public: An app built for a wide merchant audience</code> </li> <li> <strong>Template:</strong> <code>Remix (TypeScript)</code> </li> <li> <strong>Package manager:</strong> <code>npm</code> </li> </ul> <h3> Step 2: Navigate to Your App </h3> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code><span class="nb">cd </span>bridge-app </code></pre> </div> <h3> Step 3: Configure Permissions and Webhooks </h3> <p>Edit the <code>shopify.app.toml</code> file:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code>nano shopify.app.toml </code></pre> </div> <p>Find this line:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight toml"><code><span class="py">scopes</span> <span class="p">=</span> <span class="s">"write_products"</span> </code></pre> </div> <p>Replace it with:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight toml"><code><span class="py">scopes</span> <span class="p">=</span> <span class="s">"write_products,read_orders,write_orders"</span> </code></pre> </div> <p>Then find this section:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight toml"><code> <span class="nn">[[webhooks.subscriptions]]</span> <span class="py">topics</span> <span class="p">=</span> <span class="p">[</span> <span class="s">"app/scopes_update"</span> <span class="p">]</span> <span class="py">uri</span> <span class="p">=</span> <span class="s">"/webhooks/app/scopes_update"</span> </code></pre> </div> <p>Add after it:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight toml"><code> <span class="nn">[[webhooks.subscriptions]]</span> <span class="py">topics</span> <span class="p">=</span> <span class="p">[</span> <span class="s">"orders/create"</span> <span class="p">]</span> <span class="py">uri</span> <span class="p">=</span> <span class="s">"/webhooks/orders/create"</span> </code></pre> </div> <p><strong>Save and exit:</strong> <code>Ctrl + X</code>, then <code>Y</code>, then <code>Enter</code></p> <h3> Step 4: Start the Shopify App </h3> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code>shopify app dev </code></pre> </div> <p><strong>Follow the prompts:</strong></p> <ul> <li>Create or select a development store</li> <li>Allow automatic URL updates (<code>Y</code>)</li> <li>The app will start and give you a preview URL</li> </ul> <p><strong>Keep this terminal open</strong> - your Shopify app is now running!</p> <h2> Part 2: Setting Up the NestJS Backend 🔧 </h2> <h3> Step 1: Open a New Terminal </h3> <p><strong>Important:</strong> Keep your Shopify terminal running and open a <strong>new terminal window</strong>.</p> <h3> Step 2: Create NestJS Project </h3> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code><span class="c"># Install NestJS CLI globally</span> npm i <span class="nt">-g</span> @nestjs/cli <span class="c"># Create new project</span> nest new bridgeapp-api <span class="c"># Navigate to project</span> <span class="nb">cd </span>bridgeapp-api </code></pre> </div> <h3> Step 3: Create the Webhook Controller </h3> <p>Create a new directory:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code><span class="nb">mkdir </span>src/webhook </code></pre> </div> <p>Create the controller file:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code><span class="nb">touch </span>src/webhook/webhook.controller.ts </code></pre> </div> <p>Edit the file:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code>nano src/webhook/webhook.controller.ts </code></pre> </div> <p>Add this code:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight typescript"><code><span class="k">import</span> <span class="p">{</span> <span class="nx">Controller</span><span class="p">,</span> <span class="nx">Post</span><span class="p">,</span> <span class="nx">Body</span><span class="p">,</span> <span class="nx">Headers</span><span class="p">,</span> <span class="nx">Logger</span> <span class="p">}</span> <span class="k">from</span> <span class="dl">'</span><span class="s1">@nestjs/common</span><span class="dl">'</span><span class="p">;</span> <span class="p">@</span><span class="nd">Controller</span><span class="p">(</span><span class="dl">'</span><span class="s1">webhook</span><span class="dl">'</span><span class="p">)</span> <span class="k">export</span> <span class="kd">class</span> <span class="nc">WebhookController</span> <span class="p">{</span> <span class="k">private</span> <span class="k">readonly</span> <span class="nx">logger</span> <span class="o">=</span> <span class="k">new</span> <span class="nc">Logger</span><span class="p">(</span><span class="nx">WebhookController</span><span class="p">.</span><span class="nx">name</span><span class="p">);</span> <span class="p">@</span><span class="nd">Post</span><span class="p">(</span><span class="dl">'</span><span class="s1">shopify/order</span><span class="dl">'</span><span class="p">)</span> <span class="nf">handleShopifyOrder</span><span class="p">(</span> <span class="p">@</span><span class="nd">Body</span><span class="p">()</span> <span class="nx">body</span><span class="p">:</span> <span class="kr">any</span><span class="p">,</span> <span class="p">@</span><span class="nd">Headers</span><span class="p">()</span> <span class="nx">headers</span><span class="p">:</span> <span class="kr">any</span><span class="p">,</span> <span class="p">)</span> <span class="p">{</span> <span class="k">this</span><span class="p">.</span><span class="nx">logger</span><span class="p">.</span><span class="nf">log</span><span class="p">(</span><span class="dl">'</span><span class="s1">🔔 WEBHOOK RECEIVED!</span><span class="dl">'</span><span class="p">);</span> <span class="k">this</span><span class="p">.</span><span class="nx">logger</span><span class="p">.</span><span class="nf">log</span><span class="p">(</span><span class="dl">'</span><span class="s1">📦 Headers:</span><span class="dl">'</span><span class="p">,</span> <span class="nx">JSON</span><span class="p">.</span><span class="nf">stringify</span><span class="p">(</span><span class="nx">headers</span><span class="p">,</span> <span class="kc">null</span><span class="p">,</span> <span class="mi">2</span><span class="p">));</span> <span class="k">this</span><span class="p">.</span><span class="nx">logger</span><span class="p">.</span><span class="nf">log</span><span class="p">(</span><span class="dl">'</span><span class="s1">📊 Body:</span><span class="dl">'</span><span class="p">,</span> <span class="nx">JSON</span><span class="p">.</span><span class="nf">stringify</span><span class="p">(</span><span class="nx">body</span><span class="p">,</span> <span class="kc">null</span><span class="p">,</span> <span class="mi">2</span><span class="p">));</span> <span class="k">return</span> <span class="p">{</span> <span class="na">status</span><span class="p">:</span> <span class="dl">'</span><span class="s1">OK</span><span class="dl">'</span><span class="p">,</span> <span class="na">message</span><span class="p">:</span> <span class="dl">'</span><span class="s1">Webhook received!</span><span class="dl">'</span> <span class="p">};</span> <span class="p">}</span> <span class="p">}</span> </code></pre> </div> <p><strong>Save and exit:</strong> <code>Ctrl + X</code>, then <code>Y</code>, then <code>Enter</code></p> <h3> Step 4: Update App Module </h3> <p>Edit the main app module:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code>nano src/app.module.ts </code></pre> </div> <p>Replace the content with:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight typescript"><code><span class="k">import</span> <span class="p">{</span> <span class="nx">Module</span> <span class="p">}</span> <span class="k">from</span> <span class="dl">'</span><span class="s1">@nestjs/common</span><span class="dl">'</span><span class="p">;</span> <span class="k">import</span> <span class="p">{</span> <span class="nx">WebhookController</span> <span class="p">}</span> <span class="k">from</span> <span class="dl">'</span><span class="s1">./webhook/webhook.controller</span><span class="dl">'</span><span class="p">;</span> <span class="p">@</span><span class="nd">Module</span><span class="p">({</span> <span class="na">controllers</span><span class="p">:</span> <span class="p">[</span><span class="nx">WebhookController</span><span class="p">],</span> <span class="p">})</span> <span class="k">export</span> <span class="kd">class</span> <span class="nc">AppModule</span> <span class="p">{}</span> </code></pre> </div> <p><strong>Save and exit:</strong> <code>Ctrl + X</code>, then <code>Y</code>, then <code>Enter</code></p> <h3> Step 5: Start NestJS </h3> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code>npm run start:dev </code></pre> </div> <p><strong>Keep this terminal open too</strong> - your NestJS API is now running on <code>http://localhost:3000</code>!</p> <h2> Part 3: Connecting Shopify to NestJS 🔗 </h2> <h3> Step 1: Create the Bridge </h3> <p>In your <strong>Shopify app terminal</strong> (the first one), create a new webhook file:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code><span class="nb">touch </span>app/routes/webhooks.orders.create.tsx </code></pre> </div> <p>Edit this file:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code>nano app/routes/webhooks.orders.create.tsx </code></pre> </div> <p>Add this code:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight typescript"><code><span class="k">import</span> <span class="kd">type</span> <span class="p">{</span> <span class="nx">ActionFunctionArgs</span> <span class="p">}</span> <span class="k">from</span> <span class="dl">"</span><span class="s2">@remix-run/node</span><span class="dl">"</span><span class="p">;</span> <span class="k">import</span> <span class="p">{</span> <span class="nx">authenticate</span> <span class="p">}</span> <span class="k">from</span> <span class="dl">"</span><span class="s2">../shopify.server</span><span class="dl">"</span><span class="p">;</span> <span class="k">export</span> <span class="kd">const</span> <span class="nx">action</span> <span class="o">=</span> <span class="k">async </span><span class="p">({</span> <span class="nx">request</span> <span class="p">}:</span> <span class="nx">ActionFunctionArgs</span><span class="p">)</span> <span class="o">=&gt;</span> <span class="p">{</span> <span class="kd">const</span> <span class="p">{</span> <span class="nx">topic</span><span class="p">,</span> <span class="nx">shop</span><span class="p">,</span> <span class="nx">session</span><span class="p">,</span> <span class="nx">admin</span><span class="p">,</span> <span class="nx">payload</span> <span class="p">}</span> <span class="o">=</span> <span class="k">await</span> <span class="nx">authenticate</span><span class="p">.</span><span class="nf">webhook</span><span class="p">(</span><span class="nx">request</span><span class="p">);</span> <span class="nx">console</span><span class="p">.</span><span class="nf">log</span><span class="p">(</span><span class="dl">"</span><span class="s2">🔔 SHOPIFY WEBHOOK RECEIVED!</span><span class="dl">"</span><span class="p">);</span> <span class="nx">console</span><span class="p">.</span><span class="nf">log</span><span class="p">(</span><span class="dl">"</span><span class="s2">📊 Topic:</span><span class="dl">"</span><span class="p">,</span> <span class="nx">topic</span><span class="p">);</span> <span class="nx">console</span><span class="p">.</span><span class="nf">log</span><span class="p">(</span><span class="dl">"</span><span class="s2">🏪 Shop:</span><span class="dl">"</span><span class="p">,</span> <span class="nx">shop</span><span class="p">);</span> <span class="nx">console</span><span class="p">.</span><span class="nf">log</span><span class="p">(</span><span class="dl">"</span><span class="s2">📦 Order:</span><span class="dl">"</span><span class="p">,</span> <span class="nx">JSON</span><span class="p">.</span><span class="nf">stringify</span><span class="p">(</span><span class="nx">payload</span><span class="p">,</span> <span class="kc">null</span><span class="p">,</span> <span class="mi">2</span><span class="p">));</span> <span class="k">try</span> <span class="p">{</span> <span class="nx">console</span><span class="p">.</span><span class="nf">log</span><span class="p">(</span><span class="dl">"</span><span class="s2">➡️ Sending to NestJS...</span><span class="dl">"</span><span class="p">);</span> <span class="kd">const</span> <span class="nx">response</span> <span class="o">=</span> <span class="k">await</span> <span class="nf">fetch</span><span class="p">(</span><span class="dl">'</span><span class="s1">http://localhost:3000/webhook/shopify/order</span><span class="dl">'</span><span class="p">,</span> <span class="p">{</span> <span class="na">method</span><span class="p">:</span> <span class="dl">'</span><span class="s1">POST</span><span class="dl">'</span><span class="p">,</span> <span class="na">headers</span><span class="p">:</span> <span class="p">{</span> <span class="dl">'</span><span class="s1">Content-Type</span><span class="dl">'</span><span class="p">:</span> <span class="dl">'</span><span class="s1">application/json</span><span class="dl">'</span><span class="p">,</span> <span class="p">},</span> <span class="na">body</span><span class="p">:</span> <span class="nx">JSON</span><span class="p">.</span><span class="nf">stringify</span><span class="p">({</span> <span class="na">shop</span><span class="p">:</span> <span class="nx">shop</span><span class="p">,</span> <span class="na">order</span><span class="p">:</span> <span class="nx">payload</span> <span class="p">})</span> <span class="p">});</span> <span class="k">if </span><span class="p">(</span><span class="nx">response</span><span class="p">.</span><span class="nx">ok</span><span class="p">)</span> <span class="p">{</span> <span class="nx">console</span><span class="p">.</span><span class="nf">log</span><span class="p">(</span><span class="dl">"</span><span class="s2">✅ Successfully sent to NestJS</span><span class="dl">"</span><span class="p">);</span> <span class="p">}</span> <span class="k">else</span> <span class="p">{</span> <span class="nx">console</span><span class="p">.</span><span class="nf">log</span><span class="p">(</span><span class="dl">"</span><span class="s2">❌ Error sending to NestJS:</span><span class="dl">"</span><span class="p">,</span> <span class="nx">response</span><span class="p">.</span><span class="nx">status</span><span class="p">);</span> <span class="p">}</span> <span class="p">}</span> <span class="k">catch </span><span class="p">(</span><span class="nx">error</span><span class="p">)</span> <span class="p">{</span> <span class="nx">console</span><span class="p">.</span><span class="nf">log</span><span class="p">(</span><span class="dl">"</span><span class="s2">❌ Connection error:</span><span class="dl">"</span><span class="p">,</span> <span class="nx">error</span><span class="p">);</span> <span class="p">}</span> <span class="k">return</span> <span class="k">new</span> <span class="nc">Response</span><span class="p">(</span><span class="dl">"</span><span class="s2">OK</span><span class="dl">"</span><span class="p">,</span> <span class="p">{</span> <span class="na">status</span><span class="p">:</span> <span class="mi">200</span> <span class="p">});</span> <span class="p">};</span> </code></pre> </div> <p><strong>Save and exit:</strong> <code>Ctrl + X</code>, then <code>Y</code>, then <code>Enter</code></p> <h2> Part 4: Testing the Connection 🧪 </h2> <h3> Step 1: Install Your App </h3> <p>In your browser, go to the preview URL shown in your Shopify terminal. Install the app on your development store.</p> <h3> Step 2: Test with Direct API Call </h3> <p>In a <strong>third terminal</strong>, test your NestJS API directly:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code>curl <span class="nt">-X</span> POST http://localhost:3000/webhook/shopify/order <span class="se">\</span> <span class="nt">-H</span> <span class="s2">"Content-Type: application/json"</span> <span class="se">\</span> <span class="nt">-d</span> <span class="s1">'{ "shop": "test-shop.myshopify.com", "order": { "id": 123, "name": "#1001", "customer": { "first_name": "John", "phone": "+1234567890" } } }'</span> </code></pre> </div> <p><strong>You should see logs in your NestJS terminal!</strong></p> <h3> Step 3: Test End-to-End </h3> <ol> <li>Go to your Shopify admin</li> <li>Navigate to <strong>Orders → Create order</strong> </li> <li>Add a product and customer</li> <li>Create the order</li> <li> <strong>Watch both terminals</strong> for logs!</li> </ol> <h2> What You Should See 👀 </h2> <h3> Terminal 1 (Shopify App): </h3> <div class="highlight js-code-highlight"> <pre class="highlight plaintext"><code>🔔 SHOPIFY WEBHOOK RECEIVED! 📊 Topic: orders/create 🏪 Shop: your-store.myshopify.com ➡️ Sending to NestJS... ✅ Successfully sent to NestJS </code></pre> </div> <h3> Terminal 2 (NestJS API): </h3> <div class="highlight js-code-highlight"> <pre class="highlight plaintext"><code>[WebhookController] 🔔 WEBHOOK RECEIVED! [WebhookController] 📦 Headers: {...} [WebhookController] 📊 Body: {"shop": "...", "order": {...}} </code></pre> </div> <h2> Troubleshooting Common Issues 🔧 </h2> <h3> "Connection refused" Error </h3> <ul> <li> <strong>Check:</strong> Is NestJS running on port 3000?</li> <li> <strong>Test:</strong> <code>curl http://localhost:3000/webhook/shopify/order</code> </li> </ul> <h3> No Webhook Received </h3> <ul> <li> <strong>Check:</strong> Did you save the webhook file correctly?</li> <li> <strong>Try:</strong> Restart your Shopify app (<code>Ctrl+C</code> then <code>shopify app dev</code>)</li> </ul> <h3> Port Already in Use </h3> <ul> <li> <strong>NestJS:</strong> Change port in <code>main.ts</code> to 3001</li> <li> <strong>Update:</strong> Shopify webhook URL to <code>localhost:3001</code> </li> </ul> <h2> Your Local Development Setup ✅ </h2> <p><strong>Congratulations! You now have:</strong></p> <ul> <li>✅ <strong>Shopify app</strong> running and receiving webhooks</li> <li>✅ <strong>NestJS backend</strong> processing webhook data </li> <li>✅ <strong>Communication</strong> between both servers</li> <li>✅ <strong>Local development environment</strong> ready for building features</li> </ul> <h2> Next Steps 🚀 </h2> <p>Now that both servers are talking, you can:</p> <ol> <li> <strong>Add business logic</strong> to your NestJS webhook handler</li> <li> <strong>Integrate external APIs</strong> (WhatsApp, email, SMS)</li> <li> <strong>Add database</strong> to store and process data</li> <li> <strong>Build frontend</strong> components for your Shopify app</li> <li> <strong>Deploy</strong> to production when ready</li> </ol> <h2> Keeping Everything Running 💡 </h2> <p><strong>Terminal Management:</strong></p> <ul> <li> <strong>Terminal 1:</strong> <code>shopify app dev</code> (keep running)</li> <li> <strong>Terminal 2:</strong> <code>npm run start:dev</code> in NestJS folder (keep running) </li> <li> <strong>Terminal 3:</strong> Available for testing commands</li> </ul> <p><strong>When you restart:</strong></p> <ol> <li>Start NestJS first (<code>npm run start:dev</code>)</li> <li>Start Shopify app second (<code>shopify app dev</code>)</li> <li>Both should reconnect automatically</li> </ol> <p>That's it! You now have a complete local development setup with Shopify and NestJS talking to each other. Happy coding! 🎉</p> <p><em>Questions about the setup? Drop them in the comments below!</em></p> Complete Guide: Deploy NestJS API with PostgreSQL on AWS Lightsail Georges HELOUSSATO Mon, 01 Sep 2025 16:12:29 +0000 https://dev.to/georges_heloussato_d6ff14/complete-guide-deploy-nestjs-api-with-postgresql-on-aws-lightsail-3p6n https://dev.to/georges_heloussato_d6ff14/complete-guide-deploy-nestjs-api-with-postgresql-on-aws-lightsail-3p6n <p>This comprehensive guide walks you through deploying a NestJS application with PostgreSQL database on AWS Lightsail, featuring a custom subdomain managed by Cloudflare.</p> <h2> 🎯 Final Objective </h2> <ul> <li>NestJS API accessible via <code>https://api.yourdomain.com</code> </li> <li>Containerized PostgreSQL database</li> <li>SSL managed by Cloudflare</li> <li>Swagger documentation accessible</li> </ul> <h2> 📋 Prerequisites </h2> <ul> <li>AWS Lightsail server (Ubuntu)</li> <li>Domain configured with Cloudflare</li> <li>NestJS project on GitLab</li> <li>SSH access to your server</li> </ul> <h2> 1. 📁 Project Preparation </h2> <h3> Required file structure </h3> <p>Your project should contain these files at the root:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight plaintext"><code>your-project/ ├── src/ # NestJS code ├── package.json ├── Dockerfile # Docker configuration ├── docker-compose.yml # Service orchestration ├── .env.production # Production environment variables ├── .dockerignore └── .gitignore </code></pre> </div> <h3> <code>Dockerfile</code> </h3> <div class="highlight js-code-highlight"> <pre class="highlight docker"><code><span class="k">FROM</span><span class="s"> node:20</span> <span class="k">WORKDIR</span><span class="s"> /app</span> <span class="c"># Copy package.json and package-lock.json</span> <span class="k">COPY</span><span class="s"> package*.json ./</span> <span class="c"># Install all dependencies</span> <span class="k">RUN </span>npm ci <span class="c"># Copy source code</span> <span class="k">COPY</span><span class="s"> . .</span> <span class="c"># Build the application</span> <span class="k">RUN </span>npm run build <span class="c"># Remove dev dependencies</span> <span class="k">RUN </span>npm prune <span class="nt">--production</span> <span class="c"># Expose port</span> <span class="k">EXPOSE</span><span class="s"> 3000</span> <span class="c"># Start command</span> <span class="k">CMD</span><span class="s"> ["npm", "run", "start:prod"]</span> </code></pre> </div> <h3> <code>docker-compose.yml</code> </h3> <div class="highlight js-code-highlight"> <pre class="highlight yaml"><code><span class="na">version</span><span class="pi">:</span> <span class="s1">'</span><span class="s">3.8'</span> <span class="na">services</span><span class="pi">:</span> <span class="na">postgres</span><span class="pi">:</span> <span class="na">image</span><span class="pi">:</span> <span class="s">postgres:15</span> <span class="na">container_name</span><span class="pi">:</span> <span class="s">postgres_db</span> <span class="na">restart</span><span class="pi">:</span> <span class="s">always</span> <span class="na">environment</span><span class="pi">:</span> <span class="na">POSTGRES_DB</span><span class="pi">:</span> <span class="s">${DB_NAME}</span> <span class="na">POSTGRES_USER</span><span class="pi">:</span> <span class="s">${DB_USERNAME}</span> <span class="na">POSTGRES_PASSWORD</span><span class="pi">:</span> <span class="s">${DB_PASSWORD}</span> <span class="na">volumes</span><span class="pi">:</span> <span class="pi">-</span> <span class="s">postgres_data:/var/lib/postgresql/data</span> <span class="na">networks</span><span class="pi">:</span> <span class="pi">-</span> <span class="s">app_network</span> <span class="na">healthcheck</span><span class="pi">:</span> <span class="na">test</span><span class="pi">:</span> <span class="pi">[</span><span class="s2">"</span><span class="s">CMD-SHELL"</span><span class="pi">,</span> <span class="s2">"</span><span class="s">pg_isready</span><span class="nv"> </span><span class="s">-U</span><span class="nv"> </span><span class="s">${DB_USERNAME}</span><span class="nv"> </span><span class="s">-d</span><span class="nv"> </span><span class="s">${DB_NAME}"</span><span class="pi">]</span> <span class="na">interval</span><span class="pi">:</span> <span class="s">10s</span> <span class="na">timeout</span><span class="pi">:</span> <span class="s">5s</span> <span class="na">retries</span><span class="pi">:</span> <span class="m">5</span> <span class="na">nestjs_app</span><span class="pi">:</span> <span class="na">build</span><span class="pi">:</span> <span class="s">.</span> <span class="na">container_name</span><span class="pi">:</span> <span class="s">nestjs_container</span> <span class="na">restart</span><span class="pi">:</span> <span class="s">always</span> <span class="na">environment</span><span class="pi">:</span> <span class="na">NODE_ENV</span><span class="pi">:</span> <span class="s">${NODE_ENV}</span> <span class="na">DB_HOST</span><span class="pi">:</span> <span class="s">postgres</span> <span class="na">DB_PORT</span><span class="pi">:</span> <span class="s">${DB_PORT}</span> <span class="na">DB_USERNAME</span><span class="pi">:</span> <span class="s">${DB_USERNAME}</span> <span class="na">DB_PASSWORD</span><span class="pi">:</span> <span class="s">${DB_PASSWORD}</span> <span class="na">DB_NAME</span><span class="pi">:</span> <span class="s">${DB_NAME}</span> <span class="na">PORT</span><span class="pi">:</span> <span class="s">${PORT}</span> <span class="na">JWT_SECRET</span><span class="pi">:</span> <span class="s">${JWT_SECRET}</span> <span class="na">SWAGGER_PASSWORD</span><span class="pi">:</span> <span class="s">${SWAGGER_PASSWORD}</span> <span class="c1"># Add all your other environment variables here</span> <span class="na">ports</span><span class="pi">:</span> <span class="pi">-</span> <span class="s2">"</span><span class="s">127.0.0.1:3000:3000"</span> <span class="na">depends_on</span><span class="pi">:</span> <span class="na">postgres</span><span class="pi">:</span> <span class="na">condition</span><span class="pi">:</span> <span class="s">service_healthy</span> <span class="na">networks</span><span class="pi">:</span> <span class="pi">-</span> <span class="s">app_network</span> <span class="na">volumes</span><span class="pi">:</span> <span class="na">postgres_data</span><span class="pi">:</span> <span class="na">networks</span><span class="pi">:</span> <span class="na">app_network</span><span class="pi">:</span> <span class="na">driver</span><span class="pi">:</span> <span class="s">bridge</span> </code></pre> </div> <h3> NestJS Configuration (<code>app.module.ts</code>) </h3> <p>Ensure your main module uses the correct environment variables:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight typescript"><code><span class="nx">TypeOrmModule</span><span class="p">.</span><span class="nf">forRootAsync</span><span class="p">({</span> <span class="na">imports</span><span class="p">:</span> <span class="p">[</span><span class="nx">ConfigModule</span><span class="p">],</span> <span class="na">useFactory</span><span class="p">:</span> <span class="p">(</span><span class="na">configService</span><span class="p">:</span> <span class="nx">ConfigService</span><span class="p">)</span> <span class="o">=&gt;</span> <span class="p">({</span> <span class="na">type</span><span class="p">:</span> <span class="dl">'</span><span class="s1">postgres</span><span class="dl">'</span><span class="p">,</span> <span class="na">host</span><span class="p">:</span> <span class="nx">configService</span><span class="p">.</span><span class="nf">get</span><span class="p">(</span><span class="dl">'</span><span class="s1">DB_HOST</span><span class="dl">'</span><span class="p">,</span> <span class="dl">'</span><span class="s1">localhost</span><span class="dl">'</span><span class="p">),</span> <span class="na">port</span><span class="p">:</span> <span class="nx">configService</span><span class="p">.</span><span class="nf">get</span><span class="p">(</span><span class="dl">'</span><span class="s1">DB_PORT</span><span class="dl">'</span><span class="p">,</span> <span class="mi">5432</span><span class="p">),</span> <span class="na">username</span><span class="p">:</span> <span class="nx">configService</span><span class="p">.</span><span class="nf">get</span><span class="p">(</span><span class="dl">'</span><span class="s1">DB_USERNAME</span><span class="dl">'</span><span class="p">,</span> <span class="dl">'</span><span class="s1">postgres</span><span class="dl">'</span><span class="p">),</span> <span class="na">password</span><span class="p">:</span> <span class="nx">configService</span><span class="p">.</span><span class="nf">get</span><span class="p">(</span><span class="dl">'</span><span class="s1">DB_PASSWORD</span><span class="dl">'</span><span class="p">,</span> <span class="dl">'</span><span class="s1">db_password</span><span class="dl">'</span><span class="p">),</span> <span class="na">database</span><span class="p">:</span> <span class="nx">configService</span><span class="p">.</span><span class="nf">get</span><span class="p">(</span><span class="dl">'</span><span class="s1">DB_NAME</span><span class="dl">'</span><span class="p">,</span> <span class="dl">'</span><span class="s1">myapp</span><span class="dl">'</span><span class="p">),</span> <span class="na">entities</span><span class="p">:</span> <span class="p">[</span><span class="nx">__dirname</span> <span class="o">+</span> <span class="dl">'</span><span class="s1">/**/*.entity{.ts,.js}</span><span class="dl">'</span><span class="p">],</span> <span class="na">autoLoadEntities</span><span class="p">:</span> <span class="kc">true</span><span class="p">,</span> <span class="na">synchronize</span><span class="p">:</span> <span class="nx">configService</span><span class="p">.</span><span class="nf">get</span><span class="p">(</span><span class="dl">'</span><span class="s1">NODE_ENV</span><span class="dl">'</span><span class="p">)</span> <span class="o">!==</span> <span class="dl">'</span><span class="s1">production</span><span class="dl">'</span><span class="p">,</span> <span class="p">}),</span> <span class="na">inject</span><span class="p">:</span> <span class="p">[</span><span class="nx">ConfigService</span><span class="p">],</span> <span class="p">}),</span> </code></pre> </div> <h2> 2. 🔧 Lightsail Server Configuration </h2> <h3> Connection and updates </h3> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code><span class="c"># Connect to server</span> ssh <span class="nt">-i</span> your-key.pem ubuntu@your-lightsail-ip <span class="c"># Update system</span> <span class="nb">sudo </span>apt update <span class="o">&amp;&amp;</span> <span class="nb">sudo </span>apt upgrade <span class="nt">-y</span> </code></pre> </div> <h3> Docker Installation </h3> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code><span class="c"># Install Docker</span> curl <span class="nt">-fsSL</span> https://get.docker.com <span class="nt">-o</span> get-docker.sh <span class="nb">sudo </span>sh get-docker.sh <span class="c"># Add your user to docker group</span> <span class="nb">sudo </span>usermod <span class="nt">-aG</span> docker <span class="nv">$USER</span> <span class="c"># Install Docker Compose</span> <span class="nb">sudo </span>apt <span class="nb">install </span>docker-compose <span class="nt">-y</span> <span class="c"># Install Git</span> <span class="nb">sudo </span>apt <span class="nb">install </span>git <span class="nt">-y</span> <span class="c"># Restart session</span> <span class="nb">exit</span> <span class="c"># Reconnect</span> </code></pre> </div> <h2> 3. 📦 Application Deployment </h2> <h3> Clone the project </h3> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code><span class="c"># Clone from GitLab</span> git clone https://gitlab.com/your-username/your-repo.git <span class="nb">cd </span>your-repo </code></pre> </div> <h3> Environment configuration </h3> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code><span class="c"># Create .env file for production</span> <span class="nb">cp</span> .env.production .env <span class="c"># Or create manually</span> nano .env </code></pre> </div> <p>Example <code>.env</code> file:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code><span class="c"># Database Configuration</span> <span class="nv">DB_HOST</span><span class="o">=</span>postgres <span class="nv">DB_PORT</span><span class="o">=</span>5432 <span class="nv">DB_USERNAME</span><span class="o">=</span>app_admin <span class="nv">DB_PASSWORD</span><span class="o">=</span>YourSecurePassword2024! <span class="nv">DB_NAME</span><span class="o">=</span>myapp <span class="c"># Application Configuration</span> <span class="nv">PORT</span><span class="o">=</span>3000 <span class="nv">NODE_ENV</span><span class="o">=</span>production <span class="c"># JWT Secret</span> <span class="nv">JWT_SECRET</span><span class="o">=</span>your_super_long_and_secure_jwt_secret_for_production_123456789 <span class="c"># Swagger Configuration</span> <span class="nv">SWAGGER_PASSWORD</span><span class="o">=</span>admin_prod_secure <span class="c"># Your other environment variables...</span> </code></pre> </div> <h3> Build and start services </h3> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code><span class="c"># Build and start</span> docker-compose up <span class="nt">-d</span> <span class="nt">--build</span> <span class="c"># Verify everything works</span> docker-compose ps docker-compose logs <span class="nt">-f</span> </code></pre> </div> <h3> API Verification </h3> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code><span class="c"># Test API</span> curl http://localhost:3000 <span class="c"># Check Swagger</span> curl http://localhost:3000/docs </code></pre> </div> <h2> 4. 🌐 Subdomain Configuration </h2> <h3> DNS Configuration in Cloudflare </h3> <ol> <li>Log in to your Cloudflare dashboard</li> <li>Go to <strong>DNS</strong> → <strong>Records</strong> </li> <li>Click <strong>Add record</strong> </li> <li>Configure: <ul> <li> <strong>Type</strong>: <code>A</code> </li> <li> <strong>Name</strong>: <code>api</code> </li> <li> <strong>IPv4 address</strong>: <code>YOUR_LIGHTSAIL_IP</code> </li> <li> <strong>Proxy status</strong>: 🟠 Proxied</li> <li> <strong>TTL</strong>: Auto</li> </ul> </li> </ol> <h3> Nginx Installation and Configuration </h3> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code><span class="c"># Install Nginx</span> <span class="nb">sudo </span>apt <span class="nb">install </span>nginx <span class="nt">-y</span> <span class="nb">sudo </span>systemctl start nginx <span class="nb">sudo </span>systemctl <span class="nb">enable </span>nginx </code></pre> </div> <h3> Reverse proxy configuration </h3> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code><span class="c"># Create configuration</span> <span class="nb">sudo </span>nano /etc/nginx/sites-available/api.yourdomain.com </code></pre> </div> <p>File content:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight nginx"><code><span class="k">server</span> <span class="p">{</span> <span class="kn">listen</span> <span class="mi">80</span><span class="p">;</span> <span class="kn">server_name</span> <span class="s">api.yourdomain.com</span><span class="p">;</span> <span class="kn">location</span> <span class="n">/</span> <span class="p">{</span> <span class="kn">proxy_pass</span> <span class="s">http://127.0.0.1:3000</span><span class="p">;</span> <span class="kn">proxy_http_version</span> <span class="mf">1.1</span><span class="p">;</span> <span class="kn">proxy_set_header</span> <span class="s">Upgrade</span> <span class="nv">$http_upgrade</span><span class="p">;</span> <span class="kn">proxy_set_header</span> <span class="s">Connection</span> <span class="s">'upgrade'</span><span class="p">;</span> <span class="kn">proxy_set_header</span> <span class="s">Host</span> <span class="nv">$host</span><span class="p">;</span> <span class="kn">proxy_set_header</span> <span class="s">X-Real-IP</span> <span class="nv">$remote_addr</span><span class="p">;</span> <span class="kn">proxy_set_header</span> <span class="s">X-Forwarded-For</span> <span class="nv">$proxy_add_x_forwarded_for</span><span class="p">;</span> <span class="kn">proxy_set_header</span> <span class="s">X-Forwarded-Proto</span> <span class="nv">$scheme</span><span class="p">;</span> <span class="kn">proxy_cache_bypass</span> <span class="nv">$http_upgrade</span><span class="p">;</span> <span class="kn">proxy_read_timeout</span> <span class="s">300s</span><span class="p">;</span> <span class="kn">proxy_connect_timeout</span> <span class="s">300s</span><span class="p">;</span> <span class="kn">proxy_send_timeout</span> <span class="s">300s</span><span class="p">;</span> <span class="p">}</span> <span class="kn">location</span> <span class="n">/docs</span> <span class="p">{</span> <span class="kn">proxy_pass</span> <span class="s">http://127.0.0.1:3000/docs</span><span class="p">;</span> <span class="kn">proxy_set_header</span> <span class="s">Host</span> <span class="nv">$host</span><span class="p">;</span> <span class="kn">proxy_set_header</span> <span class="s">X-Real-IP</span> <span class="nv">$remote_addr</span><span class="p">;</span> <span class="kn">proxy_set_header</span> <span class="s">X-Forwarded-For</span> <span class="nv">$proxy_add_x_forwarded_for</span><span class="p">;</span> <span class="kn">proxy_set_header</span> <span class="s">X-Forwarded-Proto</span> <span class="nv">$scheme</span><span class="p">;</span> <span class="p">}</span> <span class="p">}</span> </code></pre> </div> <h3> Enable configuration </h3> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code><span class="c"># Create symbolic link</span> <span class="nb">sudo ln</span> <span class="nt">-s</span> /etc/nginx/sites-available/api.yourdomain.com /etc/nginx/sites-enabled/ <span class="c"># Test configuration</span> <span class="nb">sudo </span>nginx <span class="nt">-t</span> <span class="c"># Reload Nginx</span> <span class="nb">sudo </span>systemctl reload nginx </code></pre> </div> <h3> Firewall configuration </h3> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code><span class="c"># Allow HTTP and HTTPS</span> <span class="nb">sudo </span>ufw allow <span class="s1">'Nginx Full'</span> <span class="c"># Check rules</span> <span class="nb">sudo </span>ufw status </code></pre> </div> <h2> 5. 🔒 SSL Configuration with Cloudflare </h2> <h3> In Cloudflare dashboard </h3> <ol> <li> <strong>SSL/TLS</strong> → <strong>Overview</strong> → Mode: <strong>Flexible</strong> </li> <li> <strong>SSL/TLS</strong> → <strong>Edge Certificates</strong> → <strong>Always Use HTTPS</strong>: <strong>ON</strong> </li> <li>Verify your DNS record is in <strong>Proxied</strong> mode (🟠)</li> </ol> <h3> Final test </h3> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code><span class="c"># Test HTTP</span> curl http://api.yourdomain.com <span class="c"># Test HTTPS</span> curl https://api.yourdomain.com <span class="c"># Test Swagger</span> curl https://api.yourdomain.com/docs </code></pre> </div> <h2> 6. 🚀 Automated Deployment Script </h2> <p>Create a script to facilitate future updates:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code><span class="c"># Create script</span> nano deploy.sh </code></pre> </div> <p>Content:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code><span class="c">#!/bin/bash</span> <span class="nb">echo</span> <span class="s2">"🚀 Deployment in progress..."</span> <span class="c"># Pull code from GitLab</span> git pull origin main <span class="c"># Copy production environment file</span> <span class="nb">cp</span> .env.production .env <span class="c"># Stop existing services</span> docker-compose down <span class="c"># Rebuild and restart</span> docker-compose up <span class="nt">-d</span> <span class="nt">--build</span> <span class="nb">echo</span> <span class="s2">"✅ Deployment completed!"</span> <span class="nb">echo</span> <span class="s2">"🌐 API available at: https://api.yourdomain.com"</span> </code></pre> </div> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code><span class="c"># Make executable</span> <span class="nb">chmod</span> +x deploy.sh </code></pre> </div> <h2> 7. 🔧 Maintenance Commands </h2> <h3> Log monitoring </h3> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code><span class="c"># View all logs</span> docker-compose logs <span class="nt">-f</span> <span class="c"># Specific logs</span> docker-compose logs <span class="nt">-f</span> nestjs_app docker-compose logs <span class="nt">-f</span> postgres </code></pre> </div> <h3> Service management </h3> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code><span class="c"># Restart a service</span> docker-compose restart nestjs_app <span class="c"># Rebuild after changes</span> docker-compose up <span class="nt">-d</span> <span class="nt">--build</span> <span class="c"># Stop all services</span> docker-compose down </code></pre> </div> <h3> Database backup </h3> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code><span class="c"># Create backup</span> docker <span class="nb">exec </span>postgres_db pg_dump <span class="nt">-U</span> your_username your_db_name <span class="o">&gt;</span> backup.sql <span class="c"># Restore backup</span> <span class="nb">cat </span>backup.sql | docker <span class="nb">exec</span> <span class="nt">-i</span> postgres_db psql <span class="nt">-U</span> your_username <span class="nt">-d</span> your_db_name </code></pre> </div> <h2> 8. 📊 Health Monitoring </h2> <h3> Basic monitoring commands </h3> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code><span class="c"># Check container status</span> docker-compose ps <span class="c"># Monitor resource usage</span> docker stats <span class="c"># Check disk usage</span> <span class="nb">df</span> <span class="nt">-h</span> docker system <span class="nb">df</span> </code></pre> </div> <h3> Log rotation setup </h3> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code><span class="c"># Configure log rotation for Docker</span> <span class="nb">sudo </span>nano /etc/docker/daemon.json </code></pre> </div> <p>Add:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight json"><code><span class="p">{</span><span class="w"> </span><span class="nl">"log-driver"</span><span class="p">:</span><span class="w"> </span><span class="s2">"json-file"</span><span class="p">,</span><span class="w"> </span><span class="nl">"log-opts"</span><span class="p">:</span><span class="w"> </span><span class="p">{</span><span class="w"> </span><span class="nl">"max-size"</span><span class="p">:</span><span class="w"> </span><span class="s2">"10m"</span><span class="p">,</span><span class="w"> </span><span class="nl">"max-file"</span><span class="p">:</span><span class="w"> </span><span class="s2">"3"</span><span class="w"> </span><span class="p">}</span><span class="w"> </span><span class="p">}</span><span class="w"> </span></code></pre> </div> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code><span class="c"># Restart Docker daemon</span> <span class="nb">sudo </span>systemctl restart docker </code></pre> </div> <h2> 9. 🛡️ Security Best Practices </h2> <h3> Environment variables security </h3> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code><span class="c"># Secure .env file permissions</span> <span class="nb">chmod </span>600 .env <span class="c"># Never commit .env files to version control</span> <span class="nb">echo</span> <span class="s2">".env*"</span> <span class="o">&gt;&gt;</span> .gitignore </code></pre> </div> <h3> Firewall configuration </h3> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code><span class="c"># Enable UFW</span> <span class="nb">sudo </span>ufw <span class="nb">enable</span> <span class="c"># Allow only necessary ports</span> <span class="nb">sudo </span>ufw allow ssh <span class="nb">sudo </span>ufw allow <span class="s1">'Nginx Full'</span> <span class="c"># Check firewall status</span> <span class="nb">sudo </span>ufw status verbose </code></pre> </div> <h3> Database security </h3> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code><span class="c"># Change default PostgreSQL port (optional)</span> <span class="c"># In docker-compose.yml, change port mapping to:</span> <span class="c"># ports:</span> <span class="c"># - "127.0.0.1:5433:5432"</span> <span class="c"># Regular security updates</span> <span class="nb">sudo </span>apt update <span class="o">&amp;&amp;</span> <span class="nb">sudo </span>apt upgrade <span class="nt">-y</span> </code></pre> </div> <h2> 🎉 Final Result </h2> <p>Your NestJS API is now accessible via:</p> <ul> <li> <strong>API</strong>: <code>https://api.yourdomain.com</code> </li> <li> <strong>Documentation</strong>: <code>https://api.yourdomain.com/docs</code> </li> <li> <strong>Automatic SSL</strong> via Cloudflare</li> <li> <strong>Containerized PostgreSQL</strong> database with persistent storage</li> </ul> <h2> 🚨 Troubleshooting </h2> <h3> Common issues and solutions </h3> <h4> API not responding </h4> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code><span class="c"># Check container status</span> docker-compose ps <span class="c"># Check logs</span> docker-compose logs nestjs_app <span class="c"># Restart if needed</span> docker-compose restart nestjs_app </code></pre> </div> <h4> Database connection issues </h4> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code><span class="c"># Check PostgreSQL logs</span> docker-compose logs postgres <span class="c"># Verify environment variables</span> docker-compose config <span class="c"># Reset database (caution: data loss)</span> docker-compose down docker volume <span class="nb">rm </span>your-project_postgres_data docker-compose up <span class="nt">-d</span> </code></pre> </div> <h4> SSL certificate issues </h4> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code><span class="c"># Check Cloudflare SSL settings</span> <span class="c"># Verify DNS propagation</span> dig api.yourdomain.com <span class="c"># Test SSL</span> openssl s_client <span class="nt">-connect</span> api.yourdomain.com:443 </code></pre> </div> <h2> 🔄 Future Deployments </h2> <p>For updates:</p> <ol> <li>Push code to GitLab</li> <li>On server: <code>./deploy.sh</code> </li> <li>Verify everything works</li> </ol> <h2> 📝 Additional Notes </h2> <h3> Performance optimization </h3> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code><span class="c"># Monitor API performance</span> curl <span class="nt">-w</span> <span class="s2">"@curl-format.txt"</span> <span class="nt">-o</span> /dev/null <span class="nt">-s</span> <span class="s2">"https://api.yourdomain.com"</span> <span class="c"># Database performance monitoring</span> docker <span class="nb">exec</span> <span class="nt">-it</span> postgres_db psql <span class="nt">-U</span> your_username <span class="nt">-d</span> your_db_name <span class="nt">-c</span> <span class="s2">"SELECT * FROM pg_stat_activity;"</span> </code></pre> </div> <h3> Backup automation </h3> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code><span class="c"># Create automated backup script</span> nano backup.sh </code></pre> </div> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code><span class="c">#!/bin/bash</span> <span class="nv">DATE</span><span class="o">=</span><span class="si">$(</span><span class="nb">date</span> +%Y%m%d_%H%M%S<span class="si">)</span> docker <span class="nb">exec </span>postgres_db pg_dump <span class="nt">-U</span> your_username your_db_name <span class="o">&gt;</span> <span class="s2">"backup_</span><span class="k">${</span><span class="nv">DATE</span><span class="k">}</span><span class="s2">.sql"</span> <span class="nb">echo</span> <span class="s2">"Backup created: backup_</span><span class="k">${</span><span class="nv">DATE</span><span class="k">}</span><span class="s2">.sql"</span> </code></pre> </div> <p>Your production infrastructure is now ready! 🚀</p> nestjs aws docker postgres Guide Complet : Déployer une API NestJS avec PostgreSQL sur AWS Lightsail Georges HELOUSSATO Mon, 01 Sep 2025 16:08:46 +0000 https://dev.to/georges_heloussato_d6ff14/guide-complet-deployer-une-api-nestjs-avec-postgresql-sur-aws-lightsail-56je https://dev.to/georges_heloussato_d6ff14/guide-complet-deployer-une-api-nestjs-avec-postgresql-sur-aws-lightsail-56je <p>Ce guide vous accompagne étape par étape pour déployer votre application NestJS avec une base de données PostgreSQL sur AWS Lightsail, avec un sous-domaine personnalisé géré par Cloudflare.</p> <h2> 🎯 Objectif Final </h2> <ul> <li>API NestJS accessible via <code>https://api.votredomaine.com</code> </li> <li>Base de données PostgreSQL containerisée</li> <li>SSL géré par Cloudflare</li> <li>Documentation Swagger accessible</li> </ul> <h2> 📋 Prérequis </h2> <ul> <li>Un serveur AWS Lightsail (Ubuntu)</li> <li>Un domaine configuré avec Cloudflare</li> <li>Votre projet NestJS sur GitLab</li> <li>Accès SSH à votre serveur</li> </ul> <h2> 1. 📁 Préparation du Projet </h2> <h3> Structure des fichiers nécessaires </h3> <p>Votre projet doit contenir ces fichiers à la racine :<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight plaintext"><code>votre-projet/ ├── src/ # Code NestJS ├── package.json ├── Dockerfile # Configuration Docker ├── docker-compose.yml # Orchestration des services ├── .env.production # Variables d'environnement production ├── .dockerignore └── .gitignore </code></pre> </div> <h3> Fichier <code>Dockerfile</code> </h3> <div class="highlight js-code-highlight"> <pre class="highlight docker"><code><span class="k">FROM</span><span class="s"> node:20</span> <span class="k">WORKDIR</span><span class="s"> /app</span> <span class="c"># Copier package.json et package-lock.json</span> <span class="k">COPY</span><span class="s"> package*.json ./</span> <span class="c"># Installer toutes les dépendances</span> <span class="k">RUN </span>npm ci <span class="c"># Copier le code source</span> <span class="k">COPY</span><span class="s"> . .</span> <span class="c"># Build de l'application</span> <span class="k">RUN </span>npm run build <span class="c"># Supprimer les dev dependencies</span> <span class="k">RUN </span>npm prune <span class="nt">--production</span> <span class="c"># Exposer le port</span> <span class="k">EXPOSE</span><span class="s"> 3000</span> <span class="c"># Commande de démarrage</span> <span class="k">CMD</span><span class="s"> ["npm", "run", "start:prod"]</span> </code></pre> </div> <h3> Fichier <code>docker-compose.yml</code> </h3> <div class="highlight js-code-highlight"> <pre class="highlight yaml"><code><span class="na">version</span><span class="pi">:</span> <span class="s1">'</span><span class="s">3.8'</span> <span class="na">services</span><span class="pi">:</span> <span class="na">postgres</span><span class="pi">:</span> <span class="na">image</span><span class="pi">:</span> <span class="s">postgres:15</span> <span class="na">container_name</span><span class="pi">:</span> <span class="s">postgres_db</span> <span class="na">restart</span><span class="pi">:</span> <span class="s">always</span> <span class="na">environment</span><span class="pi">:</span> <span class="na">POSTGRES_DB</span><span class="pi">:</span> <span class="s">${DB_NAME}</span> <span class="na">POSTGRES_USER</span><span class="pi">:</span> <span class="s">${DB_USERNAME}</span> <span class="na">POSTGRES_PASSWORD</span><span class="pi">:</span> <span class="s">${DB_PASSWORD}</span> <span class="na">volumes</span><span class="pi">:</span> <span class="pi">-</span> <span class="s">postgres_data:/var/lib/postgresql/data</span> <span class="na">networks</span><span class="pi">:</span> <span class="pi">-</span> <span class="s">app_network</span> <span class="na">healthcheck</span><span class="pi">:</span> <span class="na">test</span><span class="pi">:</span> <span class="pi">[</span><span class="s2">"</span><span class="s">CMD-SHELL"</span><span class="pi">,</span> <span class="s2">"</span><span class="s">pg_isready</span><span class="nv"> </span><span class="s">-U</span><span class="nv"> </span><span class="s">${DB_USERNAME}</span><span class="nv"> </span><span class="s">-d</span><span class="nv"> </span><span class="s">${DB_NAME}"</span><span class="pi">]</span> <span class="na">interval</span><span class="pi">:</span> <span class="s">10s</span> <span class="na">timeout</span><span class="pi">:</span> <span class="s">5s</span> <span class="na">retries</span><span class="pi">:</span> <span class="m">5</span> <span class="na">nestjs_app</span><span class="pi">:</span> <span class="na">build</span><span class="pi">:</span> <span class="s">.</span> <span class="na">container_name</span><span class="pi">:</span> <span class="s">nestjs_container</span> <span class="na">restart</span><span class="pi">:</span> <span class="s">always</span> <span class="na">environment</span><span class="pi">:</span> <span class="na">NODE_ENV</span><span class="pi">:</span> <span class="s">${NODE_ENV}</span> <span class="na">DB_HOST</span><span class="pi">:</span> <span class="s">postgres</span> <span class="na">DB_PORT</span><span class="pi">:</span> <span class="s">${DB_PORT}</span> <span class="na">DB_USERNAME</span><span class="pi">:</span> <span class="s">${DB_USERNAME}</span> <span class="na">DB_PASSWORD</span><span class="pi">:</span> <span class="s">${DB_PASSWORD}</span> <span class="na">DB_NAME</span><span class="pi">:</span> <span class="s">${DB_NAME}</span> <span class="na">PORT</span><span class="pi">:</span> <span class="s">${PORT}</span> <span class="na">JWT_SECRET</span><span class="pi">:</span> <span class="s">${JWT_SECRET}</span> <span class="na">SWAGGER_PASSWORD</span><span class="pi">:</span> <span class="s">${SWAGGER_PASSWORD}</span> <span class="c1"># Ajoutez toutes vos autres variables d'environnement ici</span> <span class="na">ports</span><span class="pi">:</span> <span class="pi">-</span> <span class="s2">"</span><span class="s">127.0.0.1:3000:3000"</span> <span class="na">depends_on</span><span class="pi">:</span> <span class="na">postgres</span><span class="pi">:</span> <span class="na">condition</span><span class="pi">:</span> <span class="s">service_healthy</span> <span class="na">networks</span><span class="pi">:</span> <span class="pi">-</span> <span class="s">app_network</span> <span class="na">volumes</span><span class="pi">:</span> <span class="na">postgres_data</span><span class="pi">:</span> <span class="na">networks</span><span class="pi">:</span> <span class="na">app_network</span><span class="pi">:</span> <span class="na">driver</span><span class="pi">:</span> <span class="s">bridge</span> </code></pre> </div> <h3> Configuration NestJS (<code>app.module.ts</code>) </h3> <p>Assurez-vous que votre module principal utilise les bonnes variables d'environnement :<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight typescript"><code><span class="nx">TypeOrmModule</span><span class="p">.</span><span class="nf">forRootAsync</span><span class="p">({</span> <span class="na">imports</span><span class="p">:</span> <span class="p">[</span><span class="nx">ConfigModule</span><span class="p">],</span> <span class="na">useFactory</span><span class="p">:</span> <span class="p">(</span><span class="na">configService</span><span class="p">:</span> <span class="nx">ConfigService</span><span class="p">)</span> <span class="o">=&gt;</span> <span class="p">({</span> <span class="na">type</span><span class="p">:</span> <span class="dl">'</span><span class="s1">postgres</span><span class="dl">'</span><span class="p">,</span> <span class="na">host</span><span class="p">:</span> <span class="nx">configService</span><span class="p">.</span><span class="nf">get</span><span class="p">(</span><span class="dl">'</span><span class="s1">DB_HOST</span><span class="dl">'</span><span class="p">,</span> <span class="dl">'</span><span class="s1">localhost</span><span class="dl">'</span><span class="p">),</span> <span class="na">port</span><span class="p">:</span> <span class="nx">configService</span><span class="p">.</span><span class="nf">get</span><span class="p">(</span><span class="dl">'</span><span class="s1">DB_PORT</span><span class="dl">'</span><span class="p">,</span> <span class="mi">5432</span><span class="p">),</span> <span class="na">username</span><span class="p">:</span> <span class="nx">configService</span><span class="p">.</span><span class="nf">get</span><span class="p">(</span><span class="dl">'</span><span class="s1">DB_USERNAME</span><span class="dl">'</span><span class="p">,</span> <span class="dl">'</span><span class="s1">postgres</span><span class="dl">'</span><span class="p">),</span> <span class="na">password</span><span class="p">:</span> <span class="nx">configService</span><span class="p">.</span><span class="nf">get</span><span class="p">(</span><span class="dl">'</span><span class="s1">DB_PASSWORD</span><span class="dl">'</span><span class="p">,</span> <span class="dl">''</span><span class="p">),</span> <span class="na">database</span><span class="p">:</span> <span class="nx">configService</span><span class="p">.</span><span class="nf">get</span><span class="p">(</span><span class="dl">'</span><span class="s1">DB_NAME</span><span class="dl">'</span><span class="p">,</span> <span class="dl">'</span><span class="s1">dabaseName</span><span class="dl">'</span><span class="p">),</span> <span class="na">entities</span><span class="p">:</span> <span class="p">[</span><span class="nx">__dirname</span> <span class="o">+</span> <span class="dl">'</span><span class="s1">/**/*.entity{.ts,.js}</span><span class="dl">'</span><span class="p">],</span> <span class="na">autoLoadEntities</span><span class="p">:</span> <span class="kc">true</span><span class="p">,</span> <span class="na">synchronize</span><span class="p">:</span> <span class="nx">configService</span><span class="p">.</span><span class="nf">get</span><span class="p">(</span><span class="dl">'</span><span class="s1">NODE_ENV</span><span class="dl">'</span><span class="p">)</span> <span class="o">!==</span> <span class="dl">'</span><span class="s1">production</span><span class="dl">'</span><span class="p">,</span> <span class="p">}),</span> <span class="na">inject</span><span class="p">:</span> <span class="p">[</span><span class="nx">ConfigService</span><span class="p">],</span> <span class="p">}),</span> </code></pre> </div> <h2> 2. 🔧 Configuration du Serveur Lightsail </h2> <h3> Connexion et mise à jour </h3> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code><span class="c"># Se connecter au serveur</span> ssh <span class="nt">-i</span> votre-cle.pem ubuntu@votre-ip-lightsail <span class="c"># Mettre à jour le système</span> <span class="nb">sudo </span>apt update <span class="o">&amp;&amp;</span> <span class="nb">sudo </span>apt upgrade <span class="nt">-y</span> </code></pre> </div> <h3> Installation de Docker </h3> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code><span class="c"># Installer Docker</span> curl <span class="nt">-fsSL</span> https://get.docker.com <span class="nt">-o</span> get-docker.sh <span class="nb">sudo </span>sh get-docker.sh <span class="c"># Ajouter votre utilisateur au groupe docker</span> <span class="nb">sudo </span>usermod <span class="nt">-aG</span> docker <span class="nv">$USER</span> <span class="c"># Installer Docker Compose</span> <span class="nb">sudo </span>apt <span class="nb">install </span>docker-compose <span class="nt">-y</span> <span class="c"># Installer Git</span> <span class="nb">sudo </span>apt <span class="nb">install </span>git <span class="nt">-y</span> <span class="c"># Redémarrer la session</span> <span class="nb">exit</span> <span class="c"># Reconnectez-vous</span> </code></pre> </div> <h2> 3. 📦 Déploiement de l'Application </h2> <h3> Cloner le projet </h3> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code><span class="c"># Cloner depuis GitLab</span> git clone https://gitlab.com/votre-username/votre-repo.git <span class="nb">cd </span>votre-repo </code></pre> </div> <h3> Configuration de l'environnement </h3> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code><span class="c"># Créer le fichier .env pour la production</span> <span class="nb">cp</span> .env.production .env <span class="c"># Ou créer manuellement</span> nano .env </code></pre> </div> <p>Exemple de fichier <code>.env</code> :<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code><span class="c"># Database Configuration</span> <span class="nv">DB_HOST</span><span class="o">=</span>postgres <span class="nv">DB_PORT</span><span class="o">=</span>5432 <span class="nv">DB_USERNAME</span><span class="o">=</span>dabaseName <span class="nv">DB_PASSWORD</span><span class="o">=</span>VotreMotDePasseSecure2024! <span class="nv">DB_NAME</span><span class="o">=</span>spidcash <span class="c"># Application Configuration</span> <span class="nv">PORT</span><span class="o">=</span>3000 <span class="nv">NODE_ENV</span><span class="o">=</span>production <span class="c"># JWT Secret</span> <span class="nv">JWT_SECRET</span><span class="o">=</span>votre_jwt_secret_super_long_et_secure_pour_production_123456789 <span class="c"># Swagger Configuration</span> <span class="nv">SWAGGER_PASSWORD</span><span class="o">=</span>admin_prod_secure <span class="c"># Vos autres variables d'environnement...</span> </code></pre> </div> <h3> Construire et démarrer les services </h3> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code><span class="c"># Construire et démarrer</span> docker-compose up <span class="nt">-d</span> <span class="nt">--build</span> <span class="c"># Vérifier que tout fonctionne</span> docker-compose ps docker-compose logs <span class="nt">-f</span> </code></pre> </div> <h3> Vérification de l'API </h3> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code><span class="c"># Tester l'API</span> curl http://localhost:3000 <span class="c"># Vérifier Swagger</span> curl http://localhost:3000/docs </code></pre> </div> <h2> 4. 🌐 Configuration du Sous-domaine </h2> <h3> Configuration DNS dans Cloudflare </h3> <ol> <li>Connectez-vous à votre dashboard Cloudflare</li> <li>Allez dans <strong>DNS</strong> → <strong>Records</strong> </li> <li>Cliquez sur <strong>Add record</strong> </li> <li>Configurez : <ul> <li> <strong>Type</strong> : <code>A</code> </li> <li> <strong>Name</strong> : <code>api</code> </li> <li> <strong>IPv4 address</strong> : <code>VOTRE_IP_LIGHTSAIL</code> </li> <li> <strong>Proxy status</strong> : 🟠 Proxied</li> <li> <strong>TTL</strong> : Auto</li> </ul> </li> </ol> <h3> Installation et configuration de Nginx </h3> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code><span class="c"># Installer Nginx</span> <span class="nb">sudo </span>apt <span class="nb">install </span>nginx <span class="nt">-y</span> <span class="nb">sudo </span>systemctl start nginx <span class="nb">sudo </span>systemctl <span class="nb">enable </span>nginx </code></pre> </div> <h3> Configuration du reverse proxy </h3> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code><span class="c"># Créer la configuration</span> <span class="nb">sudo </span>nano /etc/nginx/sites-available/api.votredomaine.com </code></pre> </div> <p>Contenu du fichier :<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight nginx"><code><span class="k">server</span> <span class="p">{</span> <span class="kn">listen</span> <span class="mi">80</span><span class="p">;</span> <span class="kn">server_name</span> <span class="s">api.votredomaine.com</span><span class="p">;</span> <span class="kn">location</span> <span class="n">/</span> <span class="p">{</span> <span class="kn">proxy_pass</span> <span class="s">http://127.0.0.1:3000</span><span class="p">;</span> <span class="kn">proxy_http_version</span> <span class="mf">1.1</span><span class="p">;</span> <span class="kn">proxy_set_header</span> <span class="s">Upgrade</span> <span class="nv">$http_upgrade</span><span class="p">;</span> <span class="kn">proxy_set_header</span> <span class="s">Connection</span> <span class="s">'upgrade'</span><span class="p">;</span> <span class="kn">proxy_set_header</span> <span class="s">Host</span> <span class="nv">$host</span><span class="p">;</span> <span class="kn">proxy_set_header</span> <span class="s">X-Real-IP</span> <span class="nv">$remote_addr</span><span class="p">;</span> <span class="kn">proxy_set_header</span> <span class="s">X-Forwarded-For</span> <span class="nv">$proxy_add_x_forwarded_for</span><span class="p">;</span> <span class="kn">proxy_set_header</span> <span class="s">X-Forwarded-Proto</span> <span class="nv">$scheme</span><span class="p">;</span> <span class="kn">proxy_cache_bypass</span> <span class="nv">$http_upgrade</span><span class="p">;</span> <span class="kn">proxy_read_timeout</span> <span class="s">300s</span><span class="p">;</span> <span class="kn">proxy_connect_timeout</span> <span class="s">300s</span><span class="p">;</span> <span class="kn">proxy_send_timeout</span> <span class="s">300s</span><span class="p">;</span> <span class="p">}</span> <span class="kn">location</span> <span class="n">/docs</span> <span class="p">{</span> <span class="kn">proxy_pass</span> <span class="s">http://127.0.0.1:3000/docs</span><span class="p">;</span> <span class="kn">proxy_set_header</span> <span class="s">Host</span> <span class="nv">$host</span><span class="p">;</span> <span class="kn">proxy_set_header</span> <span class="s">X-Real-IP</span> <span class="nv">$remote_addr</span><span class="p">;</span> <span class="kn">proxy_set_header</span> <span class="s">X-Forwarded-For</span> <span class="nv">$proxy_add_x_forwarded_for</span><span class="p">;</span> <span class="kn">proxy_set_header</span> <span class="s">X-Forwarded-Proto</span> <span class="nv">$scheme</span><span class="p">;</span> <span class="p">}</span> <span class="p">}</span> </code></pre> </div> <h3> Activer la configuration </h3> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code><span class="c"># Créer le lien symbolique</span> <span class="nb">sudo ln</span> <span class="nt">-s</span> /etc/nginx/sites-available/api.votredomaine.com /etc/nginx/sites-enabled/ <span class="c"># Tester la configuration</span> <span class="nb">sudo </span>nginx <span class="nt">-t</span> <span class="c"># Recharger Nginx</span> <span class="nb">sudo </span>systemctl reload nginx </code></pre> </div> <h3> Configuration du pare-feu </h3> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code><span class="c"># Autoriser HTTP et HTTPS</span> <span class="nb">sudo </span>ufw allow <span class="s1">'Nginx Full'</span> <span class="c"># Vérifier les règles</span> <span class="nb">sudo </span>ufw status </code></pre> </div> <h2> 5. 🔒 Configuration SSL avec Cloudflare </h2> <h3> Dans le dashboard Cloudflare </h3> <ol> <li> <strong>SSL/TLS</strong> → <strong>Overview</strong> → Mode : <strong>Flexible</strong> </li> <li> <strong>SSL/TLS</strong> → <strong>Edge Certificates</strong> → <strong>Always Use HTTPS</strong> : <strong>ON</strong> </li> <li>Vérifiez que votre enregistrement DNS est en mode <strong>Proxied</strong> (🟠)</li> </ol> <h3> Test final </h3> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code><span class="c"># Tester HTTP</span> curl http://api.votredomaine.com <span class="c"># Tester HTTPS</span> curl https://api.votredomaine.com <span class="c"># Tester Swagger</span> curl https://api.votredomaine.com/docs </code></pre> </div> <h2> 6. 🚀 Script de Déploiement Automatique </h2> <p>Créez un script pour faciliter les mises à jour futures :<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code><span class="c"># Créer le script</span> nano deploy.sh </code></pre> </div> <p>Contenu :<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code><span class="c">#!/bin/bash</span> <span class="nb">echo</span> <span class="s2">"🚀 Déploiement en cours..."</span> <span class="c"># Pull du code depuis GitLab</span> git pull origin main <span class="c"># Copier le fichier d'environnement de production</span> <span class="nb">cp</span> .env.production .env <span class="c"># Arrêter les services existants</span> docker-compose down <span class="c"># Reconstruire et redémarrer</span> docker-compose up <span class="nt">-d</span> <span class="nt">--build</span> <span class="nb">echo</span> <span class="s2">"✅ Déploiement terminé!"</span> <span class="nb">echo</span> <span class="s2">"🌐 API disponible sur : https://api.</span><span class="si">$(</span><span class="nb">hostname</span> <span class="nt">-I</span> | <span class="nb">awk</span> <span class="s1">'{print $1}'</span> | xargs dig +short <span class="nt">-x</span> | <span class="nb">sed</span> <span class="s1">'s/\.$//'</span><span class="si">)</span><span class="s2">.com"</span> </code></pre> </div> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code><span class="c"># Rendre exécutable</span> <span class="nb">chmod</span> +x deploy.sh </code></pre> </div> <h2> 7. 🔧 Commandes de Maintenance </h2> <h3> Surveillance des logs </h3> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code><span class="c"># Voir tous les logs</span> docker-compose logs <span class="nt">-f</span> <span class="c"># Logs spécifiques</span> docker-compose logs <span class="nt">-f</span> nestjs_app docker-compose logs <span class="nt">-f</span> postgres </code></pre> </div> <h3> Gestion des services </h3> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code><span class="c"># Redémarrer un service</span> docker-compose restart nestjs_app <span class="c"># Reconstruire après modification</span> docker-compose up <span class="nt">-d</span> <span class="nt">--build</span> <span class="c"># Arrêter tous les services</span> docker-compose down </code></pre> </div> <h3> Sauvegarde de la base de données </h3> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code><span class="c"># Créer une sauvegarde</span> docker <span class="nb">exec </span>postgres_db pg_dump <span class="nt">-U</span> votre_username votre_db_name <span class="o">&gt;</span> backup.sql <span class="c"># Restaurer une sauvegarde</span> <span class="nb">cat </span>backup.sql | docker <span class="nb">exec</span> <span class="nt">-i</span> postgres_db psql <span class="nt">-U</span> votre_username <span class="nt">-d</span> votre_db_name </code></pre> </div> <h2> 🎉 Résultat Final </h2> <p>Votre API NestJS est maintenant accessible via :</p> <ul> <li> <strong>API</strong> : <code>https://api.votredomaine.com</code> </li> <li> <strong>Documentation</strong> : <code>https://api.votredomaine.com/docs</code> </li> <li> <strong>SSL automatique</strong> via Cloudflare</li> <li> <strong>Base de données PostgreSQL</strong> containerisée et persistante</li> </ul> <h2> 🛡️ Points de Sécurité Importants </h2> <ol> <li><strong>Changez tous les mots de passe par défaut</strong></li> <li><strong>Utilisez des JWT secrets longs et aléatoires</strong></li> <li><strong>Configurez le pare-feu correctement</strong></li> <li><strong>Ne commitez jamais les fichiers .env sur GitLab</strong></li> <li><strong>Surveillez régulièrement les logs</strong></li> </ol> <h2> 🔄 Déploiements Futurs </h2> <p>Pour les mises à jour :</p> <ol> <li>Pousser le code sur GitLab</li> <li>Sur le serveur : <code>./deploy.sh</code> </li> <li>Vérifier que tout fonctionne</li> </ol> <p>Votre infrastructure est maintenant prête pour la production ! 🚀</p>