Fully Documented and Authenticated REST API
Ecommerce API
A secure eCommerce REST API featuring JWT authentication and role-based access control (RBAC), with comprehensive OpenAPI (Swagger) documentation, API request validation using class-validator for type safety, and a custom logging filter for comprehensive API monitoring.
What tools it uses
Links
How I built it
- Backend Framework: Built with NestJS, leveraging TypeScript and Express for robust and scalable API development.
- Security: Includes both authorized routes for privileged users and unauthenticated routes accessible to all users. Implemented class-validator for request validation, ensuring type safety and informative error responses.
- Logging: Features a custom logging filter to record all API requests and capture exceptions. Logs are available with pagination on admin routes for detailed monitoring and analysis.
- Documentation: Each API route is documented using the OpenAPI (Swagger) standard, and the entire application is further detailed with Compodoc, providing comprehensive inline comments and structure explanations.
- Deployment:
- Deployed on Hetzner servers using Docker Compose and managed through Coolify for automated deployments.
- Utilizes Cloudflare for CDN, SSL, DNS, and DDoS protection, with the frontend also hosted on Cloudflare Pages.
- CI/CD: Integrated with GitHub Actions for automated build, containerization, and deployment. The CI/CD pipeline builds the application, creates a Docker container, and pushes it to GitHub Container Registry. Coolify then deploys the latest image from the registry using a webhook.
- Load Balancing: Employs Traefik for load balancing between Docker containers, with configuration files stored on the server and mounted as Docker volumes to manage container ephemerality.
- Health Checks: Docker Compose files include scheduled health checks to ensure container reliability.
Architecture Diagram
- Coolify: Manages the deployment of Docker containers on the Hetzner server, ensuring that the latest versions of the applications are running.
- Hetzner Server: Hosts the entire infrastructure, including Docker Compose, Traefik load balancer, and MySQL database.
- Traefik Proxy Load Balancer: Distributes incoming traffic across multiple instances of the eCommerce API containers, ensuring high availability and reliability.
- Docker Compose: Orchestrates the deployment of multiple containers, including the eCommerce API and MySQL database. Utilizes Docker volumes for persistent storage and performs regular health checks to ensure container stability.
- GitHub Actions CICD Pipeline: Automates the build and deployment process. Upon pushing code to the repository, the pipeline builds the Docker images, pushes them to the GitHub Container Registry, and triggers Coolify to redeploy the updated containers.
- GitHub Container Registry: Stores the Docker images of the application, allowing for version control and easy deployment of the latest builds.
- Cloudflare: Provides a Content Delivery Network (CDN) for faster content delivery, DDoS protection, DNS resolution, and SSL certificates for secure communication.
- Cloudflare Pages: Hosts the frontend of the eCommerce application, ensuring that users can access the web pages quickly and securely.
Dockerfile
Docker Compose
Github Actions Yaml
Traefik Config
NICOLAS DE LUCA
FULL STACK DEVELOPER
building scalable applications and optimizing workflows across diverse technologies.
Leveraging Cutting-Edge Technologies
Driving success with modern tech stacks.
Innovative Solutions Through Software and Design
From concept to deployment, these are the projects I've built.
A secure eCommerce REST API featuring JWT authentication and role-based access control (RBAC), with comprehensive OpenAPI (Swagger) documentation, API request validation using class-validator for type safety, and a custom logging filter for comprehensive API monitoring.
A task management web application that utilizes full CRUD operations through a RESTful API, seamlessly connecting an Angular frontend with a Node.js Express backend and a MySQL database for efficient task management.
A React.js web app that implements file storage through the Google Firebase API, featuring user auth for secure file management, allowing users to upload, download, and organize files in directories linked to their accounts.
A user-friendly exercise app that enables users to quickly search for exercises by body part, target muscle, equipment, or name, view GIF demonstrations, and save exercises for easy access on any iOS device.
A Pygame app that visualizes bubble sort and quick sort algorithms, providing an interactive experience that helps users understand sorting mechanisms through real-time visualization.
An AI assistant designed to detect, translate, and summarize large amounts of text from images, leveraging Cohere's Generate API for advanced text processing capabilities.
Responsive Design
Creating PWAs designed for all view-ports.
Security First Approach
Incorporating Best Practices for Secure Development.
API Validation & Sanitization
Implement input validation and sanitization to prevent attacks like XSS and SQL injection.
JWT Authentication
Securely implement user authentication using JSON Web Tokens (JWT) with refresh tokens.
CSRF Protection
Implemented CSRF tokens to ensure secure client-server communication.
AES-256 Encryption
Encrypt sensitive data in transit and at rest using industry-standard AES-256 encryption.
Secret Management
Centralized secrets management using HashiCorp Vault and Thycotic to securely handle credentials.
User-Based Access Control
Built and extended user access control systems with granular RBAC permissions.
Continuous Integration and Deployment
Automating Delivery for Reliable Updates.
Source Control
Build
Test
Deploy
Monitor & Feedback
Professional Career Journey
A glimpse into my career evolution and growth.
Integration Reliability Engineer - TechOps
IRE - Technical Operations
- Starting Dec 2024
Senior Software Developer
- As a Scrum Master, planned 15 sub-projects for an Agile team of six, leading to project approval and generating over $100,000 in revenue.
- Led the migration of monolithic APIs to a microservices architecture using Kubernetes, Docker, and GitLab CI/CD, resulting in 60% reduction of response times.
- Developed software utilizing Python, Angular, and Node.js to automate complex user management workflows for over 250 users.
Student Research Assistant
- Managed the refinement of 4 technical exams (web programming, database, IOS dev, Angular/Spring) written for Sheridan's SPLAR project to ensure the quality, accuracy, and fairness of course material.
Automation Software Developer
- Developed and architected 4 full-stack internal web tools’ frontend, backend, database, and deployment to automate change and process management workflows saving over ~$17,000 of employee labor/year.
- Wrote and executed 200+ unit and end-to-end tests using Jest and Supertest with a Postgres mock in- memory database to guarantee high-quality code for deployment to production instances.
- Created configurable deployment templates using Terraform with chef.io recipes to deploy OpenStack virtual machines for automating app deployments for other employees.
Workshops and Talks Co-Lead
- Plan, execute and lead learning workshops about popular web and application development technologies.
- Led an introductory workshop for the Google Cloud campaign, engaging over 2,000 attendees from hundreds of schools.
Angular and Node.js Developer
- Led a team of 3 to implement over 60 wireframes into responsive web pages with functional components.
- Normalized user database table to achieve minimum data redundancy and refactored changes in Node APIs.
Get in Touch to Start a Conversation
An opportunity for collaboration awaits.