Skip to content

itobuztech/hotel-booking-app-backend

BranchesTags

Repository files navigation

Hotel Management

This is the backend for the Simple Room Booking system, built with NestJS, TypeScript, GraphQL, and Prisma.

Features

  • User authentication with JWT.
  • Room management.
  • Booking management.
  • GraphQL API with TypeScript.
  • PostgreSQL database using Prisma ORM.
  • Role-based access control.
  • In app notification to admins and email notification to customers based on booking and status change of bookings.
  • Giving branches and rooms based on number of rooms required, checkedin date and checkedout date!
  • Wide range of different Amenities for branches and for rooms specific to those branches.
  • Booking Calender, which contains data of rooms for users based on branch, room type, and booking status. Along with room number.
  • Amenities and Room Type manged by the admin. Which can be enabled and disabled.

Tech Stack

  • Backend: NestJS, TypeScript
  • Database: PostgreSQL with Prisma ORM
  • API: GraphQL
  • Authentication: Passport.js with JWT
  • Storage: AWS S3 (for file uploads)
  • Email: AWS SES (Simple Email Service)

Setup

Start by cloning the repository into your local workstation:

git clone https://github.com/itobuztech/hotel-booking-app-backend.git my-project

This project is made with yarn. So use yarn add, not anything else.

Install Dependencies

cd ./my-project
yarn install

Running Prisma Migration

npx prisma migrate dev
npx prisma migrate deploy
npx prisma generate

Start the development server:

yarn start:dev

Production Mode

yarn build
yarn start:prod

API Documentation

http://localhost:3000/graphql

Create two .env files in the root of the project:

  • .env.development
  • .env.production

In the .env.development file, put the environment variables used in development.
The .env.production file will contain all the environment variables for production.

To make connection with the database, fill in the right environment variables in the app.module.ts.

Usage

When the database is connected, you can start up the server by running yarn start:dev. A GraphQL schema will be generated. This will contain a Users table and all the dto's for user authentication.

To register a user:

  • Go to the GraphQL Playground
  • Run the signup mutation using email, password and username variables

Running this mutation will create a new entry in the Users table if the email is not already registered. The default Role will be set as USER. you can change this by creating a new role in the roles table and changing the default role in the create method of the users.service.ts file.

const defaultRole = await this.prisma.role.findFirst({
  where: {
    userType: UserRole.CUSTOMER,
  },
  select: {
    id: true,
  },
});

To login a user:

Running this mutation will check the credentials of the user, if the credentials are correct, the mutation will return a JWT. This token contains the user information, including the user role.

Jwt Guards

To protect an API route, you can use a JwtAuthGuard. This guard checks if the user has a valid JWT. You can apply this guard to the UseGuard decorator to queries and mutations inside a resolver. In this example the findAll users query inside the users.resolver.ts file is protected using this guard.

  @Query(() => [User], { name: 'users' })
  @UseGuards(JwtAuthGuard)
  findAll(): Promise<User[]> {
    return this.usersService.findAll();
  }

To send an authenticated request in the GraphQL playground, you can use the JWT that was returned after loggin in. Add this to the HTTP Headers.
Remove the "<>".

{
  "Authorization": "Bearer <your token>"
}

Role Guards

The protect an API route from a specific user Role, you can use a Roles guard. This guard checks if the user has the correct roles to access the specified route. In this example the findAll users query inside the users.resolver.ts file is protected using this guard.
Only a user with the OWNER role can access this endpoint.

  @Query(() => [User], { name: "users", nullable: true })
  @UseGuards(JwtAuthGuard, RolesGuard)
  @Roles(UserRole.ADMIN)
  findAll(): Promise<User[]> {
    return this.usersService.findAll();
  }

Roles

There are two roles in this application, Admin and Customer.

Permissions Guards

The protect an API route from a specific user Permission, you can use a PermissionsAND or PermissionsOR guard. These guards check if the user has the correct privilege to access the specified resolver.

  @Query(() => Account, { name: "account" })
  @UseGuards(JwtAuthGuard, PermissionsGuardOR)
  @Permissions([PrivilegesList.PROFILE.CAPABILITIES.VIEW])
  findOne(@Context() ctx: any): Promise<User> {
    return this.accountService.findOne(ctx);
  }

SoftDelete Middleware

Softdelete middleware is implemented for models excluding a few a model. Those are listed below.

const excludedModels = [
  "Role",
  "Upload",
  "BookingStatusHistory",
  "UploadRelation",
  "BranchRoomTypeAmenitiesRelation",
  "BranchAmenitiesRelation",
  "BookingRoomRelation",
  "Notification",
];

E2E Tests:

You need to have dotenv installed globally. Create a separate database for testing and update in the .env.test accordingly. Run dotenv -e .env.test -- npx prisma migrate dev and dotenv -e .env.test -- npx prisma db seed to create the tables and populate the test database. Run migrations using yarn run test:e2e.

About

No description, website, or topics provided.

Resources

Readme

License

MIT license
Activity
Custom properties

Stars

0 stars

Watchers

1 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

No packages published

Contributors 5

Languages