FlexDelivery24 API

Backend for the FlexDelivery24 delivery platform. This repository is a NestJS + Fastify application that exposes web, mobile, admin, and public APIs on top of a MySQL database, with a large set of migrations, seeders, and domain use cases.

This README is written for new developers joining the project. It focuses on:

what is in the repository
how requests move through the codebase
how to start a usable local environment for development
how to seed data for manual testing
how to run the existing test commands without guessing

What You Are Looking At

The application is organized around a shared business layer and two client-facing API modules:

src/modules/shared: business logic, persistence, domain services, guards, filters, external integrations
src/modules/web: web and admin controllers
src/modules/mobile: mobile controllers

Core stack:

NestJS 11
Fastify
TypeORM
MySQL
Redis
Swagger
Jest + Supertest

The app also has integrations for Pusher, Paystack, Twilio, Smile ID, email providers, AWS S3, and OpenAI. Some of those are feature-level, but a few are still wired as boot-time dependencies, so see the environment section carefully.

Repository Walkthrough

Top level

src/: application source
scripts/: migration helpers, reset helpers, and one-off seed runners
test/: E2E-style tests and helpers
docs/: additional project documentation
public/: static file storage served under /assets/
dist/: compiled output after npm run build

`src/`

src/
├── app.module.ts                 # Root module
├── main.ts                       # Bootstraps Fastify, Swagger, static assets, filters
├── config/                       # Env validation, app config, TypeORM config
├── database/
│   ├── migrations/               # TypeORM migrations
│   └── utils/                    # Migration helpers
├── modules/
│   ├── shared/
│   │   ├── application/          # DTOs, mappers, use cases
│   │   ├── domain/               # Domain services and contracts
│   │   ├── infrastructure/       # Repositories, entities, external providers, cron jobs
│   │   ├── common/               # Enums, decorators, utils
│   │   ├── errors/               # Custom error types
│   │   └── presentation/         # Guards, filters, interceptors, middleware
│   ├── web/                      # Web/admin/public controllers
│   └── mobile/                   # Mobile controllers
└── types/                        # Shared TS types

How a request usually flows

When you need to trace or change behavior, this is the pattern to follow:

Start in a controller under src/modules/web/controllers or src/modules/mobile/controllers.
Find the injected use case in src/modules/shared/application/use-cases.
Follow repository or service calls into src/modules/shared/infrastructure.
If persistence changed, inspect the matching entity in src/modules/shared/infrastructure/persistence/entities and migration files in src/database/migrations.

In practice:

controllers map HTTP to application use cases
use cases hold most feature logic
repositories and infrastructure services do database and third-party work
entities describe database structure

Important routing note

There is no single central routing file for the API surface.

The routes/ folders in src/modules/web/routes and src/modules/mobile/routes are placeholders.
The real route prefixes live in each controller's @Controller(...) decorator.
Many controllers use full prefixes such as api/v1/web/... or api/v1/mobile/....
A few controllers still use shorter prefixes such as jobs, delivery-offers, admin/cron, or pusher.

For that reason, when you are debugging or adding endpoints, trust controller decorators over module README files or route placeholders.

Main Entry Points

/: renders this README.md as HTML through ReadmeController
/api-docs: Swagger UI
/health: application health checks
/assets/...: static files from public/

Architecture, Flow, and Data Diagrams

The diagrams below are intended to make onboarding faster. They map the current implementation, not just the intended design. For the larger schema reference, also see database-erd.md and database-design.md.

Runtime Architecture

Feature Assembly Pattern

Request Flow: Authenticated API Request

Request Flow: Job Creation and Side Effects

Job Creation and Side Effects Flow Diagram

Entity Relationship Diagram: Identity and Access

Entity Relationship Diagram: Jobs and Delivery Lifecycle

Entity Relationship Diagram: Finance, Reviews, and Disputes

Diagram Notes

The README diagrams focus on the tables and flows new developers touch most often.
The repository has many more entities beyond these, including marketplace, support, reward, KYC/CAC, communication, legal document, and notification-settings tables.
For a larger database view, use database-erd.md.
Static copies of the README diagrams live in public/diagrams/.

Local Development Setup

1. Prerequisites

Install these first:

Node.js 24
npm
MySQL 8.x
Redis

Why Node 24? The CI workflow uses Node 24 and this repo has no .nvmrc, so matching CI is the safest default.

This repo does not include Docker Compose files, so MySQL and Redis are expected to be running outside the repository.

2. Install dependencies

Use the same install style the CI workflow uses:

npm install --legacy-peer-deps

3. Create your environment file

The app loads environment variables from:

.env.local
.env

That means .env.local overrides .env when both exist.

Start with:

cp .env.example .env.local

Then add the values below. This matters because .env.example is not fully sufficient for a local boot today.

Required for local boot

These are required either by env validation or by modules that call getOrThrow(...) during startup:

NODE_ENV=development
PORT=3000
API_PREFIX=/api/v1
CORS_ORIGIN=http://localhost:3000,http://localhost:5173

DB_HOST=127.0.0.1
DB_PORT=3306
DB_USERNAME=root
DB_PASSWORD=
DB_NAME=flex_delivery

REDIS_HOST=127.0.0.1
REDIS_PORT=6379
REDIS_PASSWORD=
REDIS_DB=0

PUSHER_APP_ID=local
PUSHER_KEY=local
PUSHER_SECRET=local
PUSHER_CLUSTER=mt1

SMILE_ID_API_KEY=local
SMILE_ID_PARTNER_ID=local

EMAIL_PROVIDER=nodemailer
SMTP_HOST=localhost
SMTP_PORT=1025
SMTP_USER=local
SMTP_PASSWORD=local
SMTP_FROM_EMAIL=dev@flexdelivery24.local
SMTP_FROM_NAME=FlexDelivery24 Dev

JWT_SECRET=dev-jwt-secret
JWT_REFRESH_SECRET=dev-refresh-secret
DEFAULT_OTP=123456

Notes:

REDIS_HOST and REDIS_PORT are currently needed by RedisService, even though they are missing from .env.example.
Pusher and Smile ID values are also required at startup because their Nest modules use getOrThrow(...).
The mailer module expects either Gmail credentials or SMTP credentials. If you are not testing email flows yet, placeholder SMTP values are usually enough to let the app boot, but actual email delivery will not work until you configure a real SMTP server.
API_PREFIX exists in config, but most controllers currently hardcode their own api/v1/... prefixes. Do not assume changing API_PREFIX will re-prefix the whole app.

Optional for feature testing

Add these when you need the corresponding integrations:

PAYSTACK_SECRET_KEY, PAYSTACK_PUBLIC_KEY
TWILIO_ACCOUNT_SID, TWILIO_AUTH_TOKEN, TWILIO_PHONE_NUMBER
AWS_ACCESS_KEY_ID, AWS_SECRET_ACCESS_KEY, AWS_REGION, AWS_S3_BUCKET
OPENAI_API_KEY and related OpenAI settings

4. Create the database

Create the local database before running migrations:

CREATE DATABASE flex_delivery
  CHARACTER SET utf8mb4
  COLLATE utf8mb4_unicode_ci;

5. Run migrations

Apply the schema:

npm run migration:run

Useful related commands:

npm run migration:show
npm run migration:revert
npm run migration:run:batch

Use migration:run:batch if your machine or target environment is memory-constrained.

6. Seed local data

For the easiest local setup, use the comprehensive seeder:

npm run seed:all

This populates lookup data, users, jobs, rewards, payments, marketplace data, notifications, disputes, and more.

If you only need admin access, you can run the smaller admin seed after roles exist:

npm run seed:roles
npm run seed:admin-users

Default admin credentials created by seed-admin-users:

admin@flexdelivery24.com / Admin@123
superadmin@flexdelivery24.com / Admin@123

The seed script itself warns that these passwords should be changed after first login.

7. Start the API

For local development:

npm run start:dev

Other modes:

npm run start
npm run start:debug
npm run build
npm run start:prod

After boot, check:

http://localhost:3000/
http://localhost:3000/api-docs
http://localhost:3000/health

Quick Start Checklist

If you want the shortest path from clone to running API:

cp .env.example .env.local
# add Redis, Pusher, Smile ID, and SMTP values to .env.local

npm install --legacy-peer-deps

# create the flex_delivery database first
npm run migration:run
npm run seed:all
npm run start:dev

Testing

Unit and integration-style specs

npm test
npm run test:watch
npm run test:cov

There are repo-level specs under src/ and E2E specs under test/.

E2E flow tests

npm run test:e2e

Important: the more realistic E2E flow in test/job-flow.e2e-spec.ts expects:

the API server already running
migrated database
seeded data
usable sender/FDA credentials

The test helpers support overriding credentials and base URL via env vars:

TEST_API_URL
TEST_SENDER_PHONE
TEST_SENDER_PASSWORD
TEST_SENDER_ROLE
TEST_FDA_PHONE
TEST_FDA_PASSWORD
TEST_FDA_ROLE
TEST_RECEIVER_PHONE

Example:

npm run start:dev

In another terminal:

TEST_API_URL=http://localhost:3000 npm run test:e2e -- --testPathPatterns=job-flow --verbose --forceExit

Note: test/app.e2e-spec.ts still looks like the default Nest scaffold and does not reflect the current root route behavior, so test/job-flow.e2e-spec.ts is the better reference when you want a realistic manual or automated flow.

Common Commands

npm run start:dev
npm run build
npm run lint
npm test
npm run test:e2e
npm run migration:run
npm run migration:show
npm run seed:all

Other useful one-offs:

npm run db:clear
npm run seed:admin-users
npm run seed:users-comprehensive
npm run seed:jobs
npm run seed:payments

How To Work In This Repo

When adding a new endpoint

The usual workflow is:

Add or update DTOs in src/modules/shared/application/dto.
Create or modify a use case in src/modules/shared/application/use-cases.
Add repository or infrastructure changes under src/modules/shared/infrastructure.
Expose the use case through a controller in src/modules/web/controllers and/or src/modules/mobile/controllers.
Register new providers in src/modules/shared/shared.module.ts if needed.
Add or update a migration if the schema changed.

When debugging persistence

Look in this order:

TypeORM entity
repository implementation
use case
migration history

When debugging routes

Look in this order:

controller @Controller(...)
controller method decorators like @Get, @Post, @Put
guards/interceptors attached to the controller or method

Do not start with the routes/ folders; they are effectively placeholders today.

Useful Internal Docs

src/modules/shared/README.md
src/modules/web/README.md
src/modules/mobile/README.md
src/database/README.md
folder-structure.md
database-design.md
database-erd.md

Some of those documents are helpful for architecture context, but the source code should be treated as the final authority where docs and implementation differ.

Known Onboarding Gotchas

.env.example is missing some values that the app currently expects at boot, especially Redis.
Route prefixes are not centralized and are not fully controlled by API_PREFIX.
Web/mobile module README files describe the intended architecture, but some controller paths in code do not fully match those docs.
There is no Docker-based local stack in this repository right now.
The E2E tests are not pure black-box app boot tests; at least one flow test expects seeded users and a running server.

First Places To Read In Code

If you are brand new to the repo, start here:

src/main.ts
src/app.module.ts
src/modules/shared/shared.module.ts
one controller you care about in src/modules/web/controllers or src/modules/mobile/controllers
the related use case in src/modules/shared/application/use-cases

That path will give you the fastest mental model of how the app is put together.