
Manual deployment of NestJS and Angular applications on a dedicated server via “Docker Compose” and “PM2”

We purchase a dedicated server and configure SSH access from a local computer.

Added in “Docker compose” for automatic certificate generation and renewal.

1. Find a free server or buy a dedicated server

I will not describe the steps on this, I have already described them earlier in the “Buy VPS” section of another article – Deploy nestjs project on VPS with dokku.

For the current posts, I purchased the cheapest dedicated server from the same site.

Operating system: Ubuntu 22.04 x64
Access to the world: 100 MB/sec (shared)
Processor: 2 vCPUs
Number of IPv4 addresses: 1

When purchasing a dedicated server, I was also given a third-level domain: in the future, this project will be moved to the domain .

2. After purchase you need to set a password if it has not been set, different sites have their own interfaces for this, in my case the password setting is done on the page .

We copy our local public SSH to a remote server, on startup you will be prompted for a password, you need to enter your password and press “Enter”.

If there was no SSH key on the computer, you need to create it using the ssh-keygen order


ssh-copy-id [email protected]
Console output

$ ssh-copy-id [email protected]
/usr/bin/ssh-copy-id: INFO: Source of key(s) to be installed: "/home/user/.ssh/"
The authenticity of host ' (' can't be established.
ECDSA key fingerprint is SHA256:SOME_SYMBOLS.
Are you sure you want to continue connecting (yes/no/(fingerprint))? yes
/usr/bin/ssh-copy-id: INFO: attempting to log in with the new key(s), to filter out any that are already installed
/usr/bin/ssh-copy-id: INFO: 1 key(s) remain to be installed -- if you are prompted now it is to install the new keys
[email protected]'s password:

Number of key(s) added: 1

Now try logging into the machine, with:   "ssh '[email protected]'"
and check to make sure that only the key(s) you wanted were added.
3. Connecting to a remote server


ssh [email protected]
Console output

$ ssh [email protected]
Welcome to Ubuntu 22.04.3 LTS (GNU/Linux 5.15.0-91-generic x86_64)

 * Documentation:
 * Management:
 * Support:

  System information as of Wed Aug 21 18:42:37 MSK 2024

  System load:  0.02734375        Processes:             103
  Usage of /:   9.4% of 24.05GB   Users logged in:       0
  Memory usage: 10%               IPv4 address for eth0:
  Swap usage:   0%

 * Strictly confined Kubernetes makes edge and IoT secure. Learn how MicroK8s
   just raised the bar for easy, resilient and secure K8s cluster deployment.

Expanded Security Maintenance for Applications is not enabled.

0 updates can be applied immediately.

Enable ESM Apps to receive additional future security updates.
See or run: sudo pro status

The list of available updates is more than a week old.
To check for new updates run: sudo apt update

Last login: Wed Aug 21 18:41:46 2024 from X.X.X.X
4. Installing all necessary packages on a dedicated server


sudo snap install curl

curl -fsSL -o
sudo groupadd docker
sudo usermod -aG docker $USER

sudo apt install git -y

curl -o- | bash
export NVM_DIR="$HOME/.nvm" && . "$NVM_DIR/" --no-use
nvm install v20
nvm use v20

npm install --global yarn

sudo apt install default-jre -y

sudo apt install -y unzip

echo fs.inotify.max_user_watches=524288 | sudo tee -a /etc/sysctl.conf && sudo sysctl -p

sudo reboot
Console output

root@vps1724252356:~# sudo snap install curl
curl 8.1.2 from Wouter van Bommel (woutervb) installed

root@vps1724252356:~# curl -fsSL -o
sudo groupadd docker
sudo usermod -aG docker $USER
# Executing docker install script, commit: 0d6f72e671ba87f7aa4c6991646a1a5b9f9dae84
+ sh -c apt-get update -qq >/dev/null
+ sh -c DEBIAN_FRONTEND=noninteractive apt-get install -y -qq ca-certificates curl >/dev/null
+ sh -c install -m 0755 -d /etc/apt/keyrings
+ sh -c curl -fsSL "" -o /etc/apt/keyrings/docker.asc
+ sh -c chmod a+r /etc/apt/keyrings/docker.asc
+ sh -c echo "deb (arch=amd64 signed-by=/etc/apt/keyrings/docker.asc) jammy stable" > /etc/apt/sources.list.d/docker.list
+ sh -c apt-get update -qq >/dev/null
+ sh -c DEBIAN_FRONTEND=noninteractive apt-get install -y -qq docker-ce docker-ce-cli docker-compose-plugin docker-ce-rootless-extras docker-buildx-plugin >/dev/null
+ sh -c docker version
Client: Docker Engine - Community
 Version:           27.1.2
 API version:       1.46
 Go version:        go1.21.13
 Git commit:        d01f264
 Built:             Mon Aug 12 11:50:12 2024
 OS/Arch:           linux/amd64
 Context:           default

Server: Docker Engine - Community
  Version:          27.1.2
  API version:      1.46 (minimum version 1.24)
  Go version:       go1.21.13
  Git commit:       f9522e5
  Built:            Mon Aug 12 11:50:12 2024
  OS/Arch:          linux/amd64
  Experimental:     false
  Version:          1.7.20
  GitCommit:        8fc6bcff51318944179630522a095cc9dbf9f353
  Version:          1.1.13
  GitCommit:        v1.1.13-0-g58aa920
  Version:          0.19.0
  GitCommit:        de40ad0


To run Docker as a non-privileged user, consider setting up the
Docker daemon in rootless mode for your user: install

Visit to learn about rootless mode.

To run the Docker daemon as a fully privileged service, but granting non-root
users access, refer to

WARNING: Access to the remote API on a privileged Docker daemon is equivalent
         to root access on the host. Refer to the 'Docker daemon attack surface'
         documentation for details:


groupadd: group 'docker' already exists

root@vps1724252356:~# sudo apt install git -y
Reading package lists... Done
Building dependency tree... Done
Reading state information... Done
Suggested packages:
  git-daemon-run | git-daemon-sysvinit git-doc git-email git-gui gitk gitweb git-cvs git-mediawiki git-svn
The following packages will be upgraded:
1 upgraded, 0 newly installed, 0 to remove and 137 not upgraded.
Need to get 3165 kB of archives.
After this operation, 16.4 kB of additional disk space will be used.
Get:1 jammy-updates/main amd64 git amd64 1:2.34.1-1ubuntu1.11 (3165 kB)
Fetched 3165 kB in 1s (2408 kB/s)
(Reading database ... 94596 files and directories currently installed.)
Preparing to unpack .../git_1%3a2.34.1-1ubuntu1.11_amd64.deb ...
Unpacking git (1:2.34.1-1ubuntu1.11) over (1:2.34.1-1ubuntu1.10) ...
Setting up git (1:2.34.1-1ubuntu1.11) ...
Scanning processes...
Scanning linux images...

Running kernel seems to be up-to-date.

No services need to be restarted.

No containers need to be restarted.

No user sessions are running outdated binaries.

No VM guests are running outdated hypervisor (qemu) binaries on this host.

root@vps1724252356:~# curl -o- | bash
export NVM_DIR="$HOME/.nvm" && . "$NVM_DIR/" --no-use
nvm install v20
nvm use v20
  % Total    % Received % Xferd  Average Speed   Time    Time     Time  Current
                                 Dload  Upload   Total   Spent    Left  Speed
100 15037  100 15037    0     0  36871      0 --:--:-- --:--:-- --:--:-- 36945
=> Downloading nvm from git to '/root/.nvm'
=> Cloning into '/root/.nvm'...
remote: Enumerating objects: 376, done.
remote: Counting objects: 100% (376/376), done.
remote: Compressing objects: 100% (320/320), done.
remote: Total 376 (delta 46), reused 176 (delta 29), pack-reused 0 (from 0)
Receiving objects: 100% (376/376), 372.57 KiB | 2.13 MiB/s, done.
Resolving deltas: 100% (46/46), done.
* (HEAD detached at FETCH_HEAD)
=> Compressing and cleaning up git repository

=> Appending nvm source string to /root/.bashrc
=> Appending bash_completion source string to /root/.bashrc
=> Close and reopen your terminal to start using nvm or run the following to use it now:

export NVM_DIR="$HOME/.nvm"
( -s "$NVM_DIR/" ) && \. "$NVM_DIR/"  # This loads nvm
( -s "$NVM_DIR/bash_completion" ) && \. "$NVM_DIR/bash_completion"  # This loads nvm bash_completion
Downloading and installing node v20.16.0...
################################################################################################################################################################ 100.0%
Computing checksum with sha256sum
Checksums matched!
Now using node v20.16.0 (npm v10.8.1)
Creating default alias: default -> v20 (-> v20.16.0)
Now using node v20.16.0 (npm v10.8.1)

root@vps1724252356:~# npm install --global yarn

added 1 package in 2s
npm notice
npm notice New patch version of npm available! 10.8.1 -> 10.8.2
npm notice Changelog:
npm notice To update run: npm install -g [email protected]
npm notice

root@vps1724252356:~# sudo apt install -y unzip
Reading package lists... Done
Building dependency tree... Done
Reading state information... Done
Suggested packages:
The following NEW packages will be installed:
0 upgraded, 1 newly installed, 0 to remove and 137 not upgraded.
Need to get 175 kB of archives.
After this operation, 386 kB of additional disk space will be used.
Get:1 jammy-updates/main amd64 unzip amd64 6.0-26ubuntu3.2 (175 kB)
Fetched 175 kB in 0s (485 kB/s)
Selecting previously unselected package unzip.
(Reading database ... 96234 files and directories currently installed.)
Preparing to unpack .../unzip_6.0-26ubuntu3.2_amd64.deb ...
Unpacking unzip (6.0-26ubuntu3.2) ...
Setting up unzip (6.0-26ubuntu3.2) ...
Processing triggers for man-db (2.10.2-1) ...
Scanning processes...
Scanning linux images...

Running kernel seems to be up-to-date.

No services need to be restarted.

No containers need to be restarted.

No user sessions are running outdated binaries.

No VM guests are running outdated hypervisor (qemu) binaries on this host.

root@vps1724252356:~# sudo reboot
Connection to closed by remote host.
Connection to closed.
5. SSH key generation on a dedicated server

This is necessary so that we can upload the repository to a dedicated server


Console output

root@vps1724252356:~# ssh-keygen
Generating public/private rsa key pair.
Enter file in which to save the key (/root/.ssh/id_rsa):
Enter passphrase (empty for no passphrase):
Enter same passphrase again:
Your identification has been saved in /root/.ssh/id_rsa
Your public key has been saved in /root/.ssh/
The key fingerprint is:
SHA256:SOME_RANDOM_SYMBOLS root@vps1724252356
The key's randomart image is:
+---(RSA 3072)----+
|  .o*oo.         |
6. Link a dedicated server’s public key to GitHub

You must run the command cat /root/.ssh/ and paste the answer into the project settings, I have them here:


root@vps1724252356:~# cat /root/.ssh/
Console output

# cat /root/.ssh/
ssh-rsa AAAARANDOM_SYMBOLS= root@vps1724252356
7. Cloning the project


git clone [email protected]:nestjs-mod/nestjs-mod-fullstack.git
cd nestjs-mod-fullstack
Console output

root@vps1724252356:~# git clone [email protected]:nestjs-mod/nestjs-mod-fullstack.git
Cloning into 'nestjs-mod-fullstack'...
The authenticity of host ' (' can't be established.
ED25519 key fingerprint is SHA256:+SOME_RANDOM_SYMBOLS.
This key is not known by any other names
Are you sure you want to continue connecting (yes/no/(fingerprint))? yes
Warning: Permanently added '' (ED25519) to the list of known hosts.
remote: Enumerating objects: 426, done.
remote: Counting objects: 100% (426/426), done.
remote: Compressing objects: 100% (294/294), done.
remote: Total 426 (delta 190), reused 340 (delta 106), pack-reused 0 (from 0)
Receiving objects: 100% (426/426), 536.69 KiB | 1.56 MiB/s, done.
Resolving deltas: 100% (190/190), done.

root@vps1724252356:~# cd nestjs-mod-fullstack
8. We install dependencies and run launch and testing in two modes: PM2 production and Docker Compose

We run E2E tests by specifying the external global IP address of the applications.


npm i
npx playwright install
npx playwright install-deps

npm run test

cp example.env .env
npm run pm2-full:prod:start
export BASE_URL= && npm run test:e2e
npm run pm2-full:prod:stop

npm run docker-compose-full:prod:start
export BASE_URL= && npm run test:e2e
npm run docker-compose-full:prod:stop
E2E tests in “Docker Compose” mode failed with an error, in the next steps we will fix them on the local computer and then via a commit in the project repository we will deliver them to a dedicated server.

9. On the local computer we update and add new npm scripts

During local development, a separately installed docker-compose application was used to run, and a dedicated server uses compose built into Docker.

We remove the copy script from the copy-front-to-backend static, since now we go directly from the backend application to view the collected frontend statics.

To create databases and apply migrations we created a separate npm script, because when trying to run two npm commands inside the container only one was launched.

Update of the package.json

  "scripts": {
    // ...
    "_____docker-compose-full prod infra_____": "_____docker-compose-full prod infra_____",
    "docker-compose-full:prod:start": "export NX_DAEMON=false && export DISABLE_SERVE_STATIC=true && npm run generate && npm run build -- -c production && npm run docker:build:server:latest && export COMPOSE_INTERACTIVE_NO_CLI=1 && docker compose -f ./.docker/docker-compose-full.yml --env-file ./.docker/docker-compose-full.env --compatibility up -d",
    "docker-compose-full:prod:stop": "export COMPOSE_INTERACTIVE_NO_CLI=1 && docker compose -f ./.docker/docker-compose-full.yml --env-file ./.docker/docker-compose-full.env --compatibility down",
    "docker-compose-full:prod:only-start": "export COMPOSE_INTERACTIVE_NO_CLI=1 && docker compose -f ./.docker/docker-compose-full.yml --env-file ./.docker/docker-compose-full.env --compatibility up -d",
    "docker-compose-full:prod:fill:database": "npm run db:create && npm run flyway:migrate",
    // ...
    "_____docker-compose prod-infra_____": "_____docker-compose prod-infra_____",
    "docker-compose:start-prod:server": "export COMPOSE_INTERACTIVE_NO_CLI=1 && docker compose -f ./apps/server/docker-compose-prod.yml --env-file ./apps/server/docker-compose-prod.env --compatibility up -d",
    "docker-compose:stop-prod:server": "export COMPOSE_INTERACTIVE_NO_CLI=1 && docker compose -f ./apps/server/docker-compose-prod.yml --env-file ./apps/server/docker-compose-prod.env down",
10. On the local computer, we update the container settings with the migrations in the “Docker Compose” file

File updated .docker/docker-compose-full.yml

version: '3'
    driver: "bridge"
    image: 'bitnami/postgresql:15.5.0'
    container_name: 'nestjs-mod-fullstack-postgre-sql'
      - 'nestjs-mod-fullstack-network'
      - 'nestjs-mod-fullstack-postgre-sql-volume:/bitnami/postgresql'
        - 'CMD-SHELL'
        - 'pg_isready -U postgres'
      interval: '5s'
      timeout: '5s'
      retries: 5
    tty: true
    restart: 'always'
    image: 'node:20-bullseye-slim'
    container_name: 'nestjs-mod-fullstack-postgre-sql-migrations'
      - 'nestjs-mod-fullstack-network'
    working_dir: '/app'
      - './../:/app'
    command: 'npm run docker-compose-full:prod:fill:database'
    tty: true
      NX_SKIP_NX_CACHE: 'true'
        condition: 'service_healthy'
    image: 'nestjs-mod-fullstack-server:latest'
    container_name: 'nestjs-mod-fullstack-server'
      - 'nestjs-mod-fullstack-network'
          'npx -y wait-on --timeout= --interval=1000 --window --verbose --log http://localhost:8080/api/health',
      interval: 30s
      timeout: 10s
      retries: 10
    tty: true
    restart: 'always'
        condition: service_healthy
        condition: service_completed_successfully
    image: nginx:alpine
    container_name: 'nestjs-mod-fullstack-nginx'
      - 'nestjs-mod-fullstack-network'
      - ../.docker/nginx:/etc/nginx/conf.d
      - ../dist/apps/client/browser:/usr/share/nginx/html
    restart: 'always'
        condition: service_healthy
      - '8080:8080'
    image: steveltn/https-portal:1
    container_name: 'nestjs-mod-fullstack-https-portal'
      - 'nestjs-mod-fullstack-network'
      - '80:80'
      - '443:443'
      - nestjs-mod-fullstack-nginx
    restart: always
      FORCE_RENEW: 'true'
      DOMAINS: '${SERVER_DOMAIN} -> http://nestjs-mod-fullstack-nginx:8080'
        condition: service_started
      - nestjs-mod-fullstack-https-portal-volume:/var/lib/https-portal
    name: 'nestjs-mod-fullstack-postgre-sql-volume'
    name: 'nestjs-mod-fullstack-https-portal-volume'

11. On the local computer, we open access to the Swagger interface of the backend in Nginx

File updated .docker/nginx/nginx.conf

map $sent_http_content_type $expires {
    "text/html" epoch;
    "text/html; charset=utf-8" epoch;
    default off;

map $http_upgrade $connection_upgrade {
    default upgrade;
    '' close;

server {
    listen 8080;
    server_name localhost;

    gzip on;
    gzip_proxied any;
    gzip_types text/plain application/xml text/css application/javascript application/json;
    gzip_min_length 1000;
    gzip_vary on;
    gzip_disable "MSIE (1-6)\.(?!.*SV1)";

    client_max_body_size 50m;
    proxy_connect_timeout 5m;
    proxy_send_timeout 5m;
    proxy_read_timeout 5m;
    send_timeout 5m;

    proxy_max_temp_file_size 0;

    root /usr/share/nginx/html;
    index index.html;

    location /api {
        proxy_pass http://nestjs-mod-fullstack-server:8080;
        proxy_http_version 1.1;
        proxy_set_header Upgrade $http_upgrade;
        proxy_set_header Connection $connection_upgrade;
        proxy_set_header Host $host;
        proxy_set_header Origin $http_origin;
        proxy_set_header X-Real-IP $remote_addr;
        proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;

        # kill cache
        add_header Last-Modified $date_gmt;
        add_header Cache-Control 'no-store, no-cache, must-revalidate, proxy-revalidate, max-age=0';
        if_modified_since off;
        expires off;
        etag off;

    location /swagger {
        proxy_pass http://nestjs-mod-fullstack-server:8080;
        proxy_http_version 1.1;
        proxy_set_header Upgrade $http_upgrade;
        proxy_set_header Connection $connection_upgrade;
        proxy_set_header Host $host;
        proxy_set_header Origin $http_origin;
        proxy_set_header X-Real-IP $remote_addr;
        proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;

        # kill cache
        add_header Last-Modified $date_gmt;
        add_header Cache-Control 'no-store, no-cache, must-revalidate, proxy-revalidate, max-age=0';
        if_modified_since off;
        expires off;
        etag off;

    location / {
        expires $expires;
        proxy_redirect off;
        proxy_set_header Host $host;
        proxy_set_header Origin $http_origin;
        proxy_set_header X-Real-IP $remote_addr;
        proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
        proxy_set_header X-Forwarded-Proto $scheme;
        proxy_read_timeout 1m;
        proxy_connect_timeout 1m;
        proxy_intercept_errors on;
        error_page 404 =200 /index.html;
        root /usr/share/nginx/html;
12. On local computer we add ability to disable NestJS module for static output

Since in “Docker Compose” mode we serve static data via Nginx, we don’t need to create a backend with embedded static data and therefore don’t need additional handlers to support static output.

File updated apps/server/src/app/app.module.ts

import { createNestModule, NestModuleCategory } from '@nestjs-mod/common';

import { PrismaModule } from '@nestjs-mod/prisma';
import { ServeStaticModule } from '@nestjs/serve-static';
import { join } from 'path';
import { AppController } from './app.controller';
import { AppService } from './app.service';

export const { AppModule } = createNestModule({
  moduleName: 'AppModule',
  moduleCategory: NestModuleCategory.feature,
  imports: (
    PrismaModule.forFeature({ featureModuleName: 'app' }),
      ? ()
      : (
            rootPath: join(__dirname, 'assets', 'client'),
  controllers: (AppController),
  providers: (AppService),
13. On the local computer, we run the launch and test of two modes again: PM2 production and Docker Compose

We run E2E tests by specifying the external global IP address of the applications.


npm i
npx playwright install
npx playwright install-deps

npm run test

cp example.env .env
npm run pm2-full:prod:start
export BASE_URL= && npm run test:e2e
npm run pm2-full:prod:stop

npm run docker-compose-full:prod:start
export BASE_URL= && npm run test:e2e
npm run docker-compose-full:prod:stop
The tests were successfully passed

14. On the local computer, add an additional container with https-portal has docker-compose-full.yml for proxy http has https and adding the restart: 'always' option for all containers (except migrations)

File updated .docker/docker-compose-full.yml

version: '3'
    driver: 'bridge'
    image: 'bitnami/postgresql:15.5.0'
    container_name: 'nestjs-mod-fullstack-postgre-sql'
      - 'nestjs-mod-fullstack-network'
      - 'nestjs-mod-fullstack-postgre-sql-volume:/bitnami/postgresql'
        - 'CMD-SHELL'
        - 'pg_isready -U postgres'
      interval: '5s'
      timeout: '5s'
      retries: 5
    tty: true
    restart: 'always'
    image: 'node:20-bullseye-slim'
    container_name: 'nestjs-mod-fullstack-postgre-sql-migrations'
      - 'nestjs-mod-fullstack-network'
    working_dir: '/app'
      - './../:/app'
    command: 'npm run docker-compose-full:prod:fill:database'
    tty: true
      NX_SKIP_NX_CACHE: 'true'
        condition: 'service_healthy'
    image: 'nestjs-mod-fullstack-server:latest'
    container_name: 'nestjs-mod-fullstack-server'
      - 'nestjs-mod-fullstack-network'
      test: ('CMD-SHELL', 'npx -y wait-on --timeout= --interval=1000 --window --verbose --log http://localhost:8080/api/health')
      interval: 30s
      timeout: 10s
      retries: 10
    tty: true
    restart: 'always'
        condition: service_healthy
        condition: service_completed_successfully
    image: nginx:alpine
    container_name: 'nestjs-mod-fullstack-nginx'
      - 'nestjs-mod-fullstack-network'
      - ../.docker/nginx:/etc/nginx/conf.d
      - ../dist/apps/client/browser:/usr/share/nginx/html
    restart: 'always'
        condition: service_healthy
      - '8080:8080'
    image: steveltn/https-portal:1
    container_name: 'nestjs-mod-fullstack-https-portal'
      - 'nestjs-mod-fullstack-network'
      - '80:80'
      - '443:443'
      - nestjs-mod-fullstack-nginx
    restart: always
      FORCE_RENEW: 'true'
      DOMAINS: '${SERVER_DOMAIN} -> http://nestjs-mod-fullstack-nginx:8080'
        condition: service_started
    name: 'nestjs-mod-fullstack-postgre-sql-volume'
15. On the local computer we add a new environment variable with our domain

File updated .docker/docker-compose-full.env

HTTPS_PORTAL_STAGE=production # local|production
16. On the local computer, commit the changes to the repository


git commit -m "fix: some updates"
git push
17. We connect to the remote server, get new changes and stop the “PM2” and “Docker Compose” modes


ssh [email protected]
cd nestjs-mod-fullstack
npm run pm2-full:prod:stop
npm run docker-compose-full:prod:stop
18. Restart all applications in “Docker Compose” mode and run E2E tests, specify the server address


npm run docker-compose-full:prod:start
export BASE_URL= && npm run test:e2e
Console output

root@vps1724252356:~/nestjs-mod-fullstack# npm run docker-compose-full:prod:start

> @nestjs-mod-fullstack/[email protected] docker-compose-full:prod:start
> export NX_DAEMON=false && export DISABLE_SERVE_STATIC=true && npm run generate && npm run build -- -c production && npm run docker:build:server:latest && export COMPOSE_INTERACTIVE_NO_CLI=1 && docker compose -f ./.docker/docker-compose-full.yml --env-file ./.docker/docker-compose-full.env --compatibility up -d

> @nestjs-mod-fullstack/[email protected] generate
> ./node_modules/.bin/nx run-many --exclude=@nestjs-mod-fullstack/source --all -t=generate --skip-nx-cache=true && npm run make-ts-list && npm run lint:fix

   ✔  nx run server:generate (42s)


 NX   Successfully ran target generate for project server (42s)

> @nestjs-mod-fullstack/[email protected] make-ts-list
> ./node_modules/.bin/rucken make-ts-list

> @nestjs-mod-fullstack/[email protected] lint:fix
> npm run tsc:lint && ./node_modules/.bin/nx run-many --exclude=@nestjs-mod-fullstack/source --all -t=lint --fix

> @nestjs-mod-fullstack/[email protected] tsc:lint
> ./node_modules/.bin/tsc --noEmit -p tsconfig.base.json

   ✔  nx run app-angular-rest-sdk:lint  (existing outputs match the cache, left as is)
   ✔  nx run server:lint  (existing outputs match the cache, left as is)
   ✔  nx run client:lint  (existing outputs match the cache, left as is)
   ✔  nx run server-e2e:lint  (existing outputs match the cache, left as is)


 NX   Successfully ran target lint for 4 projects (357ms)

      With additional flags:

Nx read the output from the cache instead of running the command for 4 out of 4 tasks.

> @nestjs-mod-fullstack/[email protected] build
> npm run generate && npm run tsc:lint && ./node_modules/.bin/nx run-many --exclude=@nestjs-mod-fullstack/source --all -t=build --skip-nx-cache=true -c production

> @nestjs-mod-fullstack/[email protected] generate
> ./node_modules/.bin/nx run-many --exclude=@nestjs-mod-fullstack/source --all -t=generate --skip-nx-cache=true && npm run make-ts-list && npm run lint:fix

   ✔  nx run server:generate (38s)


 NX   Successfully ran target generate for project server (38s)

> @nestjs-mod-fullstack/[email protected] make-ts-list
> ./node_modules/.bin/rucken make-ts-list

> @nestjs-mod-fullstack/[email protected] lint:fix
> npm run tsc:lint && ./node_modules/.bin/nx run-many --exclude=@nestjs-mod-fullstack/source --all -t=lint --fix

> @nestjs-mod-fullstack/[email protected] tsc:lint
> ./node_modules/.bin/tsc --noEmit -p tsconfig.base.json

   ✔  nx run app-angular-rest-sdk:lint  (existing outputs match the cache, left as is)
   ✔  nx run server:lint  (existing outputs match the cache, left as is)
   ✔  nx run client:lint  (existing outputs match the cache, left as is)
   ✔  nx run server-e2e:lint  (existing outputs match the cache, left as is)


 NX   Successfully ran target lint for 4 projects (350ms)

      With additional flags:

Nx read the output from the cache instead of running the command for 4 out of 4 tasks.

> @nestjs-mod-fullstack/[email protected] tsc:lint
> ./node_modules/.bin/tsc --noEmit -p tsconfig.base.json

   ✔  nx run app-rest-sdk:build (8s)
   ✔  nx run app-angular-rest-sdk:build:production (9s)
   ✔  nx run server:build:production (13s)
   ✔  nx run client:build:production (19s)


 NX   Successfully ran target build for 4 projects (28s)

> @nestjs-mod-fullstack/[email protected] docker:build:server:latest
> docker build -t nestjs-mod-fullstack-server:latest -f ./.docker/server.Dockerfile . --progress=plain

#0 building with "default" instance using docker driver

#1 (internal) load build definition from server.Dockerfile
#1 transferring dockerfile: 1.65kB done
#1 DONE 0.0s

#2 (internal) load metadata for
#2 DONE 1.2s

#3 (internal) load .dockerignore
#3 transferring context: 79B 0.0s done
#3 DONE 0.0s

#4 (builder 1/7) FROM
#4 DONE 0.0s

#5 (internal) load build context
#5 transferring context: 1.20MB 0.2s done
#5 DONE 0.2s

#6 (builder 2/7) WORKDIR /usr/src/app

#7 (builder 3/7) COPY . .
#7 DONE 0.2s

#8 (builder 4/7) RUN apk add dumb-init
#8 0.630 fetch
#8 1.055 fetch
#8 1.791 (1/1) Installing dumb-init (1.2.5-r3)
#8 1.820 Executing busybox-1.36.1-r29.trigger
#8 1.836 OK: 11 MiB in 17 packages
#8 DONE 2.0s

#9 (builder 5/7) RUN apk add jq
#9 1.136 (1/2) Installing oniguruma (6.9.9-r0)
#9 1.302 (2/2) Installing jq (1.7.1-r0)
#9 1.361 Executing busybox-1.36.1-r29.trigger
#9 1.379 OK: 12 MiB in 19 packages
#9 DONE 1.7s

#10 (builder 6/7) RUN echo $(cat package.json | jq 'del(.devDependencies)') > package.json
#10 DONE 0.5s

#11 (builder 7/7) RUN rm -rf nx.json package-lock.json .dockerignore &&     cp .docker/nx.json nx.json &&     cp .docker/.dockerignore .dockerignore &&     npm install &&     npm install --save-dev [email protected] [email protected] [email protected] &&     echo '' > .env &&     npm run prisma:generate &&     rm -rf /usr/src/app/node_modules/@nx &&     rm -rf /usr/src/app/node_modules/@prisma-class-generator &&     rm -rf /usr/src/app/node_modules/@angular  &&     rm -rf /usr/src/app/node_modules/@swc  &&     rm -rf /usr/src/app/node_modules/@babel  &&     rm -rf /usr/src/app/node_modules/@angular-devkit &&     rm -rf /usr/src/app/node_modules/@ngneat &&     rm -rf /usr/src/app/node_modules/@types &&     rm -rf /usr/src/app/node_modules/@ng-packagr
#11 112.9
#11 112.9 added 408 packages, and audited 409 packages in 2m
#11 112.9
#11 112.9 53 packages are looking for funding
#11 112.9   run `npm fund` for details
#11 112.9
#11 112.9 5 moderate severity vulnerabilities
#11 112.9
#11 112.9 To address all issues (including breaking changes), run:
#11 112.9   npm audit fix --force
#11 112.9
#11 112.9 Run `npm audit` for details.
#11 112.9 npm notice
#11 112.9 npm notice New patch version of npm available! 10.8.1 -> 10.8.2
#11 112.9 npm notice Changelog:
#11 112.9 npm notice To update run: npm install -g [email protected]
#11 112.9 npm notice
#11 166.3
#11 166.3 added 106 packages, and audited 515 packages in 53s
#11 166.3
#11 166.3 66 packages are looking for funding
#11 166.3   run `npm fund` for details
#11 166.4
#11 166.4 5 moderate severity vulnerabilities
#11 166.4
#11 166.4 To address all issues (including breaking changes), run:
#11 166.4   npm audit fix --force
#11 166.4
#11 166.4 Run `npm audit` for details.
#11 166.7
#11 166.7 > @nestjs-mod-fullstack/[email protected] prisma:generate
#11 166.7 > ./node_modules/.bin/nx run-many -t=prisma-generate
#11 166.7
#11 169.4
#11 169.4  NX   Running target prisma-generate for project server:
#11 169.4
#11 169.4 - server
#11 169.4
#11 169.4
#11 177.6
#11 177.6 > nx run server:prisma-generate
#11 177.6
#11 177.6 > ./node_modules/.bin/prisma generate --schema=./apps/server/src/prisma/app-schema.prisma
#11 177.6
#11 177.6 Environment variables loaded from .env
#11 177.6 Prisma schema loaded from apps/server/src/prisma/app-schema.prisma
#11 177.6 prisma:info (Prisma Class Generator):Handler Registered.
#11 177.6 prisma:info (Prisma Class Generator):Generate /usr/src/app/apps/server/src/app/generated/rest/dto/app_demo.ts
#11 177.6 prisma:info (Prisma Class Generator):Generate /usr/src/app/apps/server/src/app/generated/rest/dto/migrations.ts
#11 177.6
#11 177.6 ✔ Generated Prisma Client (v5.18.0, engine=binary) to ./node_modules/@prisma/app-client in 308ms
#11 177.6
#11 177.6 ✔ Generated Prisma Class Generator to ./apps/server/src/app/generated/rest/dto in 408ms
#11 177.6
#11 177.6 Start by importing your Prisma Client (See:
#11 177.6
#11 177.6 Tip: Easily identify and fix slow SQL queries in your app. Optimize helps you enhance your visibility:
#11 177.6
#11 177.6
#11 177.6
#11 177.6
#11 177.6  NX   Successfully ran target prisma-generate for project server
#11 177.6
#11 177.6
#11 DONE 178.9s

#12 (stage-1 3/4) COPY --from=builder /usr/src/app/ /usr/src/app/
#12 DONE 8.3s

#13 (stage-1 4/4) COPY --from=builder /usr/bin/dumb-init /usr/bin/dumb-init
#13 DONE 0.1s

#14 exporting to image
#14 exporting layers
#14 exporting layers 8.7s done
#14 writing image sha256:049c6f471ddfe18b811e6aac12cccd777dfab0bb1d599b00c91beb51d1ff188f done
#14 naming to done
#14 DONE 8.7s
WARN(0000) /root/nestjs-mod-fullstack/.docker/docker-compose-full.yml: the attribute `version` is obsolete, it will be ignored, please remove it to avoid potential confusion
(+) Running 5/5
 ✔ Container nestjs-mod-fullstack-postgre-sql             Healthy                                                                                                13.9s
 ✔ Container nestjs-mod-fullstack-postgre-sql-migrations  Exited                                                                                                 30.9s
 ✔ Container nestjs-mod-fullstack-server                  Healthy                                                                                                65.1s
 ✔ Container nestjs-mod-fullstack-nginx                   Started                                                                                                65.1s
 ✔ Container nestjs-mod-fullstack-https-portal            Started                                                                                                65.2s

root@vps1724252356:~/nestjs-mod-fullstack# export BASE_URL= && npm run test:e2e

> @nestjs-mod-fullstack/[email protected] test:e2e
> ./node_modules/.bin/nx run-many --exclude=@nestjs-mod-fullstack/source --all -t=e2e --skip-nx-cache=true --output-style=stream-without-prefixes

> nx run client-e2e:e2e

> playwright test

 NX   Running target e2e for 2 projects and 1 task they depend on

 NX   Running target e2e for 2 projects and 1 task they depend on

   →  Executing 1/3 remaining tasks...

   ✔  nx run client-e2e:e2e (25s)


   ✔  nx run server:build:production (14s)



 NX   Running target e2e for 2 projects and 1 task they depend on

   →  Executing 1/1 remaining tasks...

   ⠹  nx run server-e2e:e2e

   ✔  2/2 succeeded (0 read from cache)

 PASS   server-e2e  apps/server-e2e/src/server/server.spec.ts
  GET /api
    ✓ should return a message (160 ms)
   ✔  nx run server-e2e:e2e (10s)


 NX   Successfully ran target e2e for 2 projects and 1 task they depend on (50s)
19. Restart all applications in PM2 production mode and run E2E tests, specify the server address


npm run pm2-full:prod:start
export BASE_URL= && npm run test:e2e
Console output

root@vps1724252356:~/nestjs-mod-fullstack# npm run pm2-full:prod:start

> @nestjs-mod-fullstack/[email protected] pm2-full:prod:start
> npm run generate && npm run build -- -c production && npm run docker-compose:start-prod:server && npm run db:create && npm run flyway:migrate && npm run pm2:start

> @nestjs-mod-fullstack/[email protected] generate
> ./node_modules/.bin/nx run-many --exclude=@nestjs-mod-fullstack/source --all -t=generate --skip-nx-cache=true && npm run make-ts-list && npm run lint:fix

   ✔  nx run server:generate (1m)


 NX   Successfully ran target generate for project server (1m)

> @nestjs-mod-fullstack/[email protected] make-ts-list
> ./node_modules/.bin/rucken make-ts-list

> @nestjs-mod-fullstack/[email protected] lint:fix
> npm run tsc:lint && ./node_modules/.bin/nx run-many --exclude=@nestjs-mod-fullstack/source --all -t=lint --fix

> @nestjs-mod-fullstack/[email protected] tsc:lint
> ./node_modules/.bin/tsc --noEmit -p tsconfig.base.json

   ✔  nx run app-angular-rest-sdk:lint  (existing outputs match the cache, left as is)
   ✔  nx run client:lint  (existing outputs match the cache, left as is)
   ✔  nx run server-e2e:lint  (existing outputs match the cache, left as is)
   ✔  nx run server:lint (4s)


 NX   Successfully ran target lint for 4 projects (5s)

      With additional flags:

Nx read the output from the cache instead of running the command for 3 out of 4 tasks.

> @nestjs-mod-fullstack/[email protected] build
> npm run generate && npm run tsc:lint && ./node_modules/.bin/nx run-many --exclude=@nestjs-mod-fullstack/source --all -t=build --skip-nx-cache=true -c production

> @nestjs-mod-fullstack/[email protected] generate
> ./node_modules/.bin/nx run-many --exclude=@nestjs-mod-fullstack/source --all -t=generate --skip-nx-cache=true && npm run make-ts-list && npm run lint:fix

   ✔  nx run server:generate (43s)


 NX   Successfully ran target generate for project server (43s)

> @nestjs-mod-fullstack/[email protected] make-ts-list
> ./node_modules/.bin/rucken make-ts-list

> @nestjs-mod-fullstack/[email protected] lint:fix
> npm run tsc:lint && ./node_modules/.bin/nx run-many --exclude=@nestjs-mod-fullstack/source --all -t=lint --fix

> @nestjs-mod-fullstack/[email protected] tsc:lint
> ./node_modules/.bin/tsc --noEmit -p tsconfig.base.json

   ✔  nx run app-angular-rest-sdk:lint  (existing outputs match the cache, left as is)
   ✔  nx run client:lint  (existing outputs match the cache, left as is)
   ✔  nx run server:lint  (existing outputs match the cache, left as is)
   ✔  nx run server-e2e:lint  (existing outputs match the cache, left as is)


 NX   Successfully ran target lint for 4 projects (373ms)

      With additional flags:

Nx read the output from the cache instead of running the command for 4 out of 4 tasks.

> @nestjs-mod-fullstack/[email protected] tsc:lint
> ./node_modules/.bin/tsc --noEmit -p tsconfig.base.json

   ✔  nx run app-rest-sdk:build (1m)
   ✔  nx run app-angular-rest-sdk:build:production (1m)
   ✔  nx run server:build:production (1m)
   ✔  nx run client:build:production (23s)


 NX   Successfully ran target build for 4 projects (2m)

> @nestjs-mod-fullstack/[email protected] docker-compose:start-prod:server
> export COMPOSE_INTERACTIVE_NO_CLI=1 && docker compose -f ./apps/server/docker-compose-prod.yml --env-file ./apps/server/docker-compose-prod.env --compatibility up -d

WARN(0000) /root/nestjs-mod-fullstack/apps/server/docker-compose-prod.yml: the attribute `version` is obsolete, it will be ignored, please remove it to avoid potential confusion
(+) Running 1/1
 ✔ Container server-postgre-sql  Started                                                                                                                          0.7s

> @nestjs-mod-fullstack/[email protected] db:create
> ./node_modules/.bin/nx run-many -t=db-create

   ✔  nx run server:db-create (3s)


 NX   Successfully ran target db-create for project server (4s)

> @nestjs-mod-fullstack/[email protected] flyway:migrate
> ./node_modules/.bin/nx run-many -t=flyway-migrate

   ✔  nx run server:flyway-migrate (5s)


 NX   Successfully ran target flyway-migrate for project server (5s)

> @nestjs-mod-fullstack/[email protected] pm2:start
> ./node_modules/.bin/pm2 start ./ecosystem-prod.config.json && npm run wait-on -- --log http://localhost:3000/api/health --log http://localhost:3000

(PM2) Spawning PM2 daemon with pm2_home=/root/.pm2
(PM2) PM2 Successfully daemonized
(PM2)(WARN) Applications nestjs-mod-fullstack not running, starting...
(PM2) App (nestjs-mod-fullstack) launched (1 instances)
│ id │ name                    │ namespace   │ version │ mode    │ pid      │ uptime │ ↺    │ status    │ cpu      │ mem      │ user     │ watching │
│ 0  │ nestjs-mod-fullstack    │ default     │ N/A     │ fork    │ 505154   │ 0s     │ 0    │ online    │ 0%       │ 28.8mb   │ root     │ disabled │

> @nestjs-mod-fullstack/[email protected] wait-on
> ./node_modules/.bin/wait-on --timeout=240000 --interval=1000 --window --verbose --log http://localhost:3000/api/health --log http://localhost:3000

waiting for 2 resources: http://localhost:3000/api/health, http://localhost:3000
making HTTP(S) head request to  url:http://localhost:3000/api/health ...
making HTTP(S) head request to  url:http://localhost:3000 ...
  HTTP(S) error for http://localhost:3000/api/health AggregateError
  HTTP(S) error for http://localhost:3000 AggregateError
making HTTP(S) head request to  url:http://localhost:3000/api/health ...
making HTTP(S) head request to  url:http://localhost:3000 ...
  HTTP(S) error for http://localhost:3000/api/health AggregateError
  HTTP(S) error for http://localhost:3000 AggregateError
making HTTP(S) head request to  url:http://localhost:3000/api/health ...
  HTTP(S) error for http://localhost:3000/api/health AggregateError
making HTTP(S) head request to  url:http://localhost:3000 ...
  HTTP(S) error for http://localhost:3000 AggregateError
making HTTP(S) head request to  url:http://localhost:3000/api/health ...
making HTTP(S) head request to  url:http://localhost:3000 ...
  HTTP(S) result for http://localhost:3000/api/health: {
  status: 200,
  statusText: 'OK',
  headers: Object (AxiosHeaders) {
    'x-powered-by': 'Express',
    vary: 'Origin',
    'access-control-allow-credentials': 'true',
    'x-request-id': 'bd416d0d-2e53-4f4a-8402-58e367c833c5',
    'cache-control': 'no-cache, no-store, must-revalidate',
    'content-type': 'application/json; charset=utf-8',
    'content-length': '107',
    etag: 'W/"6b-ouXVoNOXyOxnMfI7caewF8/p97A"',
    date: 'Thu, 22 Aug 2024 18:58:09 GMT',
    connection: 'keep-alive',
    'keep-alive': 'timeout=5'
  data: ''
waiting for 1 resources: http://localhost:3000
  HTTP(S) result for http://localhost:3000: {
  status: 200,
  statusText: 'OK',
  headers: Object (AxiosHeaders) {
    'x-powered-by': 'Express',
    vary: 'Origin',
    'access-control-allow-credentials': 'true',
    'accept-ranges': 'bytes',
    'cache-control': 'public, max-age=0',
    'last-modified': 'Thu, 22 Aug 2024 18:57:47 GMT',
    etag: 'W/"8e8-1917b73ba3d"',
    'content-type': 'text/html; charset=UTF-8',
    'content-length': '2280',
    date: 'Thu, 22 Aug 2024 18:58:09 GMT',
    connection: 'keep-alive',
    'keep-alive': 'timeout=5'
  data: ''
wait-on(505210) complete

root@vps1724252356:~/nestjs-mod-fullstack# export BASE_URL= && npm run test:e2e

> @nestjs-mod-fullstack/[email protected] test:e2e
> ./node_modules/.bin/nx run-many --exclude=@nestjs-mod-fullstack/source --all -t=e2e --skip-nx-cache=true --output-style=stream-without-prefixes

> nx run client-e2e:e2e

> playwright test

 NX   Running target e2e for 2 projects and 1 task they depend on

 NX   Running target e2e for 2 projects and 1 task they depend on

   →  Executing 1/3 remaining tasks...

   ✔  nx run client-e2e:e2e (39s)


   ✔  nx run server:build:production (16s)



 NX   Running target e2e for 2 projects and 1 task they depend on

   →  Executing 1/1 remaining tasks...

   ⠴  nx run server-e2e:e2e

   ✔  2/2 succeeded (0 read from cache)

 PASS   server-e2e  apps/server-e2e/src/server/server.spec.ts
  GET /api
    ✓ should return a message (74 ms)
   ✔  nx run server-e2e:e2e (11s)


 NX   Successfully ran target e2e for 2 projects and 1 task they depend on (1m)
20. Setting automatic restart of PM2 production mode when restarting the dedicated server


./node_modules/.bin/pm2 startup
./node_modules/.bin/pm2 save
Console output

root@vps1724252356:~/nestjs-mod-fullstack# ./node_modules/.bin/pm2 startup
(PM2) Init System found: systemd
Platform systemd
Description=PM2 process manager


ExecStart=/root/nestjs-mod-fullstack/node_modules/pm2/bin/pm2 resurrect
ExecReload=/root/nestjs-mod-fullstack/node_modules/pm2/bin/pm2 reload all
ExecStop=/root/nestjs-mod-fullstack/node_modules/pm2/bin/pm2 kill


Target path
Command list
( 'systemctl enable pm2-root' )
(PM2) Writing init configuration in /etc/systemd/system/pm2-root.service
(PM2) Making script booting at startup...
(PM2) (-) Executing: systemctl enable pm2-root...
Created symlink /etc/systemd/system/ → /etc/systemd/system/pm2-root.service.
(PM2) (v) Command successfully executed.
(PM2) Freeze a process list on reboot via:
$ pm2 save

(PM2) Remove init script via:
$ pm2 unstartup systemd

root@vps1724252356:~/nestjs-mod-fullstack# ./node_modules/.bin/pm2 save
(PM2) Saving current process list...
(PM2) Successfully saved in /root/.pm2/dump.pm2
21. We reboot and check via the E2E test the operation of both modes


sudo reboot

cd nestjs-mod-fullstack
export BASE_URL= && npm run test:e2e
export BASE_URL= && npm run test:e2e
Console output

root@vps1724252356:~/nestjs-mod-fullstack# export BASE_URL= && npm run test:e2e

> @nestjs-mod-fullstack/[email protected] test:e2e
> ./node_modules/.bin/nx run-many --exclude=@nestjs-mod-fullstack/source --all -t=e2e --skip-nx-cache=true --output-style=stream-without-prefixes

> nx run client-e2e:e2e

> playwright test

 NX   Running target e2e for 2 projects and 1 task they depend on

 NX   Running target e2e for 2 projects and 1 task they depend on

   →  Executing 1/3 remaining tasks...

   ✔  nx run client-e2e:e2e (29s)


   ✔  nx run server:build:production (15s)



 NX   Running target e2e for 2 projects and 1 task they depend on

   →  Executing 1/1 remaining tasks...

   ⠏  nx run server-e2e:e2e

   ✔  2/2 succeeded (0 read from cache)

 PASS   server-e2e  apps/server-e2e/src/server/server.spec.ts
  GET /api
    ✓ should return a message (73 ms)
   ✔  nx run server-e2e:e2e (12s)


 NX   Successfully ran target e2e for 2 projects and 1 task they depend on (56s)
In the next article I will add the CI/CD setup for deploying to a dedicated server using GitHub Actions…

Links – the official website of the framework – the official website of additional utilities – the project of the post – commit current changes