Merge pull request #4 from gtech-mulearn/dev

Dev

Author: nashnsulthan

database.sqlite

@@ -4,6 +4,8 @@ import { AppController } from './app.controller';
 import { AppService } from './app.service';
 import { TypeOrmModule } from '@nestjs/typeorm';
 import { SchedulerModule } from './scheduler/scheduler.module';
+import { APP_GUARD } from '@nestjs/core';
+import { ApiKeyGuard } from './guards/api-key.guard';
 
 @Module({
   imports: [
@@ -12,35 +14,35 @@ import { SchedulerModule } from './scheduler/scheduler.module';
       imports: [ConfigModule],
       inject: [ConfigService],
       useFactory: (config: ConfigService) => {
-        const dbType = config.get<string>('DB_TYPE', 'sqlite');
+        const dbType = config.get<string>('DB_TYPE');
         const entities = [__dirname + '/**/*.entity{.ts,.js}'];
 
-        if (dbType === 'mysql') {
-          return {
-            type: 'mysql' as const,
-            host: config.get<string>('DATABASE_HOST', 'localhost'),
-            port: parseInt(config.get<string>('DATABASE_PORT', '3306'), 10),
-            username: config.get<string>('DATABASE_USER', 'root'),
-            password: config.get<string>('DATABASE_PASSWORD', ''),
-            database: config.get<string>('DATABASE_NAME', 'scheduler'),
-            entities,
-            synchronize: config.get<string>('DB_SYNC', 'false') === 'true',
-            logging: config.get<string>('DB_LOGGING', 'false') === 'true',
-          };
+        if (dbType !== 'mysql') {
+          throw new Error('Only MySQL database is supported. Please check DB_TYPE in .env');
         }
 
         return {
-          type: 'sqlite' as const,
-          database: config.get<string>('DB_FILE', 'database.sqlite'),
+          type: 'mysql' as const,
+          host: config.get<string>('DATABASE_HOST', 'localhost'),
+          port: parseInt(config.get<string>('DATABASE_PORT', '3306'), 10),
+          username: config.get<string>('DATABASE_USER', 'root'),
+          password: config.get<string>('DATABASE_PASSWORD', ''),
+          database: config.get<string>('DATABASE_NAME', 'scheduler'),
           entities,
-          synchronize: true,
-          logging: false,
+          synchronize: config.get<string>('DB_SYNC', 'false') === 'true',
+          logging: config.get<string>('DB_LOGGING', 'false') === 'true',
         };
       },
     }),
     SchedulerModule,
   ],
   controllers: [AppController],
-  providers: [AppService],
+  providers: [
+    AppService,
+    {
+      provide: APP_GUARD,
+      useClass: ApiKeyGuard,
+    },
+  ],
 })
-export class AppModule {}
+export class AppModule { }

src/app.module.ts

@@ -0,0 +1,36 @@
+import {
+    CanActivate,
+    ExecutionContext,
+    Injectable,
+    UnauthorizedException,
+} from '@nestjs/common';
+import { ConfigService } from '@nestjs/config';
+import { Request } from 'express';
+
+@Injectable()
+export class ApiKeyGuard implements CanActivate {
+    constructor(private readonly configService: ConfigService) { }
+
+    canActivate(context: ExecutionContext): boolean {
+        const request = context.switchToHttp().getRequest<Request>();
+        const authHeader = request.headers.authorization;
+
+        if (!authHeader) {
+            throw new UnauthorizedException('Missing Authorization header');
+        }
+
+        const [type, token] = authHeader.split(' ');
+
+        if (type !== 'Bearer' || !token) {
+            throw new UnauthorizedException('Invalid Authorization header format');
+        }
+
+        const apiKey = this.configService.get<string>('API_KEY');
+
+        if (token !== apiKey) {
+            throw new UnauthorizedException('Invalid API Key');
+        }
+
+        return true;
+    }
+}

src/guards/api-key.guard.ts

@@ -4,7 +4,7 @@ import { SchedulerService } from './scheduler.service';
 
 @Controller('jobs')
 export class SchedulerController {
-  constructor(private readonly svc: SchedulerService) {}
+  constructor(private readonly svc: SchedulerService) { }
 
   @Post()
   async create(@Body() payload: CreateJobDto) {
@@ -17,7 +17,7 @@ export class SchedulerController {
     return this.svc.findAll();
   }
 
-  
+
   @Delete(':id')
   @HttpCode(204)
   async remove(@Param('id') id: string) {