first commit

Author: MateoGiraz

.cursor/rules/main-rule.mdc

@@ -0,0 +1,13 @@
+---
+description: 
+globs: 
+alwaysApply: true
+---
+
+
+No Comments by Default: Only add comments when explicitly requested in the prompt.
+Adhere to DRY Principle: Avoid repetition in code.
+Prevent Premature Optimization: Focus on functionality and clarity before optimizing.
+Single Responsibility: Keep files and modules focused on a single purpose.
+Clear Boundaries: Maintain well-defined interfaces and responsibilities between modules.
+Concise Code: Strive for brevity; prefer one-liners when they don't compromise readability or exceed reasonable line length.

.dockerignore

@@ -0,0 +1,19 @@
+.git
+.gitignore
+.elixir_ls
+.terraform
+.github
+_build
+deps
+test
+tmp
+erl_crash.dump
+*.ez
+priv/static
+node_modules
+docker-compose.yml
+Dockerfile
+.dockerignore
+terraform
+deploy.sh
+README.md 

.env.example

@@ -0,0 +1,30 @@
+# Application configuration
+FRONTEND_URL=
+
+# AWS Configuration
+AWS_ACCESS_KEY_ID=
+AWS_SECRET_ACCESS_KEY=
+AWS_REGION=
+
+# AWS SQS Configuration
+SQS_QUEUE_URL=
+
+# AWS SES Configuration
+SES_FROM_EMAIL=
+
+# Logflare Configuration
+LOGFLARE_URL=
+LOGFLARE_API_KEY=
+LOGFLARE_SOURCE_ID=
+
+# New Relic Configuration
+NEW_RELIC_LICENSE_KEY=
+NEW_RELIC_API_KEY=
+NEW_RELIC_ACCOUNT_ID=
+
+# API Config
+API_SECRET_KEY=
+
+SECRET_KEY_BASE=
+RAILS_MASTER_KEY=
+

.formatter.exs

@@ -0,0 +1,6 @@
+[
+  import_deps: [:ecto, :ecto_sql, :phoenix],
+  subdirectories: ["priv/*/migrations"],
+  plugins: [Phoenix.LiveView.HTMLFormatter],
+  inputs: ["*.{heex,ex,exs}", "{config,lib,test}/**/*.{heex,ex,exs}", "priv/*/seeds.exs"]
+]

.github/workflows/audit-service-ci.yml

@@ -0,0 +1,60 @@
+name: Audit Service CI
+
+on:
+  pull_request:
+    paths:
+      - 'audit-service/**'
+  push:
+    branches: [ main, develop ]
+    paths:
+      - 'audit-service/**'
+
+defaults:
+  run:
+    working-directory: audit-service
+
+jobs:
+  test:
+    runs-on: ubuntu-latest
+
+    steps:
+      - name: Checkout code
+        uses: actions/checkout@v4
+
+      - name: Install packages
+        run: sudo apt-get update && sudo apt-get install --no-install-recommends -y build-essential git libyaml-dev pkg-config bc
+
+      - name: Set up Ruby
+        uses: ruby/setup-ruby@v1
+        with:
+          ruby-version-file: audit-service/.ruby-version
+          bundler-cache: true
+          working-directory: audit-service
+
+      - name: Run tests with coverage
+        env:
+          RAILS_ENV: test
+        run: |
+          bin/rails db:test:prepare
+          bin/rails test
+
+      - name: Log coverage results
+        run: |
+          if [ -f coverage/.last_run.json ]; then
+            COVERAGE=$(cat coverage/.last_run.json | grep -o '"covered_percent":[0-9.]*' | cut -d':' -f2)
+            echo "📊 Coverage Report:"
+            echo "Coverage: $COVERAGE%"
+            echo "Target: 100% (informational only)"
+            
+            if [ $(echo "$COVERAGE >= 100" | bc -l) -eq 1 ]; then
+              echo "🎉 Excellent! 100% coverage achieved!"
+            elif [ $(echo "$COVERAGE >= 95" | bc -l) -eq 1 ]; then
+              echo "✅ Great coverage! Close to 100%"
+            elif [ $(echo "$COVERAGE >= 90" | bc -l) -eq 1 ]; then
+              echo "👍 Good coverage! Consider improving to reach 100%"
+            else
+              echo "⚠️  Coverage could be improved. Target is 100%"
+            fi
+          else
+            echo "⚠️  Coverage report not found"
+          fi

.github/workflows/auth-service-ci.yml

@@ -0,0 +1,35 @@
+name: Auth Service CI
+
+on:
+  pull_request:
+    paths:
+      - 'auth-service/**'
+  push:
+    branches: [ main, develop ]
+    paths:
+      - 'auth-service/**'
+
+defaults:
+  run:
+    working-directory: auth-service
+
+jobs:
+  test:
+    runs-on: ubuntu-latest
+
+    steps:
+      - name: Checkout code
+        uses: actions/checkout@v4
+
+      - name: Set up Node.js
+        uses: actions/setup-node@v4
+        with:
+          node-version: '18'
+          cache: 'npm'
+          cache-dependency-path: auth-service/package-lock.json
+
+      - name: Install dependencies
+        run: npm install
+
+      - name: Run tests
+        run: npm run test

.github/workflows/deploy-api-gateway.yml

@@ -0,0 +1,109 @@
+name: Deploy API Gateway
+
+on:
+  push:
+    tags:
+      - 'api-gateway-*'
+
+env:
+  AWS_REGION: us-east-1
+  ECR_REPOSITORY: expense-pilot/api-gateway
+  ECS_CLUSTER: expense-pilot-cluster
+  ECS_SERVICE: api-gateway
+
+jobs:
+  deploy:
+    name: Deploy API Gateway
+    runs-on: ubuntu-latest
+    
+    steps:
+    - name: Checkout
+      uses: actions/checkout@v4
+
+    - name: Configure AWS credentials
+      uses: aws-actions/configure-aws-credentials@v4
+      with:
+        aws-access-key-id: ${{ secrets.AWS_ACCESS_KEY_ID }}
+        aws-secret-access-key: ${{ secrets.AWS_SECRET_ACCESS_KEY }}
+        aws-region: ${{ env.AWS_REGION }}
+
+    - name: Login to Amazon ECR
+      id: login-ecr
+      uses: aws-actions/amazon-ecr-login@v2
+
+    - name: Build, tag, and push image to Amazon ECR
+      id: build-image
+      env:
+        ECR_REGISTRY: ${{ steps.login-ecr.outputs.registry }}
+        IMAGE_TAG: ${{ github.sha }}
+      run: |
+        cd api-gateway
+        docker build -t $ECR_REGISTRY/$ECR_REPOSITORY:$IMAGE_TAG .
+        docker tag $ECR_REGISTRY/$ECR_REPOSITORY:$IMAGE_TAG $ECR_REGISTRY/$ECR_REPOSITORY:latest
+        docker push $ECR_REGISTRY/$ECR_REPOSITORY:$IMAGE_TAG
+        docker push $ECR_REGISTRY/$ECR_REPOSITORY:latest
+        echo "image=$ECR_REGISTRY/$ECR_REPOSITORY:$IMAGE_TAG" >> $GITHUB_OUTPUT
+
+    - name: Create task definition
+      run: |
+        cat > task-definition.json << EOF
+        {
+          "family": "${{ env.ECS_SERVICE }}",
+          "networkMode": "awsvpc",
+          "requiresCompatibilities": ["FARGATE"],
+          "cpu": "256",
+          "memory": "512",
+          "executionRoleArn": "arn:aws:iam::170107269579:role/ecsTaskExecutionRole",
+          "containerDefinitions": [
+            {
+              "name": "${{ env.ECS_SERVICE }}",
+              "image": "${{ steps.build-image.outputs.image }}",
+              "portMappings": [
+                {
+                  "containerPort": 8080,
+                  "protocol": "tcp"
+                }
+              ],
+              "environment": [
+                {
+                  "name": "PORT",
+                  "value": "8080"
+                },
+                {
+                  "name": "AUTH_SERVICE_URL",
+                  "value": "http://auth-service.expense-pilot.local:5439"
+                },
+                {
+                  "name": "EXPENSES_SERVICE_URL",
+                  "value": "http://expenses-service.expense-pilot.local:4001"
+                },
+                {
+                  "name": "AUDIT_SERVICE_URL",
+                  "value": "http://audit-service.expense-pilot.local:3000"
+                },
+                {
+                  "name": "API_SECRET_KEY",
+                  "value": "${{ secrets.API_SECRET_KEY }}"
+                }
+              ],
+              "logConfiguration": {
+                "logDriver": "awslogs",
+                "options": {
+                  "awslogs-group": "/ecs/${{ env.ECS_SERVICE }}",
+                  "awslogs-region": "${{ env.AWS_REGION }}",
+                  "awslogs-stream-prefix": "ecs"
+                }
+              }
+            }
+          ]
+        }
+        EOF
+
+    - name: Deploy to Amazon ECS
+      uses: aws-actions/amazon-ecs-deploy-task-definition@v1
+      with:
+        task-definition: task-definition.json
+        service: ${{ env.ECS_SERVICE }}
+        cluster: ${{ env.ECS_CLUSTER }}
+        desired-count: 1
+        wait-for-service-stability: true 

.github/workflows/deploy-audit-service.yml

@@ -0,0 +1,112 @@
+name: Deploy Audit Service
+
+on:
+  push:
+    tags:
+      - 'audit-service-*'
+
+env:
+  AWS_REGION: us-east-1
+  ECR_REPOSITORY: expense-pilot/audit-service
+  ECS_CLUSTER: expense-pilot-cluster
+  ECS_SERVICE: audit-service
+
+jobs:
+  deploy:
+    name: Deploy Audit Service
+    runs-on: ubuntu-latest
+    
+    steps:
+    - name: Checkout
+      uses: actions/checkout@v4
+
+    - name: Configure AWS credentials
+      uses: aws-actions/configure-aws-credentials@v4
+      with:
+        aws-access-key-id: ${{ secrets.AWS_ACCESS_KEY_ID }}
+        aws-secret-access-key: ${{ secrets.AWS_SECRET_ACCESS_KEY }}
+        aws-region: ${{ env.AWS_REGION }}
+
+    - name: Login to Amazon ECR
+      id: login-ecr
+      uses: aws-actions/amazon-ecr-login@v2
+
+    - name: Build, tag, and push image to Amazon ECR
+      id: build-image
+      env:
+        ECR_REGISTRY: ${{ steps.login-ecr.outputs.registry }}
+        IMAGE_TAG: ${{ github.sha }}
+      run: |
+        cd audit-service
+        docker build -t $ECR_REGISTRY/$ECR_REPOSITORY:$IMAGE_TAG .
+        docker tag $ECR_REGISTRY/$ECR_REPOSITORY:$IMAGE_TAG $ECR_REGISTRY/$ECR_REPOSITORY:latest
+        docker push $ECR_REGISTRY/$ECR_REPOSITORY:$IMAGE_TAG
+        docker push $ECR_REGISTRY/$ECR_REPOSITORY:latest
+        echo "image=$ECR_REGISTRY/$ECR_REPOSITORY:$IMAGE_TAG" >> $GITHUB_OUTPUT
+
+    - name: Create task definition
+      run: |
+        cat > task-definition.json << EOF
+        {
+          "family": "${{ env.ECS_SERVICE }}",
+          "networkMode": "awsvpc",
+          "requiresCompatibilities": ["FARGATE"],
+          "cpu": "256",
+          "memory": "512",
+          "executionRoleArn": "arn:aws:iam::170107269579:role/ecsTaskExecutionRole",
+          "containerDefinitions": [
+            {
+              "name": "${{ env.ECS_SERVICE }}",
+              "image": "${{ steps.build-image.outputs.image }}",
+              "portMappings": [
+                {
+                  "containerPort": 3000,
+                  "protocol": "tcp"
+                }
+              ],
+              "environment": [
+                {
+                  "name": "RAILS_ENV",
+                  "value": "production"
+                },
+                {
+                  "name": "RAILS_MASTER_KEY",
+                  "value": "${{ secrets.RAILS_MASTER_KEY }}"
+                },
+                {
+                  "name": "API_SECRET_KEY",
+                  "value": "${{ secrets.API_SECRET_KEY }}"
+                },
+                {
+                  "name": "NEW_RELIC_API_KEY",
+                  "value": "${{ secrets.NEW_RELIC_API_KEY }}"
+                },
+                {
+                  "name": "NEW_RELIC_APP_NAME",
+                  "value": "audit-service"
+                },
+                {
+                  "name": "NEW_RELIC_ACCOUNT_ID",
+                  "value": "${{ secrets.NEW_RELIC_ACCOUNT_ID }}"
+                }
+              ],
+              "logConfiguration": {
+                "logDriver": "awslogs",
+                "options": {
+                  "awslogs-group": "/ecs/${{ env.ECS_SERVICE }}",
+                  "awslogs-region": "${{ env.AWS_REGION }}",
+                  "awslogs-stream-prefix": "ecs"
+                }
+              }
+            }
+          ]
+        }
+        EOF
+
+    - name: Deploy to Amazon ECS
+      uses: aws-actions/amazon-ecs-deploy-task-definition@v1
+      with:
+        task-definition: task-definition.json
+        service: ${{ env.ECS_SERVICE }}
+        cluster: ${{ env.ECS_CLUSTER }}
+        wait-for-service-stability: true