Installation

Step-by-step guide for deploying Derma Consent manually (without Docker).

TIP

For most deployments, Docker Compose is simpler. Use this guide if you need more control over individual services.

1. Clone the Repository

git clone https://github.com/sohaibfaroukh/derma-consent.git
cd derma-consent

2. Install Dependencies

pnpm install --recursive

3. Set Up PostgreSQL

Create a database and user:

CREATE USER derma WITH PASSWORD 'your-secure-password';
CREATE DATABASE dermaconsent OWNER derma;

4. Configure Environment

cp .env.example .env

Edit .env and set at minimum:

DATABASE_URL=postgresql://derma:your-secure-password@localhost:5432/dermaconsent
AUTH_SECRET=generate-a-random-64-char-string
FRONTEND_URL=https://your-domain.com
NEXT_PUBLIC_API_URL=https://api.your-domain.com

See Configuration for all variables.

5. Run Database Migrations

cd packages/backend
npx prisma db push
npx prisma generate
cd ../..

6. Build for Production

pnpm --filter @derma-consent/backend build
pnpm --filter @derma-consent/frontend build

7. Start the Services

Using PM2 as an example:

# Backend
pm2 start packages/backend/dist/main.js --name derma-backend

# Frontend
cd packages/frontend
pm2 start npm --name derma-frontend -- start

Or with systemd — create service files for each:

# /etc/systemd/system/derma-backend.service
[Unit]
Description=Derma Consent Backend
After=postgresql.service

[Service]
WorkingDirectory=/opt/derma-consent/packages/backend
ExecStart=/usr/bin/node dist/main.js
EnvironmentFile=/opt/derma-consent/.env
Restart=always

[Install]
WantedBy=multi-user.target

8. Configure Reverse Proxy

Example nginx configuration:

server {
    listen 443 ssl;
    server_name your-domain.com;

    ssl_certificate     /etc/letsencrypt/live/your-domain.com/fullchain.pem;
    ssl_certificate_key /etc/letsencrypt/live/your-domain.com/privkey.pem;

    location / {
        proxy_pass http://127.0.0.1:3000;
        proxy_set_header Host $host;
        proxy_set_header X-Real-IP $remote_addr;
        proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
        proxy_set_header X-Forwarded-Proto $scheme;
    }
}

server {
    listen 443 ssl;
    server_name api.your-domain.com;

    ssl_certificate     /etc/letsencrypt/live/api.your-domain.com/fullchain.pem;
    ssl_certificate_key /etc/letsencrypt/live/api.your-domain.com/privkey.pem;

    location / {
        proxy_pass http://127.0.0.1:3001;
        proxy_set_header Host $host;
        proxy_set_header X-Real-IP $remote_addr;
        proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
        proxy_set_header X-Forwarded-Proto $scheme;
    }
}

9. Verify

Open https://your-domain.com in a browser. You should see the login page. Register a new account or run make seed to create test data.