Skip to main content

โ€‹
Installation Guide

This comprehensive guide covers everything you need to install, configure, and deploy the MTB Backend API in both development and production environments.

โ€‹
System Requirements

โ€‹
Required Software

Node.js

Version 20.0.0 to 24.x.x

npm

Version 6.0.0 or higher

Database

SQLite (default), MySQL, or PostgreSQL

Git

For version control (optional)
  • RAM: Minimum 2GB, recommended 4GB+
  • Storage: At least 500MB free space
  • OS: Linux, macOS, or Windows
  • CPU: 2+ cores recommended for production
The MTB Backend has been tested on Node.js 20.x and 24.x. Using versions outside the supported range may cause compatibility issues.

โ€‹
Installation Methods

โ€‹
Method 1: Fresh Installation

1

Install Node.js

Download and install Node.js from nodejs.org:
# Verify installation
node --version  # Should output v20.x.x or higher
npm --version   # Should output 6.x.x or higher
Use nvm (Node Version Manager) to easily switch between Node.js versions:
nvm install 20
nvm use 20
2

Clone the Repository

git clone <your-repository-url> backend-mtb
cd backend-mtb
3

Install Dependencies

Install all required npm packages:
npm install
This installs:
The installation may take 2-5 minutes depending on your internet connection and system performance.

โ€‹
Method 2: Using Docker

While the repository doesnโ€™t include a Dockerfile yet, you can containerize the application using a custom Dockerfile: 
FROM node:20-alpine

WORKDIR /app

COPY package*.json ./
RUN npm install

COPY . .

ENV NODE_ENV=production
EXPOSE 1337

CMD ["npm", "start"]
For production deployments, consider using Docker Compose to orchestrate the application with your chosen database.

โ€‹
Configuration

โ€‹
Environment Variables

Create a .env file in the project root with the following configuration: 
# ===========================
# Server Configuration
# ===========================
HOST=0.0.0.0
PORT=1337

# ===========================
# Application Keys
# ===========================
# Generate 4 random keys using: openssl rand -base64 32
APP_KEYS=key1,key2,key3,key4

# ===========================
# Database Configuration
# ===========================
DATABASE_CLIENT=sqlite
DATABASE_FILENAME=.tmp/data.db

# For MySQL:
# DATABASE_CLIENT=mysql
# DATABASE_HOST=localhost
# DATABASE_PORT=3306
# DATABASE_NAME=strapi
# DATABASE_USERNAME=strapi
# DATABASE_PASSWORD=strapi
# DATABASE_SSL=false

# For PostgreSQL:
# DATABASE_CLIENT=postgres
# DATABASE_HOST=localhost
# DATABASE_PORT=5432
# DATABASE_NAME=strapi
# DATABASE_USERNAME=strapi
# DATABASE_PASSWORD=strapi
# DATABASE_SSL=false
# DATABASE_SCHEMA=public

# ===========================
# Flow Payment Gateway
# ===========================
FLOW_API_KEY=your_flow_api_key_here
FLOW_SECRET_KEY=your_flow_secret_key_here
FLOW_BASE_URL=https://sandbox.flow.cl/api

# Production Flow URL:
# FLOW_BASE_URL=https://www.flow.cl/api

# ===========================
# Application URLs
# ===========================
BACKEND_URL=http://localhost:1337
FRONTEND_URL=http://localhost:5174

# Production URLs:
# BACKEND_URL=https://api.yourdomain.com
# FRONTEND_URL=https://yourdomain.com
The server configuration from /config/server.ts:1:
export default ({ env }) => ({
  host: env('HOST', '0.0.0.0'),
  port: env.int('PORT', 1337),
  app: {
    keys: env.array('APP_KEYS'),
  },
});
  • HOST: Network interface to bind (0.0.0.0 allows external connections)
  • PORT: HTTP port for the API server
  • APP_KEYS: Encryption keys for sessions and cookies (required)
The database configuration from /config/database.ts:3 supports multiple databases:SQLite (Default)
  • Best for: Development, small deployments
  • No setup required
  • Data stored in: .tmp/data.db
MySQL
  • Best for: Medium to large production deployments
  • Requires MySQL 5.7.8+ or MariaDB 10.3+
  • Supports connection pooling and SSL
PostgreSQL
  • Best for: Large-scale production deployments
  • Requires PostgreSQL 10+
  • Supports schemas and advanced features
Connection pooling defaults from /config/database.ts:23:
pool: { 
  min: env.int('DATABASE_POOL_MIN', 2), 
  max: env.int('DATABASE_POOL_MAX', 10) 
}
The Flow payment integration is implemented in /src/api/flow/controllers/flow.ts:8.Sandbox Environment (Testing):
  • URL: https://sandbox.flow.cl/api
  • Use test credentials from Flow developer portal
  • No real money transactions
Production Environment:
  • URL: https://www.flow.cl/api
  • Requires verified Flow account
  • Real payment processing
The payment flow includes:
  1. Registration creation with payment status โ€œPendienteโ€
  2. Payment URL generation with HMAC-SHA256 signature
  3. Redirect to Flow payment page
  4. Webhook confirmation at /api/flow/confirmacion
Default API settings from /config/api.ts:1:
export default {
  rest: {
    defaultLimit: 25,
    maxLimit: 100,
    withCount: true,
  },
};
  • defaultLimit: Default number of results per page
  • maxLimit: Maximum results that can be requested
  • withCount: Include total count in pagination

โ€‹
Generating Secure Keys

Generate cryptographically secure APP_KEYS: 
# Generate 4 keys
for i in {1..4}; do openssl rand -base64 32; done
Then add them to .env as a comma-separated string: 
APP_KEYS=key1value,key2value,key3value,key4value

โ€‹
Database Setup

โ€‹
SQLite (Default)

No additional setup required. The database file is created automatically on first run: 
npm run develop
The SQLite database will be created at .tmp/data.db as configured in /config/database.ts:46.

โ€‹
MySQL Setup

1

Install MySQL

Install MySQL 5.7.8+ or MariaDB 10.3+:
# Ubuntu/Debian
sudo apt install mysql-server

# macOS
brew install mysql

# Start MySQL
sudo systemctl start mysql  # Linux
brew services start mysql   # macOS
2

Create Database and User

-- Connect to MySQL
mysql -u root -p

-- Create database
CREATE DATABASE strapi CHARACTER SET utf8mb4 COLLATE utf8mb4_unicode_ci;

-- Create user
CREATE USER 'strapi'@'localhost' IDENTIFIED BY 'secure_password_here';

-- Grant privileges
GRANT ALL PRIVILEGES ON strapi.* TO 'strapi'@'localhost';
FLUSH PRIVILEGES;

-- Exit
EXIT;
3

Update .env Configuration

DATABASE_CLIENT=mysql
DATABASE_HOST=localhost
DATABASE_PORT=3306
DATABASE_NAME=strapi
DATABASE_USERNAME=strapi
DATABASE_PASSWORD=secure_password_here
DATABASE_SSL=false
4

Install MySQL Driver

npm install mysql2

โ€‹
PostgreSQL Setup

1

Install PostgreSQL

# Ubuntu/Debian
sudo apt install postgresql postgresql-contrib

# macOS
brew install postgresql

# Start PostgreSQL
sudo systemctl start postgresql  # Linux
brew services start postgresql   # macOS
2

Create Database and User

# Switch to postgres user
sudo -u postgres psql

-- Create database
CREATE DATABASE strapi;

-- Create user
CREATE USER strapi WITH ENCRYPTED PASSWORD 'secure_password_here';

-- Grant privileges
GRANT ALL PRIVILEGES ON DATABASE strapi TO strapi;

-- Exit
\q
3

Update .env Configuration

DATABASE_CLIENT=postgres
DATABASE_HOST=localhost
DATABASE_PORT=5432
DATABASE_NAME=strapi
DATABASE_USERNAME=strapi
DATABASE_PASSWORD=secure_password_here
DATABASE_SSL=false
DATABASE_SCHEMA=public
4

Install PostgreSQL Driver

npm install pg

โ€‹
Running the Application

โ€‹
Development Mode

Start the server with auto-reload for development: 
npm run develop
Features:
  • Automatic restart on file changes
  • Detailed error messages
  • Admin panel at http://localhost:1337/admin
  • API at http://localhost:1337/api
Development mode uses more memory and CPU due to file watching. Use production mode for deployment.

โ€‹
Production Mode

1

Build the Admin Panel

npm run build
This compiles the admin panel and optimizes assets for production.
2

Start Production Server

NODE_ENV=production npm run start
Production mode:
  • No auto-reload
  • Optimized performance
  • Reduced memory usage
  • Production error handling

โ€‹
Using Process Managers

For production deployments, use a process manager to keep the application running: 
# Install PM2
npm install -g pm2

# Start application
pm2 start npm --name "mtb-backend" -- start

# View logs
pm2 logs mtb-backend

# Restart
pm2 restart mtb-backend

# Auto-start on system boot
pm2 startup
pm2 save

โ€‹
Middleware Configuration

The application uses these Strapi middlewares (from /config/middlewares.ts:1): 
export default [
  'strapi::logger',        // Request logging
  'strapi::errors',        // Error handling
  'strapi::security',      // Security headers
  'strapi::cors',          // CORS configuration
  'strapi::poweredBy',     // X-Powered-By header
  'strapi::query',         // Query parsing
  'strapi::body',          // Body parsing
  'strapi::session',       // Session management
  'strapi::favicon',       // Favicon serving
  'strapi::public',        // Static file serving
];
Customize CORS settings in production to restrict access to your frontend domain only.

โ€‹
Content Type Overview

The MTB Backend includes these pre-configured content types:

โ€‹
Club Schema

From /src/api/club/content-types/club/schema.json:1: 
{
  "kind": "collectionType",
  "collectionName": "clubs",
  "attributes": {
    "nombreClub": { "type": "string" },
    "logo": { "type": "media", "multiple": false },
    "imagenPortada": { "type": "media", "multiple": false },
    "historia": { "type": "blocks" },
    "mision": { "type": "blocks" },
    "emailConacto": { "type": "email" },
    "telefonoContacto": { "type": "string" },
    "direccion": { "type": "string" }
  }
}

โ€‹
Inscripcion Schema

From /src/api/inscripcion/content-types/inscripcion/schema.json:1: 
{
  "kind": "collectionType",
  "attributes": {
    "nombreCompleto": { "type": "string" },
    "rut": { "type": "string" },
    "edad": { "type": "integer" },
    "categoria": { "type": "string" },
    "tipo": { "type": "string" },
    "email": { "type": "email" },
    "telefono": { "type": "string" },
    "monto": { "type": "integer" },
    "tokenFlow": { "type": "string" },
    "ordenFlow": { "type": "string" },
    "estadoPago": {
      "type": "enumeration",
      "enum": ["Pendiente", "Pagado", "Rechazado"],
      "default": "Pendiente"
    }
  }
}

โ€‹
Inscrito Schema

From /src/api/inscrito/content-types/inscrito/schema.json:1: 
{
  "attributes": {
    "nombreCompleto": { "type": "string", "required": true },
    "rut": { "type": "string", "required": true },
    "edad": { 
      "type": "integer", 
      "required": true,
      "min": 3,
      "max": 99
    },
    "categoria": {
      "type": "enumeration",
      "required": true,
      "enum": ["Infantil", "Experto", "Enduro", "Elite", "Master A", "Master B"]
    },
    "tipo": {
      "type": "enumeration",
      "required": true,
      "enum": ["Open", "Federado"]
    }
  }
}

โ€‹
Security Considerations

Never commit your .env file to version control! Add it to .gitignore to prevent accidental exposure of credentials.

โ€‹
Security Checklist

  • Generate strong, unique APP_KEYS
  • Use strong database passwords
  • Enable HTTPS in production
  • Configure CORS to restrict origins
  • Set up proper user roles and permissions
  • Keep dependencies updated (npm audit)
  • Use environment variables for all secrets
  • Enable rate limiting for API endpoints
  • Regular database backups
NODE_ENV=production
HOST=127.0.0.1  # Bind to localhost if behind reverse proxy
PORT=1337
APP_KEYS=<strong-random-keys>
ADMIN_JWT_SECRET=<random-secret>
JWT_SECRET=<random-secret>

โ€‹
Troubleshooting

Solution: Generate APP_KEYS as shown above and add them to your .env file.
openssl rand -base64 32
For MySQL/PostgreSQL:
  • Verify database server is running
  • Check credentials in .env
  • Ensure database exists
  • Test connection: mysql -u strapi -p or psql -U strapi -d strapi
For SQLite:
  • Check .tmp directory exists and is writable
  • Ensure sufficient disk space
Change the PORT in .env or kill the process:
# Find process using port 1337
lsof -i :1337

# Kill the process
kill -9 <PID>

# Or use a different port
PORT=1338 npm run develop
Common issues:
  1. Invalid signature: Check FLOW_SECRET_KEY is correct
  2. Invalid API key: Verify FLOW_API_KEY
  3. Wrong base URL: Use sandbox URL for testing
  4. Network errors: Check firewall and internet connectivity
Enable debug logging in /src/api/flow/controllers/flow.ts:60 to see detailed Flow API requests.
# Clear cache and rebuild
rm -rf .cache build
npm run build

# If errors persist, check Node.js version
node --version  # Should be 20.x or 24.x

โ€‹
Next Steps

Configure Admin Panel

Set up roles, permissions, and customize the admin interface

API Reference

Explore all available API endpoints and parameters

Deploy to Production

Learn about deployment options and best practices

Strapi Documentation

Official Strapi 5 documentation

โ€‹
Additional Resources

Youโ€™re now ready to configure and customize your MTB Backend! ๐Ÿš€

Build docs developers (and LLMs) love

Get started for freeTalk to us