nsc-events-fullstack_32_183-disable-swagger-api-doc-in-prod

[NahomAlemu]

Summary & Changes 📃

• Resolves: Issue: Disable Swagger API documentation in production environment #183

• Summary: Conditionally disable Swagger API documentation in production environments

  • 🔨 Fixes security vulnerability where /api/docs exposes all
    API endpoints, schemas, and authentication mechanisms in
    production
    • 👀 Swagger docs are only available in non-production
      environments (development, test); production returns 404
    • 🗨️ Uses NODE_ENV environment variable check - when set to
      production, Swagger setup is skipped entirely
  • Changes:
    • ✅ Wrapped Swagger configuration in main.ts with NODE_ENV !==
      'production' check
    • ✅ Console log for docs URL also conditionally shown only in
      non-production
    • 🛠️ No breaking changes - production behavior secured,
      development workflow unchanged
    • 📝 Ensure NODE_ENV=production is set in production deployment
      environment

  How to Test 🧪

  1. Steps to Reproduce:
  • Step 1: Run app with NODE_ENV=development → visit /api/docs
  • Step 2: Run app with NODE_ENV=production → visit /api/docs
  2. Expected Behavior:
  • Development: Swagger UI loads normally
  • Production: Returns 404 (route not found)
  3. Actual Behavior (if bug): Previously, Swagger was accessible
     in all environments

Checklist ✅

• I have tested this PR locally and it works as expected.
• This PR resolves an issue (Resolves #issue-number).
• Reviewers, assignees(self), tags, and labels are correctly assigned.
• Squash commits and enable auto-merge if approved.

[github-actions]

🚀 E2E Smoke Test Results

Running smoke tests only (non-critical files changed)

Status	Count
✅ Passed	5
❌ Failed	0
📊 Total	5

View detailed report

💡 To run full E2E suite, add [e2e-full] to your commit message or trigger manually.