-
Notifications
You must be signed in to change notification settings - Fork 0
/
Copy pathserver.ts
188 lines (157 loc) · 5.12 KB
/
server.ts
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
import 'log-timestamp';
import express, { Express, Request, Response } from 'express';
import bodyParser from 'body-parser';
import helmet from 'helmet';
import rateLimit from 'express-rate-limit';
import path from 'path';
import crypto from 'crypto';
import passport from 'passport';
import { Strategy as GoogleStrategy } from 'passport-google-oauth20';
import { config } from './config/googleConfig';
import session from 'express-session';
import UserModel from './models/user';
// Import routes and middleware
import { fetch_router } from './routes/fetch';
import { update_router } from './routes/update';
import { search_router } from './routes/search';
import { scrape_router } from './routes/scrape';
import { auth_router } from './routes/auth';
import { comment_router } from 'routes/comments';
import {
createMongooseConnection,
closeMongooseConnection,
} from './middleware/mongoConnection';
import { handleCors } from './middleware/cors';
import contentSecurityPolicy from 'middleware/contentPolicy';
import { fileURLToPath } from 'url';
import { dirname } from 'path';
const __filename = fileURLToPath(import.meta.url);
const __dirname = dirname(__filename);
declare namespace Express {
interface User {
id?: string;
}
}
// Get env varialbes
const CLIENT_ID: string | undefined = config.OAuthCreds.id;
const CLIENT_SECRET: string | undefined = config.OAuthCreds.secret;
const SESSION_SECRET: string | undefined = config.OAuthCreds.session;
// Check if environment variables are defined
if (
CLIENT_ID === undefined ||
CLIENT_SECRET === undefined ||
SESSION_SECRET === undefined
) {
const undefinedVariables: string[] = [];
if (CLIENT_ID === undefined) undefinedVariables.push('id');
if (CLIENT_SECRET === undefined) undefinedVariables.push('secret');
if (SESSION_SECRET === undefined) undefinedVariables.push('session_secret');
throw new Error(
`The following Google OAuth2.0 environment variable(s) are undefined: ${undefinedVariables.join(
', '
)}.`
);
}
// Express application
const app = express();
const private_api = express();
// Configure session middleware
app.use(
session({
secret: SESSION_SECRET, // Change this to a secure secret key
resave: false,
saveUninitialized: true,
})
);
// Configure Passport for Google OAuth 2.0
passport.use(
new GoogleStrategy(
{
clientID: CLIENT_ID,
clientSecret: CLIENT_SECRET,
callbackURL: '/auth/google/callback',
proxy: true,
},
async (accessToken, refreshToken, profile, done) => {
const emailRegex: RegExp = /^[a-zA-Z0-9._%+-]+@bc\.edu$/;
// Validate is BC email
if (profile.emails?.[0] && !emailRegex.test(profile.emails?.[0].value)) {
return done(null, false);
}
const user = await UserModel.findOne({ googleId: profile.id });
// If user doesn't exist creates a new user. (similar to sign up)
if (!user) {
const newUser = await UserModel.create({
googleId: profile.id,
name: profile.displayName,
email: profile.emails?.[0].value,
});
if (newUser) {
return done(null, newUser);
}
} else {
return done(null, user);
}
}
)
);
passport.serializeUser((user: Express.User, done) => {
done(null, user.id);
});
passport.deserializeUser(async (id, done) => {
const user = await UserModel.findById(id);
done(null, user);
});
// Initialize Passport and restore authentication state, if any, from the session
app.use(passport.initialize());
app.use(passport.session());
// Sets the `script-src` directive to
// "'self' 'nonce-e33...'" (or similar)
app.use((req, res, next) => {
res.locals['cspNonce'] = crypto.randomBytes(32).toString('hex');
next();
});
// Helmet to protect from expolits
app.use(helmet());
app.use(contentSecurityPolicy());
// Block ddos attempts
const limiter = rateLimit({
windowMs: 1 * 60 * 100,
max: 200,
});
app.use(limiter);
// Handling CORS
app.use(handleCors);
// Handle parsing post body
app.use(bodyParser.json());
app.use(bodyParser.urlencoded({ extended: false }));
// Create link to Angular build directory
const distDir = path.join(__dirname, '/dist/eagle-eval');
app.use(express.static(distDir));
// Add routes for fetch
app.use('/api/fetch', fetch_router);
// Add routes for updating mongodb
private_api.use('/api/update', update_router);
// Add routes for searching database
app.use('/api/search', search_router);
// Add routes for scraping review
private_api.use('/api/scrape', scrape_router);
// Add routes for google auth (OAuth2.0)
app.use('/auth', auth_router);
// Add routes for rmp comments
app.use('/api/comments', comment_router);
const port = process.env['PORT'] || 3000;
const privatePort = 8080;
app.listen(port, () => {
createMongooseConnection();
console.log(`Server listening on port ${port}`);
// Create process listener to close connection on exit
closeMongooseConnection();
});
// Private routes only accessible locally
private_api.listen(privatePort, () => {
createMongooseConnection();
console.log(`Private API listening on port ${privatePort}`);
// Create process listener to close connection on exit
closeMongooseConnection();
});