LUISDASARTIMANHAS
diff --git a/‎.env
+1-1 b/‎.env
+1-1
diff --git a/‎config.json
+1-3 b/‎config.json
+1-3
diff --git a/‎modules/checkHeaderMiddleware.js
+44-35 b/‎modules/checkHeaderMiddleware.js
+44-35
diff --git a/‎modules/fetchModule.js
+9-3 b/‎modules/fetchModule.js
+9-3
diff --git a/‎modules/httpsSecurity.js
+36 b/‎modules/httpsSecurity.js
+36
diff --git a/‎modules/httpsSecurityMiddleware.js
-19 b/‎modules/httpsSecurityMiddleware.js
-19
diff --git a/‎modules/postgreSQLModule.js
+44 b/‎modules/postgreSQLModule.js
+44
diff --git a/‎node_modules/.bin/yaml2json ‎node_modules/.bin/js-yaml
+2-2 b/‎node_modules/.bin/yaml2json ‎node_modules/.bin/js-yaml
+2-2
diff --git a/‎node_modules/.bin/nopt.cmd ‎node_modules/.bin/js-yaml.cmd
+1-1 b/‎node_modules/.bin/nopt.cmd ‎node_modules/.bin/js-yaml.cmd
+1-1
diff --git a/‎node_modules/@opencensus/core/node_modules/.bin/uuid.ps1 ‎node_modules/.bin/js-yaml.ps1
+4-4 b/‎node_modules/@opencensus/core/node_modules/.bin/uuid.ps1 ‎node_modules/.bin/js-yaml.ps1
+4-4
diff --git a/‎node_modules/.bin/json2yaml
-16 b/‎node_modules/.bin/json2yaml
-16
diff --git a/‎node_modules/.bin/json2yaml.cmd
-17 b/‎node_modules/.bin/json2yaml.cmd
-17
diff --git a/‎node_modules/.bin/json2yaml.ps1
-28 b/‎node_modules/.bin/json2yaml.ps1
-28
diff --git a/‎node_modules/.bin/nopt
-16 b/‎node_modules/.bin/nopt
-16
@@ -1,4 +1,4 @@
 PORTA=8080
 email_server="@gmail.com"
 emai_password=""
-DISCORD_LOGS_WEBHOOK_URL=https://discord.com/api/webhooks/1256601355548889131/saIXqCXKWKh-xE4CkjsjiP8MCbH3aXsXJlLCtBCnMnbxWqMUK1vAmvejCh1-z3hk83fT
+DISCORD_LOGS_WEBHOOK_URL=https://discord.com/api/webhooks/1043621229858390098/F9agt1QAvY853mnVJrGdtmC5TKtDqXnX_CTyJ6XzT57mCoPPaxMLsmOu_fjLyNyoHbF0
@@ -5,9 +5,7 @@
         "WSS":false
     },
     "methods": "GET,HEAD,PUT,PATCH,POST,DELETE",
-    "key":"key1",
-    "key2":"key2",
-    "keyApp":"key For &application",
+    "defaultKeys":["ROOT:admnin","ROOT:apiUser"],
     "blockedRoutes": [
         "/my-private-route"
     ],
 
@@ -6,43 +6,52 @@ const filesServer = __dirname + "/src/";
 const path_pages = filesServer + "pages/";
 const forbiddenFilePath = path.join(path_pages, "forbidden.html");
 
-const checkHeaderMiddleware = (req, res, next) => {
-    const origin = req.headers.referer || req.headers.referrer;
-    const keyHeader = req.headers["authorization"];
-    const blockedRoutes = configs.blockedRoutes || []
-    const blockRoutesPresent = blockedRoutes.some((route) => {
-        // Trata rotas com curingas
-        const regex = new RegExp(`^${route.replace(/\*/g, ".*")}$`);
-        return regex.test(req.path);
+function checkHeaderMiddleware(app) {
+    // Middleware para configurar o tipo de conteúdo como JSON
+    app.all("/api/*", (req, res, next) => {
+        if (!req.headers["authorization"]) {
+            return res.status(403).send(
+                JSON.stringify({ error: "Unauthorized" })
+            );
+        }
+        res.set("Content-Type", "application/json");
+        next();
     });
-    const payload = JSON.stringify(req.body, null, 2);
-    const keys = [
-        configs.key,
-        configs.key2,
-        configs.keyApp
-    ];
-    const validKey = keys.some((key) => keyHeader === key);
-    const auth = blockRoutesPresent && !validKey;
 
-    console.log("-------------------------");
-    console.log("SISTEMA <CHECK> <OBTER>: " + req.url);
-    console.log("SISTEMA <ORIGEM>: " + origin);
-    console.log("SISTEMA <PAYLOAD>: " + payload);
-    keys.forEach((key) => {
-        const auth = keyHeader === key;
-        print(keyHeader, key, auth);
+    app.all("/*", (req, res, next) => {
+        const origin = req.headers.referer || req.headers.referrer;
+        const keyHeader = req.headers["authorization"];
+        const blockedRoutes = configs.blockedRoutes || [];
+        const blockRoutesPresent = blockedRoutes.some((route) => {
+            // Trata rotas com curingas
+            const regex = new RegExp(`^${route.replace(/\*/g, ".*")}$`);
+            return regex.test(req.path);
+        });
+        const payload = JSON.stringify(req.body, null, 2);
+        const keys = configs.defaultKeys;
+        const validKey = keys.some((key) => keyHeader === key);
+        const auth = blockRoutesPresent && !validKey;
+
+        console.log("-------------------------");
+        console.log("SISTEMA <CHECK> <OBTER>: " + req.url);
+        console.log("SISTEMA <ORIGEM>: " + origin);
+        console.log("SISTEMA <PAYLOAD>: " + payload);
+        keys.forEach((key) => {
+            const auth = keyHeader === key;
+            print(keyHeader, key, auth);
+        });
+        for (const key in req.body) {
+            req.body[key] = xss(req.body[key]);
+        }
+        if (auth) {
+            // Se estiver solicitando das rotas bloqueadas E não conter key, bloquea a solicitação
+            forbidden(res);
+        } else {
+            // Cabeçalho "solicitador" presente ou rota não bloqueada, permite o acesso
+            next();
+        }
     });
-    for (const key in req.body) {
-        req.body[key] = xss(req.body[key]);
-    }
-    if (auth) {
-        // Se estiver solicitando das rotas bloqueadas E não conter key, bloquea a solicitação
-        forbidden(res);
-    } else {
-        // Cabeçalho "solicitador" presente ou rota não bloqueada, permite o acesso
-        next();
-    }
-};
+}
 
 function forbidden(res) {
     res.status(403);
@@ -63,4 +72,4 @@ function print(keyHeader, key, auth) {
     console.log("----------------------------");
 }
 
-module.exports = checkHeaderMiddleware
+module.exports = checkHeaderMiddleware;
@@ -65,7 +65,6 @@ function fetchPost(url, payload, header, callback) {
   }
 
   console.log("FETCH POST", url);
-  console.log("FETCH POST PAYLOAD: ", requestOptions.body);
   fetch(url, requestOptions)
     .then((response) => {
       console.log("Status da resposta:", response.status, response.statusText);
@@ -100,13 +99,20 @@ function fetchPost(url, payload, header, callback) {
 }
 
 function discordLogs(title, mensagem) {
+  const date = new Date();
+  const ano = date.getFullYear();
   const preSet = {
     content: "",
     embeds: [
       {
         title: `SERVIDOR/${title}`,
         description: "SERVIDOR: " + mensagem,
-        color: 16711935,
+        color: parseInt("FFFFFF", 16),
+        timestamp: date, // Adiciona um timestamp atual
+        footer: {
+          text: `₢Todos os Direitos Reservados - ${ano}`,
+          icon_url: "",
+        },
       },
     ],
     attachments: [],
@@ -118,4 +124,4 @@ function discordLogs(title, mensagem) {
   });
 }
 
-module.exports = { fetchGet, fetchPost, discordLogs };
+module.exports = { fetchGet, fetchPost, discordLogs };
@@ -0,0 +1,36 @@
+const cors = require("cors");
+const helmet = require("helmet");
+
+function httpsSecurityMiddleware(req, res, next) {
+  console.log("executando https security");
+  const corsOptions = {
+    origin: [
+      /^https:\/\/.+/,
+      /^http:\/\/.+/,
+      "https://discord.com"
+    ],
+    methods: "GET,PUT,POST,DELETE",
+    allowedHeaders: ["Content-Type", "authorization", "id", "key"],
+    optionsSuccessStatus: 204,
+  };
+  const hstsOptions = {
+    maxAge: 365 * 24 * 60 * 60,
+    includeSubDomains: true,
+    preload: true,
+  };
+
+  // Chamando o middleware cors
+  cors(corsOptions)(req, res, () => {
+    // Configurar cabeçalhos de resposta para OPTIONS
+    if (req.method === "OPTIONS") {
+      res.set("Access-Control-Allow-Origin", corsOptions.origin);
+      res.set("Access-Control-Allow-Methods", corsOptions.methods);
+      res.set("Access-Control-Allow-Headers", corsOptions.allowedHeaders);
+    }
+
+    // Chamando o middleware helmet
+    helmet.hsts(hstsOptions)(req, res, next);
+  });
+}
+
+module.exports = httpsSecurityMiddleware;
@@ -0,0 +1,44 @@
+const { Pool } = require("pg");
+const {fetchGet,fetchPost, discordLogs} = require("./fetchModule.js");
+
+async function connect() {
+  try{
+  if (global.connection) {
+    return global.connection.connect();
+  }
+  const config = {
+    user: "nodeJS",
+    password: process.env.SQL_SENHA,
+    host: process.env.SQL_HOST||"localhost",
+    port: process.env.SQL_PORT||"5432",
+    database: process.env.SQL_DATABASE,
+    ssl: false
+  };
+  const pool = new Pool(config);
+  const client = await pool.connect();
+  
+  console.log("Estamos conectado!");
+  discordLogs("SQL",`
+    Estamos conectado!
+    Client: ${client}
+    `)
+  const res = await client.query("select now()");
+  console.log(res.rows[0]);
+  discordLogs("SQL",`
+    Query: select now()
+    res: ${JSON.stringify(res.rows[0])}
+    `)
+  client.release();
+
+  global.connection = pool;
+  return client;
+}catch (err){
+  discordLogs("SQL ERROR",err)
+  setTimeout(()=>{
+    connect()
+  },15000);
+  discordLogs("SQL TRY","TENTANDO RECONECTAR!");
+}
+}
+
+// connect();