-
Notifications
You must be signed in to change notification settings - Fork 1
/
app.js
111 lines (94 loc) · 2.9 KB
/
app.js
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
// IMPORTING RELEVANT MODULES
const express = require("express");
const path = require("path");
const mongoose = require("mongoose");
const methodOverride = require("method-override");
const session = require("express-session");
const flash = require("connect-flash");
const passport = require("passport");
const LocalStrategy = require("passport-local");
const helmet = require("helmet");
const mongoSanitize = require("express-mongo-sanitize");
const MongoStore = require("connect-mongo");
const dotenv = require("dotenv");
dotenv.config();
const dbURI = process.env.dbURI || "mongodb://localhost:27017/noCap";
const AppError = require("./utils/appError");
const modules = require("./routes/modules");
const user = require("./routes/user");
const User = require("./models/user");
mongoose.connect(dbURI, {
useNewUrlParser: true,
useCreateIndex: true,
useUnifiedTopology: true,
useFindAndModify: false,
});
const db = mongoose.connection;
db.on("error", console.error.bind(console, "connection error:"));
db.once("open", () => {
console.log("Database connected");
});
const app = express();
let PORT = process.env.PORT || 3000;
// CONFIGURATIONS
app.set("view engine", "ejs");
app.set("views", path.join(__dirname, "views"));
app.use(express.urlencoded({ extended: true })); // parsing req.body
app.use(methodOverride("_method"));
app.use(express.static(path.join(__dirname, "static"))); // serving static files
app.use(mongoSanitize()); // prevent mongo injections
app.use(
helmet({
contentSecurityPolicy: false,
})
); // security
const secret = process.env.secret || "secret";
const sessionConfig = {
name: "session",
secret: secret, // add to dotenv
resave: false,
saveUninitialized: true,
store: MongoStore.create({
mongoUrl: dbURI,
touchAfter: 24 * 3600, // time period in seconds
}),
proxy: true,
cookie: {
secure: true, // for production
expires: Date.now() + 1000 * 60 * 60 * 24, // One Day
maxAge: 1000 * 60 * 60 * 24,
},
};
app.use(session(sessionConfig));
app.use(flash());
app.use(passport.initialize());
app.use(passport.session());
passport.use(new LocalStrategy(User.authenticate()));
passport.serializeUser(User.serializeUser());
passport.deserializeUser(User.deserializeUser());
app.use((req, res, next) => {
res.locals.currentUser = req.user;
res.locals.success = req.flash("success");
res.locals.error = req.flash("error");
next();
});
// ROUTING
app.use("/modules", modules);
app.use("/user", user);
app.get("/", (req, res) => {
delete req.session.returnTo;
res.render("index");
});
app.all("*", (req, res, next) => {
next(new AppError("Page Not Found", 404));
});
app.use((err, req, res, next) => {
const { statusCode = 500 } = err;
if (!err.message) err.message = "Something Went Wrong!";
res.render("error", { err });
});
// BINDS AND LISTENS FOR CONNECTION
app.listen(PORT, () => {
console.log(`Serving on port ${PORT}`);
});
module.exports = app;