require('module-alias/register'); const express = require('express'); const morgan = require('morgan'); const path = require('path'); const Redis = require('ioredis'); const oauth = require('./oauth'); const config = require('./config'); const version = require('./version'); const cookieSession = require('cookie-session'); const logger = morgan('short'); // create a connection to the redis datastore let db = new Redis({ password: process.env.REDIS_PASSWORD || '', }); db.on('error', function () { // eslint-disable-line handle-callback-err db = null; console.log( "redis error! the server won't actually store anything! " + //eslint-disable-line no-console ' this is just fine for local dev' ); }); const app = express(); app.use(logger, express.json()); app.get('/__version__', (_, res) => res.type('application/json').send(JSON.stringify(version)) ); app.use(function (req, res, next) { if (/^\/api/.test(req.url)) { res.setHeader('Cache-Control', 'no-cache, max-age=0'); return cookieSession({ name: config.get('cookie_name'), secret: config.get('cookie_secret'), path: '/api', httpOnly: true, })(req, res, next); } else { return next(); } }); // add oauth endpoints oauth(app, db); // a function to verify that the current user is authenticated function checkAuth(req, res, next) { if (!req.session.email) { res.send('authentication required\n', 401); } else { next(); } } // auth status reports who the currently logged in user is on this // session app.get('/api/auth_status', function (req, res) { console.log(req.session); //eslint-disable-line no-console res.send( JSON.stringify({ email: req.session.email || null, subscriptions: req.session.subscriptions || [], amr: req.session.amr || null, acr: req.session.acr || '0', keys_jwe: req.session.keys_jwe || null, }) ); }); // logout clears the current authenticated user app.post('/api/logout', checkAuth, function (req, res) { req.session = null; res.send(200); }); // the 'todo/save' api saves a todo list app.post('/api/todos/save', checkAuth, function (req, res) { if (db) { db.set(req.session.user, JSON.stringify(req.body)); } res.send(200); }); app.post('/api/webhook', function (req, res) { res.set('Content-Type', 'application/json'); res.send(req.body); }); // the 'todo/get' api gets the current version of the todo list // from the server app.get('/api/todos/get', checkAuth, function (req, res) { if (db) { db.get(req.session.user, function (err, reply) { if (err) { res.send(err.toString(), { 'Content-Type': 'text/plain' }, 500); } else { res.send( reply ? reply : '[]', { 'Content-Type': 'application/json' }, 200 ); } }); } else { res.send( '[{"v": "Install redis locally for persistent storage, if I want to"}]', { 'Content-Type': 'application/json' }, 200 ); } }); app.get(/^\/iframe(:?\/(?:index.html)?)?$/, function (req, res, next) { req.url = '/index.html'; next(); }); app.use(express.static(path.join(__dirname, 'static'))); const port = config.get('port'); app.listen(port, '0.0.0.0'); console.log('123done started on port', port); //eslint-disable-line no-console