forked from topcoder-platform/challenge-api
-
Notifications
You must be signed in to change notification settings - Fork 0
/
app.js
121 lines (106 loc) · 3.32 KB
/
app.js
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
/**
* The application entry point
*/
require('./app-bootstrap')
const _ = require('lodash')
const config = require('config')
const express = require('express')
const bodyParser = require('body-parser')
const cors = require('cors')
const HttpStatus = require('http-status-codes')
const logger = require('./src/common/logger')
const interceptor = require('express-interceptor')
const fileUpload = require('express-fileupload')
const YAML = require('yamljs')
const swaggerUi = require('swagger-ui-express')
const challengeAPISwaggerDoc = YAML.load('./docs/swagger.yaml')
const { ForbiddenError } = require('./src/common/errors')
// setup express app
const app = express()
// Disable POST, PUT, PATCH, DELETE operations if READONLY is set to true
app.use((req, res, next) => {
if (config.READONLY === true && ['POST', 'PUT', 'PATCH', 'DELETE'].includes(req.method)) {
throw new ForbiddenError('Action is temporarely not allowed!')
}
next()
})
// serve challenge V5 API swagger definition
app.use('/v5/challenges/docs', swaggerUi.serve, swaggerUi.setup(challengeAPISwaggerDoc))
app.use(cors({
exposedHeaders: [
'X-Prev-Page',
'X-Next-Page',
'X-Page',
'X-Per-Page',
'X-Total',
'X-Total-Pages',
'Link'
]
}))
app.use(fileUpload({
limits: { fileSize: config.FILE_UPLOAD_SIZE_LIMIT }
}))
app.use(bodyParser.json())
app.use(bodyParser.urlencoded({ extended: true }))
app.set('port', config.PORT)
// intercept the response body from jwtAuthenticator
app.use(interceptor((req, res) => {
return {
isInterceptable: () => {
return res.statusCode === 403
},
intercept: (body, send) => {
let obj
try {
obj = JSON.parse(body)
} catch (e) {
logger.error('Invalid response body.')
}
if (obj && obj.result && obj.result.content && obj.result.content.message) {
const ret = { message: obj.result.content.message }
res.statusCode = 401
send(JSON.stringify(ret))
} else {
send(body)
}
}
}
}))
// Register routes
require('./app-routes')(app)
// The error handler
// eslint-disable-next-line no-unused-vars
app.use((err, req, res, next) => {
logger.logFullError(err, req.signature || `${req.method} ${req.url}`)
const errorResponse = {}
const status = err.isJoi ? HttpStatus.BAD_REQUEST : (err.httpStatus || _.get(err, 'response.status') || HttpStatus.INTERNAL_SERVER_ERROR)
if (_.isArray(err.details)) {
if (err.isJoi) {
_.map(err.details, (e) => {
if (e.message) {
if (_.isUndefined(errorResponse.message)) {
errorResponse.message = e.message
} else {
errorResponse.message += `, ${e.message}`
}
}
})
}
}
if (_.get(err, 'response.status')) {
// extra error message from axios http response(v4 and v5 tc api)
errorResponse.message = _.get(err, 'response.data.result.content.message') || _.get(err, 'response.data.message')
}
if (_.isUndefined(errorResponse.message)) {
if (err.message && status !== HttpStatus.INTERNAL_SERVER_ERROR) {
errorResponse.message = err.message
} else {
errorResponse.message = 'Internal server error'
}
}
res.status(status).json(errorResponse)
})
app.listen(app.get('port'), () => {
logger.info(`Express server listening on port ${app.get('port')}`)
})
module.exports = app