-
Notifications
You must be signed in to change notification settings - Fork 3
/
Copy pathapp.js
166 lines (136 loc) · 4.7 KB
/
app.js
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
var express = require('express');
var config = require('./config/index.js');
var path = require('path');
var favicon = require('serve-favicon');
var logger = require('morgan');
var cookieParser = require('cookie-parser');
var bodyParser = require('body-parser');
var mongoose = require('mongoose');
var Acl = require('acl');
var swaggerJSDoc = require('swagger-jsdoc');
var swaggerOptions = require('./config/swaggerOptions.js');
var passport = require('passport');
var session = require('express-session');
var FileStore = require('session-file-store')(session);
var flash = require('connect-flash');
require('./config/database.js');
var app = express();
app.use(express.static(path.join(__dirname, 'public')));
require('./config/passport')(passport); // pass passport for configuration
// Initialize swagger-jsdoc -> returns validated swagger spec in json format
var swaggerSpec = swaggerJSDoc(swaggerOptions);
Acl = new Acl(new Acl.mongodbBackend(mongoose.connection.db, 'acl_', true));
app.use(function(req, res, next) {
req._acl = Acl;
next();
});
// view engine setup
app.set('views', path.join(__dirname, 'views'));
app.set('view engine', 'ejs');
// uncomment after placing your favicon in /public
//app.use(favicon(path.join(__dirname, 'public', 'favicon.ico')));
app.use(logger('dev'));
app.use(bodyParser.json({limit: '5mb'}));
app.use(bodyParser.urlencoded({extended: false,limit: '5mb'}));
app.use(cookieParser('dawsonsCreekIdontWantToWait'));
var cookieOptions = {};
var sessionName = '';
var fileStoreOptions = {
path: './storage/sessions',
ttl: 7200
};
if (app.get('env') == 'production') {
cookieOptions.secure = false;
cookieOptions.expires = new Date(Date.now() + 3600000);
cookieOptions.maxAge = 3600000;
sessionName = 'Site_instaaap';
} else if (app.get('env') == 'development') {
sessionName = 'Site_instaaap_dev';
} else {
sessionName = 'Site_instaaap_local';
}
//userauth
app.use(session({
store: new FileStore(fileStoreOptions),
secret: 'dawsonsCreekIdontWantToWait' ,
name: sessionName,
proxy: true,
resave: true,
saveUninitialized: true,
cookie: cookieOptions
}));
app.use(passport.initialize());
app.use(passport.session()); // persistent login sessions
app.use(flash()); // use connect-flash for flash messages stored in session
var authentication = require('./routes/authentication')(passport);
var routes = require('./routes/index');
var instaAppsApi = require('./routes/instaAppsApi');
var componentFabricationApi = require('./routes/componentFabricationApi');
var templateFabricationApi = require('./routes/templateFabricationApi');
var genericApi = require('./routes/genericApi');
app.use(['/docs/api*','/docs/app*'], function(req,res,next){
if (req.isAuthenticated()) {
return next();
} else {
res.writeHead(401, 'UnAuthorized', {'content-type': 'application/json'});
res.end(JSON.stringify({status: 'err',response: 'Must be logged in to access this doc.'}));
return;
}
});
//routes
app.use(function(req, res, next) {
if (req.method === 'OPTIONS') {
var headers = {};
// IE8 does not allow domains to be specified, just the *
// headers["Access-Control-Allow-Origin"] = req.headers.origin;
headers['Access-Control-Allow-Origin'] = '*';
headers['Access-Control-Allow-Methods'] = 'POST, GET, PUT, DELETE, OPTIONS, COPY';
headers['Access-Control-Allow-Credentials'] = false;
headers['Access-Control-Max-Age'] = '86400'; // 24 hours
headers['Access-Control-Allow-Headers'] = 'X-Requested-With, X-HTTP-Method-Override, Content-Type, Accept';
res.writeHead(200, headers);
res.end();
} else {
next();
}
});
app.use('/', routes);
app.use('/auth', authentication);
//V1 api
app.use('/api/instaapp/', genericApi);
app.use('/api/instaapp/v1/', instaAppsApi, componentFabricationApi, templateFabricationApi);
//V2 api
app.use('/api/v2/', instaAppsApi, componentFabricationApi, templateFabricationApi, genericApi);
// serve swagger
app.get('/swagger.json', function(req, res) {
res.setHeader('Content-Type', 'application/json');
res.send(swaggerSpec);
});
// catch 404 and forward to error handler
app.use(function(req, res, next) {
var err = new Error('Not Found');
err.status = 404;
next(err);
});
// error handlers
// development error handler
// will print stacktrace
if (app.get('env') === 'development' || app.get('env') === 'local') {
app.use(function(err, req, res, next) {
res.status(err.status || 500);
res.render('error', {
message: err.message,
error: err
});
});
}
// production error handler
// no stacktraces leaked to user
app.use(function(err, req, res, next) {
res.status(err.status || 500);
res.render('error', {
message: err.message,
error: {}
});
});
module.exports = app;