-
Notifications
You must be signed in to change notification settings - Fork 0
/
app.js
107 lines (98 loc) · 3.05 KB
/
app.js
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
const createError = require('http-errors');
const express = require('express');
const path = require('path');
const passport = require('passport');
const session = require('express-session');
const logger = require('morgan');
const indexRouter = require('./routes/index');
const usersRouter = require('./routes/api/users');
const apiIndexRouter = require('./routes/api/index');
const expensesRouter = require('./routes/api/expenses');
const earningsRouter = require('./routes/api/earnings');
const balanceRouter = require('./routes/api/balance');
const loginRouter = require('./routes/login');
const sessionConf = require('./config/session.json');
const sqlSessionStore = require('express-mysql-session')(session)
const con = require('./routes/helpers/db');
const app = express();
app.disable("x-powered-by");
let isAuthenticated = function (req, res, next) {
if (req.isAuthenticated()) {
return next();
}
if (req.originalUrl.split('/')[1] === 'api' || req.xhr) {
res.sendStatus(401);
} else {
res.redirect('/login');
}
};
require('run-middleware')(app);
// view engine setup
app.set('views', path.join(__dirname, 'views'));
app.set('view engine', 'pug');
app.use(logger('dev'));
app.use(express.json());
app.use(express.urlencoded({ extended: true }));
app.use(express.static(path.join(__dirname, 'public')));
// Passport
const sessionStore = new sqlSessionStore({
//checkExpirationInterval: sessionConf.timeout / 4,
//expiration: sessionConf.timeout,
createDatabaseTable: true,
schema: {
tableName: 'sessions',
columnNames: {
session_id: 'sid',
expires: 'expires',
data: 'data'
}
}
}, con);
app.use(session(
{
name: sessionConf.name,
secret: sessionConf.secret,
resave: true,
rolling: true,
saveUninitialized: false,
ephemeral: true,
store: sessionStore,
cookie: {
path: '/',
domain: sessionConf.domain,
httpOnly: true,
//secure: true,
secure: false,
sameSite: 'strict',
maxAge: sessionConf.timeout
}
}
));
app.use(passport.initialize());
app.use(passport.session()); // persistent login sessions
app.use(function (req, res, next){
res.locals.user = req.user;
res.locals.version = require('./package.json').version;
next();
});
app.use('/login', loginRouter);
app.use('/api/users', isAuthenticated, usersRouter);
app.use('/api/index', isAuthenticated, apiIndexRouter);
app.use('/api/expenses', isAuthenticated, expensesRouter);
app.use('/api/earnings', isAuthenticated, earningsRouter);
app.use('/api/balance', isAuthenticated, balanceRouter);
app.use('/', isAuthenticated, indexRouter);
// catch 404 and forward to error handler
app.use(function(req, res, next) {
next(createError(404));
});
// error handler
app.use(function(err, req, res, next) {
// set locals, only providing error in development
res.locals.message = err.message;
res.locals.error = req.app.get('env') === 'development' ? err : {};
// render the error page
res.status(err.status || 500);
res.render('error');
});
module.exports = app;