jschan/server.js

'use strict';

process.on('uncaughtException', console.error);
process.on('unhandledRejection', console.error);

const express  = require('express')
	, session  = require('express-session')
	, MongoStore = require('connect-mongo')(session)
	, path	 = require('path')
	, app	  = express()
	, helmet = require('helmet')
	, csrf = require('csurf')
	, bodyParser = require('body-parser')
	, cookieParser = require('cookie-parser')
	, configs = require(__dirname+'/configs/main.json')
	, Mongo = require(__dirname+'/db/db.js')
	, upload = require('express-fileupload');

(async () => {

	// let db connect
	await Mongo.connect();

	// parse forms and allow file uploads
	app.use(bodyParser.urlencoded({extended: true}));
	app.use(bodyParser.json());
	app.use(upload({
		createParentPath: true,
		safeFileNames: true,
		preserveExtension: 4,
		limits: {
			fileSize: 10 * 1024 * 1024,
			files: 3
		},
		abortOnLimit: true,
		useTempFile: true,
		tempFileDir: path.join(__dirname+'/tmp/')
	}));

	// session store
	app.use(session({
		secret: configs.sessionSecret,
		store: new MongoStore({ db: Mongo.client.db('sessions') }),
		resave: false,
		saveUninitialized: false
	}));
	app.use(cookieParser());

	// csurf and helmet
	app.use(helmet());
	app.use(csrf());

	// use pug view engine
	app.set('view engine', 'pug');
	app.set('views', path.join(__dirname, 'views/pages'));
	app.enable('view cache');

	// static files
	app.use('/css', express.static(__dirname + '/static/css'));
	app.use('/js', express.static(__dirname + '/static/js'));
	app.use('/img', express.static(__dirname + '/static/img'));

	// routes
	app.use('/forms', require(__dirname+'/controllers/forms.js'))
	app.use('/', require(__dirname+'/controllers/pages.js'))

	app.get('*', (req, res) => {
		res.status(404).render('404')
	})

	// catch any unhandled errors
	app.use((err, req, res, next) => {
		if (err.code === 'EBADCSRFTOKEN') {
			return res.status(403).send('Invalid CSRF token')
		}
		console.error(err.stack)
		return res.status(500).render('message', {
			'title': 'Internal Server Error',
			'redirect': req.header('Referer') || '/'
		})
	})

	// listen
	app.listen(configs.port, () => {
        console.log(`Listening on port ${configs.port}`);
    });

})();
First commit 5 years ago			`'use strict';`

			`process.on('uncaughtException', console.error);`
			`process.on('unhandledRejection', console.error);`

			`const express = require('express')`
			`, session = require('express-session')`
			`, MongoStore = require('connect-mongo')(session)`
			`, path = require('path')`
			`, app = express()`
			`, helmet = require('helmet')`
			`, csrf = require('csurf')`
			`, bodyParser = require('body-parser')`
			`, cookieParser = require('cookie-parser')`
			`, configs = require(__dirname+'/configs/main.json')`
differentiate between report reason and ban reason, improve actions form, renamed some stuff 5 years ago			`, Mongo = require(__dirname+'/db/db.js')`
sv 5 years ago			`, upload = require('express-fileupload');`
First commit 5 years ago
			`(async () => {`

			`// let db connect`
			`await Mongo.connect();`

			`// parse forms and allow file uploads`
			`app.use(bodyParser.urlencoded({extended: true}));`
			`app.use(bodyParser.json());`
			`app.use(upload({`
			`createParentPath: true,`
			`safeFileNames: true,`
early video support with thumbnailing 5 years ago			`preserveExtension: 4,`
file upload with size, number and types, csrf tokens added to posting 5 years ago			`limits: {`
multiple file upload support 5 years ago			`fileSize: 10 * 1024 * 1024,`
			`files: 3`
file upload with size, number and types, csrf tokens added to posting 5 years ago			`},`
			`abortOnLimit: true,`
			`useTempFile: true,`
			`tempFileDir: path.join(__dirname+'/tmp/')`
First commit 5 years ago			`}));`

			`// session store`
			`app.use(session({`
			`secret: configs.sessionSecret,`
			`store: new MongoStore({ db: Mongo.client.db('sessions') }),`
			`resave: false,`
			`saveUninitialized: false`
			`}));`
			`app.use(cookieParser());`

			`// csurf and helmet`
			`app.use(helmet());`
			`app.use(csrf());`

			`// use pug view engine`
			`app.set('view engine', 'pug');`
			`app.set('views', path.join(__dirname, 'views/pages'));`
banner uploads. no listing or deleting yet. gotta sleep 5 years ago			`app.enable('view cache');`
First commit 5 years ago
			`// static files`
			`app.use('/css', express.static(__dirname + '/static/css'));`
			`app.use('/js', express.static(__dirname + '/static/js'));`
			`app.use('/img', express.static(__dirname + '/static/img'));`

			`// routes`
rename, restructure api vs forms naming + correct delete permissions 5 years ago			`app.use('/forms', require(__dirname+'/controllers/forms.js'))`
Basic registration and login with model and controllers 5 years ago			`app.use('/', require(__dirname+'/controllers/pages.js'))`
First commit 5 years ago
			`app.get('*', (req, res) => {`
correct recent sorting, no more class for Posts and fix 404 loop 5 years ago			`res.status(404).render('404')`
First commit 5 years ago			`})`

correct recent sorting, no more class for Posts and fix 404 loop 5 years ago			`// catch any unhandled errors`
First commit 5 years ago			`app.use((err, req, res, next) => {`
			`if (err.code === 'EBADCSRFTOKEN') {`
			`return res.status(403).send('Invalid CSRF token')`
			`}`
			`console.error(err.stack)`
global and board IP bans, improved error handling, improved permissions checks 5 years ago			`return res.status(500).render('message', {`
			`'title': 'Internal Server Error',`
			`'redirect': req.header('Referer') \|\| '/'`
			`})`
First commit 5 years ago			`})`

correct recent sorting, no more class for Posts and fix 404 loop 5 years ago			`// listen`
First commit 5 years ago			`app.listen(configs.port, () => {`
			console.log(`Listening on port ${configs.port}`);
			`});`

			`})();`