jschan/server.js

'use strict';

process
	.on('uncaughtException', console.error)
	.on('unhandledRejection', console.error);

const express = require('express')
	, session = require('express-session')
	, redisStore = require('connect-redis')(session)
	, path = require('path')
	, app = express()
	, bodyParser = require('body-parser')
	, cookieParser = require('cookie-parser')
	, configs = require(__dirname+'/configs/main.json')
	, ipHash = require(__dirname+'/helpers/iphash.js')
	, referrerCheck = require(__dirname+'/helpers/referrercheck.js')
	, themes = require(__dirname+'/helpers/themes.js')
	, Mongo = require(__dirname+'/db/db.js');

(async () => {

	console.log('STARTING IN MODE:', process.env.NODE_ENV);

	// connect to mongodb
	console.log('CONNECTING TO MONGODB');
	await Mongo.connect();

	// connect to redis
	console.log('CONNECTING TO REDIS');
	const { redisClient } = require(__dirname+'/redis.js');

	// disable useless express header
	app.disable('x-powered-by');
	// parse forms (is json required?)
	app.use(bodyParser.urlencoded({extended: true}));
	app.use(bodyParser.json());
	// parse cookies
	app.use(cookieParser());

	// session store
	app.use(session({
		secret: configs.sessionSecret,
		store: new redisStore({
			client: redisClient,
		}),
		resave: false,
		saveUninitialized: false,
		cookie: {
			httpOnly: true,
			secure: true,
			sameSite: 'strict',
		}
	}));

	//trust proxy for nginx
	app.set('trust proxy', 1);

	//self explanatory middlewares
	app.use(ipHash);
	app.use(referrerCheck);

	// use pug view engine
	app.set('view engine', 'pug');
	app.set('views', path.join(__dirname, 'views/pages'));
	//cache loaded templates
	if (configs.cacheTemplates === true) {
		app.enable('view cache');
	}

	//default settings
	app.locals.defaultTheme = configs.boardDefaults.theme;
	app.locals.globalLimits = configs.globalLimits;
	app.locals.themes = themes;

	// routes
	app.use('/forms', require(__dirname+'/controllers/forms.js'));
	app.use('/', require(__dirname+'/controllers/pages.js'));

	//404 catchall
	app.get('*', (req, res) => {
		res.status(404).render('404');
	})

	// catch any unhandled errors
	app.use((err, req, res, next) => {
		if (err.code === 'EBADCSRFTOKEN') {
			return res.status(403).send('Invalid CSRF token');
		}
		console.error(err.stack);
		return res.status(500).render('message', {
			'title': 'Internal Server Error',
			'redirect': req.headers.referer || '/'
		});
	})

	//listen
	const server = app.listen(configs.port, '127.0.0.1', () => {
		console.log(`listening on port ${configs.port}`);
		//let PM2 know that this is ready for graceful reloads and to serialise startup
		if (typeof process.send === 'function') {
			//make sure we are a child process of PM2 i.e. not in dev
			console.info('sending ready signal to PM2');
			process.send('ready');
		}
	});

	//listen for sigint from PM2
	process.on('SIGINT', () => {
		console.info('SIGINT SIGNAL RECEIVED');
		// Stops the server from accepting new connections and finishes existing connections.
		server.close((err) => {
			// if error, log and exit with error (1 code)
			console.info('CLOSING SERVER');
			if (err) {
				console.error(err);
				process.exit(1);
			}
			// close database connection
			console.info('DISCONNECTING MONGODB');
			Mongo.client.close();
			//close redis connection
			console.log('DISCONNECTING REDIS')
			redisClient.quit();
			// now close without error
			process.exit(0);
		});
	});

})();
First commit 5 years ago			`'use strict';`

improved configuration options -- settings for opengraph url/sitename and render template cache 5 years ago			`process`
			`.on('uncaughtException', console.error)`
			`.on('unhandledRejection', console.error);`
First commit 5 years ago
backlinking refactor, remove helmet from server since its basically useless 5 years ago			`const express = require('express')`
			`, session = require('express-session')`
no more lmx. since we have redis, use it for redlock and connect-redis for sessions instead of mongo 5 years ago			`, redisStore = require('connect-redis')(session)`
backlinking refactor, remove helmet from server since its basically useless 5 years ago			`, path = require('path')`
			`, app = express()`
First commit 5 years ago			`, bodyParser = require('body-parser')`
			`, cookieParser = require('cookie-parser')`
			`, configs = require(__dirname+'/configs/main.json')`
refactor some middlewares to move them out of main server file 5 years ago			`, ipHash = require(__dirname+'/helpers/iphash.js')`
			`, referrerCheck = require(__dirname+'/helpers/referrercheck.js')`
theme switcher with js in footer, overrides for all pages 5 years ago			`, themes = require(__dirname+'/helpers/themes.js')`
no more lmx. since we have redis, use it for redlock and connect-redis for sessions instead of mongo 5 years ago			`, Mongo = require(__dirname+'/db/db.js');`
First commit 5 years ago
			`(async () => {`

refactor some middlewares to move them out of main server file 5 years ago			`console.log('STARTING IN MODE:', process.env.NODE_ENV);`
disable useless x-powered header, and log node env on startup 5 years ago
no more lmx. since we have redis, use it for redlock and connect-redis for sessions instead of mongo 5 years ago			`// connect to mongodb`
refactor some middlewares to move them out of main server file 5 years ago			`console.log('CONNECTING TO MONGODB');`
First commit 5 years ago			`await Mongo.connect();`
switch redis lib to have a separate client, so that i can use it for k:v cache later 5 years ago
no more lmx. since we have redis, use it for redlock and connect-redis for sessions instead of mongo 5 years ago			`// connect to redis`
switch redis lib to have a separate client, so that i can use it for k:v cache later 5 years ago			`console.log('CONNECTING TO REDIS');`
			`const { redisClient } = require(__dirname+'/redis.js');`
First commit 5 years ago
disable useless x-powered header, and log node env on startup 5 years ago			`// disable useless express header`
			`app.disable('x-powered-by');`
switch redis lib to have a separate client, so that i can use it for k:v cache later 5 years ago			`// parse forms (is json required?)`
First commit 5 years ago			`app.use(bodyParser.urlencoded({extended: true}));`
			`app.use(bodyParser.json());`
no more lmx. since we have redis, use it for redlock and connect-redis for sessions instead of mongo 5 years ago			`// parse cookies`
backlinking refactor, remove helmet from server since its basically useless 5 years ago			`app.use(cookieParser());`

First commit 5 years ago			`// session store`
			`app.use(session({`
			`secret: configs.sessionSecret,`
no more lmx. since we have redis, use it for redlock and connect-redis for sessions instead of mongo 5 years ago			`store: new redisStore({`
			`client: redisClient,`
locks for writing html files, also might need to add during dedupe to prevent file incs changing while pruning 5 years ago			`}),`
First commit 5 years ago			`resave: false,`
samesite, secure and htponly for cookies 5 years ago			`saveUninitialized: false,`
			`cookie: {`
			`httpOnly: true,`
			`secure: true,`
strict samesite instead of lax 5 years ago			`sameSite: 'strict',`
samesite, secure and htponly for cookies 5 years ago			`}`
First commit 5 years ago			`}));`

backlinking refactor, remove helmet from server since its basically useless 5 years ago			`//trust proxy for nginx`
			`app.set('trust proxy', 1);`
First commit 5 years ago
refactor some middlewares to move them out of main server file 5 years ago			`//self explanatory middlewares`
			`app.use(ipHash);`
			`app.use(referrerCheck);`
referrer header POST check/rejection 5 years ago
First commit 5 years ago			`// use pug view engine`
			`app.set('view engine', 'pug');`
			`app.set('views', path.join(__dirname, 'views/pages'));`
implementing global limits for board settings and configurable defaults for board creation 5 years ago			`//cache loaded templates`
improved configuration options -- settings for opengraph url/sitename and render template cache 5 years ago			`if (configs.cacheTemplates === true) {`
			`app.enable('view cache');`
			`}`
First commit 5 years ago
implementing global limits for board settings and configurable defaults for board creation 5 years ago			`//default settings`
			`app.locals.defaultTheme = configs.boardDefaults.theme;`
minor typographical changes 5 years ago			`app.locals.globalLimits = configs.globalLimits;`
theme switcher with js in footer, overrides for all pages 5 years ago			`app.locals.themes = themes;`
implementing global limits for board settings and configurable defaults for board creation 5 years ago
First commit 5 years ago			`// routes`
improved configuration options -- settings for opengraph url/sitename and render template cache 5 years ago			`app.use('/forms', require(__dirname+'/controllers/forms.js'));`
			`app.use('/', require(__dirname+'/controllers/pages.js'));`
First commit 5 years ago
gulp to minify, remove static file serving -- using nginx instead 5 years ago			`//404 catchall`
First commit 5 years ago			`app.get('*', (req, res) => {`
improved configuration options -- settings for opengraph url/sitename and render template cache 5 years ago			`res.status(404).render('404');`
First commit 5 years ago			`})`

correct recent sorting, no more class for Posts and fix 404 loop 5 years ago			`// catch any unhandled errors`
First commit 5 years ago			`app.use((err, req, res, next) => {`
			`if (err.code === 'EBADCSRFTOKEN') {`
improved configuration options -- settings for opengraph url/sitename and render template cache 5 years ago			`return res.status(403).send('Invalid CSRF token');`
First commit 5 years ago			`}`
improved configuration options -- settings for opengraph url/sitename and render template cache 5 years ago			`console.error(err.stack);`
global and board IP bans, improved error handling, improved permissions checks 5 years ago			`return res.status(500).render('message', {`
			`'title': 'Internal Server Error',`
referrer header POST check/rejection 5 years ago			`'redirect': req.headers.referer \|\| '/'`
improved configuration options -- settings for opengraph url/sitename and render template cache 5 years ago			`});`
First commit 5 years ago			`})`

refactor some middlewares to move them out of main server file 5 years ago			`//listen`
server graceful reload with PM2 and close on sigints 5 years ago			`const server = app.listen(configs.port, '127.0.0.1', () => {`
locks for writing html files, also might need to add during dedupe to prevent file incs changing while pruning 5 years ago			console.log(`listening on port ${configs.port}`);
refactor some middlewares to move them out of main server file 5 years ago			`//let PM2 know that this is ready for graceful reloads and to serialise startup`
			`if (typeof process.send === 'function') {`
			`//make sure we are a child process of PM2 i.e. not in dev`
improved configuration options -- settings for opengraph url/sitename and render template cache 5 years ago			`console.info('sending ready signal to PM2');`
improve ecosystem file and only signal PM2 _after_ listening 5 years ago			`process.send('ready');`
			`}`
locks for writing html files, also might need to add during dedupe to prevent file incs changing while pruning 5 years ago			`});`
server graceful reload with PM2 and close on sigints 5 years ago
refactor some middlewares to move them out of main server file 5 years ago			`//listen for sigint from PM2`
server graceful reload with PM2 and close on sigints 5 years ago			`process.on('SIGINT', () => {`
refactor some middlewares to move them out of main server file 5 years ago			`console.info('SIGINT SIGNAL RECEIVED');`
server graceful reload with PM2 and close on sigints 5 years ago			`// Stops the server from accepting new connections and finishes existing connections.`
			`server.close((err) => {`
			`// if error, log and exit with error (1 code)`
refactor some middlewares to move them out of main server file 5 years ago			`console.info('CLOSING SERVER');`
server graceful reload with PM2 and close on sigints 5 years ago			`if (err) {`
			`console.error(err);`
			`process.exit(1);`
			`}`
			`// close database connection`
refactor some middlewares to move them out of main server file 5 years ago			`console.info('DISCONNECTING MONGODB');`
server graceful reload with PM2 and close on sigints 5 years ago			`Mongo.client.close();`
switch redis lib to have a separate client, so that i can use it for k:v cache later 5 years ago			`//close redis connection`
			`console.log('DISCONNECTING REDIS')`
			`redisClient.quit();`
server graceful reload with PM2 and close on sigints 5 years ago			`// now close without error`
			`process.exit(0);`
refactor some middlewares to move them out of main server file 5 years ago			`});`
			`});`
server graceful reload with PM2 and close on sigints 5 years ago
First commit 5 years ago			`})();`