-
Notifications
You must be signed in to change notification settings - Fork 0
/
Copy pathapp.js
103 lines (86 loc) · 2.59 KB
/
app.js
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
// any global packages that are needed go here
const path = require('path');
// third party packages
const express = require('express');
const bodyParser = require('body-parser');
const mongoose = require('mongoose');
const session = require('express-session');
const MongoDBStore = require('connect-mongodb-session')(session);
const csrf = require('csurf');
const flash = require('connect-flash');
const cors = require('cors');
// import files
const adminRoutes = require('./routes/admin');
const shopRoutes = require('./routes/shop');
const authRoutes = require('./routes/auth');
const errorController = require('./controllers/error');
// import Objects/classes
const User = require('./models/user');
const Login = require('./login');
const MONGODB_URL = process.env.MONGODB_URL || `mongodb+srv://${Login.username}:${Login.pass}@cluster0.lwwzv.mongodb.net/myFirstDatabase?retryWrites=true&w=majority`;
const app = express();
const store = new MongoDBStore({
uri: MONGODB_URL,
collection: 'sessions'
});
const csrfProtection = csrf();
app.set('view engine', 'ejs');
app.set('views', 'views');
app.use(bodyParser.urlencoded({ extended: false }));
app.use(express.static(path.join(__dirname, 'public')));
app.use(session({
secret: 'my secret',
resave: false,
saveUninitialized: false,
store: store
}));
app.use(csrfProtection);
app.use(flash());
// adding features to support Heroku development
const corsOptions = {
origin: "https://node-first-app-cse341.herokuapp.com/",
optionsSuccessStatus: 200
};
app.use(cors(corsOptions));
const options = {
useUnifiedTopology: true,
useNewUrlParser: true,
family: 4
};
// set session and user here
app.use((req, res, next) => {
if (!req.session.user) {
return next();
}
User.findById(req.session.user._id)
.then(user => {
if (!user) {
return next();
}
req.user = user;
next();
})
.catch(err => { throw new Error(err) });
});
// set the authentication and csrf token to prevent malware and ensure credentials are met
app.use((req, res, next) => {
res.locals.isAuthenticated = req.session.isLoggedIn;
res.locals.csrfToken = req.csrfToken();
next();
});
app.use('/admin', adminRoutes);
app.use(shopRoutes);
app.use(authRoutes);
app.get('/500', errorController.get500);
app.use(errorController.get404);
app.use((error, req, res, next) => {
res.redirect('/500');
});
mongoose
.connect(
MONGODB_URL, options
)
.then(result => {
app.listen(process.env.PORT || 3000);
})
.catch(err => console.log(err));