-
Notifications
You must be signed in to change notification settings - Fork 0
/
Copy pathapp.js
124 lines (101 loc) · 3.51 KB
/
app.js
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
var express = require('express');
var session = require('express-session');
var path = require('path');
var favicon = require('serve-favicon');
var morganAutoLogger = require('morgan');
var cookieParser = require('cookie-parser');
var bodyParser = require('body-parser');
var compression = require('compression');
var quickthumb = require('quickthumb');
var MongoSessionStore = require('connect-mongo')(session);
var passport = require('passport');
var config = require('./config').Config;
var security = require('./security');
var indexRoute = require('./routes/index');
var cars = require('./routes/cars');
var donors = require('./routes/donors');
var consumers = require('./routes/consumers');
var usersRoute = require('./routes/usersRoute');
var configRoute = require('./routes/configRoute');
var apiRoute = require('./routes/apiRoute');
var app = express();
console.log('Using ' + config.env + ' configuration');
console.log('Server provider: ' + process.env.SERVER_PROVIDER);
// view engine setup
app.set('views', path.join(__dirname, 'views'));
app.set('view engine', 'hbs');
// Don't default to the layout file in the views folder
app.set('view options', { layout: false });
// uncomment after placing your favicon in /public
//app.use(favicon(__dirname + '/public/favicon.ico'));
// Automatically logs info about the request etc. Not for manual logging
app.use(morganAutoLogger('combined'));
// gzip compression of static resources with size larger than 256kb
app.use(compression({
threshold: 256
}));
app.use(bodyParser.json());
app.use(bodyParser.urlencoded({ extended: false }));
app.use(cookieParser(config.cookie.secret));
// Store session in mongodb. Needs to be AFTER cookie parser
app.use(session({
store: new MongoSessionStore({
url: config.mongoDbUri
}),
***REMOVED***
resave: false,
saveUninitialized: false
}));
// Setup authentication
app.use(passport.initialize());
app.use(passport.session());
passport.use(security.authStrategy);
// Define how user is stored on session
passport.serializeUser(security.serializeUserForSession);
passport.deserializeUser(security.deserializeUserFromSession);
// Use quickthumb for images
app.use('/images', quickthumb.static(__dirname + '/public/images'));
// Cache static resources for one year
// var oneYear = "31557600000";
// app.use(express.static(path.join(__dirname, 'public'), {maxage: oneYear}));
// Don't cache
app.use(express.static(path.join(__dirname, 'public'), {maxage: 0}));
// Public routes
app.use('/', indexRoute);
app.use('/config', configRoute);
// Authenticated routes
app.use('/cars', security.requireAccessPermission, cars);
app.use('/consumers', security.requireAccessPermission, consumers);
// Admin routes
app.use('/api', security.requireAdminPermission, apiRoute);
// Security defined in the route level
app.use('/users', usersRoute);
app.use('/donors', donors);
// catch 404 and forward to error handler
app.use(function(req, res, next) {
var err = new Error('Not Found');
err.status = 404;
next(err);
});
// error handlers
// development error handler
// will print stacktrace
if (app.get('env') === 'development') {
app.use(function(err, req, res, next) {
res.status(err.status || 500);
res.render('error', {
message: err.message,
error: err
});
});
}
// production error handler
// no stacktraces leaked to user
app.use(function(err, req, res, next) {
res.status(err.status || 500);
res.render('error', {
message: err.message,
error: {}
});
});
module.exports = app;