Newer
Older
const path = require( 'path' );
const express = require('express');
const cors = require('cors');
const helmet = require('helmet');
const dbClientInstance_ = require('./db/mongo.js');
const todoRoutes = require('./routes/todo');
const userRoutes = require('./routes/user');
const errorRoutes = require('./routes/error');
const envRoute = require('./routes/env.js');
let cookieParser = require('cookie-parser');
const app = express();
const port = process.env.PORT || 5000;
Lucendio
committed
const corsOptions = {
origin: `http://localhost:${ port }`,
Lucendio
committed
credentials: true
Lucendio
committed
app.use(express.json());
app.use(cors(corsOptions));
Lucendio
committed
app.use(cookieParser());
Lucendio
committed
app.use(helmet());
Lucendio
committed
app.use(helmet.contentSecurityPolicy({
directives: {
defaultSrc: ["'self'"],
styleSrc: ["'self' 'unsafe-inline'"],
scriptSrc: ["'self' 'unsafe-inline' 'unsafe-eval'"]
Lucendio
committed
}
}));
Lucendio
committed
app.use(todoRoutes);
app.use(userRoutes);
app.use('/', express.static(path.resolve(__dirname, `./public`)));
// IMPORTANT: Educational purpose only! Possibly exposes sensitive data.
app.use(envRoute);
// NOTE: must be last one, because is uses a wildcard (!) that behaves aa
// fallback and catches everything else
app.use(errorRoutes);
(async function main(){
process.on( 'exit', async ()=>{
const dbClient = await dbClientInstance_;
await dbClient.disconnect();
});
try{
const server = http.createServer( app );
await new Promise( (__ful, rej__ )=>{
server.listen( port, ()=>{
console.log( `ToDo server is up & bound to port ${ port }` );
__ful();
}).on( 'error', rej__ );
});
process.on( 'SIGINT', ()=>{
console.log( 'Shutting down ToDo server' );
}catch( err ){
console.error( err );
process.exit( 1 );
}
})();