-
Notifications
You must be signed in to change notification settings - Fork 3
/
app.js
83 lines (71 loc) · 3.1 KB
/
app.js
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
require('dotenv').config();
var createError = require('http-errors');
var express = require('express');
var path = require('path');
var cookieParser = require('cookie-parser');
var logger = require('morgan');
const cors = require('cors');
var compression = require('compression');
var helmet = require('helmet');
var stacksRouter = require('./routes/stacks');
var projectsRouter = require('./routes/projects');
var profileRouter = require('./routes/profile');
var app = express();
// Set up mongoose connection
var mongoose = require('mongoose');
var dev_db_url = process.env.MONGODB_URI;
var mongoDB = process.env.MONGODB_URI || dev_db_url;
mongoose.connect(mongoDB, {useNewUrlParser: true, useUnifiedTopology: true}, () => console.log('MongoDB has connected successfully.'));
mongoose.Promise = global.Promise;
var db = mongoose.connection;
db.on('error', console.error.bind(console, 'MongoDB connection error:'));
// view engine setup
//app.set('views', path.join(__dirname, 'views'));
//app.set('view engine', 'jade');
var corsOptions = {
origin: "http://localhost:3000"
};
app.use(cors(corsOptions));
app.use(logger('dev'));
app.use(express.json());
app.use(express.urlencoded({ extended: false }));
app.use(cookieParser());
app.use(
helmet({
contentSecurityPolicy: {
directives: {
defaultSrc: ["'self'", 'https://ka-f.fontawesome.com'],
scriptSrc: ["'self'", "'unsafe-inline'", '*.fontawesome.com', 'https://use.fontawesome.com/releases/v5.15.4/js/all.js', 'https://kit.fontawesome.com', 'https://fonts.googleapis.com ', 'https://kit.fontawesome.com/d4de0f4540.js', 'https://cdn.jsdelivr.net/npm/[email protected]/dist/umd/popper.min.js', 'https://stackpath.bootstrapcdn.com/bootstrap/4.5.0/js/bootstrap.min.js', 'https://code.jquery.com/jquery-3.5.1.slim.min.js'],
styleSrc: ["'self'", "'unsafe-inline'", '*.fontawesome.com', 'https://stackpath.bootstrapcdn.com/bootstrap/4.4.1/css/bootstrap.min.css'],
imgSrc: ["*", 'data:'],
fontSrc: ["'self'", 'data:', '*.fontawesome.com', 'https://ka-f.fontawesome.com'],
connectSrc: ["'self'", '*.fontawesome.com', 'https://ka-f.fontawesome.com', 'https://ka-f.fontawesome.com/releases/v5.15.4/js/free-v4-shims.min.jsd', 'https://ka-f.fontawesome.com/releases/v5.15.4/js/free.min.js'],
frameSrc: ["'self'"],
},
reportOnly: false,
}
})
);
app.use(compression());
app.use(express.static(path.join(__dirname, './frontend/build/')));
//app.use('/public', express.static('public'));
app.use('/api/stacks', stacksRouter);
app.use('/api/projects', projectsRouter);
app.use('/api/profile', profileRouter);
app.get('/', (req, res) => {
res.sendFile(path.join(__dirname, './frontend/build/index.html'));
});
// catch 404 and forward to error handler
app.use(function(req, res, next) {
next(createError(404));
});
// error handler
app.use(function(err, req, res, next) {
// set locals, only providing error in development
res.locals.message = err.message;
res.locals.error = req.app.get('env') === 'development' ? err : {};
// render the error page
res.status(err.status || 500);
res.render('error');
});
module.exports = app;