filesafe/lolisafe.js

const config = require('./config.js')
const api = require('./routes/api.js')
const album = require('./routes/album.js')
const express = require('express')
const helmet = require('helmet')
const bodyParser = require('body-parser')
const RateLimit = require('express-rate-limit')
const db = require('knex')(config.database)
const fs = require('fs')
const exphbs = require('express-handlebars')
const safe = express()

require('./database/db.js')(db)

fs.existsSync('./pages/custom') || fs.mkdirSync('./pages/custom')
fs.existsSync('./' + config.logsFolder) || fs.mkdirSync('./' + config.logsFolder)
fs.existsSync('./' + config.uploads.folder) || fs.mkdirSync('./' + config.uploads.folder)
fs.existsSync('./' + config.uploads.folder + '/thumbs') || fs.mkdirSync('./' + config.uploads.folder + '/thumbs')
fs.existsSync('./' + config.uploads.folder + '/zips') || fs.mkdirSync('./' + config.uploads.folder + '/zips')

safe.use(helmet())
safe.set('trust proxy', 1)

safe.engine('handlebars', exphbs({ defaultLayout: 'main' }))
safe.set('view engine', 'handlebars')
safe.enable('view cache')

let limiter = new RateLimit({ windowMs: 5000, max: 2 })
safe.use('/api/login/', limiter)
safe.use('/api/register/', limiter)

safe.use(bodyParser.urlencoded({ extended: true }))
safe.use(bodyParser.json())

const setHeaders = (res, path, stat) => {
  if (/\.(3gp|gif|jpg|jpeg|png|ico|wmv|avi|asf|asx|mpg|mpeg|mp4|pls|mp3|mid|wav|swf|flv|exe|zip|tar|rar|gz|tgz|bz2|uha|7z|doc|docx|xls|xlsx|pdf|iso|js|css|eot|svg|ttf|woff|woff2)$/.test(path)) {
    res.set('Access-Control-Allow-Origin', '*')
    res.set('Cache-Control', `public, max-age=2592000, must-revalidate, proxy-revalidate, immutable, stale-while-revalidate=86400, stale-if-error=604800`) // max-age: 30 days
  }
}

if (config.serveFilesWithNode) {
  safe.use('/', express.static(config.uploads.folder, { setHeaders }))
}

safe.use('/', express.static('./public', { setHeaders }))
safe.use('/', album)
safe.use('/api', api)

for (let page of config.pages) {
  let root = './pages/'
  if (fs.existsSync(`./pages/custom/${page}.html`)) {
    root = './pages/custom/'
  }
  if (page === 'home') {
    safe.get('/', (req, res, next) => res.sendFile(`${page}.html`, { root: root }))
  } else {
    safe.get(`/${page}`, (req, res, next) => res.sendFile(`${page}.html`, { root: root }))
  }
}

// NOTE: Uses fiery.me branch of https://github.com/BobbyWibowo/HttpErrorPages
safe.use((req, res, next) => {
  res.status(404).sendFile('HTTP404.html', { root: '../HttpErrorPages/dist/' })
})
safe.use((err, req, res, next) => {
  console.error(err)
  res.status(500).sendFile('HTTP505.html', { root: '../HttpErrorPages/dist/' })
})

safe.listen(config.port, () => console.log(`lolisafe started on port ${config.port}`))

process.on('uncaughtException', err => {
  console.error(`Uncaught Exception:\n${err.stack}`)
})

process.on('unhandledRejection', err => {
  console.error(`Unhandled Rejection (Promise):\n${err.stack}`)
})
Various updates * Switched ESLint + Aqua to Standard. I'm a big fan of Standard. Updated yarn.lock file too. * Lots of refactors to follow the rules of Standard. * Fixed issue with uploading as a not logged in user. 2018-01-23 20:06:30 +00:00			`const config = require('./config.js')`
			`const api = require('./routes/api.js')`
			`const album = require('./routes/album.js')`
			`const express = require('express')`
			`const helmet = require('helmet')`
			`const bodyParser = require('body-parser')`
			`const RateLimit = require('express-rate-limit')`
			`const db = require('knex')(config.database)`
			`const fs = require('fs')`
			`const exphbs = require('express-handlebars')`
			`const safe = express()`

			`require('./database/db.js')(db)`

			`fs.existsSync('./pages/custom') \|\| fs.mkdirSync('./pages/custom')`
			`fs.existsSync('./' + config.logsFolder) \|\| fs.mkdirSync('./' + config.logsFolder)`
			`fs.existsSync('./' + config.uploads.folder) \|\| fs.mkdirSync('./' + config.uploads.folder)`
			`fs.existsSync('./' + config.uploads.folder + '/thumbs') \|\| fs.mkdirSync('./' + config.uploads.folder + '/thumbs')`
			`fs.existsSync('./' + config.uploads.folder + '/zips') \|\| fs.mkdirSync('./' + config.uploads.folder + '/zips')`

			`safe.use(helmet())`
			`safe.set('trust proxy', 1)`

			`safe.engine('handlebars', exphbs({ defaultLayout: 'main' }))`
			`safe.set('view engine', 'handlebars')`
			`safe.enable('view cache')`

			`let limiter = new RateLimit({ windowMs: 5000, max: 2 })`
			`safe.use('/api/login/', limiter)`
			`safe.use('/api/register/', limiter)`

			`safe.use(bodyParser.urlencoded({ extended: true }))`
			`safe.use(bodyParser.json())`
Changed request system and post data Changed from XMLHttpRequest to Axiios and made every POST call to look for params or json and not pass the values as headers. Token is still a header though 2017-01-19 05:37:35 +00:00
Updates * Show horizontal scrollbar for table only when needed. * Cache-Control for static files. 2018-01-24 16:04:21 +00:00			`const setHeaders = (res, path, stat) => {`
			`if (/\.(3gp\|gif\|jpg\|jpeg\|png\|ico\|wmv\|avi\|asf\|asx\|mpg\|mpeg\|mp4\|pls\|mp3\|mid\|wav\|swf\|flv\|exe\|zip\|tar\|rar\|gz\|tgz\|bz2\|uha\|7z\|doc\|docx\|xls\|xlsx\|pdf\|iso\|js\|css\|eot\|svg\|ttf\|woff\|woff2)$/.test(path)) {`
			`res.set('Access-Control-Allow-Origin', '*')`
Updates * Removed unnecessary math operator from lolisafe.js. * Updated comment about HttpErrorPages (the branch was renamed from "fiery-me" to "fiery.me"). 2018-02-09 23:20:34 +00:00			res.set('Cache-Control', `public, max-age=2592000, must-revalidate, proxy-revalidate, immutable, stale-while-revalidate=86400, stale-if-error=604800`) // max-age: 30 days
Updates * Show horizontal scrollbar for table only when needed. * Cache-Control for static files. 2018-01-24 16:04:21 +00:00			`}`
			`}`

Changed how domains are handled 2017-10-03 22:48:26 +00:00			`if (config.serveFilesWithNode) {`
Updates * Show horizontal scrollbar for table only when needed. * Cache-Control for static files. 2018-01-24 16:04:21 +00:00			`safe.use('/', express.static(config.uploads.folder, { setHeaders }))`
Changed how domains are handled 2017-10-03 22:48:26 +00:00			`}`
Made the album viewer route SSR so crawlers dont have issues 🎉 2017-09-20 06:03:31 +00:00
Updates * Show horizontal scrollbar for table only when needed. * Cache-Control for static files. 2018-01-24 16:04:21 +00:00			`safe.use('/', express.static('./public', { setHeaders }))`
Various updates * Switched ESLint + Aqua to Standard. I'm a big fan of Standard. Updated yarn.lock file too. * Lots of refactors to follow the rules of Standard. * Fixed issue with uploading as a not logged in user. 2018-01-23 20:06:30 +00:00			`safe.use('/', album)`
			`safe.use('/api', api)`
Frontend WIP 2017-01-14 06:01:23 +00:00
Refactor 2017-03-17 04:14:24 +00:00			`for (let page of config.pages) {`
Various updates * Switched ESLint + Aqua to Standard. I'm a big fan of Standard. Updated yarn.lock file too. * Lots of refactors to follow the rules of Standard. * Fixed issue with uploading as a not logged in user. 2018-01-23 20:06:30 +00:00			`let root = './pages/'`
			if (fs.existsSync(`./pages/custom/${page}.html`)) {
			`root = './pages/custom/'`
			`}`
			`if (page === 'home') {`
			safe.get('/', (req, res, next) => res.sendFile(`${page}.html`, { root: root }))
			`} else {`
			safe.get(`/${page}`, (req, res, next) => res.sendFile(`${page}.html`, { root: root }))
			`}`
Added support for custom html files There's a new folder that gets created upon running lolisafe for the first time. On said folder any html file with the same name as the default ones will be loaded instead, letting you place custom frontend files without messing with git. 2017-02-06 03:06:33 +00:00			`}`

Updates * Removed unnecessary math operator from lolisafe.js. * Updated comment about HttpErrorPages (the branch was renamed from "fiery-me" to "fiery.me"). 2018-02-09 23:20:34 +00:00			`// NOTE: Uses fiery.me branch of https://github.com/BobbyWibowo/HttpErrorPages`
Added error pages Utilizing BobbyWibowo/HttpErrorPages. 2018-01-24 18:13:17 +00:00			`safe.use((req, res, next) => {`
Hehe.. 2018-01-24 18:31:31 +00:00			`res.status(404).sendFile('HTTP404.html', { root: '../HttpErrorPages/dist/' })`
			`})`
			`safe.use((err, req, res, next) => {`
			`console.error(err)`
			`res.status(500).sendFile('HTTP505.html', { root: '../HttpErrorPages/dist/' })`
Added error pages Utilizing BobbyWibowo/HttpErrorPages. 2018-01-24 18:13:17 +00:00			`})`
Various updates * Switched ESLint + Aqua to Standard. I'm a big fan of Standard. Updated yarn.lock file too. * Lots of refactors to follow the rules of Standard. * Fixed issue with uploading as a not logged in user. 2018-01-23 20:06:30 +00:00
			safe.listen(config.port, () => console.log(`lolisafe started on port ${config.port}`))

			`process.on('uncaughtException', err => {`
			console.error(`Uncaught Exception:\n${err.stack}`)
			`})`
First version 2017-01-13 07:34:21 +00:00
Various updates * Switched ESLint + Aqua to Standard. I'm a big fan of Standard. Updated yarn.lock file too. * Lots of refactors to follow the rules of Standard. * Fixed issue with uploading as a not logged in user. 2018-01-23 20:06:30 +00:00			`process.on('unhandledRejection', err => {`
			console.error(`Unhandled Rejection (Promise):\n${err.stack}`)
			`})`