webar-cms-backend/server.js at main · Modelling-and-Simulation/webar-cms-backend · GitHub

1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
import "dotenv/config";
import express from "express";
import cors from "cors";
import mongoose from "mongoose";
import cookieParser from "cookie-parser";

import verifyJWT from "./middleware/verifyJWT.js";
import errorHandler from "./middleware/errorHandler.js";
import credentials from "./middleware/credentials.js";

import allowedOrigins from "./config/allowedOrigins.js";
import connectDB from "./config/dbConnection.js";

// import routes
import targetRoute from "./routes/targetRoutes.js";
import contentRoute from "./routes/contentRoutes.js";
import authRoutes from "./routes/authRoutes.js";
import sceneRoute from "./routes/sceneRoutes.js";
import userRoutes from "./routes/userRoutes.js";
import { getSceneByUrl } from "./controllers/sceneController/getScenes.js";

const corsOptions = import("./config/corsOptions.js");

const PORT = process.env.PORT || 5000;

const app = express();

app.options("*", (req, res) => {
  // Pre-flight request. Reply successfully:
  const origin = req.headers.origin;
  if (allowedOrigins.indexOf(origin)) {
    console.log("Pre-flight request", origin);
    res.header("Access-Control-Allow-Origin", origin);
    res.header("Access-Control-Allow-Credentials", true);
    res.header(
      "Access-Control-Allow-Methods",
      "GET, POST, PUT, DELETE, OPTIONS"
    );
    res.header(
      "Access-Control-Allow-Headers",
      "Origin, X-Requested-With, Content-Type, Accept, Authorization"
    );
  }
  res.status(200).send();
});

// Cross-Origin Resource Sharing (CORS)
app.use(cors(corsOptions));
app.use(credentials);

// ‘content-type: application/x-www-form-urlencoded’
app.use(express.urlencoded({ extended: false }));

// built-in middleware for json
app.use(express.json());

//middleware for cookies
app.use(cookieParser());

// accept form-data
app.use(express.text());
app.use(express.raw());
app.use(express.json());
app.use(express.urlencoded({ extended: true }));

// Custom middleware for log all requests
import { logger } from "./middleware/logEvents.js";
// app.use(logger);

/****************** Routes ******************/
// Public Files
app.use("/public", express.static("public"));

// Auth Routes
app.use("/api/auth", authRoutes);

// Public scene routes
app.use("/api/public/:authorUsername/:sceneName", getSceneByUrl);

// Auth Middleware
app.use(verifyJWT);
// Target Routes
app.use("/api/targets", targetRoute);

// Content Routes
app.use("/api/contents", contentRoute);

// Scene Routes
app.use("/api/scenes", sceneRoute);

// User Routes
app.use("/api/users", userRoutes);

app.get("/", (req, res) => {
  res.send("Hello WebAR-CMS API!");
});

// 404 Error
app.use((req, res) => {
  res.status(404).send("404 Error: Page not found");
});
/*********************************************/

// Custom middleware for error handling
app.use(errorHandler);

// Connect to MongoDB
connectDB();

mongoose.connection.once("open", () => {
  console.log("Connected to MongoDB");
  app.listen(PORT, () => console.log(`Server running on port ${PORT}`));
});