FitFusion/app.js at main · subhamagarrwal/FitFusion · GitHub

1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
// // initializing dotenv
// if(process.env.NODE_ENV !== "production"){
//     require('dotenv').config()
// }
require('dotenv').config()

// importing all dependencies
const express = require('express');
const mongoose = require('mongoose')
const methodOverride = require('method-override')
const ExpressError = require('./utils/ExpressError')
const ejsMate = require('ejs-mate');
const path = require('path')
const app = express();
const flash = require('connect-flash');
const userRoutes = require('./routes/users')
const campgroundRoutes = require('./routes/campgrounds');
const reviewRoutes = require('./routes/reviews');
const passport = require('passport');
const localStrategy = require('passport-local');
const User = require('./models/user');
const helmet=require('helmet');
const { name } = require('ejs');
const session = require('express-session');
//connect-mongo
const MongoStore=require("connect-mongo");

//const dbUrl = process.env.DB_URL || 'mongodb://localhost:27017/findMyCampSpot';
const dbUrl ='mongodb://localhost:27017/findMyCampSpot';
// setting up local mongoose connection
mongoose.connect(dbUrl);
const db = mongoose.connection;
db.on("error", console.error.bind(console, "connection error : "));
db.once("open", () => {
    console.log("Database connected")
});

// setting up ejs and other middlewares
app.engine('ejs', ejsMate)
app.set('view engine', 'ejs')
app.set('views', path.join(__dirname, 'views'))

app.use(express.urlencoded({ extended: true }))     // to parse json
app.use(methodOverride('_method')); // to use put and delete methods on our forms
app.use(express.static(path.join(__dirname,'public')))

//creating mongo session before the session config
const store= MongoStore.create({
    mongoUrl:dbUrl,
    secret:'thisshouldbeabettersecret',
    crypto:{
        secret:'thisshouldbeabettersecret!'
    }
});

store.on('error',function(e){
  console.log('Session store error',e);
});
// initialising session and defining its properties
const sessionConfig = {
    store,
    name : 'practise',
    secret : 'Thisisasecret',
    resave: false,
    saveUninitialized: true,
    cookie: {
        httpOnly: true,
        expires: Date.now() + 1000 * 60 * 60 * 24 * 7,
        maxAge: 1000 * 60 * 60 * 24 * 7

    }
}

// adding flash and session
app.use(session(sessionConfig));
app.use(flash());

// addding passport authentication
app.use(passport.initialize());
app.use(passport.session());
passport.use(new localStrategy(User.authenticate()));
// serialization
passport.serializeUser(User.serializeUser());   // how to store user in a session
passport.deserializeUser(User.deserializeUser());   // how to log user out of a session
app.use(helmet({
    contentSecurityPolicy:false
}));

//adding helmet-start
const scriptSrcUrls = [
    "https://stackpath.bootstrapcdn.com/",
    // "https://api.tiles.mapbox.com/",
    // "https://api.mapbox.com/",
    "https://kit.fontawesome.com/",
    "https://cdnjs.cloudflare.com/",
    "https://cdn.jsdelivr.net",
    "https://cdn.maptiler.com/", // add this
];
const styleSrcUrls = [
    "https://kit-free.fontawesome.com/",
    "https://stackpath.bootstrapcdn.com/",
    // "https://api.mapbox.com/",
    // "https://api.tiles.mapbox.com/",
    "https://fonts.googleapis.com/",
    "https://use.fontawesome.com/",
    "https://cdn.jsdelivr.net",
    "https://cdn.maptiler.com/", // add this
];
const connectSrcUrls = [
    // "https://api.mapbox.com/",
    // "https://a.tiles.mapbox.com/",
    // "https://b.tiles.mapbox.com/",
    // "https://events.mapbox.com/",
    "https://api.maptiler.com/", // add this
];
//adding helmet-stop

app.use((req,res,next)=>{
    res.locals.currentUser = req.user;
    res.locals.success = req.flash('success');
    res.locals.error = req.flash('error')
    next();
})

// setting up the middleware of our routers to work

app.use('/', userRoutes);
app.use('/campgrounds', campgroundRoutes);
app.use('/campgrounds/:id/reviews', reviewRoutes);

app.get('/', (req, res) => {
    res.render('home')
})

// Setting 404 error
app.all('*', (req, res, next) => {
    next(new ExpressError('Page Not Found', 404))
})

// default error handling route
app.use((err, req, res, next) => {
    const { status = 500 } = err
    if (!err.message) err.message = "Something went wrong"
    res.status(status).render('error', { err })
})


app.listen(8000, () => {
    console.log("Server is up and running at port 8000")
})