colouring-montreal/app/src/server.js

350 lines
9.7 KiB
JavaScript
Raw Normal View History

2018-09-30 14:50:09 -04:00
/**
* Server-side Express application
* - API methods
* - entry-point to shared React App
*
*/
import React from 'react';
import { StaticRouter } from 'react-router-dom';
import express from 'express';
import { renderToString } from 'react-dom/server';
import serialize from 'serialize-javascript';
2018-09-13 14:54:16 -04:00
import bodyParser from 'body-parser';
import session from 'express-session';
import pgConnect from 'connect-pg-simple';
import App from './frontend/app';
2018-09-30 11:18:57 -04:00
import db from './db';
import { authUser, createUser, getUserById, authAPIUser, getNewUserAPIKey } from './user';
import { queryBuildingsAtPoint, queryBuildingsByReference, getBuildingById,
getBuildingUPRNsById, saveBuilding, likeBuilding } from './building';
2018-09-10 05:44:32 -04:00
import tileserver from './tileserver';
2018-09-13 15:36:14 -04:00
import { parseBuildingURL } from './parse';
// create server
const server = express();
// reference packed assets
const assets = require(process.env.RAZZLE_ASSETS_MANIFEST);
// disable header
server.disable('x-powered-by');
// serve static files
server.use(express.static(process.env.RAZZLE_PUBLIC_DIR));
// parse POSTed json body
server.use(bodyParser.json());
// handle user sessions
2018-09-13 14:54:16 -04:00
const pgSession = pgConnect(session);
const sess = {
name: 'cl.session',
store: new pgSession({
2018-09-30 11:18:57 -04:00
pgPromise: db,
tableName : 'user_sessions'
}),
secret: process.env.APP_COOKIE_SECRET,
saveUninitialized: false,
resave: false,
cookie: { maxAge: 30 * 24 * 60 * 60 * 1000 } // 30 days
};
if (server.get('env') === 'production') {
// trust first proxy
server.set('trust proxy', 1)
// serve secure cookies
sess.cookie.secure = true
}
server.use(session(sess));
// handle HTML routes (server-side rendered React)
server.get('/*.html', frontendRoute);
server.get('/', frontendRoute);
function frontendRoute(req, res) {
2018-09-13 15:41:42 -04:00
const context = {};
const data = {};
2018-09-13 15:41:42 -04:00
context.status = 200;
2018-09-10 18:32:56 -04:00
2018-09-11 18:30:17 -04:00
const building_id = parseBuildingURL(req.url);
2018-09-13 15:41:42 -04:00
if (isNaN(building_id)){
context.status = 404;
}
const is_building = (typeof(building_id) !== "undefined")
2018-09-11 18:30:17 -04:00
Promise.all([
req.session.user_id? getUserById(req.session.user_id) : undefined,
is_building? getBuildingById(building_id) : undefined,
is_building? getBuildingUPRNsById(building_id) : undefined
2018-09-11 18:30:17 -04:00
]).then(function(values){
const user = values[0];
const building = values[1];
const uprns = values[2];
2018-09-13 15:41:42 -04:00
if (is_building && typeof(building) === "undefined"){
context.status = 404
}
2018-09-11 18:30:17 -04:00
data.user = user;
data.building = building;
if (data.building != null) {
data.building.uprns = uprns
}
2018-09-13 15:41:42 -04:00
renderHTML(context, data, req, res)
}).catch(error => {
console.error(error);
data.user = undefined;
data.building = undefined;
2018-10-04 17:44:04 -04:00
context.status = 500;
renderHTML(context, data, req, res);
});
2018-09-11 18:30:17 -04:00
}
2018-09-10 18:32:56 -04:00
2018-09-13 15:41:42 -04:00
function renderHTML(context, data, req, res){
const markup = renderToString(
<StaticRouter context={context} location={req.url}>
<App user={data.user} building={data.building} />
</StaticRouter>
);
if (context.url) {
res.redirect(context.url);
} else {
res.status(context.status).send(
`<!doctype html>
<html lang="">
<head>
<meta http-equiv="X-UA-Compatible" content="IE=edge" />
<meta charset="utf-8" />
<title>Colouring London</title>
<meta name="viewport" content="width=device-width, initial-scale=1, shrink-to-fit=no">
<style>
@font-face {
font-family: 'glacial_cl';
src: url('/fonts/glacialindifference-regular-webfont.woff2') format('woff2'),
url('/fonts/glacialindifference-regular-webfont.woff') format('woff');
font-weight: normal;
font-style: normal;
}
</style>
${
assets.client.css
? `<link rel="stylesheet" href="${assets.client.css}">`
: ''
}
${
process.env.NODE_ENV === 'production'
? `<script src="${assets.client.js}" defer></script>`
: `<script src="${assets.client.js}" defer crossorigin></script>`
}
</head>
<body>
<div id="root">${markup}</div>
<script>
window.__PRELOADED_STATE__ = ${serialize(data)}
</script>
</body>
</html>`
);
}
}
2018-09-10 05:44:32 -04:00
// GET tiles
server.use('/tiles', tileserver);
// GET buildings
// not implemented - may be useful to GET all buildings, paginated
// GET buildings at point
server.get('/buildings/locate', function(req, res){
const { lng, lat } = req.query;
queryBuildingsAtPoint(lng, lat).then(function(result){
res.send(result);
}).catch(function(error){
console.error(error);
res.send({error:'Database error'})
})
});
// GET buildings by reference (UPRN/TOID or other identifier)
server.get('/buildings/reference', function(req, res){
const { key, id } = req.query;
queryBuildingsByReference(key, id).then(function(result){
res.send(result);
}).catch(function(error){
console.error(error);
res.send({error:'Database error'})
})
});
// GET individual building, POST building updates
2018-09-11 18:30:17 -04:00
server.route('/building/:building_id.json')
.get(function (req, res) {
const { building_id } = req.params;
getBuildingById(building_id).then(function(result){
2018-10-20 09:51:39 -04:00
res.send(result);
2018-09-11 18:30:17 -04:00
}).catch(function(error){
console.error(error);
2018-09-11 18:30:17 -04:00
res.send({error:'Database error'})
})
})
.post(function (req, res) {
if (req.session.user_id) {
updateBuilding(req, res, req.session.user_id);
} else if (req.query.api_key) {
authAPIUser(req.query.api_key)
.then(function(user){
updateBuilding(req, res, user.user_id)
})
.catch(function(err){
console.error(err);
res.send({error: 'Must be logged in'});
});
} else {
res.send({error: 'Must be logged in'});
}
2018-09-11 18:30:17 -04:00
})
function updateBuilding(req, res, user_id){
const { building_id } = req.params;
const building = req.body;
saveBuilding(building_id, building, user_id).then(building => {
if (building.error) {
res.send(building)
return
}
if (typeof(building) === "undefined") {
res.send({error:'Database error'})
return
}
res.send(building)
}).catch(
() => res.send({error:'Database error'})
)
}
server.get('/building/:building_id/uprns.json', function (req, res) {
const { building_id } = req.params;
getBuildingUPRNsById(building_id).then(function(result){
if (typeof(result) === "undefined") {
res.send({error:'Database error'})
return
}
res.send({
uprns: result
});
}).catch(function(error){
console.error(error);
res.send({error:'Database error'})
})
})
// POST like building
server.post('/building/like/:building_id', function(req, res){
if (!req.session.user_id) {
res.send({error: 'Must be logged in'});
return
}
const { building_id } = req.params;
likeBuilding(building_id, req.session.user_id).then(building => {
if (building.error) {
res.send(building)
return
}
if (typeof(building) === "undefined") {
res.send({error:'Database error'})
return
}
res.send(building)
}).catch(
() => res.send({error:'Database error'})
)
});
// POST new user
server.post('/users', function(req, res){
const user = req.body;
if (req.session.user_id) {
res.send({error: 'Already signed in'});
2018-09-13 11:58:05 -04:00
return
}
if (user.email){
if (user.email != user.confirm_email) {
res.send({error: "Email did not match confirmation."});
return
}
} else {
user.email = null;
}
createUser(user).then(function(result){
if (result.user_id) {
req.session.user_id = result.user_id;
res.send({user_id: result.user_id});
} else {
req.session.user_id = undefined;
res.send({error: result.error});
}
}).catch(function(err){
console.error(err);
2018-09-13 11:58:05 -04:00
res.send(err)
});
});
// POST user auth
server.post('/login', function(req, res){
authUser(req.body.username, req.body.password).then(function(user) {
if (user.user_id) {
req.session.user_id = user.user_id;
} else {
req.session.user_id = undefined;
}
res.send(user);
}).catch(function(error){
res.send(error);
})
});
// POST user logout
server.post('/logout', function(req, res){
req.session.user_id = undefined;
req.session.destroy(function(err){
if (err) {
console.error(err);
res.send({error: 'Failed to end session'})
}
res.send({success: true});
});
});
// GET own user info
server.get('/users/me', function(req, res){
if (!req.session.user_id) {
res.send({error: 'Must be logged in'});
return
}
getUserById(req.session.user_id).then(function(user){
res.send(user);
}).catch(function(error){
res.send(error);
});
});
2018-10-20 07:20:10 -04:00
// POST generate API key
server.post('/api/key', function(req, res){
if (!req.session.user_id) {
res.send({error: 'Must be logged in'});
return
}
getNewUserAPIKey(req.session.user_id).then(function(api_key){
res.send(api_key);
}).catch(function(error){
res.send(error);
});
})
export default server;