2022-05-06 02:01:19 +03:00
|
|
|
const fastify = require('fastify')();
|
2022-05-06 23:17:53 +03:00
|
|
|
const oauth = require('@fastify/oauth2');
|
2022-05-07 20:28:38 +03:00
|
|
|
// const { randomBytes } = require('crypto');
|
2022-05-06 02:12:38 +03:00
|
|
|
const { short } = require('leeks.js');
|
2022-05-06 02:01:19 +03:00
|
|
|
const { join } = require('path');
|
2022-07-18 15:34:29 +03:00
|
|
|
const { files } = require('node-dir');
|
2022-05-06 02:01:19 +03:00
|
|
|
|
|
|
|
module.exports = client => {
|
2022-05-06 23:17:53 +03:00
|
|
|
|
2022-07-16 01:19:42 +03:00
|
|
|
// cors plugins
|
|
|
|
fastify.register(require('@fastify/cors'), {
|
|
|
|
credentials: true,
|
|
|
|
methods: ['DELETE', 'GET', 'PATCH', 'PUT', 'POST'],
|
|
|
|
origin: true,
|
|
|
|
});
|
|
|
|
|
2022-05-06 23:17:53 +03:00
|
|
|
// oauth2 plugin
|
|
|
|
fastify.register(oauth, {
|
|
|
|
callbackUri: `${process.env.HTTP_EXTERNAL}/auth/callback`,
|
|
|
|
credentials: {
|
|
|
|
auth: oauth.DISCORD_CONFIGURATION,
|
|
|
|
client: {
|
|
|
|
id: client.user.id,
|
|
|
|
secret: process.env.DISCORD_SECRET,
|
|
|
|
},
|
|
|
|
},
|
|
|
|
name: 'discord',
|
|
|
|
scope: ['identify'],
|
|
|
|
startRedirectPath: '/auth/login',
|
|
|
|
});
|
|
|
|
|
|
|
|
// cookies plugin
|
|
|
|
fastify.register(require('@fastify/cookie'));
|
|
|
|
|
|
|
|
// jwt plugin
|
|
|
|
fastify.register(require('@fastify/jwt'), {
|
|
|
|
cookie: {
|
|
|
|
cookieName: 'token',
|
|
|
|
signed: false,
|
|
|
|
},
|
2022-05-07 20:28:38 +03:00
|
|
|
// secret: randomBytes(16).toString('hex'),
|
2022-07-16 01:19:42 +03:00
|
|
|
secret: process.env.ENCRYPTION_KEY,
|
2022-05-06 23:17:53 +03:00
|
|
|
});
|
|
|
|
|
|
|
|
// auth
|
|
|
|
fastify.decorate('authenticate', async (req, res) => {
|
|
|
|
try {
|
|
|
|
const data = await req.jwtVerify();
|
2022-07-16 01:19:42 +03:00
|
|
|
// if (data.payload.expiresAt < Date.now()) res.redirect('/auth/login');
|
|
|
|
if (data.payload.expiresAt < Date.now()) {
|
|
|
|
return res.code(401).send({
|
|
|
|
error: 'Unauthorised',
|
|
|
|
message: 'You are not authenticated.',
|
|
|
|
statusCode: 401,
|
|
|
|
|
|
|
|
});
|
|
|
|
}
|
2022-05-06 23:17:53 +03:00
|
|
|
} catch (err) {
|
|
|
|
res.send(err);
|
|
|
|
}
|
|
|
|
});
|
|
|
|
|
2022-05-07 20:28:38 +03:00
|
|
|
fastify.decorate('isAdmin', async (req, res) => {
|
|
|
|
try {
|
|
|
|
const userId = req.user.payload.id;
|
|
|
|
const guildId = req.params.guild;
|
|
|
|
const guild = client.guilds.cache.get(guildId);
|
2022-07-16 01:19:42 +03:00
|
|
|
if (!guild) {
|
|
|
|
return res.code(404).send({
|
|
|
|
error: 'Not Found',
|
|
|
|
message: 'The requested resource could not be found.',
|
|
|
|
statusCode: 404,
|
2022-05-07 20:28:38 +03:00
|
|
|
|
2022-07-16 01:19:42 +03:00
|
|
|
});
|
|
|
|
}
|
|
|
|
const guildMember = await guild.members.fetch(userId);
|
|
|
|
const isAdmin = guildMember?.permissions.has('MANAGE_GUILD');
|
|
|
|
if (!guildMember || !isAdmin) {
|
|
|
|
return res.code(403).send({
|
|
|
|
error: 'Forbidden',
|
|
|
|
message: 'You are not permitted for this action.',
|
|
|
|
statusCode: 403,
|
2022-05-07 20:28:38 +03:00
|
|
|
|
|
|
|
});
|
|
|
|
}
|
|
|
|
} catch (err) {
|
|
|
|
res.send(err);
|
|
|
|
}
|
|
|
|
});
|
|
|
|
|
2022-05-06 23:17:53 +03:00
|
|
|
// logging
|
2022-05-06 02:12:38 +03:00
|
|
|
fastify.addHook('onResponse', (req, res, done) => {
|
|
|
|
done();
|
|
|
|
const status = (res.statusCode >= 500
|
|
|
|
? '&4'
|
|
|
|
: res.statusCode >= 400
|
|
|
|
? '&6'
|
|
|
|
: res.statusCode >= 300
|
|
|
|
? '&3'
|
|
|
|
: res.statusCode >= 200
|
|
|
|
? '&2'
|
|
|
|
: '&f') + res.statusCode;
|
|
|
|
let response_time = res.getResponseTime().toFixed(2);
|
|
|
|
response_time = (response_time >= 20
|
|
|
|
? '&c'
|
|
|
|
: response_time >= 5
|
|
|
|
? '&e'
|
|
|
|
: '&a') + response_time + 'ms';
|
|
|
|
client.log.info.http(short(`${req.ip} ${req.method} ${req.routerPath ?? '*'} &m-+>&r ${status}&b in ${response_time}`));
|
2022-05-06 23:17:53 +03:00
|
|
|
done();
|
2022-05-06 02:12:38 +03:00
|
|
|
});
|
|
|
|
|
2022-05-06 23:17:53 +03:00
|
|
|
fastify.addHook('onError', async (req, res, err) => client.log.error.http(err));
|
|
|
|
|
|
|
|
// route loading
|
2022-05-06 02:01:19 +03:00
|
|
|
const dir = join(__dirname, '/routes');
|
|
|
|
|
2022-07-18 15:34:29 +03:00
|
|
|
files(dir, {
|
|
|
|
exclude: /^\./,
|
|
|
|
match: /.js$/,
|
|
|
|
sync: true,
|
|
|
|
}).forEach(file => {
|
|
|
|
const path = file
|
|
|
|
.substring(0, file.length - 3) // remove `.js`
|
|
|
|
.substring(dir.length) // remove higher directories
|
|
|
|
.replace(/\[(\w+)\]/gi, ':$1') // convert [] to :
|
|
|
|
.replace('/index', '') || '/'; // remove index
|
|
|
|
const route = require(file);
|
|
|
|
|
|
|
|
Object.keys(route).forEach(method => fastify.route({
|
|
|
|
config: { client },
|
|
|
|
method: method.toUpperCase(),
|
|
|
|
path,
|
|
|
|
...route[method](fastify),
|
|
|
|
})); // register route
|
|
|
|
});
|
2022-05-06 02:01:19 +03:00
|
|
|
|
2022-07-18 15:34:29 +03:00
|
|
|
// start server
|
|
|
|
fastify.listen({ port: process.env.HTTP_BIND }, (err, addr) => {
|
|
|
|
if (err) client.log.error.http(err);
|
|
|
|
else client.log.success.http(`Listening at ${addr}`);
|
|
|
|
});
|
2022-05-06 02:01:19 +03:00
|
|
|
};
|