DiscordTickets/src/http.js

const fastify = require('fastify')();
const oauth = require('@fastify/oauth2');
const { short } = require('leeks.js');
const { join } = require('path');
const { files } = require('node-dir');

process.env.PUBLIC_HOST = process.env.API_EXTERNAL; // the SvelteKit app expects `PUBLIC_HOST`

module.exports = async client => {
	// cors plugin
	fastify.register(require('@fastify/cors'), {
		credentials: true,
		methods: ['DELETE', 'GET', 'PATCH', 'PUT', 'POST'],
		origin: true,
	});

	// oauth2 plugin
	fastify.register(oauth, {
		callbackUri: `${process.env.API_EXTERNAL}/auth/callback`,
		credentials: {
			auth: oauth.DISCORD_CONFIGURATION,
			client: {
				id: client.user.id,
				secret: process.env.DISCORD_SECRET,
			},
		},
		name: 'discord',
		scope: ['identify'],
		startRedirectPath: '/auth/login',
	});

	// cookies plugin
	fastify.register(require('@fastify/cookie'));

	// jwt plugin
	fastify.register(require('@fastify/jwt'), {
		cookie: {
			cookieName: 'token',
			signed: false,
		},
		secret: process.env.ENCRYPTION_KEY,
	});

	// auth
	fastify.decorate('authenticate', async (req, res) => {
		try {
			const data = await req.jwtVerify();
			if (data.payload.expiresAt < Date.now()) {
				return res.code(401).send({
					error: 'Unauthorised',
					message: 'You are not authenticated.',
					statusCode: 401,

				});
			}
		} catch (err) {
			res.send(err);
		}
	});

	fastify.decorate('isAdmin', async (req, res) => {
		try {
			const userId = req.user.payload.id;
			const guildId = req.params.guild;
			const guild = client.guilds.cache.get(guildId);
			if (!guild) {
				return res.code(404).send({
					error: 'Not Found',
					message: 'The requested resource could not be found.',
					statusCode: 404,

				});
			}
			const guildMember = await guild.members.fetch(userId);
			const isAdmin = guildMember?.permissions.has('MANAGE_GUILD') || client.supers.includes(userId);
			if (!isAdmin) {
				return res.code(403).send({
					error: 'Forbidden',
					message: 'You are not permitted for this action.',
					statusCode: 403,

				});
			}
		} catch (err) {
			res.send(err);
		}
	});

	// body processing
	fastify.addHook('preHandler', (req, res, done) => {
		if (req.body && typeof req.body === 'object') {
			for (const prop in req.body) {
				if (typeof req.body[prop] === 'string') {
					req.body[prop] = req.body[prop].trim();
				}
			}
		}
		done();
	});

	// logging
	fastify.addHook('onResponse', (req, res, done) => {
		done();
		const status = (res.statusCode >= 500
			? '&4'
			: res.statusCode >= 400
				? '&6'
				: res.statusCode >= 300
					? '&3'
					: res.statusCode >= 200
						? '&2'
						: '&f') + res.statusCode;
		let responseTime = res.getResponseTime().toFixed(2);
		responseTime = (responseTime >= 20
			? '&c'
			: responseTime >= 5
				? '&e'
				: '&a') + responseTime + 'ms';
		client.log.info.http(short(`API ${req.ip} ${req.method} ${req.routerPath ?? '*'} &m-+>&r ${status}&b in ${responseTime}`));
		done();
	});

	fastify.addHook('onError', async (req, res, err) => client.log.error.http(err));

	// route loading
	const dir = join(__dirname, '/routes');

	files(dir, {
		exclude: /^\./,
		match: /.js$/,
		sync: true,
	}).forEach(file => {
		const path = file
			.substring(0, file.length - 3) // remove `.js`
			.substring(dir.length) // remove higher directories
			.replace(/\\/g, '/') // replace `\` with `/` because Windows is stupid
			.replace(/\[(\w+)\]/gi, ':$1') // convert [] to :
			.replace('/index', '') || '/'; // remove index
		const route = require(file);

		Object.keys(route).forEach(method => fastify.route({
			config: { client },
			method: method.toUpperCase(),
			path,
			...route[method](fastify),
		})); // register route
	});

	// start server
	fastify.listen({ port: process.env.API_BIND }, (err, addr) => {
		if (err) client.log.error.http(err);
		else client.log.success.http(`API Listening at ${addr}`);
	});

	const express = require('express')();
	const { handler } = await import('@discord-tickets/settings/build/handler.js');
	express.get('/api/client', (req, res) => {
		res.end('ok');
	});
	express.use((req, res, next) => {
		next();
		// req.route?.path  ?? '*'
		client.log.verbose.http(short(`SETTINGS ${req.ip} ${req.method} ${req.path}`)); // verbose because little information & SvelteKit is very spammy (lots of routes)
	});
	express.use(handler);
	express.listen(process.env.SETTINGS_BIND, () => {
		client.log.success.http(`SETTINGS Listening at ${process.env.SETTINGS_BIND}`);
	});
};
Start on API 2022-05-06 02:01:19 +03:00			`const fastify = require('fastify')();`
Add authentication 2022-05-06 23:17:53 +03:00			`const oauth = require('@fastify/oauth2');`
Add logging 2022-05-06 02:12:38 +03:00			`const { short } = require('leeks.js');`
Start on API 2022-05-06 02:01:19 +03:00			`const { join } = require('path');`
Node v18, discord.js v14 2022-07-18 15:34:29 +03:00			`const { files } = require('node-dir');`
Start on API 2022-05-06 02:01:19 +03:00
Complete settings integration 2022-09-06 22:46:18 +03:00			process.env.PUBLIC_HOST = process.env.API_EXTERNAL; // the SvelteKit app expects `PUBLIC_HOST`
Integrate settings UI 2022-09-06 22:30:28 +03:00
Complete settings integration 2022-09-06 22:46:18 +03:00			`module.exports = async client => {`
Fix sqlite middleware 2022-09-04 21:55:32 +03:00			`// cors plugin`
Changes 2022-07-16 01:19:42 +03:00			`fastify.register(require('@fastify/cors'), {`
			`credentials: true,`
			`methods: ['DELETE', 'GET', 'PATCH', 'PUT', 'POST'],`
			`origin: true,`
			`});`

Add authentication 2022-05-06 23:17:53 +03:00			`// oauth2 plugin`
			`fastify.register(oauth, {`
Complete settings integration 2022-09-06 22:46:18 +03:00			callbackUri: `${process.env.API_EXTERNAL}/auth/callback`,
Add authentication 2022-05-06 23:17:53 +03:00			`credentials: {`
			`auth: oauth.DISCORD_CONFIGURATION,`
			`client: {`
			`id: client.user.id,`
			`secret: process.env.DISCORD_SECRET,`
			`},`
			`},`
			`name: 'discord',`
			`scope: ['identify'],`
			`startRedirectPath: '/auth/login',`
			`});`

			`// cookies plugin`
			`fastify.register(require('@fastify/cookie'));`

			`// jwt plugin`
			`fastify.register(require('@fastify/jwt'), {`
			`cookie: {`
			`cookieName: 'token',`
			`signed: false,`
			`},`
Changes 2022-07-16 01:19:42 +03:00			`secret: process.env.ENCRYPTION_KEY,`
Add authentication 2022-05-06 23:17:53 +03:00			`});`

			`// auth`
			`fastify.decorate('authenticate', async (req, res) => {`
			`try {`
			`const data = await req.jwtVerify();`
Changes 2022-07-16 01:19:42 +03:00			`if (data.payload.expiresAt < Date.now()) {`
			`return res.code(401).send({`
			`error: 'Unauthorised',`
			`message: 'You are not authenticated.',`
			`statusCode: 401,`

			`});`
			`}`
Add authentication 2022-05-06 23:17:53 +03:00			`} catch (err) {`
			`res.send(err);`
			`}`
			`});`

Update guilds route 2022-05-07 20:28:38 +03:00			`fastify.decorate('isAdmin', async (req, res) => {`
			`try {`
			`const userId = req.user.payload.id;`
			`const guildId = req.params.guild;`
			`const guild = client.guilds.cache.get(guildId);`
Changes 2022-07-16 01:19:42 +03:00			`if (!guild) {`
			`return res.code(404).send({`
			`error: 'Not Found',`
			`message: 'The requested resource could not be found.',`
			`statusCode: 404,`
Update guilds route 2022-05-07 20:28:38 +03:00
Changes 2022-07-16 01:19:42 +03:00			`});`
			`}`
			`const guildMember = await guild.members.fetch(userId);`
More fixes 2022-07-18 23:53:17 +03:00			`const isAdmin = guildMember?.permissions.has('MANAGE_GUILD') \|\| client.supers.includes(userId);`
			`if (!isAdmin) {`
Changes 2022-07-16 01:19:42 +03:00			`return res.code(403).send({`
			`error: 'Forbidden',`
			`message: 'You are not permitted for this action.',`
			`statusCode: 403,`
Update guilds route 2022-05-07 20:28:38 +03:00
			`});`
			`}`
			`} catch (err) {`
			`res.send(err);`
			`}`
			`});`

More fixes 2022-07-18 23:53:17 +03:00			`// body processing`
			`fastify.addHook('preHandler', (req, res, done) => {`
			`if (req.body && typeof req.body === 'object') {`
			`for (const prop in req.body) {`
			`if (typeof req.body[prop] === 'string') {`
			`req.body[prop] = req.body[prop].trim();`
			`}`
			`}`
			`}`
			`done();`
			`});`

Add authentication 2022-05-06 23:17:53 +03:00			`// logging`
Add logging 2022-05-06 02:12:38 +03:00			`fastify.addHook('onResponse', (req, res, done) => {`
			`done();`
			`const status = (res.statusCode >= 500`
			`? '&4'`
			`: res.statusCode >= 400`
			`? '&6'`
			`: res.statusCode >= 300`
			`? '&3'`
			`: res.statusCode >= 200`
			`? '&2'`
			`: '&f') + res.statusCode;`
Fix sqlite middleware 2022-09-04 21:55:32 +03:00			`let responseTime = res.getResponseTime().toFixed(2);`
			`responseTime = (responseTime >= 20`
Add logging 2022-05-06 02:12:38 +03:00			`? '&c'`
Fix sqlite middleware 2022-09-04 21:55:32 +03:00			`: responseTime >= 5`
Add logging 2022-05-06 02:12:38 +03:00			`? '&e'`
Fix sqlite middleware 2022-09-04 21:55:32 +03:00			`: '&a') + responseTime + 'ms';`
Complete settings integration 2022-09-06 22:46:18 +03:00			client.log.info.http(short(`API ${req.ip} ${req.method} ${req.routerPath ?? '*'} &m-+>&r ${status}&b in ${responseTime}`));
Add authentication 2022-05-06 23:17:53 +03:00			`done();`
Add logging 2022-05-06 02:12:38 +03:00			`});`

Add authentication 2022-05-06 23:17:53 +03:00			`fastify.addHook('onError', async (req, res, err) => client.log.error.http(err));`

			`// route loading`
Start on API 2022-05-06 02:01:19 +03:00			`const dir = join(__dirname, '/routes');`
Complete settings integration 2022-09-06 22:46:18 +03:00
Node v18, discord.js v14 2022-07-18 15:34:29 +03:00			`files(dir, {`
			`exclude: /^\./,`
			`match: /.js$/,`
			`sync: true,`
			`}).forEach(file => {`
			`const path = file`
			.substring(0, file.length - 3) // remove `.js`
			`.substring(dir.length) // remove higher directories`
fix: API not working on Windows 2022-08-26 01:35:17 +03:00			.replace(/\\/g, '/') // replace `\` with `/` because Windows is stupid
Node v18, discord.js v14 2022-07-18 15:34:29 +03:00			`.replace(/\[(\w+)\]/gi, ':$1') // convert [] to :`
			`.replace('/index', '') \|\| '/'; // remove index`
			`const route = require(file);`
Complete settings integration 2022-09-06 22:46:18 +03:00
Node v18, discord.js v14 2022-07-18 15:34:29 +03:00			`Object.keys(route).forEach(method => fastify.route({`
			`config: { client },`
			`method: method.toUpperCase(),`
			`path,`
			`...route[method](fastify),`
			`})); // register route`
			`});`
Start on API 2022-05-06 02:01:19 +03:00
Complete settings integration 2022-09-06 22:46:18 +03:00			`// start server`
			`fastify.listen({ port: process.env.API_BIND }, (err, addr) => {`
			`if (err) client.log.error.http(err);`
			else client.log.success.http(`API Listening at ${addr}`);
			`});`
Integrate settings UI 2022-09-06 22:30:28 +03:00
			`const express = require('express')();`
			`const { handler } = await import('@discord-tickets/settings/build/handler.js');`
			`express.get('/api/client', (req, res) => {`
			`res.end('ok');`
			`});`
Complete settings integration 2022-09-06 22:46:18 +03:00			`express.use((req, res, next) => {`
			`next();`
			`// req.route?.path ?? '*'`
			client.log.verbose.http(short(`SETTINGS ${req.ip} ${req.method} ${req.path}`)); // verbose because little information & SvelteKit is very spammy (lots of routes)
			`});`
Integrate settings UI 2022-09-06 22:30:28 +03:00			`express.use(handler);`
Complete settings integration 2022-09-06 22:46:18 +03:00			`express.listen(process.env.SETTINGS_BIND, () => {`
			client.log.success.http(`SETTINGS Listening at ${process.env.SETTINGS_BIND}`);
Node v18, discord.js v14 2022-07-18 15:34:29 +03:00			`});`
Start on API 2022-05-06 02:01:19 +03:00			`};`