mirror of
https://github.com/Hessenuk/DiscordTickets.git
synced 2024-06-25 07:57:28 +03:00
181 lines
5.0 KiB
JavaScript
181 lines
5.0 KiB
JavaScript
const fastify = require('fastify')({ trustProxy: process.env.HTTP_TRUST_PROXY === 'true' });
|
|
const oauth = require('@fastify/oauth2');
|
|
const { randomBytes } = require('crypto');
|
|
const { short } = require('leeks.js');
|
|
const { join } = require('path');
|
|
const { files } = require('node-dir');
|
|
const { PermissionsBitField } = require('discord.js');
|
|
|
|
process.env.ORIGIN = process.env.HTTP_EXTERNAL;
|
|
|
|
module.exports = async client => {
|
|
// oauth2 plugin
|
|
fastify.states = new Map();
|
|
fastify.register(oauth, {
|
|
callbackUri: `${process.env.HTTP_EXTERNAL}/auth/callback`,
|
|
checkStateFunction: (state, callback) => {
|
|
if (fastify.states.has(state)) {
|
|
callback();
|
|
return;
|
|
}
|
|
callback(new Error('Invalid state'));
|
|
},
|
|
credentials: {
|
|
auth: oauth.DISCORD_CONFIGURATION,
|
|
client: {
|
|
id: client.user.id,
|
|
secret: process.env.DISCORD_SECRET,
|
|
},
|
|
},
|
|
generateStateFunction: req => {
|
|
const state = randomBytes(12).toString('hex');
|
|
fastify.states.set(state, req.query.r);
|
|
return state;
|
|
},
|
|
name: 'discord',
|
|
scope: ['applications.commands.permissions.update', 'guilds', 'identify'],
|
|
startRedirectPath: '/auth/login',
|
|
});
|
|
|
|
// cookies plugin
|
|
fastify.register(require('@fastify/cookie'));
|
|
|
|
// jwt plugin
|
|
fastify.register(require('@fastify/jwt'), {
|
|
cookie: {
|
|
cookieName: 'token',
|
|
signed: false,
|
|
},
|
|
secret: process.env.ENCRYPTION_KEY,
|
|
});
|
|
|
|
// auth
|
|
fastify.decorate('authenticate', async (req, res) => {
|
|
try {
|
|
const data = await req.jwtVerify();
|
|
if (data.expiresAt < Date.now()) throw 'expired';
|
|
if (data.createdAt < new Date(process.env.INVALIDATE_TOKENS).getTime()) throw 'expired';
|
|
} catch (error) {
|
|
return res.code(401).send({
|
|
error: 'Unauthorised',
|
|
message: error === 'expired' ? 'Your token has expired; please re-authenticate.' : 'You are not authenticated.',
|
|
statusCode: 401,
|
|
});
|
|
}
|
|
});
|
|
|
|
fastify.decorate('isAdmin', async (req, res) => {
|
|
try {
|
|
const userId = req.user.id;
|
|
const guildId = req.params.guild;
|
|
const guild = client.guilds.cache.get(guildId);
|
|
if (!guild) {
|
|
return res.code(404).send({
|
|
error: 'Not Found',
|
|
message: 'The requested resource could not be found.',
|
|
statusCode: 404,
|
|
|
|
});
|
|
}
|
|
const guildMember = await guild.members.fetch(userId);
|
|
const isAdmin = guildMember?.permissions.has(PermissionsBitField.Flags.ManageGuild) || client.supers.includes(userId);
|
|
if (!isAdmin) {
|
|
return res.code(403).send({
|
|
error: 'Forbidden',
|
|
message: 'You are not permitted for this action.',
|
|
statusCode: 403,
|
|
|
|
});
|
|
}
|
|
} catch (err) {
|
|
res.send(err);
|
|
}
|
|
});
|
|
|
|
// body processing
|
|
fastify.addHook('preHandler', (req, res, done) => {
|
|
if (req.body && typeof req.body === 'object') {
|
|
for (const prop in req.body) {
|
|
if (typeof req.body[prop] === 'string') {
|
|
req.body[prop] = req.body[prop].trim();
|
|
}
|
|
}
|
|
}
|
|
done();
|
|
});
|
|
|
|
// logging
|
|
fastify.addHook('onResponse', (req, res, done) => {
|
|
done();
|
|
const status = (res.statusCode >= 500
|
|
? '&4'
|
|
: res.statusCode >= 400
|
|
? '&6'
|
|
: res.statusCode >= 300
|
|
? '&3'
|
|
: res.statusCode >= 200
|
|
? '&2'
|
|
: '&f') + res.statusCode;
|
|
let responseTime = res.getResponseTime().toFixed(2);
|
|
responseTime = (responseTime >= 100
|
|
? '&c'
|
|
: responseTime >= 10
|
|
? '&e'
|
|
: '&a') + responseTime + 'ms';
|
|
const level = req.routerPath === '/status'
|
|
? 'debug'
|
|
: req.routerPath === '/*'
|
|
? 'verbose'
|
|
: 'info';
|
|
client.log[level].http(short(`${req.id} ${req.ip} ${req.method} ${req.routerPath ?? '*'} &m-+>&r ${status}&b in ${responseTime}`));
|
|
if (!req.routerPath) client.log.verbose.http(`${req.id} ${req.method} ${req.url}`);
|
|
done();
|
|
});
|
|
|
|
fastify.addHook('onError', async (req, res, err) => client.log.error.http(req.id, err));
|
|
|
|
// route loading
|
|
const dir = join(__dirname, '/routes');
|
|
files(dir, {
|
|
exclude: /^\./,
|
|
match: /.js$/,
|
|
sync: true,
|
|
}).forEach(file => {
|
|
const path = file
|
|
.substring(0, file.length - 3) // remove `.js`
|
|
.substring(dir.length) // remove higher directories
|
|
.replace(/\\/g, '/') // replace `\` with `/` because Windows is stupid
|
|
.replace(/\[(\w+)\]/gi, ':$1') // convert [] to :
|
|
.replace('/index', '') || '/'; // remove index
|
|
const route = require(file);
|
|
|
|
Object.keys(route).forEach(method => fastify.route({
|
|
config: { client },
|
|
method: method.toUpperCase(),
|
|
path,
|
|
...route[method](fastify),
|
|
})); // register route
|
|
});
|
|
|
|
const { handler } = await import('@discord-tickets/settings/build/handler.js');
|
|
|
|
// https://stackoverflow.com/questions/72317071/how-to-set-up-fastify-correctly-so-that-sveltekit-works-fine
|
|
fastify.all('/*', {}, (req, res) => handler(req.raw, res.raw, () => { }));
|
|
|
|
// start the fastify server
|
|
fastify.listen({
|
|
host: process.env.HTTP_HOST,
|
|
port: process.env.HTTP_PORT,
|
|
}, (err, addr) => {
|
|
if (err) client.log.error.http(err);
|
|
else client.log.success.http(`Listening at ${addr}`);
|
|
});
|
|
|
|
process.on('sveltekit:error', ({
|
|
error,
|
|
errorId,
|
|
}) => {
|
|
client.log.error.http(`SvelteKit ${errorId} ${error}`);
|
|
});
|
|
};
|