cobalt-7/src/cobalt.js

180 lines
7.7 KiB
JavaScript
Raw Normal View History

2022-07-08 18:17:56 +00:00
import "dotenv/config"
import express from "express";
import cors from "cors";
2022-07-08 18:17:56 +00:00
import * as fs from "fs";
import rateLimit from "express-rate-limit";
2022-07-17 11:21:51 +00:00
import { shortCommit } from "./modules/sub/currentCommit.js";
import { appName, genericUserAgent, version } from "./modules/config.js";
2022-07-08 18:17:56 +00:00
import { getJSON } from "./modules/api.js";
import renderPage from "./modules/pageRender/page.js";
import { apiJSON, checkJSONPost, languageCode } from "./modules/sub/utils.js";
import { Bright, Cyan, Green, Red } from "./modules/sub/consoleText.js";
2022-07-08 18:17:56 +00:00
import stream from "./modules/stream/stream.js";
import loc from "./localization/manager.js";
import { buildFront } from "./modules/build.js";
2022-09-11 15:04:06 +00:00
import { changelogHistory } from "./modules/pageRender/onDemand.js";
import { sha256 } from "./modules/sub/crypto.js";
2022-07-08 18:17:56 +00:00
const commitHash = shortCommit();
2022-07-08 18:17:56 +00:00
const app = express();
app.disable('x-powered-by');
if (fs.existsSync('./.env') && process.env.selfURL && process.env.streamSalt && process.env.port) {
2022-07-08 18:17:56 +00:00
const apiLimiter = rateLimit({
2022-12-06 19:21:07 +00:00
windowMs: 1 * 60 * 1000,
max: 12,
2022-07-08 18:17:56 +00:00
standardHeaders: true,
legacyHeaders: false,
handler: (req, res, next, opt) => {
res.status(429).json({ "status": "error", "text": loc(languageCode(req), 'ErrorRateLimit') });
2022-07-08 18:17:56 +00:00
}
2022-12-06 19:21:07 +00:00
});
2022-07-08 18:17:56 +00:00
const apiLimiterStream = rateLimit({
2022-12-06 19:21:07 +00:00
windowMs: 1 * 60 * 1000,
max: 12,
2022-07-08 18:17:56 +00:00
standardHeaders: true,
legacyHeaders: false,
handler: (req, res, next, opt) => {
res.status(429).json({ "status": "error", "text": loc(languageCode(req), 'ErrorRateLimit') });
2022-07-08 18:17:56 +00:00
}
2022-12-06 19:21:07 +00:00
});
2022-07-08 18:17:56 +00:00
await buildFront();
2022-07-08 18:17:56 +00:00
app.use('/api/', apiLimiter);
app.use('/api/stream', apiLimiterStream);
app.use('/', express.static('./min'));
app.use('/', express.static('./src/front'));
2022-07-08 18:17:56 +00:00
app.use((req, res, next) => {
try {
decodeURIComponent(req.path)
}
2022-08-16 07:14:19 +00:00
catch (e) {
return res.redirect(process.env.selfURL);
2022-07-08 18:17:56 +00:00
}
next();
});
app.use((req, res, next) => {
if (req.header("user-agent") && req.header("user-agent").includes("Trident")) {
res.destroy()
}
next();
});
app.use('/api/json', express.json({
verify: (req, res, buf) => {
try {
JSON.parse(buf);
if (buf.length > 720) throw new Error();
if (req.header('Content-Type') != "application/json") res.status(500).json({ 'status': 'error', 'text': 'invalid content type header' })
if (req.header('Accept') != "application/json") res.status(500).json({ 'status': 'error', 'text': 'invalid accept header' })
} catch(e) {
res.status(500).json({ 'status': 'error', 'text': 'invalid json body.' })
}
}
}));
app.post('/api/:type', cors({ origin: process.env.selfURL, optionsSuccessStatus: 200 }), async (req, res) => {
try {
let ip = sha256(req.header('x-forwarded-for') ? req.header('x-forwarded-for') : req.ip.replace('::ffff:', ''), process.env.streamSalt);
switch (req.params.type) {
case 'json':
try {
let request = req.body;
let chck = checkJSONPost(request);
if (request.url && chck) {
chck["ip"] = ip;
2022-12-06 19:21:07 +00:00
let j = await getJSON(chck["url"], languageCode(req), chck)
res.status(j.status).json(j.body);
} else if (request.url && !chck) {
let j = apiJSON(3, { t: loc(languageCode(req), 'ErrorCouldntFetch') });
res.status(j.status).json(j.body);
} else {
2022-12-06 19:21:07 +00:00
let j = apiJSON(3, { t: loc(languageCode(req), 'ErrorNoLink') })
res.status(j.status).json(j.body);
}
} catch (e) {
res.status(500).json({ 'status': 'error', 'text': loc(languageCode(req), 'ErrorCantProcess') })
}
break;
default:
let j = apiJSON(0, { t: "unknown response type" })
res.status(j.status).json(j.body);
break;
}
} catch (e) {
res.status(500).json({ 'status': 'error', 'text': loc(languageCode(req), 'ErrorCantProcess') })
}
});
2022-12-17 11:31:31 +00:00
app.get('/api/:type', cors({ origin: process.env.selfURL, optionsSuccessStatus: 200 }), (req, res) => {
2022-07-08 18:17:56 +00:00
try {
let ip = sha256(req.header('x-forwarded-for') ? req.header('x-forwarded-for') : req.ip.replace('::ffff:', ''), process.env.streamSalt);
2022-07-08 18:17:56 +00:00
switch (req.params.type) {
case 'json':
2022-12-17 11:29:40 +00:00
res.status(405).json({ 'status': 'error', 'text': 'GET method for this request has been deprecated. see https://github.com/wukko/cobalt/blob/current/docs/API.md for up-to-date API documentation.' });
2022-07-08 18:17:56 +00:00
break;
case 'stream':
if (req.query.p) {
res.status(200).json({ "status": "continue" });
} else if (req.query.t && req.query.h && req.query.e) {
stream(res, ip, req.query.t, req.query.h, req.query.e);
2022-07-08 18:17:56 +00:00
} else {
2022-09-03 15:32:39 +00:00
let j = apiJSON(0, { t: "no stream id" })
2022-07-08 18:17:56 +00:00
res.status(j.status).json(j.body);
}
break;
2022-09-11 15:04:06 +00:00
case 'onDemand':
if (req.query.blockId) {
let blockId = req.query.blockId.slice(0, 3)
let r, j;
switch(blockId) {
case "0":
r = changelogHistory();
j = r ? apiJSON(3, { t: r }) : apiJSON(0, { t: "couldn't render this block" })
break;
default:
j = apiJSON(0, { t: "couldn't find a block with this id" })
break;
}
res.status(j.status).json(j.body);
} else {
let j = apiJSON(0, { t: "no block id" })
res.status(j.status).json(j.body);
}
break;
2022-07-08 18:17:56 +00:00
default:
2022-09-11 15:04:06 +00:00
let j = apiJSON(0, { t: "unknown response type" })
2022-07-08 18:17:56 +00:00
res.status(j.status).json(j.body);
break;
}
} catch (e) {
res.status(500).json({ 'status': 'error', 'text': loc(languageCode(req), 'ErrorCantProcess') })
2022-07-08 18:17:56 +00:00
}
});
2022-09-01 13:51:18 +00:00
app.get("/api", (req, res) => {
2022-07-08 18:17:56 +00:00
res.redirect('/api/json')
});
2022-09-01 13:51:18 +00:00
app.get("/", (req, res) => {
res.send(renderPage({
"hash": commitHash,
"type": "default",
"lang": languageCode(req),
"useragent": req.header('user-agent') ? req.header('user-agent') : genericUserAgent
}))
2022-07-08 18:17:56 +00:00
});
2022-09-01 13:51:18 +00:00
app.get("/favicon.ico", (req, res) => {
2022-07-08 18:17:56 +00:00
res.redirect('/icons/favicon.ico');
});
2022-09-01 13:51:18 +00:00
app.get("/*", (req, res) => {
2022-07-08 18:17:56 +00:00
res.redirect('/')
});
app.listen(process.env.port, () => {
let startTime = new Date();
console.log(`\n${Cyan(appName)} ${Bright(`v.${version}-${commitHash}`)}\nStart time: ${Bright(`${startTime.toUTCString()} (${Math.floor(new Date().getTime())})`)}\n\nURL: ${Cyan(`${process.env.selfURL}`)}\nPort: ${process.env.port}\n`)
2022-07-08 18:17:56 +00:00
});
} else {
console.log(Red(`cobalt hasn't been configured yet or configuration is invalid.\n`) + Bright(`please run the setup script to fix this: `) + Green(`npm run setup`))
}