forked from niccokunzmann/schulcloud-client
-
Notifications
You must be signed in to change notification settings - Fork 0
/
Copy pathapp.js
158 lines (135 loc) · 4.88 KB
/
app.js
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
const express = require('express');
const path = require('path');
const logger = require('morgan');
const cookieParser = require('cookie-parser');
const bodyParser = require('body-parser');
const compression = require('compression');
const session = require('express-session');
// template stuff
const handlebars = require('handlebars');
const layouts = require('handlebars-layouts');
const handlebarsWax = require('handlebars-wax');
const authHelper = require('./helpers/authentication');
const app = express();
app.use(compression());
app.set('trust proxy', true);
const themeName = process.env.SC_THEME || 'default';
// view engine setup
const handlebarsHelper = require('./helpers/handlebars');
const wax = handlebarsWax(handlebars)
.partials(path.join(__dirname, 'views/**/*.{hbs,js}'))
.helpers(layouts)
.helpers(handlebarsHelper.helpers);
wax.partials(path.join(__dirname, `theme/${themeName}/views/**/*.{hbs,js}`));
const viewDirs = [path.join(__dirname, 'views')];
viewDirs.unshift(path.join(__dirname, `theme/${themeName}/views/`));
app.set('views', viewDirs);
app.engine('hbs', wax.engine);
app.set('view engine', 'hbs');
app.set('view cache', true);
// uncomment after placing your favicon in /public
// app.use(favicon(path.join(__dirname, 'public', 'favicon.ico')));
app.use(logger('dev'));
app.use(bodyParser.json());
app.use(bodyParser.urlencoded({ extended: true }));
app.use(cookieParser());
app.use(express.static(path.join(__dirname, `build/${themeName}`)));
const sessionStore = new session.MemoryStore();
app.use(session({
cookie: { maxAge: 60000 },
store: sessionStore,
saveUninitialized: true,
resave: 'true',
secret: 'secret',
}));
const defaultBaseDir = (req, res) => {
let dir = process.env.DOCUMENT_BASE_DIR || 'https://s3.hidrive.strato.com/schul-cloud-hpi/';
dir += `${themeName}/`;
if (themeName === 'open' && res.locals && res.locals.currentUser && res.locals.currentUser.schoolId) {
// fixme currentUser missing here (after login)
dir += `${res.locals.currentUser.schoolId}/`;
}
return dir;
};
const defaultDocuments = require('./helpers/content/documents.json');
// set custom response header for ha proxy
if (process.env.KEEP_ALIVE) {
app.use((req, res, next) => {
res.setHeader('Connection', 'Keep-Alive');
next();
});
}
// Custom flash middleware
app.use(async (req, res, next) => {
if (!req.session.currentUser) {
await authHelper.populateCurrentUser(req, res).then(() => {
if (res.locals.currentUser) { // user is authenticated
req.session.currentUser = res.locals.currentUser;
req.session.save();
}
});
} else {
res.locals.currentUser = req.session.currentUser;
}
// if there's a flash message in the session request, make it available in the response, then delete it
res.locals.notification = req.session.notification;
res.locals.inline = req.query.inline || false;
res.locals.theme = {
title: process.env.SC_TITLE || 'HPI Schul-Cloud',
short_title: process.env.SC_SHORT_TITLE || 'Schul-Cloud',
documents: Object.assign({}, {
baseDir: defaultBaseDir(req, res),
privacy: process.env.PRIVACY_DOCUMENT
|| 'Onlineeinwilligung/Datenschutzerklaerung-Muster-Schulen-Onlineeinwilligung.pdf',
termsOfUse: process.env.TERMS_OF_USE_DOCUMENT
|| 'Onlineeinwilligung/Nutzungsordnung-HPI-Schule-Schueler-Onlineeinwilligung.pdf',
}, defaultDocuments),
federalstate: process.env.SC_FEDERALSTATE || 'Brandenburg',
};
res.locals.domain = process.env.SC_DOMAIN || false;
res.locals.production = req.app.get('env') === 'production';
delete req.session.notification;
next();
});
const methodOverride = require('method-override');
app.use(methodOverride('_method')); // for GET requests
app.use(methodOverride((req, res, next) => { // for POST requests
if (req.body && typeof req.body === 'object' && '_method' in req.body) {
// eslint-disable-next-line no-underscore-dangle
const method = req.body._method;
// eslint-disable-next-line no-underscore-dangle
delete req.body._method;
return method;
}
}));
// Initialize the modules and their routes
app.use(require('./controllers/'));
app.get('/', (req, res, next) => {
res.redirect('/login/');
});
// catch 404 and forward to error handler
app.use((req, res, next) => {
const err = new Error('Not Found');
err.status = 404;
next(err);
});
// error handler
app.use((err, req, res, next) => {
// set locals, only providing error in development
const status = err.status || err.statusCode || 500;
if (err.statusCode && err.error) {
res.setHeader('error-message', err.error.message);
res.locals.message = err.error.message;
} else {
res.locals.message = err.message;
}
res.locals.error = req.app.get('env') === 'development' ? err : { status };
if (res.locals.currentUser) res.locals.loggedin = true;
// render the error page
res.status(status);
res.render('lib/error', {
loggedin: res.locals.loggedin,
inline: res.locals.inline ? true : !res.locals.loggedin,
});
});
module.exports = app;