DataTransFront/worker.js at master · cagegit/DataTransFront

137 lines (130 loc) · 3.75 KB
'use strict';
const express = require('express');
const router = express.Router();
const fs = require('fs');
const https = require('https');
const bodyParser = require('body-parser');
const cookieParser = require('cookie-parser');
const expressValidator = require('express-validator');
const flash = require('connect-flash');
const session = require('express-session');
const passport = require('passport');
const favicon = require('serve-favicon');
const csrf = require('csurf');
const helmet = require('helmet');
const LocalStrategy = require('passport-local').Strategy;
const ejs =require('ejs');
const MySQLStore = require('express-mysql-session')(session);
let HTTP_PORT=7008;
let config = require('./config/config');
let sys_cfg = require('./routes/sys_config');
HTTP_PORT = sys_cfg.http_port;
const privateKey  = fs.readFileSync('pem/privatekey.pem','utf8');
const certificate = fs.readFileSync('pem/certificate.pem','utf8');
const credentials = {key: privateKey, cert: certificate};
let login = require('./routes/login');
let manager = require('./routes/manager_xml');
// Init App
let app = express();
 app.use(timeout(6000));
 app.use(haltOnTimedout);
app.set('sys_cfg',sys_cfg);
app.use(express.static(__dirname+'/app'));
app.use(favicon(__dirname + '/app/favicon.ico'));
app.use(router);
app.set('views', __dirname + '/server/views');
app.engine('html', ejs.renderFile);
app.set('view engine', 'html');
// BodyParser 中间件
app.use(bodyParser.json({ limit: '3mb' }));
app.use(bodyParser.urlencoded({extended: true,limit: '3mb'}));
app.use(cookieParser(config.cookie.secret));
let options = {
    host: 'localhost',
    port: sys_cfg.mysql_port,
    user: 'r7',
    password: 'r7',
    database: 'dip',
    schema: {
        tableName: 'T_AUTH_SESSIONS',
        columnNames: {
            session_id: 'session_id',
            expires: 'expires',
            data: 'data'
// Express Session
app.use(session({
    cookie: { maxAge: config.session.maxAge, httpOnly: true, secure: true},
    secret: config.session.secret,
    saveUninitialized: true,
    resave: true,
    rolling:true,
    store:new MySQLStore(options)
// Passport init
app.use(passport.initialize());
app.use(passport.session());
// Express Validator
app.use(expressValidator({
    errorFormatter: function(param, msg, value) {
        var namespace = param.split('.')
            , root    = namespace.shift()
            , formParam = root;
        while(namespace.length) {
            formParam += '[' + namespace.shift() + ']';
        return {
            param : formParam,
            msg   : msg,
            value : value
//helmet使用安全过滤
app.use(helmet());
app.use(helmet.noCache());
app.use(helmet.xssFilter());
app.use(helmet.hidePoweredBy());
app.use(helmet.referrerPolicy());
app.use(csrf({cookie: true }));
app.use(function (req, res, next) {
    res.cookie("XSRF-TOKEN",req.csrfToken());
    return next();
// // Connect Flash
app.use(flash());
app.use('/', login);
app.use('/dipserver', manager);
app.get('*', function (req, res) {
    res.redirect('/login');
app.use(function(req, res, next) {
    res.status(404).render('404',{
        title:'404 Page Not Found!'
app.use(function(err, req, res, next) {
    console.error(err);
    if (err.code === 'EBADCSRFTOKEN'){
         res.status(403).send('CSRF Attack!');
    } else {
         res.status(500).send('Something broke!');  
// app.listen(HTTP_PORT);
https.createServer(credentials, app).listen(HTTP_PORT);
console.log('Express started on 127.0.0.1:'+HTTP_PORT);
//console.log(process.env.NODE_ENV);
module.exports=app;
Provide feedback

Saved searches

Use saved searches to filter your results more quickly

FilesExpand file tree

worker.js

Latest commit

History

worker.js

File metadata and controls
