TaskTracker/server.js at api · aashish-joshi/TaskTracker · GitHub

1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
import * as dotenv from 'dotenv';
dotenv.config();

import express from 'express';
import mongoose from 'mongoose';
import morgan from 'morgan';
import {sendJsonResponse, sendEmail} from './common/functions.js';
import {expressjwt} from 'express-jwt';
import {rateLimit} from 'express-rate-limit';
import hateoasLinker from 'express-hateoas-links';

// Routes
import {router as taskRouter} from './routes/taskRoutes.js';
import {router as authRouter} from './routes/authRoutes.js';

// Main API app
const app = express();
const port = process.env.PORT;

// API config
app.disable('x-powered-by');
app.use(morgan('combined'));
app.use(express.json());
mongoose.set('strictQuery', false);

const rateLimitTime = process.env.RATE_LIMIT_TIME || 15;
const rateLimitHits = process.env.RATE_LIMIT_HITS || 25;

const limiter = rateLimit({
  windowMs: rateLimitTime * 60 * 1000, // 15 minutes
  limit: rateLimitHits,
  standardHeaders: 'draft-7',
  legacyHeaders: false,
  message: {
    status: 'failed',
    data: '',
    message: 'Too many requests, please try again later.',
  },
});

app.use(limiter);
app.use(hateoasLinker);

// Configure routes

app.get('/', (req, res, next) => {
  sendJsonResponse(req, res, next, 200, '', 'Welcome to Task Tracker.', [
    {rel: 'self', method: 'GET', href: '/'},
    {rel: 'create-account', method: 'POST', href: '/auth/signup'},
    {rel: 'create-token', method: 'POST', href: '/auth/token'},
  ]);
});

app.use(
    '/task',
    expressjwt({
      secret: process.env.JWT_SECRET,
      algorithms: [process.env.JWT_ALGO],
    }),
    taskRouter,
);
// app.use('/tasks', (req, res) => {
//   res.redirect(301, '/task');
// });
app.use('/auth', authRouter);

// Error handling
app.use(function(err, req, res, next) {
  console.log(err.name);
  if (err.name === 'UnauthorizedError') {
    res.status(401).json({
      status: 'failed',
      data: '',
      message: 'invalid token',
    });
  } else {
    console.log(err.name);
    res.status(500).json({
      status: 'failed',
      data: '',
      message: 'something went wrong',
    });
  }
});

// Connect to DB and start server
mongoose
    .connect(process.env.MONGO_URI, {dbName: 'tasks'})
    .then(() => {
      console.log('Connect to DB');
      app.listen(port, () => {
        console.log(`API started on port ${port}`);
      });
    })
    .catch((error) => console.log(error));