hexabot/api/src/main.ts
2024-09-24 16:45:30 +05:30

92 lines
3.1 KiB
TypeScript

/*
* Copyright © 2024 Hexastack. All rights reserved.
*
* Licensed under the GNU Affero General Public License v3.0 (AGPLv3) with the following additional terms:
* 1. The name "Hexabot" is a trademark of Hexastack. You may not use this name in derivative works without express written permission.
* 2. All derivative works must include clear attribution to the original creator and software, Hexastack and Hexabot, in a prominent location (e.g., in the software's "About" section, documentation, and README file).
* 3. SaaS Restriction: This software, or any derivative of it, may not be used to offer a competing product or service (SaaS) without prior written consent from Hexastack. Offering the software as a service or using it in a commercial cloud environment without express permission is strictly prohibited.
*/
import { ValidationPipe } from '@nestjs/common';
import { NestFactory } from '@nestjs/core';
import bodyParser from 'body-parser';
import session from 'express-session';
import moduleAlias from 'module-alias';
import { resolveDynamicProviders } from 'nestjs-dynamic-providers';
import passport from 'passport';
moduleAlias.addAliases({
'@': __dirname,
});
import { AppModule } from './app.module';
import { config } from './config';
import { LoggerService } from './logger/logger.service';
import { swagger } from './swagger';
import { sessionStore } from './utils/constants/session-store';
import { ObjectIdPipe } from './utils/pipes/object-id.pipe';
async function bootstrap() {
const isProduction = config.env.toLowerCase().includes('prod');
await resolveDynamicProviders();
const app = await NestFactory.create(AppModule, {
bodyParser: false,
});
const rawBodyBuffer = (req, res, buf, encoding) => {
if (buf?.length) {
req.rawBody = buf.toString(encoding || 'utf8');
}
};
app.use(bodyParser.urlencoded({ verify: rawBodyBuffer, extended: true }));
app.use(bodyParser.json({ verify: rawBodyBuffer }));
app.enableCors({
origin: config.security.cors.allowOrigins,
methods: config.security.cors.methods,
credentials: config.security.cors.allowCredentials,
allowedHeaders: config.security.cors.headers.split(','),
});
app.useGlobalPipes(
new ValidationPipe({
whitelist: true,
transform: true,
// forbidNonWhitelisted: true,
}),
new ObjectIdPipe(),
);
app.use(
session({
name: config.session.name,
secret: config.session.secret,
proxy: config.security.trustProxy,
resave: true,
saveUninitialized: false,
store: sessionStore,
cookie: {
httpOnly: true,
secure: config.security.httpsEnabled,
path: '/',
maxAge: isProduction
? 1000 * 60 * 60 * 24 //prod 24h
: 1000 * 60 * 60, //dev 1h
},
}),
);
app.use(passport.initialize());
app.use(passport.session());
process.on('uncaughtException', (error) => {
if (error.stack.toLowerCase().includes('smtp'))
app.get(LoggerService).error('SMTP error', error.stack);
else throw error;
});
if (!isProduction) swagger(app);
await app.listen(3000);
}
bootstrap();