mirror of
https://github.com/hexastack/hexabot
synced 2024-11-24 13:05:15 +00:00
95 lines
2.9 KiB
TypeScript
95 lines
2.9 KiB
TypeScript
/*
|
|
* Copyright © 2024 Hexastack. All rights reserved.
|
|
*
|
|
* Licensed under the GNU Affero General Public License v3.0 (AGPLv3) with the following additional terms:
|
|
* 1. The name "Hexabot" is a trademark of Hexastack. You may not use this name in derivative works without express written permission.
|
|
* 2. All derivative works must include clear attribution to the original creator and software, Hexastack and Hexabot, in a prominent location (e.g., in the software's "About" section, documentation, and README file).
|
|
*/
|
|
|
|
import { ValidationPipe } from '@nestjs/common';
|
|
import { NestFactory } from '@nestjs/core';
|
|
import bodyParser from 'body-parser';
|
|
import session from 'express-session';
|
|
import moduleAlias from 'module-alias';
|
|
import { resolveDynamicProviders } from 'nestjs-dynamic-providers';
|
|
import passport from 'passport';
|
|
|
|
moduleAlias.addAliases({
|
|
'@': __dirname,
|
|
});
|
|
|
|
import { AppModule } from './app.module';
|
|
import { config } from './config';
|
|
import { LoggerService } from './logger/logger.service';
|
|
import { seedDatabase } from './seeder';
|
|
import { swagger } from './swagger';
|
|
import { sessionStore } from './utils/constants/session-store';
|
|
import { ObjectIdPipe } from './utils/pipes/object-id.pipe';
|
|
|
|
async function bootstrap() {
|
|
const isProduction = config.env.toLowerCase().includes('prod');
|
|
|
|
await resolveDynamicProviders();
|
|
const app = await NestFactory.create(AppModule, {
|
|
bodyParser: false,
|
|
});
|
|
|
|
const rawBodyBuffer = (req, res, buf, encoding) => {
|
|
if (buf?.length) {
|
|
req.rawBody = buf.toString(encoding || 'utf8');
|
|
}
|
|
};
|
|
app.use(bodyParser.urlencoded({ verify: rawBodyBuffer, extended: true }));
|
|
app.use(bodyParser.json({ verify: rawBodyBuffer }));
|
|
|
|
app.enableCors({
|
|
origin: config.security.cors.allowOrigins,
|
|
methods: config.security.cors.methods,
|
|
credentials: config.security.cors.allowCredentials,
|
|
allowedHeaders: config.security.cors.headers.split(','),
|
|
});
|
|
app.useGlobalPipes(
|
|
new ValidationPipe({
|
|
whitelist: true,
|
|
transform: true,
|
|
// forbidNonWhitelisted: true,
|
|
}),
|
|
new ObjectIdPipe(),
|
|
);
|
|
app.use(
|
|
session({
|
|
name: config.session.name,
|
|
secret: config.session.secret,
|
|
proxy: config.security.trustProxy,
|
|
resave: true,
|
|
saveUninitialized: false,
|
|
store: sessionStore,
|
|
cookie: {
|
|
httpOnly: true,
|
|
secure: config.security.httpsEnabled,
|
|
path: '/',
|
|
maxAge: isProduction
|
|
? 1000 * 60 * 60 * 24 //prod 24h
|
|
: 1000 * 60 * 60, //dev 1h
|
|
},
|
|
}),
|
|
);
|
|
app.use(passport.initialize());
|
|
app.use(passport.session());
|
|
|
|
process.on('uncaughtException', (error) => {
|
|
if (error.stack.toLowerCase().includes('smtp'))
|
|
app.get(LoggerService).error('SMTP error', error.stack);
|
|
else throw error;
|
|
});
|
|
|
|
if (!isProduction) {
|
|
await seedDatabase(app);
|
|
swagger(app);
|
|
}
|
|
|
|
await app.listen(3000);
|
|
}
|
|
|
|
bootstrap();
|