2014-01-06 19:31:30 -05:00
|
|
|
/**
|
|
|
|
* Module dependencies.
|
|
|
|
*/
|
2014-01-11 22:53:31 -05:00
|
|
|
|
2014-04-18 14:29:30 -04:00
|
|
|
var _ = require('underscore');
|
2013-11-30 00:28:30 -05:00
|
|
|
var express = require('express');
|
2014-04-12 12:43:07 -04:00
|
|
|
var cookieParser = require('cookie-parser');
|
|
|
|
var compress = require('compression');
|
|
|
|
var session = require('express-session');
|
|
|
|
var bodyParser = require('body-parser');
|
|
|
|
var favicon = require('static-favicon');
|
|
|
|
var logger = require('morgan');
|
|
|
|
var errorHandler = require('errorhandler');
|
2014-04-18 14:29:30 -04:00
|
|
|
var csrf = require('lusca').csrf();
|
2014-04-12 12:43:07 -04:00
|
|
|
var methodOverride = require('method-override');
|
|
|
|
|
|
|
|
var MongoStore = require('connect-mongo')({ session: session });
|
2014-01-28 20:02:45 +01:00
|
|
|
var flash = require('express-flash');
|
2013-12-19 20:17:15 -05:00
|
|
|
var path = require('path');
|
2013-11-30 00:28:30 -05:00
|
|
|
var mongoose = require('mongoose');
|
|
|
|
var passport = require('passport');
|
2014-01-23 22:18:35 -05:00
|
|
|
var expressValidator = require('express-validator');
|
2014-02-21 17:29:06 -05:00
|
|
|
var connectAssets = require('connect-assets');
|
2014-01-23 22:18:35 -05:00
|
|
|
|
2014-01-06 19:31:30 -05:00
|
|
|
/**
|
2014-01-13 04:24:31 -05:00
|
|
|
* Load controllers.
|
2014-01-06 19:31:30 -05:00
|
|
|
*/
|
2014-01-11 22:53:31 -05:00
|
|
|
|
2014-01-06 19:22:28 -05:00
|
|
|
var homeController = require('./controllers/home');
|
|
|
|
var userController = require('./controllers/user');
|
|
|
|
var apiController = require('./controllers/api');
|
|
|
|
var contactController = require('./controllers/contact');
|
2013-11-14 02:29:55 -05:00
|
|
|
|
2014-01-06 19:31:30 -05:00
|
|
|
/**
|
2014-01-13 04:24:31 -05:00
|
|
|
* API keys + Passport configuration.
|
2014-01-06 19:31:30 -05:00
|
|
|
*/
|
2014-01-11 22:53:31 -05:00
|
|
|
|
2013-12-20 01:31:16 -05:00
|
|
|
var secrets = require('./config/secrets');
|
2013-11-26 23:15:13 -05:00
|
|
|
var passportConf = require('./config/passport');
|
|
|
|
|
2014-02-02 05:38:38 -05:00
|
|
|
/**
|
|
|
|
* Create Express server.
|
|
|
|
*/
|
|
|
|
|
|
|
|
var app = express();
|
|
|
|
|
2014-01-11 22:53:31 -05:00
|
|
|
/**
|
2014-01-13 04:24:31 -05:00
|
|
|
* Mongoose configuration.
|
2014-01-11 22:53:31 -05:00
|
|
|
*/
|
2014-01-13 04:24:31 -05:00
|
|
|
|
2014-02-25 22:39:28 -05:00
|
|
|
mongoose.connect(secrets.db);
|
2014-01-11 22:53:31 -05:00
|
|
|
mongoose.connection.on('error', function() {
|
2014-02-03 07:36:55 -05:00
|
|
|
console.error('✗ MongoDB Connection Error. Please make sure MongoDB is running.');
|
2014-01-11 22:53:31 -05:00
|
|
|
});
|
2013-11-13 12:32:22 -05:00
|
|
|
|
2014-01-11 22:53:31 -05:00
|
|
|
/**
|
|
|
|
* Express configuration.
|
|
|
|
*/
|
2014-01-30 04:18:34 -05:00
|
|
|
|
|
|
|
var hour = 3600000;
|
2014-04-12 14:17:37 -04:00
|
|
|
var day = hour * 24;
|
|
|
|
var week = day * 7;
|
2014-01-30 04:18:34 -05:00
|
|
|
|
2014-04-18 14:29:30 -04:00
|
|
|
var csrfWhitelist = [
|
|
|
|
'/signup'
|
|
|
|
];
|
|
|
|
|
2014-01-11 22:53:31 -05:00
|
|
|
app.set('port', process.env.PORT || 3000);
|
|
|
|
app.set('views', path.join(__dirname, 'views'));
|
|
|
|
app.set('view engine', 'jade');
|
2014-02-21 17:29:06 -05:00
|
|
|
app.use(connectAssets({
|
|
|
|
paths: ['public/css', 'public/js'],
|
2014-02-03 08:34:12 -05:00
|
|
|
helperContext: app.locals
|
|
|
|
}));
|
2014-04-12 12:43:07 -04:00
|
|
|
app.use(compress());
|
|
|
|
app.use(favicon());
|
|
|
|
app.use(logger('dev'));
|
|
|
|
app.use(bodyParser.json());
|
|
|
|
app.use(bodyParser.urlencoded());
|
2014-01-23 22:18:35 -05:00
|
|
|
app.use(expressValidator());
|
2014-04-12 12:43:07 -04:00
|
|
|
app.use(methodOverride());
|
|
|
|
app.use(cookieParser());
|
|
|
|
app.use(session({
|
2014-02-03 12:21:41 -05:00
|
|
|
secret: secrets.sessionSecret,
|
2014-01-29 00:49:09 -05:00
|
|
|
store: new MongoStore({
|
2014-02-26 02:35:57 -05:00
|
|
|
url: secrets.db,
|
2014-01-30 04:22:35 -05:00
|
|
|
auto_reconnect: true
|
2014-01-29 00:49:09 -05:00
|
|
|
})
|
|
|
|
}));
|
2014-01-11 22:53:31 -05:00
|
|
|
app.use(passport.initialize());
|
|
|
|
app.use(passport.session());
|
2014-04-18 14:29:30 -04:00
|
|
|
app.use(function(req, res, next) {
|
|
|
|
// Conditional CSRF.
|
|
|
|
if (_.contains(csrfWhitelist, req.path)) next();
|
|
|
|
else csrf(req, res, next);
|
|
|
|
});
|
2014-01-11 22:53:31 -05:00
|
|
|
app.use(function(req, res, next) {
|
|
|
|
res.locals.user = req.user;
|
2014-02-06 21:52:49 -06:00
|
|
|
res.locals.secrets = secrets;
|
2014-01-11 22:53:31 -05:00
|
|
|
next();
|
|
|
|
});
|
|
|
|
app.use(flash());
|
2014-04-12 14:17:37 -04:00
|
|
|
app.use(express.static(path.join(__dirname, 'public'), { maxAge: week }));
|
2014-03-08 14:58:27 -05:00
|
|
|
app.use(function(req, res, next) {
|
2014-04-18 14:29:30 -04:00
|
|
|
// Keep track of previous URL to redirect back to
|
|
|
|
// original destination after a successful login.
|
2014-03-08 14:58:27 -05:00
|
|
|
if (req.method !== 'GET') return next();
|
|
|
|
var path = req.path.split('/')[1];
|
2014-03-28 03:03:04 +05:30
|
|
|
if (/(auth|login|logout|signup)$/i.test(path)) return next();
|
2014-03-08 14:58:27 -05:00
|
|
|
req.session.returnTo = req.path;
|
|
|
|
next();
|
|
|
|
});
|
2014-01-08 01:37:40 -05:00
|
|
|
|
2014-01-11 22:53:31 -05:00
|
|
|
/**
|
2014-01-13 04:24:31 -05:00
|
|
|
* Application routes.
|
2014-01-11 22:53:31 -05:00
|
|
|
*/
|
2013-11-26 23:22:07 -05:00
|
|
|
|
2014-01-11 22:53:31 -05:00
|
|
|
app.get('/', homeController.index);
|
|
|
|
app.get('/login', userController.getLogin);
|
|
|
|
app.post('/login', userController.postLogin);
|
|
|
|
app.get('/logout', userController.logout);
|
2014-03-07 14:08:56 -05:00
|
|
|
app.get('/forgot', userController.getForgot);
|
|
|
|
app.post('/forgot', userController.postForgot);
|
|
|
|
app.get('/reset/:token', userController.getReset);
|
|
|
|
app.post('/reset/:token', userController.postReset);
|
2014-01-11 22:53:31 -05:00
|
|
|
app.get('/signup', userController.getSignup);
|
|
|
|
app.post('/signup', userController.postSignup);
|
|
|
|
app.get('/contact', contactController.getContact);
|
|
|
|
app.post('/contact', contactController.postContact);
|
|
|
|
app.get('/account', passportConf.isAuthenticated, userController.getAccount);
|
|
|
|
app.post('/account/profile', passportConf.isAuthenticated, userController.postUpdateProfile);
|
|
|
|
app.post('/account/password', passportConf.isAuthenticated, userController.postUpdatePassword);
|
|
|
|
app.post('/account/delete', passportConf.isAuthenticated, userController.postDeleteAccount);
|
|
|
|
app.get('/account/unlink/:provider', passportConf.isAuthenticated, userController.getOauthUnlink);
|
|
|
|
app.get('/api', apiController.getApi);
|
|
|
|
app.get('/api/lastfm', apiController.getLastfm);
|
|
|
|
app.get('/api/nyt', apiController.getNewYorkTimes);
|
|
|
|
app.get('/api/aviary', apiController.getAviary);
|
2014-02-05 21:04:02 +00:00
|
|
|
app.get('/api/steam', apiController.getSteam);
|
2014-03-31 16:00:51 -04:00
|
|
|
app.get('/api/stripe', apiController.getStripe);
|
2014-04-14 16:58:08 -04:00
|
|
|
app.post('/api/stripe', apiController.postStripe);
|
2014-02-05 19:57:29 -05:00
|
|
|
app.get('/api/scraping', apiController.getScraping);
|
2014-02-06 07:46:47 -05:00
|
|
|
app.get('/api/twilio', apiController.getTwilio);
|
2014-02-06 08:09:54 -05:00
|
|
|
app.post('/api/twilio', apiController.postTwilio);
|
2014-02-24 11:25:51 +00:00
|
|
|
app.get('/api/clockwork', apiController.getClockwork);
|
|
|
|
app.post('/api/clockwork', apiController.postClockwork);
|
2014-02-05 19:57:29 -05:00
|
|
|
app.get('/api/foursquare', passportConf.isAuthenticated, passportConf.isAuthorized, apiController.getFoursquare);
|
|
|
|
app.get('/api/tumblr', passportConf.isAuthenticated, passportConf.isAuthorized, apiController.getTumblr);
|
|
|
|
app.get('/api/facebook', passportConf.isAuthenticated, passportConf.isAuthorized, apiController.getFacebook);
|
|
|
|
app.get('/api/github', passportConf.isAuthenticated, passportConf.isAuthorized, apiController.getGithub);
|
|
|
|
app.get('/api/twitter', passportConf.isAuthenticated, passportConf.isAuthorized, apiController.getTwitter);
|
2014-02-10 19:21:54 -05:00
|
|
|
app.get('/api/venmo', passportConf.isAuthenticated, passportConf.isAuthorized, apiController.getVenmo);
|
2014-02-10 23:55:32 -05:00
|
|
|
app.post('/api/venmo', passportConf.isAuthenticated, passportConf.isAuthorized, apiController.postVenmo);
|
2014-02-27 17:56:46 -05:00
|
|
|
app.get('/api/linkedin', passportConf.isAuthenticated, passportConf.isAuthorized, apiController.getLinkedin);
|
2014-02-01 03:30:14 -05:00
|
|
|
|
|
|
|
/**
|
|
|
|
* OAuth routes for sign-in.
|
|
|
|
*/
|
|
|
|
|
2014-02-04 08:23:52 -08:00
|
|
|
app.get('/auth/facebook', passport.authenticate('facebook', { scope: ['email', 'user_location'] }));
|
2014-03-08 14:58:27 -05:00
|
|
|
app.get('/auth/facebook/callback', passport.authenticate('facebook', { failureRedirect: '/login' }), function(req, res) {
|
|
|
|
res.redirect(req.session.returnTo || '/');
|
|
|
|
});
|
2014-01-11 22:53:31 -05:00
|
|
|
app.get('/auth/github', passport.authenticate('github'));
|
2014-03-08 14:58:27 -05:00
|
|
|
app.get('/auth/github/callback', passport.authenticate('github', { failureRedirect: '/login' }), function(req, res) {
|
|
|
|
res.redirect(req.session.returnTo || '/');
|
|
|
|
});
|
2014-01-11 22:53:31 -05:00
|
|
|
app.get('/auth/google', passport.authenticate('google', { scope: 'profile email' }));
|
2014-03-08 14:58:27 -05:00
|
|
|
app.get('/auth/google/callback', passport.authenticate('google', { failureRedirect: '/login' }), function(req, res) {
|
|
|
|
res.redirect(req.session.returnTo || '/');
|
|
|
|
});
|
2014-01-11 22:53:31 -05:00
|
|
|
app.get('/auth/twitter', passport.authenticate('twitter'));
|
2014-03-08 14:58:27 -05:00
|
|
|
app.get('/auth/twitter/callback', passport.authenticate('twitter', { failureRedirect: '/login' }), function(req, res) {
|
|
|
|
res.redirect(req.session.returnTo || '/');
|
|
|
|
});
|
2014-02-27 13:14:09 -05:00
|
|
|
app.get('/auth/linkedin', passport.authenticate('linkedin', { state: 'SOME STATE' }));
|
2014-03-08 14:58:27 -05:00
|
|
|
app.get('/auth/linkedin/callback', passport.authenticate('linkedin', { failureRedirect: '/login' }), function(req, res) {
|
|
|
|
res.redirect(req.session.returnTo || '/');
|
|
|
|
});
|
2014-02-01 03:30:14 -05:00
|
|
|
|
|
|
|
/**
|
|
|
|
* OAuth routes for API examples that require authorization.
|
|
|
|
*/
|
|
|
|
|
2014-01-11 22:53:31 -05:00
|
|
|
app.get('/auth/foursquare', passport.authorize('foursquare'));
|
2014-01-30 04:18:34 -05:00
|
|
|
app.get('/auth/foursquare/callback', passport.authorize('foursquare', { failureRedirect: '/api' }), function(req, res) {
|
|
|
|
res.redirect('/api/foursquare');
|
|
|
|
});
|
2014-01-11 22:53:31 -05:00
|
|
|
app.get('/auth/tumblr', passport.authorize('tumblr'));
|
2014-01-30 04:18:34 -05:00
|
|
|
app.get('/auth/tumblr/callback', passport.authorize('tumblr', { failureRedirect: '/api' }), function(req, res) {
|
|
|
|
res.redirect('/api/tumblr');
|
|
|
|
});
|
2014-02-10 20:59:39 -05:00
|
|
|
app.get('/auth/venmo', passport.authorize('venmo', { scope: 'make_payments access_profile access_balance access_email access_phone' }));
|
2014-02-10 19:21:54 -05:00
|
|
|
app.get('/auth/venmo/callback', passport.authorize('venmo', { failureRedirect: '/api' }), function(req, res) {
|
|
|
|
res.redirect('/api/venmo');
|
|
|
|
});
|
2013-12-06 22:23:05 -05:00
|
|
|
|
2014-04-12 12:43:07 -04:00
|
|
|
|
|
|
|
// 404 error handler
|
|
|
|
app.use(function(req, res) {
|
|
|
|
res.status(404);
|
|
|
|
res.render('404');
|
|
|
|
});
|
|
|
|
|
|
|
|
// 500 error handler
|
|
|
|
app.use(errorHandler());
|
|
|
|
|
2014-02-05 19:57:29 -05:00
|
|
|
/**
|
|
|
|
* Start Express server.
|
|
|
|
*/
|
|
|
|
|
2014-01-11 22:53:31 -05:00
|
|
|
app.listen(app.get('port'), function() {
|
2014-03-28 03:12:57 +05:30
|
|
|
console.log("✔ Express server listening on port %d in %s mode", app.get('port'), app.get('env'));
|
2014-01-11 22:53:31 -05:00
|
|
|
});
|
2014-02-25 22:39:28 -05:00
|
|
|
|
|
|
|
module.exports = app;
|