-
-
Notifications
You must be signed in to change notification settings - Fork 0
Expand file tree
/
Copy pathapp.js
More file actions
163 lines (142 loc) · 4.95 KB
/
Copy pathapp.js
File metadata and controls
163 lines (142 loc) · 4.95 KB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
// Load environment variables
require("dotenv").config();
var createError = require("http-errors");
var express = require("express");
var path = require("path");
var cookieParser = require("cookie-parser");
var logger = require("morgan");
var cors = require("cors");
var { corsOptions } = require("./config/cors.config");
var redisClient = require("./utils/redis_wrapper");
var apicache = require("apicache");
var cache = apicache.options({
redisClient,
respectCacheControl: false,
// Add origin to cache key to avoid CORS issues with cached responses
appendKey: (req, res) => req.headers.origin || "",
// Only cache successful responses. Excludes error statuses (a transient
// upstream failure would otherwise poison the 1-month TTL) and redirects
// from /api/download (their tokenized target URL expires in minutes).
statusCodes: { include: [200] },
}).middleware;
// Define routes
var indexRouter = require("./routes/index");
var catesRouter = require("./routes/cates");
var xyzPapersRouter = require("./routes/papers_gceguide_xyz");
var comPapersRouter = require("./routes/papers_gceguide_com");
var ppcoPapersRouter = require("./routes/pastpapers_co");
var ppcaPapersRouter = require("./routes/papacambridge_com");
var yearsRouter = require("./routes/years");
var downloadRouter = require("./routes/download");
var app = express();
// Trust Fly.io's edge proxy so req.protocol reflects X-Forwarded-Proto.
// Without this the paper-list endpoint builds http:// download URLs even
// when the original request was https, triggering mixed-content blocks
// when the frontend (https) renders the link.
app.set("trust proxy", true);
// Setup views
app.set("views", path.join(__dirname, "views"));
app.set("view engine", "jade");
// Setup middleware
// Apply CORS middleware with configuration from config file
app.use(cors(corsOptions));
// Custom middleware to handle CORS errors and provide debugging
app.use((req, res, next) => {
// Log CORS requests in development
if (process.env.NODE_ENV !== "production" && req.headers.origin) {
console.log(
`CORS Request from origin: ${req.headers.origin} to ${req.method} ${req.path}`
);
}
// Handle preflight requests that weren't caught by cors middleware
if (req.method === "OPTIONS") {
return res.sendStatus(200);
}
next();
});
app.use(logger("dev"));
app.use(express.json());
app.use(
express.urlencoded({
extended: false,
})
);
app.use(cookieParser());
// Skip cache for /api/download — it streams multi-MB binaries and uses a
// per-request tokenized upstream URL, neither of which belongs in apicache.
app.use(cache("1 month", (req) => !req.originalUrl.startsWith("/api/download")));
// Define routes
app.use("/api", indexRouter);
app.use("/api/cates", catesRouter);
app.use("/api/papers/xyz", xyzPapersRouter);
app.use("/api/papers/com", comPapersRouter);
app.use("/api/papers/ppco", ppcoPapersRouter);
app.use("/api/papers/ppca", ppcaPapersRouter);
app.use("/api/years", yearsRouter);
app.use("/api/download", downloadRouter);
app.get("/api/cache/clear", (_req, res) => {
res.json(apicache.clear());
});
// Catch 404 and forward to the error handler
app.use(function (_req, _res, next) {
next(createError(404));
});
// Error handler
app.use(function (err, req, res, _next) {
// Set locals, only providing error in development
res.locals.message = err.message;
res.locals.error = req.app.get("env") === "development" ? err : {};
// Check if this is a CORS error
if (err && err.message && err.message.includes("CORS")) {
return res.status(403).json({
error: "CORS Policy Error",
message:
process.env.NODE_ENV === "production"
? "Access denied by CORS policy"
: err.message,
origin: req.headers.origin || "not provided",
});
}
// Handle JSON responses for API routes
if (req.path.startsWith("/api")) {
return res.status(err.status || 500).json({
error: err.message || "Internal Server Error",
status: err.status || 500,
...(process.env.NODE_ENV !== "production" && { stack: err.stack }),
});
}
// Render the error page for non-API routes
res.status(err.status || 500);
res.render("error");
});
module.exports = app;
// var proxy = require("express-http-proxy");
// Delegate requests for directory listing to an external server
// app.use(
// "/case/cases",
// proxy("http://121.4.202.14", {
// proxyReqPathResolver: function (req) {
// return `/case/cases?cate=${req.query["cate"]}&sub=${req.query["sub"]}`;
// },
// })
// );
// Delegate requests for static files to an external server
// app.use(
// "/case/:cate/:sub/:paper",
// proxy("http://121.4.202.14", {
// proxyReqPathResolver: function (req) {
// return `/case/${req.params.cate}/${req.params.sub}/${encodeURI(
// req.params.paper
// )}`;
// },
// })
// );
// Delegate requests for remote file download to an external server
// app.use(
// "/download",
// proxy("http://121.4.202.14", {
// proxyReqPathResolver: function (req) {
// return `/download?filename=${encodeURI(req.query["filename"])}`;
// },
// })
// );