Git_Mirror/Werewolf
1
0
Fork 0
mirror of https://github.com/AlecM33/Werewolf.git synced 2025-12-26 15:57:50 +01:00
Code Issues Packages Projects Releases Wiki Activity
Files
1ac9d6ffccdf0e9ab42f855fafef2886923f9e4d
Werewolf/server/api/AdminAPI.js
AlecM33 09d146f970 remove extraneous call
2022-07-05 21:56:41 -04:00

73 lines
2.3 KiB
JavaScript
Raw Blame History

const express = require('express');
const router = express.Router();
const debugMode = Array.from(process.argv.map((arg) => arg.trim().toLowerCase())).includes('debug');
const logger = require('../modules/Logger')(debugMode);
const socketManager = new (require('../modules/SocketManager.js'))().getInstance();
const gameManager = new (require('../modules/GameManager.js'))().getInstance();
const globals = require('../config/globals.js');
const cors = require('cors');
const rateLimit = require('express-rate-limit').default;
const KEY = process.env.NODE_ENV.trim() === 'development'
? globals.MOCK_AUTH
: process.env.ADMIN_KEY;
const apiLimiter = rateLimit({
windowMs: 60000,
max: 50,
standardHeaders: true,
legacyHeaders: false
});
if (process.env.NODE_ENV.trim() === 'production') {
router.use(apiLimiter);
}
router.use(cors(globals.CORS));
router.use((req, res, next) => {
if (isAuthorized(req)) {
next();
} else {
res.status(401).send('You are not authorized to make this request.');
}
});
router.post('/sockets/broadcast', (req, res, next) => {
globals.CONTENT_TYPE_VALIDATOR(req, res, next);
});
router.put('/games/state', (req, res, next) => {
globals.CONTENT_TYPE_VALIDATOR(req, res, next);
});
// TODO: implement client-side display of this message.
router.post('/sockets/broadcast', function (req, res) {
logger.info('admin user broadcasting message: ' + req.body?.message);
socketManager.broadcast(req.body?.message);
res.status(201).send('Broadcasted message to all connected sockets: ' + req.body?.message);
});
router.get('/games/state', function (req, res) {
res.status(200).send(gameManager.activeGameRunner.activeGames);
});
router.put('/games/state', function (req, res) {
// TODO: validate the JSON object sent - ones that don't match the expected model could break the application.
gameManager.activeGameRunner.activeGames = req.body;
res.status(201).send(gameManager.activeGameRunner.activeGames);
});
/* validates Bearer Auth */
function isAuthorized (req) {
const header = req.headers.authorization;
if (header) {
const token = header.split(/\s+/).pop() || '';
const decodedToken = Buffer.from(token, 'base64').toString();
return decodedToken.trim() === KEY.trim();
}
return false;
}
module.exports = router;
Reference in New Issue View Git Blame Copy Permalink