mirror of
https://github.com/AlecM33/Werewolf.git
synced 2025-12-26 15:57:50 +01:00
74 lines
2.3 KiB
JavaScript
74 lines
2.3 KiB
JavaScript
const express = require('express');
|
|
const router = express.Router();
|
|
const debugMode = Array.from(process.argv.map((arg) => arg.trim().toLowerCase())).includes('debug');
|
|
const logger = require('../modules/Logger')(debugMode);
|
|
const socketManager = new (require('../modules/SocketManager.js'))().getInstance();
|
|
const gameManager = new (require('../modules/GameManager.js'))().getInstance();
|
|
const globals = require('../config/globals.js');
|
|
const cors = require('cors');
|
|
const rateLimit = require('express-rate-limit').default;
|
|
|
|
const KEY = process.env.NODE_ENV.trim() === 'development'
|
|
? globals.MOCK_AUTH
|
|
: process.env.ADMIN_KEY;
|
|
|
|
const apiLimiter = rateLimit({
|
|
windowMs: 60000,
|
|
max: 50,
|
|
standardHeaders: true,
|
|
legacyHeaders: false
|
|
});
|
|
|
|
if (process.env.NODE_ENV.trim() === 'production') {
|
|
router.use(apiLimiter);
|
|
}
|
|
|
|
router.use(cors(globals.CORS));
|
|
|
|
router.use((req, res, next) => {
|
|
req.accepts();
|
|
if (isAuthorized(req)) {
|
|
next();
|
|
} else {
|
|
res.status(401).send('You are not authorized to make this request.');
|
|
}
|
|
});
|
|
|
|
router.post('/sockets/broadcast', (req, res, next) => {
|
|
globals.CONTENT_TYPE_VALIDATOR(req, res, next);
|
|
});
|
|
router.put('/games/state', (req, res, next) => {
|
|
globals.CONTENT_TYPE_VALIDATOR(req, res, next);
|
|
});
|
|
|
|
// TODO: implement client-side display of this message.
|
|
router.post('/sockets/broadcast', function (req, res) {
|
|
logger.info('admin user broadcasting message: ' + req.body?.message);
|
|
socketManager.broadcast(req.body?.message);
|
|
res.status(201).send('Broadcasted message to all connected sockets: ' + req.body?.message);
|
|
});
|
|
|
|
router.get('/games/state', function (req, res) {
|
|
res.status(200).send(gameManager.activeGameRunner.activeGames);
|
|
});
|
|
|
|
router.put('/games/state', function (req, res) {
|
|
// TODO: validate the JSON object sent - ones that don't match the expected model could break the application.
|
|
gameManager.activeGameRunner.activeGames = req.body;
|
|
res.status(201).send(gameManager.activeGameRunner.activeGames);
|
|
});
|
|
|
|
/* validates Bearer Auth */
|
|
function isAuthorized (req) {
|
|
const header = req.headers.authorization;
|
|
if (header) {
|
|
const token = header.split(/\s+/).pop() || '';
|
|
const decodedToken = Buffer.from(token, 'base64').toString();
|
|
return decodedToken.trim() === KEY.trim();
|
|
}
|
|
|
|
return false;
|
|
}
|
|
|
|
module.exports = router;
|