env context and refactor api support different ports

2025-06-24 14:18:55 +02:00 · 2024-12-12 22:46:58 -05:00 · 2024-12-12 22:46:58 -05:00 · d3d2fe398b
commit d3d2fe398b
parent d79760dad9
35 changed files with 287 additions and 135 deletions
--- a/server/apiServer.ts
+++ b/server/apiServer.ts
@ -3,54 +3,71 @@ import cors from "cors";
 import cookieParser from "cookie-parser";
 import config from "@server/config";
 import logger from "@server/logger";
-import { errorHandlerMiddleware, notFoundMiddleware, rateLimitMiddleware } from "@server/middlewares";
+import {
+    errorHandlerMiddleware,
+    notFoundMiddleware,
+    rateLimitMiddleware,
+} from "@server/middlewares";
 import { authenticated, unauthenticated } from "@server/routers/external";
 import { router as wsRouter, handleWSUpgrade } from "@server/routers/ws";
 import { logIncomingMiddleware } from "./middlewares/logIncoming";
+import helmet from "helmet";

 const dev = process.env.ENVIRONMENT !== "prod";
 const externalPort = config.server.external_port;

 export function createApiServer() {
-  const apiServer = express();
-  
-  // Middleware setup
-  apiServer.set("trust proxy", 1);
-  apiServer.use(cors());
-  apiServer.use(cookieParser());
-  apiServer.use(express.json());
-  
-  if (!dev) {
-    apiServer.use(
-      rateLimitMiddleware({
-        windowMin: config.rate_limit.window_minutes,
-        max: config.rate_limit.max_requests,
-        type: "IP_ONLY",
-      })
-    );
-  }
+    const apiServer = express();

-  // API routes
-  const prefix = `/api/v1`;
-  apiServer.use(logIncomingMiddleware);
-  apiServer.use(prefix, unauthenticated);
-  apiServer.use(prefix, authenticated);
-  
-  // WebSocket routes
-  apiServer.use(prefix, wsRouter);
-  
-  // Error handling
-  apiServer.use(notFoundMiddleware);
-  apiServer.use(errorHandlerMiddleware);
+    // Middleware setup
+    apiServer.set("trust proxy", 1);
+    if (dev) {
+        apiServer.use(
+            cors({
+                origin: `http://localhost:${config.server.next_port}`,
+                credentials: true,
+            }),
+        );
+    } else {
+        apiServer.use(cors());
+        apiServer.use(helmet());
+    }
+    apiServer.use(cookieParser());
+    apiServer.use(express.json());

-  // Create HTTP server
-  const httpServer = apiServer.listen(externalPort, (err?: any) => {
-    if (err) throw err;
-    logger.info(`API server is running on http://localhost:${externalPort}`);
-  });
+    if (!dev) {
+        apiServer.use(
+            rateLimitMiddleware({
+                windowMin: config.rate_limit.window_minutes,
+                max: config.rate_limit.max_requests,
+                type: "IP_ONLY",
+            }),
+        );
+    }

-  // Handle WebSocket upgrades
-  handleWSUpgrade(httpServer);
+    // API routes
+    const prefix = `/api/v1`;
+    apiServer.use(logIncomingMiddleware);
+    apiServer.use(prefix, unauthenticated);
+    apiServer.use(prefix, authenticated);

-  return httpServer;
+    // WebSocket routes
+    apiServer.use(prefix, wsRouter);
+
+    // Error handling
+    apiServer.use(notFoundMiddleware);
+    apiServer.use(errorHandlerMiddleware);
+
+    // Create HTTP server
+    const httpServer = apiServer.listen(externalPort, (err?: any) => {
+        if (err) throw err;
+        logger.info(
+            `API server is running on http://localhost:${externalPort}`,
+        );
+    });
+
+    // Handle WebSocket upgrades
+    handleWSUpgrade(httpServer);
+
+    return httpServer;
 }