1 import serialize from 'serialize-javascript';
2 import express from 'express';
3 import { StaticRouter } from 'inferno-router';
4 import { renderToString } from 'inferno-server';
5 import { matchPath } from 'inferno-router';
6 import path from 'path';
7 import { App } from '../shared/components/app';
8 import { InitialFetchRequest, IsoData } from '../shared/interfaces';
9 import { routes } from '../shared/routes';
10 import IsomorphicCookie from 'isomorphic-cookie';
11 import { setAuth } from '../shared/utils';
12 import { GetSiteForm, LemmyHttp } from 'lemmy-js-client';
13 import process from 'process';
14 import { Helmet } from 'inferno-helmet';
15 import { initializeSite } from '../shared/initialize';
16 import { httpUri } from '../shared/env';
17 import { IncomingHttpHeaders } from 'http';
19 const server = express();
22 server.use(express.json());
23 server.use(express.urlencoded({ extended: false }));
24 server.use('/static', express.static(path.resolve('./dist')));
26 // server.use(cookieParser());
28 server.get('/*', async (req, res) => {
29 const activeRoute = routes.find(route => matchPath(req.path, route)) || {};
30 const context = {} as any;
31 let auth: string = IsomorphicCookie.load('jwt', req);
33 let getSiteForm: GetSiteForm = {};
34 setAuth(getSiteForm, auth);
36 let promises: Promise<any>[] = [];
38 let headers = setForwardedHeaders(req.headers);
40 let initialFetchReq: InitialFetchRequest = {
41 client: new LemmyHttp(httpUri, headers),
46 // Get site data first
47 let site = await initialFetchReq.client.getSite(getSiteForm);
50 if (activeRoute.fetchInitialData) {
51 promises.push(...activeRoute.fetchInitialData(initialFetchReq));
54 let routeData = await Promise.all(promises);
56 // Redirect to the 404 if there's an API error
57 if (routeData[0] && routeData[0].error) {
58 let errCode = routeData[0].error;
59 return res.redirect(`/404?err=${errCode}`);
62 let acceptLang = req.headers['accept-language']
63 ? req.headers['accept-language'].split(',')[0]
65 let lang = !!site.my_user
66 ? site.my_user.lang == 'browser'
71 let isoData: IsoData = {
79 <StaticRouter location={req.url} context={isoData}>
80 <App site={isoData.site} />
84 return res.redirect(context.url);
89 http-equiv="Content-Security-Policy"
90 content="default-src data:; connect-src * ws: wss:; frame-src *; img-src * data:; script-src 'self'; style-src 'self' 'unsafe-inline'"
94 const root = renderToString(wrapper);
95 const cspStr = process.env.LEMMY_EXTERNAL_HOST ? renderToString(cspHtml) : '';
96 const helmet = Helmet.renderStatic();
100 <html ${helmet.htmlAttributes.toString()} lang="en">
102 <script>window.isoData = ${serialize(isoData)}</script>
104 ${helmet.title.toString()}
105 ${helmet.meta.toString()}
107 <!-- Required meta tags -->
108 <meta name="Description" content="Lemmy">
109 <meta charset="utf-8">
110 <meta name="viewport" content="width=device-width, initial-scale=1, shrink-to-fit=no">
112 <!-- Content Security Policy -->
115 <!-- Web app manifest -->
116 <link rel="manifest" href="/static/assets/manifest.webmanifest">
119 <link rel="shortcut icon" type="image/svg+xml" href="/static/assets/icons/favicon.svg" />
120 <link rel="apple-touch-icon" href="/static/assets/icons/apple-touch-icon.png" />
123 <link rel="stylesheet" type="text/css" href="/static/styles/styles.css" />
125 <!-- Current theme and more -->
126 ${helmet.link.toString()}
129 <body ${helmet.bodyAttributes.toString()}>
131 <div class="alert alert-danger rounded-0" role="alert">
132 <b>Javascript is disabled. Actions will not work.</b>
136 <div id='root'>${root}</div>
137 <script defer src='/static/js/client.js'></script>
143 server.listen(port, () => {
144 console.log(`http://localhost:${port}`);
147 function setForwardedHeaders(
148 headers: IncomingHttpHeaders
149 ): { [key: string]: string } {
153 if (headers['x-real-ip']) {
154 out['x-real-ip'] = headers['x-real-ip'];
156 if (headers['x-forwarded-for']) {
157 out['x-forwarded-for'] = headers['x-forwarded-for'];
163 process.on('SIGINT', () => {
164 console.info('Interrupted');