codecombat/server_setup.coffee

express = require 'express'
path = require 'path'
authentication = require 'passport'
useragent = require 'express-useragent'
fs = require 'graceful-fs'
log = require 'winston'
compressible = require 'compressible'
geoip = require 'geoip-lite'

database = require './server/commons/database'
baseRoute = require './server/routes/base'
user = require './server/users/user_handler'
logging = require './server/commons/logging'
config = require './server_config'
auth = require './server/routes/auth'
UserHandler = require './server/users/user_handler'
hipchat = require './server/hipchat'
global.tv4 = require 'tv4' # required for TreemaUtils to work
global.jsondiffpatch = require 'jsondiffpatch'
global.stripe = require('stripe')(config.stripe.secretKey)


productionLogging = (tokens, req, res) ->
  status = res.statusCode
  color = 32
  if status >= 500 then color = 31
  else if status >= 400 then color = 33
  else if status >= 300 then color = 36
  elapsed = (new Date()) - req._startTime
  elapsedColor = if elapsed < 500 then 90 else 31
  if (status isnt 200 and status isnt 201 and status isnt 204 and status isnt 304 and status isnt 302) or elapsed > 500
    return "\x1b[90m#{req.method} #{req.originalUrl} \x1b[#{color}m#{res.statusCode} \x1b[#{elapsedColor}m#{elapsed}ms\x1b[0m"
  null

developmentLogging = (tokens, req, res) ->
  status = res.statusCode
  color = 32
  if status >= 500 then color = 31
  else if status >= 400 then color = 33
  else if status >= 300 then color = 36
  elapsed = (new Date()) - req._startTime
  elapsedColor = if elapsed < 500 then 90 else 31
  "\x1b[90m#{req.method} #{req.originalUrl} \x1b[#{color}m#{res.statusCode} \x1b[#{elapsedColor}m#{elapsed}ms\x1b[0m"

setupErrorMiddleware = (app) ->
  app.use (err, req, res, next) ->
    if err
      if err.status and 400 <= err.status < 500
        res.status(err.status).send("Error #{err.status}")
        return
      res.status(err.status ? 500).send(error: "Something went wrong!")
      message = "Express error: #{req.method} #{req.path}: #{err.message}"
      log.error "#{message}, stack: #{err.stack}"
      hipchat.sendHipChatMessage(message, ['tower'], {papertrail: true})
    else
      next(err)

setupExpressMiddleware = (app) ->
  if config.isProduction
    express.logger.format('prod', productionLogging)
    app.use(express.logger('prod'))
    app.use express.compress filter: (req, res) ->
      return false if req.headers.host is 'codecombat.com'  # CloudFlare will gzip it for us on codecombat.com
      compressible res.getHeader('Content-Type')
  else
    express.logger.format('dev', developmentLogging)
    app.use(express.logger('dev'))
  app.use(express.static(path.join(__dirname, 'public'), maxAge: 0))  # CloudFlare overrides maxAge, and we don't want local development caching.
  app.use(useragent.express())

  app.use(express.favicon())
  app.use(express.cookieParser(config.cookie_secret))
  app.use(express.bodyParser())
  app.use(express.methodOverride())
  app.use(express.cookieSession({secret:'defenestrate'}))

setupPassportMiddleware = (app) ->
  app.use(authentication.initialize())
  app.use(authentication.session())

setupChinaRedirectMiddleware = (app) ->
  shouldRedirectToChinaVersion = (req) ->
    speaksChinese = req.acceptedLanguages[0]?.indexOf('zh') isnt -1
    unless config.tokyo
      ip = req.headers['x-forwarded-for'] or req.connection.remoteAddress
      geo = geoip.lookup(ip)
      return geo?.country is "CN" and speaksChinese
    else
      req.chinaVersion = true if speaksChinese
      return false  # If the user is already redirected, don't redirect them!

  app.use (req, res, next) ->
    if shouldRedirectToChinaVersion req
      res.writeHead 302, "Location": config.chinaDomain + req.url
      res.end()
    else
      next()

setupOneSecondDelayMiddleware = (app) ->
  if(config.slow_down)
    app.use((req, res, next) -> setTimeout((-> next()), 1000))

setupMiddlewareToSendOldBrowserWarningWhenPlayersViewLevelDirectly = (app) ->
  isOldBrowser = (req) ->
    # https://github.com/biggora/express-useragent/blob/master/lib/express-useragent.js
    return false unless ua = req.useragent
    return true if ua.isiPad or ua.isiPod or ua.isiPhone or ua.isOpera
    return false unless ua and ua.Browser in ['Chrome', 'Safari', 'Firefox', 'IE'] and ua.Version
    b = ua.Browser
    v = parseInt ua.Version.split('.')[0], 10
    return true if b is 'Chrome' and v < 17
    return true if b is 'Safari' and v < 6
    return true if b is 'Firefox' and v < 21
    return true if b is 'IE' and v < 10
    false

  app.use '/play/', (req, res, next) ->
    return next() if req.query['try-old-browser-anyway'] or not isOldBrowser req
    res.sendfile(path.join(__dirname, 'public', 'index_old_browser.html'))

setupRedirectMiddleware = (app) ->
  app.all '/account/profile/*', (req, res, next) ->
    nameOrID = req.path.split('/')[3]
    res.redirect 301, "/user/#{nameOrID}/profile"

setupTrailingSlashRemovingMiddleware = (app) ->
  app.use (req, res, next) ->
    # Remove trailing slashes except for in /file/.../ URLs, because those are treated as directory listings.
    return res.redirect 301, req.url[...-1] if req.url.length > 1 and req.url.slice(-1) is '/' and not /\/file\//.test req.url
    next()

exports.setupMiddleware = (app) ->
  setupChinaRedirectMiddleware app
  setupMiddlewareToSendOldBrowserWarningWhenPlayersViewLevelDirectly app
  setupExpressMiddleware app
  setupPassportMiddleware app
  setupOneSecondDelayMiddleware app
  setupTrailingSlashRemovingMiddleware app
  setupRedirectMiddleware app
  setupErrorMiddleware app
  setupJavascript404s app

###Routing function implementations###

setupJavascript404s = (app) ->
  app.get '/javascripts/*', (req, res) ->
    res.status(404).send('Not found')

setupFallbackRouteToIndex = (app) ->
  app.all '*', (req, res) ->
    fs.readFile path.join(__dirname, 'public', 'main.html'), 'utf8', (err, data) ->
      log.error "Error modifying main.html: #{err}" if err
      # insert the user object directly into the html so the application can have it immediately. Sanitize </script>
      user = if req.user then JSON.stringify(UserHandler.formatEntity(req, req.user)).replace(/\//g, '\\/') else '{}'
      data = data.replace('"userObjectTag"', user)
      res.header 'Cache-Control', 'no-cache, no-store, must-revalidate'
      res.header 'Pragma', 'no-cache'
      res.header 'Expires', 0
      res.send 200, data

setupFacebookCrossDomainCommunicationRoute = (app) ->
  app.get '/channel.html', (req, res) ->
    res.sendfile path.join(__dirname, 'public', 'channel.html')

exports.setupRoutes = (app) ->
  app.use app.router

  baseRoute.setup app
  setupFacebookCrossDomainCommunicationRoute app
  setupFallbackRouteToIndex app

###Miscellaneous configuration functions###

exports.setupLogging = ->
  logging.setup()

exports.connectToDatabase = ->
  database.connect()

exports.setupMailchimp = ->
  mcapi = require 'mailchimp-api'
  mc = new mcapi.Mailchimp(config.mail.mailchimpAPIKey)
  GLOBAL.mc = mc

exports.setExpressConfigurationOptions = (app) ->
  app.set('port', config.port)
  app.set('views', __dirname + '/app/views')
  app.set('view engine', 'jade')
  app.set('view options', { layout: false })
  app.set('env', if config.isProduction then 'production' else 'development')
  app.set('json spaces', 0) if config.isProduction
Refactored server.coffee 2014-01-27 15:36:35 -08:00			`express = require 'express'`
			`path = require 'path'`
rename some variables 2014-02-04 23:08:20 +01:00			`authentication = require 'passport'`
Refactored server.coffee 2014-01-27 15:36:35 -08:00			`useragent = require 'express-useragent'`
			`fs = require 'graceful-fs'`
gzipping when in production but not going through Cloudflare. 2014-04-17 10:12:23 -07:00			`log = require 'winston'`
			`compressible = require 'compressible'`
Added redirection to Chinese servers based on location and language 2015-03-19 15:25:24 -04:00			`geoip = require 'geoip-lite'`
Refactored server.coffee 2014-01-27 15:36:35 -08:00
move database setup (mongodb) out of db route (http endpoint) 2014-02-04 21:30:05 +01:00			`database = require './server/commons/database'`
use a mapping for handlers, schemas, and routes 2014-02-04 22:29:13 +01:00			`baseRoute = require './server/routes/base'`
Refactored server.coffee 2014-01-27 15:36:35 -08:00			`user = require './server/users/user_handler'`
			`logging = require './server/commons/logging'`
			`config = require './server_config'`
Refactored user authentication again. Now the user object is inserted into main.html, which was renamed from index.html so the express static middleware wouldn't serve it. 2014-04-02 13:12:24 -07:00			`auth = require './server/routes/auth'`
gzipping when in production but not going through Cloudflare. 2014-04-17 10:12:23 -07:00			`UserHandler = require './server/users/user_handler'`
Better error handling 2014-11-24 20:07:29 -05:00			`hipchat = require './server/hipchat'`
Refactored Achievement's getExpFunction to use the new defaults system, now on the server side. 2014-08-29 12:41:25 -07:00			`global.tv4 = require 'tv4' # required for TreemaUtils to work`
Built diplomat-specific views for editing levels, components, achievements and thang types. 2014-10-27 17:11:48 -07:00			`global.jsondiffpatch = require 'jsondiffpatch'`
Set up an endpoint for fetching Stripe info. 2014-12-05 16:47:44 -08:00			`global.stripe = require('stripe')(config.stripe.secretKey)`

Refactored server.coffee 2014-01-27 15:36:35 -08:00
Added a space for coding convention 2014-03-15 23:08:22 +09:00			`productionLogging = (tokens, req, res) ->`
Added log setting for production. 2014-03-02 01:48:21 +05:30			`status = res.statusCode`
Tweaked status colors for production logging; applying it only when in production. 2014-03-03 08:10:36 -08:00			`color = 32`
			`if status >= 500 then color = 31`
			`else if status >= 400 then color = 33`
			`else if status >= 300 then color = 36`
			`elapsed = (new Date()) - req._startTime`
			`elapsedColor = if elapsed < 500 then 90 else 31`
Upgraded choose hero view for locked heroes. Went back to animated heroes instead of feature images. Removed some server logs. 2014-11-25 09:28:42 -08:00			`if (status isnt 200 and status isnt 201 and status isnt 204 and status isnt 304 and status isnt 302) or elapsed > 500`
Tweaked status colors for production logging; applying it only when in production. 2014-03-03 08:10:36 -08:00			`return "\x1b[90m#{req.method} #{req.originalUrl} \x1b[#{color}m#{res.statusCode} \x1b[#{elapsedColor}m#{elapsed}ms\x1b[0m"`
			`null`
Added log setting for production. 2014-03-02 01:48:21 +05:30
Update server development logging Provide more details. 2014-10-26 10:52:22 -07:00			`developmentLogging = (tokens, req, res) ->`
			`status = res.statusCode`
			`color = 32`
			`if status >= 500 then color = 31`
			`else if status >= 400 then color = 33`
			`else if status >= 300 then color = 36`
			`elapsed = (new Date()) - req._startTime`
			`elapsedColor = if elapsed < 500 then 90 else 31`
			`"\x1b[90m#{req.method} #{req.originalUrl} \x1b[#{color}m#{res.statusCode} \x1b[#{elapsedColor}m#{elapsed}ms\x1b[0m"`

Better error handling 2014-11-24 20:07:29 -05:00			`setupErrorMiddleware = (app) ->`
			`app.use (err, req, res, next) ->`
			`if err`
Tweaked the error middleware to proxy and be silent about client errors. 2014-11-29 11:05:19 -08:00			`if err.status and 400 <= err.status < 500`
			`res.status(err.status).send("Error #{err.status}")`
			`return`
			`res.status(err.status ? 500).send(error: "Something went wrong!")`
A couple workarounds for crashing server tests. Including method in HipChat error messages. Trying to work around undefined ThangType fetch during level loading. 2014-11-29 08:43:40 -08:00			`message = "Express error: #{req.method} #{req.path}: #{err.message}"`
Link to Papertrail logs in error messages 2014-11-28 14:37:54 -05:00			`log.error "#{message}, stack: #{err.stack}"`
Tracking who is simulating matches so we can see patterns in ill-reported matches. Rejecting simulations from simulators with old versions of the Simulator code. 2015-02-11 20:24:12 -08:00			`hipchat.sendHipChatMessage(message, ['tower'], {papertrail: true})`
Better error handling 2014-11-24 20:07:29 -05:00			`else`
			`next(err)`
Added one-minute in-memory server caching for a bunch of common queries. 2015-02-26 17:20:27 -08:00
Refactored server.coffee 2014-01-27 15:36:35 -08:00			`setupExpressMiddleware = (app) ->`
Tweaked status colors for production logging; applying it only when in production. 2014-03-03 08:10:36 -08:00			`if config.isProduction`
			`express.logger.format('prod', productionLogging)`
			`app.use(express.logger('prod'))`
gzipping when in production but not going through Cloudflare. 2014-04-17 10:12:23 -07:00			`app.use express.compress filter: (req, res) ->`
Separating contact emails into premium subscriber support and basic general support. 2014-12-18 20:34:59 -08:00			`return false if req.headers.host is 'codecombat.com' # CloudFlare will gzip it for us on codecombat.com`
gzipping when in production but not going through Cloudflare. 2014-04-17 10:12:23 -07:00			`compressible res.getHeader('Content-Type')`
Tweaked status colors for production logging; applying it only when in production. 2014-03-03 08:10:36 -08:00			`else`
Update server development logging Provide more details. 2014-10-26 10:52:22 -07:00			`express.logger.format('dev', developmentLogging)`
Tweaked status colors for production logging; applying it only when in production. 2014-03-03 08:10:36 -08:00			`app.use(express.logger('dev'))`
Added keyboard shortcuts to move, resize, minor-rotate, and toggle collision for Thangs in the level editor. Fixed some issues with stretchy Thangs and collision shapes not updating. Fixed #1699. Fixed #57. Colored collision overlays according to collision categories. 2014-12-20 13:39:40 -08:00			`app.use(express.static(path.join(__dirname, 'public'), maxAge: 0)) # CloudFlare overrides maxAge, and we don't want local development caching.`
Refactored server.coffee 2014-01-27 15:36:35 -08:00			`app.use(useragent.express())`

			`app.use(express.favicon())`
			`app.use(express.cookieParser(config.cookie_secret))`
			`app.use(express.bodyParser())`
			`app.use(express.methodOverride())`
			`app.use(express.cookieSession({secret:'defenestrate'}))`

			`setupPassportMiddleware = (app) ->`
rename some variables 2014-02-04 23:08:20 +01:00			`app.use(authentication.initialize())`
			`app.use(authentication.session())`
Refactored server.coffee 2014-01-27 15:36:35 -08:00
Added redirection to Chinese servers based on location and language 2015-03-19 15:25:24 -04:00			`setupChinaRedirectMiddleware = (app) ->`
Implementing alternative pricing with Alipay in China to support dedicated China server. 2015-03-23 15:26:44 -07:00			`shouldRedirectToChinaVersion = (req) ->`
			`speaksChinese = req.acceptedLanguages[0]?.indexOf('zh') isnt -1`
Added redirection to Chinese servers based on location and language 2015-03-19 15:25:24 -04:00			`unless config.tokyo`
Implementing alternative pricing with Alipay in China to support dedicated China server. 2015-03-23 15:26:44 -07:00			`ip = req.headers['x-forwarded-for'] or req.connection.remoteAddress`
Added redirection to Chinese servers based on location and language 2015-03-19 15:25:24 -04:00			`geo = geoip.lookup(ip)`
Implementing alternative pricing with Alipay in China to support dedicated China server. 2015-03-23 15:26:44 -07:00			`return geo?.country is "CN" and speaksChinese`
Added redirection to Chinese servers based on location and language 2015-03-19 15:25:24 -04:00			`else`
Made chinaVersion detection fire only when the language is Chinese. 2015-03-23 17:00:11 -07:00			`req.chinaVersion = true if speaksChinese`
Implementing alternative pricing with Alipay in China to support dedicated China server. 2015-03-23 15:26:44 -07:00			`return false # If the user is already redirected, don't redirect them!`
Added redirection to Chinese servers based on location and language 2015-03-19 15:25:24 -04:00
			`app.use (req, res, next) ->`
Implementing alternative pricing with Alipay in China to support dedicated China server. 2015-03-23 15:26:44 -07:00			`if shouldRedirectToChinaVersion req`
Added redirection to Chinese servers based on location and language 2015-03-19 15:25:24 -04:00			`res.writeHead 302, "Location": config.chinaDomain + req.url`
			`res.end()`
			`else`
			`next()`

Fix typo (missing e) 2014-06-09 00:35:59 +08:00			`setupOneSecondDelayMiddleware = (app) ->`
Refactored server.coffee 2014-01-27 15:36:35 -08:00			`if(config.slow_down)`
			`app.use((req, res, next) -> setTimeout((-> next()), 1000))`

			`setupMiddlewareToSendOldBrowserWarningWhenPlayersViewLevelDirectly = (app) ->`
			`isOldBrowser = (req) ->`
			`# https://github.com/biggora/express-useragent/blob/master/lib/express-useragent.js`
			`return false unless ua = req.useragent`
			`return true if ua.isiPad or ua.isiPod or ua.isiPhone or ua.isOpera`
Clean up mixed quotes 2014-07-01 10:16:26 +08:00			`return false unless ua and ua.Browser in ['Chrome', 'Safari', 'Firefox', 'IE'] and ua.Version`
Refactored server.coffee 2014-01-27 15:36:35 -08:00			`b = ua.Browser`
			`v = parseInt ua.Version.split('.')[0], 10`
			`return true if b is 'Chrome' and v < 17`
			`return true if b is 'Safari' and v < 6`
			`return true if b is 'Firefox' and v < 21`
			`return true if b is 'IE' and v < 10`
			`false`

			`app.use '/play/', (req, res, next) ->`
			`return next() if req.query['try-old-browser-anyway'] or not isOldBrowser req`
			`res.sendfile(path.join(__dirname, 'public', 'index_old_browser.html'))`

Set up a 301 Redirect for account/profile instead of a backbone redirect 2014-07-13 22:34:32 +02:00			`setupRedirectMiddleware = (app) ->`
			`app.all '/account/profile/*', (req, res, next) ->`
			`nameOrID = req.path.split('/')[3]`
			`res.redirect 301, "/user/#{nameOrID}/profile"`
Basics for account and user home pages 2014-07-15 16:15:21 +02:00
Express now removes all trailing slashes. 2014-07-13 20:49:13 +02:00			`setupTrailingSlashRemovingMiddleware = (app) ->`
			`app.use (req, res, next) ->`
Fixed #712. Fixed a bug with listing files/musics in admin files view due to removed trailing slashes. 2014-08-26 15:42:33 -07:00			`# Remove trailing slashes except for in /file/.../ URLs, because those are treated as directory listings.`
			`return res.redirect 301, req.url[...-1] if req.url.length > 1 and req.url.slice(-1) is '/' and not /\/file\//.test req.url`
Express now removes all trailing slashes. 2014-07-13 20:49:13 +02:00			`next()`
Set up a 301 Redirect for account/profile instead of a backbone redirect 2014-07-13 22:34:32 +02:00
Refactored server.coffee 2014-01-27 15:36:35 -08:00			`exports.setupMiddleware = (app) ->`
Changed read prefs and enabled middleware 2015-03-21 21:49:32 -04:00			`setupChinaRedirectMiddleware app`
Refactored server.coffee 2014-01-27 15:36:35 -08:00			`setupMiddlewareToSendOldBrowserWarningWhenPlayersViewLevelDirectly app`
			`setupExpressMiddleware app`
			`setupPassportMiddleware app`
Fix typo (missing e) 2014-06-09 00:35:59 +08:00			`setupOneSecondDelayMiddleware app`
Express now removes all trailing slashes. 2014-07-13 20:49:13 +02:00			`setupTrailingSlashRemovingMiddleware app`
Set up a 301 Redirect for account/profile instead of a backbone redirect 2014-07-13 22:34:32 +02:00			`setupRedirectMiddleware app`
Better error handling 2014-11-24 20:07:29 -05:00			`setupErrorMiddleware app`
Set up the site to load its logic and templates piecemeal rather than in one giant app.js file. 2014-11-28 16:38:50 -08:00			`setupJavascript404s app`
A couple workarounds for crashing server tests. Including method in HipChat error messages. Trying to work around undefined ThangType fetch during level loading. 2014-11-29 08:43:40 -08:00
Refactored server.coffee 2014-01-27 15:36:35 -08:00			`###Routing function implementations###`

Set up the site to load its logic and templates piecemeal rather than in one giant app.js file. 2014-11-28 16:38:50 -08:00			`setupJavascript404s = (app) ->`
			`app.get '/javascripts/*', (req, res) ->`
			`res.status(404).send('Not found')`

Refactored server.coffee 2014-01-27 15:36:35 -08:00			`setupFallbackRouteToIndex = (app) ->`
Edited fallback route to use all methods in fallback 2014-03-12 10:07:18 -07:00			`app.all '*', (req, res) ->`
Deferring user creation until after the client app loads, to try and lower the massive number of anonymous users that are created. 2015-01-05 14:43:20 -08:00			`fs.readFile path.join(__dirname, 'public', 'main.html'), 'utf8', (err, data) ->`
			`log.error "Error modifying main.html: #{err}" if err`
			`# insert the user object directly into the html so the application can have it immediately. Sanitize </script>`
			`user = if req.user then JSON.stringify(UserHandler.formatEntity(req, req.user)).replace(/\//g, '\\/') else '{}'`
			`data = data.replace('"userObjectTag"', user)`
			`res.header 'Cache-Control', 'no-cache, no-store, must-revalidate'`
			`res.header 'Pragma', 'no-cache'`
			`res.header 'Expires', 0`
			`res.send 200, data`
Refactored server.coffee 2014-01-27 15:36:35 -08:00
			`setupFacebookCrossDomainCommunicationRoute = (app) ->`
			`app.get '/channel.html', (req, res) ->`
			`res.sendfile path.join(__dirname, 'public', 'channel.html')`

			`exports.setupRoutes = (app) ->`
			`app.use app.router`
Merge branch 'feature/task-queue' of github.com:codecombat/codecombat into feature/task-queue Conflicts: server_setup.coffee 2014-02-05 09:42:25 -08:00
use a mapping for handlers, schemas, and routes 2014-02-04 22:29:13 +01:00			`baseRoute.setup app`
Refactored server.coffee 2014-01-27 15:36:35 -08:00			`setupFacebookCrossDomainCommunicationRoute app`
			`setupFallbackRouteToIndex app`

			`###Miscellaneous configuration functions###`

			`exports.setupLogging = ->`
			`logging.setup()`

			`exports.connectToDatabase = ->`
move database setup (mongodb) out of db route (http endpoint) 2014-02-04 21:30:05 +01:00			`database.connect()`
Refactored server.coffee 2014-01-27 15:36:35 -08:00
			`exports.setupMailchimp = ->`
			`mcapi = require 'mailchimp-api'`
			`mc = new mcapi.Mailchimp(config.mail.mailchimpAPIKey)`
			`GLOBAL.mc = mc`

			`exports.setExpressConfigurationOptions = (app) ->`
			`app.set('port', config.port)`
			`app.set('views', __dirname + '/app/views')`
			`app.set('view engine', 'jade')`
			`app.set('view options', { layout: false })`
Experimenting with using compress() in production. 2014-03-03 16:19:35 -08:00			`app.set('env', if config.isProduction then 'production' else 'development')`
Disabling space-less json for development. 2014-10-29 14:17:07 -07:00			`app.set('json spaces', 0) if config.isProduction`
No results found.