]>
Commit | Line | Data |
---|---|---|
1 | // FIXME: https://github.com/nodejs/node/pull/16853 | |
2 | import { VideosCaptionCache } from './server/lib/cache/videos-caption-cache' | |
3 | ||
4 | require('tls').DEFAULT_ECDH_CURVE = 'auto' | |
5 | ||
6 | import { isTestInstance } from './server/helpers/core-utils' | |
7 | ||
8 | if (isTestInstance()) { | |
9 | require('source-map-support').install() | |
10 | } | |
11 | ||
12 | // ----------- Node modules ----------- | |
13 | import * as bodyParser from 'body-parser' | |
14 | import * as express from 'express' | |
15 | import * as morgan from 'morgan' | |
16 | import * as cors from 'cors' | |
17 | import * as cookieParser from 'cookie-parser' | |
18 | import * as helmet from 'helmet' | |
19 | ||
20 | process.title = 'peertube' | |
21 | ||
22 | // Create our main app | |
23 | const app = express() | |
24 | ||
25 | // ----------- Core checker ----------- | |
26 | import { checkMissedConfig, checkFFmpeg, checkConfig, checkActivityPubUrls } from './server/initializers/checker' | |
27 | ||
28 | // Do not use barrels because we don't want to load all modules here (we need to initialize database first) | |
29 | import { logger } from './server/helpers/logger' | |
30 | import { API_VERSION, CONFIG, STATIC_PATHS, CACHE, REMOTE_SCHEME } from './server/initializers/constants' | |
31 | ||
32 | const missed = checkMissedConfig() | |
33 | if (missed.length !== 0) { | |
34 | logger.error('Your configuration files miss keys: ' + missed) | |
35 | process.exit(-1) | |
36 | } | |
37 | ||
38 | checkFFmpeg(CONFIG) | |
39 | .catch(err => { | |
40 | logger.error('Error in ffmpeg check.', { err }) | |
41 | process.exit(-1) | |
42 | }) | |
43 | ||
44 | const errorMessage = checkConfig() | |
45 | if (errorMessage !== null) { | |
46 | throw new Error(errorMessage) | |
47 | } | |
48 | ||
49 | // Trust our proxy (IP forwarding...) | |
50 | app.set('trust proxy', CONFIG.TRUST_PROXY) | |
51 | ||
52 | // Security middleware | |
53 | app.use(helmet({ | |
54 | frameguard: { | |
55 | action: 'deny' // we only allow it for /videos/embed, see server/controllers/client.ts | |
56 | }, | |
57 | dnsPrefetchControl: { | |
58 | allow: true | |
59 | }, | |
60 | contentSecurityPolicy: { | |
61 | directives: { | |
62 | defaultSrc: ['*', 'data:', REMOTE_SCHEME.WS + ':', REMOTE_SCHEME.HTTP + ':'], | |
63 | fontSrc: ["'self'", 'data:'], | |
64 | frameSrc: ["'none'"], | |
65 | mediaSrc: ['*', REMOTE_SCHEME.HTTP + ':'], | |
66 | objectSrc: ["'none'"], | |
67 | scriptSrc: ["'self'", "'unsafe-inline'", "'unsafe-eval'"], | |
68 | styleSrc: ["'self'", "'unsafe-inline'"], | |
69 | upgradeInsecureRequests: false | |
70 | }, | |
71 | browserSniff: false // assumes a modern browser, but allows CDN in front | |
72 | }, | |
73 | referrerPolicy: { | |
74 | policy: 'strict-origin-when-cross-origin' | |
75 | } | |
76 | })) | |
77 | app.use((_, res, next) => { | |
78 | [ | |
79 | "vibrate 'none'", | |
80 | "geolocation 'none'", | |
81 | "camera 'none'", | |
82 | "microphone 'none'", | |
83 | "magnetometer 'none'", | |
84 | "payment 'none'", | |
85 | "accelerometer 'none'" | |
86 | ].forEach(e => res.append('Feature-Policy', e + ';')) | |
87 | next() | |
88 | }) | |
89 | ||
90 | // ----------- Database ----------- | |
91 | ||
92 | // Initialize database and models | |
93 | import { initDatabaseModels } from './server/initializers/database' | |
94 | import { migrate } from './server/initializers/migrator' | |
95 | migrate() | |
96 | .then(() => initDatabaseModels(false)) | |
97 | .then(() => startApplication()) | |
98 | .catch(err => { | |
99 | logger.error('Cannot start application.', { err }) | |
100 | process.exit(-1) | |
101 | }) | |
102 | ||
103 | // ----------- PeerTube modules ----------- | |
104 | import { installApplication } from './server/initializers' | |
105 | import { Emailer } from './server/lib/emailer' | |
106 | import { JobQueue } from './server/lib/job-queue' | |
107 | import { VideosPreviewCache } from './server/lib/cache' | |
108 | import { | |
109 | activityPubRouter, | |
110 | apiRouter, | |
111 | clientsRouter, | |
112 | feedsRouter, | |
113 | staticRouter, | |
114 | servicesRouter, | |
115 | webfingerRouter, | |
116 | trackerRouter, | |
117 | createWebsocketServer | |
118 | } from './server/controllers' | |
119 | import { Redis } from './server/lib/redis' | |
120 | import { BadActorFollowScheduler } from './server/lib/schedulers/bad-actor-follow-scheduler' | |
121 | import { RemoveOldJobsScheduler } from './server/lib/schedulers/remove-old-jobs-scheduler' | |
122 | import { UpdateVideosScheduler } from './server/lib/schedulers/update-videos-scheduler' | |
123 | ||
124 | // ----------- Command line ----------- | |
125 | ||
126 | // ----------- App ----------- | |
127 | ||
128 | // Enable CORS for develop | |
129 | if (isTestInstance()) { | |
130 | app.use(cors({ | |
131 | origin: '*', | |
132 | exposedHeaders: 'Retry-After', | |
133 | credentials: true | |
134 | })) | |
135 | } | |
136 | ||
137 | // For the logger | |
138 | app.use(morgan('combined', { | |
139 | stream: { write: logger.info.bind(logger) } | |
140 | })) | |
141 | // For body requests | |
142 | app.use(bodyParser.urlencoded({ extended: false })) | |
143 | app.use(bodyParser.json({ | |
144 | type: [ 'application/json', 'application/*+json' ], | |
145 | limit: '500kb' | |
146 | })) | |
147 | // Cookies | |
148 | app.use(cookieParser()) | |
149 | ||
150 | // ----------- Views, routes and static files ----------- | |
151 | ||
152 | // API | |
153 | const apiRoute = '/api/' + API_VERSION | |
154 | app.use(apiRoute, apiRouter) | |
155 | ||
156 | // Services (oembed...) | |
157 | app.use('/services', servicesRouter) | |
158 | ||
159 | app.use('/', activityPubRouter) | |
160 | app.use('/', feedsRouter) | |
161 | app.use('/', webfingerRouter) | |
162 | app.use('/', trackerRouter) | |
163 | ||
164 | // Static files | |
165 | app.use('/', staticRouter) | |
166 | ||
167 | // Client files, last valid routes! | |
168 | app.use('/', clientsRouter) | |
169 | ||
170 | // ----------- Errors ----------- | |
171 | ||
172 | // Catch 404 and forward to error handler | |
173 | app.use(function (req, res, next) { | |
174 | const err = new Error('Not Found') | |
175 | err['status'] = 404 | |
176 | next(err) | |
177 | }) | |
178 | ||
179 | app.use(function (err, req, res, next) { | |
180 | let error = 'Unknown error.' | |
181 | if (err) { | |
182 | error = err.stack || err.message || err | |
183 | } | |
184 | ||
185 | logger.error('Error in controller.', { error }) | |
186 | return res.status(err.status || 500).end() | |
187 | }) | |
188 | ||
189 | const server = createWebsocketServer(app) | |
190 | ||
191 | // ----------- Run ----------- | |
192 | ||
193 | async function startApplication () { | |
194 | const port = CONFIG.LISTEN.PORT | |
195 | const hostname = CONFIG.LISTEN.HOSTNAME | |
196 | ||
197 | await installApplication() | |
198 | ||
199 | // Check activity pub urls are valid | |
200 | checkActivityPubUrls() | |
201 | .catch(err => { | |
202 | logger.error('Error in ActivityPub URLs checker.', { err }) | |
203 | process.exit(-1) | |
204 | }) | |
205 | ||
206 | // Email initialization | |
207 | Emailer.Instance.init() | |
208 | await Emailer.Instance.checkConnectionOrDie() | |
209 | ||
210 | await JobQueue.Instance.init() | |
211 | ||
212 | // Caches initializations | |
213 | VideosPreviewCache.Instance.init(CONFIG.CACHE.PREVIEWS.SIZE, CACHE.PREVIEWS.MAX_AGE) | |
214 | VideosCaptionCache.Instance.init(CONFIG.CACHE.VIDEO_CAPTIONS.SIZE, CACHE.VIDEO_CAPTIONS.MAX_AGE) | |
215 | ||
216 | // Enable Schedulers | |
217 | BadActorFollowScheduler.Instance.enable() | |
218 | RemoveOldJobsScheduler.Instance.enable() | |
219 | UpdateVideosScheduler.Instance.enable() | |
220 | ||
221 | // Redis initialization | |
222 | Redis.Instance.init() | |
223 | ||
224 | // Make server listening | |
225 | server.listen(port, hostname, () => { | |
226 | logger.info('Server listening on %s:%d', hostname, port) | |
227 | logger.info('Web server: %s', CONFIG.WEBSERVER.URL) | |
228 | }) | |
229 | } |