import * as helmet from 'helmet'
import * as useragent from 'useragent'
import * as anonymize from 'ip-anonymize'
+import * as cli from 'commander'
process.title = 'peertube'
app.set('trust proxy', CONFIG.TRUST_PROXY)
// Security middleware
+import { baseCSP } from './server/middlewares'
+
+app.use(baseCSP)
app.use(helmet({
frameguard: {
action: 'deny' // we only allow it for /videos/embed, see server/controllers/client.ts
servicesRouter,
webfingerRouter,
trackerRouter,
- createWebsocketServer
+ createWebsocketTrackerServer, botsRouter
} from './server/controllers'
import { advertiseDoNotTrack } from './server/middlewares/dnt'
import { Redis } from './server/lib/redis'
-import { BadActorFollowScheduler } from './server/lib/schedulers/bad-actor-follow-scheduler'
+import { ActorFollowScheduler } from './server/lib/schedulers/actor-follow-scheduler'
import { RemoveOldJobsScheduler } from './server/lib/schedulers/remove-old-jobs-scheduler'
import { UpdateVideosScheduler } from './server/lib/schedulers/update-videos-scheduler'
import { YoutubeDlUpdateScheduler } from './server/lib/schedulers/youtube-dl-update-scheduler'
import { VideosRedundancyScheduler } from './server/lib/schedulers/videos-redundancy-scheduler'
+import { isHTTPSignatureDigestValid } from './server/helpers/peertube-crypto'
+import { PeerTubeSocket } from './server/lib/peertube-socket'
// ----------- Command line -----------
+cli
+ .option('--no-client', 'Start PeerTube without client interface')
+ .parse(process.argv)
+
// ----------- App -----------
// Enable CORS for develop
app.use(bodyParser.urlencoded({ extended: false }))
app.use(bodyParser.json({
type: [ 'application/json', 'application/*+json' ],
- limit: '500kb'
+ limit: '500kb',
+ verify: (req: express.Request, _, buf: Buffer) => {
+ const valid = isHTTPSignatureDigestValid(buf, req)
+ if (valid !== true) throw new Error('Invalid digest')
+ }
}))
// Cookies
app.use(cookieParser())
app.use('/', feedsRouter)
app.use('/', webfingerRouter)
app.use('/', trackerRouter)
+app.use('/', botsRouter)
// Static files
app.use('/', staticRouter)
// Client files, last valid routes!
-app.use('/', clientsRouter)
+if (cli.client) app.use('/', clientsRouter)
// ----------- Errors -----------
return res.status(err.status || 500).end()
})
-const server = createWebsocketServer(app)
+const server = createWebsocketTrackerServer(app)
// ----------- Run -----------
// Email initialization
Emailer.Instance.init()
- await Emailer.Instance.checkConnectionOrDie()
- await JobQueue.Instance.init()
+ await Promise.all([
+ Emailer.Instance.checkConnectionOrDie(),
+ JobQueue.Instance.init()
+ ])
// Caches initializations
VideosPreviewCache.Instance.init(CONFIG.CACHE.PREVIEWS.SIZE, CACHE.PREVIEWS.MAX_AGE)
VideosCaptionCache.Instance.init(CONFIG.CACHE.VIDEO_CAPTIONS.SIZE, CACHE.VIDEO_CAPTIONS.MAX_AGE)
// Enable Schedulers
- BadActorFollowScheduler.Instance.enable()
+ ActorFollowScheduler.Instance.enable()
RemoveOldJobsScheduler.Instance.enable()
UpdateVideosScheduler.Instance.enable()
YoutubeDlUpdateScheduler.Instance.enable()
// Redis initialization
Redis.Instance.init()
+ PeerTubeSocket.Instance.init(server)
+
// Make server listening
server.listen(port, hostname, () => {
logger.info('Server listening on %s:%d', hostname, port)