-// FIXME: https://github.com/nodejs/node/pull/16853
-import { VideosCaptionCache } from './server/lib/cache/videos-caption-cache'
-
-require('tls').DEFAULT_ECDH_CURVE = 'auto'
+import { registerTSPaths } from './server/helpers/register-ts-paths'
+registerTSPaths()
import { isTestInstance } from './server/helpers/core-utils'
-
if (isTestInstance()) {
require('source-map-support').install()
}
import * as cors from 'cors'
import * as cookieParser from 'cookie-parser'
import * as helmet from 'helmet'
+import * as useragent from 'useragent'
+import * as anonymize from 'ip-anonymize'
+import * as cli from 'commander'
process.title = 'peertube'
const app = express()
// ----------- Core checker -----------
-import { checkMissedConfig, checkFFmpeg, checkConfig, checkActivityPubUrls } from './server/initializers/checker'
+import { checkMissedConfig, checkFFmpeg, checkNodeVersion } from './server/initializers/checker-before-init'
// Do not use barrels because we don't want to load all modules here (we need to initialize database first)
+import { CONFIG } from './server/initializers/config'
+import { API_VERSION, FILES_CACHE, WEBSERVER, loadLanguages } from './server/initializers/constants'
import { logger } from './server/helpers/logger'
-import { API_VERSION, CONFIG, STATIC_PATHS, CACHE, REMOTE_SCHEME } from './server/initializers/constants'
const missed = checkMissedConfig()
if (missed.length !== 0) {
process.exit(-1)
})
+checkNodeVersion()
+
+import { checkConfig, checkActivityPubUrls } from './server/initializers/checker-after-init'
+
const errorMessage = checkConfig()
if (errorMessage !== null) {
throw new Error(errorMessage)
// Trust our proxy (IP forwarding...)
app.set('trust proxy', CONFIG.TRUST_PROXY)
-// Security middlewares
-app.use(helmet({
- frameguard: {
- action: 'deny' // we only allow it for /videos/embed, see server/controllers/client.ts
- },
- dnsPrefetchControl: {
- allow: true
- },
- contentSecurityPolicy: {
- directives: {
- defaultSrc: ['*', 'data:', REMOTE_SCHEME.WS + ':', REMOTE_SCHEME.HTTP + ':'],
- fontSrc: ["'self'", 'data:'],
- frameSrc: ["'none'"],
- mediaSrc: ['*', REMOTE_SCHEME.HTTP + ':'],
- objectSrc: ["'none'"],
- scriptSrc: ["'self'", "'unsafe-inline'", "'unsafe-eval'"],
- styleSrc: ["'self'", "'unsafe-inline'"],
- upgradeInsecureRequests: false
+// Security middleware
+import { baseCSP } from './server/middlewares/csp'
+
+if (CONFIG.CSP.ENABLED) {
+ app.use(baseCSP)
+ app.use(helmet({
+ frameguard: {
+ action: 'deny' // we only allow it for /videos/embed, see server/controllers/client.ts
},
- browserSniff: false // assumes a modern browser, but allows CDN in front
- },
- referrerPolicy: {
- policy: 'strict-origin-when-cross-origin'
- }
-}))
-app.use((_, res, next) => {
- [
- "vibrate 'none'",
- "geolocation 'none'",
- "camera 'none'",
- "microphone 'none'",
- "magnetometer 'none'",
- "payment 'none'",
- "accelerometer 'none'"
- ].forEach(e => res.append('Feature-Policy', e + ';'))
- next()
-})
+ hsts: false
+ }))
+}
// ----------- Database -----------
// Initialize database and models
-import { initDatabaseModels } from './server/initializers/database'
+import { initDatabaseModels, checkDatabaseConnectionOrDie } from './server/initializers/database'
+checkDatabaseConnectionOrDie()
+
import { migrate } from './server/initializers/migrator'
migrate()
.then(() => initDatabaseModels(false))
process.exit(-1)
})
+// ----------- Initialize -----------
+loadLanguages()
+
// ----------- PeerTube modules -----------
-import { installApplication } from './server/initializers'
+import { installApplication } from './server/initializers/installer'
import { Emailer } from './server/lib/emailer'
import { JobQueue } from './server/lib/job-queue'
-import { VideosPreviewCache } from './server/lib/cache'
+import { VideosPreviewCache, VideosCaptionCache } from './server/lib/files-cache'
import {
activityPubRouter,
apiRouter,
clientsRouter,
feedsRouter,
staticRouter,
+ lazyStaticRouter,
servicesRouter,
+ pluginsRouter,
webfingerRouter,
trackerRouter,
- createWebsocketServer
+ createWebsocketTrackerServer, botsRouter
} from './server/controllers'
+import { advertiseDoNotTrack } from './server/middlewares/dnt'
import { Redis } from './server/lib/redis'
-import { BadActorFollowScheduler } from './server/lib/schedulers/bad-actor-follow-scheduler'
+import { ActorFollowScheduler } from './server/lib/schedulers/actor-follow-scheduler'
+import { RemoveOldViewsScheduler } from './server/lib/schedulers/remove-old-views-scheduler'
import { RemoveOldJobsScheduler } from './server/lib/schedulers/remove-old-jobs-scheduler'
import { UpdateVideosScheduler } from './server/lib/schedulers/update-videos-scheduler'
+import { YoutubeDlUpdateScheduler } from './server/lib/schedulers/youtube-dl-update-scheduler'
+import { VideosRedundancyScheduler } from './server/lib/schedulers/videos-redundancy-scheduler'
+import { RemoveOldHistoryScheduler } from './server/lib/schedulers/remove-old-history-scheduler'
+import { AutoFollowIndexInstances } from './server/lib/schedulers/auto-follow-index-instances'
+import { isHTTPSignatureDigestValid } from './server/helpers/peertube-crypto'
+import { PeerTubeSocket } from './server/lib/peertube-socket'
+import { updateStreamingPlaylistsInfohashesIfNeeded } from './server/lib/hls'
+import { PluginsCheckScheduler } from './server/lib/schedulers/plugins-check-scheduler'
+import { Hooks } from './server/lib/plugins/hooks'
+import { PluginManager } from './server/lib/plugins/plugin-manager'
// ----------- Command line -----------
+cli
+ .option('--no-client', 'Start PeerTube without client interface')
+ .option('--no-plugins', 'Start PeerTube without plugins/themes enabled')
+ .parse(process.argv)
+
// ----------- App -----------
// Enable CORS for develop
}
// For the logger
+morgan.token<express.Request>('remote-addr', req => {
+ if (CONFIG.LOG.ANONYMIZE_IP === true || req.get('DNT') === '1') {
+ return anonymize(req.ip, 16, 16)
+ }
+
+ return req.ip
+})
+morgan.token<express.Request>('user-agent', req => {
+ if (req.get('DNT') === '1') {
+ return useragent.parse(req.get('user-agent')).family
+ }
+
+ return req.get('user-agent')
+})
app.use(morgan('combined', {
stream: { write: logger.info.bind(logger) }
}))
+
// For body requests
app.use(bodyParser.urlencoded({ extended: false }))
app.use(bodyParser.json({
type: [ 'application/json', 'application/*+json' ],
- limit: '500kb'
+ limit: '500kb',
+ verify: (req: express.Request, _, buf: Buffer) => {
+ const valid = isHTTPSignatureDigestValid(buf, req)
+ if (valid !== true) throw new Error('Invalid digest')
+ }
}))
+
// Cookies
app.use(cookieParser())
+// W3C DNT Tracking Status
+app.use(advertiseDoNotTrack)
+
// ----------- Views, routes and static files -----------
// API
// Services (oembed...)
app.use('/services', servicesRouter)
+// Plugins & themes
+app.use('/', pluginsRouter)
+
app.use('/', activityPubRouter)
app.use('/', feedsRouter)
app.use('/', webfingerRouter)
app.use('/', trackerRouter)
+app.use('/', botsRouter)
// Static files
app.use('/', staticRouter)
+app.use('/', lazyStaticRouter)
// Client files, last valid routes!
-app.use('/', clientsRouter)
+if (cli.client) app.use('/', clientsRouter)
// ----------- Errors -----------
error = err.stack || err.message || err
}
- logger.error('Error in controller.', { error })
+ // Sequelize error
+ const sql = err.parent ? err.parent.sql : undefined
+
+ logger.error('Error in controller.', { err: error, sql })
return res.status(err.status || 500).end()
})
-const server = createWebsocketServer(app)
+const server = createWebsocketTrackerServer(app)
// ----------- Run -----------
// Email initialization
Emailer.Instance.init()
- await Emailer.Instance.checkConnectionOrDie()
- await JobQueue.Instance.init()
+ await Promise.all([
+ Emailer.Instance.checkConnectionOrDie(),
+ JobQueue.Instance.init()
+ ])
// Caches initializations
- VideosPreviewCache.Instance.init(CONFIG.CACHE.PREVIEWS.SIZE, CACHE.PREVIEWS.MAX_AGE)
- VideosCaptionCache.Instance.init(CONFIG.CACHE.VIDEO_CAPTIONS.SIZE, CACHE.VIDEO_CAPTIONS.MAX_AGE)
+ VideosPreviewCache.Instance.init(CONFIG.CACHE.PREVIEWS.SIZE, FILES_CACHE.PREVIEWS.MAX_AGE)
+ VideosCaptionCache.Instance.init(CONFIG.CACHE.VIDEO_CAPTIONS.SIZE, FILES_CACHE.VIDEO_CAPTIONS.MAX_AGE)
// Enable Schedulers
- BadActorFollowScheduler.Instance.enable()
+ ActorFollowScheduler.Instance.enable()
RemoveOldJobsScheduler.Instance.enable()
UpdateVideosScheduler.Instance.enable()
+ YoutubeDlUpdateScheduler.Instance.enable()
+ VideosRedundancyScheduler.Instance.enable()
+ RemoveOldHistoryScheduler.Instance.enable()
+ RemoveOldViewsScheduler.Instance.enable()
+ PluginsCheckScheduler.Instance.enable()
+ AutoFollowIndexInstances.Instance.enable()
// Redis initialization
Redis.Instance.init()
+ PeerTubeSocket.Instance.init(server)
+
+ updateStreamingPlaylistsInfohashesIfNeeded()
+ .catch(err => logger.error('Cannot update streaming playlist infohashes.', { err }))
+
+ if (cli.plugins) await PluginManager.Instance.registerPluginsAndThemes()
+
// Make server listening
server.listen(port, hostname, () => {
logger.info('Server listening on %s:%d', hostname, port)
- logger.info('Web server: %s', CONFIG.WEBSERVER.URL)
+ logger.info('Web server: %s', WEBSERVER.URL)
+
+ Hooks.runAction('action:application.listening')
+ })
+
+ process.on('exit', () => {
+ JobQueue.Instance.terminate()
})
+
+ process.on('SIGINT', () => process.exit(0))
}