import express from "express"; import { existsSync } from "fs"; import { readdir, readFile } from "fs/promises"; import { IncomingHttpHeaders } from "http"; import { Helmet } from "inferno-helmet"; import { matchPath, StaticRouter } from "inferno-router"; import { renderToString } from "inferno-server"; import IsomorphicCookie from "isomorphic-cookie"; import { GetSite, GetSiteResponse, LemmyHttp, Site } from "lemmy-js-client"; import path from "path"; import process from "process"; import serialize from "serialize-javascript"; import sharp from "sharp"; import { App } from "../shared/components/app/app"; import { getHttpBase, getHttpBaseInternal } from "../shared/env"; import { ILemmyConfig, InitialFetchRequest, IsoData, } from "../shared/interfaces"; import { routes } from "../shared/routes"; import { favIconPngUrl, favIconUrl, initializeSite } from "../shared/utils"; const server = express(); const [hostname, port] = process.env["LEMMY_UI_HOST"] ? process.env["LEMMY_UI_HOST"].split(":") : ["0.0.0.0", "1234"]; const extraThemesFolder = process.env["LEMMY_UI_EXTRA_THEMES_FOLDER"] || "./extra_themes"; if (!process.env["LEMMY_UI_DISABLE_CSP"] && !process.env["LEMMY_UI_DEBUG"]) { server.use(function (_req, res, next) { res.setHeader( "Content-Security-Policy", `default-src 'self'; manifest-src *; connect-src *; img-src * data:; script-src 'self' 'unsafe-inline' 'unsafe-eval'; style-src 'self' 'unsafe-inline'; form-action 'self'; base-uri 'self'; frame-src *` ); next(); }); } const customHtmlHeader = process.env["LEMMY_UI_CUSTOM_HTML_HEADER"] || ""; server.use(express.json()); server.use(express.urlencoded({ extended: false })); server.use("/static", express.static(path.resolve("./dist"))); const robotstxt = `User-Agent: * Disallow: /login Disallow: /settings Disallow: /create_community Disallow: /create_post Disallow: /create_private_message Disallow: /inbox Disallow: /setup Disallow: /admin Disallow: /password_change Disallow: /search/ `; server.get("/service-worker.js", async (_req, res) => { res.setHeader("Content-Type", "application/javascript"); res.sendFile(path.resolve("./dist/service-worker.js")); }); server.get("/robots.txt", async (_req, res) => { res.setHeader("content-type", "text/plain; charset=utf-8"); res.send(robotstxt); }); server.get("/css/themes/:name", async (req, res) => { res.contentType("text/css"); const theme = req.params.name; if (!theme.endsWith(".css")) { res.send("Theme must be a css file"); } const customTheme = path.resolve(`./${extraThemesFolder}/${theme}`); if (existsSync(customTheme)) { res.sendFile(customTheme); } else { const internalTheme = path.resolve(`./dist/assets/css/themes/${theme}`); // If the theme doesn't exist, just send litely if (existsSync(internalTheme)) { res.sendFile(internalTheme); } else { res.sendFile(path.resolve("./dist/assets/css/themes/litely.css")); } } }); async function buildThemeList(): Promise { const themes = ["darkly", "darkly-red", "litely", "litely-red"]; if (existsSync(extraThemesFolder)) { const dirThemes = await readdir(extraThemesFolder); const cssThemes = dirThemes .filter(d => d.endsWith(".css")) .map(d => d.replace(".css", "")); themes.push(...cssThemes); } return themes; } server.get("/css/themelist", async (_req, res) => { res.type("json"); res.send(JSON.stringify(await buildThemeList())); }); // server.use(cookieParser()); server.get("/*", async (req, res) => { try { const activeRoute = routes.find(route => matchPath(req.path, route)); const context = {} as any; let auth: string | undefined = IsomorphicCookie.load("jwt", req); const getSiteForm: GetSite = { auth }; const promises: Promise[] = []; const headers = setForwardedHeaders(req.headers); const client = new LemmyHttp(getHttpBaseInternal(), headers); // Get site data first // This bypasses errors, so that the client can hit the error on its own, // in order to remove the jwt on the browser. Necessary for wrong jwts let try_site: any = await client.getSite(getSiteForm); if (try_site.error == "not_logged_in") { console.error( "Incorrect JWT token, skipping auth so frontend can remove jwt cookie" ); getSiteForm.auth = undefined; auth = undefined; try_site = await client.getSite(getSiteForm); } const site: GetSiteResponse = try_site; initializeSite(site); const initialFetchReq: InitialFetchRequest = { client, auth, path: req.path, query: req.query, site, }; if (activeRoute?.fetchInitialData) { promises.push(...activeRoute.fetchInitialData(initialFetchReq)); } const routeData = await Promise.all(promises); // Redirect to the 404 if there's an API error if (routeData[0] && routeData[0].error) { const error = routeData[0].error; console.error(error); if (error === "instance_is_private") { return res.redirect(`/signup`); } else { return res.send(`404: ${removeAuthParam(error)}`); } } const isoData: IsoData = { path: req.path, site_res: site, routeData, }; const wrapper = ( ); if (context.url) { return res.redirect(context.url); } const eruda = ( <> ); const erudaStr = process.env["LEMMY_UI_DEBUG"] ? renderToString(eruda) : ""; const root = renderToString(wrapper); const helmet = Helmet.renderStatic(); const config: ILemmyConfig = { wsHost: process.env.LEMMY_UI_LEMMY_WS_HOST }; const appleTouchIcon = site.site_view.site.icon ? `data:image/png;base64,${sharp( await fetchIconPng(site.site_view.site.icon) ) .resize(180, 180) .extend({ bottom: 20, top: 20, left: 20, right: 20, background: "#222222", }) .png() .toBuffer() .then(buf => buf.toString("base64"))}` : favIconPngUrl; res.send(` ${erudaStr} ${customHtmlHeader} ${helmet.title.toString()} ${helmet.meta.toString()} ${helmet.link.toString()}
${root}
`); } catch (err) { console.error(err); return res.send(`404: ${removeAuthParam(err)}`); } }); server.listen(Number(port), hostname, () => { console.log(`http://${hostname}:${port}`); }); function setForwardedHeaders(headers: IncomingHttpHeaders): { [key: string]: string; } { let out: { [key: string]: string } = {}; if (headers.host) { out.host = headers.host; } let realIp = headers["x-real-ip"]; if (realIp) { out["x-real-ip"] = realIp as string; } let forwardedFor = headers["x-forwarded-for"]; if (forwardedFor) { out["x-forwarded-for"] = forwardedFor as string; } return out; } process.on("SIGINT", () => { console.info("Interrupted"); process.exit(0); }); function removeAuthParam(err: any): string { return removeParam(err.toString(), "auth"); } function removeParam(url: string, parameter: string): string { return url .replace(new RegExp("[?&]" + parameter + "=[^&#]*(#.*)?$"), "$1") .replace(new RegExp("([?&])" + parameter + "=[^&]*&"), "$1"); } const iconSizes = [72, 96, 128, 144, 152, 192, 384, 512]; const defaultLogoPathDirectory = path.join( process.cwd(), "dist", "assets", "icons" ); export async function generateManifestBase64(site: Site) { const url = ( process.env.NODE_ENV === "development" ? "http://localhost:1236/" : getHttpBase() ).replace(/\/$/g, ""); const icon = site.icon ? await fetchIconPng(site.icon) : null; const manifest = { name: site.name, description: site.description ?? "A link aggregator for the fediverse", start_url: url, scope: url, display: "standalone", id: "/", background_color: "#222222", theme_color: "#222222", icons: await Promise.all( iconSizes.map(async size => { let src = await readFile( path.join(defaultLogoPathDirectory, `icon-${size}x${size}.png`) ).then(buf => buf.toString("base64")); if (icon) { src = await sharp(icon) .resize(size, size) .png() .toBuffer() .then(buf => buf.toString("base64")); } return { sizes: `${size}x${size}`, type: "image/png", src: `data:image/png;base64,${src}`, purpose: "any maskable", }; }) ), }; return Buffer.from(JSON.stringify(manifest)).toString("base64"); } async function fetchIconPng(iconUrl: string) { return await fetch( iconUrl.replace(/https?:\/\/localhost:\d+/g, getHttpBaseInternal()) ) .then(res => res.blob()) .then(blob => blob.arrayBuffer()); }