Stuffed a server into one file

Author: ds0nt

.gitignore

@@ -0,0 +1 @@
+node_modules

Makefile

@@ -0,0 +1,22 @@
+
+SHELL := bash
+
+export PORT=1999
+export MONGODB=localhost/klouds
+export ASSETS=../client/dist
+export JWT_KEY=klouds_is_so_secure
+export STRIPE_SK=sk_test_Z34c2IRtyypD4EIQjdowKeLd
+
+all: dev
+.PHONY: all
+
+node_modules: package.json
+	# Installing node modules
+	@ npm install
+	@ touch node_modules
+
+dev:
+	# Starting development server
+	@iojs bootstrap.js
+
+.PHONY: dev

bootstrap.js

@@ -0,0 +1,17 @@
+require('babel/register')
+
+/**
+ * Environment Variables Validation
+ */
+var env = [ 'PORT', 'MONGODB', 'ASSETS', 'JWT_KEY', 'STRIPE_SK' ];
+env.map(function (v) {
+  if (typeof process.env[v] === 'undefined') {
+    throw "Missing Environment Variable: " + v
+  }
+  console.log(v, process.env[v])
+})
+
+/**
+ * Babelized Server Code
+ */
+var server = require('./server.js');

package.json

@@ -0,0 +1,28 @@
+{
+  "name": "klouds-backend",
+  "version": "1.0.0",
+  "description": "",
+  "main": "index.js",
+  "scripts": {
+    "test": "echo \"Error: no test specified\" && exit 1"
+  },
+  "author": "",
+  "license": "ISC",
+  "dependencies": {
+    "assert": "^1.3.0",
+    "babel": "^5.6.7",
+    "co-monk": "^1.0.0",
+    "joi": "^6.5.0",
+    "koa": "^0.21.0",
+    "koa-joi-router": "^1.3.1",
+    "koa-json": "^1.1.1",
+    "koa-json-body": "0.0.3",
+    "koa-jwt": "^1.1.0",
+    "koa-route": "^2.4.1",
+    "koa-static": "^1.4.9",
+    "lodash": "^3.9.3",
+    "monk": "^1.0.1",
+    "pswd": "^3.0.1",
+    "stripe": "^3.5.0"
+  }
+}

server.js

@@ -0,0 +1,188 @@
+let { PORT, MONGODB, ASSETS, JWT_KEY, STRIPE_SK } = process.env;
+
+import { join }  from 'path'
+import koa from 'koa'
+import json from 'koa-json'
+import jsonBody from 'koa-json-body'
+import route from 'koa-route'
+import serve from 'koa-static'
+import jwt from 'koa-jwt'
+import Joi from 'joi';
+import monk from 'monk'
+import wrap from 'co-monk'
+import router from 'koa-joi-router'
+
+let pswd = require('pswd')();
+let auth = jwt({ secret: process.env.JWT_KEY });
+let staticFiles = serve(join(__dirname, ASSETS), { defer: false })
+let stripe = require('stripe')(process.env.STRIPE_SK);
+
+/**
+ * Mongo DB Tables
+ */
+let db = monk(process.env.MONGODB);
+let appsDb = wrap(db.get('apps'));
+let usersDb = wrap(db.get('users'));
+let stripeDb = wrap(db.get('stripe'));
+
+
+/**
+ * Koa Application & Middleware
+ */
+
+function* errors(next) {
+ try {
+   yield next;
+ } catch (err) {
+ 	console.error(err);
+
+   this.status = err.status || 500;
+   this.body = {
+   	error: err.message
+   }
+   this.app.emit('error', err, this);
+ }
+}
+
+
+function authorize(user) {
+  delete user.password;
+  return {
+    token: jwt.sign(user, process.env.JWT_KEY, { expiresInMinutes: 60 * 5 }),
+    user: user,
+  }
+}
+
+
+let loginRoute = {
+  method: 'post',
+  path: '/login',
+  validate: {
+    body: {
+      email: Joi.string().lowercase().email(),
+      password: Joi.string().max(100)
+    },
+    type: 'json'
+  },
+  handler: function* () {
+    var email = this.request.body.email;
+    var password = this.request.body.password;
+
+    var user = yield usersDb.findOne({ email: email });
+    this.assert(user, 401, 'authentication failed');
+
+    var valid = yield pswd.compare(password, user.password);
+    this.assert(valid, 401, 'authentication failed');
+
+    this.body = authorize(user);
+
+  }
+};
+
+let registerRoute = {
+  method: 'post',
+  path: '/register',
+  validate: {
+    body: {
+      email: Joi.string().lowercase().email(),
+      password: Joi.string().max(100)
+    },
+    type: 'json'
+  },
+  handler: function* () {
+    var email = this.request.body.email;
+    var password = this.request.body.password;
+
+    var duplicate = yield usersDb.findOne({ email: email });
+    this.assert(!duplicate, 400, 'Klouds ID already exists');
+
+    var hash = yield pswd.hash(password);
+    this.assert(hash, 500, 'Failed to hash password');
+
+    var user = yield usersDb.insert({
+      email: email,
+      password: hash
+    });
+    this.assert(user, 500, 'Failed to insert new user');
+
+    this.body = authorize(user);
+  }
+}
+
+let appsRoute = {
+  method: 'get',
+  path: '/apps',
+  handler: function*() {
+    this.body = yield appsDb.find({ disabled: { "$exists" : false }});;
+  }
+}
+
+let disabledRoute = {
+  method: 'get',
+  path: '/disabled',
+  handler: function*() {
+    this.body = yield appsDb.find({ disabled: true });
+  }
+}
+
+let subscribeRoute = {
+  method: 'post',
+  path: '/subscribe',
+  validate: { type: 'json' },
+  handler: [
+    auth,
+    function*() {
+        let createStripeCustomer = (customer) => function get_thunked_lol(cb) {
+          return stripe.customers.create(customer, cb)
+      }
+
+      var params = this.request.body;
+      var app = params.app;
+      var stripeToken = params.tok;
+      var customer = yield createStripeCustomer({
+        source: stripeToken,
+        plan: "web_application",
+        email: this.state.user.email
+      });
+
+      console.log('Stripe Customer', stripeCustomer);
+
+      this.assert(customer, 500, 'Stripe api call failed');
+
+      this.body = { customer: customer.id };
+
+      var inserted = yield stripeDb.insert(customer);
+      console.log(inserted);
+    }
+  ]
+}
+
+
+
+
+let app = koa();
+
+app.use(json());
+// app.use(jsonBody({ limit: '10kb' }));
+app.use(errors);
+app.use(staticFiles);
+
+let noAuth = router();
+noAuth.route(loginRoute);
+noAuth.route(registerRoute);
+noAuth.route(appsRoute);
+noAuth.route(disabledRoute);
+app.use(noAuth.middleware());
+
+let user = router();
+user.route(subscribeRoute);
+app.use(user.middleware());
+
+/*                          You Shall Not Pass!                       */
+// AUTH AUTH AUTH AUTH AUTH |UTH AUTH AUTH AUT| AUTH AUTH AUTH AUTH AUTH
+// AUTH AUTH AUTH AUTH AUTH |UTH AUTH AUTH AUT| AUTH AUTH AUTH AUTH AUTH
+
+app.use(auth);
+
+console.log(`Listening on port ${PORT}`);
+app.listen(PORT);

test.sh

@@ -0,0 +1,39 @@
+#!/bin/bash
+
+BASE=localhost:1999
+
+
+apps=`curl -s \
+  -H "Content-Type: application/json" \
+  localhost:1999/apps`
+echo 'Apps:'
+iojs -e "console.log($apps.map(function(v){ return v.name } ).join(', '))"
+echo
+
+disabled=`curl -s \
+  -H "Content-Type: application/json" \
+  localhost:1999/disabled`
+echo 'Disabled Apps:'
+iojs -e "console.log($disabled.map(function(v){ return v.name } ).join(', '))"
+echo
+
+curl -i \
+  -H "Content-Type: application/json" \
+  -d '{
+  "email": "'$(date +%s)'@klouds.io",
+  "password": "TEST123"
+}' \
+  http://localhost:1999/register \
+  http://localhost:1999/login
+
+
+# echo -n -e "\nPOST /login:    \t--\t"
+# curl --silent -i localhost:1999/login \
+#   -d [email protected] \
+#   -d password=test \
+#   --header "Content-Type:application/json"
+#   # | head -1
+#
+# echo -n -e "\nGET /subscribe: \t--\t"
+# curl --silent -i localhost:1999/subscribe\
+# | head -1