-
Notifications
You must be signed in to change notification settings - Fork 17
Expand file tree
/
Copy pathserver.ts
More file actions
85 lines (68 loc) · 2.53 KB
/
server.ts
File metadata and controls
85 lines (68 loc) · 2.53 KB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
import * as crypto from 'crypto';
import path from 'path';
import express from 'express';
import compression from 'compression';
import { createRequestHandler } from '@remix-run/express';
import { broadcastDevReady } from '@remix-run/node';
import gracefulShutdown from 'http-graceful-shutdown';
import helmet from 'helmet';
import cors from 'cors';
import logger from '~/lib/logger.server';
import * as services from 'services';
import type { Request, Response } from 'express';
const MODE = process.env.NODE_ENV;
const app = express();
app.use((_req, res, next) => {
res.locals.nonce = crypto.randomBytes(16).toString('hex');
next();
});
app.use(
helmet({
contentSecurityPolicy: {
useDefaults: true,
directives: {
// Expect a nonce on scripts
scriptSrc: ["'self'", (_req, res) => `'nonce-${(res as Response).locals.nonce}'`],
// Allow live reload to work over a web socket in development
connectSrc: MODE === 'production' ? ["'self'"] : ["'self'", 'ws:'],
// Don't force https unless in production
upgradeInsecureRequests: MODE === 'production' ? [] : null,
},
},
})
);
app.use(cors());
app.use((req, res, next) => {
// /clean-urls/ -> /clean-urls
if (req.path.endsWith('/') && req.path.length > 1) {
const query = req.url.slice(req.path.length);
const safepath = req.path.slice(0, -1).replace(/\/+/g, '/');
res.redirect(301, safepath + query);
return;
}
next();
});
app.use(compression());
// Remix fingerprints its assets so we can cache forever.
app.use('/build', express.static('public/build', { immutable: true, maxAge: '1y' }));
// Everything else (like favicon.ico) is cached for an hour. You may want to be
// more aggressive with this caching.
app.use(express.static('public', { maxAge: '1h' }));
const BUILD_DIR = path.join(process.cwd(), 'build');
const build = require(BUILD_DIR);
// Pass the nonce we're setting in the CSP headers down to the Remix Loader/Action functions
const getLoadContext = (_req: Request, res: Response) => ({ nonce: res.locals.nonce });
app.all('*', createRequestHandler({ build, getLoadContext }));
const port = process.env.PORT || 8080;
const server = app.listen(port, () => {
// start the various background jobs we run (reconciler, expire records, etc)
services.init().then(() => {
logger.info(`✅ app ready: http://localhost:${port}`);
});
if (process.env.NODE_ENV === 'development') {
broadcastDevReady(build);
}
});
gracefulShutdown(server, {
development: process.env.NODE_ENV !== 'production',
});