Mirroristas/pockethost
2
0
Fork 0
mirror of https://github.com/pockethost/pockethost.git synced 2025-07-02 19:02:29 +00:00
Code Issues Packages Projects Releases Wiki Activity

wip

Browse Source
This commit is contained in:
Ben Allfree 2024-02-29 02:48:40 -08:00
parent cae8e79e0f
commit bbeb315e78
2 changed files with 19 additions and 20 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

34
src/cli/proxy/server.ts
View File

@ -5,11 +5,14 @@ import {
IS_DEV, IS_DEV,
MOTHERSHIP_PORT, MOTHERSHIP_PORT,
SETTINGS, SETTINGS,
SSL_CERT,
SSL_KEY,
} from '$constants' } from '$constants'
import { forEach } from '@s-libs/micro-dash' import { forEach } from '@s-libs/micro-dash'
import cors from 'cors' import cors from 'cors'
import express, { ErrorRequestHandler } from 'express' import express, { ErrorRequestHandler } from 'express'
import 'express-async-errors' import 'express-async-errors'
import enforce from 'express-sslify'
import fs from 'fs' import fs from 'fs'
import http from 'http' import http from 'http'
import https from 'https' import https from 'https'
@ -37,6 +40,7 @@ const hostnameRoutes = IS_DEV() ? DEV_ROUTES : PROD_ROUTES
const app = express() const app = express()
app.use(cors()) app.use(cors())
app.use(enforce.HTTPS())
// Use the IP blocker middleware // Use the IP blocker middleware
app.use(createIpWhitelistMiddleware(IPCIDR_LIST())) app.use(createIpWhitelistMiddleware(IPCIDR_LIST()))
@ -69,23 +73,17 @@ const errorHandler: ErrorRequestHandler = (err, req, res, next) => {
} }
app.use(errorHandler) app.use(errorHandler)
if (IS_DEV()) { http.createServer(app).listen(80, () => {
http.createServer(app).listen(80, () => { console.log('SSL redirect server listening on 80')
console.log('HTTP server running on port 80') })
})
} else {
// HTTPS server options
const httpsOptions = {
key: fs.readFileSync(
'/home/pockethost/pockethost/ssl/cloudflare-privkey.pem',
),
cert: fs.readFileSync(
'/home/pockethost/pockethost/ssl/cloudflare-origin.pem',
),
}
// Create HTTPS server // HTTPS server options
https.createServer(httpsOptions, app).listen(443, () => { const httpsOptions = {
console.log('HTTPS server running on port 443') key: fs.readFileSync(SSL_KEY()),
}) cert: fs.readFileSync(SSL_CERT()),
} }
// Create HTTPS server
https.createServer(httpsOptions, app).listen(443, () => {
console.log('HTTPS server running on port 443')
})

5
src/constants.ts
View File

@ -46,6 +46,7 @@ export const _MOTHERSHIP_APP_ROOT = (...paths: string[]) =>
export const _INSTANCE_APP_ROOT = (...paths: string[]) => export const _INSTANCE_APP_ROOT = (...paths: string[]) =>
join(_PH_PROJECT_ROOT, 'src', 'instance-app', ...paths) join(_PH_PROJECT_ROOT, 'src', 'instance-app', ...paths)
const TLS_PFX = `tls`
export const SETTINGS = { export const SETTINGS = {
UPGRADE_MODE: mkBoolean(false), UPGRADE_MODE: mkBoolean(false),
@ -88,8 +89,8 @@ export const SETTINGS = {
PH_BIN_CACHE: mkPath(join(_PH_HOME, '.pbincache'), { create: true }), PH_BIN_CACHE: mkPath(join(_PH_HOME, '.pbincache'), { create: true }),
PH_FTP_PORT: mkNumber(21), PH_FTP_PORT: mkNumber(21),
SSL_KEY: mkPath(join(_SSL_HOME, `tls.key`)), SSL_KEY: mkPath(join(_SSL_HOME, `${TLS_PFX}.key`)),
SSL_CERT: mkPath(join(_SSL_HOME, `tls.cert`)), SSL_CERT: mkPath(join(_SSL_HOME, `${TLS_PFX}.cert`)),
PH_FTP_PASV_IP: mkString(`0.0.0.0`), PH_FTP_PASV_IP: mkString(`0.0.0.0`),
PH_FTP_PASV_PORT_MIN: mkNumber(10000), PH_FTP_PASV_PORT_MIN: mkNumber(10000),
PH_FTP_PASV_PORT_MAX: mkNumber(20000), PH_FTP_PASV_PORT_MAX: mkNumber(20000),