app.js 13 KB

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210211212213214215216217218219220221222223224225226227228229230231232233234235236237238239240241242243244245246247248249250251252253254255256257258259260261262263264265266267268269270271272273274275276277278279280281282283284285286287288289290291292293294295296297298299300301302303304305306307308309310311312313314315316317318319320321322323324325326327328329330331332333334335336337338339340341342343344345346347348349350351352353354355356357358359360361362363364365366367368369370371372373374375376377378379380381382383384385386387388389390391392393394395
  1. const express = require('express');
  2. const app = express()
  3. const cors = require("cors");
  4. const http = require('http'); //create new http
  5. const mongoose = require('mongoose');
  6. const socket = require("socket.io");
  7. const User = require('./db/models/User');
  8. const Message = require('./db/models/Message');
  9. const jwt = require('jsonwebtoken');
  10. const bcrypt = require('bcrypt');
  11. require('dotenv').config(); // add dotnv for config
  12. const Uuid = require('uuid'); //lib for unic id generate
  13. const fileupload = require('express-fileupload');
  14. const fs = require('fs');
  15. const ORIGIN_URL = process.env.REACT_APP_BASE_URL
  16. const server = http.createServer(app);
  17. app.use(cors());
  18. app.use(express.json());
  19. app.use(fileupload())
  20. app.use(express.static('avatars')); //folder for static files
  21. const io = require("socket.io")(server, {
  22. cors: ORIGIN_URL
  23. });
  24. const PORT = process.env.PORT || 5000;
  25. const TOKEN_KEY = process.env.TOKEN_KEY || 'rGH4r@3DKOg06hgj';
  26. const HASH_KEY = 7;
  27. const STATIC_PATH = process.env. STATIC_PATH || 'avatars';
  28. const generateToken = (id, userName, isAdmin) => {
  29. const payload = {
  30. id,
  31. userName,
  32. isAdmin
  33. }
  34. return jwt.sign(payload, TOKEN_KEY);
  35. }
  36. const isValidUserName = (userName) => {
  37. const nameRegex = /[^A-Za-z0-9]/ ;
  38. return (!nameRegex.test(userName) && userName.trim().length > 2);
  39. }
  40. const getAllDbUsers = async (socket) => {
  41. const usersDb = await User.find({})
  42. socket.emit('allDbUsers', usersDb)
  43. }
  44. const getOneUser = async (userName) => {
  45. const userInDb = await User.findOne({userName});
  46. return userInDb;
  47. }
  48. app.post('/login', async (req, res) => {
  49. try {
  50. const {userName,password} = req.body;
  51. if (!isValidUserName(userName)){
  52. return res.status(400).json({message: 'Invalid username'})
  53. }
  54. const dbUser = await getOneUser(userName)
  55. if (dbUser?.isBanned){
  56. return res.status(401).json({message: 'Your account has been banned!!!'})
  57. }
  58. const hashPassword = await bcrypt.hash(password, HASH_KEY);
  59. if (!dbUser) {
  60. const user = new User({
  61. userName,
  62. hashPassword,
  63. isAdmin: !await User.count().exec(),
  64. isBanned: false,
  65. isMutted: false,
  66. avatar: '',
  67. messages: []
  68. });
  69. await user.save()
  70. return res.json({
  71. token: generateToken(user.id, user.userName, user.isAdmin)
  72. });
  73. }
  74. if (dbUser && !bcrypt.compareSync(password, dbUser.hashPassword)){
  75. return res.status(400).json({message: 'Invalid credantials'})
  76. }
  77. res.json({
  78. token: generateToken(dbUser.id, dbUser.userName, dbUser.isAdmin),
  79. })
  80. } catch (e) {
  81. console.log(e);
  82. res.status(500).json({message: `Error ${e}`});
  83. }
  84. })
  85. app.post('/avatar', async (req, res) => {
  86. if (!req.files || Object.keys(req.files).length === 0) {
  87. return res.status(400).json('No files were uploaded.');
  88. }
  89. try {
  90. const file = req.files.file;
  91. const user = jwt.verify(req.body.token, TOKEN_KEY);
  92. const avatarFileName = Uuid.v4() + '.jpeg';
  93. file.mv(STATIC_PATH + '\/' + avatarFileName)
  94. const userFromDb = await getOneUser(user.userName);
  95. if(userFromDb.avatar){
  96. const oldAvatar = userFromDb.avatar;
  97. fs.unlinkSync(STATIC_PATH + '\/' + oldAvatar)
  98. }
  99. await User.findOneAndUpdate({userName: user.userName},{ $set: {'avatar': avatarFileName}}, {
  100. new: true
  101. });
  102. return res.json({ message:'Avatar was uploud succesfully...', avatarUrl: avatarFileName})
  103. } catch (error) {
  104. res.status(500).json({message: `Error uppload file to serverp: ${error}`});
  105. }
  106. })
  107. app.post('/files', async (req, res) => {
  108. if (!req.files || Object.keys(req.files).length === 0) {
  109. return res.status(400).json('No files were uploaded.');
  110. }
  111. const user = jwt.verify(req.body.token, TOKEN_KEY);
  112. const oneUser = await getOneUser(user.userName);
  113. if(oneUser.isMutted){
  114. return;
  115. }
  116. const files = req.files.files;
  117. if (files.length) {
  118. for (let i = 0; i < files.length; i++) {
  119. let file = files[i]
  120. file.mv(STATIC_PATH + '\/' + file.name)
  121. const message = new Message({
  122. text: file.name,
  123. userName: user.userName,
  124. createDate: Date.now(),
  125. user: oneUser.id, //add link to other collection by id
  126. file: file.name,
  127. fileType: file.mimetype
  128. });
  129. try {
  130. await message.save();
  131. if(!oneUser.messages){
  132. await oneUser.update({ $set: {'messages': []}});
  133. }
  134. await oneUser.messages.push(message)
  135. await oneUser.save()
  136. }
  137. catch (error) {
  138. console.log('Message save to db error', error);
  139. }
  140. const newMessages = await message.populate( {path:'user'})
  141. io.emit('newmessage', newMessages);
  142. }}
  143. else {
  144. if (files.name == 'blob') {
  145. files.name = Uuid.v4() + '.jpeg'
  146. }
  147. files.mv(STATIC_PATH + '\/' + files.name); //for one file
  148. const message = new Message({
  149. text: files.name,
  150. userName: user.userName,
  151. createDate: Date.now(),
  152. user: oneUser.id, //add link to other collection by id
  153. file: files.name,
  154. fileType: files.mimetype
  155. });
  156. try {
  157. await message.save();
  158. if(!oneUser.messages){
  159. await oneUser.update({ $set: {'messages': []}});
  160. }
  161. await oneUser.messages.push(message)
  162. await oneUser.save()
  163. }
  164. catch (error) {
  165. console.log('Message save to db error', error);
  166. }
  167. const newMessages = await message.populate( {path:'user'})
  168. io.emit('newmessage', newMessages);
  169. }
  170. return res.json({ message:'File was uploud succesfully...'})
  171. })
  172. io.use( async (socket, next) => {
  173. const token = socket.handshake.auth.token;
  174. const sockets = await io.fetchSockets();
  175. if(!token) {
  176. console.log('socket disconnect')
  177. socket.disconnect();
  178. return;
  179. }
  180. const usersOnline = [];
  181. sockets.map(sock => usersOnline.push(sock.user))
  182. try {
  183. const user = jwt.verify(token, TOKEN_KEY);
  184. const userName = user.userName;
  185. const dbUser = await getOneUser(userName);
  186. if(dbUser.isBanned){
  187. socket.disconnect();
  188. return;
  189. }
  190. socket.user = user;
  191. const exist = sockets.find(current => current.user.userName == socket.user.userName)
  192. // console.log('exist ' , exist)
  193. if(exist) { //&& !user.isAdmin - add for two or more admins
  194. console.log(exist.user.userName, 'exist twice entering...')
  195. exist.disconnect();
  196. }
  197. } catch(e) {
  198. console.log(e);
  199. socket.disconnect();
  200. }
  201. next();
  202. });
  203. io.on("connection", async (socket) => {
  204. const userName = socket.user.userName;
  205. const sockets = await io.fetchSockets();
  206. const dbUser = await getOneUser(userName);
  207. io.emit('usersOnline', sockets.map(sock => sock.user)); // send array online users
  208. socket.emit('connected', dbUser); //socket.user
  209. if(socket.user.isAdmin){
  210. getAllDbUsers(socket);
  211. }//sent all users from db to admin
  212. const messagesToShow = await Message.find({}).sort({ 'createDate': -1 }).limit(20).populate( {path:'user'});
  213. socket.emit('allmessages', messagesToShow.reverse());
  214. socket.on("message", async (data) => {
  215. const dateNow = Date.now(); // for correct working latest post
  216. const post = await Message.findOne({userName}).sort({ 'createDate': -1 })
  217. const oneUser = await getOneUser(userName);
  218. if(oneUser.isMutted){ //(oneUser.isMutted || !post)
  219. return;
  220. }
  221. if(((Date.now() - Date.parse(post?.createDate)) < 1500)){
  222. console.log((Date.now() - Date.parse(post?.createDate)))// can use to show timer near by button
  223. return;
  224. }
  225. // if(!oneUser.isMutted && post){
  226. // if(((Date.now() - Date.parse(post.createDate)) > 150)){//change later 15000
  227. const message = new Message({
  228. text: data.message,
  229. userName: userName,
  230. createDate: Date.now(),
  231. user: oneUser.id, //add link to other collection by id
  232. });
  233. try {
  234. await message.save();
  235. if(!oneUser.messages){
  236. await oneUser.update({ $set: {'messages': []}});
  237. }
  238. await oneUser.messages.push(message)
  239. await oneUser.save()
  240. } catch (error) {
  241. console.log('Message save to db error', error);
  242. }
  243. const newMessages = await message.populate( {path:'user'})
  244. io.emit('newmessage', newMessages);
  245. // }
  246. // }
  247. });
  248. try {
  249. socket.on("disconnect", async () => {
  250. const sockets = await io.fetchSockets();
  251. io.emit('usersOnline', sockets.map(sock => sock.user));
  252. console.log(`user :${socket.user.userName} , disconnected to socket`);
  253. });
  254. console.log(`user :${socket.user.userName} , connected to socket`);
  255. socket.on("muteUser",async (data) => {
  256. if(!socket.user.isAdmin){
  257. return;
  258. }
  259. // if(socket.user.isAdmin){
  260. const {user, prevStatus} = data;
  261. const sockets = await io.fetchSockets();
  262. const mute = await User.updateOne({userName : user}, {$set: {isMutted :!prevStatus}});
  263. getAllDbUsers(socket);
  264. const exist = sockets.find( current => current.user.userName == user)
  265. const dbUser = await getOneUser(user);
  266. if(exist){
  267. exist.emit('connected', dbUser);
  268. }
  269. // }
  270. });
  271. socket.on("banUser",async (data) => {
  272. if(!socket.user.isAdmin){
  273. return;
  274. }
  275. // if(socket.user.isAdmin) {
  276. const {user, prevStatus} = data;
  277. const sockets = await io.fetchSockets();
  278. const ban = await User.updateOne({userName : user}, {$set: {isBanned:!prevStatus}});
  279. getAllDbUsers(socket)
  280. const exist = sockets.find( current => current.user.userName == user)
  281. if(exist){
  282. exist.emit('ban', "dbUser")
  283. exist.disconnect();
  284. }
  285. // }
  286. });
  287. socket.on('userWriting', async () => {
  288. let isTyping = true;
  289. io.emit('writing', {userName, isTyping})
  290. })
  291. socket.on('editmessage', async (data) => {
  292. console.log(data.messageNewText)
  293. const user = jwt.verify(data.token, TOKEN_KEY)
  294. if(!user){
  295. return
  296. }
  297. try {
  298. await Message.findByIdAndUpdate(data.messageId, {text:data.messageNewText})
  299. const messagesToShow = await Message.find({}).sort({ 'createDate': -1 }).limit(20).populate( {path:'user'});
  300. io.emit('allmessages', messagesToShow.reverse())
  301. } catch (error) {
  302. console.log(error)
  303. }
  304. })
  305. socket.on('deleteMessage', async (data) => {
  306. const user = jwt.verify(data.token, TOKEN_KEY)
  307. console.log(data.messageId)
  308. if(!user){
  309. return
  310. }
  311. try {
  312. await Message.findByIdAndDelete(data.messageId)
  313. const messagesToShow = await Message.find({}).sort({ 'createDate': -1 }).limit(20).populate( {path:'user'});
  314. io.emit('allmessages', messagesToShow.reverse())
  315. } catch (error) {
  316. console.log(error)
  317. }
  318. })
  319. } catch (e) {
  320. console.log(e);
  321. }
  322. });
  323. //server and database start
  324. const start = async () => {
  325. try {
  326. await mongoose.connect('mongodb://localhost:27017/chat')
  327. .then(() => console.log(`DB started`))
  328. server.listen(PORT, () => {
  329. console.log(`Server started. Port: ${PORT}`);
  330. })
  331. } catch (e) {
  332. console.log(e);
  333. }
  334. }
  335. start();