setting up the playground

iolufemi · iolufemi · commit d3f304694346 · 2017-03-18T11:35:25.000Z
diff --git a/app.js b/app.js
diff --git a/config/index.js b/config/index.js
@@ -0,0 +1,8 @@
+"use strict";
+module.exports = {
+	env: process.env.NODE_ENV || 'development',
+	port: process.env.PORT || 3000,
+	trustProxy: process.env.TRUST_PROXY || 'no',
+	bugsnagKey: process.env.BUGSNAG_KEY || false,
+	secureMode: process.env.SECURE_MODE || false
+};
diff --git a/gulpfile.js b/gulpfile.js
@@ -0,0 +1,9 @@
+const gulp = require('gulp');
+const jshint = require('gulp-jshint');
+const stylish = require('jshint-stylish');
+ 
+gulp.task('lint', function() {
+  return gulp.src('./lib/*.js')
+    .pipe(jshint())
+    .pipe(jshint.reporter(stylish));
+});
diff --git a/package.json b/package.json
@@ -0,0 +1,48 @@
+{
+  "name": "snipe",
+  "version": "0.0.1",
+  "description": "API service for a freelancer marketplace",
+  "main": "app.js",
+  "scripts": {
+    "test": "mocha"
+  },
+  "repository": {
+    "type": "git",
+    "url": "git+https://github.com/EnsembleLab/snipe.git"
+  },
+  "keywords": [
+    "marketplace",
+    "freelance"
+  ],
+  "author": "Olufemi Olanipekun <iolufemi@ymail.com>",
+  "license": "GPL-3.0",
+  "bugs": {
+    "url": "https://github.com/EnsembleLab/snipe/issues"
+  },
+  "homepage": "https://github.com/EnsembleLab/snipe#readme",
+  "devDependencies": {
+    "chai": "^3.5.0",
+    "gulp": "^3.9.1",
+    "gulp-jshint": "^2.0.4",
+    "gulp-mocha": "^4.1.0",
+    "gulp-nodemon": "^2.2.1",
+    "jshint": "^2.9.4",
+    "jshint-stylish": "^2.2.1",
+    "mocha": "^3.2.0"
+  },
+  "dependencies": {
+    "aes-js": "^3.0.0",
+    "body-parser": "^1.17.1",
+    "bugsnag": "^1.9.1",
+    "crypto": "0.0.3",
+    "debug": "^2.6.3",
+    "express": "^4.15.2",
+    "lodash": "^4.17.4",
+    "mongoose": "^4.9.0",
+    "q": "^1.4.1",
+    "randomstring": "^1.1.5",
+    "util": "^0.10.3",
+    "winston": "^2.3.1",
+    "winston-bugsnag": "^2.1.0"
+  }
+}
diff --git a/services/services/logger/index.js b/services/services/logger/index.js
@@ -0,0 +1,35 @@
+"use strict";
+var log = require('winston');
+var config = require('../../config');
+var response = require('../response');
+var bugsnag = require('bugsnag');
+var winstonBugsnag = require('winston-bugsnag');
+
+if(config.env === 'production'){
+	if(!config.bugsnagKey){
+		log.add(log.transports.File, { filename: 'app-'+new Date().toDateString().split(' ').join('_')+'.log', level: 'warn'});
+		log.remove(log.transports.Console);
+	}else{
+		bugsnag.register(config.bugsnagKey);
+		log.add(log.transports.File, { filename: 'app-'+new Date().toDateString().split(' ').join('_')+'.log', level: 'warn'});
+		log.add(winstonBugsnag,{level: 'warn'});
+		log.remove(log.transports.Console);
+	}
+}
+
+module.exports = log;
+module.exports.errorHandler = function(err, req, res, next){ // jshint ignore:line
+	response(req, res, next);
+	log.error(err);
+	if(err.statusCode === 404){
+		res.notFound(err);
+	}else if(err.statusCode === 401){
+		res.unauthorized(err);
+	}else if(err.statusCode === 400){
+		res.badRequest(err);
+	}else if(err.statusCode === 503){
+		res.forbidden(err);
+	}else{
+		res.serverError(err);
+	}
+};
diff --git a/services/services/response/badRequest.js b/services/services/response/badRequest.js
@@ -0,0 +1,18 @@
+"use strict";
+var log = require('../logger');
+
+module.exports = function(data, message){
+	log.warn('Sending bad request response: ', data, message || 'bad request');
+
+	if (data !== undefined && data !== null) {
+		if(Object.keys(data).length === 0 && JSON.stringify(data) === JSON.stringify({})){
+			data = data.toString();
+		}
+	}
+	
+	if(data){
+		this.status(400).json({status: 'error', data: data, message: message ? message : 'bad request'});
+	}else{
+		this.status(400).json({status: 'error', message: message ? message : 'bad request'});
+	}
+};
diff --git a/services/services/response/forbidden.js b/services/services/response/forbidden.js
@@ -0,0 +1,18 @@
+"use strict";
+var log = require('../logger');
+
+module.exports = function(data, message){
+	log.warn('Sending forbidden response: ', data, message || 'forbidden');
+
+	if (data !== undefined && data !== null) {
+		if(Object.keys(data).length === 0 && JSON.stringify(data) === JSON.stringify({})){
+			data = data.toString();
+		}
+	}
+	
+	if(data){
+		this.status(503).json({status: 'error', data: data, message: message ? message : 'forbidden'});
+	}else{
+		this.status(503).json({status: 'error', message: message ? message : 'forbidden'});
+	}
+};
diff --git a/services/services/response/index.js b/services/services/response/index.js
@@ -0,0 +1,16 @@
+"use strict";
+var _ = require('lodash');
+
+module.exports = function(req, res, next){
+	var responseTypes = {
+		ok: require('./ok'),
+		badRequest: require('./badRequest'),
+		forbidden: require('./forbidden'),
+		notFound: require('./notFound'),
+		serverError: require('./serverError'),
+		unauthorized: require('./unauthorized')
+	};
+
+	res = _.extend(res, responseTypes);
+	next();
+};
diff --git a/services/services/response/notFound.js b/services/services/response/notFound.js
@@ -0,0 +1,7 @@
+"use strict";
+var log = require('../logger');
+
+module.exports = function(){
+	log.warn('Sending 404 response: '+'not found');
+	this.status(404).json({status: 'error', message: 'not found'});
+};
diff --git a/services/services/response/ok.js b/services/services/response/ok.js
@@ -0,0 +1,36 @@
+"use strict";
+var log = require('../logger');
+var config = require('../../config');
+var encryption = require('../encryption');
+var debug = require('debug')('response');
+
+module.exports = function(data){
+	debug("sending ok response");
+	var req = this.req;
+	var res = this;
+
+	if(req.header('x-tag') && req.method === 'POST' && config.secureMode && data){
+		debug("i want to encrypt");
+		var key = req.header('x-tag');
+		debug('our encryption key: ', key);
+		var text = JSON.stringify(data);
+		debug("about to call encryption method");
+		encryption.encrypt(text, key)
+		.then(function(resp){
+			debug("got response from encryption method: ",resp);
+			log.info('Sending ok response: ', data);
+			res.status(200).json({status: 'success', data: resp, secure: true});
+		})
+		.catch(function(err){
+			debug("got error from encryption method: ", err);
+			res.serverError(err,'Error encrypting response.');
+		});
+	}else{
+		log.info('Sending ok response: ', data);
+		if(data){
+			res.status(200).json({status: 'success', data: data});
+		}else{
+			res.status(200).json({status: 'success'});
+		}
+	}
+};
diff --git a/services/services/response/serverError.js b/services/services/response/serverError.js
@@ -0,0 +1,18 @@
+"use strict";
+var log = require('../logger');
+
+module.exports = function(data, message){
+	log.error('sending server error response: ', data, message || 'server error');
+
+	if (data !== undefined && data !== null) {
+		if(Object.keys(data).length === 0 && JSON.stringify(data) === JSON.stringify({})){
+			data = data.toString();
+		}
+	}
+
+	if(data){
+		this.status(500).json({status: 'error', data: data, message: message ? message : 'server error'});
+	}else{
+		this.status(500).json({status: 'error', message: message ? message : 'server error'});
+	}
+};
diff --git a/services/services/response/unauthorized.js b/services/services/response/unauthorized.js
@@ -0,0 +1,18 @@
+"use strict";
+var log = require('../logger');
+
+module.exports = function(data, message){
+	log.warn('sending unauthorized response: ', data, message || 'unauthorized');
+
+	if (data !== undefined && data !== null) {
+		if(Object.keys(data).length === 0 && JSON.stringify(data) === JSON.stringify({})){
+			data = data.toString();
+		}
+	}
+	
+	if(data){
+		this.status(401).json({status: 'error', data: data, message: message ? message : 'unauthorized'});
+	}else{
+		this.status(401).json({status: 'error', message: message ? message : 'unauthorized'});
+	}
+};
diff --git a/services/services/security/index.js b/services/services/security/index.js
@@ -0,0 +1,123 @@
+"use strict";
+var aesjs = require('aes-js');
+var crypto = require('crypto');
+var config = require('../../config');
+var randomstring = require('randomstring');
+var q = require('q');
+var debug = require('debug')('encryption');
+
+module.exports = {
+	generateKey: function(flutterwaveApiKey, flutterwaveMerchantKey){
+		return q.Promise(function(resolve, reject){
+			var salt = randomstring.generate(256);
+			debug('salt: ', salt);
+
+			var bits = 256;
+
+			crypto.pbkdf2(flutterwaveApiKey+flutterwaveMerchantKey, salt, 100000, bits / 8, 'sha512', function(err, key){
+				if (err){
+					reject(new Error(err));
+				}else{
+					var randomNumber = Math.floor((Math.random() * 9999) + 1);
+					resolve(new Buffer(aesjs.util.convertBytesToString(key, 'hex')+'//////'+randomNumber).toString('base64'));
+				}
+			});
+		});
+	},
+
+	encrypt: function(text, key){
+		debug('started encryption');
+		debug('using key: ', key);
+		key = new Buffer(key, 'base64').toString('utf-8');
+		debug('What i see here: ', key);
+		var splitKey = key.split('//////');
+		key = splitKey[0];
+		var counter = ((splitKey[1] * 1) * 10) / 5;
+		debug('our counter: ', counter);
+		debug('our key: ', key);
+		key = aesjs.util.convertStringToBytes(key, 'hex');
+		debug('in buffer: ', key);
+
+		return q.Promise(function(resolve){
+			debug('encrypting...');
+			debug('our key: ', key);
+
+		    // Convert text to bytes
+		    debug('our text: ',text);
+		    var textBytes = aesjs.util.convertStringToBytes(text);
+		    debug('textBytes: ',textBytes);
+		    var aesCbc = new aesjs.ModeOfOperation.ctr(key, new aesjs.Counter(counter));
+		    var encryptedBytes = aesCbc.encrypt(textBytes);
+
+		    // Convert our bytes back into text
+		    var encryptedText = aesjs.util.convertBytesToString(encryptedBytes, 'hex');
+		    debug('finished encryption');
+		    resolve(encryptedText);
+		});
+	},
+
+	decrypt: function(text, key){
+		debug('text: ',text);
+		key = new Buffer(key, 'base64').toString('utf-8');
+		debug('What i see here: ', key);
+		var splitKey = key.split('//////');
+		key = splitKey[0];
+		var counter = ((splitKey[1] * 1) * 10) / 5;
+		debug('our counter: ', counter);
+		debug('our key: ', key);
+		key = aesjs.util.convertStringToBytes(key, 'hex');
+
+		return q.Promise(function(resolve){
+			debug('our key2: ', key);
+		    // Convert text to bytes
+		    var textBytes = aesjs.util.convertStringToBytes(text, 'hex');
+
+		    // The cipher-block chaining mode of operation maintains internal
+	        // state, so to decrypt a new instance must be instantiated.
+	        var aesCbc = new aesjs.ModeOfOperation.ctr(key, new aesjs.Counter(counter));
+	        var decryptedBytes = aesCbc.decrypt(textBytes);
+
+	        // Convert our bytes back into text
+	        var decryptedText = aesjs.util.convertBytesToString(decryptedBytes);
+	        resolve(decryptedText);
+	    });
+	},
+
+	interpreter: function(req, res, next){
+		var encryption = require('./');
+		if(req.header('x-tag')){
+			res.set('x-tag', req.header('x-tag'));
+			res.set('Access-Control-Expose-Headers','x-tag');
+
+			var key = req.header('x-tag');
+
+			if(req.method === 'POST' && config.secureMode){
+				if(req.body.secureData){
+					encryption.decrypt(req.body.secureData, key)
+					.then(function(resp){
+						if(typeof resp === 'object'){
+							req.body = resp;
+							next();
+						}else{
+							debug('decryptedText: ', resp);
+							var parsedJSON = JSON.parse(resp);
+							req.body = parsedJSON;
+							next();
+						}
+					})
+					.catch(function(err){
+						next(err);
+					});
+				}else{
+					res.badRequest(false,'Expecting an encrypted data to be sent in the secureData body parameter.');
+				}
+			}else{
+				next();
+			}
+		}else if(req.method !== 'POST'){
+			next();
+		}else{
+			res.badRequest(false,'Please initialize and send the x-tag header in every request.');
+		}
+	}
+};
diff --git a/services/services/validator/index.js b/services/services/validator/index.js
