expense-tracker/app.js at main · windyScripts/expense-tracker · GitHub

1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114

const fs = require('fs');
const path = require('path');

const bodyParser = require('body-parser');
const cors = require('cors');
const express = require('express');
const helmet = require('helmet');
const compression = require('compression');

const app = express();

const mongoose = require('mongoose');
const morgan = require('morgan');

require('dotenv').config();

const expensesRoutes = require('./routes/expenses');
const passwordRoutes = require('./routes/password');
const purchaseRoutes = require('./routes/purchase');
const authRoutes = require('./routes/user');

const environment = process.env.NODE_ENV;
const accessLogStream = fs.createWriteStream(path.join(__dirname, 'access.log'),
  { flags: 'a' },
);

// allows authorization header from front-end
app.use((req, res, next) => {
  res.setHeader('Access-Control-Allow-Headers', 'Authorization');
  next();
});

if (environment === 'production') {
  app.use(helmet());
  app.use(compression());
}/* else if (environment === 'development') {

} */

app.use(cors({
  origin: '*',
  methods: ['GET', 'POST', 'DELETE'],
}));

app.use(morgan('combined', { stream: accessLogStream }));

app.use(bodyParser.urlencoded({ extended: false }));
app.use(bodyParser.json());

app.use('/auth', authRoutes);
app.use(expensesRoutes);
app.use('/purchase', purchaseRoutes);
app.use('/password', passwordRoutes);

// Serve static assets (CSS, JS, images, etc.)
app.use(express.static(path.join(__dirname, 'public')));

// Explicit routes
app.get('/login', (req, res) => {
  res.sendFile(path.join(__dirname, 'public', 'login', 'index.html'));
});

app.get('/tracker', (req, res) => {
  res.sendFile(path.join(__dirname, 'public', 'tracker', 'index.html'));
});

app.get('/forgot-password', (req, res) => {
  res.sendFile(path.join(__dirname, 'public', 'forgot-password', 'index.html'));
});

// ✅ Health check route
app.get('/health', (req, res) => {
  res.status(200).json({ status: 'ok' });
});

// Serve React / HTML routes for client-side routing
app.use((req, res, next) => {
  // If the request matches a static file, let express.static handle it
  if (req.path.includes('.') || req.path.endsWith('.css') || req.path.endsWith('.js')) {
    return next(); // pass to express.static or next middleware
  }

  // Otherwise, serve the main HTML page
  res.sendFile(path.join(__dirname, 'public', 'signup', 'index.html'), err => {
    if (err) {
      // Fallback error handling
      console.error('Error sending index.html:', err);
      if (!res.headersSent) {
        res.status(500).send('Internal Server Error');
      }
    }
  });
});

async function start() {
  try {
    await mongoose.connect(process.env.DB_STRING, {
      useNewUrlParser: true,
      useUnifiedTopology: true,
    });
    console.log('Database connected. :)');

    const port = process.env.PORT || 3000;
    app.listen(port, '0.0.0.0', () => {
      console.log(`Server running on port ${port}`);
    });
  } catch (err) {
    console.error('Failed to start server:', err);
    process.exit(1); // Exit with failure if DB can't connect
  }
}

start();