166 lines
6 KiB
JavaScript
166 lines
6 KiB
JavaScript
|
const fs = require("fs"),
|
||
|
config = require("../config"),
|
||
|
fetch = require("node-fetch");
|
||
|
|
||
|
/**
|
||
|
* Middleware function that checks if the current user is an admin.
|
||
|
* If the user is not an admin, it redirects them to the "/key" route.
|
||
|
* If the user is an admin, it calls the next middleware function.
|
||
|
*
|
||
|
* @param {Object} req - The Express request object.
|
||
|
* @param {Object} res - The Express response object.
|
||
|
* @param {Function} next - The next middleware function to be called.
|
||
|
*/
|
||
|
async function isAdmin(req, res, next) {
|
||
|
if (!req.user) return res.redirect("/key");
|
||
|
|
||
|
const admins = req.app.locals.admins;
|
||
|
const steamid = req.user.steamid;
|
||
|
|
||
|
if (!admins[steamid]) return res.status(401).json({ res: res.statusCode, message: "Unauthorized." });
|
||
|
|
||
|
return next();
|
||
|
}
|
||
|
|
||
|
/**
|
||
|
* Middleware function that checks if the current user has a valid authentication key.
|
||
|
* If the user does not have a valid key, it redirects them to the "/key" route.
|
||
|
* If the user has a valid key, it calls the next middleware function.
|
||
|
*
|
||
|
* @param {Object} req - The Express request object.
|
||
|
* @param {Object} res - The Express response object.
|
||
|
* @param {Function} next - The next middleware function to be called.
|
||
|
*/
|
||
|
async function isUser(req, res, next) {
|
||
|
if (!req.user) return res.redirect("/key");
|
||
|
|
||
|
const keys = await req.app.locals.db.getData("/keys");
|
||
|
const steamIds = Object.fromEntries(Object.entries(keys).map(([k, v]) => [v, k]));
|
||
|
const key = req.user.authKey;
|
||
|
|
||
|
if (!steamIds[key]) return res.status(401).json({ res: res.statusCode, message: "Unauthorized." });
|
||
|
|
||
|
return next();
|
||
|
}
|
||
|
|
||
|
/**
|
||
|
* Middleware function that checks if the current user has a valid authentication key.
|
||
|
* If the user does not have a valid key, it returns a 401 Unauthorized response with a message.
|
||
|
* If the user has a valid key, it calls the next middleware function.
|
||
|
*
|
||
|
* @param {Object} req - The Express request object.
|
||
|
* @param {Object} res - The Express response object.
|
||
|
* @param {Function} next - The next middleware function to be called.
|
||
|
*/
|
||
|
async function isUserGame(req, res, next) {
|
||
|
// if (req.get("user-agent") !== "Valve/Steam HTTP Client 1.0 GMod/13") return res.status(401).json({ res: res.statusCode, message: "Not in-game" });
|
||
|
|
||
|
const keys = await req.app.locals.db.getData("/keys");
|
||
|
const steamIds = Object.fromEntries(Object.entries(keys).map(([k, v]) => [v, k]));
|
||
|
const key = req.headers.authorization;
|
||
|
|
||
|
if (!key) return res.status(401).json({ res: res.statusCode, message: "Unauthorized. Please provide a key." });
|
||
|
if (!steamIds[key]) return res.status(401).json({ res: res.statusCode, message: `Unauthorized. Get yourself a key on ${req.app.locals.config.domain}/key` });
|
||
|
|
||
|
return next();
|
||
|
}
|
||
|
|
||
|
/**
|
||
|
* Generates a random string of the given length.
|
||
|
*
|
||
|
* @param {number} [length=32] - The length of the random string to generate.
|
||
|
* @returns {string} The generated random string.
|
||
|
*/
|
||
|
function generateRandomString(length = 32) {
|
||
|
const characters = "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789";
|
||
|
const charactersLength = characters.length;
|
||
|
let counter = 0;
|
||
|
let result = "";
|
||
|
|
||
|
while (counter < length) {
|
||
|
result += characters.charAt(Math.floor(Math.random() * charactersLength));
|
||
|
counter += 1;
|
||
|
}
|
||
|
|
||
|
return result;
|
||
|
}
|
||
|
|
||
|
/**
|
||
|
* Generates a unique random code string composed of 3 parts each consisting of 4 alphanumeric characters. The parts are separated by hyphens ("-").
|
||
|
*
|
||
|
* @returns {string} A unique random code string in the format "AAAA-BBBB-CCCC". Each part is exactly four alphanumeric characters long.
|
||
|
*/
|
||
|
function generateCode() {
|
||
|
let code = "";
|
||
|
|
||
|
for (let i = 0; i < 3; i++) {
|
||
|
code += generateRandomString(4);
|
||
|
|
||
|
if (i === 0 || i === 1) code += "-";
|
||
|
}
|
||
|
|
||
|
return code.toUpperCase();
|
||
|
}
|
||
|
|
||
|
/**
|
||
|
* Sanitizes a string by removing unwanted characters and replacing spaces with hyphens.
|
||
|
*
|
||
|
* @param {string} [string=""] - The string to sanitize.
|
||
|
* @param {boolean} [forceLowercase=true] - Whether to force the string to lowercase.
|
||
|
* @param {boolean} [strict=false] - Whether to remove all non-alphanumeric characters.
|
||
|
* @returns {string} The sanitized string.
|
||
|
*/
|
||
|
function sanitize(string = "", forceLowercase = true, strict = false) {
|
||
|
string = string.toString();
|
||
|
|
||
|
const strip = ["~", "`", "!", "@", "#", "$", "%", "^", "&", "*", "(", ")", "=", "+", "[", "{", "]", "}", "\\", "|", ";", ":", "\"", "'", "‘", "’", "“", "”", "–", "—", "—", "–", ",", "<", ".", ">", "/", "?"];
|
||
|
|
||
|
let clean = string.trim().replace(strip, "").replace(/\s+/g, "-");
|
||
|
clean = strict ? string.replace(/[^\u0400-\u04FF\w\d\s-]/g, "") : clean;
|
||
|
|
||
|
return forceLowercase ? clean.toLowerCase() : clean;
|
||
|
}
|
||
|
|
||
|
/**
|
||
|
* Validates that a course file content array is valid.
|
||
|
*
|
||
|
* @param {any[]} content - The course file content array to validate
|
||
|
* @returns {Boolean} True if the content is a valid course file array
|
||
|
*/
|
||
|
function isCourseFileValid(content) {
|
||
|
if (content.length !== 6) return false;
|
||
|
if (typeof content[0] !== "object" || typeof content[1] !== "object" || typeof content[2] !== "string" || typeof content[3] !== "number" || typeof content[4] !== "string" || typeof content[5] !== "object") return false;
|
||
|
|
||
|
return true;
|
||
|
}
|
||
|
|
||
|
|
||
|
/**
|
||
|
* Logs a message to a log file and optionally sends it to a Discord webhook.
|
||
|
*
|
||
|
* @param {string} logs_message - The message to be logged.
|
||
|
* @param {string} discord_message - The message to be sent to the Discord webhook (optional).
|
||
|
* @returns {Promise<boolean>} - A promise that resolves to `true` if the logging was successful, or `false` otherwise.
|
||
|
*/
|
||
|
async function log(logs_message, discord_message) {
|
||
|
fs.writeFile("data/logs.log", `[${new Date(Date.now()).toLocaleString("ru-RU")}] - ${logs_message}\n`, { flag: "a" }, async err => {
|
||
|
if (err) throw err;
|
||
|
|
||
|
if (discord_message && config.webhook_url)
|
||
|
await fetch(config.webhook_url, {
|
||
|
method: "POST",
|
||
|
headers: {
|
||
|
"Content-Type": "application/json",
|
||
|
},
|
||
|
body: JSON.stringify({
|
||
|
username: "Courses Logger",
|
||
|
content: discord_message ?? logs_message,
|
||
|
}),
|
||
|
});
|
||
|
|
||
|
return true;
|
||
|
});
|
||
|
}
|
||
|
|
||
|
module.exports = { isAdmin, isUser, isUserGame, generateRandomString, generateCode, sanitize, isCourseFileValid, log };
|