JohnCosta27/savevictoriaway
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

feat: implementing CORS protection and logging

Browse Source
This commit is contained in:
John Costa
2025-11-15 11:34:11 +00:00
parent 2be1521e76
commit b5e588e265
2 changed files with 37 additions and 5 deletions
Download Patch File Download Diff File Expand all files Collapse all files

3
packages/backend/src/env/index.ts vendored
View File

@ -7,10 +7,11 @@ const envSchema = z.object({
PORT: z
.string()
.refine(
(port) => parseInt(port) > 0 && parseInt(port) < 65536,
(port) => parseInt(port, 10) > 0 && parseInt(port, 10) < 65536,
"Invalid port number",
),
DATABASE_URL: z.string().min(10),
FRONTEND_URL: z.url(),
});
type Env = z.infer<typeof envSchema>;

39
packages/backend/src/index.ts
View File

@ -1,9 +1,10 @@
import { ENV } from "./env";
import { getPetitions } from "./routes/get-petitions";
import { signPetition } from "./routes/sign-petition";
import { styleText } from "node:util";
const CORS_HEADERS = {
"Access-Control-Allow-Origin": "*",
"Access-Control-Allow-Origin": ENV.FRONTEND_URL,
"Access-Control-Allow-Methods": "GET, POST, PUT, DELETE, OPTIONS",
"Access-Control-Allow-Headers": "Content-Type, Authorization",
};
@ -26,14 +27,44 @@ const withCors = (fn: Handler): Handler => {
};
};
const getColors = (status: number): Parameters<typeof styleText>[0] => {
if (status >= 200 && status < 300) {
return ["bgGreen", "white"];
} else if (status >= 300 && status < 400) {
return ["bgYellow", "white"];
} else if (status >= 400 && status < 500) {
return ["bgRed", "white"];
} else if (status >= 500) {
return ["bgRedBright", "white"];
} else {
return ["bgBlack", "white"];
}
};
const withLogger = (fn: Handler): Handler => {
return async (req) => {
const res = await fn(req);
const code = res.status;
const styles = getColors(code);
const codeText = styleText(styles, `${code}`);
const msg = `${codeText}: ${req.method} ${req.url}`;
console.log(msg);
return res;
};
};
const server = Bun.serve({
port: ENV.PORT,
routes: {
"/health": new Response("alive!"),
"/sign": {
GET: withCors(getPetitions),
POST: withCors(signPetition),
OPTIONS: allowCors,
GET: withLogger(withCors(getPetitions)),
POST: withLogger(withCors(signPetition)),
OPTIONS: withLogger(allowCors),
},
},
});