app.js

//jshint esversion:6

const express = require("express");
const bodyParser = require("body-parser");
const ejs = require("ejs");
const _ = require("lodash");
const mongoose = require("mongoose");
const dotenv = require("dotenv");
//imports for markdown
const createDomPurify = require("dompurify");
const marked = require("marked");
const { JSDOM } = require("jsdom");
const dompurify = createDomPurify(new JSDOM().window);
//rate limiting
const rateLimit = require("express-rate-limit");
dotenv.config();
const app = express();

app.set("view engine", "ejs");

app.use(bodyParser.urlencoded({ extended: true }));
app.use(express.static("public"));

//---------------------------------------------------------------------------------------------------------------------------
//connecting to the database
mongoose.connect(process.env.MONGO_URI, {
  useNewUrlParser: true,
  useUnifiedTopology: true,
});

//creating a schema for the database
const postSchema = {
  title: String,
  postFeaturedImage: String,
  content: String,
};

//creating a model for the schema
const Post = mongoose.model("Post", postSchema);
//----------------------------------------------------------------------------------------------------------------------------

//rate limit
const rateLimiters = (max) =>
  rateLimit({
    windowMs: 24 * 60 * 60 * 1000, // 24 hrs in milliseconds
    max: max,
    message: "You have exceeded the 50 requests in 24 hrs limit!",
    standardHeaders: true,
    legacyHeaders: false,
  });

app.get("/", (req, res) => {
  Post.find({}, (err, foundPosts) => {
    if (!err) {
      posts = foundPosts;
      res.render("home", {
        posts: posts,
      });
    }
  });
});

app.get("/register", (req, res) => {
  res.render("register");
});

app.get("/login", (req, res) => {
  res.render("login");
});

app.get("/about", (req, res) => {
  res.render("about", { aboutContent: "No content here yet" });
});

app.get("/contact", (req, res) => {
  res.render("contact", { contactContent: "No content here yet " });
});

app.get("/compose", (req, res) => { 
  const firebase_config = {
    apiKey: process.env.apikey,
    authDomain:
      process.env.authDomain,
    projectId: process.env.projectId,
    storageBucket:
      process.env.storageBucket,
    messagingSenderId:
      process.env.messagingSenderId,
    appId: process.env.appId,
    measurementId:
      process.env.measurementId,
  };
  res.render("compose", {config : {...firebase_config}});
});

app.post("/compose", rateLimiters(25), (req, res) => {
  //creating a new post
  const addPost = new Post({
    title: req.body.postTitle,
    postFeaturedImage: req.body.postFeaturedImage,
    content: req.body.postBody,
  });

  addPost.save((err) => {
    if (!err) {
      res.redirect("/");
    }
  });
});

app.get("/posts/:optional", (req, res) => {
  
  posts.forEach((element) => {
    var optionalRoute = _.lowerCase(req.params.optional);
    if (_.lowerCase(element.title) === optionalRoute) {
      res.render("post", {
        postTitle: element.title,
        postContent: dompurify.sanitize(marked.parse(element.content)),
        postFeaturedImage: element.postFeaturedImage,
      });
    } else {
      console.log("No such route found");
    }
  });
});

app.get("*", (req, res) => {
  res.send("The page you are looking for does not exists!");
});

app.listen(3000, function () {
  console.log("Server started on port 3000");
});