"use strict"; var __createBinding = (this && this.__createBinding) || (Object.create ? (function(o, m, k, k2) { if (k2 === undefined) k2 = k; Object.defineProperty(o, k2, { enumerable: true, get: function() { return m[k]; } }); }) : (function(o, m, k, k2) { if (k2 === undefined) k2 = k; o[k2] = m[k]; })); var __setModuleDefault = (this && this.__setModuleDefault) || (Object.create ? (function(o, v) { Object.defineProperty(o, "default", { enumerable: true, value: v }); }) : function(o, v) { o["default"] = v; }); var __importStar = (this && this.__importStar) || function (mod) { if (mod && mod.__esModule) return mod; var result = {}; if (mod != null) for (var k in mod) if (k !== "default" && Object.prototype.hasOwnProperty.call(mod, k)) __createBinding(result, mod, k); __setModuleDefault(result, mod); return result; }; var __importDefault = (this && this.__importDefault) || function (mod) { return (mod && mod.__esModule) ? mod : { "default": mod }; }; Object.defineProperty(exports, "__esModule", { value: true }); exports.debug = void 0; const database_1 = require("./database"); const hypixel_1 = require("./hypixel"); const express_rate_limit_1 = __importDefault(require("express-rate-limit")); const constants = __importStar(require("./constants")); const discord = __importStar(require("./discord")); const express_1 = __importDefault(require("express")); const app = express_1.default(); exports.debug = false; const mainSiteUrl = 'https://skyblock.matdoes.dev'; // 200 requests over 5 minutes const limiter = express_rate_limit_1.default({ windowMs: 60 * 1000 * 5, max: 200, skip: (req) => { return req.headers.key === process.env.key; }, keyGenerator: (req) => { var _a; return ((_a = req.headers['cf-connecting-ip']) !== null && _a !== void 0 ? _a : req.ip).toString(); } }); app.use(limiter); app.use(express_1.default.json()); app.use((req, res, next) => { res.setHeader('Access-Control-Allow-Origin', '*'); next(); }); app.get('/', async (req, res) => { res.json({ ok: true }); }); app.get('/player/:user', async (req, res) => { res.json(await hypixel_1.fetchUser({ user: req.params.user }, [req.query.basic === 'true' ? undefined : 'profiles', 'player'], req.query.customization === 'true')); }); app.get('/discord/:id', async (req, res) => { res.json(await database_1.fetchAccountFromDiscord(req.params.id)); }); app.get('/player/:user/:profile', async (req, res) => { res.json(await hypixel_1.fetchMemberProfile(req.params.user, req.params.profile, req.query.customization === 'true')); }); app.get('/player/:user/:profile/leaderboards', async (req, res) => { res.json(await database_1.fetchMemberLeaderboardSpots(req.params.user, req.params.profile)); }); app.get('/leaderboard/:name', async (req, res) => { try { res.json(await database_1.fetchLeaderboard(req.params.name)); } catch (err) { console.error(err); res.json({ 'error': err.toString() }); } }); app.get('/leaderboards', async (req, res) => { res.json(await database_1.fetchAllLeaderboardsCategorized()); }); app.get('/constants', async (req, res) => { res.json(await constants.fetchConstantValues()); }); app.post('/accounts/createsession', async (req, res) => { try { const { code } = req.body; const { access_token: accessToken, refresh_token: refreshToken } = await discord.exchangeCode(`${mainSiteUrl}/loggedin`, code); if (!accessToken) // access token is invalid :( return res.json({ ok: false }); const userData = await discord.getUser(accessToken); const sessionId = await database_1.createSession(refreshToken, userData); res.json({ ok: true, session_id: sessionId }); } catch (err) { res.json({ ok: false }); } }); app.post('/accounts/session', async (req, res) => { try { const { uuid } = req.body; const session = await database_1.fetchSession(uuid); const account = await database_1.fetchAccountFromDiscord(session.discord_user.id); res.json({ session, account }); } catch (err) { console.error(err); res.json({ ok: false }); } }); app.post('/accounts/update', async (req, res) => { // it checks against the key, so it's kind of secure if (req.headers.key !== process.env.key) return console.log('bad key!'); try { await database_1.updateAccount(req.body.discordId, req.body); res.json({ ok: true }); } catch (err) { console.error(err); res.json({ ok: false }); } }); // only run the server if it's not doing tests if (!globalThis.isTest) app.listen(8080, () => console.log('App started :)'));