| 135dfe5 | | | 1 | import Fastify from "fastify"; |
| 135dfe5 | | | 2 | import cors from "@fastify/cors"; |
| 135dfe5 | | | 3 | import jwt from "@fastify/jwt"; |
| 135dfe5 | | | 4 | import { initDatabase } from "./services/database.js"; |
| 135dfe5 | | | 5 | import { authRoutes } from "./routes/auth.js"; |
| 135dfe5 | | | 6 | import { instanceRoutes } from "./routes/instances.js"; |
| 79efd41 | | | 7 | import { orgRoutes } from "./routes/orgs.js"; |
| 135dfe5 | | | 8 | |
| 135dfe5 | | | 9 | const app = Fastify({ |
| 135dfe5 | | | 10 | logger: { |
| 135dfe5 | | | 11 | level: process.env.LOG_LEVEL ?? "info", |
| 135dfe5 | | | 12 | transport: |
| 135dfe5 | | | 13 | process.env.NODE_ENV !== "production" |
| 135dfe5 | | | 14 | ? { target: "pino-pretty" } |
| 135dfe5 | | | 15 | : undefined, |
| 135dfe5 | | | 16 | }, |
| 135dfe5 | | | 17 | }); |
| 135dfe5 | | | 18 | |
| 135dfe5 | | | 19 | await app.register(cors, { |
| a33b2b6 | | | 20 | origin: (process.env.CORS_ORIGIN ?? "https://grove.host") |
| a33b2b6 | | | 21 | .split(",") |
| a33b2b6 | | | 22 | .map((origin) => origin.trim()) |
| a33b2b6 | | | 23 | .filter(Boolean), |
| 135dfe5 | | | 24 | }); |
| 135dfe5 | | | 25 | |
| 135dfe5 | | | 26 | await app.register(jwt, { |
| 3c994d3 | | | 27 | secret: process.env.JWT_SECRET ?? "grove-dev-secret", |
| 3c994d3 | | | 28 | sign: { expiresIn: "7d" }, |
| 135dfe5 | | | 29 | }); |
| 135dfe5 | | | 30 | |
| 135dfe5 | | | 31 | // Auth decorator |
| 135dfe5 | | | 32 | app.decorate("authenticate", async function (request: any, reply: any) { |
| 135dfe5 | | | 33 | try { |
| 135dfe5 | | | 34 | await request.jwtVerify(); |
| 135dfe5 | | | 35 | } catch (err) { |
| 135dfe5 | | | 36 | reply.code(401).send({ error: "Unauthorized" }); |
| 135dfe5 | | | 37 | } |
| 135dfe5 | | | 38 | }); |
| 135dfe5 | | | 39 | |
| 135dfe5 | | | 40 | // Initialize database |
| 135dfe5 | | | 41 | const db = initDatabase(process.env.DATABASE_PATH ?? "./data/hub.db"); |
| 135dfe5 | | | 42 | app.decorate("db", db); |
| 135dfe5 | | | 43 | |
| 135dfe5 | | | 44 | // In-memory challenge store |
| 135dfe5 | | | 45 | const challenges = new Map< |
| 135dfe5 | | | 46 | string, |
| 135dfe5 | | | 47 | { username?: string; displayName?: string; userId?: number; expiresAt: number } |
| 135dfe5 | | | 48 | >(); |
| 135dfe5 | | | 49 | app.decorate("challenges", challenges); |
| 135dfe5 | | | 50 | |
| 135dfe5 | | | 51 | // Cleanup expired challenges every 5 minutes |
| 135dfe5 | | | 52 | setInterval(() => { |
| 135dfe5 | | | 53 | const now = Date.now(); |
| 135dfe5 | | | 54 | for (const [key, val] of challenges) { |
| 135dfe5 | | | 55 | if (val.expiresAt < now) challenges.delete(key); |
| 135dfe5 | | | 56 | } |
| 135dfe5 | | | 57 | }, 5 * 60 * 1000); |
| 135dfe5 | | | 58 | |
| 135dfe5 | | | 59 | // Health check |
| 135dfe5 | | | 60 | app.get("/health", async () => ({ status: "ok", service: "grove-hub-api" })); |
| 8e98aa1 | | | 61 | app.get("/api/health", async () => ({ status: "ok", service: "grove-hub-api" })); |
| 135dfe5 | | | 62 | |
| 135dfe5 | | | 63 | // Routes |
| 135dfe5 | | | 64 | await app.register(authRoutes, { prefix: "/api/auth" }); |
| 135dfe5 | | | 65 | await app.register(instanceRoutes, { prefix: "/api/instances" }); |
| 79efd41 | | | 66 | await app.register(orgRoutes, { prefix: "/api/orgs" }); |
| 135dfe5 | | | 67 | |
| 135dfe5 | | | 68 | // Start |
| 135dfe5 | | | 69 | const port = parseInt(process.env.PORT ?? "4000", 10); |
| 135dfe5 | | | 70 | const host = process.env.HOST ?? "0.0.0.0"; |
| 135dfe5 | | | 71 | |
| 135dfe5 | | | 72 | try { |
| 135dfe5 | | | 73 | await app.listen({ port, host }); |
| 135dfe5 | | | 74 | app.log.info(`Grove Hub API running at http://${host}:${port}`); |
| 135dfe5 | | | 75 | } catch (err) { |
| 135dfe5 | | | 76 | app.log.error(err); |
| 135dfe5 | | | 77 | process.exit(1); |
| 135dfe5 | | | 78 | } |