fasten-onprem/backend/pkg/web/server.go

package web

import (
	"fmt"
	"github.com/fastenhealth/fastenhealth-onprem/backend/pkg/config"
	"github.com/fastenhealth/fastenhealth-onprem/backend/pkg/web/handler"
	"github.com/fastenhealth/fastenhealth-onprem/backend/pkg/web/middleware"
	"github.com/gin-gonic/gin"
	"github.com/sirupsen/logrus"
	"net/http"
	"strings"
)

type AppEngine struct {
	Config config.Interface
	Logger *logrus.Entry
}

func (ae *AppEngine) Setup(logger *logrus.Entry) *gin.Engine {
	r := gin.New()

	r.Use(middleware.LoggerMiddleware(logger))
	r.Use(middleware.RepositoryMiddleware(ae.Config, logger))
	r.Use(middleware.ConfigMiddleware(ae.Config))
	r.Use(gin.Recovery())

	basePath := ae.Config.GetString("web.listen.basepath")
	logger.Debugf("basepath: %s", basePath)

	base := r.Group(basePath)
	{
		api := base.Group("/api")
		{
			api.GET("/health", func(c *gin.Context) {
				//TODO:
				// check if the /web folder is populated.
				// check if access to database
				c.JSON(http.StatusOK, gin.H{
					"success": true,
				})
			})

			api.POST("/auth/signup", handler.AuthSignup)
			api.POST("/auth/signin", handler.AuthSignin)
			//
			//r.Any("/database/*proxyPath", handler.CouchDBProxy)
			//r.GET("/cors/*proxyPath", handler.CORSProxy)
			//r.OPTIONS("/cors/*proxyPath", handler.CORSProxy)

			secure := api.Group("/secure").Use(middleware.RequireAuth())
			{
				secure.GET("/summary", handler.GetSummary)

				secure.POST("/source", handler.CreateSource)
				secure.POST("/source/manual", handler.CreateManualSource)
				secure.GET("/source", handler.ListSource)
				secure.GET("/source/:sourceId", handler.GetSource)
				secure.POST("/source/:sourceId/sync", handler.SourceSync)
				secure.GET("/source/:sourceId/summary", handler.GetSourceSummary)
				secure.GET("/resource/fhir", handler.ListResourceFhir)
				secure.GET("/resource/graph", handler.GetResourceFhirGraph)
				secure.GET("/resource/fhir/:sourceId/:resourceId", handler.GetResourceFhir)
				secure.POST("/resource/composition", handler.CreateResourceComposition)
			}

			if ae.Config.GetBool("web.allow_unsafe_endpoints") {
				//this endpoint lets us request data directly from the source api
				ae.Logger.Warningln("***UNSAFE***")
				ae.Logger.Warningln("***UNSAFE***")
				ae.Logger.Warningln("***UNSAFE***")
				ae.Logger.Warningln("***UNSAFE***")
				ae.Logger.Warningln("***UNSAFE***")
				ae.Logger.Warningf("\"web.allow_unsafe_endpoints\" mode enabled!! This enables developer functionality, including unauthenticated raw api requests")
				ae.Logger.Warningln("***UNSAFE***")
				ae.Logger.Warningln("***UNSAFE***")
				ae.Logger.Warningln("***UNSAFE***")
				ae.Logger.Warningln("***UNSAFE***")
				ae.Logger.Warningln("***UNSAFE***")
				unsafe := api.Group("/unsafe")
				{
					//http://localhost:9090/api/raw/test@test.com/436d7277-ad56-41ce-9823-44e353d1b3f6/Patient/smart-1288992
					unsafe.GET("/:username/:sourceId/*path", handler.UnsafeRequestSource)
					unsafe.GET("/:username/graph", handler.UnsafeResourceGraph)

				}
			}
		}
	}

	//Static request routing
	base.StaticFS("/web", http.Dir(ae.Config.GetString("web.src.frontend.path")))

	//redirect base url to /web
	base.GET("/", func(c *gin.Context) {
		c.Redirect(http.StatusFound, basePath+"/web")
	})

	//catch-all, serve index page.
	r.NoRoute(func(c *gin.Context) {
		path := c.Request.URL.Path
		if strings.HasPrefix(path, "/api") || strings.HasPrefix(path, "/api") {
			c.JSON(http.StatusNotFound, gin.H{"success": false, "error": "404 endpoint not found"})
		} else {
			c.File(fmt.Sprintf("%s/index.html", ae.Config.GetString("web.src.frontend.path")))
		}
	})
	return r
}

func (ae *AppEngine) Start() error {
	//set the gin mode
	gin.SetMode(gin.ReleaseMode)
	if strings.ToLower(ae.Config.GetString("log.level")) == "debug" {
		gin.SetMode(gin.DebugMode)
	}

	r := ae.Setup(ae.Logger)

	return r.Run(fmt.Sprintf("%s:%s", ae.Config.GetString("web.listen.host"), ae.Config.GetString("web.listen.port")))
}
Initial commit 2022-08-22 18:51:46 -06:00			`package web`

			`import (`
			`"fmt"`
rename 2022-08-22 19:11:00 -06:00			`"github.com/fastenhealth/fastenhealth-onprem/backend/pkg/config"`
			`"github.com/fastenhealth/fastenhealth-onprem/backend/pkg/web/handler"`
			`"github.com/fastenhealth/fastenhealth-onprem/backend/pkg/web/middleware"`
Initial commit 2022-08-22 18:51:46 -06:00			`"github.com/gin-gonic/gin"`
			`"github.com/sirupsen/logrus"`
			`"net/http"`
			`"strings"`
			`)`

			`type AppEngine struct {`
			`Config config.Interface`
			`Logger *logrus.Entry`
			`}`

			`func (ae AppEngine) Setup(logger logrus.Entry) *gin.Engine {`
			`r := gin.New()`

			`r.Use(middleware.LoggerMiddleware(logger))`
working frontend. adding database. 2022-08-25 19:26:29 -06:00			`r.Use(middleware.RepositoryMiddleware(ae.Config, logger))`
Initial commit 2022-08-22 18:51:46 -06:00			`r.Use(middleware.ConfigMiddleware(ae.Config))`
			`r.Use(gin.Recovery())`

			`basePath := ae.Config.GetString("web.listen.basepath")`
			`logger.Debugf("basepath: %s", basePath)`

			`base := r.Group(basePath)`
			`{`
			`api := base.Group("/api")`
			`{`
			`api.GET("/health", func(c *gin.Context) {`
			`//TODO:`
			`// check if the /web folder is populated.`
			`// check if access to database`
			`c.JSON(http.StatusOK, gin.H{`
			`"success": true,`
			`})`
			`})`
adding form validation on signup. adding auth/signin and auth/signup api endpoints. 2022-09-11 21:59:13 -06:00
			`api.POST("/auth/signup", handler.AuthSignup)`
working backend changes to generate JWT tokens during signin and signup. (#9) 2022-11-02 01:12:54 -06:00			`api.POST("/auth/signin", handler.AuthSignin)`
begin restoring Sqlite functionality. (#11) 2022-12-02 20:40:58 -07:00			`//`
			`//r.Any("/database/*proxyPath", handler.CouchDBProxy)`
			`//r.GET("/cors/*proxyPath", handler.CORSProxy)`
			`//r.OPTIONS("/cors/*proxyPath", handler.CORSProxy)`
working couchdb reverse proxy behind webapp binary. 2022-10-09 10:34:57 -06:00
begin restoring Sqlite functionality. (#11) 2022-12-02 20:40:58 -07:00			`secure := api.Group("/secure").Use(middleware.RequireAuth())`
			`{`
			`secure.GET("/summary", handler.GetSummary)`

			`secure.POST("/source", handler.CreateSource)`
			`secure.POST("/source/manual", handler.CreateManualSource)`
			`secure.GET("/source", handler.ListSource)`
			`secure.GET("/source/:sourceId", handler.GetSource)`
			`secure.POST("/source/:sourceId/sync", handler.SourceSync)`
			`secure.GET("/source/:sourceId/summary", handler.GetSourceSummary)`
adding allow_unsafe_endpoints config option. adding flattend resource graph. adding Reciprocal resources adding a report labs page. 2022-12-21 20:51:02 -07:00			`secure.GET("/resource/fhir", handler.ListResourceFhir)`
			`secure.GET("/resource/graph", handler.GetResourceFhirGraph)`
begin restoring Sqlite functionality. (#11) 2022-12-02 20:40:58 -07:00			`secure.GET("/resource/fhir/:sourceId/:resourceId", handler.GetResourceFhir)`
adding support for Composition resource type (Custom grouping) (#20) 2023-01-10 20:23:47 -07:00			`secure.POST("/resource/composition", handler.CreateResourceComposition)`
begin restoring Sqlite functionality. (#11) 2022-12-02 20:40:58 -07:00			`}`

adding allow_unsafe_endpoints config option. adding flattend resource graph. adding Reciprocal resources adding a report labs page. 2022-12-21 20:51:02 -07:00			`if ae.Config.GetBool("web.allow_unsafe_endpoints") {`
			`//this endpoint lets us request data directly from the source api`
			`ae.Logger.Warningln("*UNSAFE*")`
			`ae.Logger.Warningln("*UNSAFE*")`
			`ae.Logger.Warningln("*UNSAFE*")`
			`ae.Logger.Warningln("*UNSAFE*")`
			`ae.Logger.Warningln("*UNSAFE*")`
			`ae.Logger.Warningf("\"web.allow_unsafe_endpoints\" mode enabled!! This enables developer functionality, including unauthenticated raw api requests")`
			`ae.Logger.Warningln("*UNSAFE*")`
			`ae.Logger.Warningln("*UNSAFE*")`
			`ae.Logger.Warningln("*UNSAFE*")`
			`ae.Logger.Warningln("*UNSAFE*")`
			`ae.Logger.Warningln("*UNSAFE*")`
			`unsafe := api.Group("/unsafe")`
			`{`
			`//http://localhost:9090/api/raw/test@test.com/436d7277-ad56-41ce-9823-44e353d1b3f6/Patient/smart-1288992`
			`unsafe.GET("/:username/:sourceId/*path", handler.UnsafeRequestSource)`
adding support for Composition resource type (Custom grouping) (#20) 2023-01-10 20:23:47 -07:00			`unsafe.GET("/:username/graph", handler.UnsafeResourceGraph)`
adding allow_unsafe_endpoints config option. adding flattend resource graph. adding Reciprocal resources adding a report labs page. 2022-12-21 20:51:02 -07:00
			`}`
begin restoring Sqlite functionality. (#11) 2022-12-02 20:40:58 -07:00			`}`
Initial commit 2022-08-22 18:51:46 -06:00			`}`
			`}`

			`//Static request routing`
			`base.StaticFS("/web", http.Dir(ae.Config.GetString("web.src.frontend.path")))`

			`//redirect base url to /web`
			`base.GET("/", func(c *gin.Context) {`
			`c.Redirect(http.StatusFound, basePath+"/web")`
			`})`

			`//catch-all, serve index page.`
			`r.NoRoute(func(c *gin.Context) {`
adding sourceDetail component. make sure we 404 if an api endpoint doesn't exist. 2022-09-14 20:59:16 -06:00			`path := c.Request.URL.Path`
adding more services. 2022-09-18 20:46:57 -06:00			`if strings.HasPrefix(path, "/api") \|\| strings.HasPrefix(path, "/api") {`
adding sourceDetail component. make sure we 404 if an api endpoint doesn't exist. 2022-09-14 20:59:16 -06:00			`c.JSON(http.StatusNotFound, gin.H{"success": false, "error": "404 endpoint not found"})`
			`} else {`
			`c.File(fmt.Sprintf("%s/index.html", ae.Config.GetString("web.src.frontend.path")))`
			`}`
Initial commit 2022-08-22 18:51:46 -06:00			`})`
			`return r`
			`}`

			`func (ae *AppEngine) Start() error {`
			`//set the gin mode`
			`gin.SetMode(gin.ReleaseMode)`
			`if strings.ToLower(ae.Config.GetString("log.level")) == "debug" {`
			`gin.SetMode(gin.DebugMode)`
			`}`

			`r := ae.Setup(ae.Logger)`

			`return r.Run(fmt.Sprintf("%s:%s", ae.Config.GetString("web.listen.host"), ae.Config.GetString("web.listen.port")))`
			`}`