Skip to content

Commit

Permalink
harden env parsing
Browse files Browse the repository at this point in the history
  • Loading branch information
@milesstoetzner
milesstoetzner committed Dec 3, 2024
1 parent 824c332 commit 441b29a
Show file tree
Hide file tree
Showing 3 changed files with 54 additions and 15 deletions.
23 changes: 23 additions & 0 deletions docker-compose.yaml
View file
Original file line number Diff line number Diff line change
@@ -0,0 +1,23 @@
services:
shop:
build: .
environment:
PORT: 80
DB_DIALECT: "'mysql'"
DB_NAME: "database"
DB_USERNAME: "user"
DB_PASSWORD: "password"
DB_ADDRESS: "dbms"
DB_PORT: 3306
FEATURE_OPTIONAL: "true"
FEATURE_PREMIUM: "true"
ports:
- "8080:80"

dbms:
image: mysql:5.7
environment:
MYSQL_ROOT_PASSWORD: "password"
MYSQL_USER: "user"
MYSQL_PASSWORD: "password"
MYSQL_DATABASE: "database"
40 changes: 28 additions & 12 deletions index.js
View file
Original file line number Diff line number Diff line change
Expand Up @@ -8,20 +8,20 @@ require('sqlite3')
require('mysql2')


const APP_PORT = Number(process.env.PORT) || 80
const APP_INTERFACE = process.env.INTERFACE || '0.0.0.0'
const APP_PORT = Number(cleanString(process.env.PORT) ?? 80)
const APP_INTERFACE = cleanString(process.env.INTERFACE) ?? '0.0.0.0'

const DB_DIALECT = process.env.DB_DIALECT || "memory"
if (!['memory', 'sqlite', 'mysql'].includes(DB_DIALECT)) throw `DB_DIALECT ${DB_DIALECT} is not supported`
const DB_DIALECT = cleanString(process.env.DB_DIALECT)
if (!['memory', 'sqlite', 'mysql'].includes(DB_DIALECT)) throw `DB_DIALECT "${DB_DIALECT}" is not supported`

const DB_NAME = process.env.DB_NAME
const DB_USERNAME = process.env.DB_USERNAME
const DB_PASSWORD = process.env.DB_PASSWORD
const DB_ADDRESS = process.env.DB_ADDRESS
const DB_PORT = process.env.DB_PORT
const DB_NAME = cleanString(process.env.DB_NAME)
const DB_USERNAME = cleanString(process.env.DB_USERNAME)
const DB_PASSWORD = cleanString(process.env.DB_PASSWORD)
const DB_ADDRESS = cleanString(process.env.DB_ADDRESS)
const DB_PORT = Number(cleanString(process.env.DB_PORT))

const FEATURE_OPTIONAL = process.env.FEATURE_OPTIONAL === "true"
const FEATURE_PREMIUM = process.env.FEATURE_PREMIUM === "true"
const FEATURE_OPTIONAL = isEnabled(cleanString(process.env.FEATURE_OPTIONAL))
const FEATURE_PREMIUM = isEnabled(cleanString(process.env.FEATURE_PREMIUM))

let sequelize;

Expand Down Expand Up @@ -59,7 +59,7 @@ index.get('/', async (req, res) => {
}

res.status(error ? 500 : 200).json({
MESSAGE: error ? 'Some error occurred' : "Successfully executed query",
MESSAGE: error ? 'Some error occurred' : 'Successfully executed query',
QUERY,
ERROR: error,
DB_DIALECT,
Expand All @@ -83,6 +83,22 @@ function anonymize(password) {
}
}

function cleanString(value) {
if (value === undefined) return undefined
if (value === null) return undefined

let s = String(value)
if (s.startsWith('"') && s.endsWith('"') || s.startsWith("'") && s.endsWith("'")) {
s = s.slice(1, -1)
}

return s
}

function isEnabled(value) {
return ['true', true, 'True', 1, '1'].includes(value)
}

index.listen(APP_PORT, APP_INTERFACE, () => {
console.log(`Listening on ${APP_INTERFACE}:${APP_PORT}`);
});
Expand Down
6 changes: 3 additions & 3 deletions package-lock.json
View file

Some generated files are not rendered by default. Learn more about how customized files appear on GitHub.

0 comments on commit 441b29a

Please sign in to comment.