initialize git, basic setup for crm

2025-11-18 13:53:28 +01:00
commit da01d586fc
47 changed files with 12776 additions and 0 deletions
--- a/src/app.js
+++ b/src/app.js
@@ -0,0 +1,87 @@
+import express from 'express';
+import morgan from 'morgan';
+import helmet from 'helmet';
+import cors from 'cors';
+import cookieParser from 'cookie-parser';
+import dotenv from 'dotenv';
+dotenv.config();
+
+import { validateBody } from './middlewares/global/validateBody.js';
+import { notFound } from './middlewares/global/notFound.js';
+import { errorHandler } from './middlewares/global/errorHandler.js';
+import { apiRateLimiter } from './middlewares/security/rateLimiter.js';
+
+// Import routes
+import authRoutes from './routes/auth.routes.js';
+import adminRoutes from './routes/admin.routes.js';
+import contactRoutes from './routes/contact.routes.js';
+import crmEmailRoutes from './routes/crm-email.routes.js';
+
+const app = express();
+
+// Security middleware
+app.use(morgan('dev'));
+app.use(
+  helmet({
+    contentSecurityPolicy: {
+      directives: {
+        defaultSrc: ["'self'"],
+        styleSrc: ["'self'", "'unsafe-inline'"],
+      },
+    },
+    hsts: {
+      maxAge: 31536000,
+      includeSubDomains: true,
+      preload: true,
+    },
+  })
+);
+
+// CORS configuration
+const corsOptions = {
+  origin: process.env.CORS_ORIGIN || 'http://localhost:5173',
+  credentials: true,
+  optionsSuccessStatus: 200,
+};
+app.use(cors(corsOptions));
+
+// Body parsing middleware
+app.use(express.json({ limit: '10mb' }));
+app.use(express.urlencoded({ extended: true, limit: '10mb' }));
+app.use(cookieParser());
+
+// Custom body validation middleware
+app.use(validateBody);
+
+// Rate limiting for all API routes
+app.use('/api', apiRateLimiter);
+
+// Health check endpoint
+app.get('/health', (req, res) => {
+  res.status(200).json({
+    success: true,
+    message: 'CRM API is running',
+    timestamp: new Date().toISOString(),
+  });
+});
+
+// API Routes
+app.use('/api/auth', authRoutes);
+app.use('/api/admin', adminRoutes);
+app.use('/api/contacts', contactRoutes);
+app.use('/api/emails', crmEmailRoutes);
+
+// Basic route
+app.get('/', (req, res) => {
+  res.json({
+    success: true,
+    message: 'CRM API Server',
+    version: '1.0.0',
+  });
+});
+
+// Global Middlewares (must be last)
+app.use(notFound);
+app.use(errorHandler);
+
+export default app;