1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
|
module Fig.Web.Secure where
import Fig.Prelude
import Data.Maybe (maybeToList)
import qualified Data.Text as Text
import qualified Data.Text.Lazy as Text.Lazy
import qualified Data.Set as Set
import qualified Network.Wai as Wai
import qualified Network.Wai.Middleware.Static as Wai.Static
import qualified Network.Wai.Handler.Warp as Warp
import qualified Web.Scotty as Sc
import Fig.Bus.Binary.Client
import Fig.Web.Utils
import qualified Fig.Web.DB as DB
import qualified Fig.Web.Exchange as Exchange
data LiveEvent
= LiveEventOnline !(Set.Set Text)
| LiveEventOffline !(Set.Set Text)
deriving (Show, Eq, Ord)
server :: Config -> (Text, Text) -> IO ()
server cfg busAddr = do
log $ "Web server running on port " <> tshow cfg.port
busClient busAddr
(\cmds -> do
log "Connected to bus!"
Warp.run cfg.port =<< app cfg cmds
)
(\_cmds ev _d -> do
log $ "Invalid event: " <> tshow ev
)
(pure ())
app :: Config -> Commands IO -> IO Wai.Application
app cfg cmds = do
log "Connecting to database..."
db <- DB.connect cfg
log "Connected! Secure server active."
Sc.scottyApp do
Sc.middleware . Wai.Static.staticPolicy $ mconcat
[ Wai.Static.isNotAbsolute
, Wai.Static.only
[ ("menu", "menu.html")
, ("throwshade", "throwshade.html")
, ("main.css", "main.css")
, ("main.js", "main.js")
]
Wai.Static.<|> Wai.Static.hasPrefix "assets"
Wai.Static.<|> Wai.Static.hasPrefix "newton"
, Wai.Static.addBase cfg.assetPath
]
Sc.get "/" do
Sc.text "this is the secure endpoint"
Sc.get "/api/status" do
Sc.text "this is the secure endpoint"
Sc.get "/api/info" do
muser <- Sc.header "Remote-User"
memail <- Sc.header "Remote-Email"
case (muser, memail) of
(Just user, Just email) -> do
Sc.text $ user <> " " <> email
_else -> do
Sc.status status401
Sc.text "you're not logged in buddy"
Sc.post "/api/redeem" do
muser <- Sc.header "Remote-User"
memail <- Sc.header "Remote-Email"
case (muser, memail) of
(Just user, Just _email) -> do
name <- Sc.formParam "name"
input <- Sc.formParamMaybe "input"
liftIO . cmds.publish "frontend redeem incoming"
. encodeUtf8 . Text.unwords $
[ Text.Lazy.toStrict user
, name
] <> maybeToList input
Sc.text "it worked"
_else -> do
Sc.status status401
Sc.text "you're not logged in buddy"
Sc.post "/api/exchange" do
Sc.header "Remote-Email" >>= \case
Nothing -> do
Sc.status status401
Sc.text "you're not logged in buddy"
Just creator -> do
haveCur <- Text.Lazy.toStrict <$> Sc.formParam "haveCur"
haveAmount <- Sc.formParam "haveAmount"
wantCur <- Text.Lazy.toStrict <$> Sc.formParam "wantCur"
wantAmount <- Sc.formParam "wantAmount"
key <- Exchange.createOrder db $ Exchange.Order
{ creator = Text.Lazy.toStrict creator
, haveCur = haveCur
, haveAmount = haveAmount
, wantCur = wantCur
, wantAmount = wantAmount
}
Sc.text . Text.Lazy.fromStrict $ decodeUtf8 key
Sc.post "/api/exchange/:key" do
Sc.header "Remote-Email" >>= \case
Nothing -> do
Sc.status status401
Sc.text "you're not logged in buddy"
Just buyer -> do
key <- Sc.pathParam "key"
Exchange.satisfyOrder db key $ Text.Lazy.toStrict buyer
Sc.delete "/api/exchange/:key" do
Sc.header "Remote-Email" >>= \case
Nothing -> do
Sc.status status401
Sc.text "you're not logged in buddy"
Just _buyer -> do
key <- Sc.pathParam "key"
Exchange.cancelOrder db key
Sc.notFound do
Sc.text "not found"
|
