import { Logger, ValidationPipe, VersioningType } from '@nestjs/common'; import { ConfigService } from '@nestjs/config'; import { NestFactory } from '@nestjs/core'; import type { NestExpressApplication } from '@nestjs/platform-express'; import * as bodyParser from 'body-parser'; import helmet from 'helmet'; import { AppModule } from './app/app.module'; import { environment } from './environments/environment'; async function bootstrap() { const configApp = await NestFactory.create(AppModule); const configService = configApp.get(ConfigService); const app = await NestFactory.create(AppModule, { logger: environment.production ? ['error', 'log', 'warn'] : ['debug', 'error', 'log', 'verbose', 'warn'] }); app.enableCors(); app.enableVersioning({ defaultVersion: '1', type: VersioningType.URI }); app.setGlobalPrefix('api', { exclude: ['sitemap.xml'] }); app.useGlobalPipes( new ValidationPipe({ forbidNonWhitelisted: true, transform: true, whitelist: true }) ); // Support 10mb csv/json files for importing activities app.use(bodyParser.json({ limit: '10mb' })); if (configService.get('ENABLE_FEATURE_SUBSCRIPTION') === 'true') { app.use( helmet({ contentSecurityPolicy: { directives: { frameSrc: ["'self'", 'https://js.stripe.com'], // Allow loading frames from Stripe scriptSrc: ["'self'", "'unsafe-inline'", 'https://js.stripe.com'], // Allow inline scripts and scripts from Stripe scriptSrcAttr: ["'self'", "'unsafe-inline'"], // Allow inline event handlers styleSrc: ["'self'", "'unsafe-inline'"] // Allow inline styles } }, crossOriginOpenerPolicy: false // Disable Cross-Origin-Opener-Policy header (for Internet Identity) }) ); } const BASE_CURRENCY = configService.get('BASE_CURRENCY'); const HOST = configService.get('HOST') || '0.0.0.0'; const PORT = configService.get('PORT') || 3333; await app.listen(PORT, HOST, () => { logLogo(); Logger.log(`Listening at http://${HOST}:${PORT}`); Logger.log(''); if (BASE_CURRENCY) { Logger.warn( `The environment variable "BASE_CURRENCY" is deprecated and will be removed in Ghostfolio 2.0.` ); Logger.warn( 'Please use the currency converter in the activity dialog instead.' ); } }); } function logLogo() { Logger.log(' ________ __ ____ ___'); Logger.log(' / ____/ /_ ____ _____/ /_/ __/___ / (_)___'); Logger.log(' / / __/ __ \\/ __ \\/ ___/ __/ /_/ __ \\/ / / __ \\'); Logger.log('/ /_/ / / / / /_/ (__ ) /_/ __/ /_/ / / / /_/ /'); Logger.log( `\\____/_/ /_/\\____/____/\\__/_/ \\____/_/_/\\____/ ${environment.version}` ); Logger.log(''); } bootstrap();