github/example-voting-app
1
0
Fork 0
mirror of https://github.com/dockersamples/example-voting-app.git synced 2026-02-14 18:29:51 +00:00
Code Issues Packages Projects Releases Wiki Activity

Update result libs to latest versions & resolve socket.io CVE

Browse Source 
Signed-off-by: Michael Irwin <mikesir87@gmail.com>
This commit is contained in:
Michael Irwin
2023-09-18 11:06:45 -04:00
parent f9c58a0b91
commit 67cab556a1
6 changed files with 328 additions and 528 deletions
Download Patch File Download Diff File Expand all files Collapse all files

16
result/Dockerfile
View File

@@ -1,22 +1,20 @@
FROM node:18-slim
# add curl for healthcheck
RUN apt-get update \
&& apt-get install -y --no-install-recommends \
curl \
tini \
&& rm -rf /var/lib/apt/lists/*
RUN apt-get update && \
apt-get install -y --no-install-recommends curl tini && \
rm -rf /var/lib/apt/lists/*
WORKDIR /app
WORKDIR /usr/local/app
# have nodemon available for local dev use (file watching)
RUN npm install -g nodemon
COPY package*.json ./
RUN npm ci \
&& npm cache clean --force \
&& mv /app/node_modules /node_modules
RUN npm ci && \
npm cache clean --force && \
mv /usr/local/app/node_modules /node_modules
COPY . .

802
result/package-lock.json generated
View File

File diff suppressed because it is too large Load Diff

7
result/package.json
View File

@@ -10,12 +10,11 @@
"license": "MIT",
"dependencies": {
"async": "^3.1.0",
"body-parser": "^1.19.0",
"cookie-parser": "^1.4.4",
"express": "^4.17.1",
"cookie-parser": "^1.4.6",
"express": "^4.18.2",
"method-override": "^3.0.0",
"pg": "^8.8.0",
"socket.io": "^2.5.0",
"socket.io": "^4.7.2",
"stoppable": "^1.1.0"
}
}

20
result/server.js
View File

@@ -1,20 +1,14 @@
var express = require('express'),
async = require('async'),
pg = require('pg'),
{ Pool } = require('pg'),
path = require('path'),
cookieParser = require('cookie-parser'),
bodyParser = require('body-parser'),
methodOverride = require('method-override'),
app = express(),
server = require('http').Server(app),
io = require('socket.io')(server);
io.set('transports', ['polling']);
var port = process.env.PORT || 4000;
io.sockets.on('connection', function (socket) {
io.on('connection', function (socket) {
socket.emit('message', { text : 'Welcome!' });
@@ -23,7 +17,7 @@ io.sockets.on('connection', function (socket) {
});
});
var pool = new pg.Pool({
var pool = new Pool({
connectionString: 'postgres://postgres:postgres@db/postgres'
});
@@ -70,15 +64,7 @@ function collectVotesFromResult(result) {
}
app.use(cookieParser());
app.use(bodyParser());
app.use(methodOverride('X-HTTP-Method-Override'));
app.use(function(req, res, next) {
res.header("Access-Control-Allow-Origin", "*");
res.header("Access-Control-Allow-Headers", "Origin, X-Requested-With, Content-Type, Accept");
res.header("Access-Control-Allow-Methods", "PUT, GET, POST, DELETE, OPTIONS");
next();
});
app.use(express.urlencoded());
app.use(express.static(__dirname + '/views'));
app.get('/', function (req, res) {

2
result/views/app.js
View File

@@ -1,5 +1,5 @@
var app = angular.module('catsvsdogs', []);
var socket = io.connect({transports:['polling']});
var socket = io.connect();
var bg1 = document.getElementById('background-stats-1');
var bg2 = document.getElementById('background-stats-2');

9
result/views/socket.io.js
View File

File diff suppressed because one or more lines are too long