UNPKG

secure-mern

Version:

A lightweight yet powerful npm package to enhance security in MERN stack applications. Built with enterprise-grade architecture in mind, secure-mern helps you integrate essential security features with minimal configuration.

43 lines (31 loc) 1.07 kB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
const express = require("express"); const cors = require("cors"); const helmet = require("helmet"); const cookieParser = require("cookie-parser"); const rateLimit = require("express-rate-limit"); const csrf = require("csurf"); const morgan = require("morgan"); const conditionalRateLimit = require("./middlewares/conditionalRateLimit"); const authRoutes = require("./routes/authRoutes"); const ConnectDB = require("./config/DB"); function secureMern(app, options = {}) { ConnectDB() app.use(cors({ origin: options.origin || "http://localhost:5173", credentials: true })); app.use(helmet()); app.use(express.json()); app.use(cookieParser()); app.use(morgan("dev")); // const limiter = rateLimit({ // windowMs: 15 * 60 * 1000, // max: 1, // }); app.use(conditionalRateLimit); // app.use(limiter); // CSRF middleware disabled for now // app.use(csrf({ cookie: true })); app.use("/auth", authRoutes); } module.exports = secureMern;