Enable strict mode in TS and fix most issues with it

Author: jonbarrow

.eslintignore

@@ -1 +1,2 @@
-dist
+dist
+*.js

package-lock.json

@@ -33,7 +33,7 @@
     "dotenv": "^16.0.3",
     "email-validator": "^2.0.4",
     "express": "^4.17.1",
-    "express-rate-limit": "^5.3.0",
+    "express-rate-limit": "^6.7.0",
     "express-subdomain": "^1.0.5",
     "fs-extra": "^8.1.0",
     "got": "^11.8.2",
@@ -55,13 +55,17 @@
   },
   "devDependencies": {
     "@hcaptcha/types": "^1.0.3",
+    "@types/bcrypt": "^5.0.0",
+    "@types/cors": "^2.8.13",
     "@types/dicer": "^0.2.2",
     "@types/express": "^4.17.17",
     "@types/fs-extra": "^11.0.1",
+    "@types/mongoose-unique-validator": "^1.0.7",
     "@types/morgan": "^1.9.4",
     "@types/node": "^18.14.4",
     "@types/node-rsa": "^1.1.1",
     "@types/nodemailer": "^6.4.7",
+    "@types/validator": "^13.7.14",
     "@typescript-eslint/eslint-plugin": "^5.54.1",
     "@typescript-eslint/parser": "^5.54.1",
     "eslint": "^8.35.0",

package.json

@@ -28,12 +28,12 @@ export async function setCachedFile(fileName: string, value: Buffer): Promise<vo
 }
 
 export async function getCachedFile(fileName: string, encoding?: BufferEncoding): Promise<Buffer> {
-	let cachedFile: Buffer;
+	let cachedFile: Buffer = Buffer.alloc(0);
 
 	if (disabledFeatures.redis) {
 		cachedFile = memoryCache[fileName] || null;
 	} else {
-		const redisValue: string = await client.get(fileName);
+		const redisValue: string | null = await client.get(fileName);
 		if (redisValue) {
 			cachedFile = Buffer.from(redisValue, encoding);
 		}
@@ -177,7 +177,7 @@ export async function getLocalCDNFile(name: string, encoding?: BufferEncoding):
 
 	if (file === null) {
 		if (await fs.pathExists(`${LOCAL_CDN_BASE}/${name}`)) {
-			const fileBuffer: string = await fs.readFile(`${LOCAL_CDN_BASE}/${name}`, { encoding });
+			const fileBuffer: string | Buffer = await fs.readFile(`${LOCAL_CDN_BASE}/${name}`, { encoding });
 			file = Buffer.from(fileBuffer);
 			await setLocalCDNFile(name, file);
 		}

src/cache.ts

@@ -15,49 +15,49 @@ export const disabledFeatures: DisabledFeatures = {
 
 LOG_INFO('Loading config');
 
-let mongooseConnectOptions: mongoose.ConnectOptions;
+let mongooseConnectOptions: mongoose.ConnectOptions = {};
 
 if (process.env.PN_ACT_CONFIG_MONGOOSE_CONNECT_OPTIONS_PATH) {
 	mongooseConnectOptions = fs.readJSONSync(process.env.PN_ACT_CONFIG_MONGOOSE_CONNECT_OPTIONS_PATH);
 }
 
 export const config: Config = {
 	http: {
-		port: Number(process.env.PN_ACT_CONFIG_HTTP_PORT)
+		port: Number(process.env.PN_ACT_CONFIG_HTTP_PORT || '')
 	},
 	mongoose: {
-		connection_string: process.env.PN_ACT_CONFIG_MONGO_CONNECTION_STRING,
+		connection_string: process.env.PN_ACT_CONFIG_MONGO_CONNECTION_STRING || '',
 		options: mongooseConnectOptions
 	},
 	redis: {
 		client: {
-			url: process.env.PN_ACT_CONFIG_REDIS_URL
+			url: process.env.PN_ACT_CONFIG_REDIS_URL || ''
 		}
 	},
 	email: {
-		host: process.env.PN_ACT_CONFIG_EMAIL_HOST,
-		port: Number(process.env.PN_ACT_CONFIG_EMAIL_PORT),
-		secure: Boolean(process.env.PN_ACT_CONFIG_EMAIL_SECURE),
+		host: process.env.PN_ACT_CONFIG_EMAIL_HOST || '',
+		port: Number(process.env.PN_ACT_CONFIG_EMAIL_PORT || ''),
+		secure: Boolean(process.env.PN_ACT_CONFIG_EMAIL_SECURE || ''),
 		auth: {
-			user: process.env.PN_ACT_CONFIG_EMAIL_USERNAME,
-			pass: process.env.PN_ACT_CONFIG_EMAIL_PASSWORD
+			user: process.env.PN_ACT_CONFIG_EMAIL_USERNAME || '',
+			pass: process.env.PN_ACT_CONFIG_EMAIL_PASSWORD || ''
 		},
-		from: process.env.PN_ACT_CONFIG_EMAIL_FROM
+		from: process.env.PN_ACT_CONFIG_EMAIL_FROM || ''
 	},
 	s3: {
-		endpoint: process.env.PN_ACT_CONFIG_S3_ENDPOINT,
-		key: process.env.PN_ACT_CONFIG_S3_ACCESS_KEY,
-		secret: process.env.PN_ACT_CONFIG_S3_ACCESS_SECRET
+		endpoint: process.env.PN_ACT_CONFIG_S3_ENDPOINT || '',
+		key: process.env.PN_ACT_CONFIG_S3_ACCESS_KEY || '',
+		secret: process.env.PN_ACT_CONFIG_S3_ACCESS_SECRET || ''
 	},
 	hcaptcha: {
-		secret: process.env.PN_ACT_CONFIG_HCAPTCHA_SECRET
+		secret: process.env.PN_ACT_CONFIG_HCAPTCHA_SECRET || ''
 	},
 	cdn: {
-		subdomain: process.env.PN_ACT_CONFIG_CDN_SUBDOMAIN,
-		disk_path: process.env.PN_ACT_CONFIG_CDN_DISK_PATH,
-		base_url: process.env.PN_ACT_CONFIG_CDN_BASE_URL
+		subdomain: process.env.PN_ACT_CONFIG_CDN_SUBDOMAIN || '',
+		disk_path: process.env.PN_ACT_CONFIG_CDN_DISK_PATH || '',
+		base_url: process.env.PN_ACT_CONFIG_CDN_BASE_URL || ''
 	},
-	website_base: process.env.PN_ACT_CONFIG_WEBSITE_BASE
+	website_base: process.env.PN_ACT_CONFIG_WEBSITE_BASE || ''
 };
 
 LOG_INFO('Config loaded, checking integrity');

src/config-manager.ts

@@ -42,23 +42,23 @@ export function verifyConnected(): void {
 	}
 }
 
-export async function getUserByUsername(username: string): Promise<HydratedPNIDDocument> {
+export async function getUserByUsername(username: string): Promise<HydratedPNIDDocument | null> {
 	verifyConnected();
 
 	return await PNID.findOne<HydratedPNIDDocument>({
 		usernameLower: username.toLowerCase()
 	});
 }
 
-export async function getUserByPID(pid: number): Promise<HydratedPNIDDocument> {
+export async function getUserByPID(pid: number): Promise<HydratedPNIDDocument | null> {
 	verifyConnected();
 
 	return await PNID.findOne<HydratedPNIDDocument>({
 		pid
 	});
 }
 
-export async function getUserByEmailAddress(email: string): Promise<HydratedPNIDDocument> {
+export async function getUserByEmailAddress(email: string): Promise<HydratedPNIDDocument | null> {
 	verifyConnected();
 
 	// TODO - Update documents to store email normalized
@@ -73,7 +73,7 @@ export async function doesUserExist(username: string): Promise<boolean> {
 	return !!await getUserByUsername(username);
 }
 
-export async function getUserBasic(token: string): Promise<HydratedPNIDDocument> {
+export async function getUserBasic(token: string): Promise<HydratedPNIDDocument | null> {
 	verifyConnected();
 
 	// * Wii U sends Basic auth as `username password`, where the password may not have spaces
@@ -84,7 +84,7 @@ export async function getUserBasic(token: string): Promise<HydratedPNIDDocument>
 	const username: string = parts[0];
 	const password: string = parts[1];
 
-	const user: HydratedPNIDDocument = await getUserByUsername(username);
+	const user: HydratedPNIDDocument | null = await getUserByUsername(username);
 
 	if (!user) {
 		return null;
@@ -99,14 +99,14 @@ export async function getUserBasic(token: string): Promise<HydratedPNIDDocument>
 	return user;
 }
 
-export async function getUserBearer(token: string): Promise<HydratedPNIDDocument> {
+export async function getUserBearer(token: string): Promise<HydratedPNIDDocument | null> {
 	verifyConnected();
 
 	try {
 		const decryptedToken: Buffer = await decryptToken(Buffer.from(token, 'base64'));
 		const unpackedToken: Token = unpackToken(decryptedToken);
 
-		const user: HydratedPNIDDocument = await getUserByPID(unpackedToken.pid);
+		const user: HydratedPNIDDocument | null = await getUserByPID(unpackedToken.pid);
 
 		if (user) {
 			const expireTime: number = Math.floor((Number(unpackedToken.expire_time) / 1000));
@@ -124,27 +124,38 @@ export async function getUserBearer(token: string): Promise<HydratedPNIDDocument
 	}
 }
 
-export async function getUserProfileJSONByPID(pid: number): Promise<PNIDProfile> {
+export async function getUserProfileJSONByPID(pid: number): Promise<PNIDProfile | null> {
 	verifyConnected();
 
-	const user: HydratedPNIDDocument = await getUserByPID(pid);
+	const user: HydratedPNIDDocument | null = await getUserByPID(pid);
+
+	if (!user) {
+		return null;
+	}
+
 	const device: HydratedDeviceDocument = user.get('devices')[0]; // * Just grab the first device
-	let device_attributes: [{
+	let device_attributes: {
 		device_attribute: {
 			name: string;
 			value: string;
 			created_date: string;
 		};
-	}];
+	}[] = [];
 
 	if (device) {
-		device_attributes = device.get('device_attributes').map(({name, value, created_date}) => ({
-			device_attribute: {
-				name,
-				value,
-				created_date: created_date ? created_date : ''
-			}
-		}));
+		device_attributes = device.get('device_attributes').map((attribute: { name: string; value: string; created_date: string; }) => {
+			const name: string = attribute.name;
+			const value: string = attribute.value;
+			const created_date: string = attribute.created_date;
+
+			return {
+				device_attribute: {
+					name,
+					value,
+					created_date: created_date ? created_date : ''
+				}
+			};
+		});
 	}
 
 	return {
@@ -196,21 +207,21 @@ export async function getUserProfileJSONByPID(pid: number): Promise<PNIDProfile>
 	};
 }
 
-export async function getServer(gameServerId: string, accessMode: string): Promise<HydratedServerDocument> {
+export async function getServer(gameServerId: string, accessMode: string): Promise<HydratedServerDocument | null> {
 	return await Server.findOne({
 		game_server_id: gameServerId,
 		access_mode: accessMode
 	});
 }
 
-export async function getServerByTitleId(titleId: string, accessMode: string): Promise<HydratedServerDocument> {
+export async function getServerByTitleId(titleId: string, accessMode: string): Promise<HydratedServerDocument | null> {
 	return await Server.findOne({
 		title_ids: titleId,
 		access_mode: accessMode
 	});
 }
 
-export async function addUserConnection(pnid: HydratedPNIDDocument, data: ConnectionData, type: string): Promise<ConnectionResponse> {
+export async function addUserConnection(pnid: HydratedPNIDDocument, data: ConnectionData, type: string): Promise<ConnectionResponse | undefined> {
 	if (type === 'discord') {
 		return await addUserConnectionDiscord(pnid, data);
 	}
@@ -239,7 +250,7 @@ export async function addUserConnectionDiscord(pnid: HydratedPNIDDocument, data:
 	};
 }
 
-export async function removeUserConnection(pnid: HydratedPNIDDocument, type: string): Promise<ConnectionResponse> {
+export async function removeUserConnection(pnid: HydratedPNIDDocument, type: string): Promise<ConnectionResponse | undefined> {
 	// * Add more connections later?
 	if (type === 'discord') {
 		return await removeUserConnectionDiscord(pnid);

src/database.ts

@@ -20,10 +20,10 @@ export async function sendMail(options: MailerOptions): Promise<void> {
 		let html: string = confirmation ? confirmationEmailTemplate : genericEmailTemplate;
 
 		html = html.replace(/{{username}}/g, username);
-		html = html.replace(/{{paragraph}}/g, paragraph);
-		html = html.replace(/{{preview}}/g, (preview || ''));
-		html = html.replace(/{{confirmation-href}}/g, (confirmation?.href || ''));
-		html = html.replace(/{{confirmation-code}}/g, (confirmation?.code || ''));
+		html = html.replace(/{{paragraph}}/g, paragraph || '');
+		html = html.replace(/{{preview}}/g, preview || '');
+		html = html.replace(/{{confirmation-href}}/g, confirmation?.href || '');
+		html = html.replace(/{{confirmation-code}}/g, confirmation?.code || '');
 
 		if (link) {
 			const { href, text } = link;

src/mailer.ts

@@ -3,14 +3,14 @@ import { getUserBearer } from '@/database';
 import { HydratedPNIDDocument } from '@/types/mongoose/pnid';
 
 async function APIMiddleware(request: express.Request, _response: express.Response, next: express.NextFunction): Promise<void> {
-	const authHeader: string = request.headers.authorization;
+	const authHeader: string | undefined = request.headers.authorization;
 
 	if (!authHeader || !(authHeader.startsWith('Bearer'))) {
 		return next();
 	}
 
 	const token: string = authHeader.split(' ')[1];
-	const user: HydratedPNIDDocument = await getUserBearer(token);
+	const user: HydratedPNIDDocument | null = await getUserBearer(token);
 
 	request.pnid = user;
 

src/middleware/api.ts

@@ -35,9 +35,9 @@ async function NASCMiddleware(request: express.Request, response: express.Respon
 	const macAddressHash: string = crypto.createHash('sha256').update(macAddress).digest('base64');
 	const fcdcertHash: string = crypto.createHash('sha256').update(fcdcert).digest('base64');
 
-	let pid: number;
-	let pidHmac: string;
-	let password: string;
+	let pid: number = 0; // * Real PIDs are always positive and non-zero
+	let pidHmac: string = '';
+	let password: string = '';
 
 	if (requestParams.userid) {
 		pid = Number(nintendoBase64Decode(requestParams.userid).toString());
@@ -68,7 +68,7 @@ async function NASCMiddleware(request: express.Request, response: express.Respon
 		return;
 	}
 
-	let model: string;
+	let model: string = '';
 	switch (serialNumber[0]) {
 		case 'C':
 			model = 'ctr';
@@ -95,7 +95,7 @@ async function NASCMiddleware(request: express.Request, response: express.Respon
 		return;
 	}
 
-	let device: HydratedDeviceDocument = await Device.findOne({
+	let device: HydratedDeviceDocument | null = await Device.findOne({
 		model,
 		serial: serialNumber,
 		environment,
@@ -174,7 +174,7 @@ async function NASCMiddleware(request: express.Request, response: express.Respon
 		}
 	}
 
-	const nexUser: HydratedNEXAccountDocument = await NEXAccount.findOne({ pid });
+	const nexUser: HydratedNEXAccountDocument | null = await NEXAccount.findOne({ pid });
 
 	if (!nexUser || nexUser.get('access_level') < 0) {
 		response.status(200).send(nascError('102'));

src/middleware/nasc.ts

@@ -4,7 +4,7 @@ import { getUserBasic, getUserBearer } from '@/database';
 import { HydratedPNIDDocument } from '@/types/mongoose/pnid';
 
 async function PNIDMiddleware(request: express.Request, response: express.Response, next: express.NextFunction): Promise<void> {
-	const authHeader: string = request.headers.authorization;
+	const authHeader: string | undefined = request.headers.authorization;
 
 	if (!authHeader || !(authHeader.startsWith('Bearer') || authHeader.startsWith('Basic'))) {
 		return next();
@@ -13,7 +13,7 @@ async function PNIDMiddleware(request: express.Request, response: express.Respon
 	const parts: string[] = authHeader.split(' ');
 	const type: string = parts[0];
 	let token: string = parts[1];
-	let user: HydratedPNIDDocument;
+	let user: HydratedPNIDDocument | null;
 
 	if (request.isCemu) {
 		token = Buffer.from(token, 'hex').toString('base64');

src/middleware/pnid.ts

@@ -4,8 +4,8 @@ import { document as xmlParser } from 'xmlbuilder2';
 
 function XMLMiddleware(request: express.Request, response: express.Response, next: express.NextFunction): void {
 	if (request.method == 'POST' || request.method == 'PUT') {
-		const contentType: string = request.headers['content-type'];
-		const contentLength: string = request.headers['content-length'];
+		const contentType: string | undefined = request.headers['content-type'];
+		const contentLength: string | undefined = request.headers['content-length'];
 		let body: string = '';
 
 		if (

src/middleware/xml-parser.ts

@@ -121,7 +121,7 @@ PNIDSchema.method('generatePID', async function generatePID(): Promise<void> {
 
 	const pid: number =  Math.floor(Math.random() * (max - min + 1) + min);
 
-	const inuse: HydratedPNIDDocument = await PNID.findOne({
+	const inuse: HydratedPNIDDocument | null = await PNID.findOne({
 		pid
 	});
 
@@ -143,7 +143,7 @@ PNIDSchema.method('generateEmailValidationCode', async function generateEmailVal
 PNIDSchema.method('generateEmailValidationToken', async function generateEmailValidationToken(): Promise<void> {
 	const token: string = crypto.randomBytes(32).toString('hex');
 
-	const inuse: HydratedPNIDDocument = await PNID.findOne({
+	const inuse: HydratedPNIDDocument | null = await PNID.findOne({
 		'identification.email_token': token
 	});