Backup_Repos/filestash
1
0
Fork 0
mirror of https://github.com/mickael-kerjean/filestash synced 2025-12-06 08:22:24 +01:00
Code Issues Projects Releases Wiki Activity

feature (#585): support for proxied ip when logging intrusions

Browse source
This commit is contained in:
Juan Carlos Ramirez 2023-04-07 00:19:16 -05:00 committed by GitHub
parent 96b4ca786a
commit 36c006680c
No known key found for this signature in database
GPG key ID: 4AEE18F83AFDEB23
1 changed files with 9 additions and 1 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

10
server/middleware/http.go
View file

@ -100,7 +100,7 @@ func SecureOrigin(fn func(*App, http.ResponseWriter, *http.Request)) func(ctx *A
return
}
Log.Warning("Intrusion detection: %s - %s", req.RemoteAddr, req.URL.String())
Log.Warning("Intrusion detection: %s - %s", RetrievePublicIp(req), req.URL.String())
SendErrorResult(res, ErrNotAllowed)
}
}
@ -182,3 +182,11 @@ func EnableCors(req *http.Request, res http.ResponseWriter, host string) error {
h.Set("Access-Control-Allow-Headers", "Authorization")
return nil
}
func RetrievePublicIp(req *http.Request) string {
if req.Header.Get("X-Forwarded-For") != "" {
return req.Header.Get("X-Forwarded-For")
} else {
return req.RemoteAddr
}
}