sendnrw/netbird
2
0
Fork 0
mirror of https://github.com/netbirdio/netbird.git synced 2026-04-19 00:36:38 +00:00
Code Issues Packages Projects Releases Wiki Activity

Set forwarded headers from trusted proxies only

Browse Source
This commit is contained in:
Viktor Liu
2026-02-08 17:31:10 +08:00
parent 5190923c70
commit ed58659a01
12 changed files with 608 additions and 57 deletions
Download Patch File Download Diff File Expand all files Collapse all files

17
proxy/internal/accesslog/logger.go
View File

@@ -2,6 +2,7 @@ package accesslog
import (
"context"
"net/netip"
log "github.com/sirupsen/logrus"
"google.golang.org/grpc"
@@ -14,18 +15,24 @@ type gRPCClient interface {
SendAccessLog(ctx context.Context, in *proto.SendAccessLogRequest, opts ...grpc.CallOption) (*proto.SendAccessLogResponse, error)
}
// Logger sends access log entries to the management server via gRPC.
type Logger struct {
client gRPCClient
logger *log.Logger
client gRPCClient
logger *log.Logger
trustedProxies []netip.Prefix
}
func NewLogger(client gRPCClient, logger *log.Logger) *Logger {
// NewLogger creates a new access log Logger. The trustedProxies parameter
// configures which upstream proxy IP ranges are trusted for extracting
// the real client IP from X-Forwarded-For headers.
func NewLogger(client gRPCClient, logger *log.Logger, trustedProxies []netip.Prefix) *Logger {
if logger == nil {
logger = log.StandardLogger()
}
return &Logger{
client: client,
logger: logger,
client: client,
logger: logger,
trustedProxies: trustedProxies,
}
}