mirror of
https://github.com/netbirdio/netbird.git
synced 2026-04-16 15:26:40 +00:00
17 lines
583 B
Go
17 lines
583 B
Go
package accesslog
|
|
|
|
import (
|
|
"net/http"
|
|
"net/netip"
|
|
|
|
"github.com/netbirdio/netbird/proxy/internal/proxy"
|
|
)
|
|
|
|
// extractSourceIP resolves the real client IP from the request using trusted
|
|
// proxy configuration. When trustedProxies is non-empty and the direct
|
|
// connection is from a trusted source, it walks X-Forwarded-For right-to-left
|
|
// skipping trusted IPs. Otherwise it returns RemoteAddr directly.
|
|
func extractSourceIP(r *http.Request, trustedProxies []netip.Prefix) netip.Addr {
|
|
return proxy.ResolveClientIP(r.RemoteAddr, r.Header.Get("X-Forwarded-For"), trustedProxies)
|
|
}
|