Does ktor offer a way to obtain client IP when behind proxy?
Thanks
brezinajn
All 7 comments
Yes, call.request.origin gives connection properties of the original caller (to proxy) if proxy provides proper headers and XForwardedHeadersSupport is installed.
orangy
on 7 Mar 2018
While writting the feature page about XForwardedHeadersSupport, I have added this to the FAQ:
http://ktor.io/servers/faq.html#proxy-ip
soywiz
on 7 Mar 2018
Just added this page to the documentation:
http://ktor.io/servers/requests.html#properties
You are interested into: call.request.origin.remoteHost
soywiz
on 7 Mar 2018
Thanks for fast response 馃憤
brezinajn
on 8 Mar 2018
I think this has a bug: I've checked that mod_proxy_http adds the 'X-Forwarded-For' header, but call.request.origin.remoteHost contains '0:0:0:0:0:0:0:1' instead of the ip in the 'X-Forwarded-For' header
Ran on 1.0.1, upgraded to 1.1.1, but it didn't help
SteelBRS
on 16 Jan 2019
Ah, thought this was default behaviour and I missed that I should call
install(XForwardedHeaderSupport)
SteelBRS
on 16 Jan 2019
A service which is _not_ behind a proxy shouldn't use this feature, because it can be spoofed by a malicious client.
orangy
on 16 Jan 2019
Related issues
ManifoldFR
路
4Comments
scorsi
路
4Comments
gabin8
路
4Comments
seanf
路
3Comments
r4zzz4k
路
4Comments
Most helpful comment
A service which is _not_ behind a proxy shouldn't use this feature, because it can be spoofed by a malicious client.