diff options
Diffstat (limited to 'application/HttpUtils.php')
| -rw-r--r-- | application/HttpUtils.php | 26 |
1 files changed, 26 insertions, 0 deletions
diff --git a/application/HttpUtils.php b/application/HttpUtils.php index 27a39d3d..e705cfd6 100644 --- a/application/HttpUtils.php +++ b/application/HttpUtils.php | |||
| @@ -355,3 +355,29 @@ function page_url($server) | |||
| 355 | } | 355 | } |
| 356 | return index_url($server); | 356 | return index_url($server); |
| 357 | } | 357 | } |
| 358 | |||
| 359 | /** | ||
| 360 | * Retrieve the initial IP forwarded by the reverse proxy. | ||
| 361 | * | ||
| 362 | * Inspired from: https://github.com/zendframework/zend-http/blob/master/src/PhpEnvironment/RemoteAddress.php | ||
| 363 | * | ||
| 364 | * @param array $server $_SERVER array which contains HTTP headers. | ||
| 365 | * @param array $trustedIps List of trusted IP from the configuration. | ||
| 366 | * | ||
| 367 | * @return string|bool The forwarded IP, or false if none could be extracted. | ||
| 368 | */ | ||
| 369 | function getIpAddressFromProxy($server, $trustedIps) | ||
| 370 | { | ||
| 371 | $forwardedIpHeader = 'HTTP_X_FORWARDED_FOR'; | ||
| 372 | if (empty($server[$forwardedIpHeader])) { | ||
| 373 | return false; | ||
| 374 | } | ||
| 375 | |||
| 376 | $ips = preg_split('/\s*,\s*/', $server[$forwardedIpHeader]); | ||
| 377 | $ips = array_diff($ips, $trustedIps); | ||
| 378 | if (empty($ips)) { | ||
| 379 | return false; | ||
| 380 | } | ||
| 381 | |||
| 382 | return array_pop($ips); | ||
| 383 | } | ||