首頁 探索 說明
登入
Vieraw
/
Kutt
1
0
複刻 0
檔案 問題管理 0 合併請求 0 Wiki
瀏覽代碼

fix getting ip address

Pouria Ezzati 1 年之前
父節點
dab1ac4139
當前提交
690950e9f8
共有 4 個文件被更改,包括 8 次插入12 次删除
統一視圖 顯示文件統計
  1. 0 6
      server/handlers/helpers.handler.js
  2. 2 2
      server/handlers/links.handler.js
  3. 1 1
      server/queues/visit.js
  4. 5 3
      server/server.js

+ 0 - 6
server/handlers/helpers.handler.js
查看文件 

@@ -3,11 +3,6 @@ const { validationResult } = require("express-validator");
 
 const { CustomError } = require("../utils");
 
 const { CustomError } = require("../utils");
 
 const env = require("../env");
 
 const env = require("../env");
 
 
 
-function ip(req, res, next) {
 
-  req.realIP = req.headers["x-real-ip"] || req.connection.remoteAddress || "";
 
-  return next();
 
-};
 
-
 
 function error(error, req, res, _next) {
 
 function error(error, req, res, _next) {
 
   if (!(error instanceof CustomError)) {
 
   if (!(error instanceof CustomError)) {
 
     console.error(error);
 
     console.error(error);
 
@@ -87,7 +82,6 @@ function parseQuery(req, res, next) {
 
 
 
 module.exports = {
 
 module.exports = {
 
   error,
 
   error,
 
-  ip,
 
   parseQuery,
 
   parseQuery,
 
   verify,
 
   verify,
 
 }
 
 }

+ 2 - 2
server/handlers/links.handler.js
查看文件 

@@ -529,7 +529,7 @@ async function redirect(req, res, next) {
 
   if (link.user_id && !isBot) {
 
   if (link.user_id && !isBot) {
 
     queue.visit.add({
 
     queue.visit.add({
 
       userAgent: req.headers["user-agent"],
 
       userAgent: req.headers["user-agent"],
 
-      realIP: req.realIP,
 
+      ip: req.ip,
 
       referrer: req.get("Referrer"),
 
       referrer: req.get("Referrer"),
 
       link
 
       link
 
     });
 
     });
 
@@ -560,7 +560,7 @@ async function redirectProtected(req, res) {
 
   if (link.user_id) {
 
   if (link.user_id) {
 
     queue.visit.add({
 
     queue.visit.add({
 
       userAgent: req.headers["user-agent"],
 
       userAgent: req.headers["user-agent"],
 
-      realIP: req.realIP,
 
+      ip: req.ip,
 
       referrer: req.get("Referrer"),
 
       referrer: req.get("Referrer"),
 
       link
 
       link
 
     });
 
     });

+ 1 - 1
server/queues/visit.js
查看文件 

@@ -34,7 +34,7 @@ module.exports = function({ data }) {
 
     const [os = "Other"] = osList.filter(filterInOs(agent));
 
     const [os = "Other"] = osList.filter(filterInOs(agent));
 
     const referrer =
 
     const referrer =
 
     data.referrer && removeWww(URL.parse(data.referrer).hostname);
 
     data.referrer && removeWww(URL.parse(data.referrer).hostname);
 
-    const location = geoip.lookup(data.realIP);
 
+    const location = geoip.lookup(data.ip);
 
     const country = location && location.country;
 
     const country = location && location.country;

+ 5 - 3
server/server.js
查看文件 

@@ -22,8 +22,11 @@ require("./passport");
 
 // create express app
 
 // create express app
 
 const app = express();
 
 const app = express();
 
 
 
-// stating that this app is running behind a proxy
 
-// and the express app should get the IP address from the proxy server
 
+// this tells the express app that the app is running behind a proxy server
 
+// and thus it should get the IP address from the proxy server
 
+// IMPORTANT: users might be able to override their IP address and this
 
+// might allow users to bypass the rate limit or lead to incorrect link stats
 
+// read the Kutt documentation to learn how prevent users from changing their real IP address
 
 app.set("trust proxy", true);
 
 app.set("trust proxy", true);
 
 
 
 app.use(helmet({ contentSecurityPolicy: false }));
 
 app.use(helmet({ contentSecurityPolicy: false }));
 
@@ -33,7 +36,6 @@ app.use(express.urlencoded({ extended: true }));
 
 app.use(express.static("static"));
 
 app.use(express.static("static"));
 
 
 
 app.use(passport.initialize());
 
 app.use(passport.initialize());
 
-app.use(helpers.ip);
 
 app.use(locals.isHTML);
 
 app.use(locals.isHTML);
 
 app.use(locals.config);
 
 app.use(locals.config);