clientip

func FlattenDelimitedInputs ¶ added in v0.3.0

func FlattenDelimitedInputs(input []string, sep string) []string

FlattenDelimitedInputs processes a slice of multiple delimited-value strings by splitting them on the delimiter, trimming whitespace, removing empty strings, and removing duplicates while preserving the original order. An empty separator results in a split between every utf-8 character. The result is a single slice of strings. For example, given: ["1.1.1.1, "2.2.2.2, 3.3.3.3, 4.4.4.4", "4.4.4.4, 5.5.5.5"] return: ["1.1.1.1", "2.2.2.2", "3.3.3.3", "4.4.4.4", "5.5.5.5"]

func GetClientIP ¶

func GetClientIP(req *http.Request, trustXFF bool, trustedProxies *TrustedProxies, trustedHeader string) string

GetClientIP determines the real client IP address from an HTTP request, following best practices for X-Forwarded-For handling.

• If trustedHeader is true, we use it
• If trustXFF is false, use the direct remote address.
• If trustXFF is true and trustedProxies is non-empty, walk through the X-Forwarded-For header from right to left, skipping over any IPs in trustedProxies, and return the first untrusted IP.
• If trustXFF is true and trustedProxies is nil or empty, return the first IP in X-Forwarded-For (from the left).
• If no suitable IP is found, fall back to RemoteAddr.
• The remote address's host part is extracted with net.SplitHostPort if possible.