added getRealIP

added getClientIP
updated screenshot to v0.7.2
2026-02-08 22:26:02 +01:00 · 2026-02-08 21:17:08 +01:00 · 2026-02-08 11:20:27 +01:00
2 changed files with 31 additions and 0 deletions
--- a/img/screenshot.png
+++ b/img/screenshot.png
--- a/main.go
+++ b/main.go
@@ -2,6 +2,7 @@ package main

 import (
 	"os"
+	"net"
 	"strconv"
 	"strings"
 	"sync"
@@ -25,6 +26,28 @@ var (
 	mu sync.Mutex
 )

+func getClientIP(r *http.Request) string {
+    // 1. Prüfe den X-Forwarded-For Header (Standard für Proxies)
+    xForwardedFor := r.Header.Get("X-Forwarded-For")
+    if xForwardedFor != "" {
+        // Der Header kann eine Liste von IPs sein (Client, Proxy1, Proxy2)
+        // Die erste IP in der Liste ist die echte Client-IP
+        ips := strings.Split(xForwardedFor, ",")
+        return strings.TrimSpace(ips[0])
+    }
+
+    // 2. Fallback auf X-Real-IP (oft von Traefik/Nginx gesetzt)
+    xRealIP := r.Header.Get("X-Real-IP")
+    if xRealIP != "" {
+        return xRealIP
+    }
+
+    // 3. Letzter Ausweg: Die direkte IP (wird in deinem Fall die Traefik-IP sein)
+    // RemoteAddr enthält oft auch den Port (z.B. "127.0.0.1:1234")
+    ip, _, _ := net.SplitHostPort(r.RemoteAddr)
+    return ip
+}
+
 // Diese Funktion wird nur intern aufgerufen, wenn der Mutex bereits gesperrt ist
 func getCount() int {
 	data, err := os.ReadFile(counterFile)
@@ -91,6 +114,8 @@ func generatePassword() string {
 }

 func passwordHandler(w http.ResponseWriter, r *http.Request) {
+    clientIP := getClientIP(r)
+    log.Printf("passwordHandler aufrerufen von IP: %s\n", clientIP)
    if debug { log.Printf("called passwordHandler\n") }
    password := generatePassword()
    currentCount := GetPasswordCount()
@@ -108,6 +133,8 @@ func passwordHandler(w http.ResponseWriter, r *http.Request) {
 }

 func passwordAPIHandler(w http.ResponseWriter, r *http.Request) {
+	clientIP := getClientIP(r)
+	log.Printf("passwordAPIHandler aufrerufen von IP: %s\n", clientIP)
 	if debug { log.Printf("called passwordHandler\n") }
 	password := generatePassword()
 	w.Header().Set("Content-Type", "text/plain")
@@ -115,6 +142,8 @@ func passwordAPIHandler(w http.ResponseWriter, r *http.Request) {
 }

 func indexHandler(w http.ResponseWriter, r *http.Request) {
+	clientIP := getClientIP(r)
+	log.Printf("indexHandler aufrerufen von IP: %s\n", clientIP)
 	if debug { log.Printf("call indexHandler: Request %s %s\n", r.Method, r.URL) }
 	password := generatePassword()
 	//password := "load..."
@@ -132,6 +161,8 @@ func indexHandler(w http.ResponseWriter, r *http.Request) {
 }

 func helpHandler(w http.ResponseWriter, r *http.Request) {
+	clientIP := getClientIP(r)
+	log.Printf("helpHandler aufrerufen von IP: %s\n", clientIP)
 	if debug { log.Printf("call helpHandler\n") }
 	err := templates["help.html"].ExecuteTemplate(w, "base.html", nil)
 	if err != nil {
Author	SHA1	Message	Date
Florian Walther	2c09ab8f87	added getRealIP All checks were successful Docker Release Build / push_to_registry (push) Successful in 1m1s Details	2026-02-08 22:26:02 +01:00
Florian Walther	75be4d3015	added getClientIP Some checks failed Docker Release Build / push_to_registry (push) Failing after 49s Details	2026-02-08 21:17:08 +01:00
Florian Walther	c208afabf1	updated screenshot to v0.7.2	2026-02-08 11:20:27 +01:00