Proxy Forwarder HTTP Middleware

The middleware code

import (
	"fmt"
	"net"
	"net/http"
)

// RealIP Middleware
func RealIP(header string, trustedForwarders ...net.IP) func(next http.Handler) http.Handler {
	return func(next http.Handler) http.Handler {
		return http.HandlerFunc(func(w http.ResponseWriter, r *http.Request) {
			// Obtain host from RemoteAddr
			host, port, err := net.SplitHostPort(r.RemoteAddr)
			if err != nil {
			  http.Error(w, fmt.Sprintf("invalid request.RemoteAddr %s", err), http.StatusInternalServerError)
				return
			}
			remoteHost := net.ParseIP(host)

			// Check if host is a trusted forwarder and update request.RemoteAddr
			for _, forwarderIP := range trustedForwarders {
				if remoteHost.Equal(forwarderIP) {
					realIp := r.Header.Get(header)
					if net.ParseIP(realIp) != nil {
						r.RemoteAddr = net.JoinHostPort(realIp, port)
					}
					break
				}
			}

			next.ServeHTTP(w, r)
		})
	}
}

Example usage

package main

import (
	"fmt"
	"log"
	"net"
	"net/http"

	"github.com/gorilla/mux"

	"github.com/user/project/middleware"
)

func main() {

	router := mux.NewRouter()
	router.Use(
		middleware.RealIP("X-REAL-IP", net.Parser("127.0.0.1"), net.Parser("10.0.0.10")),
		// some middlwares if necesary
	)

  // test handler
	router.HandleFunc("/", testHandler).Methods(http.MethodGet) // Websocket connection

	err := http.ListenAndServe(":8080", router)
	if err != nil {
		log.Printf("Listen %s", err)
	}
}

func testHandler(w http.ResponseWriter, r *http.Request) {
	host, _, _ := net.SplitHostPort(r.RemoteAddr)
	fmt.Fprintf(w, "Your ip is %s", host)
}

PreviousInitial page

Last updated 5 years ago

Was this helpful?