scratch – Blame information for rev 141
?pathlinks?
| Rev | Author | Line No. | Line |
|---|---|---|---|
| 141 | office | 1 | <?php |
| 2 | /** |
||
| 3 | * Retrieves the best guess of the client's actual IP address. |
||
| 4 | * Takes into account numerous HTTP proxy headers due to variations |
||
| 5 | * in how different ISPs handle IP addresses in headers between hops. |
||
| 6 | * |
||
| 7 | * Source: https://gist.github.com/cballou/2201933 |
||
| 8 | * |
||
| 9 | */ |
||
| 10 | function get_ip_address() { |
||
| 11 | // check for shared internet/ISP IP |
||
| 12 | if (!empty($_SERVER['HTTP_CLIENT_IP']) && validate_ip($_SERVER['HTTP_CLIENT_IP'])) { |
||
| 13 | return $_SERVER['HTTP_CLIENT_IP']; |
||
| 14 | } |
||
| 15 | |||
| 16 | // check for IPs passing through proxies |
||
| 17 | if (!empty($_SERVER['HTTP_X_FORWARDED_FOR'])) { |
||
| 18 | // check if multiple ips exist in var |
||
| 19 | if (strpos($_SERVER['HTTP_X_FORWARDED_FOR'], ',') !== false) { |
||
| 20 | $iplist = explode(',', $_SERVER['HTTP_X_FORWARDED_FOR']); |
||
| 21 | foreach ($iplist as $ip) { |
||
| 22 | if (validate_ip($ip)) |
||
| 23 | return $ip; |
||
| 24 | } |
||
| 25 | } else { |
||
| 26 | if (validate_ip($_SERVER['HTTP_X_FORWARDED_FOR'])) |
||
| 27 | return $_SERVER['HTTP_X_FORWARDED_FOR']; |
||
| 28 | } |
||
| 29 | } |
||
| 30 | if (!empty($_SERVER['HTTP_X_FORWARDED']) && validate_ip($_SERVER['HTTP_X_FORWARDED'])) |
||
| 31 | return $_SERVER['HTTP_X_FORWARDED']; |
||
| 32 | if (!empty($_SERVER['HTTP_X_CLUSTER_CLIENT_IP']) && validate_ip($_SERVER['HTTP_X_CLUSTER_CLIENT_IP'])) |
||
| 33 | return $_SERVER['HTTP_X_CLUSTER_CLIENT_IP']; |
||
| 34 | if (!empty($_SERVER['HTTP_FORWARDED_FOR']) && validate_ip($_SERVER['HTTP_FORWARDED_FOR'])) |
||
| 35 | return $_SERVER['HTTP_FORWARDED_FOR']; |
||
| 36 | if (!empty($_SERVER['HTTP_FORWARDED']) && validate_ip($_SERVER['HTTP_FORWARDED'])) |
||
| 37 | return $_SERVER['HTTP_FORWARDED']; |
||
| 38 | |||
| 39 | // return unreliable ip since all else failed |
||
| 40 | return $_SERVER['REMOTE_ADDR']; |
||
| 41 | } |
||
| 42 | |||
| 43 | /** |
||
| 44 | * Ensures an ip address is both a valid IP and does not fall within |
||
| 45 | * a private network range. |
||
| 46 | * |
||
| 47 | * Source: https://gist.github.com/cballou/2201933 |
||
| 48 | * |
||
| 49 | */ |
||
| 50 | function validate_ip($ip) { |
||
| 51 | if (strtolower($ip) === 'unknown') |
||
| 52 | return false; |
||
| 53 | |||
| 54 | // generate ipv4 network address |
||
| 55 | $ip = ip2long($ip); |
||
| 56 | |||
| 57 | // if the ip is set and not equivalent to 255.255.255.255 |
||
| 58 | if ($ip !== false && $ip !== -1) { |
||
| 59 | // make sure to get unsigned long representation of ip |
||
| 60 | // due to discrepancies between 32 and 64 bit OSes and |
||
| 61 | // signed numbers (ints default to signed in PHP) |
||
| 62 | $ip = sprintf('%u', $ip); |
||
| 63 | // do private network range checking |
||
| 64 | if ($ip >= 0 && $ip <= 50331647) return false; |
||
| 65 | if ($ip >= 167772160 && $ip <= 184549375) return false; |
||
| 66 | if ($ip >= 2130706432 && $ip <= 2147483647) return false; |
||
| 67 | if ($ip >= 2851995648 && $ip <= 2852061183) return false; |
||
| 68 | if ($ip >= 2886729728 && $ip <= 2887778303) return false; |
||
| 69 | if ($ip >= 3221225984 && $ip <= 3221226239) return false; |
||
| 70 | if ($ip >= 3232235520 && $ip <= 3232301055) return false; |
||
| 71 | if ($ip >= 4294967040) return false; |
||
| 72 | } |
||
| 73 | return true; |
||
| 74 | } |