New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Audit log entry for login event captures wrong ip address #507
Comments
@Steve-Mcl please take a look at this for 0.7. Given the IP address in question is coming from NR, there may be something we need to modify in how NR captures the IP address. There are usually http headers that can be used to get the original ip address of the client. |
I was looking into / testing this yesterday. We are deriving the IP from...
... in the (node-red source). Reading many articles, many pointed to this small lib (request-ip) where the user ip is determined by the following order...
However, as many articles (example) state, to reliably get the client IP you need to add I suspect in order to maximise the chance of capturing the correct client IP we will need a combination of the above. @hardillb @knolleary with your knowledge of the cloud architecture, could you advise please? |
@knolleary a direct question for you please (node-red related) There are 2 approaches and I believe the best chance of success would be to implement both, but partly hidden (disabled by default) in settings js.
Please let me know your thoughts on this approach |
After some testing, I am moving away from adding
or
As for That leaves the questions...
|
We should just use |
Thanks for the reply @hardillb but i am having a proper "eats shoots and leaves" moment Can I paraphrase you to make sure I understand?... "We should just use |
Yes, There shouldn't be a need for an extra package iirc |
@hardillb ok, thanks for confirming. I will go with this for now. I do think the minimal client IP detection logic we have in node-red ATM would benefit from this small package but we will see. We can always revisit 👍 |
PR ready for review: FlowFuse/nr-launcher#45 |
Current Behavior
Logged into a project on ff cloud. Noticed the audit log entry contains a 192.168.... address which is not very helpful
Expected Behavior
The IP address should reflect the user logging in - not some internal ip address.
As Node-RED is providing the log entry content we will need to raise an upstream issue.
Steps To Reproduce
No response
Environment
The text was updated successfully, but these errors were encountered: