Fix typo

[TomMettam]

"er" is undefined - my bad!

[dblock]

I've merged some of this via 25789e1. I don't understand the use change, can you please explain?

I've also added tests in #23. Would you be so kind to write tests for all the changes, the error one would be a great start.

[TomMettam]

5b9b35b was a security fix. A browser could provide a header like:

X-Forwarded-For: 127.0.0.1

which would allow it to bypass the alexa verification process. This change ensures that X-Forwarded-For is only observed if it's sent from a local server (such as a proxy). Otherwise, the real IP is used.

[dblock]

That's fine, and that whole logic moved to alexa-verifier.

I was asking about this:

[TomMettam]

Ah yes - well, that is because bodyParser.urlencoded doesn't necessary work for all the user server modules.

In my project, for example ( https://gyazo.com/bc5b88a444b8ff334b78a5771b3d80c0 ) there are many express routes added which don't use urlencoded forms, so blanket-applying bodyParser.urlencoded to every request causes problems.

[dblock]

Oh I see, that makes a lot of sense! I opened #35 and will close this.

If you have time, would love some tests and a pull request for that issue.