Skip to content
This repository was archived by the owner on Feb 11, 2026. It is now read-only.

chore: duplicate changes from http to swoole #36

Merged
loks0n merged 6 commits into from
Dec 15, 2025
Merged

chore: duplicate changes from http to swoole #36

Show file tree
Hide file tree
Changes from 1 commit
Commits
Show all changes
6 commits
Select commit Hold shift + click to select a range
af6911b
chore: duplicate changes from http to swoole
levivannoort Dec 15, 2025
61c849b
chore: resolve phpstan type error
levivannoort Dec 15, 2025
dbc52e2
chore: remove obsolete version reference in docker-compose
levivannoort Dec 15, 2025
8c31908
Fix double set cookie test
Meldiron Dec 15, 2025
4056787
chore: align parameter usage
levivannoort Dec 15, 2025
1f06c2d
chore: version pin utopia-php/framework
levivannoort Dec 15, 2025
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
2 changes: 1 addition & 1 deletion composer.json
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -15,7 +15,7 @@
"require": {
"php": ">=8.0",
"ext-swoole": "*",
"utopia-php/framework": "0.33.*"
Comment thread
levivannoort marked this conversation as resolved.
"utopia-php/framework": "0.33.x"
},
"require-dev": {
"phpunit/phpunit": "^9.3",
Expand Down
76 changes: 61 additions & 15 deletions composer.lock
View file
Open in desktop

Some generated files are not rendered by default. Learn more about how customized files appear on GitHub.

54 changes: 49 additions & 5 deletions src/Swoole/Request.php
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -14,6 +14,13 @@ class Request extends UtopiaRequest
*/
protected SwooleRequest $swoole;

/**
* List of trusted proxy header names to check for client IP address
*
* @var array
*/
protected array $trustedIpHeaders = [];
Comment thread
coderabbitai[bot] marked this conversation as resolved.

/**
* Request constructor.
*/
Expand Down Expand Up @@ -64,18 +71,55 @@ public function setServer(string $key, string $value): static
return $this;
}

/**
* Set trusted ip headers
*
* WARNING: Only set these headers if your application is behind a trusted proxy.
* Trusting these headers when accepting direct client connections is a security risk.
*
* @param array $headers List of header names to trust (e.g., ['x-forwarded-for', 'x-real-ip'])
* @return static
*/
public function setTrustedIpHeaders(array $headers): static
{
$normalized = array_map('strtolower', $headers);
$trimmed = array_map('trim', $normalized);
$this->trustedIpHeaders = array_filter($trimmed);

return $this;
}
Comment thread
coderabbitai[bot] marked this conversation as resolved.

/**
* Get IP
*
* Returns users IP address.
* Support HTTP_X_FORWARDED_FOR header usually return
* from different proxy servers or PHP default REMOTE_ADDR
* Extracts the client's IP address from trusted headers or falls back to the remote address.
* Prioritizes headers like X-Forwarded-For when behind proxies or load balancers,
* defaulting to REMOTE_ADDR when trusted headers are unavailable.
*
* @return string The validated client IP address or '0.0.0.0' if unavailable
*/
public function getIP(): string
{
$ips = explode(',', $this->getHeader('x-forwarded-for', $this->getServer('remote_addr') ?? '0.0.0.0'));
$remoteAddr = $this->getServer('REMOTE_ADDR') ?? '0.0.0.0';

foreach ($this->trustedIpHeaders as $header) {
$headerValue = $this->getHeader($header);

if (empty($headerValue)) {
continue;
}

// Leftmost IP address is the address of the originating client
$ips = explode(',', $headerValue);
$ip = trim($ips[0]);

// Validate IP format (supports both IPv4 and IPv6)
if (filter_var($ip, FILTER_VALIDATE_IP)) {
return $ip;
}
}

return trim($ips[0] ?? '');
return $remoteAddr;
}

/**
Expand Down
Loading