From 5c46b09805192c707ba4e9cfdf34b47925c1646d Mon Sep 17 00:00:00 2001
From: kyqv <5160693+FacebookLibra@user.noreply.gitee.com>
Date: Sun, 17 Jul 2022 04:14:23 +0000
Subject: [PATCH] =?UTF-8?q?update=20applications/common/admin=5Flog.py.=20?=
 =?UTF-8?q?=E4=BF=AE=E5=A4=8D=E5=8F=8D=E5=90=91=E4=BB=A3=E7=90=86=E4=B8=8B?=
 =?UTF-8?q?=20IP=E8=8E=B7=E5=8F=96=E4=B8=8D=E5=87=86=E7=A1=AE?=
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit

---
 applications/common/admin_log.py | 11 +++++++++--
 1 file changed, 9 insertions(+), 2 deletions(-)

diff --git a/applications/common/admin_log.py b/applications/common/admin_log.py
index 24a4373..4bd719f 100644
--- a/applications/common/admin_log.py
+++ b/applications/common/admin_log.py
@@ -4,12 +4,19 @@ from applications.common.utils.validate import xss_escape
 from applications.extensions import db
 from applications.models import AdminLog
 
+def get_user_ip(request):
+    if request.headers.get('X-Forwarded-For'):
+        return request.headers['X-Forwarded-For']
+    elif request.headers.get('X-Real-IP'):
+        return request.headers.get('X-Real-IP')
+    else:
+        return request.remote_addr
 
 def login_log(request, uid, is_access):
     info = {
         'method': request.method,
         'url': request.path,
-        'ip': request.remote_addr,
+        'ip': get_user_ip(request),
         'user_agent': xss_escape(request.headers.get('User-Agent')),
         'desc': xss_escape(request.form.get('username')),
         'uid': uid,
@@ -35,7 +42,7 @@ def admin_log(request, is_access):
     info = {
         'method': request.method,
         'url': request.path,
-        'ip': request.remote_addr,
+        'ip': get_user_ip(request),
         'user_agent': xss_escape(request.headers.get('User-Agent')),
         'desc': xss_escape(str(dict(request.values))),
         'uid': current_user.id,
-- 
Gitee