doctorondemand
doctorondemand / django-ipware python
Repository URL to install this package:
|
Version:
2.0.0 ▾
|
| django_ipware.egg-info |
| ipware |
| PKG-INFO |
| README.md |
| setup.cfg |
| setup.py |
Django IPware
A Django application to retrieve client's IP address
Overview
Best attempt to get client's IP address while keeping it DRY.
Notice
There is no good out-of-the-box solution against fake IP addresses, aka IP Address Spoofing.
You are encouraged to read the (Advanced users) section of this page and
use trusted_proxies_ips and/or proxy_count features to match your needs, especially if you are
planning to include ipware in any authentication, security or anti-fraud related architecture.
How to install
1. easy_install django-ipware
2. pip install django-ipware
3. git clone http://github.com/un33k/django-ipware
a. cd django-ipware
b. run python setup.py install
4. wget https://github.com/un33k/django-ipware/zipball/master
a. unzip the downloaded file
b. cd into django-ipware-* directory
c. run python setup.py install
How to use
# In a view or a middleware where the `request` object is available from ipware import get_client_ip client_ip, is_routable = get_client_ip(request) if client_ip is None: # Unable to get the client's IP address else: # We got the client's IP address if is_routable: # The client's IP address is publicly routable on the Internet else: # The client's IP address is private # Order of precedence is (Public, Private, Loopback, None)
Advanced users:
-
Precedence Order
The default meta precedence order is top to bottom. However, you may customize the order
by providing your own IPWARE_META_PRECEDENCE_ORDER by adding it to your project's settings.py
# The default meta precedence order IPWARE_META_PRECEDENCE_ORDER = ( 'HTTP_X_FORWARDED_FOR', 'X_FORWARDED_FOR', # <client>, <proxy1>, <proxy2 'HTTP_CLIENT_IP', 'HTTP_X_REAL_IP', 'HTTP_X_FORWARDED', 'HTTP_X_CLUSTER_CLIENT_IP', 'HTTP_FORWARDED_FOR', 'HTTP_FORWARDED', 'HTTP_VIA', 'REMOTE_ADDR', )
-
Private Prefixes
You may customize the prefixes to indicate an IP addresses private. This is done by adding your
own IPWARE_PRIVATE_IP_PREFIX to your project's settings.py. IP addresses matching the following
prefixes are considered private & are not publicly routable.
# The default private IP prefixes IPWARE_PRIVATE_IP_PREFIX = ( '0.', # externally non-routable '10.', # class A private block '169.254.', # link-local block '172.16.', '172.17.', '172.18.', '172.19.', '172.20.', '172.21.', '172.22.', '172.23.', '172.24.', '172.25.', '172.26.', '172.27.', '172.28.', '172.29.', '172.30.', '172.31.', # class B private blocks '192.0.2.', # reserved for documentation and example code '192.168.', # class C private block '255.255.255.', # IPv4 broadcast address ) + ( '2001:db8:', # reserved for documentation and example code 'fc00:', # IPv6 private block 'fe80:', # link-local unicast 'ff00:', # IPv6 multicast )
-
Trusted Proxies
If your Django server is behind one or more known proxy server(s), you can filter out unwanted requests
by providing the trusted proxy list when calling get_client_ip(request, proxy_trusted_ips=['177.139.233.133']).
In the following example, your load balancer (LB) can be seen as a trusted proxy.
`Real` Client <public> <---> <public> LB (Server) <private> <--------> <private> Django Server
^
|
`Fake` Client <private> <---> <private> LB (Server) <private> ---^
# In the above scenario, use your load balancer's IP address as a way to filter out unwanted requests. client_ip, is_routable = get_client_ip(request, proxy_trusted_ips=['177.139.233.133']) # If you have multiple proxies, simply add them to the list client_ip, is_routable = get_client_ip(request, proxy_trusted_ips=['177.139.233.133', '177.139.233.134']) # For proxy servers with fixed sub-domain and dynamic IP, use the following pattern. client_ip, is_routable = get_client_ip(request, proxy_trusted_ips=['177.139.', '177.140']) client_ip, is_routable = get_client_ip(request, proxy_trusted_ips=['177.139.233.', '177.139.240'])
-
Proxy Count
If your Django server is behind a known number of proxy server(s), you can filter out unwanted requests
by providing the number of proxies when calling get_client_ip(request, proxy_count=1).
In the following example, your load balancer (LB) can be seen as the only proxy.
`Real` Client <public> <---> <public> LB (Server) <private> <--------> <private> Django Server
^
|
`Fake` Client <private> ---^
# In the above scenario, the total number of proxies can be used as a way to filter out unwanted requests. client_ip, is_routable = get_client_ip(request, proxy_count=1) # The above may be very useful in cases where your proxy server's IP address is assigned dynamically. # However, If you have the proxy IP address, you can use it in combination to the proxy count. client_ip, is_routable = get_client_ip(request, proxy_count=1, proxy_trusted_ips=['177.139.233.133'])
-
Originating Request
If your proxy server is configured such that the right most IP address is that of the originating client, you
can indicate right-most as your proxy_order when calling get_client_ip(request, proxy_order="right-most").
Please note that the de-facto standard
for the originating client IP address is the left-most as per <client>, <proxy1>, <proxy2>.
Running the tests
To run the tests against the current environment:
python manage.py test
License
Released under a (MIT) license.
Version
X.Y.Z Version
`MAJOR` version -- when you make incompatible API changes,
`MINOR` version -- when you add functionality in a backwards-compatible manner, and
`PATCH` version -- when you make backwards-compatible bug fixes.