Logo Questions Linux Laravel Mysql Ubuntu Git Menu
HTML CSS JAVASCRIPT SQL PYTHON PHP BOOTSTRAP JAVA JQUERY R React Kotlin
 

HttpServletRequest getRemoteAddr() not working how I would expect

Tags:

java

servlets

localhost

The following code is returning incorrectly, from what I understand:

HttpServletRequest httpRequest = (HttpServletRequest) request;
String userIPAddress = httpRequest.getRemoteAddr();

// Actual
// "0:0:0:0:0:0:0:1%0"

// Expected
// "0:0:0:0:0:0:0:1"

Any idea why the %0 is there? When I loop through 

InetAddress.getAllByName("localhost")

I get the following:

// ["192.168.100.1", "127.0.0.1", "0:0:0:0:0:0:1"]

How would I test for localhost if getRemoteAddr() is returning invalid format, or am I doing something wrong?

Thanks!

like image 827
andrewpthorp Avatar asked Aug 22 '12 20:08

andrewpthorp

2 Answers

The problem is these two functions

1) java.net.InetAddress.getAllByName(String)

and

2) javax.servlet.ServletRequest.getRemoteAddr()

Are very different. The first function is part of the standard Java runtime and the second is implemented by your Java EE container. You are using Tomcat7 so the optional zone parameter %0 is being added.

Bottom line, you should not be doing string comparison on ip addresses like you are.

What you should really be doing is using the org.apache.catalina.filters.RemoteIpFilter. This does what you are trying to do in a well defined way.

Example:

<filter>
   <filter-name>RemoteIpFilter</filter-name>
   <filter-class>org.apache.catalina.filters.RemoteIpFilter</filter-class>
   <init-param>
     <param-name>allowedInternalProxies</param-name>
     <param-value>192\.168\.0\.10|192\.168\.0\.11</param-value>
   </init-param>
   <init-param>
     <param-name>remoteIpHeader</param-name>
     <param-value>x-forwarded-for</param-value>
   </init-param>
   <init-param>
     <param-name>remoteIpProxiesHeader</param-name>
     <param-value>x-forwarded-by</param-value>
   </init-param>
   <init-param>
     <param-name>protocolHeader</param-name>
     <param-value>x-forwarded-proto</param-value>
   </init-param>
 </filter>

See http://tomcat.apache.org/tomcat-7.0-doc/config/filter.html#Remote_IP_Filter for more info.

like image 111
Nicholas DiPiazza Avatar answered Nov 17 '22 17:11

Nicholas DiPiazza

0:0:0:0:0:0:0:1%0 is a valid long form for the IPv6 localhost. The %0 specifies the optional zone index.

Here is more information about IPv6 Zone Indices.

I do not know why a call to httpRequest.getRemoteAddr(); is returning the optional zone index of %0, and 

InetAddress.getAllByName("localhost")

does not. However, my recommendation is that if you are looking to match on localhost, you match on both patterns, or do a startsWith match.

like image 3
Philip Tenn Avatar answered Nov 17 '22 17:11

Philip Tenn
Sign in to Comment

Related questions

converting jdouble to double of type c
enum referencing in switch case
Multiple Threads passing an object reference to static helper method
understanding websockets on the server side
using dbpedia spotlight in java or scala
Eclipse Content Assist Error
Logging in web applications: Best practices?
java.lang.ArithmeticException when attempting to get connection in Oracle 11.2.0.2.0 (64 bit)
Setting Test Suite to Ignore
JVM Garbage collection
Java unisex bathroom
How to get the class of a field of type T?
Making the JTextArea or JEditorPane in a JFrame scrollable
Java Based Augmented Reality Framework?
What does cvHaarDetectObjects() method do?
Java - IntBuffer wrapping
GWT Development mode - Unable to load module in Chrome
Signing .jar file with a .cer file
send Boolean as pathvariable to controller
Class reference for a Java inner class

Donate For Us

If you love us? You can donate to us via Paypal or buy me a coffee so we can maintain and grow! Thank you!