fix(analytics): properly forward client IPs to Rybbit and OpenPanel

- Create new API route /api/rybbit/track to proxy Rybbit tracking requests - Extract real client IP from Cloudflare headers (cf-connecting-ip) - Forward X-Forwarded-For and X-Real-IP headers to analytics backends - Update OpenPanel proxy to also forward client IP - Update next.config.ts rewrite to use internal API route This fixes geo-location issues where all traffic appeared to come from Cloudflare edge locations instead of actual visitor countries.
2026-04-01 07:42:34 +02:00
parent a3873bb50d
commit 0b9ddeedc8
10 changed files with 169 additions and 338 deletions
@@ -6,37 +6,57 @@ export async function POST(request: NextRequest) {
  try {
    const body = await request.json();
    
-    // Get the real client IP from various headers
-    // Cloudflare headers take precedence
+    // Get all possible IP sources for debugging
+    const cfConnectingIp = request.headers.get("cf-connecting-ip");
+    const xForwardedFor = request.headers.get("x-forwarded-for");
+    const xRealIp = request.headers.get("x-real-ip");
+    const nextJsIp = request.ip;
+    
+    // Use the first available IP in priority order
    const clientIp = 
-      request.headers.get("cf-connecting-ip") ||           // Cloudflare
-      request.headers.get("x-forwarded-for")?.split(",")[0]?.trim() || // First IP in chain
-      request.headers.get("x-real-ip") ||                  // Nginx/Traefik
-      request.ip ||                                        // Next.js fallback
+      cfConnectingIp ||           // Cloudflare (most reliable)
+      xForwardedFor?.split(",")[0]?.trim() || // First IP in chain
+      xRealIp ||                  // Nginx/Traefik
+      nextJsIp ||                 // Next.js fallback
      "unknown";

    const userAgent = request.headers.get("user-agent") || "";

-    // Forward to Rybbit backend with proper headers
+    console.log("[Rybbit Proxy] IP Debug:", {
+      cfConnectingIp,
+      xForwardedFor,
+      xRealIp,
+      nextJsIp,
+      finalIp: clientIp,
+      userAgent: userAgent?.substring(0, 50),
+    });
+
+    // Build headers to forward
+    const forwardHeaders: Record<string, string> = {
+      "Content-Type": "application/json",
+      "X-Forwarded-For": clientIp,
+      "X-Real-IP": clientIp,
+      "User-Agent": userAgent,
+    };
+
+    // Forward original CF headers if present
+    const cfCountry = request.headers.get("cf-ipcountry");
+    const cfRay = request.headers.get("cf-ray");
+    
+    if (cfCountry) forwardHeaders["CF-IPCountry"] = cfCountry;
+    if (cfRay) forwardHeaders["CF-Ray"] = cfRay;
+
+    console.log("[Rybbit Proxy] Forwarding to Rybbit with headers:", Object.keys(forwardHeaders));
+
    const response = await fetch(`${RYBBIT_API_URL}/api/track`, {
      method: "POST",
-      headers: {
-        "Content-Type": "application/json",
-        "X-Forwarded-For": clientIp,
-        "X-Real-IP": clientIp,
-        "User-Agent": userAgent,
-        // Forward Cloudflare headers if present
-        ...(request.headers.get("cf-ipcountry") && {
-          "CF-IPCountry": request.headers.get("cf-ipcountry")!,
-        }),
-        ...(request.headers.get("cf-ray") && {
-          "CF-Ray": request.headers.get("cf-ray")!,
-        }),
-      },
+      headers: forwardHeaders,
      body: JSON.stringify(body),
    });

    const data = await response.text();
+    console.log("[Rybbit Proxy] Response:", response.status, data.substring(0, 100));
+    
    return new NextResponse(data, {
      status: response.status,
      headers: {