fix(analytics): properly forward client IPs to Rybbit and OpenPanel

- Create new API route /api/rybbit/track to proxy Rybbit tracking requests - Extract real client IP from Cloudflare headers (cf-connecting-ip) - Forward X-Forwarded-For and X-Real-IP headers to analytics backends - Update OpenPanel proxy to also forward client IP - Update next.config.ts rewrite to use internal API route This fixes geo-location issues where all traffic appeared to come from Cloudflare edge locations instead of actual visitor countries.
2026-04-01 07:42:34 +02:00
parent 3c9c091c46
commit a3873bb50d
3 changed files with 78 additions and 1 deletions
--- a/src/app/api/rybbit/track/route.ts
+++ b/src/app/api/rybbit/track/route.ts
@@ -0,0 +1,66 @@
+import { NextRequest, NextResponse } from "next/server";
+
+const RYBBIT_API_URL = process.env.NEXT_PUBLIC_RYBBIT_HOST || "https://rybbit.nodecrew.me";
+
+export async function POST(request: NextRequest) {
+  try {
+    const body = await request.json();
+    
+    // Get the real client IP from various headers
+    // Cloudflare headers take precedence
+    const clientIp = 
+      request.headers.get("cf-connecting-ip") ||           // Cloudflare
+      request.headers.get("x-forwarded-for")?.split(",")[0]?.trim() || // First IP in chain
+      request.headers.get("x-real-ip") ||                  // Nginx/Traefik
+      request.ip ||                                        // Next.js fallback
+      "unknown";
+
+    const userAgent = request.headers.get("user-agent") || "";
+
+    // Forward to Rybbit backend with proper headers
+    const response = await fetch(`${RYBBIT_API_URL}/api/track`, {
+      method: "POST",
+      headers: {
+        "Content-Type": "application/json",
+        "X-Forwarded-For": clientIp,
+        "X-Real-IP": clientIp,
+        "User-Agent": userAgent,
+        // Forward Cloudflare headers if present
+        ...(request.headers.get("cf-ipcountry") && {
+          "CF-IPCountry": request.headers.get("cf-ipcountry")!,
+        }),
+        ...(request.headers.get("cf-ray") && {
+          "CF-Ray": request.headers.get("cf-ray")!,
+        }),
+      },
+      body: JSON.stringify(body),
+    });
+
+    const data = await response.text();
+    return new NextResponse(data, {
+      status: response.status,
+      headers: {
+        "Content-Type": "application/json",
+        "Access-Control-Allow-Origin": "*",
+      },
+    });
+  } catch (error) {
+    console.error("[Rybbit Proxy] Error:", error);
+    return new NextResponse(
+      JSON.stringify({ error: "Proxy error" }),
+      { status: 500, headers: { "Content-Type": "application/json" } }
+    );
+  }
+}
+
+// Handle CORS preflight
+export async function OPTIONS() {
+  return new NextResponse(null, {
+    status: 200,
+    headers: {
+      "Access-Control-Allow-Origin": "*",
+      "Access-Control-Allow-Methods": "POST, OPTIONS",
+      "Access-Control-Allow-Headers": "Content-Type",
+    },
+  });
+}