From 623056ab36b68dee796281be63edf209c545d83c Mon Sep 17 00:00:00 2001
From: Joe Banks <joe@jb3.dev>
Date: Sat, 25 Dec 2021 17:38:42 +0000
Subject: Hash Cf-Connecting-IP if given, else remote host

---
 backend/routes/forms/submit.py | 6 +++++-
 1 file changed, 5 insertions(+), 1 deletion(-)

diff --git a/backend/routes/forms/submit.py b/backend/routes/forms/submit.py
index d0ce22c..8d9f4e5 100644
--- a/backend/routes/forms/submit.py
+++ b/backend/routes/forms/submit.py
@@ -116,7 +116,11 @@ class SubmitForm(Route):
 
             if constants.FormFeatures.DISABLE_ANTISPAM.value not in form.features:
                 ip_hash_ctx = hashlib.md5()
-                ip_hash_ctx.update(request.client.host.encode())
+                ip_hash_ctx.update(
+                    request.headers.get(
+                        "Cf-Connecting-IP", request.client.host
+                    ).encode()
+                )
                 ip_hash = binascii.hexlify(ip_hash_ctx.digest())
                 user_agent_hash_ctx = hashlib.md5()
                 user_agent_hash_ctx.update(request.headers["User-Agent"].encode())
-- 
cgit v1.2.3