<?php
/*
 * myip.php
 * coding: UTF-8
 *
 * Thibaud "thican" CANALE
 * thican [at] thican [dot] net
 * Source: https://thican.net/myip.php
 *
 * 2013-08
 * GPLv3
 * Release 2.3.0 (2021-08-25)
 *
 * Display informations of the remote IP address like IP address (of course),
 * type of IP address (IPv4 or IPv6), hostname, and time with timezone based
 * on the IP address (if available).
 * This code is following the K.I.S.S' philosophy.
 *
 * History:
 * - 2.3 (2021-08)
 *   * Tests if PECL-GeoIP functions are available instead of crashing (2.3.0
 *     2021-08-25).
 * - 2.2 (2017-12)
 *   * Displays HTTP/2.0 information (2.2.0 2017-12-26).
 * - 2.1 (2016-10)
 *   * Closes the beta of WebRTC.
 *   * Uses a button for asking user permission, instead of doing a request
 *     automaticaly: done (2.1.0 2016-10-01).
 * - 2.0 (2015-12)
 *   * Introduces the beta of WebRTC.
 *   * Now uses JavaScript in client side, with RTCPeerConnection() object to
 *     improve IP addresses detection (2.0.0_beta_webrtc 2015-12-07).
 *     Disclaimer: uses tier server for detection, however it won't work if
 *     the client disabled this API or can't access to the tier server (see
 *     define STUN_SERVICE).
 * - 1.9 (2015-04)
 *   * Reads the environmental variable "HTTPS" to rely on using a HTTPS
 *     connection or not (1.9.0 2015-04-20).
 *   * Reads the environmental variable "SSL_CIPHER" if HTTPS is enabled and
 *     add extra_cipher_infos (1.9.1 2015-04-20).
 *   * Very minor modifications (1.9.1-r1 2015-06-14).
 *   * Very minor modifications (1.9.1-r2 2015-12-06).
 *   * Modifications of string to "UTF-8" from "utf-8" (1.9.2 2016-02-16).
 *   * Measures and displays the time used for the hostname query (1.9.3
 *     2016-02-16).
 *   * Reads the environmental variable "SSL_PROTOCOL" if HTTPS is enabled and
 *     adds this information to extra_cipher_infos (1.9.4 2016-08-29).
 * - 1.8 (2015-01)
 *   * Now reads the file "/etc/timezone" when the IP address is the loopback
 *     interface ("127.0.0.1" or "::1") (1.8.0 2015-01-21).
 *     Note: this feature puts an extra access to the file system, which leads
 *     to an extra time (based on my test, it takes at least 10ms to execute
 *     the whole code, while it takes around 200µs without it or buffered).
 *   * Very minor modifications (1.8.0-r1 2015-02-11).
 * - 1.7 (2014-10)
 *   * Now can use Country_Code without Region, to get TimeZone, with the
 *     free databases.
 *   * Variables' names are changed (sorry).
 *   * Uses header "Content-Type: text/plain; charset=UTF-8" in mode "text"
 *     and "api" (totally forgot this) (1.7.1 2014-11-18).
 *   * Adds IP address in the title of the web page (1.7.2 2014-12-10).
 *   * Adds "Wget" as User-Agents which tringer the simple text output, like
 *     "curl" (see version 1.6) (1.7.3 2014-12-14).
 * - 1.6 (2014-09)
 *   * Now detecting User-Agent, and use automatically the simple text output
 *     for curl, unless mode is already set.
 * - 1.5 (2013-12)
 *   * New feature: simple text output (yeah I know) → use "(?)mode=text" in
 *     URL.
 *   * Modification in JSON calling, now use "(?)mode=api" in URL instead of
 *     "(?)api=true".
 * - 1.4 (2013-10)
 *   * Add REMOTE_PORT.
 * - 1.3 (2013-08) (updated in 1.5)
 *   * New feature: JSON output format → use "(?)api=true" in URL. (deprecated
 *     call, see version 1.5).
 * - 1.2 (2013-08)
 *   * Add of the "Special feature": allow to download the source code of this
 *     file by adding "(?)source" to the URL.
 * - 1.1 (2013-08)
 *   * Timezone based on the IP address, by using GeoIP DataBases, or by using
 *     $_GET[] variables.
 * - 1.0 (2013-08, first public release)
 *   * Simple IP address viewer (IP address, hostname, time in RFC3339 in UTC
 *     timezone).
 *
 * Next features:
 * - Done, see version 1.7.4 2015-01-21:
 *   If the IP Address belongs to a private Address (as defined in RFC1918),
 *   do not try to resolve the TimeZone from this information, but instead,
 *   try to use file "/etc/timezone" (should be able to disallow this
 *   feature).
 * - Still using $_GET[] variables, region and country_code, possible to
 *   compare local time to wanted timezone.
 * - Proxy detector, using JavaScript (maybe will NOT be add to this code).
 * - Nothing else (K.I.S.S).
 *
 * Required:
 * - PHP (maybe 4.0, but >=5.2 is sure).
 * - (to verify) Apache >=2.2, using environmental variables.
 *
 * Optional:
 * - pecl-geoip package (on GNU/Linux), to get DB of GeoIPRegion and
 *   GeoIPCountry based on the REMOTE_ADDR (still looking for a less
 *   dependancies solution).
 *   Then after, you have to integrate to your system the databases for
 *   GeoIPCountry and GeoIPRegion (last one not free), but not mandatory.
 *   Tip: you can use the following code to see the available db:
 *   	$infos = geoip_db_get_all_info();
 *   	if (is_array($infos))
 *   		var_dump($infos);
 *
 * Enjoy. :-)
 */

	$begin = microtime(TRUE);
	define("ACCESS_TO_SERVER_TIMEZONE", true);
	define("STUN_SERVER", "stun.services.mozilla.com");

	/*
	 * Special feature: allow to download the source code of this file,
	 * as it is on the server.
	 * To use this, add "(?)source" to the URL.
	 */
	if (isset($_GET['source'])) {
		/* Force the web browser to save the file as Text Document instead
		 * of just reading it. */ 
		if (is_file(__FILE__)) {
			$file = fopen(__FILE__, "rt");
			if ($file) {
				$code = fread($file, filesize(__FILE__));
				fclose($file);	/* I think too many people forget this! */
				/* Same as "$code = file_get_contents(__FILE__);" but I don't use it
				 * because it is too much PHP only. */
				header("Content-Type: text/plain; charset=UTF-8");
				echo $code;	/* Kind of ugly, isn't it? (I am not a PHP developer,
							 * so for me every PHP code is ugly.</troll>) */
				exit(0);
			}
		}
		header("Status: 500 Internal Server Error", false, 500);
		header("Content-Type: text/plain; charset=UTF-8");
		echo "Error: The file is unreachable.";
		exit(0);
	}

	$type_IP = strstr(getenv('REMOTE_ADDR'), ".") ? "IPv4" : "IPv6";

	/* Determine the time used to query the hostname. */
	$begin_query_hostname = microtime(TRUE);
	if (isset($_GET['resolv']) && $_GET['resolv'] == "no") {
		// Little hack to not waste time like on IPv6 reverse queries
		$hostname = getenv('REMOTE_ADDR');
	} else {
		$hostname = gethostbyaddr(getenv('REMOTE_ADDR'));
	}
	$end_query_hostname = microtime(TRUE);

	if (isset($_GET['country_code'])) {
		/* I allow this only for testing purpose, this page is not
		 * designed to do this job in fact (kind of an easter egg). */
		$location = array("country_code" => $_GET['country_code'],
				"region" => (isset($_GET['region']) ? $_GET['region'] : ""));
	}
	/* 
	 * With RFC1918 IP address (private IP address, like 127.0.0.1), we try to
	 * rely on the timezone system, based on the file /etc/timezone.
	 */
	else if (ACCESS_TO_SERVER_TIMEZONE && (
			getenv('REMOTE_ADDR') == "127.0.0.1" ||
			getenv('REMOTE_ADDR') == "::1")) {
		$location = false;
		/* try to read the file /etc/timezone */
		if (is_file("/etc/timezone")) {
			$timezone_file = fopen("/etc/timezone", "rt");
			if ($timezone_file) {
				$query_timezone = preg_replace('/\r?\n$/', '', fgets($timezone_file));
				fclose($timezone_file);
			}
		}
	}
	/* Test if the required DataBases are available (see Required section). */
	else if (function_exists("geoip_db_avail") &&
			function_exists("geoip_region_by_name") &&
			geoip_db_avail(GEOIP_COUNTRY_EDITION) === true &&
			geoip_db_avail(GEOIP_REGION_EDITION_REV0) === true) {
		$location = geoip_region_by_name(getenv('REMOTE_ADDR'));
	} else if (function_exists("geoip_db_avail") &&
			function_exists("geoip_country_code_by_name") &&
			geoip_db_avail(GEOIP_COUNTRY_EDITION) === true) {
		$location = array(
				"country_code" => geoip_country_code_by_name(getenv('REMOTE_ADDR')),
				"region" => "");
	} else {
		$location = false;
		$query_timezone = false;
	}

	if (function_exists("geoip_time_zone_by_country_and_region") &&
			isset($location) && $location !== false && is_array($location) &&
			isset($location["country_code"]) && $location["country_code"] != "") {
		$query_timezone = geoip_time_zone_by_country_and_region(
				$location["country_code"], $location["region"]);
	}

	$timezone = (isset($query_timezone) && $query_timezone !== false) ?
			$query_timezone : "UTC";
	date_default_timezone_set($timezone);

	/* Detection of User-Agent; if using one of the following User-Agent,
	 * switching in mode = text unless if a mode is already set.
	 * Current User-Agents supported: curl, Wget.
	 */
	$mode = (isset($_GET['mode'])) ? $_GET['mode'] :
			(preg_match('/^(curl|Wget)\//', getenv('HTTP_USER_AGENT')) ? "text" : "");

	/* feature: the JSON and TextOnly output formats. */
	if ($mode == "text") {
		$text_display = "";
		$text_display .= "IP Address: ".getenv('REMOTE_ADDR').
				" (".$type_IP.")\n";
		$text_display .= "From IP Port: ".getenv('REMOTE_PORT')."\n";
		$text_display .= "HostName: ".$hostname."\n";
		$text_display .= "HTTP/2.0: ".((getenv('HTTP2') !== false) ? getenv('HTTP2') : "off")."\n";
		$text_display .= "HTTPS connection: ";
		if (getenv('HTTPS') !== false) {
			if (getenv('SSL_PROTOCOL') !== false && getenv('SSL_CIPHER') !== false) {
				$extra_cipher_infos = " [protocol: ".getenv('SSL_PROTOCOL').", cipher: ".getenv('SSL_CIPHER')."]";
			} else if (getenv('SSL_PROTOCOL') !== false) {
				$extra_cipher_infos = " [protocol: ".getenv('SSL_PROTOCOL')."]";
			} else if (getenv('SSL_CIPHER') !== false) {
				$extra_cipher_infos = " [cipher: ".getenv('SSL_CIPHER')."]";
			} else {
				$extra_cipher_infos = "";
			}
			$text_display .= getenv('HTTPS').$extra_cipher_infos."\n";
		} else {
			$text_display .= "off\n";
		}
		$text_display .= "User-Agent: ".getenv('HTTP_USER_AGENT')."\n";
		$text_display .= "Date: ".date(DATE_RFC3339)." ".$timezone."\n";
		header("Content-Type: text/plain; charset=UTF-8");
		echo $text_display;
		exit(0);
	} elseif ($mode == "api") {
		/* @TODO: rework the array to add informations of SSL_CIPHER. */
		$json_array = array("type_IP" => $type_IP,
				"address_IP" => getenv('REMOTE_ADDR'),
				"port_IP" => getenv('REMOTE_PORT'),
				"hostname" => $hostname,
				"http2" => (getenv('HTTP2') !== false) ? getenv('HTTP2') : "off",
				"https" => (getenv('HTTPS') !== false) ? getenv('HTTPS') : "off",
				"ua" => getenv('HTTP_USER_AGENT'),
				"date" => date(DATE_RFC3339));
		$json_encoded = json_encode($json_array, JSON_UNESCAPED_UNICODE);
		if ($json_encoded !== false) {
			header("Content-Type: application/json; charset=UTF-8");
			echo $json_encoded;
		} else {
			header("Status: 204 No Content", true, 204);
		}
		exit(0);
	}
?>
<!DOCTYPE html>
<html lang="en">
<head>
<meta charset="UTF-8" />
<title>My IP address: <?php echo getenv('REMOTE_ADDR'); ?> | thican.net</title>
<meta name="author" content="Thibaud 'thican' CANALE" />
<style type="text/css" media="all">
html{font-family:DejaVu, sans-serif;font-size:1em;text-align:center;}
body{margin:40px auto 10px;}
#address{font-size:2em;font-style:bold;}
#reverse{font-size:1.5em;font-style:italic;}
#misc{margin-top:40px;}
</style>
</head>
<body>
<!-- Original code source found at http://thican.net/myip.php -->
<div id="address"><span style="text-decoration:underline;">IP Address:</span><br/><?php
	/* IP address */
	echo getenv('REMOTE_ADDR')." (".$type_IP.")";
?></div>
<div id="port">From IP Port: <?php
	/* IP port */
	echo getenv('REMOTE_PORT');
?></div>
<div id="reverse"><?php
	/* Reverse DNS */
	echo $hostname;
?></div>
<div id="http2">Is using HTTP/2.0? <?php
	/* HTTP/2.0 protocol */
	echo (getenv('HTTP2') !== false) ? getenv('HTTP2') : "off";
?></div>
<div id="https">Is using a HTTPS connection? <?php
	/* HTTPS connection */
	if (getenv('HTTPS') !== false) {
		if (getenv('SSL_PROTOCOL') !== false && getenv('SSL_CIPHER') !== false) {
			$extra_cipher_infos = "<br/>[protocol: ".getenv('SSL_PROTOCOL').", cipher: ".getenv('SSL_CIPHER')."]";
		} else if (getenv('SSL_PROTOCOL') !== false) {
			$extra_cipher_infos = "<br/>[protocol: ".getenv('SSL_PROTOCOL')."]";
		} else if (getenv('SSL_CIPHER') !== false) {
			$extra_cipher_infos = "<br/>[cipher: ".getenv('SSL_CIPHER')."]";
		} else {
			$extra_cipher_infos = "";
		}

		if (getenv('HTTPS') == "on") {
			?><span style="color:green;">on 🔒</span><?php echo $extra_cipher_infos;
		} else {
			/* This is PHP, like we know what we are doing … */
			?><span style="color:yellow;"><?php echo getenv('HTTPS')." 🔓"; ?></span><?php echo $extra_cipher_infos;
		}
	} else {
		?><span style="color:red;">off 🔓</span><?php
	}
?></div>
<div id="ua"><?php 
	/* User-Agent */
	echo getenv('HTTP_USER_AGENT');
?></div>
<div id="date">(<?php
	/* Current time in UTC */
	echo date(DATE_RFC3339)." ".$timezone;
?>)</div>
<div id="webrtc_call" style="margin-top:20px;"><noscript>The WebRTC function is unavailable while JavaScript is disabled.<br/></noscript>The WebRTC function is unavailable in your webbrowser.</div>
<div id="misc"><span style="font-size:0.7em;">Who gives a sh… cares this page was generated in <?php echo round((microtime(TRUE) - $begin), 6); ?> second(s) (with <?php echo round($end_query_hostname - $begin_query_hostname, 6); ?> second(s) used for the hostname query)? I do.</span><br/>
Different output formats: 
<a href="?<?php if (!empty(getenv('QUERY_STRING'))) echo htmlspecialchars(getenv('QUERY_STRING') . "&", ENT_QUOTES | ENT_HTML5, 'UTF-8'); ?>mode=api" title="JSON">JSON</a> | 
<a href="?<?php if (!empty(getenv('QUERY_STRING'))) echo htmlspecialchars(getenv('QUERY_STRING') . "&", ENT_QUOTES | ENT_HTML5, 'UTF-8'); ?>mode=text" title="Text">Text</a><br/>
Do you want to see how it <a href="?source" title="source code">works</a>?</div>
	<script>
		function isWebRTCAvailable() {
			/* Compatibility for Firefox and Chrome */
			var peer_connection = window.RTCPeerConnection
					|| window.mozRTCPeerConnection
					|| window.webkitRTCPeerConnection
					|| window.msRTCPeerConnection;

			if (!peer_connection) {
				/* Something wrong, script should be done. */
				console.log("The RTCPeerConnection constructor is NOT available. Exit.");
				return undefined;
			}

			console.log("Sucess: RTCPeerConnection constructor available.");
			return peer_connection;
		}

		function webRTCCall(peer_connection) {
			/* The DOM of the place where to write */
			document.getElementById("all_ip").innerHTML = '';

			/* Minimal requirements for data connection */
			var mediaconstraints = {
				optional: [{ RtpDataChannels: true }]
			};

			var servers = {
				iceServers: [{ urls: "stun:<?php echo STUN_SERVER; ?>" }]
			};

			if (!peer_connection) {
				console.log("The RTCPeerConnection constructor is not defined. Exit.");
				return ;
			}

			/* Construct a new RTCPeerConnection */
			var pc = new peer_connection(servers, mediaconstraints);

			if (!pc) {
				/* Something wrong, script should be done. */
				console.log("The RTCPeerConnection constructor returned an error. Exit.");
				return ;
			}

			/* Get the IP addresses associated with an account */
			function getIPs(callback) {
				var ip_dups = { };

				function handleCandidate(candidate) {
					/* Match just the IP address */
					//var ipv4_regex = /([0-9]{1,3}(\.[0-9]{1,3}){3})/;
					//var ipv6_regex = /(([0-9a-fA-F]{1,4}:){7,7}[0-9a-fA-F]{1,4}|([0-9a-fA-F]{1,4}:){1,7}:|([0-9a-fA-F]{1,4}:){1,6}:[0-9a-fA-F]{1,4}|([0-9a-fA-F]{1,4}:){1,5}(:[0-9a-fA-F]{1,4}){1,2}|([0-9a-fA-F]{1,4}:){1,4}(:[0-9a-fA-F]{1,4}){1,3}|([0-9a-fA-F]{1,4}:){1,3}(:[0-9a-fA-F]{1,4}){1,4}|([0-9a-fA-F]{1,4}:){1,2}(:[0-9a-fA-F]{1,4}){1,5}|[0-9a-fA-F]{1,4}:((:[0-9a-fA-F]{1,4}){1,6})|:((:[0-9a-fA-F]{1,4}){1,7}|:)|fe80:(:[0-9a-fA-F]{0,4}){0,4}%[0-9a-zA-Z]{1,}|::(ffff(:0{1,4}){0,1}:){0,1}((25[0-5]|(2[0-4]|1{0,1}[0-9]){0,1}[0-9])\.){3,3}(25[0-5]|(2[0-4]|1{0,1}[0-9]){0,1}[0-9])|([0-9a-fA-F]{1,4}:){1,4}:((25[0-5]|(2[0-4]|1{0,1}[0-9]){0,1}[0-9])\.){3,3}(25[0-5]|(2[0-4]|1{0,1}[0-9]){0,1}[0-9]))/;
					var ip_regex = /([0-9]{1,3}(\.[0-9]{1,3}){3}|([0-9a-fA-F]{1,4}:){7,7}[0-9a-fA-F]{1,4}|([0-9a-fA-F]{1,4}:){1,7}:|([0-9a-fA-F]{1,4}:){1,6}:[0-9a-fA-F]{1,4}|([0-9a-fA-F]{1,4}:){1,5}(:[0-9a-fA-F]{1,4}){1,2}|([0-9a-fA-F]{1,4}:){1,4}(:[0-9a-fA-F]{1,4}){1,3}|([0-9a-fA-F]{1,4}:){1,3}(:[0-9a-fA-F]{1,4}){1,4}|([0-9a-fA-F]{1,4}:){1,2}(:[0-9a-fA-F]{1,4}){1,5}|[0-9a-fA-F]{1,4}:((:[0-9a-fA-F]{1,4}){1,6})|:((:[0-9a-fA-F]{1,4}){1,7}|:)|fe80:(:[0-9a-fA-F]{0,4}){0,4}%[0-9a-zA-Z]{1,}|::(ffff(:0{1,4}){0,1}:){0,1}((25[0-5]|(2[0-4]|1{0,1}[0-9]){0,1}[0-9])\.){3,3}(25[0-5]|(2[0-4]|1{0,1}[0-9]){0,1}[0-9])|([0-9a-fA-F]{1,4}:){1,4}:((25[0-5]|(2[0-4]|1{0,1}[0-9]){0,1}[0-9])\.){3,3}(25[0-5]|(2[0-4]|1{0,1}[0-9]){0,1}[0-9]))/;

					var ip_addr = ip_regex.exec(candidate)[1];

					/* Remove duplicates */
					if (ip_dups[ip_addr] === undefined) {
						callback(ip_addr);
					}

					ip_dups[ip_addr] = true;
				}

				// Listen for candidate events
				pc.onicecandidate = function(ice) {

					// Skip non-candidate events
					if (ice.candidate) {
						handleCandidate(ice.candidate.candidate);
					}
				};

				// Create a bogus data channel
				pc.createDataChannel("");

				// Create an offer Session Description Protocol (SDP)
				pc.createOffer(function(result) {

					// Trigger the STUN server request
					pc.setLocalDescription(result, function() { }, function() { });

				}, function() { });

				// Wait for a while to let everything done
				setTimeout(function() {
					// Read candidate info from local description
					var lines = pc.localDescription.sdp.split('\n');

					lines.forEach(function(line) {
						if (line.indexOf('a=candidate:') === 0) {
							handleCandidate(line);
						}
					});
				}, 1000);
			}

			/* Insert IP addresses into the page */
			getIPs(function(ip_address) {
				var new_entry = document.createElement("div");
				new_entry.textContent = ip_address;

				/* All IP addresses */
				document.getElementById("all_ip").appendChild(new_entry);
			});

			//pc.close();
		}

		/* Let's a-go! */
		peer_connection = isWebRTCAvailable();
		if (peer_connection) {
			document.getElementById("webrtc_call").innerHTML =
					'<h3>RTCPeerConnection</h3>'+
					'<button type="button" name="webrtc_button" onClick="webRTCCall(peer_connection);">Start WebRTC call</button>'+
					'<h4>All your IP addresses:</h4>'+
					'<div id="all_ip">No data yet.</div>';
		}
	</script>
</body></html>