Tracker API allows to record visits, pages and goal conversions using http rest API. Commonly users would have a webserver make the request to Piwik to record visits. This causes piwik to read the visit/page/goal conversion IP as being the server IP issuing the request to piwik.
This could cause discrepancies or generally wrong user data. It would be nice to be able to customize the IP and server time that Piwik uses in the tracker.
It is critical that these 2 attributes can only be set by the Super User, otherwise anyone could record fake time/ fake IP visits in a piwik instance. I suggest we check and require super user token_auth in the piwik.php request to allow setting IP + server time.
Note that in tests, we already set these 2 parameters. To allow this, the proxy-piwik.php hack is used. This mechanism could then be removed to use the token_auth mechanism.
Attachment: Allow overriding ip & serverdate time in Tracking API if proper super user token_auth given.
1553.patch
Note: Image tracker (simple or advanced) solutions are not affected by the "wrong IP" issue, as the browser itself does the request to Piwik, so IP is set correctly to visitor IP.
Is there any updates? Will this feature implemented in next release.
No update yet. Not planned for 1.1, but I'll put it on the current milestone so that it has higher near-term visibility.
Matt or myself... whoever gets to it first. Of course, you're welcome to submit a patch... ;)
@vipsoft a patch resolving the issue attached