PreAuthorize requests don't set X-Forwarded-For
When proxying a request, workhorse correctly sets the X-Forwarded-For header. However, the PreAuthorize handler does not replicate this behaviour. This leads to the Rails log generally containing "127.0.0.1" instead of the client IP.