diff --git a/app/server/app.js b/app/server/app.js
index 4b07836..e44ab6e 100644
--- a/app/server/app.js
+++ b/app/server/app.js
@@ -52,6 +52,7 @@ app.get('/headers', function (req, res) {
   res.status(200).send('success');
 });
 //restrict access to anything else via ip addresses based on x-forwarded for
+//@todo create environment var to determin to used this or the general req header
 let clientIp = function(req, res) {
     return req.headers['x-forwarded-for'] ? (req.headers['x-forwarded-for']).split(',')[0] : ""
 };