aas/additionals
1
0
Fork 0
Code Issues Pull Requests Projects Releases Wiki Activity

Fix problem with invisible_captcha

Browse Source
This commit is contained in:
Alexander Meindl 2020-03-20 10:56:26 +01:00
parent ad3772bd90
commit 0fe20a538e
4 changed files with 24 additions and 7 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

1
CHANGELOG.rst
View File

@ -7,6 +7,7 @@ Changelog
- FontAwesome 5.12.1 support - FontAwesome 5.12.1 support
- Mermaid 8.4.8 support - Mermaid 8.4.8 support
- clipboard.js updated to v2.0.6 - clipboard.js updated to v2.0.6
- fix for spam protection with invisible_captcha
2.0.23 2.0.23
++++++ ++++++

12
app/overrides/account/register.rb
View File

@ -1,5 +1,7 @@
Deface::Override.new virtual_path: 'account/register', Deface::Override.new(
name: 'add-invisble-captcha', virtual_path: 'account/register',
insert_top: 'div.box', name: 'add-invisble-captcha',
original: 'e64d82c46cc3322e4d953aa119d1e71e81854158', insert_top: 'div.box',
partial: 'account/invisible_captcha' original: Redmine::VERSION.to_s >= '4.1' ? 'a9c303821376a8d83cba32654629d71cc3926a1d' : 'e64d82c46cc3322e4d953aa119d1e71e81854158',
partial: 'account/invisible_captcha'
)

2
app/views/account/_invisible_captcha.html.slim
View File

@ -1,2 +1,2 @@
- if Additionals.setting?(:invisible_captcha) - if Additionals.setting?(:invisible_captcha)
= invisible_captcha = f.invisible_captcha :url, autocomplete: 'off'

16
lib/additionals/patches/account_controller_patch.rb
View File

@ -2,8 +2,22 @@ module Additionals
module Patches module Patches
module AccountControllerPatch module AccountControllerPatch
def self.included(base) def self.included(base)
base.send(:include, InstanceMethods)
base.class_eval do base.class_eval do
invisible_captcha only: [:register] if Additionals.setting?(:invisible_captcha) invisible_captcha(only: [:register], on_timestamp_spam: :timestamp_spam_check) if Additionals.setting?(:invisible_captcha)
end
end
module InstanceMethods
# required because invisible_captcha uses root_path, which is not available for Redmine
def timestamp_spam_check
# redmine uses same action for _GET and _POST
return unless request.post?
if respond_to?(:redirect_back)
redirect_back(fallback_location: home_url, flash: { error: InvisibleCaptcha.timestamp_error_message })
else
redirect_to :back, flash: { error: InvisibleCaptcha.timestamp_error_message }
end
end end
end end
end end