Open ColeDCrawford opened 3 years ago
@lukehollis This is high priority - it should be addressed ASAP or we will need to disable signups.
We are up to ~700 spam users.
@npicardo @lukehollis We are going to have to disable signups until this gets resolved. I also see that it allows for the same email address to be registered for different usernames, which should also be fixed.
To address this, I'll try integrating the https://pypi.org/project/django-recaptcha/ package unless anyone has another preference.
Addressed in https://github.com/artshumrc/giza/pull/160 -- to configure, now the secure.py.example has support for recaptcha fields:
Additionally, you may need to add your dev domains on your local environment to your keys.
Not working in the PR
We have several hundred spam users on dev since open signups were allowed.