tasn
commented
2 years ago We would be happy to merge such a patch, it's a great idea! Have you implemented a captcha provider integration before and know how to do it?
Open mrrfv opened 2 years ago
tasn
commented
2 years ago We would be happy to merge such a patch, it's a great idea! Have you implemented a captcha provider integration before and know how to do it?
mrrfv
commented
2 years ago I've implemented hCaptcha in PHP and Node.js web applications. Unfortunately, I'm not familiar with Django, but I'll try to write a PR regardless.
Flow chart (made in MS Paint, sry):
Client-side logic should be left for the developer to implement, and all the Etebase server has to do is verify the token on the server side. Support for other captcha providers such as reCAPTCHA should be trivial, as hCaptcha is fully API compatible with reCAPTCHA.
Would it be possible to add some kind of bot detection before allowing users to register (hCaptcha)? This project has a lot of potential, and I'd like to use it in my app, but I expect it to be attacked quite frequently.
Thanks.