Add a Captcha

[hettiger]

Add a Captcha to secure resetting a password

[hettiger]

Idea

Could become a nice filter to use for more than just the resetting password feature:

1. Theres some action that requires a check if the current user is actually human
2. Add a force.human filter to the controller method
3. Whenever the filter is called it checks the session to see if a captcha has been solved in the last 10 minutes
4. If it has been solved proceed
5. If not redirect back with Session::flash('error', '...')

The captcha could become a partial view that can be included anywhere. Checking the captcha could be accomplished by an ajax request. On success the captcha disappears leaving a success message.

[hettiger]

Possible Captcha Solutions

• [x] https://github.com/greggilbert/recaptcha (MIT)
• [x] https://github.com/Latrell/Captcha (MIT japanese? PHPDoc blocks)
• [x] https://github.com/wikichua/captcha-laravel
• [x] https://github.com/mewebstudio/captcha
• [x] Custom

Checked = Reviewed

[hettiger]

Will use greggilbert/recaptcha

[hettiger]

TODO

• [x] Get the correct api url from php for the javascript
• [x] Allow submission by hitting the enter key
• [x] Add better messages and translations for them
• [x] Add the timer functionality
• [x] Add the Filter
• [x] Make it actually look good
• [x] Add a no JavaScript fallback
• [x] Refactoring
• [x] Write tests
• [x] Add docs

[hettiger]

Added tests for the api controllers.

Look at the comparison to see what's missing.

Warning: There might be some old tests that'll need an update!

[hettiger]

TODO

• [x] Update existing docs (filters.md, configuration.md)