add stand-alone captcha, to block bots.

komuw / ong

ong, is a Go http toolkit.

MIT License

16 stars 4 forks source link

add stand-alone captcha, to block bots. #177

Open komuw opened 1 year ago

komuw commented 1 year ago

https://github.com/flamego/captcha
https://github.com/dchest/captcha

does not rely on google re-captcha or hcaptcha

komuw commented 1 year ago

see also:

https://github.com/komuw/ong/issues/124 (seems complicated)
https://github.com/komuw/ong/issues/95 (seems complicated)
https://github.com/komuw/ong/issues/96 (is not fool proof)

Thus this issue might be the most viable.

komuw commented 1 year ago

If we do this, we might also have to use cookies. Because we could generate an image like 2 + 4 = ? and then the user's answer is submitted to a different server than the one that had generated the question.

komuw commented 1 year ago

We should also probably pair this with a hidden html form input, that if filled; we know this is a bot and fail.

komuw commented 1 year ago

https://stackoverflow.com/questions/38299930/how-to-add-a-simple-text-label-to-an-image-in-go