Spam Prevention - Captcha in registration page
Current registration (Chamilo 1.9.6) page is very simple, and registering using bots is very easy.
Is there any way to add captcha code in registration and login page.
Updated by Yannick Warnier almost 6 years ago
We have plans for that, yes. If you would like to speed this up, any suggestion or code contribution (you can fork us on Github) is welcome. As far as we can see, the logic would be something like:
- offer login without any captcha
- if failing once, ask for captcha
- if failing the login+captcha twice, then ask for a waiting period of 5 minutes before any new attempt is made
Anything more specific you would add?
To fork Chamilo 1.9 on Github, go here https://github.com/chamilo/chamilo-lms/tree/1.9.x and click the "Fork" button on the top right side. Then clone this repo on your computer, make the code change, send a commit and go to your repo on Github and click the "Send pull request" button. We can then check your code and approve it if it's OK (or change it before we do).
To specify the 1.9.x branch, you will have to clone the full repository (it's about 1GB heavy, but you only have to do this once) and to specify the branch in which you want to work, from inside the cloned repo:
git checkout --track origin/1.9.x
Updated by Yannick Warnier over 5 years ago
- Category set to Global / Others / Misc
- Status changed from New to Feature implemented
- Assignee set to Julio Montoya
This has been implemented in 1.9.8. To enable (once 1.9.8 is out), add this line to your main/inc/conf/configuration.php file:
$_configuration['enable_captcha'] = true;
Updated by Julio Montoya over 5 years ago
- Status changed from Feature implemented to Needs testing
- Assignee deleted (
Coursenligne 45 wrote:
As a test, I installed the latest nightly (nightly 22) and added the line, no luck.
Is there a specific location to get this working ?
Thanks in advance :)
You have to add some parameters in your configuration.php file:
$_configuration['allow_captcha'] = true; $_configuration['captcha_time_to_block'] = 2; // minutes $_configuration['captcha_number_mistakes_to_block_account'] = 3;
Add a 'text' user extra field called 'captcha_blocked_until_date'
that should do the thing.
I configured https://stable.chamilo.org with those parameters.