Add dynamic captcha support

2025-01-18 17:14:04 +01:00 · 2024-05-25 00:32:44 +02:00 · 2024-05-25 00:32:44 +02:00 · e825e7aac5
commit e825e7aac5
parent e16dc142b7
4 changed files with 44 additions and 1 deletions
--- a/inc/config.php
+++ b/inc/config.php
@ -351,6 +351,15 @@
 	//);
 	$config['simple_spam'] = false;

+	/*
+	 * If not flase, the captcha is dynamically injected on the client if the web server set the `captcha-required`
+	 * cookie to 1. The configuration value should be set the IP for which the captcha should be verified.
+	 *
+	 * Example:
+	 * $config['dynamic_captcha'] = '127.0.0.1'; // Verify the captcha for users sending posts from the loopback address.
+	 */
+	$config['dynamic_captcha'] = false;
+
 	// Enable reCaptcha to make spam even harder. Rarely necessary.
 	$config['recaptcha'] = false;

--- a/post.php
+++ b/post.php
@ -648,7 +648,7 @@ if (isset($_POST['delete'])) {
 				}
 			}
 			// Remote 3rd party captchas.
-			else {
+			else if (!$config['dynamic_captcha'] || $config['dynamic_captcha'] === $_SERVER['REMOTE_ADDR']) {
 				// recaptcha
 				if ($config['recaptcha']) {
 					if (!isset($_POST['g-recaptcha-response'])) {
--- a/templates/main.js
+++ b/templates/main.js
@ -222,6 +222,36 @@ function getCookie(cookie_name) {
 	}
 }

+{% endraw %}
+{% if config.dynamic_captcha %}
+function is_dynamic_captcha_enabled() {
+	let cookie = get_cookie('require-captcha');
+	return cookie === '1';
+}
+
+function get_captcha_pub_key() {
+{% if config.recaptcha %}
+	return "{{ config.recaptcha_public }}";
+{% else %}
+	return null;
+{% endif %}
+}
+
+function init_dynamic_captcha() {
+	if (!is_dynamic_captcha_enabled()) {
+		let pub_key = get_captcha_pub_key();
+		if (!pub_key) {
+			console.error("Missing public captcha key!");
+			return;
+		}
+
+		let captcha_hook = document.getElementById('captcha');
+		captcha_hook.style = "";
+	}
+}
+{% endif %}
+{% raw %}
+
 function highlightReply(id) {
 	if (typeof window.event != "undefined" && event.which == 2) {
 		// don't highlight on middle click
--- a/templates/post_form.html
+++ b/templates/post_form.html
@ -73,7 +73,11 @@
 			</td>
 		</tr>
 		{% if config.recaptcha %}
+		{% if config.dynamic_captcha %}
+		<tr id="captcha" style="display: none;">
+		{% else %}
 		<tr>
+		{% endif %}
 			<th>
 				{% trans %}Verification{% endtrans %}
 				{{ antibot.html() }}