Adding ReCaptcha support for account registration

* You will need to create a re-captcha account for your site * Disabled by default to keep backwards compatability Fixes #179
2013-06-13 14:47:33 +02:00 · 2013-06-13 14:47:33 +02:00 · dda1585353
commit dda1585353
parent fac1296812
4 changed files with 59 additions and 13 deletions
--- a/public/include/config/global.inc.dist.php
+++ b/public/include/config/global.inc.dist.php
@ -35,6 +35,12 @@ $config = array(
    'slogan' => 'Resistance is futile',
    'email' => 'test@example.com',  // Mail address used for notifications
  ),
+  // See: http://www.google.com/recaptcha
+  'recaptcha' => array(
+    'enabled' => false,            // Enable re-captcha during registraion
+    'public_key' => 'YOUR_PUBLIC_RECAPTCHA_KEY',
+    'private_key' => 'YOUR_PRIVATE_RECAPTCHA_KEY'
+  ),
  'currency' => 'LTC',              // Currency name to be used on website
  'txfee' => 0.1,                   // Default tx fee added by RPC server
  'block_bonus' => 0,
--- a/public/include/pages/register.inc.php
+++ b/public/include/pages/register.inc.php
@ -7,6 +7,10 @@ if (!$config['website']['registration']) {
  $_SESSION['POPUP'][] = array('CONTENT' => 'Account registration is currently disabled. Please try again later.', 'TYPE' => 'errormsg');
  $smarty->assign("CONTENT", "disabled.tpl");
 } else {
+  if ($config['recaptcha']['enabled']) {
+    require_once(INCLUDE_DIR . '/recaptchalib.php');
+    $smarty->assign("RECAPTCHA", recaptcha_get_html($config['recaptcha']['public_key']));
+  }
  // Tempalte specifics
  $smarty->assign("CONTENT", "default.tpl");
 }
--- a/public/include/pages/register/register.inc.php
+++ b/public/include/pages/register/register.inc.php
@ -2,12 +2,45 @@
 // Make sure we are called from index.php
 if (!defined('SECURITY')) die('Hacking attempt');

-if (!$config['website']['registration']) {
-  $_SESSION['POPUP'][] = array('CONTENT' => 'Account registration is currently disabled. Please try again later.', 'TYPE' => 'errormsg');
-} else if ($user->register($_POST['username'], $_POST['password1'], $_POST['password2'], $_POST['pin'], $_POST['email1'], $_POST['email2']) && $config['website']['registration']) {
-  $_SESSION['POPUP'][] = array('CONTENT' => 'Account created, please login');
+if ($config['recaptcha']['enabled']) {
+  // Load re-captcha specific data
+  require_once(INCLUDE_DIR . '/recaptchalib.php');
+  $rsp = recaptcha_check_answer (
+    $config['recaptcha']['private_key'],
+    $_SERVER["REMOTE_ADDR"],
+    $_POST["recaptcha_challenge_field"],
+    $_POST["recaptcha_response_field"]
+  );
+}
+
+// Check if recaptcha is enabled, process form data if valid
+if($config['recaptcha']['enabled'] && $_POST["recaptcha_response_field"] && $_POST["recaptcha_response_field"]!=''){
+  if ($rsp->is_valid) {
+    $smarty->assign("RECAPTCHA", recaptcha_get_html($config['recaptcha']['public_key']));
+    if (!$config['website']['registration']) {
+      $_SESSION['POPUP'][] = array('CONTENT' => 'Account registration is currently disabled. Please try again later.', 'TYPE' => 'errormsg');
+    } else if ($user->register($_POST['username'], $_POST['password1'], $_POST['password2'], $_POST['pin'], $_POST['email1'], $_POST['email2']) && $config['website']['registration']) {
+      $_SESSION['POPUP'][] = array('CONTENT' => 'Account created, please login');
+    } else {
+      $_SESSION['POPUP'][] = array('CONTENT' => 'Unable to create account: ' . $user->getError(), 'TYPE' => 'errormsg');
+    }
+  } else {
+    $smarty->assign("RECAPTCHA", recaptcha_get_html($config['recaptcha']['public_key'], $rsp->error));
+    $_SESSION['POPUP'][] = array('CONTENT' => 'Invalid Captcha, please try again. (' . $rsp->error . ')', 'TYPE' => 'errormsg');
+  }
+// Empty captcha
+} else if ($config['recaptcha']['enabled']) {
+  $smarty->assign("RECAPTCHA", recaptcha_get_html($config['recaptcha']['public_key'], $rsp->error));
+  $_SESSION['POPUP'][] = array('CONTENT' => 'Empty Captcha, please try again.', 'TYPE' => 'errormsg');
+// Captcha disabled
 } else {
-  $_SESSION['POPUP'][] = array('CONTENT' => 'Unable to create account: ' . $user->getError(), 'TYPE' => 'errormsg');
+  if (!$config['website']['registration']) {
+    $_SESSION['POPUP'][] = array('CONTENT' => 'Account registration is currently disabled. Please try again later.', 'TYPE' => 'errormsg');
+  } else if ($user->register($_POST['username'], $_POST['password1'], $_POST['password2'], $_POST['pin'], $_POST['email1'], $_POST['email2']) && $config['website']['registration']) {
+    $_SESSION['POPUP'][] = array('CONTENT' => 'Account created, please login');
+  } else {
+    $_SESSION['POPUP'][] = array('CONTENT' => 'Unable to create account: ' . $user->getError(), 'TYPE' => 'errormsg');
+  }
 }

 // We load the default registration template instead of an action specific one
--- a/public/templates/mmcFE/register/default.tpl
+++ b/public/templates/mmcFE/register/default.tpl
@ -3,13 +3,16 @@
  <input type="hidden" name="page" value="{$smarty.request.page|escape}">
  <input type="hidden" name="action" value="register">
  <table width="90%" border="0">
-    <tbody><tr><td>Username:</td><td><input type="text" class="text tiny" name="username" value="{$smarty.post.username|escape}" size="15" maxlength="20"></td></tr>
-    <tr><td>Password:</td><td><input type="password" class="text tiny" name="password1" value="" size="15" maxlength="20"></td></tr>
-    <tr><td>Repeat Password:</td><td><input type="password" class="text tiny" name="password2" value="" size="15" maxlength="20"></td></tr>
-    <tr><td>Email:</td><td><input type="text" name="email1" class="text small" value="{$smarty.post.email1|escape}" size="15"></td></tr>
-    <tr><td>Email Repeat:</td><td><input type="text" class="text small" name="email2" value="{$smarty.post.email2|escape}" size="15"></td></tr>
-    <tr><td>PIN:</td><td><input type="password" class="text pin" name="pin" value="" size="4" maxlength="4"><font size="1"> (4 digit number. <b>Remember this pin!</b>)</font></td></tr>
-  </tbody></table>
-  <input type="submit" class="submit small" value="Register">
+    <tbody>
+      <tr><td>Username:</td><td><input type="text" class="text tiny" name="username" value="{$smarty.post.username|escape}" size="15" maxlength="20"></td></tr>
+      <tr><td>Password:</td><td><input type="password" class="text tiny" name="password1" value="" size="15" maxlength="20"></td></tr>
+      <tr><td>Repeat Password:</td><td><input type="password" class="text tiny" name="password2" value="" size="15" maxlength="20"></td></tr>
+      <tr><td>Email:</td><td><input type="text" name="email1" class="text small" value="{$smarty.post.email1|escape}" size="15"></td></tr>
+      <tr><td>Email Repeat:</td><td><input type="text" class="text small" name="email2" value="{$smarty.post.email2|escape}" size="15"></td></tr>
+      <tr><td>PIN:</td><td><input type="password" class="text pin" name="pin" value="" size="4" maxlength="4"><font size="1"> (4 digit number. <b>Remember this pin!</b>)</font></td></tr>
+      <tr><td colspan="2">{nocache}{$RECAPTCHA}{/nocache}</td></tr>
+      <tr><td class="center"><input type="submit" class="submit small" value="Register"></td><td></td></tr>
+    </tbody>
+  </table>
 </form>
 {include file="global/block_footer.tpl"}