Hello openEMM-users,
I wanted to try a CAPTCHA but couldn't include the input-verification as the form doesnt support PHP because it seems to be a html-file (I can't change it to .php as I have no direct contact with the form-file which contents I change with the backend)
1) Is there a way to use PHP-Code in the sign-forms?
2) How do you protect your sign-up form?
Regards,
newspa
Protection for the Sign-Up Form (against Spam and Fraud)
Moderator: moderator
That's an interesting question.
I can't see how you could use PHP immediately as it is a server-side language. You'd need to somehow get a PHP interpreter running in, or attached to, the Resin container.
Two alternatives spring to mind.
For server-side find a captcha for Java and integrate that into OpenEMM,
The other way would be to do something using Javascript and run it in the browser...
HTH
Alan
I can't see how you could use PHP immediately as it is a server-side language. You'd need to somehow get a PHP interpreter running in, or attached to, the Resin container.
Two alternatives spring to mind.
For server-side find a captcha for Java and integrate that into OpenEMM,
The other way would be to do something using Javascript and run it in the browser...
HTH
Alan
Thanks for your reply.
I also thought about a Javascript solution. I fear losing alot of potential sign-ups due to a javascript-barrier.
Unfortunatly I got no Java-skills, so I won't be able to implement a server-side solution
But maybe there is another way to reduce spam: Is it possible to rename the standard-records (FIRSTNAME, SURNAME and EMAIL) in the form? Because its really easy for the bots to crawl for openEMM-signups with those standard-fields (I recognized that the bots dont fill in the fields I created). So if I could rename the „EMAIL“-Field to „HONEYPOT“ the spam should be reduced.
Anonye knows how to rename the EMAIL-Field?
I also thought about a Javascript solution. I fear losing alot of potential sign-ups due to a javascript-barrier.
Unfortunatly I got no Java-skills, so I won't be able to implement a server-side solution
But maybe there is another way to reduce spam: Is it possible to rename the standard-records (FIRSTNAME, SURNAME and EMAIL) in the form? Because its really easy for the bots to crawl for openEMM-signups with those standard-fields (I recognized that the bots dont fill in the fields I created). So if I could rename the „EMAIL“-Field to „HONEYPOT“ the spam should be reduced.
Anonye knows how to rename the EMAIL-Field?
Hmmm, not sure.
You will probably have to modify the code somewhere and do a translation from "HONEYPOT" to "EMAIL".
That means you will need Java skills.
The alternative, is you create a form in PHP and deal with that how you wish then send the captured data to OpenEMM using the webservices interface.
HTH
PS, I have used Javascript validation for some of the fields (especially email). You can see how I did it here: http://www.openemm.org/forums/ftopic1030.html
You will probably have to modify the code somewhere and do a translation from "HONEYPOT" to "EMAIL".
That means you will need Java skills.
The alternative, is you create a form in PHP and deal with that how you wish then send the captured data to OpenEMM using the webservices interface.
HTH
PS, I have used Javascript validation for some of the fields (especially email). You can see how I did it here: http://www.openemm.org/forums/ftopic1030.html