penguincoder
/
binaryattraction
Archived
1
0
Fork 0
Code Issues Pull Requests Releases Wiki Activity

force anonymous users to verify their humanity before voting

master
Coleman 2008-10-17 17:17:42 -05:00
parent 38c7e0fcef
commit 0c86ec6841
6 changed files with 41 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

8
app/controllers/application.rb
View File

@ -19,6 +19,14 @@ class Application < Merb::Controller
logged_in? and current_user and current_user.administrator? logged_in? and current_user and current_user.administrator?
end end
def valid_anonymous_user?
!session[:validated_anonymous_user].nil?
end
def valid_anonymous_user!
session[:validated_anonymous_user] = true
end
def reset_session def reset_session
session[:user_id] = nil session[:user_id] = nil
end end

1
app/controllers/sessions.rb
View File

@ -11,6 +11,7 @@ class Sessions < Application
user = User.find_by_user_name params[:user_name] user = User.find_by_user_name params[:user_name]
if user and user.authenticated_against?(params[:password]) if user and user.authenticated_against?(params[:password])
session[:user_id] = user.id session[:user_id] = user.id
valid_anonymous_user!
if request.xhr? if request.xhr?
render '', :status => 200 render '', :status => 200
else else

16
app/controllers/users.rb
View File

@ -54,4 +54,20 @@ class Users < Application
end end
redirect url(:users) redirect url(:users)
end end
def validate_anonymous_user
if logged_in? or valid_anonymous_user?
flash[:notice] = 'You are already good, doofus.'
redirect '/'
elsif request.post? and !verify_recaptcha
flash.now[:error] = 'That does not work. Try again.'
render
elsif request.post?
valid_anonymous_user!
flash[:notice] = 'Great success!'
redirect url(:new_vote)
else
render
end
end
end end

10
app/controllers/votes.rb
View File

@ -1,4 +1,5 @@
class Votes < Application class Votes < Application
before :validate_anonymous_user
before :fetch_allowed_user, :only => [ :show ] before :fetch_allowed_user, :only => [ :show ]
def show def show
@ -51,4 +52,13 @@ class Votes < Application
@photo = Photo.next_available_votable_photo current_user @photo = Photo.next_available_votable_photo current_user
end end
end end
def validate_anonymous_user
if !logged_in? and !valid_anonymous_user?
flash[:notice] = 'You must prove that you are a human to continue.'
redirect '/validate_anonymous_user'
else
true
end
end
end end

5
app/views/users/validate_anonymous_user.html.haml Normal file
View File

@ -0,0 +1,5 @@
= form :action => '/validate_anonymous_user' do
%fieldset
%legend Anonymous Authentication
#recaptcha_container= recaptcha_tags
= submit 'Go'

1
config/router.rb
View File

@ -5,6 +5,7 @@ Merb::Router.prepare do |r|
r.match('/acceptable_use').to(:controller => 'home', :action => 'acceptable_use') r.match('/acceptable_use').to(:controller => 'home', :action => 'acceptable_use')
r.match('/disclaimer').to(:controller => 'home', :action => 'disclaimer') r.match('/disclaimer').to(:controller => 'home', :action => 'disclaimer')
r.match('/hall_of_fame').to(:controller => 'home', :action => 'hall_of_fame') r.match('/hall_of_fame').to(:controller => 'home', :action => 'hall_of_fame')
r.match('/validate_anonymous_user').to(:controller => 'users', :action => 'validate_anonymous_user')
r.match('/photos/by_email').to(:controller => 'photos', :action => 'by_email') r.match('/photos/by_email').to(:controller => 'photos', :action => 'by_email')
r.match('/photos/by_hash/:id').to(:controller => 'photos', :action => 'by_hash') r.match('/photos/by_hash/:id').to(:controller => 'photos', :action => 'by_hash')