express-auth-session icon indicating copy to clipboard operation
express-auth-session copied to clipboard
verified publisher icon ajmueller

Login and Registration Spam Protection

Open ajmueller opened this issue 9 years ago • 3 comments

At last night's Front End PDX meetup where I presented this project, I was asked about how I might go about protecting from spam. I had completely forgotten that I was going to research CAPTCHAs as a possible method; there may be other ways to prevent spam. Some possibilities:

  • reCAPTCHA - an implementation of Google's reCAPTCHA in Express.
  • Honeypot CAPTCHA - using a single hidden input field that regular users won't fill out, but bots will.

If anyone has additional methods that they've found useful, I'd love to hear about them. This is a topic I need to research more.

ajmueller avatar Aug 10 '16 17:08 ajmueller

This sounds like a really good blog post about the various different methods. 👍🏻

peterramsing avatar Aug 12 '16 16:08 peterramsing

How does the acl work in this project? Mine gives an error while connecting to mongoose. Mongoose takes some time to connect to the db but the .getAcl() method gets executed first so a TypeError: Cannot read property collection of undefined.

manjeet13 avatar Jul 21 '18 10:07 manjeet13

@manjeet13 this project uses https://github.com/OptimalBits/node_acl for its ACL dependency. Their documentation should help. If you keep having issues, feel free to open a new issue here in our project, though. It’s been a couple years since I’ve worked on this at all, but I can try to help.

ajmueller avatar Jul 24 '18 03:07 ajmueller