RubyGems - anti_spam - Versions diffs - 0.0.1 - Mend

anti_spam 0.0.1

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (102) hide show

checksums.yaml ADDED

@@ -0,0 +1,7 @@
+---
+SHA1:
+  metadata.gz: 0a7b605acb7bde00ad8bcdd41b0cc289e8c34c7f
+  data.tar.gz: 4024a3f209fb37675412182664b653d0f1aa5028
+SHA512:
+  metadata.gz: f7f9da89f1ea4dc71418fbc9685ae43c792f696e409467576b62659af7074ea4e8d3e60a50cd03d7ff7ecb620e3ff9cb4664397b9300e0aefe2de7b9477d93a4
+  data.tar.gz: b0bbdbb57ab30a853526bbbcbbe8a041b0b29f27bcb498c6825d97e0c087a7ec9afdec2ad60d488c96b78a6236057020ead5abe28a34773397ebe7a1d368f817

data/MIT-LICENSE ADDED

@@ -0,0 +1,20 @@
+Copyright 2014 Rogério Chaves
+Permission is hereby granted, free of charge, to any person obtaining
+a copy of this software and associated documentation files (the
+"Software"), to deal in the Software without restriction, including
+without limitation the rights to use, copy, modify, merge, publish,
+distribute, sublicense, and/or sell copies of the Software, and to
+permit persons to whom the Software is furnished to do so, subject to
+the following conditions:
+The above copyright notice and this permission notice shall be
+included in all copies or substantial portions of the Software.
+THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND,
+EXPRESS OR IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF
+MERCHANTABILITY, FITNESS FOR A PARTICULAR PURPOSE AND
+NONINFRINGEMENT. IN NO EVENT SHALL THE AUTHORS OR COPYRIGHT HOLDERS BE
+LIABLE FOR ANY CLAIM, DAMAGES OR OTHER LIABILITY, WHETHER IN AN ACTION
+OF CONTRACT, TORT OR OTHERWISE, ARISING FROM, OUT OF OR IN CONNECTION
+WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE SOFTWARE.

data/README.md ADDED

@@ -0,0 +1,17 @@
+# anti-spam
+This gem implements a simple anti-spam on Rails projects based on [David Walsh's solution](http://davidwalsh.name/wordpress-comment-spam). Basically, it stops spam comming from bots that doesn't execute JavaScript (most of them), or only execute the page load JavaScript.
+First, include this gem on your Gemfile:
+    gem 'anti_spam'
+Add it to your javascript file, usually application.js
+    //= require anti-spam
+Then add the protect\_from\_spam filter on the desired actions
+    before_action :protect_from_spam, only: [:create, :update]
+That's it! Be aware that users without JavaScript will be considered bots, but nowadays that's very rare, chances are that it's really a bot.

data/Rakefile ADDED

@@ -0,0 +1,32 @@
+begin
+  require 'bundler/setup'
+rescue LoadError
+  puts 'You must `gem install bundler` and `bundle install` to run rake tasks'
+end
+require 'rdoc/task'
+RDoc::Task.new(:rdoc) do |rdoc|
+  rdoc.rdoc_dir = 'rdoc'
+  rdoc.title    = 'AntiSpam'
+  rdoc.options << '--line-numbers'
+  rdoc.rdoc_files.include('README.rdoc')
+  rdoc.rdoc_files.include('lib/**/*.rb')
+end
+Bundler::GemHelper.install_tasks
+require 'rake/testtask'
+Rake::TestTask.new(:test) do |t|
+  t.libs << 'lib'
+  t.libs << 'test'
+  t.pattern = 'test/**/*_test.rb'
+  t.verbose = false
+end
+task default: :test

data/app/assets/javascripts/anti-spam.js.erb ADDED

@@ -0,0 +1,31 @@
+(function(){
+	var antiSpamizeForms = function(){
+		var forms = document.querySelectorAll("form");
+		for(var i = 0, max = forms.length; i < max; i++){
+			var form = forms[i];
+			form.onsubmit = function(){
+				if(form.querySelectorAll('input.antispam_token').length == 0){
+					var input = document.createElement('input');
+				    input.type = 'hidden';
+				    input.name = 'antispam_token';
+				    input.className = 'antispam_token'
+				    input.value = '<%= AntiSpam.token %>';
+				    form.appendChild(input);
+				    form.submit();
+				    return false;
+				}
+			}
+		}
+	}
+	if(document.attachEvent){
+		document.attachEvent("onreadystatechange", antiSpamizeForms);
+		document.attachEvent("onload", antiSpamizeForms);
+	}else{
+		document.addEventListener('DOMContentLoaded', antiSpamizeForms, false);
+		document.addEventListener('load', antiSpamizeForms, false);
+		document.addEventListener('page:load', antiSpamizeForms, false); // for turbolinks
+	}
+})();

data/lib/anti_spam.rb ADDED

@@ -0,0 +1,6 @@
+require "anti_spam/token"
+require "anti_spam/protect_from_spam"
+require "anti_spam/rails"
+module AntiSpam
+end

data/lib/anti_spam/protect_from_spam.rb ADDED

@@ -0,0 +1,11 @@
+module AntiSpam
+	module ProtectFromSpam
+		def protect_from_spam
+			if params[:antispam_token] != AntiSpam.token
+				render text: "Spam not allowed, please enable your JavaScript", status: 403
+			end
+		end
+	end
+end
+ActionController::Base.send :include, AntiSpam::ProtectFromSpam

data/lib/anti_spam/rails.rb ADDED

@@ -0,0 +1,6 @@
+require 'anti_spam/rails/engine'
+module AntiSpam
+  module Rails
+  end
+end

data/lib/anti_spam/rails/engine.rb ADDED

@@ -0,0 +1,7 @@
+module AntiSpam
+	module Rails
+		class Engine < ::Rails::Engine
+			# Get rails to add app, lib, vendor to load path
+		end
+	end
+end

data/lib/anti_spam/token.rb ADDED

@@ -0,0 +1,7 @@
+module AntiSpam
+	class << self
+	    attr_accessor :token
+	end
+end
+AntiSpam.token = 'd5ba63b622ae4249834414e937b5477b' # you can create an initializer to change this

data/lib/anti_spam/version.rb ADDED

@@ -0,0 +1,3 @@
+module AntiSpam
+  VERSION = "0.0.1"
+end

data/lib/tasks/anti_spam_tasks.rake ADDED

@@ -0,0 +1,4 @@
+# desc "Explaining what the task does"
+# task :anti_spam do
+#   # Task goes here
+# end

data/test/anti_spam_test.rb ADDED

@@ -0,0 +1,7 @@
+require 'test_helper'
+class AntiSpamTest < ActiveSupport::TestCase
+  test "truth" do
+    assert_kind_of Module, AntiSpam
+  end
+end

data/test/dummy/README.rdoc ADDED

@@ -0,0 +1,28 @@
+== README
+This README would normally document whatever steps are necessary to get the
+application up and running.
+Things you may want to cover:
+* Ruby version
+* System dependencies
+* Configuration
+* Database creation
+* Database initialization
+* How to run the test suite
+* Services (job queues, cache servers, search engines, etc.)
+* Deployment instructions
+* ...
+Please feel free to use a different markup language if you do not plan to run
+<tt>rake doc:app</tt>.

data/test/dummy/Rakefile ADDED

@@ -0,0 +1,6 @@
+# Add your own tasks in files placed in lib/tasks ending in .rake,
+# for example lib/tasks/capistrano.rake, and they will automatically be available to Rake.
+require File.expand_path('../config/application', __FILE__)
+Rails.application.load_tasks

data/test/dummy/app/assets/javascripts/application.js ADDED

@@ -0,0 +1,13 @@
+// This is a manifest file that'll be compiled into application.js, which will include all the files
+// listed below.
+//
+// Any JavaScript/Coffee file within this directory, lib/assets/javascripts, vendor/assets/javascripts,
+// or vendor/assets/javascripts of plugins, if any, can be referenced here using a relative path.
+//
+// It's not advisable to add code directly here, but if you do, it'll appear at the bottom of the
+// compiled file.
+//
+// Read Sprockets README (https://github.com/sstephenson/sprockets#sprockets-directives) for details
+// about supported directives.
+//
+//= require anti-spam

data/test/dummy/app/assets/javascripts/messages.js ADDED

	@@ -0,0 +1,2 @@
1	+ // Place all the behaviors and hooks related to the matching controller here.
2	+ // All this logic will automatically be available in application.js.

data/test/dummy/app/assets/stylesheets/application.css ADDED

@@ -0,0 +1,15 @@
+/*
+ * This is a manifest file that'll be compiled into application.css, which will include all the files
+ * listed below.
+ *
+ * Any CSS and SCSS file within this directory, lib/assets/stylesheets, vendor/assets/stylesheets,
+ * or vendor/assets/stylesheets of plugins, if any, can be referenced here using a relative path.
+ *
+ * You're free to add application-wide styles to this file and they'll appear at the bottom of the
+ * compiled file so the styles you add here take precedence over styles defined in any styles
+ * defined in the other CSS/SCSS files in this directory. It is generally better to create a new
+ * file per style scope.
+ *
+ *= require_tree .
+ *= require_self
+ */

data/test/dummy/app/assets/stylesheets/messages.css ADDED

@@ -0,0 +1,4 @@
+/*
+  Place all the styles related to the matching controller here.
+  They will automatically be included in application.css.
+*/

data/test/dummy/app/assets/stylesheets/scaffold.css ADDED

@@ -0,0 +1,56 @@
+body { background-color: #fff; color: #333; }
+body, p, ol, ul, td {
+  font-family: verdana, arial, helvetica, sans-serif;
+  font-size:   13px;
+  line-height: 18px;
+}
+pre {
+  background-color: #eee;
+  padding: 10px;
+  font-size: 11px;
+}
+a { color: #000; }
+a:visited { color: #666; }
+a:hover { color: #fff; background-color:#000; }
+div.field, div.actions {
+  margin-bottom: 10px;
+}
+#notice {
+  color: green;
+}
+.field_with_errors {
+  padding: 2px;
+  background-color: red;
+  display: table;
+}
+#error_explanation {
+  width: 450px;
+  border: 2px solid red;
+  padding: 7px;
+  padding-bottom: 0;
+  margin-bottom: 20px;
+  background-color: #f0f0f0;
+}
+#error_explanation h2 {
+  text-align: left;
+  font-weight: bold;
+  padding: 5px 5px 5px 15px;
+  font-size: 12px;
+  margin: -7px;
+  margin-bottom: 0px;
+  background-color: #c00;
+  color: #fff;
+}
+#error_explanation ul li {
+  font-size: 12px;
+  list-style: square;
+}

data/test/dummy/app/controllers/application_controller.rb ADDED

@@ -0,0 +1,5 @@
+class ApplicationController < ActionController::Base
+  # Prevent CSRF attacks by raising an exception.
+  # For APIs, you may want to use :null_session instead.
+  protect_from_forgery with: :exception
+end

data/test/dummy/app/controllers/messages_controller.rb ADDED

@@ -0,0 +1,59 @@
+class MessagesController < ApplicationController
+  before_action :set_message, only: [:show, :edit, :update, :destroy]
+  before_action :protect_from_spam, only: [:create, :update]
+  # GET /messages
+  def index
+    @messages = Message.all
+  end
+  # GET /messages/1
+  def show
+  end
+  # GET /messages/new
+  def new
+    @message = Message.new
+  end
+  # GET /messages/1/edit
+  def edit
+  end
+  # POST /messages
+  def create
+    @message = Message.new(message_params)
+    if @message.save
+      redirect_to @message, notice: 'Message was successfully created.'
+    else
+      render :new
+    end
+  end
+  # PATCH/PUT /messages/1
+  def update
+    if @message.update(message_params)
+      redirect_to @message, notice: 'Message was successfully updated.'
+    else
+      render :edit
+    end
+  end
+  # DELETE /messages/1
+  def destroy
+    @message.destroy
+    redirect_to messages_url, notice: 'Message was successfully destroyed.'
+  end
+  private
+    # Use callbacks to share common setup or constraints between actions.
+    def set_message
+      @message = Message.find(params[:id])
+    end
+    # Only allow a trusted parameter "white list" through.
+    def message_params
+      params.require(:message).permit(:name, :email, :telephone, :message)
+    end
+end

data/test/dummy/app/helpers/application_helper.rb ADDED

	@@ -0,0 +1,2 @@
1	+ module ApplicationHelper
2	+ end

data/test/dummy/app/helpers/messages_helper.rb ADDED

	@@ -0,0 +1,2 @@
1	+ module MessagesHelper
2	+ end

data/test/dummy/app/models/message.rb ADDED

	@@ -0,0 +1,2 @@
1	+ class Message < ActiveRecord::Base
2	+ end

data/test/dummy/app/views/layouts/application.html.erb ADDED

@@ -0,0 +1,14 @@
+<!DOCTYPE html>
+<html>
+<head>
+  <title>Dummy</title>
+  <%= stylesheet_link_tag    'application', media: 'all', 'data-turbolinks-track' => true %>
+  <%= javascript_include_tag 'application', 'data-turbolinks-track' => true %>
+  <%= csrf_meta_tags %>
+</head>
+<body>
+<%= yield %>
+</body>
+</html>

data/test/dummy/app/views/messages/_form.html.erb ADDED

@@ -0,0 +1,33 @@
+<%= form_for(@message) do |f| %>
+  <% if @message.errors.any? %>
+    <div id="error_explanation">
+      <h2><%= pluralize(@message.errors.count, "error") %> prohibited this message from being saved:</h2>
+      <ul>
+      <% @message.errors.full_messages.each do |message| %>
+        <li><%= message %></li>
+      <% end %>
+      </ul>
+    </div>
+  <% end %>
+  <div class="field">
+    <%= f.label :name %><br>
+    <%= f.text_field :name %>
+  </div>
+  <div class="field">
+    <%= f.label :email %><br>
+    <%= f.text_field :email %>
+  </div>
+  <div class="field">
+    <%= f.label :telephone %><br>
+    <%= f.text_field :telephone %>
+  </div>
+  <div class="field">
+    <%= f.label :message %><br>
+    <%= f.text_area :message %>
+  </div>
+  <div class="actions">
+    <%= f.submit %>
+  </div>
+<% end %>