RubyGems - anti_spam - Versions diffs - 0.0.1 - Mend

anti_spam 0.0.1

Files changed (102) hide show

checksums.yaml ADDED

@@ -0,0 +1,7 @@
+---
+SHA1:
+  metadata.gz: 0a7b605acb7bde00ad8bcdd41b0cc289e8c34c7f
+  data.tar.gz: 4024a3f209fb37675412182664b653d0f1aa5028
+SHA512:
+  metadata.gz: f7f9da89f1ea4dc71418fbc9685ae43c792f696e409467576b62659af7074ea4e8d3e60a50cd03d7ff7ecb620e3ff9cb4664397b9300e0aefe2de7b9477d93a4
+  data.tar.gz: b0bbdbb57ab30a853526bbbcbbe8a041b0b29f27bcb498c6825d97e0c087a7ec9afdec2ad60d488c96b78a6236057020ead5abe28a34773397ebe7a1d368f817

data/MIT-LICENSE ADDED

@@ -0,0 +1,20 @@
+Copyright 2014 Rogério Chaves
+Permission is hereby granted, free of charge, to any person obtaining
+a copy of this software and associated documentation files (the
+"Software"), to deal in the Software without restriction, including
+without limitation the rights to use, copy, modify, merge, publish,
+distribute, sublicense, and/or sell copies of the Software, and to
+permit persons to whom the Software is furnished to do so, subject to
+the following conditions:
+The above copyright notice and this permission notice shall be
+included in all copies or substantial portions of the Software.
+THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND,
+EXPRESS OR IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF
+MERCHANTABILITY, FITNESS FOR A PARTICULAR PURPOSE AND
+NONINFRINGEMENT. IN NO EVENT SHALL THE AUTHORS OR COPYRIGHT HOLDERS BE
+LIABLE FOR ANY CLAIM, DAMAGES OR OTHER LIABILITY, WHETHER IN AN ACTION
+OF CONTRACT, TORT OR OTHERWISE, ARISING FROM, OUT OF OR IN CONNECTION
+WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE SOFTWARE.

data/README.md ADDED

@@ -0,0 +1,17 @@
+# anti-spam
+This gem implements a simple anti-spam on Rails projects based on [David Walsh's solution](http://davidwalsh.name/wordpress-comment-spam). Basically, it stops spam comming from bots that doesn't execute JavaScript (most of them), or only execute the page load JavaScript.
+First, include this gem on your Gemfile:
+    gem 'anti_spam'
+Add it to your javascript file, usually application.js
+    //= require anti-spam
+Then add the protect\_from\_spam filter on the desired actions
+    before_action :protect_from_spam, only: [:create, :update]
+That's it! Be aware that users without JavaScript will be considered bots, but nowadays that's very rare, chances are that it's really a bot.

data/Rakefile ADDED

@@ -0,0 +1,32 @@
+begin
+  require 'bundler/setup'
+rescue LoadError
+  puts 'You must `gem install bundler` and `bundle install` to run rake tasks'
+end
+require 'rdoc/task'
+RDoc::Task.new(:rdoc) do |rdoc|
+  rdoc.rdoc_dir = 'rdoc'
+  rdoc.title    = 'AntiSpam'
+  rdoc.options << '--line-numbers'
+  rdoc.rdoc_files.include('README.rdoc')
+  rdoc.rdoc_files.include('lib/**/*.rb')
+end
+Bundler::GemHelper.install_tasks
+require 'rake/testtask'
+Rake::TestTask.new(:test) do |t|
+  t.libs << 'lib'
+  t.libs << 'test'
+  t.pattern = 'test/**/*_test.rb'
+  t.verbose = false
+end
+task default: :test

data/app/assets/javascripts/anti-spam.js.erb ADDED

@@ -0,0 +1,31 @@
+(function(){
+	var antiSpamizeForms = function(){
+		var forms = document.querySelectorAll("form");
+		for(var i = 0, max = forms.length; i < max; i++){
+			var form = forms[i];
+			form.onsubmit = function(){
+				if(form.querySelectorAll('input.antispam_token').length == 0){
+					var input = document.createElement('input');
+				    input.type = 'hidden';
+				    input.name = 'antispam_token';
+				    input.className = 'antispam_token'
+				    input.value = '<%= AntiSpam.token %>';
+				    form.appendChild(input);
+				    form.submit();
+				    return false;
+				}
+			}
+		}
+	}
+	if(document.attachEvent){
+		document.attachEvent("onreadystatechange", antiSpamizeForms);
+		document.attachEvent("onload", antiSpamizeForms);
+	}else{
+		document.addEventListener('DOMContentLoaded', antiSpamizeForms, false);
+		document.addEventListener('load', antiSpamizeForms, false);
+		document.addEventListener('page:load', antiSpamizeForms, false); // for turbolinks
+	}
+})();

data/lib/anti_spam.rb ADDED

@@ -0,0 +1,6 @@
+require "anti_spam/token"
+require "anti_spam/protect_from_spam"
+require "anti_spam/rails"
+module AntiSpam
+end

data/lib/anti_spam/protect_from_spam.rb ADDED

@@ -0,0 +1,11 @@
+module AntiSpam
+	module ProtectFromSpam
+		def protect_from_spam
+			if params[:antispam_token] != AntiSpam.token
+				render text: "Spam not allowed, please enable your JavaScript", status: 403
+			end
+		end
+	end
+end
+ActionController::Base.send :include, AntiSpam::ProtectFromSpam

data/lib/anti_spam/rails.rb ADDED

@@ -0,0 +1,6 @@
+require 'anti_spam/rails/engine'
+module AntiSpam
+  module Rails
+  end
+end

data/lib/anti_spam/rails/engine.rb ADDED

@@ -0,0 +1,7 @@
+module AntiSpam
+	module Rails
+		class Engine < ::Rails::Engine
+			# Get rails to add app, lib, vendor to load path
+		end
+	end
+end

data/lib/anti_spam/token.rb ADDED

@@ -0,0 +1,7 @@
+module AntiSpam
+	class << self
+	    attr_accessor :token
+	end
+end
+AntiSpam.token = 'd5ba63b622ae4249834414e937b5477b' # you can create an initializer to change this

data/lib/anti_spam/version.rb ADDED

@@ -0,0 +1,3 @@
+module AntiSpam
+  VERSION = "0.0.1"
+end

data/lib/tasks/anti_spam_tasks.rake ADDED

@@ -0,0 +1,4 @@
+# desc "Explaining what the task does"
+# task :anti_spam do
+#   # Task goes here
+# end

data/test/anti_spam_test.rb ADDED

@@ -0,0 +1,7 @@
+require 'test_helper'
+class AntiSpamTest < ActiveSupport::TestCase
+  test "truth" do
+    assert_kind_of Module, AntiSpam
+  end
+end

data/test/dummy/README.rdoc ADDED

@@ -0,0 +1,28 @@
+== README
+This README would normally document whatever steps are necessary to get the
+application up and running.
+Things you may want to cover:
+* Ruby version
+* System dependencies
+* Configuration
+* Database creation
+* Database initialization
+* How to run the test suite
+* Services (job queues, cache servers, search engines, etc.)
+* Deployment instructions
+* ...
+Please feel free to use a different markup language if you do not plan to run
+<tt>rake doc:app</tt>.

data/test/dummy/Rakefile ADDED

@@ -0,0 +1,6 @@
+# Add your own tasks in files placed in lib/tasks ending in .rake,
+# for example lib/tasks/capistrano.rake, and they will automatically be available to Rake.
+require File.expand_path('../config/application', __FILE__)
+Rails.application.load_tasks

data/test/dummy/app/assets/javascripts/application.js ADDED

@@ -0,0 +1,13 @@
+// This is a manifest file that'll be compiled into application.js, which will include all the files
+// listed below.
+//
+// Any JavaScript/Coffee file within this directory, lib/assets/javascripts, vendor/assets/javascripts,
+// or vendor/assets/javascripts of plugins, if any, can be referenced here using a relative path.
+//
+// It's not advisable to add code directly here, but if you do, it'll appear at the bottom of the
+// compiled file.
+//
+// Read Sprockets README (https://github.com/sstephenson/sprockets#sprockets-directives) for details
+// about supported directives.
+//
+//= require anti-spam

data/test/dummy/app/assets/javascripts/messages.js ADDED

	@@ -0,0 +1,2 @@
1	+ // Place all the behaviors and hooks related to the matching controller here.
2	+ // All this logic will automatically be available in application.js.

data/test/dummy/app/assets/stylesheets/application.css ADDED

@@ -0,0 +1,15 @@
+/*
+ * This is a manifest file that'll be compiled into application.css, which will include all the files
+ * listed below.
+ *
+ * Any CSS and SCSS file within this directory, lib/assets/stylesheets, vendor/assets/stylesheets,
+ * or vendor/assets/stylesheets of plugins, if any, can be referenced here using a relative path.
+ *
+ * You're free to add application-wide styles to this file and they'll appear at the bottom of the
+ * compiled file so the styles you add here take precedence over styles defined in any styles
+ * defined in the other CSS/SCSS files in this directory. It is generally better to create a new
+ * file per style scope.
+ *
+ *= require_tree .
+ *= require_self
+ */

data/test/dummy/app/assets/stylesheets/messages.css ADDED

@@ -0,0 +1,4 @@
+/*
+  Place all the styles related to the matching controller here.
+  They will automatically be included in application.css.
+*/

data/test/dummy/app/assets/stylesheets/scaffold.css ADDED

@@ -0,0 +1,56 @@
+body { background-color: #fff; color: #333; }
+body, p, ol, ul, td {
+  font-family: verdana, arial, helvetica, sans-serif;
+  font-size:   13px;
+  line-height: 18px;
+}
+pre {
+  background-color: #eee;
+  padding: 10px;
+  font-size: 11px;
+}
+a { color: #000; }
+a:visited { color: #666; }
+a:hover { color: #fff; background-color:#000; }
+div.field, div.actions {
+  margin-bottom: 10px;
+}
+#notice {
+  color: green;
+}
+.field_with_errors {
+  padding: 2px;
+  background-color: red;
+  display: table;
+}
+#error_explanation {
+  width: 450px;
+  border: 2px solid red;
+  padding: 7px;
+  padding-bottom: 0;
+  margin-bottom: 20px;
+  background-color: #f0f0f0;
+}
+#error_explanation h2 {
+  text-align: left;
+  font-weight: bold;
+  padding: 5px 5px 5px 15px;
+  font-size: 12px;
+  margin: -7px;
+  margin-bottom: 0px;
+  background-color: #c00;
+  color: #fff;
+}
+#error_explanation ul li {
+  font-size: 12px;
+  list-style: square;
+}

data/test/dummy/app/controllers/application_controller.rb ADDED

@@ -0,0 +1,5 @@
+class ApplicationController < ActionController::Base
+  # Prevent CSRF attacks by raising an exception.
+  # For APIs, you may want to use :null_session instead.
+  protect_from_forgery with: :exception
+end

data/test/dummy/app/controllers/messages_controller.rb ADDED

@@ -0,0 +1,59 @@
+class MessagesController < ApplicationController
+  before_action :set_message, only: [:show, :edit, :update, :destroy]
+  before_action :protect_from_spam, only: [:create, :update]
+  # GET /messages
+  def index
+    @messages = Message.all
+  end
+  # GET /messages/1
+  def show
+  end
+  # GET /messages/new
+  def new
+    @message = Message.new
+  end
+  # GET /messages/1/edit
+  def edit
+  end
+  # POST /messages
+  def create
+    @message = Message.new(message_params)
+    if @message.save
+      redirect_to @message, notice: 'Message was successfully created.'
+    else
+      render :new
+    end
+  end
+  # PATCH/PUT /messages/1
+  def update
+    if @message.update(message_params)
+      redirect_to @message, notice: 'Message was successfully updated.'
+    else
+      render :edit
+    end
+  end
+  # DELETE /messages/1
+  def destroy
+    @message.destroy
+    redirect_to messages_url, notice: 'Message was successfully destroyed.'
+  end
+  private
+    # Use callbacks to share common setup or constraints between actions.
+    def set_message
+      @message = Message.find(params[:id])
+    end
+    # Only allow a trusted parameter "white list" through.
+    def message_params
+      params.require(:message).permit(:name, :email, :telephone, :message)
+    end
+end

data/test/dummy/app/helpers/application_helper.rb ADDED

	@@ -0,0 +1,2 @@
1	+ module ApplicationHelper
2	+ end

data/test/dummy/app/helpers/messages_helper.rb ADDED

	@@ -0,0 +1,2 @@
1	+ module MessagesHelper
2	+ end

data/test/dummy/app/models/message.rb ADDED

	@@ -0,0 +1,2 @@
1	+ class Message < ActiveRecord::Base
2	+ end

data/test/dummy/app/views/layouts/application.html.erb ADDED

@@ -0,0 +1,14 @@
+<!DOCTYPE html>
+<html>
+<head>
+  <title>Dummy</title>
+  <%= stylesheet_link_tag    'application', media: 'all', 'data-turbolinks-track' => true %>
+  <%= javascript_include_tag 'application', 'data-turbolinks-track' => true %>
+  <%= csrf_meta_tags %>
+</head>
+<body>
+<%= yield %>
+</body>
+</html>

data/test/dummy/app/views/messages/_form.html.erb ADDED

@@ -0,0 +1,33 @@
+<%= form_for(@message) do |f| %>
+  <% if @message.errors.any? %>
+    <div id="error_explanation">
+      <h2><%= pluralize(@message.errors.count, "error") %> prohibited this message from being saved:</h2>
+      <ul>
+      <% @message.errors.full_messages.each do |message| %>
+        <li><%= message %></li>
+      <% end %>
+      </ul>
+    </div>
+  <% end %>
+  <div class="field">
+    <%= f.label :name %><br>
+    <%= f.text_field :name %>
+  </div>
+  <div class="field">
+    <%= f.label :email %><br>
+    <%= f.text_field :email %>
+  </div>
+  <div class="field">
+    <%= f.label :telephone %><br>
+    <%= f.text_field :telephone %>
+  </div>
+  <div class="field">
+    <%= f.label :message %><br>
+    <%= f.text_area :message %>
+  </div>
+  <div class="actions">
+    <%= f.submit %>
+  </div>
+<% end %>