github/docker-labs
1
0
Fork 0
mirror of https://github.com/bingohuang/docker-labs.git synced 2025-10-04 09:23:21 +08:00
Code Issues Releases Wiki Activity

Validates that user is a human.

Browse Source 
Add google recaptcha as an initial page before creating any session.
To configure recaptcha there are 2 environment variables that are needed
`GOOGLE_RECAPTCHA_SITE_KEY` and `GOOGLE_RECAPTCHA_SITE_SECRET`.
The code contains development defaults that should be set in production
to real values.
**NOTICE: Development defaults assume that the domain is `localhost`**
This commit is contained in:
Jonathan Leibiusky @xetorthio
2016-11-15 16:53:44 -03:00
parent 770945ab86
commit af9986c0f8
7 changed files with 140 additions and 1 deletions
Download Patch File Download Diff File Expand all files Collapse all files

59
services/recaptcha.go Normal file
View File

@@ -0,0 +1,59 @@
package services
import (
"encoding/json"
"log"
"net/http"
"net/url"
"os"
"strings"
)
func GetGoogleRecaptchaSiteKey() string {
key := os.Getenv("GOOGLE_RECAPTCHA_SITE_KEY")
if key == "" {
// This is a development default. The environment variable should always be set in production.
key = "6LeY_QsUAAAAAOlpVw4MhoLEr50h-dM80oz6M2AX"
}
return key
}
func GetGoogleRecaptchaSiteSecret() string {
key := os.Getenv("GOOGLE_RECAPTCHA_SITE_SECRET")
if key == "" {
// This is a development default. The environment variable should always be set in production.
key = "6LeY_QsUAAAAAHIALCtm0GKfk-UhtXoyJKarnRV8"
}
return key
}
type recaptchaResponse struct {
Success bool `json:"success"`
}
func IsHuman(req *http.Request) bool {
req.ParseForm()
challenge := req.Form.Get("g-recaptcha-response")
// Of X-Forwarded-For exists, it means we are behind a loadbalancer and we should use the real IP address of the user
ip := req.Header.Get("X-Forwarded-For")
if ip == "" {
// Use the standard remote IP address of the request
ip = req.RemoteAddr
}
parts := strings.Split(ip, ":")
resp, postErr := http.PostForm("https://www.google.com/recaptcha/api/siteverify", url.Values{"secret": {GetGoogleRecaptchaSiteSecret()}, "response": {challenge}, "remoteip": {parts[0]}})
if postErr != nil {
log.Println(postErr)
// If there is a problem to connect to google, assume the user is a human so we don't block real users because of technical issues
return true
}
var r recaptchaResponse
json.NewDecoder(resp.Body).Decode(&r)
return r.Success
}