Please add a captcha on the forum
I don't plan to develop new features for Agora for the foreseeable future, but you can probably mitigate the problem using the pre-existing ratelimit system built in to Agora. For instance, in https://github.com/Pecon/Agora/blob/master/themes/twilight/register.php#L144 the registration action is limited to at most two signups per ten minute (600 second) period. You can increase the timeout period and/or reduce the number of signups allowed in the time period to help mitigate spammy actions. This rate limit system also is applied to all the other actions you referred to, you can search the codebase for uses of 'checkRateLimitAction' to find and modify the rate limiting behavior of all those other actions as you would like.
Hopefully that helps whatever issues you're dealing with.
I don't plan to develop new features for Agora for the foreseeable future, but you can probably mitigate the problem using the pre-existing ratelimit system built in to Agora. For instance, in https://github.com/Pecon/Agora/blob/master/themes/twilight/register.php#L144 the registration action is limited to at most two signups per ten minute (600 second) period. You can increase the timeout period and/or reduce the number of signups allowed in the time period to help mitigate spammy actions. This rate limit system also is applied to all the other actions you referred to, you can search the codebase for uses of 'checkRateLimitAction' to find and modify the rate limiting behavior of all those other actions as you would like.
Hopefully that helps whatever issues you're dealing with.
Please add a captcha on the forum
Hello,
Please add a capctha on the forum for the new posts, new topic, registration and login.
Actually just with a small script wa can spam the forum.
Thanks
Hello,
Please add a capctha on the forum for the new posts, new topic, registration and login.
Actually just with a small script wa can spam the forum.
Thanks
admin error
https://prnt.sc/GexuzbKPdVdY
if the account is not "admin" it gives this error instead
somebody knows how to fix it?
https://prnt.sc/GexuzbKPdVdY
if the account is not "admin" it gives this error instead
somebody knows how to fix it?
XSS flaw
Hello,
I have found a XSS vulnerability in the "Website" input in the profile.
An other problem is if I comment just BBcode balise, I can post a messsage without any letter.
Exemple : In the last message I comment juste [b][/b]
Also if you want update this project can you include a search bar and the possibility of create category ?
Thanks :)
Hello,
I have found a XSS vulnerability in the "Website" input in the profile.
An other problem is if I comment just BBcode balise, I can post a messsage without any letter.
Exemple : In the last message I comment juste [b][/b]
Also if you want update this project can you include a search bar and the possibility of create category ?
Thanks :)
When new updates ? :)
I've just been busy with other projects.
I've just been busy with other projects.