diff options
| -rw-r--r-- | phpBB/adm/style/captcha_recaptcha.html | 26 | ||||
| -rw-r--r-- | phpBB/composer.json | 1 | ||||
| -rw-r--r-- | phpBB/composer.lock | 53 | ||||
| -rw-r--r-- | phpBB/language/en/captcha_recaptcha.php | 6 | ||||
| -rw-r--r-- | phpBB/phpbb/captcha/plugins/recaptcha.php | 127 | ||||
| -rw-r--r-- | phpBB/styles/prosilver/template/captcha_recaptcha.html | 19 | ||||
| -rw-r--r-- | phpBB/styles/prosilver/theme/responsive.css | 10 | 
7 files changed, 69 insertions, 173 deletions
| diff --git a/phpBB/adm/style/captcha_recaptcha.html b/phpBB/adm/style/captcha_recaptcha.html index d3038fd714..3f61c76cb1 100644 --- a/phpBB/adm/style/captcha_recaptcha.html +++ b/phpBB/adm/style/captcha_recaptcha.html @@ -1,32 +1,12 @@  <!-- IF S_RECAPTCHA_AVAILABLE -->  	<dl>  	<dd> -		<script type="text/javascript"> -		// <![CDATA[ -		var RecaptchaOptions = { -			lang : '{LA_RECAPTCHA_LANG}', -			theme : 'clean' -		}; -		// ]]> -		</script> -		<script type="text/javascript" src="{RECAPTCHA_SERVER}/challenge?k={RECAPTCHA_PUBKEY}{RECAPTCHA_ERRORGET}"></script> -		<script type="text/javascript"> -		// <![CDATA[ -		<!-- IF S_CONTENT_DIRECTION eq 'rtl' --> -			document.getElementById('recaptcha_table').style.direction = 'ltr'; -		<!-- ENDIF --> -		// ]]> -		</script> - -  	<noscript> -	<div> -		<object data="{RECAPTCHA_SERVER}/noscript?k={RECAPTCHA_PUBKEY}{RECAPTCHA_ERRORGET}" type="text/html" height="300" width="500"></object><br /> -		<textarea name="recaptcha_challenge_field" rows="3" cols="40"></textarea> -		<input type="hidden" name="recaptcha_response_field" value="manual_challenge" /> -	</div> +		<div>{L_RECAPTCHA_NOSCRIPT}</div>  	</noscript> +		<script src="{RECAPTCHA_SERVER}.js?hl={LA_RECAPTCHA_LANG}" async defer></script> +		<div class="g-recaptcha" data-sitekey="{RECAPTCHA_PUBKEY}"></div>  	</dd>  	</dl>  <!-- ELSE --> diff --git a/phpBB/composer.json b/phpBB/composer.json index b96e6cacf6..71848d5a5f 100644 --- a/phpBB/composer.json +++ b/phpBB/composer.json @@ -26,6 +26,7 @@  	},  	"require": {  		"bantu/ini-get-wrapper": "1.0.*", +	  	"google/recaptcha": "~1.1",  		"lusitanian/oauth": "0.2.*",  		"marc1706/fast-image-size": "1.1.*",  		"patchwork/utf8": "1.1.*", diff --git a/phpBB/composer.lock b/phpBB/composer.lock index 3acd6394a6..5ea4af4d75 100644 --- a/phpBB/composer.lock +++ b/phpBB/composer.lock @@ -4,7 +4,7 @@          "Read more about it at http://getcomposer.org/doc/01-basic-usage.md#composer-lock-the-lock-file",          "This file is @generated automatically"      ], -    "hash": "3a1fb55478d50b5b7b5888f3a07e0b43", +    "hash": "3f4f026ae8fdec714dd7fb816db22be5",      "packages": [          {              "name": "bantu/ini-get-wrapper", @@ -37,6 +37,51 @@              "time": "2014-09-15 13:12:35"          },          { +            "name": "google/recaptcha", +            "version": "1.1.2", +            "source": { +                "type": "git", +                "url": "https://github.com/google/recaptcha.git", +                "reference": "2b7e00566afca82a38a1d3adb8e42c118006296e" +            }, +            "dist": { +                "type": "zip", +                "url": "https://api.github.com/repos/google/recaptcha/zipball/2b7e00566afca82a38a1d3adb8e42c118006296e", +                "reference": "2b7e00566afca82a38a1d3adb8e42c118006296e", +                "shasum": "" +            }, +            "require": { +                "php": ">=5.3.2" +            }, +            "require-dev": { +                "phpunit/phpunit": "4.5.*" +            }, +            "type": "library", +            "extra": { +                "branch-alias": { +                    "dev-master": "1.1.x-dev" +                } +            }, +            "autoload": { +                "psr-4": { +                    "ReCaptcha\\": "src/ReCaptcha" +                } +            }, +            "notification-url": "https://packagist.org/downloads/", +            "license": [ +                "BSD-3-Clause" +            ], +            "description": "Client library for reCAPTCHA, a free service that protect websites from spam and abuse.", +            "homepage": "http://www.google.com/recaptcha/", +            "keywords": [ +                "Abuse", +                "captcha", +                "recaptcha", +                "spam" +            ], +            "time": "2015-09-02 17:23:59" +        }, +        {              "name": "lusitanian/oauth",              "version": "v0.2.1",              "source": { @@ -226,7 +271,7 @@                      "Psr\\Log\\": ""                  }              }, -            "notification-url": "https://packagist.org/downloads/", +            "notification-url": "http://packagist.org/downloads/",              "license": [                  "MIT"              ], @@ -1977,12 +2022,12 @@              "version": "v1.0.2",              "source": {                  "type": "git", -                "url": "https://github.com/silexphp/Pimple.git", +                "url": "https://github.com/fabpot/Pimple.git",                  "reference": "ae11e57e8c2bb414b2ff93396dbbfc0eb92feb94"              },              "dist": {                  "type": "zip", -                "url": "https://api.github.com/repos/silexphp/Pimple/zipball/ae11e57e8c2bb414b2ff93396dbbfc0eb92feb94", +                "url": "https://api.github.com/repos/fabpot/Pimple/zipball/ae11e57e8c2bb414b2ff93396dbbfc0eb92feb94",                  "reference": "ae11e57e8c2bb414b2ff93396dbbfc0eb92feb94",                  "shasum": ""              }, diff --git a/phpBB/language/en/captcha_recaptcha.php b/phpBB/language/en/captcha_recaptcha.php index df2ad4e51b..0acf850043 100644 --- a/phpBB/language/en/captcha_recaptcha.php +++ b/phpBB/language/en/captcha_recaptcha.php @@ -40,13 +40,13 @@ $lang = array_merge($lang, array(  	'RECAPTCHA_LANG'				=> 'en',  	'RECAPTCHA_NOT_AVAILABLE'		=> 'In order to use reCaptcha, you must create an account on <a href="http://www.google.com/recaptcha">www.google.com/recaptcha</a>.',  	'CAPTCHA_RECAPTCHA'				=> 'reCaptcha', -	'RECAPTCHA_INCORRECT'			=> 'The visual confirmation code you submitted was incorrect', +	'RECAPTCHA_INCORRECT'			=> 'The solution you provided was incorrect', +	'RECAPTCHA_NOSCRIPT'			=> 'Please enable JavaScript in your browser to load the challenge.',  	'RECAPTCHA_PUBLIC'				=> 'Public reCaptcha key',  	'RECAPTCHA_PUBLIC_EXPLAIN'		=> 'Your public reCaptcha key. Keys can be obtained on <a href="http://www.google.com/recaptcha">www.google.com/recaptcha</a>.',  	'RECAPTCHA_PRIVATE'				=> 'Private reCaptcha key',  	'RECAPTCHA_PRIVATE_EXPLAIN'		=> 'Your private reCaptcha key. Keys can be obtained on <a href="http://www.google.com/recaptcha">www.google.com/recaptcha</a>.', -	'RECAPTCHA_EXPLAIN'				=> 'In an effort to prevent automatic submissions, we require that you type the text displayed into the field underneath.', -	'RECAPTCHA_SOCKET_ERROR'		=> 'There was a problem connecting to the RECAPTCHA service: could not open socket. Try again later.', +	'RECAPTCHA_EXPLAIN'				=> 'In an effort to prevent automatic submissions, we require that you complete the following challenge.',  )); diff --git a/phpBB/phpbb/captcha/plugins/recaptcha.php b/phpBB/phpbb/captcha/plugins/recaptcha.php index 98132ab47d..152709a9ea 100644 --- a/phpBB/phpbb/captcha/plugins/recaptcha.php +++ b/phpBB/phpbb/captcha/plugins/recaptcha.php @@ -18,12 +18,6 @@ class recaptcha extends captcha_abstract  	var $recaptcha_server = 'http://www.google.com/recaptcha/api';  	var $recaptcha_server_secure = 'https://www.google.com/recaptcha/api'; // class constants :( -	// We are opening a socket to port 80 of this host and send -	// the POST request asking for verification to the path specified here. -	var $recaptcha_verify_server = 'www.google.com'; -	var $recaptcha_verify_path = '/recaptcha/api/verify'; - -	var $challenge;  	var $response;  	/** @@ -37,12 +31,11 @@ class recaptcha extends captcha_abstract  	function init($type)  	{ -		global $config, $db, $user, $request; +		global $user, $request;  		$user->add_lang('captcha_recaptcha');  		parent::init($type); -		$this->challenge = $request->variable('recaptcha_challenge_field', ''); -		$this->response = $request->variable('recaptcha_response_field', ''); +		$this->response = $request->variable('g-recaptcha-response', '');  	}  	public function is_available() @@ -75,7 +68,7 @@ class recaptcha extends captcha_abstract  	function acp_page($id, &$module)  	{ -		global $config, $db, $template, $user, $phpbb_log, $request; +		global $config, $template, $user, $phpbb_log, $request;  		$captcha_vars = array(  			'recaptcha_pubkey'				=> 'RECAPTCHA_PUBKEY', @@ -151,7 +144,6 @@ class recaptcha extends captcha_abstract  			$template->assign_vars(array(  				'RECAPTCHA_SERVER'			=> $this->recaptcha_server,  				'RECAPTCHA_PUBKEY'			=> isset($config['recaptcha_pubkey']) ? $config['recaptcha_pubkey'] : '', -				'RECAPTCHA_ERRORGET'		=> '',  				'S_RECAPTCHA_AVAILABLE'		=> self::is_available(),  				'S_CONFIRM_CODE'			=> true,  				'S_TYPE'					=> $this->type, @@ -202,106 +194,25 @@ class recaptcha extends captcha_abstract  		}  	} -// Code from here on is based on recaptchalib.php -/* - * This is a PHP library that handles calling reCAPTCHA. - *	- Documentation and latest version - *		  http://recaptcha.net/plugins/php/ - *	- Get a reCAPTCHA API Key - *		  http://recaptcha.net/api/getkey - *	- Discussion group - *		  http://groups.google.com/group/recaptcha - * - * Copyright (c) 2007 reCAPTCHA -- http://recaptcha.net - * AUTHORS: - *   Mike Crawford - *   Ben Maurer - * - * Permission is hereby granted, free of charge, to any person obtaining a copy - * of this software and associated documentation files (the "Software"), to deal - * in the Software without restriction, including without limitation the rights - * to use, copy, modify, merge, publish, distribute, sublicense, and/or sell - * copies of the Software, and to permit persons to whom the Software is - * furnished to do so, subject to the following conditions: - * - * The above copyright notice and this permission notice shall be included in - * all copies or substantial portions of the Software. - * - * THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR - * IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY, - * FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE - * AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER - * LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM, - * OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN - * THE SOFTWARE. - */ - -	/** -	* Submits an HTTP POST to a reCAPTCHA server -	* @param string $host -	* @param string $path -	* @param array $data -	* @param int port -	* @return array response -	*/ -	function _recaptcha_http_post($host, $path, $data, $port = 80) -	{ -		$req = $this->_recaptcha_qsencode ($data); - -		$http_request  = "POST $path HTTP/1.0\r\n"; -		$http_request .= "Host: $host\r\n"; -		$http_request .= "Content-Type: application/x-www-form-urlencoded;\r\n"; -		$http_request .= "Content-Length: " . strlen($req) . "\r\n"; -		$http_request .= "User-Agent: reCAPTCHA/PHP/phpBB\r\n"; -		$http_request .= "\r\n"; -		$http_request .= $req; - -		$response = ''; -		if (false == ($fs = @fsockopen($host, $port, $errno, $errstr, 10))) -		{ -			trigger_error('RECAPTCHA_SOCKET_ERROR', E_USER_ERROR); -		} - -		fwrite($fs, $http_request); - -		while (!feof($fs)) -		{ -			// One TCP-IP packet -			$response .= fgets($fs, 1160); -		} -		fclose($fs); -		$response = explode("\r\n\r\n", $response, 2); - -		return $response; -	} -  	/**  	* Calls an HTTP POST function to verify if the user's guess was correct -	* @param array $extra_params an array of extra variables to post to the server -	* @return ReCaptchaResponse +	* +	* @return bool|string Returns false on success or error string on failure.  	*/ -	function recaptcha_check_answer($extra_params = array()) +	function recaptcha_check_answer()  	{  		global $config, $user;  		//discard spam submissions -		if ($this->challenge == null || strlen($this->challenge) == 0 || $this->response == null || strlen($this->response) == 0) +		if ($this->response == null || strlen($this->response) == 0)  		{  			return $user->lang['RECAPTCHA_INCORRECT'];  		} -		$response = $this->_recaptcha_http_post($this->recaptcha_verify_server, $this->recaptcha_verify_path, -			array( -				'privatekey'	=> $config['recaptcha_privkey'], -				'remoteip'		=> $user->ip, -				'challenge'		=> $this->challenge, -				'response'		=> $this->response -			) + $extra_params -		); - -		$answers = explode("\n", $response[1]); +		$recaptcha = new \ReCaptcha\ReCaptcha($config['recaptcha_privkey']); +		$result = $recaptcha->verify($this->response, $user->ip); -		if (trim($answers[0]) === 'true') +		if ($result->isSuccess())  		{  			$this->solved = true;  			return false; @@ -311,22 +222,4 @@ class recaptcha extends captcha_abstract  			return $user->lang['RECAPTCHA_INCORRECT'];  		}  	} - -	/** -	* Encodes the given data into a query string format -	* @param $data - array of string elements to be encoded -	* @return string - encoded request -	*/ -	function _recaptcha_qsencode($data) -	{ -		$req = ''; -		foreach ($data as $key => $value) -		{ -			$req .= $key . '=' . urlencode(stripslashes($value)) . '&'; -		} - -		// Cut the last '&' -		$req = substr($req, 0, strlen($req) - 1); -		return $req; -	}  } diff --git a/phpBB/styles/prosilver/template/captcha_recaptcha.html b/phpBB/styles/prosilver/template/captcha_recaptcha.html index d3c0ea95d6..a123f543a8 100644 --- a/phpBB/styles/prosilver/template/captcha_recaptcha.html +++ b/phpBB/styles/prosilver/template/captcha_recaptcha.html @@ -12,24 +12,11 @@  	<dl>  	<dt><label>{L_CONFIRM_CODE}{L_COLON}</label><br /><span>{L_RECAPTCHA_EXPLAIN}</span></dt>  	<dd class="captcha"> -		<script> -		var RecaptchaOptions = { -			lang : '{LA_RECAPTCHA_LANG}', -			theme : 'clean', -			tabindex : <!-- IF $CAPTCHA_TAB_INDEX -->{$CAPTCHA_TAB_INDEX}<!-- ELSE -->10<!-- ENDIF --> -		}; -		</script> -		<script src="{RECAPTCHA_SERVER}/challenge?k={RECAPTCHA_PUBKEY}{RECAPTCHA_ERRORGET}"></script> -  		<noscript> -		<div> -			<object data="{RECAPTCHA_SERVER}/noscript?k={RECAPTCHA_PUBKEY}{RECAPTCHA_ERRORGET}" type="text/html" height="300" width="500"></object><br /> -			<textarea name="recaptcha_challenge_field" rows="3" cols="40"></textarea> -			<input type="hidden" name="recaptcha_response_field" value="manual_challenge" /> -		</div> +			<div>{L_RECAPTCHA_NOSCRIPT}</div>  		</noscript> - -		<a href="http://www.google.com/intl/{L_RECAPTCHA_LANG}/policies/" target="_blank" class="recaptcha-responsive" style="display: none"><img alt="" width="71" height="36" src="{RECAPTCHA_SERVER}/img/clean/logo.png"></a> +		<script src="{RECAPTCHA_SERVER}.js?hl={LA_RECAPTCHA_LANG}" async defer></script> +		<div class="g-recaptcha" data-sitekey="{RECAPTCHA_PUBKEY}" data-tabindex="<!-- IF $CAPTCHA_TAB_INDEX -->{$CAPTCHA_TAB_INDEX}<!-- ELSE -->10<!-- ENDIF -->"></div>  	</dd>  	</dl>  <!-- ELSE --> diff --git a/phpBB/styles/prosilver/theme/responsive.css b/phpBB/styles/prosilver/theme/responsive.css index 4f5a5db742..826972fdac 100644 --- a/phpBB/styles/prosilver/theme/responsive.css +++ b/phpBB/styles/prosilver/theme/responsive.css @@ -54,16 +54,6 @@  		width: 100%;  	} -	.recaptchatable tr td:last-child { -		display: none; -	} - -	.captcha-panel .recaptcha-responsive { -		display: inline-block !important; -		margin-top: 10px; -		vertical-align: middle; -	} -  	dl.details dt, dl.details dd {  		width: auto;  		float: none; | 
