summaryrefslogtreecommitdiff
path: root/extensions/FunnyDot.php
blob: db62b148d4de7349494f1241f5e65378d9255b0c (plain)
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
<?php

$wgHooks['EditPage::showEditForm:fields'][] = 'FunnyDot::addAntiSpamCheck';
$wgHooks['EditFilter'][] = 'FunnyDot::checkAntiSpamHash';

$wgExtensionCredits['other'][] = array(
    'name' => 'FunnyDot',
    'description' => 'Schutz vor Spam-Bots',
    'author' => 'Pierre Schmitz',
    'url' => 'http://www.archlinux.de',
);

class FunnyDot {

public static function addAntiSpamCheck($editpage, $outputpage)
	{
	global $wgAntiSpamHash, $wgUser;

	if (!$wgUser->isLoggedIn())
		{
		$outputpage->addHTML('<div style="background-image:url(FunnyDotImage.php);background-repeat:no-repeat;visibility:hidden;width:1px;height:1px;">&nbsp;</div>');

		$time = time();
		$hash = sha1($time.$wgAntiSpamHash);
		setCookie('AlternateAntiSpamTime', $time);
		setCookie('AlternateAntiSpamHashTail', substr($hash, 4));

		$outputpage->addHTML('<div style="display:none;"><label for="AlternateAntiSpamHashHeadField">Sicherheitscode bestätigen: <strong>'.substr($hash, 0, 4).'</strong></label>&nbsp;<input id="AlternateAntiSpamHashHeadField" type="text" name="AlternateAntiSpamHashHead" size="4" value="" /></div>');
		}

	return true;
	}

public static function checkAntiSpamHash($editpage, $text, $section, $error)
	{
	global $wgAntiSpamHash, $wgAntiSpamTimeout, $wgAntiSpamWait, $wgUser;

	if (!$wgUser->isLoggedIn())
		{
		if (!empty($_COOKIE['AntiSpamTime']) && !empty($_COOKIE['AntiSpamHash']))
			{
			$time = $_COOKIE['AntiSpamTime'];
			$hash = $_COOKIE['AntiSpamHash'];
			}
		elseif (!empty($_COOKIE['AlternateAntiSpamTime']) && !empty($_COOKIE['AlternateAntiSpamHashTail']) && !empty($_POST['AlternateAntiSpamHashHead']))
			{
			$time = $_COOKIE['AlternateAntiSpamTime'];
			$hash = $_POST['AlternateAntiSpamHashHead'].$_COOKIE['AlternateAntiSpamHashTail'];
			}
		else
			{
			sleep($wgAntiSpamWait);
			$error = '<div class="mw-warning error">Ungültige Formulardaten empfangen. Stelle sicher, daß Cookies für diese Domain angenommen werden.</div>';
			return true;
			}

		$now = time();

		if ($hash != sha1($time.$wgAntiSpamHash))
			{
			sleep($wgAntiSpamWait);
			$error = '<div class="mw-warning error">Fehlerhafte Formulardaten empfangen. Überprüfe den Sicherheitscode!</div>';
			}
		elseif ($now - $time > $wgAntiSpamTimeout)
			{
			$error = '<div class="mw-warning error">Deine Zeit ist abgelaufen. Schicke das Formular bitte erneut ab, und zwar innherlab der nächsten '.$wgAntiSpamTimeout.' Sekunden.</div>';
			}
		elseif ($now - $time < $wgAntiSpamWait)
			{
			sleep($wgAntiSpamWait);
			$error = '<div class="mw-warning error">Du warst zu schnell. Schicke das Formular bitte erneut ab. Laße Dir diesmal mindestens '.$wgAntiSpamWait.' Sekunden Zeit.</div>';
			}
		}

	return true;
	}

}

?>