config :pleroma, Pleroma.Captcha,
enabled: false,
+ minutes_retained: 5,
method: Pleroma.Captcha.Kocaptcha
config :pleroma, Pleroma.Captcha.Kocaptcha, endpoint: "http://localhost:9093"
## Pleroma.Captcha
* `enabled`: Whether the captcha should be shown on registration
* `method`: The method/service to use for captcha
+* `minutes_retained`: The time in minutes for which the captcha is valid (stored in the cache)
### Pleroma.Captcha.Kocaptcha
Kocaptcha is a very simple captcha service with a single API endpoint,
if !enabled do
{:reply, %{type: :none}, state}
else
- {:reply, method().new(), state}
+ new_captcha = method().new()
+
+ minutes_retained = Pleroma.Config.get!([__MODULE__, :minutes_retained])
+ # Wait several minutes and if the captcha is still there, delete it
+ Process.send_after(self(), {:cleanup, new_captcha.token}, 1000 * 60 * minutes_retained)
+
+ {:reply, new_captcha, state}
end
end
{:reply, method().validate(token, captcha), state}
end
+ @doc false
+ def handle_info({:cleanup, token}, state) do
+ method().cleanup(token)
+
+ {:noreply, state}
+ end
+
defp method, do: Pleroma.Config.get!([__MODULE__, :method])
end
`true` if captcha is valid, `false` if not
"""
@callback validate(token :: String.t(), captcha :: String.t()) :: boolean
+
+ @doc """
+ This function is called periodically to clean up old captchas
+ """
+ @callback cleanup(token :: String.t()) :: :ok
end
[{^token, saved_md5}] <- :ets.lookup(@ets, token),
true <- :crypto.hash(:md5, captcha) |> Base.encode16() == String.upcase(saved_md5) do
# Clear the saved value
- :ets.delete(@ets, token)
+ cleanup(token)
true
else
_ -> false
end
end
+
+ @impl Service
+ def cleanup(token) do
+ # Only delete the entry if it exists in the table, because ets:delete raises an exception if it does not
+ case :ets.lookup(@ets, token) do
+ [{^token, _}] -> :ets.delete(@ets, token)
+ _ -> true
+ end
+ end
end
projects / akkoma / commitdiff