Mercurial > prosody-modules
view mod_captcha_registration/README.markdown @ 5407:149634647b48
mod_http_oauth2: Don't issue client_secret when not using authentication
This is pretty much only for implicit flow, which is considered insecure
anyway, so this is of limited value. If we delete all the implicit flow
code, this could be reverted.
| author | Kim Alvefur <zash@zash.se> |
|---|---|
| date | Tue, 02 May 2023 16:39:32 +0200 |
| parents | 8de50be756e5 |
| children |
line wrap: on
line source
--- labels: - 'Stage-Beta' summary: provides captcha protection for registration form ... Introduction ============ Prosody-captcha is a little modification of prosody's "mod\_register.lua" module that provides captcha protection for registration form. Installation ============ First of all you should build and install lua bindings for libgd — [lua-gd](https://github.com/ittner/lua-gd/). Then clone repsository lua-captcha: $ git clone https://github.com/mrDoctorWho/lua-captcha install it: $ make install Configuration ============= After that you would configure prosody. This module requires from you 4 fields, you should add this into your VirtualHost entry. captcha_config = { dir = "/tmp"; -- Directory used to storage captcha images. Please make sure prosody user allowed to write there. timeout = 60; -- Timeout when captcha will expire web_path = "challenge"; -- Web path used to separate main prosody site from itself modules. font = "/usr/lib/prosody/FiraSans-Regular.ttf" -- Font used for captcha text } You can run script "install.lua" to install this or instead of that while prosody developers didn't accepted "dataforms" changes you should replace standard prosody "dataforms.lua" located in ubuntu in /usr/lib/prosody/util by another one from this repository. You should do the same thing with "mod\_register.lua" located in ubuntu in /usr/lib/prosody/modules. After this all you can try to register on your server and see the captcha. TODO ==== - Maybe use recaptcha instead of libgd.