add honeypot to signin page

darkwing · Apr 9, 2014 · e420503 · e420503
1 parent de2b2fe
commit e420503
Show file tree

Hide file tree

Showing 2 changed files with 28 additions and 9 deletions.
diff --git a/apps/users/templates/users/browserid_signin.html b/apps/users/templates/users/browserid_signin.html
@@ -13,3 +13,21 @@ <h1>{{ _('Sign In with Persona') }}</h1>
       </a>
     </p>
 </form>
+
+{# hidden form to measure bot submissions from this page #}
+<form class="hidden" method="post" action="{{ url('users.honeypot') }}">
+  {{ csrf() }}
+  <label for='wpName2'>Username</label>
+  <input id="wpName2" tabindex="1" size="20" placeholder="Enter your username" name="wpName" />
+
+  <label for='wpPassword2'>Password</label>
+  <input id="wpPassword2" tabindex="3" size="20" placeholder="Enter a password" type="password" name="wpPassword" />
+
+  <label for='wpRetype'>Confirm password</label>
+  <input id="wpRetype" tabindex="5" size="20" placeholder="Enter password again" type="password" name="wpRetype" />
+
+  <label for='wpEmail'>Email address (optional)</label>
+  <input id="wpEmail" tabindex="6" size="20" placeholder="Enter yourour email address" type="email" name="wpEmail" />
+
+  <input id="wpCreateaccount" tabindex="10" type="submit" value="Create your account" name="wpCreateaccount" />
+</form>
diff --git a/urls.py b/urls.py
@@ -6,14 +6,21 @@
 from django.views.i18n import javascript_catalog
 from django.views.decorators.cache import cache_page
 
-import jingo
 import badger
 
 
 admin.autodiscover()
 badger.autodiscover()
 
 
+# Handle 404 and 500 errors
+def _error_page(request, status):
+    """Render error pages with jinja2."""
+    return render(request, '%d.html' % status, status=status)
+handler403 = lambda r: _error_page(r, 403)
+handler404 = lambda r: _error_page(r, 404)
+handler500 = lambda r: _error_page(r, 500)
+
 urlpatterns = patterns('',
    # Home / landing pages:
     ('', include('landing.urls')),
@@ -71,19 +78,13 @@
     (r'^', include('tidings.urls')),
     (r'^humans.txt$', 'django.views.static.serve',
         {'document_root': settings.HUMANSTXT_ROOT, 'path': 'humans.txt'}),
+
+    url(r'^miel$', handler500, name='users.honeypot'),
 )
 
 if settings.DEBUG:
     urlpatterns += staticfiles_urlpatterns()
 
-# Handle 404 and 500 errors
-def _error_page(request, status):
-    """Render error pages with jinja2."""
-    return render(request, '%d.html' % status, status=status)
-handler403 = lambda r: _error_page(r, 403)
-handler404 = lambda r: _error_page(r, 404)
-handler500 = lambda r: _error_page(r, 500)
-
 if settings.SERVE_MEDIA:
     media_url = settings.MEDIA_URL.lstrip('/').rstrip('/')
     urlpatterns += patterns('',