This repository has been archived by the owner on Feb 12, 2022. It is now read-only.
Require Javascript during signup #35
Comments
Sign up for free
to subscribe to this conversation on GitHub.
Already have an account?
Sign in.
We have a lot of automated account creation abuse. Luckily, so far, the bots don't use Javascript so a simple way to block them would be to somehow require Javascript in the process. This could be challenging to be robust, but I'm sure there's some way to do it. One suggestion would be to have the CSRF token generated/decrypted in javascript.
The text was updated successfully, but these errors were encountered: