[PHPBB3-16611] reCaptcha spambot countermeasures should be disabled if allow_url_fopen is not enabled

XML

Word

Printable

Details

Type: Bug
Status: Closed (View Workflow)
Priority: Minor
Resolution: Closed
Affects Version/s: 3.3.1
Fix Version/s: None
Component/s: ACP
Labels:
- ReCaptcha
- allow_url_fopen

Description

For reCaptcha to work, the server must be configured to access URLs on the Internet. It doesn't appear this is tested as a requirement when installing phpBB and it's not a showstopper. But if it isn't available, the reCaptcha server can't be reached and its use will fail, leading to admins to change the countermeasure and to people complaining they can't register. So I suggest disabling it as an option if the setting is not enabled and/or putting up some sort of warning message that allow_url_fopen must be set to On if it is off.

Attachments

- Sort By Name
- Sort By Date
- Ascending
- Descending
- Thumbnails
- List
- Download All

recaptcha V3 settings.png
8 kB
03/Dec/20 9:08 PM

Issue Links

depends on

PHPBB3-16653 Recaptcha v3 - Request method is set even though that default isn't actually available

Closed

Activity

People

Assignee:: Unassigned

Reporter:: MarkDHamill

Votes:: 0 Vote for this issue

Watchers:: 3 Start watching this issue

Dates

Created:: 02/Oct/20 6:25 PM

Updated:: 22/Dec/20 3:28 AM

Resolved:: 21/Dec/20 7:42 PM