elcodedocle/captchalot
Composer 安装命令:
composer create-project elcodedocle/captchalot
包简介
Captcha image generator/validator RESTful web service
关键字:
README 文档
README
A dictionary/symbol based captcha generator and validator RESTful service
Copyright (C) 2014 Gael Abadin
License: MIT Expat
Motivation
I wanted to implement a simple, easy to use, scalable and independent RESTful captcha service on my web app.
Requirements
- PHP >= 5.3 with PDO support
- MySQL / MariaDB, Postgres; or a PDO supported DB
Deployment
- You can install and deploy captchalot using composer:
php composer.phar create-project -s "beta" elcodedocle/captchalot
-
You need to edit
config.php.distin order to provide basic database connection parameters; then save it asconfig.php. -
Here is a basic client written in javascript to AJAX request/refresh/validate a captcha:
var captchalot = { 'validate' : function(opts){ let XHR = new XMLHttpRequest(), responseJSON, parameters, options = (typeof (opts) === 'object')?opts:{ uuid: '', magicword: '', width: 350, height: 50, callbackSuccess: function(responseJSON){ alert('success!'); console.log(responseJSON); }, callbackError: function(responseJSON){ alert('error!'); console.log(responseJSON); } }; XHR.addEventListener("load", function(event) { try { responseJSON = JSON.parse(event.target.responseText); if ( !('data' in responseJSON) || !('validationResult' in responseJSON.data) || responseJSON.data['validationResult'] !== 'ERROR' && responseJSON.data['validationResult'] !== 'PENDING' && responseJSON.data['validationResult'] !== 'OK' ){ console.log( "Cannot understand response from server:\n" + responseJSON ); options.callbackError(responseJSON); } else { if ( responseJSON.data['validationResult'] === 'OK' ){ options.callbackSuccess(responseJSON); } else { options.callbackError(responseJSON); } } } catch (e) { console.error("Parsing error:", e); console.log(event.target.responseText); } }); XHR.addEventListener("error", function(event) { alert('Something went wrong ¯\\(º_o)/¯'); console.log(event.target.responseText); }); XHR.open("POST", 'validate.php', true); XHR.setRequestHeader( 'Content-type', 'application/x-www-form-urlencoded' ); parameters = 'uuid=' + options.uuid + '&magicword=' + encodeURIComponent(options.magicword) + '&width='+options.width + '&height='+options.height; XHR.send(parameters); } };
- And here is the server-side PHP controller for this client:
<?php require_once __DIR__ . '/vendor/autoload.php'; use info\synapp\tools\captcha\Session; use info\synapp\tools\uuid\UUID; use info\synapp\tools\captcha\CaptchaWord; use info\synapp\tools\captcha\CaptchaImage; use info\synapp\tools\captcha\Captcha; session_start(); ob_start(); $VALIDATION_RESULT_PENDING = 'PENDING'; $VALIDATION_RESULT_OK = 'OK'; $VALIDATION_RESULT_ERROR = 'ERROR'; $session = new Session(session_id()); $session->removeExpiredCaptchas(); $uuidGenerator = new UUID(); $captchaWord = new CaptchaWord(); $options=array('options'=>array('default'=>420, 'min_range'=>70, 'max_range'=>4200)); $width=filter_input(INPUT_POST, 'width', FILTER_VALIDATE_INT, $options); $options=array('options'=>array('default'=>60, 'min_range'=>10, 'max_range'=>600)); $height=filter_input(INPUT_POST, 'height', FILTER_VALIDATE_INT, $options); $captchaImage = new CaptchaImage($width,$height); $captcha = new Captcha($session,null,$uuidGenerator,$captchaWord,$captchaImage); $output = array( 'data' => array( 'validationResult' => $VALIDATION_RESULT_PENDING, ), ); if ( isset($_REQUEST['uuid']) && $_REQUEST['uuid']!=='' && isset($_REQUEST['magicword']) && $_REQUEST['magicword']!=='' ){ if($captcha->validate($_REQUEST['uuid'],$_REQUEST['magicword'])){ $output['data']['validationResult'] = $VALIDATION_RESULT_OK; } else { $output['data']['validationResult'] = $VALIDATION_RESULT_ERROR; } } if($output['data']['validationResult']!==$VALIDATION_RESULT_OK){ $output['data']=array_merge( $output['data'], $captcha->getCaptchaUuidAndImgBase64SrcAttrVal() ); } header('Content-type: application/json'); header('Expires: Sun, 1 Jan 2000 12:00:00 GMT'); header('Last-Modified: '.gmdate("D, d M Y H:i:s").'GMT'); header('Cache-Control: no-store, no-cache, must-revalidate'); header('Cache-Control: post-check=0, pre-check=0', false); header('Pragma: no-cache'); $jsonOutput = json_encode($output); echo $jsonOutput; ob_end_flush();
- Check the code (or generate the docs using phpdocumentor) if you want more info on tweaks and supported config/input parameters and values.
Web app
You can test the code above on the provided web app (validate.php, captchalot.js and index.php) you can test
by giving those files public execution/access permissions on your web server, then pointing your browser to index.php
Here is the demo: https://synapp.info/tools/captchalot
Service pitfalls
The web app was designed in the simplest possible way for embedding on a couple of quite low load services that very seldom require captcha actions. That means it wasn't designed with efficiency or performance in mind, although scalability was considered (if your server starts to choke just move the captcha service to AWS or something like that and start throwing on-demand instances at the problem ;-)).
Also, it doesn't implement accessibility features such as an audio reader for blind or short sighted people (sorry :-()
Acks
Some anonymous internet citizen for posting a blog entry years ago (which I wasn't able to find back) showing how to use imagepng for creating an image and drawing lines and adding text to it Peter Norvig, publisher of the compilation of the 1/3 million most frequent English words on the natural language corpus data from where the word list used by the default dictionary source for this project has been derived.
And that's all for now, folks. If you like this project, feel free to buy me a beer ;-)
bitcoin: 1G4d1Ak4aRXqN8SFqiiiGMFSaffxFbu5EX
dogecoin: D8axrRWBZA686kEey1rCXXXamjGg9f6A6s
paypal: http://goo.gl/Q2kRFG
Have fun.-
elcodedocle/captchalot 适用场景与选型建议
elcodedocle/captchalot 是一款 基于 PHP 开发的 Composer 扩展包,目前已累计 5 次下载、GitHub Stars 达 1, 最近一次更新时间为 2014 年 10 月 26 日, 在 PHP 生态内属于活跃度较高的组件。
它主要适用于以下技术方向: 「captcha」 「anti spam」 「Visual captcha」 「Not a robot」 「Turing certified」 「Service abuse protection」 等业务场景。在实际项目中,围绕这些方向常见需要落地的问题包括:接口对接、性能调优、并发安全、与既有框架(Laravel / ThinkPHP / Yii / Webman 等)的兼容适配,以及生产环境的日志埋点与稳定性保障。
我们在过去多个企业项目中使用过 elcodedocle/captchalot 或与其功能相近的方案,如果你在选型或落地过程中遇到问题,例如 版本兼容、二次改造、私有化封装、与内部系统对接、生产 BUG 排查,欢迎联系我们协助评估。
基于 elcodedocle/captchalot 在你已有业务上做功能扩展、字段裁剪、UI 适配、与内部账号 / 权限 / 日志系统的深度对接。
线上偶发问题、内存泄漏、慢查询、并发异常等排查修复;针对高流量场景做缓存、队列、索引层面的调优。
承接完整的项目从需求 → 设计 → 开发 → 上线 → 长期运维;也可按月提供技术保姆服务。
与 elcodedocle/captchalot 相关的其它包
同方向 / 同关键字的高下载量 PHP Composer 包推荐,方便对比选型:
Simple captcha generator
reCAPTCHA library
Captcha.eu - The intelligent GDPR-compliant non-intrusive bot protection for your TYPO3 CMS Forms. Invisible/Non-interruptive - No riddles or puzzle solving neccessary!
Client library for reCAPTCHA with proxy support, a free service that protects websites from spam and abuse.
Diese Contao 4 Erweiterung stellt Google reCAPTCHA V2 in Form eines neuen Formularfeldes im Formulargenerator bereit. This extension provides Google reCAPTCHA V2 in the form of a new form field in the form generator of Contao Open Source CMS.
Two Captcha
统计信息
- 总下载量: 5
- 月度下载量: 0
- 日度下载量: 0
- 收藏数: 2
- 点击次数: 21
- 依赖项目数: 0
- 推荐数: 0
其他信息
- 授权协议: MIT
- 更新时间: 2014-10-26