- Issue created by @L_VanDamme
- 🇮🇳India abhisekmazumdar India
I want to work on this.
- The boilerplate or template for the recipe can be: https://git.drupalcode.org/project/drupal_cms/-/blob/0.x/drupal_cms_blog....
Right? - How do we want to spam protection?
- Do we use any contributed modules, such as CAPTCHA or Honeypot?
- Or we use the core's content moderation to add a state to approve comments.
- The boilerplate or template for the recipe can be: https://git.drupalcode.org/project/drupal_cms/-/blob/0.x/drupal_cms_blog....
- 🇩🇪Germany jurgenhaas Gottmadingen
@abhisekmazumdar regarding spam protection, there is the recipe
drupal_cms_anti_spamin the repository which currently contains honeypot and antibot. And there is the issue 📌 Add the friendlycaptcha module Active which proposes to add the friendlycaptcha module. - 🇺🇸United States phenaproxima Massachusetts
+1 on using
drupal_cms_anti_spam. We should also take advantage of core'scomment_baserecipe, since it provides useful stuff for setting up comments. You can use core'sarticle_commentsrecipe as a template for how to build a blog comment recipe. - 🇦🇺Australia pameeela
Just a heads up, I'm not sure this should be worked on without guidance from @l_vandamme from the blog track. Just because it will avoid unnecessary work and re-work.
- 🇧🇪Belgium L_VanDamme
+1 on using drupal_cms_anti_spam and article_comments as guideline.
Feel free to get started on this keeping those 2 things in mind, try to keep it simple to start to prevent too much refactoring later on.
- 🇮🇳India abhisekmazumdar India
Let me know how we feel about this. This is up for review now.
- 🇮🇳India abhisekmazumdar India
Oh yes! We should consider adding default blog content that includes a comment?
- 🇺🇸United States phenaproxima Massachusetts
Overall I think this looks pretty good. There are some minor items of cleanup that should be done but it looks like it will do what's advertised on the tin.
- 🇦🇺Australia pameeela
After talking to @l_vandamme I think we need to postpone this, because (IMO) we can't ship a comment recipe without some kind of approval process, and we can't add that until we have content moderation. Since that is still up in the air, I think it's best to wait on it.
- 🇺🇸United States phenaproxima Massachusetts
Additionally, how do folks feel about bundling Friendly CAPTCHA with the blog comment capabilities, as part of this issue's scope? A blog comment form seems like a natural place to have a CAPTCHA for anonymous users, without us needing to have a whole extra "enhanced anti-spam" recipe.
That would allow us to close 📌 Add the friendlycaptcha module Active as a duplicate.
- 🇩🇪Germany jurgenhaas Gottmadingen
To clarify captcha: the proposed solution does NOT introduce a traditional captcha which requires a third party integration. It's completely local and only requires the user to click the widget. No puzzle, no extra burden, no privacy concern. And it is efficient in preventing spam.
