From 5d6d21f690e283682b9be74a8f00c501b148856f Mon Sep 17 00:00:00 2001
From: Gareth Rees <gareth@mysociety.org>
Date: Wed, 26 Mar 2014 17:00:20 +0000
Subject: Add honeypot spam protection to contact form

Intercepts the request and redirects to the homepage if the comment
field is filled in on the contact form.
---
 app/controllers/help_controller.rb | 9 +++++++++
 1 file changed, 9 insertions(+)

(limited to 'app/controllers/help_controller.rb')

diff --git a/app/controllers/help_controller.rb b/app/controllers/help_controller.rb
index 9959df6d8..9033198a0 100644
--- a/app/controllers/help_controller.rb
+++ b/app/controllers/help_controller.rb
@@ -9,6 +9,7 @@ class HelpController < ApplicationController
     # we don't even have a control subroutine for most help pages, just see their templates
 
     before_filter :long_cache
+    before_filter :catch_spam, :only => [:contact]
 
     def unhappy
         @info_request = nil
@@ -69,4 +70,12 @@ class HelpController < ApplicationController
 
     end
 
+    private
+
+    def catch_spam
+        if request.post? && !params[:contact][:comment].empty?
+            redirect_to frontpage_url
+        end
+    end
+
 end
-- 
cgit v1.2.3