Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

[coepi-backend-aws]: Implement reCaptcha verification on the server side #20

Open
ramnanib2 opened this issue Apr 22, 2020 · 0 comments

Comments

@ramnanib2
Copy link
Collaborator

ramnanib2 commented Apr 22, 2020

Currently, the apps send POST request to the back-end without any authentication, for privacy-preserving reasons. Performing server-side reCaptcha verification would prevent abuse, DOS attacks and fake report generation. We should also consider privacy-pass (https://www.hcaptcha.com/privacy-pass). This requires changes on the client side as well. So recommend doing this in v5

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Labels
None yet
Projects
None yet
Development

No branches or pull requests

1 participant