fixed an error in situations with multiple users on the same ip

b667ff78 · Dominik Hebeler · bc05d9d9 · b667ff78 · b667ff78
Commit b667ff78 authored Jun 22, 2020 by Dominik Hebeler
--- a/app/Http/Controllers/HumanVerification.php
+++ b/app/Http/Controllers/HumanVerification.php
@@ -113,7 +113,6 @@ class HumanVerification extends Controller
        }
        $userList[$user["uid"]] = $user;
        Cache::put(HumanVerification::PREFIX . "." . $user["id"], $userList, now()->addWeeks(2));
-        dd($user);
    }

    private static function deleteUser($user)

--- a/app/Http/Middleware/HumanVerification.php
+++ b/app/Http/Middleware/HumanVerification.php
@@ -66,20 +66,21 @@ class HumanVerification
            } else {
                $user = $users[$uid];
            }
+
            # Lock out everyone in a Bot network
            # Find out how many requests this IP has made
            $sum = 0;
            // Defines if this is the only user using that IP Adress
            $alone = true;
-            foreach ($users as $uid => $userTmp) {
+            foreach ($users as $uidTmp => $userTmp) {
                if (!$userTmp["whitelist"]) {
                    $sum += $userTmp["unusedResultPages"];
-                    if ($userTmp["uid"] != $uid) {
+                    if ($userTmp["uid"] !== $uid) {
                        $alone = false;
                    }
                }
            }
-
+            
            # A lot of automated requests are from websites that redirect users to our result page.
            # We will detect those requests and put a captcha
            $referer = URL::previous();
@@ -97,7 +98,7 @@ class HumanVerification
            if ((!$alone && $sum >= 50 && !$user["whitelist"]) || $refererLock) {
                $user["locked"] = true;
            }
-
+            
            # If the user is locked we will force a Captcha validation
            if ($user["locked"]) {
                $captcha = Captcha::create("default", true);