Reputation: 31
Is it possible to limit submit form of visitors through ->ip() in Laravel
Block or limit visitor's(just viewing a website, no user registration) multiple form submission in Laravel by getting client IP and saving it in database then use it to detect spamming visitors. is that possible?
Upvotes: 0
Views: 738
Answers (1)
Reputation: 277
I wouldn't recommend using a visitors IP to prevent future requests to your site via forms. IP's are very rarely static for the average user. If the user knows what they're doing, they'd just have to restart their internet connection and their ISP would give them a different IP address. Additionally, they could just proxy their requests utilising IP rotation to bypass your "security".
If you're trying to prevent bots from submitting forms. A good method is to implement a hidden input field with no value. If the form is submitted and the input field has been populated then you know it's a bot. It's not the most reliable method as the bot has to be a dumb bot.
The only truly "reliable" method I can think of is Client-Side > Server-Side validation such as Google ReCaptcha.
Ofcourse the alternate method is just accept that your form will get spammed and find a way to handle the spam after it's been submitted.
Upvotes: 1
Related Questions
- Only allow certain ip addresses to register a user in Laravel 5.2
- IP Address Validation in Controller in Laravel 5
- Limit login attempts in Laravel 5.7
- Laravel API exclude 1 ip address from rate limiting
- Laravel 5.8 - Rate Limiting per IP
- Laravel 5 - RateLimit per IP address
- Limit login attempts in Laravel 5.2
- Restricting access by IP on Nginx with Laravel
- how to restrict form submission from certain url - Laravel
- How to make sure about the ip of the visitor?