Skip to content

Latest commit

 

History

History
128 lines (93 loc) · 6.65 KB

README.md

File metadata and controls

128 lines (93 loc) · 6.65 KB

BuddyPress Security Check

  • Tested up to: WordPress 4.9.2
  • Stable version: 3.2.2
  • License: MIT

Combat spam registrations for a BuddyPress-powered site using Google's reCAPTCHA

Description

Important: Since version 2.0, this plugin now requires at least PHP 5.3. Please ensure you are running the latest available version of PHP on your server.

This plugin adds Google's reCAPTCHA to the BuddyPress registration page and WordPress login page to prevent bots from registering and keep your site free from spam registrations.

reCAPTCHA is "tough on bots, easy on humans": while it is increbianle effective on preventing bots from registering, most of the time all the user needs to do to verify themselves is simply check a box.

After installing this plugin, you will need to register your site with Google (requires a Google account) and enter the site key and secret key on the Settings > BuddyPress > Options admin menu. If you would prefer not to use Google's service, there is an alternative security check method also available; see below;

Prior to version 2.0, a less effective security check method was used where the user needed to answer simple math sum before registering. This method is still available, and can be turned on on the Settings > BuddyPress > Options menu.

You can learn more at the plugin's website, or on WordPress.org

Translations

Thanks to the awesome work of the following translators, this plugin can be used in these languages:

If you have a translation to contribute, please sent it through to me by email or on GitHub.

Installation

This plugin extends the functionality of BuddyPress, which must be installed for this plugin to work

  1. Upload the bp-security-check directory to /wp-content/plugins/
  2. Activate the plugin through the Plugins > Installed Plugins menu in WordPress
  3. Visit the Settings > BuddyPress > Options admin menu
  4. If you want to use the more secure reCAPTCHA mode, you will need to register your site with Google and enter the site and secret keys. Otherwise, choose the 'legacy math method' to turn on security checks.

Changelog

3.2.2 (2018-01-26)

  • Fixed issue preventing reCAPTCHA script from sometimes not loading on the registration page [#]
  • Fixed: Ensure that the login check is only validated on the login page [#]

3.2.1 (2017-04-19)

3.2.0 (2017-02-18)

  • Improved styling of reCAPTCHA on login and lost password pages
  • Added additional reCAPTCHA options for a dark theme and audio captcha

3.1.0 (2017-02-16)

  • Move registration security question to just above submit button

3.0.0 (2017-02-16)

  • Added optional security checks to login and lost password forms

2.1.2 (2016-08-07)

2.1.1 (2016-05-12)

  • Fixed: Centre-align math check field [#]
  • Fixed: Only load reCAPTCHA script on registration page [#]

2.1.0

  • Fixed: Don't strip special characters from input fields
  • Added: Load reCAPTCHA in the same language WordPress is in
  • Fixed: Translations not loading

2.0.0

1.4.0

1.3.2

  • Added Spanish translation by Renato Alves

1.3.1

  • Fixed incorrect term in Danish translation (Sikkerhedsspørgsmål is a single word) [#]

1.3.0

  • Added Danish translation by Andreas Bjørn Hassing Nielsen
  • Added Italian translation by Nicole Curioni
  • Made transient names unique to prevent race conditions

1.2.0

  • Added Hungarian translation by Laszlo Espadas
  • Added Brazilian Portuguese translation by Renato Alves
  • Saved sum information in database instead of hidden fields in an attempt to prevent bots
  • Code refactoring

1.1.0.1

  • Fixed bug preventing the plugin from loading

1.1.0

  • Updated to support translations
  • Use mt_rand() function instead of rand()
  • Add code documentation
  • Use proper class methods, not completely static
  • Ensure that the sum never equals 0

1.0.1

  • Remove buggy multiplication and division functionality

1.0.0

  • Stable version release