markocupic / contao-altcha-antispam
ALTCHA antispam form widget for Contao CMS
Installs: 1 462
Dependents: 0
Suggesters: 0
Security: 0
Stars: 4
Watchers: 1
Forks: 1
Open Issues: 0
Type:contao-bundle
Requires
- php: ^8.1
- contao/core-bundle: ^4.13 || ^5.0
- markocupic/contao-twig-assets: ^1.0
- symfony/config: ^5.4 || ^6.4 || ^7.0
- symfony/dependency-injection: ^5.4 || ^6.4 || ^7.0
- symfony/framework-bundle: ^5.4 || ^6.4 || ^7.0
- symfony/http-foundation: ^5.4 || ^6.4 || ^7.0
- symfony/http-kernel: ^5.4 || ^6.4 || ^7.0
- symfony/routing: ^5.4 || ^6.4 || ^7.0
- symfony/security-core: ^5.4 || ^6.4 || ^7.0
- symfony/translation-contracts: ^1.0 || ^2.0 || ^3.0
Requires (Dev)
- contao/manager-plugin: ^2.12
- terminal42/contao-mp_forms: ^5.0
README
Contao Altcha Antispam
This is a Contao CMS implementation of Altcha. The extension provides a front end form field for the Contao form generator.
![]() |
![]() |
![]() |
---|
ALTCHA uses a proof-of-work (POW) mechanism to protect your forms from spam and abuse. Unlike other solutions, ALTCHA is self-hosted, does not use cookies nor fingerprinting, does not track users, and is fully compliant with GDPR.
Installation
You can install the package via composer:
composer require markocupic/contao-altcha-antispam
Afterwards run the database migration task:
php vendor/bin/contao-console contao:migrate
Configuration and usage
Important! When installed, you have to set the hmac_key
in your config/config.yaml
.
markocupic_contao_altcha_antispam: hmac_key: 'sdfsadZUI#!@sfdssf321231' # required algorithm: 'SHA-256' # optional range_min: 10000 # optional range_max: 100000 # optional challenge_expiry: 3600 # optional
key | default value | info | Required |
---|---|---|---|
hmac_key |
'' |
Set a kind of a secret key/salt, e.g. sdfsadZUI#!@sfdssf321231 |
yes |
algorithm |
SHA-256 |
Choose between SHA-256 , SHA-512 or SHA-384 |
no |
range_min |
10000 |
Choose a higher value to increase the complexity/duration. A minimum value of the random number of at least several thousand as a "minimum required complexity" is recomended. More | no |
range_max |
100000 |
Choose a higher value to increase the complexity/duration. The maximum value of 100,000 is a good start for most systems. More | no |
challenge_expiry |
3600 |
Choose an expiration time, so that there is not an infinite amount of time to solve the challenge. | no |
Endpoint (route)
Out of the box, the extension will use the /_contao_altcha_challenge
endpoint to get the challenges.