python - Designing a Django voting system without using accounts -


we considering implementing voting system (up, down votes) without using type of credentials--no app accounts nor openid or of sort.

concerns in order:

  1. prevent robot votes
  2. allow individuals under nat vote without overriding/invalidating else's vote
  3. preventing (or, @ least making difficult for) users vote more once

my questions:

  1. if you've implemented similar, tips?
  2. any concerns perhaps i'm overlooking?
  3. any tools should perhaps into?

if have questions in forming answer of these questions, please ask in comments!

to address concerns:

1: simple captcha trick, if google "django captcha", there bunch of plugins. i've never used them myself, can't best.

2 & 3: using django's sessions addresses both of these problems - save cookie on user's browser indicate person has voted. allows people vote via different browsers or clearing cache, depends on how important people not allowed vote twice. imagine small percentage of people think try clearing cache, though. far know other way limit users without sign-in process test ip addresses, violate second criteria since people on same network show having same ip address.

if don't want multiple votes simple deleting browser cookies, allow facebook or twitter login - django-socialregistration plugin pretty documented , straightforward implement.

hope helps!


Comments

Post a Comment

Popular posts from this blog

apache - Add omitted ? to URLs -

i working on website cms reads page name of query string, e.g. http://exmaple.com/?pagename . trying create rewrite rule rewrite ? . so, user types in /pagename , taken /?pagename try this: rewriteengine on rewritecond %{request_filename} !-d rewritecond %{request_filename} !-f rewriterule ^/?(.*) index.php?$1 [l]
Read more

redirect - bbPress Forum - rewrite to wwww.mysite prohibits login -

i using bbpress installation without wordpress integration. the redirect of rewriteengine @ forum site works: rewriteengine on rewritecond %{http_host} ^forum.mysite.com$ rewriterule (.*)$ http://www.forum.mysite.com/$1 [r=301,l] the problem login pppress. bbpress login not recognize: http://www.forum.mysite/bb-login.php . it redirects to: http://forum.mysite.com/bb-login.php . i tried permalink settings none , name based, same issue. does uses redirect in bbpress or how can eliminate "double" content , redirect permanently www.? i redirected www.forum.mysite.com forum.mysite.com , achieved eliminate "double" content.
Read more

php - How can I stop spam on my custom forum/blog? -

so have custom built forum & blog system of late has been dealing lot of spam. if wordpress use akismet, if different common platform i'm sure i'd find plugin. there kind of static class can download this? using php. i'd still go akismet, if it. uses outside of wordpress, may have pay fee it, depending on use -- check terms , conditions -- it's option , easy implement in php using api. use api key wordpress. com account access. basically, grab whichever php client library takes fancy -- use alex potsides' php5 library -- plug in key, , it's handful of lines of code. here's bare bones of validation straight 1 of live sites: ... if ($akismet) { $akismet->setcommentauthor($name); $akismet->setcommentauthoremail($session->userinfo["email"]); $akismet->setcommentauthorurl(""); $akismet->setcommentcontent($sentence);...
Read more