From bfc212cc096fb28e7b35b0fe352d05fce2bac856 Mon Sep 17 00:00:00 2001
From: Kijin Sung <kijin@kijinsung.com>
Date: Thu, 26 May 2016 22:52:19 +0900
Subject: [PATCH] Add reCAPTCHA addon for signup page

---
 addons/recaptcha/conf/info.xml                | 47 ++++++++++++++++
 addons/recaptcha/lang/en.php                  |  3 ++
 addons/recaptcha/lang/ko.php                  |  3 ++
 addons/recaptcha/recaptcha.addon.php          | 53 +++++++++++++++++++
 classes/module/ModuleHandler.class.php        |  2 +-
 modules/member/skins/default/signup_form.html |  2 +-
 6 files changed, 108 insertions(+), 2 deletions(-)
 create mode 100644 addons/recaptcha/conf/info.xml
 create mode 100644 addons/recaptcha/lang/en.php
 create mode 100644 addons/recaptcha/lang/ko.php
 create mode 100644 addons/recaptcha/recaptcha.addon.php

diff --git a/addons/recaptcha/conf/info.xml b/addons/recaptcha/conf/info.xml
new file mode 100644
index 000000000..06cc0b7e2
--- /dev/null
+++ b/addons/recaptcha/conf/info.xml
@@ -0,0 +1,47 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<addon version="0.2">
+    <title xml:lang="ko">reCAPTCHA</title>
+    <title xml:lang="en">reCAPTCHA</title>
+    <description xml:lang="ko">구글 reCAPTCHA 서비스를 사용하여 자동 가입 스팸을 방지합니다.</description>
+    <description xml:lang="en">Prevent automated signups and spam with Google's reCAPTCHA service.</description>
+    <version>1.0.0</version>
+    <date>2016-05-27</date>
+    <author email_address="kijin@kijinsung.com" link="https://github.com/kijin">
+        <name xml:lang="ko">Kijin Sung</name>
+        <name xml:lang="en">Kijin Sung</name>
+    </author>
+    <extra_vars>
+        <var name="site_key" type="text">
+            <title xml:lang="ko">Site Key</title>
+            <title xml:lang="en">Site Key</title>
+        </var>
+        <var name="secret_key" type="text">
+            <title xml:lang="ko">Secret Key</title>
+            <title xml:lang="en">Secret Key</title>
+        </var>
+        <var name="theme" type="select">
+            <title xml:lang="ko">테마</title>
+            <title xml:lang="en">Theme</title>
+            <options value="light">
+                <title xml:lang="ko">밝은 테마</title>
+                <title xml:lang="en">Light</title>
+            </options>
+            <options value="dark">
+                <title xml:lang="ko">어두운 테마</title>
+                <title xml:lang="en">Dark</title>
+            </options>
+        </var>
+        <var name="size" type="select">
+            <title xml:lang="ko">크기</title>
+            <title xml:lang="en">Size</title>
+            <options value="normal">
+                <title xml:lang="ko">보통</title>
+                <title xml:lang="en">Normal</title>
+            </options>
+            <options value="compact">
+                <title xml:lang="ko">작게</title>
+                <title xml:lang="en">Compact</title>
+            </options>
+        </var>
+    </extra_vars>
+</addon>
diff --git a/addons/recaptcha/lang/en.php b/addons/recaptcha/lang/en.php
new file mode 100644
index 000000000..5546c69fc
--- /dev/null
+++ b/addons/recaptcha/lang/en.php
@@ -0,0 +1,3 @@
+<?php
+$lang->msg_recaptcha_server_error = 'An error occurred while verifying your reCAPTCHA response.';
+$lang->msg_recaptcha_invalid_response = 'Please check reCAPTCHA.';
diff --git a/addons/recaptcha/lang/ko.php b/addons/recaptcha/lang/ko.php
new file mode 100644
index 000000000..510d21bd4
--- /dev/null
+++ b/addons/recaptcha/lang/ko.php
@@ -0,0 +1,3 @@
+<?php
+$lang->msg_recaptcha_server_error = 'reCAPTCHA 스팸방지 서버와 통신하는 도중 오류가 발생했습니다.';
+$lang->msg_recaptcha_invalid_response = 'reCAPTCHA 스팸방지 기능을 체크해 주십시오.';
diff --git a/addons/recaptcha/recaptcha.addon.php b/addons/recaptcha/recaptcha.addon.php
new file mode 100644
index 000000000..b80569e17
--- /dev/null
+++ b/addons/recaptcha/recaptcha.addon.php
@@ -0,0 +1,53 @@
+<?php
+
+if (!defined('RX_BASEDIR') || !$addon_info->site_key || !$addon_info->secret_key || $called_position !== 'before_module_init')
+{
+	return;
+}
+
+if (preg_match('/^dispMemberSignUp/i', Context::get('act')))
+{
+	getController('module')->addTriggerFunction('moduleObject.proc', 'after', function() use($addon_info) {
+		$html = '<div class="g-recaptcha" data-sitekey="%s" data-theme="%s" data-size="%s"></div>';
+		$html = sprintf($html, escape($addon_info->site_key), $addon_info->theme ?: 'light', $addon_info->size ?: 'normal');
+		Context::addHtmlHeader('<script src="https://www.google.com/recaptcha/api.js" async defer></script>');
+		Context::getInstance()->formTags[] = (object)array(
+			'name' => 'recaptcha',
+			'title' => 'reCAPTCHA',
+			'inputTag' => $html,
+		);
+	});
+}
+
+if (preg_match('/^procMemberInsert/i', Context::get('act')))
+{
+	getController('module')->addTriggerFunction('moduleObject.proc', 'before', function() use($addon_info) {
+		$response = Context::get('g-recaptcha-response');
+		if (!$response)
+		{
+			return new Object(-1, lang('recaptcha.msg_recaptcha_invalid_response'));
+		}
+		
+		$verify_url = 'https://www.google.com/recaptcha/api/siteverify';
+		$verify_request = \Requests::post($recaptcha_verify_url, array(), array(
+			'secret' => $addon_info->secret_key,
+			'response' => $recaptcha_response,
+			'remoteip' => \RX_CLIENT_IP,
+		));
+		
+		$verify = @json_decode($verify_request->body, true);
+		var_dump($verify);exit;
+		if ($verify && isset($verify['error-codes']) && in_array('invalid-input-response', $verify['error-codes']))
+		{
+			return new Object(-1, lang('recaptcha.msg_recaptcha_invalid_response'));
+		}
+		elseif (!$verify || !$verify['success'] || (isset($verify['error-codes']) && $verify['error-codes']))
+		{
+			return new Object(-1, lang('recaptcha.msg_recaptcha_server_error'));
+		}
+		else
+		{
+			return true;
+		}
+	});
+}
diff --git a/classes/module/ModuleHandler.class.php b/classes/module/ModuleHandler.class.php
index 92ca678d5..fbf27eb4a 100644
--- a/classes/module/ModuleHandler.class.php
+++ b/classes/module/ModuleHandler.class.php
@@ -1301,7 +1301,7 @@ class ModuleHandler extends Handler
 		foreach($trigger_functions as $item)
 		{
 			$before_each_trigger_time = microtime(true);
-			$item($obj);
+			$output = $item($obj);
 			$after_each_trigger_time = microtime(true);
 
 			if ($trigger_name !== 'common.writeSlowlog')
diff --git a/modules/member/skins/default/signup_form.html b/modules/member/skins/default/signup_form.html
index b3d464d38..435ab05b0 100644
--- a/modules/member/skins/default/signup_form.html
+++ b/modules/member/skins/default/signup_form.html
@@ -110,4 +110,4 @@
 	});
 })(jQuery);
 </script>
-<include target="./common_footer.html" />
\ No newline at end of file
+<include target="./common_footer.html" />