After more unsuccessful testing, I'm assuming that the form
button at the end of the form needs to be an actual button with
a type of "submit" to work with CFFormProtect?
If so, this won't work because I don't use an actual button with
a type of "submit". The "submit" button for my form is just a regular
button that triggers an AJAX function that sends the data to a CFC
for further processing and then submission in the CFC to Authorize.net.
If I put:
<cfset Cffp = CreateObject("component","cfformprotect.cffpVerify").init() />
<cfif Cffp.testSubmission(form)>
<cfmail to = "[email protected]"
from = "[email protected]"
subject = "Form Passed CFFormProtect Text!">
Form passed CFFormProtect test!
</cfmail>
[ send data to authorize.net using arguments passed to method... ]
[ send acknowledgement emails to donors, etc ]
<cfelse>
<cfset authorizeStruct.FORMPOSTSTATUS = 'invalid' >
<cfset authorizeStruct.TRANSACTIONSTATUS = 'Transaction not processed...' >
<cfreturn authorizeStruct />
</cfif>
Even when I know the form values are correct, I get the
failed notices at the end. So somehow the form values aren't
passing the tests for CFFormProtect.
I see there's mention of logFailure() and 'logFailedTests' and logFile'
in the notes, but I haven't figured out where to use those.
Thoughts?
Rick
-----Original Message-----
From: Raymond Camden [mailto:[email protected]]
Sent: Monday, February 11, 2013 2:02 PM
To: cf-talk
Subject: Re: Problem with Hackers on Donation form through Authorize.net
No, it returns a pass/fail type response.In your example, I'd probably add
it after you do client side validation and CF validation, but before the
hit to Authorize.net.
On Mon, Feb 11, 2013 at 12:48 PM, Rick Faircloth
<[email protected]>wrote:
>
> Thanks for the feedback, Ray, Dave...
>
> Does CFFormProtect actually submit a form? I haven't parsed through
> the code, yet, but I'm trying to determine if it just runs some tests
> for validation or does it continue on to submit the form.
>
> The form and processing I've code is quite extensive and involves jQuery
> on the client side for validation, then CF validation in a CFC, then,
> if all's well, I used cfhttps to submit the form to Authorize.net.
>
> I've got to figure out just how CFFormProtect fits into this equation.
> I've implemented it per the instructions, but I'm not sure just what type
> of processing environment it's supposed to fit into.
>
> I did get one successful transaction that I submitted to process with
> CFFormProtect implemented, but the second on didn't pass CFFormProtect
> and I didn't get a form response (success/failure) back from the AJAX
> submission function.
>
> If anyone cares to look, the form is at
> http://uso.whitestonemedia.com/modules/donate/donation-form.cfm
>
> That's the development site.
>
> Rick
>
>
>
> -----Original Message-----
> From: Raymond Camden [mailto:[email protected]]
> Sent: Monday, February 11, 2013 11:46 AM
> To: cf-talk
> Subject: Re: Problem with Hackers on Donation form through Authorize.net
>
>
> As an FYI, my blog never had a lot of spam, but it was pretty regular. When
> I started using CFFP, it dropped dramatically. I can't even remember my
> last spam comment.
>
>
> On Mon, Feb 11, 2013 at 10:43 AM, Rick Faircloth
> <[email protected]>wrote:
>
> >
> > Thanks for the recommendation, Dave.
> >
> > It seems like an "all-in-one" approach, like CFFormProtect,
> > might be the only way to beat this thing!
> >
> > I'll go check it out...
> >
> > Rick
> >
> > -----Original Message-----
> > From: Dave Watts [mailto:[email protected]]
> > Sent: Monday, February 11, 2013 11:30 AM
> > To: cf-talk
> > Subject: Re: Problem with Hackers on Donation form through Authorize.net
> >
> >
> > > I realize that if someone is hiring cheap human labor for $1
> > > per day to sit and enter form info, that I can't stop that,
> > > but if it is bots doing the spamming, will making CF captcha
> > > more difficult to read have a good chance of stopping the bots,
> > > or do I need to get with reCaptcha. I like using CF's solution,
> > > because I can code it myself. But if it doesn't work...
> >
> > I recommend you use this instead of any CAPTCHA:
> >
> > http://cfformprotect.riaforge.org/
> >
> > Dave Watts, CTO, Fig Leaf Software
> > http://www.figleaf.com/
> > http://training.figleaf.com/
> >
> > Fig Leaf Software is a Veteran-Owned Small Business (VOSB) on
> > GSA Schedule, and provides the highest caliber vendor-authorized
> > instruction at our training centers, online, or onsite.
> >
> >
> >
> >
>
>
>
>
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~|
Order the Adobe Coldfusion Anthology now!
http://www.amazon.com/Adobe-Coldfusion-Anthology/dp/1430272155/?tag=houseoffusion
Archive:
http://www.houseoffusion.com/groups/cf-talk/message.cfm/messageid:354461
Subscription: http://www.houseoffusion.com/groups/cf-talk/subscribe.cfm
Unsubscribe: http://www.houseoffusion.com/groups/cf-talk/unsubscribe.cfm
