https://bugs.koha-community.org/bugzilla3/show_bug.cgi?id=36197 --- Comment #22 from Pedro Amorim <pedro.amorim@ptfs-europe.com> --- (In reply to David Cook from comment #21)
As Matthias mentioned during the Kohacon ILL workshop, there's nothing preventing bots from abusing this at the moment.
But it would be similar to anonymous/unauthenticated purchase suggestions with AnonSuggestions enabled.
--
That said, perhaps a magic token for EDS to include in the generated URL or a referrer check could be useful to reduce robot spam (which is an existing problem with AnonSuggestions currently).
There is already an existing captcha system present in opac-memberentry.pl (for patron self registration). Would it make more sense to make use of this here by re utilizing it (doing any necessary refactoring), thus having a single place to extend and maintain going forward and perhaps establish a pattern for public facing forms in Koha, e.g. also apply it to unauthenticated purchase suggestions in the future? -- You are receiving this mail because: You are watching all bug changes.