Humanizer is a very simple CAPTCHA method. It has a localized YAML file with questions and answers which is used to validate that the user is an actual human. Any model that includes ActiveModel::Validations should work. Our aim is to be database and mapper agnostic, so if it doesn't work for you, open an issue. Humanizer works with Rails 3–7.
Add humanizer to your Gemfile:
gem "humanizer"
Bundle and run the generator in terminal:
bundle
rails g humanizer
rails g humanizer --all-localesrails g humanizer --show-localesrails g humanizer en fi declass User < ActiveRecord::Base
include Humanizer
require_human_on :create
end
<%= f.label :humanizer_answer, @model.humanizer_question %>
<%= f.text_field :humanizer_answer %>
<%= f.hidden_field :humanizer_question_id %>
If you are using attr_accessible, remember to whitelist :humanizer_answer and :humanizer_question_id.
If you are using strong_parameters, remember to permit :humanizer_answer and :humanizer_question_id.
Default translations can be found in config/locales/
You might want to add/change question and answer pairs. This can be easily done by adding/modifying entries in locales file.
You might want to skip the humanizer validations on your tests or rails console.
You can just have a simple attribute on your model and use it to bypass the validation. Here's an example:
attr_accessor :bypass_humanizer
require_human_on :create, unless: :bypass_humanizer
Now when bypass_humanizer is true, validation will be skipped.
In case you want to give your users the option to change the question, there's a #change_humanizer_question method to help you.
To make sure the current question doesn't get asked again, you can pass the current question id to the method. For example:
@user.change_humanizer_question(params[:user][:humanizer_question_id])
Humanizer is licensed under the MIT License, for more details see the LICENSE file.
FAQs
Unknown package
We found that humanizer demonstrated a not healthy version release cadence and project activity because the last version was released a year ago. It has 4 open source maintainers collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Security News
Research
The Socket Research Team breaks down a malicious wrapper package that uses obfuscation to harvest credentials and exfiltrate sensitive data.
Research
Security News
Attackers used a malicious npm package typosquatting a popular ESLint plugin to steal sensitive data, execute commands, and exploit developer systems.
Security News
The Ultralytics' PyPI Package was compromised four times in one weekend through GitHub Actions cache poisoning and failure to rotate previously compromised API tokens.