endriu107 Posted November 27, 2023 Share Posted November 27, 2023 This is very first version of the module, it will be developed and new verification options will be added. Currently, the module only checks two things, it compares name and surname. If both are identical, it does not allow you to create an account in the store. Module aslo check letters in firstname and lastname, if it's unusual it will also block spammer to create account. Accounts like below will not be created in store. ***New version 1.0.1*** in version 1.0.1 there is new option checking letters, lowercase and uppercase. Firstname or Lastname like: mcdonald, Mcdonald, McDonald, MCDONALD, mCDONALD, mCdONALD are valid and allow to create account, but Firstname or Lastname like: McDoNald, mCdOnALD, MCDonald, McDonalD etc. aren't valid and user can't create account. It also should block account like that: ***New version 1.0.2*** In this version was added verifictaion for firstname and lastname that their are same even then some letters are lowercase or uppercase in fistname and not in lastname. Before user with first and last name like: Andrew andreW was able to create account, now he will be blocked. If you have any suggestions for validating a customer account, please post below. All suggestions will be considered and the best ones implemented into the module. It should work with prestashop 8.X and lower like 1.7.8 not tested with lower version then 1.7.7 wfeuserverification1.0.0.zip wfeuserverification1.0.1.zip wfeuserverification1.0.2.zip 6 Link to comment Share on other sites More sharing options...
endriu107 Posted November 30, 2023 Author Share Posted November 30, 2023 ***New version available 1.0.1*** in version 1.0.1 there is new option checking letters, lowercase and uppercase. Firstname or Lastname like: mcdonald, Mcdonald, McDonald, MCDONALD, mCDONALD, mCdONALD are valid and allow to create account, but Firstname or Lastname like: McDoNald, mCdOnALD, MCDonald, McDonalD etc. aren't valid and user can't create account. It also should block account like that: Module available for download in first post. Link to comment Share on other sites More sharing options...
Jontee Posted December 4, 2023 Share Posted December 4, 2023 Hi! Many thanks for this free module! Does it work with the latest PS 8.1.2? I am having some issues with receiving several emails per day to the shops email inbox, they all have the subject: Undeliverable: [PRESTASHOP WEBSITE NAME] Email verification It seems that bots are trying to register or "something" but their email addresses are not valid, so they cannot verify. Maybe it has to do with the newsletter module? Best regards, Link to comment Share on other sites More sharing options...
endriu107 Posted December 4, 2023 Author Share Posted December 4, 2023 Yest it should work on prestashop 8.1.2. In Log tab you can check what controller try sent those emails. Link to comment Share on other sites More sharing options...
metacreo Posted December 5, 2023 Share Posted December 5, 2023 Have fun with bots I defeated them a month ago with small controller override. I feel sorry for people who can't do anything about it. I advise you to check for a bot and not for your first and last name. At first, check $_SERVER variables, USER_AGENT... etc... then make table with IP/email deny. Good luck. Link to comment Share on other sites More sharing options...
endriu107 Posted December 5, 2023 Author Share Posted December 5, 2023 Probably in next release will be added DB logger with firstname, lastname, email address and IP address. I consider to add two buttons one with add IP to blacklist and second button with create account action, that in case when validation will block real user for some reason. Using USER_AGENT can help but it is not perfect solution, spammer can easli manipulate it. Link to comment Share on other sites More sharing options...
metacreo Posted December 5, 2023 Share Posted December 5, 2023 Most of bots never use user_agent and headers like Accept-Language, no referrer, no PHPSESSID in cookies etc... Based on headers and $_SERVER vars and cookies you can filter up to 99 percent of bots... Just create script-logger on production who logs headers, server and cookies and analyze logs... I write bots myself and also successfully escape from them))) and believe my many years of experience: it is completely impossible to completely protect yourself with a module, if no hooks for this. All that remains is to use overrides. But of course, the module can weed out most bots. Link to comment Share on other sites More sharing options...
endriu107 Posted December 18, 2023 Author Share Posted December 18, 2023 ***New version 1.0.2*** In this version was added verifictaion for firstname and lastname that their are same even then some letters are lowercase or uppercase in fistname and not in lastname. Before user with first and last name like: Andrew andreW was able to create account, now he will be blocked. Module available for download in first post. Link to comment Share on other sites More sharing options...
Prestafan1234 Posted December 19, 2023 Share Posted December 19, 2023 One of my shops is receiving a lot of fake newsletter subscriptions where I get bounce mails with errors such as this: [email protected]>: host gmail-smtp-in.l.google.com[142.250.107.26] said: 550 5.2.1 [ERN] Recipient is receiving email too quickly. (in reply to RCPT TO command) (I have replaced text before @gmail.com). The module does not prevent this, as all email addresses are legit i.e. different gmail.com accounts. So this is just to inform poster Jontee that the module will not resolve this. Link to comment Share on other sites More sharing options...
endriu107 Posted December 19, 2023 Author Share Posted December 19, 2023 My module only protect customer account create form. For protecting newsletter you need other solution. Link to comment Share on other sites More sharing options...
ChillMan Posted February 1 Share Posted February 1 Thanks for sharing! So far works as expected in PS 8.1.3 🙂 1 Link to comment Share on other sites More sharing options...
Altsat Posted February 17 Share Posted February 17 It do'nt work, I have PS 1.7.4.3 Link to comment Share on other sites More sharing options...
endriu107 Posted February 17 Author Share Posted February 17 Module use hook that is available since prestashop 1.7.1 so it should work. Can you provide more information about it, is there any information when you try create account using incorrect data? Link to comment Share on other sites More sharing options...
Altsat Posted February 17 Share Posted February 17 I'm still getting bot created account and orders in cart. Link to comment Share on other sites More sharing options...
40hertz Posted April 11 Share Posted April 11 (edited) Thanks for the module, it did help us too. Edit: unfortunately there seem to get some names trough: Edited April 11 by 40hertz new development of issue (see edit history) Link to comment Share on other sites More sharing options...
Recommended Posts
Create an account or sign in to comment
You need to be a member in order to leave a comment
Create an account
Sign up for a new account in our community. It's easy!
Register a new accountSign in
Already have an account? Sign in here.
Sign In Now