Protect form with captcha

[Aszusz]

Protect feedback form with captcha to prevent spamming on email address

[piotrzarzycki21]

@Aszusz Unfortunately I'm still seeing spam coming out from our website. Last two emails come on 31/12/2021 and 01/01/2022

[Aszusz]

Unfortunately I'm still seeing spam coming out from our website. Last two emails come on 31/12/2021 and 01/01/2022

This proves the current form we use (from Formspree) doesn't provide adequate protection.

I tried to use GetResponse's form instead but I don't see anywhere an option to redirect a form's content to an email address. It looks like GetResponse can only store feedback form's content in its own mailing list which is insufficient for our needs.

[Aszusz]

@JoelProminic
After a brief discussion with @piotrzarzycki21 we decided the best course of action will probably be to use our own implementation of Google ReCaptcha v3. @JoelProminic would you be willing to spend some time and provide a backend agent that can validate ReCaptcha requests and send emails to our support system?

[JoelProminic]

By my understanding:

• We want to add captcha protection from this form: https://moonshine-ide.com/feedback/
• The form is expected to send an email to the Moonshine-IDE support address

Unfortunately, we can't submit directly from moonshine-ide.com to my agents at rest-swf.prominic.net or x.prominic.net because of CORS restrictions. Some workarounds:

• You could submit the request from the moonshine-ide.com server instead
• We could setup a new subdomain for the requests from Moonshine, but this seems like overkill.
• We could implement one of the more complicated CORS solutions we discussed for the Prominic website, but these are not trivial to change.

If we can get past this problem, we'll need to generate separate reCAPTCHA keys for moonshine-ide.com. Otherwise, the agent should be pretty trivial, since I can reuse existing code and libraries.