plainblack.com
Username Password
search
Bookmark and Share
View All Tickets
Anonymous rating post limited by IP  (#11907)
Issue

I can see this code in WebGUI::Asset::Post class, method "hasRated":

...

if ($self->session->user->isVisitor) {

($flag) = $self->session->db->quickArray("select count(*) from Post_rating where assetId=? and ipAddress=?",[$self->getId, $self->session->env->getIp]);

...

Many users are behind a proxy, so If one of those users vote, the others could not vote anymore.
A better method could be the use of cookie and, to prevent robot attack, a temporary IP block (eg, ip blocked for ten minutes after voting).
I fill a bug, because an our customer found the problem when anonymous user inside his company, cannot vote some thread.
Solution Summary
Comments
perlDreamer
0
10/12/2010 6:44 pm
I don't think that's going to fix the problem.

If you have two users behind a proxy, and one person votes, the 2nd person is still locked out for ten minutes, and they won't know whether that is due to a timeout, or an IP lockout.

The only real fix is to prevent users from rating posts.  Then there's no issue at all.
perlDreamer
0
10/12/2010 8:02 pm
We spoke about it in IRC, and if you'd like to file this as an RFE it would be okay.
Details
Ticket Status Resolved  
Rating0.0 
Submitted Byfaxioman 
Date Submitted2010-10-11 
Assigned To unassigned  
Date Assigned2019-05-22 
Assigned By 
Severity Minor (annoying, but not harmful)  
What's the bug in? WebGUI Stable  
WebGUI / WRE Version 7.9.13/0.9.3  
URLuse/bugs/tracker/11907
Keywords
Ticket History
10/13/2010
1:02 AM
Resolved perlDreamer
10/11/2010
7:42 AM
Ticket created faxioman
© 2019 Plain Black Corporation | All Rights Reserved