Feature: Rate Limiting

[kbond]

First of all, nice bundle! The docs are beautiful!

I have my own home grown honeypot/short submit system that I'm going to switch to this bundle.

Recently, we have been getting hammered by spam that gets past these two protections so I've implemented a rate limiting system: "can only submit a valid form once per minute and 5 times per hour"

Thought it could be a nice feature for this bundle.

[curry684]

Thanks for the kind words 💯

Rate limiting is most certainly one to be put on the list. I'm also considering wrapping up Recaptcha, Akismet and maybe even the classic math questions in here!

[curry684]

By the way you should most definitely also look at the URL counting and banned scripts. On most of our sites we're getting hammered by Cyrillic spam. On our company website this bundle has already managed to reduce spam to literally zero like this:

antispam:
    profiles:
        default:
            banned_scripts:
                scripts: [cyrillic]
                max_percentage: 40

            url_count:
                max: 3
                max_identical: 1

            honeypot: email_address

            timer:
                min: 3
                max: 14400

[kbond]

Definitely will be adding these.

[curry684]

Recipe is now also submitted at https://github.com/symfony/recipes-contrib/pull/1561/files with recommended default config.

[curry684]

I haven't really looked into symfony/rate-limiter yet but it does look like we could implement antispam rate limiting through a very thin bridge to that.