Spiders / Web Crawlers are Hitting Flags

I don't think we'll fundamentally change the way flags work for anonymous users. I'd suggest setting up a different flag for your anonymous users that behaves differently (such as requiring higher thresholds).

subscribing

Perhaps an option to require javascript in order to get a flag link. most crawlers won't execute js.

Subscribing

Subs

Subscribing

undoIT's idea about rate-limiting anonymous' ability to flag sounds like a smart idea, or something in that vein.

Especially since this seems to be an isolated case originating from a single IP address of questionable value as an indexer, I would override and modify flag.tpl.php in your theme. Wrap the existing code in a conditional that causes the flag link not to be including on the page when $_SERVER['REMOTE_ADDR'] is equal to the offending IP address.

This is presuming you don't just want to block the IP address' traffic altogether, which I would be tempted to do in this case.

+1 to prevent spiders from spamming our sites
i hope someone will be able to provide a patch to be reviewed.
thanks!

+1 subscribing - i was wondering if there has been any development in this area? thank you!

Subscribing...

In getting ready for the Drupal 7 port I wanted to fix this issue before going forward. The solution I've gone with is similar to undoIt's #5 recommendation, but it makes very few changes to the code structure overall and has no impact at all on current theming or registered users.

Essentially the links on the page for anonymous users will lead to a 403 page unless JavaScript is enabled. This is done by adding a "has_js=1" to the query string for anonymous users. If this query string is not found on the responding page handler, access is denied (with a respectable error message). Essentially it requires anonymous users to have JavaScript in order to use flag links. Flagging through confirmation forms is unchanged.

Committed so I can get a pre-Drupal 7 release out before attempting the port.

Hey everyone,
I'm trying to get this working, but no such luck. My settings are all correct (I have spent an eternity testing everything, including disabling my cache programs), but I just can't get the link to show for an anonymous user. Here are the versions I am running

Flag 6.x-2.0-beta3
Flag actions 6.x-2.0-beta3
Flag Note 6.x-2.x-dev
Session API 6.x-1.2

I'm questioning the SessionAPI, since I have not seen any documentation on which version should be used with this, since everything is beta and Dev platforms, which I do not normally use. Please advise...

This might seem like a strange question to ask, but have you edited the flag and enabled the anonymous role? I'd also suggest removing any custom theming you've done, since the templates changed between 1.x and 2.x.

Anonymous is enabled, and I am currently using Contemplate for templates. I had 1.x on my site at one time, but I only played around with it for a few mn's and never used it after, and eventually I removed it.

I suggest you uninstall and reinstall the module or check that you don't need to run update.php. Another module may be removing the links or they might not be printed out in your theme.

Ok, I will uninstalll and reinstall. I swear the first time I did it, I saw it show up for anonymous testing.

Here is the code Contemplate spits out:
<span class="flag-wrapper flag-report-scam flag-report-scam-720"> <a href="/flag/flag/report_scam/720?destination=admin%2Fcontent%2Fnode-type%2Fed_classified%2Ftemplate&amp;token=5017dae6fba6018d8dbd4c0c44d25726" title="" class="flag flag-action flag-link-toggle" rel="nofollow">Report a Scam</a><span class="flag-throbber">&nbsp;</span> </span>

It shows just fine when you are logged in, but disappears when logged out.

I uninstalled and completely removed these programs. I deleted the files and reuploaded Flag 6.x-2.0-beta3, nothing else.

The Anonymous link does not show, and I have tested multiple themes.

+