Clarify protection mode options [#723422]

The latest 6.x versions of the Mollom module support the Pressflow lazy session handling, however it's not clear how that support works without looking through the code or issue #562374: Mollom incompatible with Pressflow's (and Drupal 7's) session handling -- causes CAPTCHAs to fail. The 'more help' link in the module settings contains the mode descriptions from the old module, which does mentioned captch cache effects, but not everyone will look here. When the comment form is configured to only use the Mollom captcha, anonymous comments are enabled, and the comment form is displayed on a node view, a session is started for ALL node views. Without looking in one of those places mentioned, most people would be confused about why they are seeing none of their content getting cached. Can the the captcha cache warning be made more prominent? It might also make sense to add a prominent warning based on the sites cache mode.

Comment	File	Size	Author
#8	0001-723422-by-sun-Clarify-protection-mode-options.patch	4.28 KB	sun
#8
#7	admin-protection-modes.7.png	11.35 KB	sun
#7	mollom.admin-protection.7.patch	3.95 KB	sun
#7

Support from Acquia helps fund testing for Drupal Acquia logo

Comments

Comment #1

sun

German

Karlsruhe

CreditAttribution: sun commented 27 February 2010 at 14:59

Title:	Captcha cache/session warning	» Add note about sessions/caching of pages containing CAPTCHAs
Version:	6.x-1.12	» 6.x-1.x-dev

Hm. Not sure where to put this. Ideally, README.txt...

Comment #2

sun

German

Karlsruhe

CreditAttribution: sun commented 2 August 2010 at 15:25

Status:

Active

» Fixed

I think this is no longer the case, as we've made the module compatible with browsers/clients not supporting cookies over in #775398: Disabled cookies == no session data, impossible to submit a protected form

Comment #3

Dries CreditAttribution: Dries commented 2 August 2010 at 21:09

Status:

Fixed

» Needs work

This is not entirely fixed. The patch in #775398 makes it better but we still have a $GLOBALS['conf']['cache'] = 0; in the mollom_process_mollom() to prevent pages with CAPTCHAs from getting cached. The reason we can't cache those pages is because the URLs to the CAPTCHAs are session specific.

Maybe that is something to document on the form protection settings page? It can be a reason to choose 'text analysis mode' over 'CAPTCHA only mode'.

Either way, I'm going to set this to 'needs work'.

Comment #4

sun

German

Karlsruhe

CreditAttribution: sun commented 3 August 2010 at 11:02

Status:

Needs work

» Active

Comment #5

sun

German

Karlsruhe

CreditAttribution: sun commented 25 June 2011 at 15:42

Version:	6.x-1.x-dev	» 7.x-1.x-dev
Category:	feature	» task

Comment #6

sun

German

Karlsruhe

CreditAttribution: sun commented 16 April 2013 at 17:27

Title:	Add note about sessions/caching of pages containing CAPTCHAs	» Improve note about page caching for CAPTCHA-only protection
Version:	7.x-1.x-dev	» 7.x-2.x-dev

Due to another issue that got fixed recently, the latest stable release outputs a note for the CAPTCHA-only protection now:

( ) CAPTCHA

Only choose CAPTCHA if text analysis is not suitable. Page caching is disabled on all pages containing CAPTCHA-only protected forms.

The wording of this note can definitely be improved.

Comment #7

sun

German

Karlsruhe

CreditAttribution: sun commented 3 November 2013 at 22:04

Title:	Improve note about page caching for CAPTCHA-only protection	» Clarify protection mode options
Component:	Documentation	» User interface
Issue summary:	View changes
Status:	Active	» Needs review

File	Size
mollom.admin-protection.7.patch	3.95 KB

admin-protection-modes.7.png	11.35 KB

Attached patch...

1. Clarifies the recommended option for all settings.
2. Clarifies the difference between text analysis and CAPTCHA-only.
3. Ensures that the recommended option always comes first.

Screenie:

Revised protection modes