public override void OnActionExecuting(ActionExecutingContext filterContext)
{
var loggedInUser = filterContext.HttpContext.User.Identity.Name;
// user is submitting a message
if (filterContext.ActionParameters.ContainsKey("message"))
{
var incomingMessage = (Submission)filterContext.ActionParameters["message"];
var targetSubverse = incomingMessage.Subverse;
// check user LCP for target subverse
if (targetSubverse != null)
{
var LCPForSubverse = Karma.LinkKarmaForSubverse(loggedInUser, targetSubverse);
if (LCPForSubverse >= 40)
{
// lower DelayRequest time
DelayRequest = 10;
}
else if (UserHelper.IsUserSubverseModerator(loggedInUser, targetSubverse))
{
// lower DelayRequest time
DelayRequest = 10;
}
}
}
// user is submitting a comment
else if (filterContext.ActionParameters.ContainsKey("comment"))
{
Comment incomingComment = (Comment)filterContext.ActionParameters["comment"];
using (voatEntities db = new voatEntities())
{
var relatedMessage = db.Submissions.Find(incomingComment.SubmissionID);
if (relatedMessage != null)
{
var targetSubverseName = relatedMessage.Subverse;
// check user CCP for target subverse
int CCPForSubverse = Karma.CommentKarmaForSubverse(loggedInUser, targetSubverseName);
if (CCPForSubverse >= 40)
{
// lower DelayRequest time
DelayRequest = 10;
}
else if (UserHelper.IsUserSubverseModerator(loggedInUser, targetSubverseName))
{
// lower DelayRequest time
DelayRequest = 10;
}
}
}
}
// Store our HttpContext (for easier reference and code brevity)
var request = filterContext.HttpContext.Request;
// Store our HttpContext.Cache (for easier reference and code brevity)
var cache = filterContext.HttpContext.Cache;
// Grab the IP Address from the originating Request (very simple implementation for example purposes)
var originationInfo = request.ServerVariables["HTTP_X_FORWARDED_FOR"] ?? request.UserHostAddress;
// Append the User Agent
originationInfo += request.UserAgent;
// Now we just need the target URL Information
var targetInfo = request.RawUrl + request.QueryString;
// Generate a hash for your strings (this appends each of the bytes of the value into a single hashed string
var hashValue = string.Join("", MD5.Create().ComputeHash(Encoding.ASCII.GetBytes(originationInfo + targetInfo)).Select(s => s.ToString("x2")));
// TODO:
// Override spam filter if user is authorized poster to target subverse
// trustedUser = true;
// Checks if the hashed value is contained in the Cache (indicating a repeat request)
if (cache[hashValue] != null && loggedInUser != "system" && trustedUser != true)
{
// Adds the Error Message to the Model and Redirect
filterContext.Controller.ViewData.ModelState.AddModelError(string.Empty, ErrorMessage);
}
else
{
// Adds an empty object to the cache using the hashValue to a key (This sets the expiration that will determine
// if the Request is valid or not
cache.Add(hashValue, "", null, DateTime.Now.AddSeconds(DelayRequest), Cache.NoSlidingExpiration, CacheItemPriority.Default, null);
}
base.OnActionExecuting(filterContext);
}
