👋 Hello @davishiz@anthony.buc.ci, welcome to Buccipod, a Yarn.social Pod! To get started you may want to check out the pod’s Discover feed to find users to follow and interact with. To follow new users, use the ⨁ Follow button on their profile page or use the Follow form and enter a Twtxt URL. You may also find other feeds of interest via Feeds. Welcome! 🤗

@abucci@anthony.buc.ci We have to build a better option. I’m not sure we as a community have settled on a good way to deal with this yet? 🤔

Should we just put the same captcha we use on the Support form on the Register form and call it a day? 🤔

@screem@yarn.yarnpods.com Haha 😆

@abucci@anthony.buc.ci So a simple email verification flow?

@prologic@twtxt.net I say, revamp the whole login to be like micro.blog does it. Enter email, you receive a link to login. Drop a cookie. Rinse and repeat.

@prologic@twtxt.net I’m pretty sure it’s still possible to mass-register accounts, through some tempmail services. - It just makes doing so harder.

In this case, despite hating captchas, they still seem like a best solution to this. Especially if there’s still ones, that’d work, while being well made, not too annoying and made with accessibility in mind. 🤔

@thecanine@twtxt.net So let’s do both then? Reuse the same captcha we already have, plus add email verification. Which thankfully doesn’t violate our design of not storing the email, as we can still just store the has, send a verification link with a short time-to-live token (JWT) and if we don’t get the link verified, boom you’re out 😅

@prologic@twtxt.net Yeah, this is probably the best option, especially if the e-mail isn’t kept anywhere, after the verification.