allow tests to bypass bot detection

lehigh-university-libraries · Nov 18, 2024 · a0c051b · a0c051b
1 parent e9d5657
commit a0c051b
Showing 1 changed file with 6 additions and 3 deletions.
diff --git a/src/EventSubscriber/Challenge.php b/src/EventSubscriber/Challenge.php
@@ -100,17 +100,20 @@ protected function applies(RequestEvent $event, ImmutableConfig $config): bool {
     if (captcha_whitelist_ip_whitelisted($clientIp)) {
       return FALSE;
     }
-
     // See if the client IP resolves to a good bot.
     $hostname = gethostbyaddr($clientIp);
     // Being sure to lookup the domain to avoid spoofing.
     $resolved_ip = gethostbyname($hostname);
     if ($clientIp !== $resolved_ip) {
-      return TRUE;
+      if ($clientIp !== '127.0.0.1') {
+        return TRUE;
+      }
     }
     $parts = explode(".", $hostname);
     if (count($parts) < 2) {
-      return TRUE;
+      if ($clientIp !== '127.0.0.1') {
+        return TRUE;
+      }
     }
     $tld = array_pop($parts);
     $hostname = array_pop($parts) . '.' . $tld;