“must be registered and logged in” – not true
“Users must be registered and logged in to comment” – this option does not seem to _actually_ work. spam-posting bots will bypass it quickly, I have noticed, presumably because they’re going straight to the posting URL. It looks like code for checking the session is in place, so why isn’t it working? checking the refering URL might be nice to do, too…
- The topic ‘“must be registered and logged in” – not true’ is closed to new replies.