Experiences with adding Nonces to the comment form

I haven’t done this personally, but it would be pretty easy. If you are building your comment form manually, just before the end of the </form> put:

<?php wp_nonce_field( 'comment_nonce' ) ?>

Then, just hook into the pre_comment_on_post action which fires when you submit a comment:

add_action( 'pre_comment_on_post', 'my_verify_comment_nonce' );

function my_verify_comment_nonce() {

    check_admin_referer( 'comment_nonce' );

}

If you want to just hook into the standard comment form that Twenty Ten uses (comment_form()) then you could instead hook into comment_form like so:

add_action( 'comment_form', 'my_add_comment_nonce_to_form' );

function my_add_comment_nonce_to_form() {

    wp_nonce_field( 'comment_nonce' );

}

Not tested, so let me know if you have any issues!

Related Posts:

  1. What are the package and subpackage comment for?
  2. adding a text message beside the comment submit button
  3. Akismet plugin is deleting spam despite preferences
  4. posts comments goes to trash
  5. Moving FB comments at the end of page
  6. Display WordPress comments before the plugins?
  7. Disable plugin / plugin action via theme
  8. Where can I sell WordPress themes and plugins? [closed]
  9. How to add plugins to wordpress theme?
  10. Disabling Comment Notifications for Post Author
  11. Disable author pages for specific users
  12. Are there any drawbacks to install IntenseDebate on my blog?
  13. Set active theme via URL
  14. How do I make my wordpress page more friendly for mobile viewers?
  15. Notify commenters about new replies
  16. Use comments as notes, visible for comment author only
  17. Check javascript file Proper way in functions.php
  18. How does WooCommerce display a custom comment_type in Comment Admin?
  19. Migrating a File from Plugin to Theme and changing its path → instead create a REST endpoint
  20. How to prevent spam comments?
  21. Intercept comment form submit/list by hook/filter
  22. How to add a privacy-checkbox in comment-template?
  23. Recommendations for books/resource to get started with wordpress 3 development (plugins/themes) [closed]
  24. Uncaught Error: Call to undefined function get_user_by() after moving function from theme to plugin
  25. Override comments.php template with plugin
  26. How to Implement “Notice: This theme recommands the following plugin:xyz” in wordpress? [closed]
  27. Change settings of get_post_type_object
  28. Sage WordPress – Plugin Namespace: Not Found
  29. Function to prevent users from trashing comments
  30. Unable to install theme recommended plugins on Multisite
  31. More than one text-domain is being used because of the included templates for plugins
  32. How do you override the default comment template?
  33. How to prevent users to download videos from lms website?
  34. plugin style conflicts, how to override? [closed]
  35. There is any way to remove post-format filter? [closed]
  36. Send reply with pre-prepared answers
  37. WordPress site periodically goes down
  38. Masonry images not working
  39. (Big issue) Blog is Getting Down Each day.. what should i do.?
  40. How to require users to login when not logged in
  41. Error when using plugin QuickCache with plugin Mobile Smart ? [closed]
  42. How do I find out what is in control over a certain part of a website?
  43. Overwrite category head title
  44. Create custom pages with a plugin
  45. Does heavy theme and plugins affect server’s response time? [closed]
  46. Proper way to use plugin functions in functions.php
  47. Use different single.php file based on condition
  48. Flag Comment as inappropriate button plugin
  49. how remove font to increase site speed load
  50. Use $variable from file1.php in file2.php (different file paths)
  51. What is the purpose of WP_CONTENT_URL?
  52. issue in wp_localize_script
  53. How can I use my custom wordpress theme on two websites? [closed]
  54. Can I filter a function created by a theme or a plugin?
  55. How I update WordPress theme and plugins
  56. Overwrite add_image_size defined by theme
  57. Detect plugin/theme installation (via upload)
  58. How to check homepage contain blog post?
  59. how to design change in woocommerce cart page and all other page also by theme? [closed]
  60. is there a way to pass a parameter to a add_menu_page function?
  61. plugin inside a wordpress theme
  62. Share plugins, themes, and multi post in a multidomain network
  63. Removing the custom_image_header from wp_head
  64. Gantry Framework: new page loads homepage content instead of page content
  65. Upgrade not working & themes not supporting
  66. Plugin Admin panel checkbox unchecked after submit
  67. use EDD Content Restriction for restricting php in template
  68. admin-ajax.php 500 error when new users try to register
  69. Why the internal link get converted into a comment?
  70. Elementor Sidebar not loading when PRO elements plugin is active
  71. Elementor pro page editing gives error There has been a critical error on this website. Please check your site admin email inbox for instructions
  72. What plugin would make this happen? If is the theme
  73. WordPress site hamburger menu toggle not working
  74. WordPress wp get_temp_dir return non exiting folder, thus failing plugin & themes update
  75. when i activate my WordPress plugin cannot see customizer options or preview
  76. Writing SEO for Homepage when homepage is set to display latest posts
  77. Fatal error: Class ‘RDTheme’ not found
  78. Comment restrictions Wodpress
  79. How is it possible to create Multi part sections where people can answer or comment or vote on various parts of a page’s content as given example?
  80. Getting unknown text in footer of email
  81. How to fix blog article view and share #’s?
  82. Description: Too much time has passed without sending any data for document
  83. How can I make the search bar in my wordpress site search all of the pages rather than just the blog posts?
  84. I want add repository theme folder
  85. Paginated Comments “reply” does not work!
  86. Need Help Creating a Multi-Step, Video-Guided Enrollment Site
  87. Issues with Post 2 Post Plugin
  88. Why links are not linked if edited comment?
  89. Disqus plugin outputs script as literal text
  90. How to get current template file used by WordPress?
  91. How can I modify the colors of my theme for a single section of my site? [closed]
  92. How to work email subscribe in WordPress?
  93. Terms id wordpress error
  94. How to add a plugin in WordPress theme directory?
  95. How to make wordpress backend mobile optimized.?
  96. Editing a theme
  97. What is phpBB? Is it something like a plugin which I can use in WordPress? [closed]
  98. How to Allow Users to Select Recipients In a WordPress Comment section?
  99. WordPress theme is not displaying the correct home page in the Pages section
  100. Newspaper theme, custom query vars, & custom rewrite rules

Leave a Comment