Hi,
As I’m building out my public site, I am constantly thinking about how bots can rip through all my WUs by submitting public forms over and over again, or loading pages that get data from the DB constantly.
I’m putting heavy WU processes behind authentication and authorization gates, but I fear it’s not enough. My site will be behind Cloudflare, but it can’t stop all robots from doing robot things.
Does any know if Bubble has any built in protections from bot abuse, and do you have any tips to prevent malicious users from burning through a site’s WUs?
Thank you.
Well, for your forms, obviously you can use CAPTCHA. And you can do that without a plugin.
You can also set up your own Cloudflare account if you have a custom domain.
Bubble uses it but if you want more protection you can also create an account.
With your own account, you can turn on bot fight mode, firewall rules, and rate limiting.
It sounds like you’re already using the need to log in to access certain things that would create a lot of WUs.
Added: Bubble also lets you decide if you want to keep your WUs from going over…which is also a built-in feature. You could look into that feature as well.
