epicweb-dev · kentcdodds · Jan 19, 2025 · Jan 18, 2025
diff --git a/app/root.tsx b/app/root.tsx
@@ -105,7 +105,7 @@ export async function loader({ request }: Route.LoaderArgs) {
 		await logout({ request, redirectTo: '/' })
 	}
 	const { toast, headers: toastHeaders } = await getToast(request)
-	const honeyProps = honeypot.getInputProps()
+	const honeyProps = await honeypot.getInputProps()
 
 	return data(
 		{

diff --git a/app/routes/_auth+/forgot-password.tsx b/app/routes/_auth+/forgot-password.tsx
@@ -25,7 +25,7 @@ const ForgotPasswordSchema = z.object({
 
 export async function action({ request }: Route.ActionArgs) {
 	const formData = await request.formData()
-	checkHoneypot(formData)
+	await checkHoneypot(formData)
 	const submission = await parseWithZod(formData, {
 		schema: ForgotPasswordSchema.superRefine(async (data, ctx) => {
 			const user = await prisma.user.findFirst({

diff --git a/app/routes/_auth+/login.tsx b/app/routes/_auth+/login.tsx
@@ -38,7 +38,7 @@ export async function loader({ request }: Route.LoaderArgs) {
 export async function action({ request }: Route.ActionArgs) {
 	await requireAnonymous(request)
 	const formData = await request.formData()
-	checkHoneypot(formData)
+	await checkHoneypot(formData)
 	const submission = await parseWithZod(formData, {
 		schema: (intent) =>
 			LoginFormSchema.transform(async (data, ctx) => {

diff --git a/app/routes/_auth+/onboarding.tsx b/app/routes/_auth+/onboarding.tsx
@@ -56,7 +56,7 @@ export async function loader({ request }: Route.LoaderArgs) {
 export async function action({ request }: Route.ActionArgs) {
 	const email = await requireOnboardingEmail(request)
 	const formData = await request.formData()
-	checkHoneypot(formData)
+	await checkHoneypot(formData)
 	const submission = await parseWithZod(formData, {
 		schema: (intent) =>
 			SignupFormSchema.superRefine(async (data, ctx) => {

diff --git a/app/routes/_auth+/signup.tsx b/app/routes/_auth+/signup.tsx
@@ -31,7 +31,7 @@ const SignupSchema = z.object({
 export async function action({ request }: Route.ActionArgs) {
 	const formData = await request.formData()
 
-	checkHoneypot(formData)
+	await checkHoneypot(formData)
 
 	const submission = await parseWithZod(formData, {
 		schema: SignupSchema.superRefine(async (data, ctx) => {

diff --git a/app/routes/_auth+/verify.tsx b/app/routes/_auth+/verify.tsx
@@ -34,7 +34,7 @@ export const VerifySchema = z.object({
 
 export async function action({ request }: Route.ActionArgs) {
 	const formData = await request.formData()
-	checkHoneypot(formData)
+	await checkHoneypot(formData)
 	return validateRequest(request, formData)
 }
 

diff --git a/app/utils/honeypot.server.ts b/app/utils/honeypot.server.ts
@@ -5,9 +5,9 @@ export const honeypot = new Honeypot({
 	encryptionSeed: process.env.HONEYPOT_SECRET,
 })
 
-export function checkHoneypot(formData: FormData) {
+export async function checkHoneypot(formData: FormData) {
 	try {
-		honeypot.check(formData)
+		await honeypot.check(formData)
 	} catch (error) {
 		if (error instanceof SpamError) {
 			throw new Response('Form not submitted properly', { status: 400 })

diff --git a/package-lock.json b/package-lock.json
diff --git a/package.json b/package.json
@@ -53,6 +53,8 @@
     "@epic-web/totp": "^2.0.0",
     "@mjackson/form-data-parser": "^0.6.0",
     "@nasa-gcn/remix-seo": "^2.0.1",
+    "@oslojs/crypto": "^1.0.1",
+    "@oslojs/encoding": "^1.1.0",
     "@paralleldrive/cuid2": "^2.2.2",
     "@prisma/client": "^6.2.1",
     "@radix-ui/react-checkbox": "^1.1.3",
@@ -80,7 +82,6 @@
     "compression": "^1.7.5",
     "cookie": "^1.0.2",
     "cross-env": "^7.0.3",
-    "crypto-js": "^4.2.0",
     "date-fns": "^4.1.0",
     "dotenv": "^16.4.7",
     "execa": "^9.5.2",
@@ -102,7 +103,7 @@
     "react-router": "^7.1.3",
     "remix-auth": "^3.7.0",
     "remix-auth-github": "^1.7.0",
-    "remix-utils": "^7.7.0",
+    "remix-utils": "^8.0.0",
     "set-cookie-parser": "^2.7.1",
     "sonner": "^1.7.2",
     "source-map-support": "^0.5.21",