prevent contact form spam

app/assets/javascripts/custom.js

@@ -28,5 +28,8 @@ $(document).on('page:load ready', function() {
   // activate any tablesorters
   $('.tablesorter').tablesorter();
 
+  // set value for userlogin_js, which is used to determine if a form was submitted with javascript enabled
+  $('#userlogin_js').val('6H2W6QYUAJT1Q8EB');
+
 });
 

app/controllers/pages_controller.rb

@@ -28,8 +28,8 @@ class PagesController < ApplicationController
     # if no message
     elsif params[:message].blank?
       flash[:alert] = t(:contact_us_no_message)
-    # else send email if not a spambot
-    elsif params[:userlogin].blank?
+    # else send email if not a spambot (user must have javascript enabled)
+    elsif params[:userlogin_js] == '6H2W6QYUAJT1Q8EB'
       Mailer.contact_us(params[:email], params[:message]).deliver
       flash[:notice] = t(:contact_us_success)
     end

app/views/pages/_contact_form.html.erb

@@ -1,5 +1,5 @@
 <%= form_tag({:controller => 'pages', :action => 'contact_us', :method => :post}, :class => 'form-horizontal') do %>
-  <input name='userlogin' class='userlogin' />
+  <input type='text' id='userlogin_js' name='userlogin_js' class='userlogin' />
 
   <div class="form-group">
     <label class="col-sm-4 col-xs-3 control-label"><%= t(:email_address).titleize %></label>