In a website with no users, are cookies the only way to prevent people from repeating actions?

I'm creating a website and I don't want to have user/membership.

However, people using the site can do things like vote and flag questionable content. Is the only way to identify and prevent users from doing this repeatedly by using cookies?

I realize a user can just clear their cookies but I can't think of another way.

Suggestions for this scenario?

Solution

Well you could map a cookie + ip-adress in a datarecord in your database. To identify the user. So if the ip exists in the database, you simply just add the cookie, but check the cookie first to avoid unessesary database calls.

This is not optimal though, since schools etc might have the same ips on a lot of computers.

You can always just adapt openid!

Sending custom cookies (and viewing the ones set naturally) with Perl's WWW::Mechanize
3rd party cookies in Android 14/New Chrome using Angular/Firebase Auth/Hosting and NodeJs in Server
Cookies headers are present but Cookies are not stored in browser
Django HTTP response always sets `sessionid` cookie and session data do not persist
How to delete a cookie in FastHTML?
How to disable cookies in Django manually
Unable to set/get/delete cookies in Next.js 15 route handlers using the Cookies API?
How to bypass SameSite cookie restriction in Microsoft Edge during local development (HTTP) so browser can accept cookie send from backend
Set-cookie isn't working with React and Django
(Safari Only) Axios request does not send cookies to Node.js/Express REST API
React/Express set-cookie not working across different subdomains
Blazor Custom AuthenticationStateProvider Not Setting Cookies or Authorizing Pages
"Remember me" feature for login in TikiWiki site not working
Set-Cookie in Server Action doesn't work with path /auth
Cookies work great on localhost but does not work on VPS
Clearing all cookies with JavaScript
Advantages/disadvantages of using cookies to store a user ID?
How to save and load cookies using Python + Selenium WebDriver
How can you save and share the data WITHOUT logging in
How to store sensitive data in react js frontend?
What is the point of http-only cookies and how to make your authentication secure?
res.clearCookie method is not clearing cookies on the browser dev tools
Javascript Cookie with no expiration date
Why isn't my "refresh token" cookie included in Axios requests, even with withCredentials enabled?
Find out If user is loged in (Laravel) in frontend
Where to store the refresh token on the Client?
How to store object in cookie in asp.net core
PHP cookie to track/limit website joins (preventing automated account creation)
How to remove a cookie in PHP?
Why is my cookie not being sent? ReactJS front-end, Go back-end