API KeyVersion 1.0 (old)IntroductionCustomizationTips and GuidelinesTroubleshootingPHP PluginASP.NET PluginClassic ASP PluginJava/JSP PluginPerl PluginMediaWiki PluginphpBB PluginFormMail PluginOther Platforms Plugin Version 2.0 g-recaptcha-response (new)IntroductionGet StartedDisplay the WidgetLanguage CodesVerify the User’s ResponseDomain Name recaptcha callback ValidationSecure Token (deprecated)Create an API KeyVersion 1.0 (old)IntroductionCustomizationTips and GuidelinesTroubleshootingPHP PluginASP.NET PluginClassic ASP PluginJava/JSP google recaptcha javascript validation PluginPerl PluginMediaWiki PluginphpBB PluginFormMail PluginOther Platforms Plugin Products reCAPTCHA Guides Verifying the user's response This page explains how to verify a user's response recaptcha error message to a reCAPTCHA challenge from your application's backend. When a reCAPTCHA is solved by end user, a new field (g-recaptcha-response) will be populated in HTML. You can get the user’s response in one of three ways: g-recaptcha-response POST parameter when the user submits the form on your
Recaptcha Missing-input-response
site grecaptcha.getResponse(opt_widget_id) after the user completes the CAPTCHA challenge As a string argument to your callback function if data-callback is specified in either the g-recaptcha tag attribute or the callback parameter in the grecaptcha.render method Each reCAPTCHA response is a token that should be used only once. If a verification attempt has been made with a particular token, it cannot be used again. You will need to call grecaptcha.reset() to ask the end user to verify with reCAPTCHA again. After you get the response token, you need to verify it with reCAPTCHA using the following API to ensure the token is valid. API Request URL: https://www.google.com/recaptcha/api/siteverify METHOD: POST POST Parameter Description secret Required. The shared key between your site and reCAPTCHA. response Required. The user response token provided by reCAPTCHA, verifying the user on your site. remoteip
questions What happens to reCAPTCHA v1? Since we launched reCAPTCHA v2 in Dec, 2014, a significant number of websites around the world have switched to it. Most of the human users enjoy the No CAPTCHA reCAPTCHA experience with a single click in the checkbox. With the advanced
Recaptcha Error Invalid Domain For Site Key
risk analysis engine, reCAPTCHA v2 can effectively separate humans from bots and always stay google recaptcha response ahead of the attackers. So we decided that it's time to stop supporting the old version of reCAPTCHA, which means: We won't develop recaptcha validation before submit any new features for reCAPTCHA v1. Any new key registered on reCAPTCHA will be only valid for v2. If your site still uses reCAPTCHA v1, it will continue to work, but please expect that it may become https://developers.google.com/recaptcha/docs/verify less functional. We encourage you to register a new key and upgrade to v2 soon. I'd like to run automated tests with reCAPTCHA v2. What should I do? With the following test keys, you will always get No CAPTCHA and all verification requests will pass. Site key: 6LeIxAcTAAAAAJcZVRqyHh71UMIEGNQ_MXjiZKhI Secret key: 6LeIxAcTAAAAAGG-vFI1TnRWxMZNFuojJ4WifJWe The reCAPTCHA widget will show a warning message to claim that it's only for testing purpose. Please do not use these keys for your https://developers.google.com/recaptcha/docs/faq production traffic. I want to learn how reCAPTCHA grades my site traffic. Is there a report that I can check? Yes. reCAPTCHA reports the daily pass and fail stats in the admin console. If you are using reCAPTCHA V2, you can also see how many No CAPTCHAs were rendered per day as well as site spam index chart. You are strongly encouraged to upgrade to reCAPTCHA V2 to enjoy these advanced features. Can I customize the reCAPTCHA widget? Yes. reCAPTCHA offers two themes, light and dark, as shown below. To choose a theme, simply set the data-theme attribute in the grecaptcha.render parameter. Light theme: Dark theme:
Does reCAPTCHA support users that don't have JavaScript enabled? reCAPTCHA can only provide the optimal experience in terms of security and usability with JavaScript enabled. However, if supporting users who have disabled JavaScript is important for your site, you can enable the alternative challenge with the following steps. Navigate to the admin console and move the security preference slider to "easiest for users". Keep in mind that with this setting reCAPTCHA won't be able to use all of its security features. Then, you must add the following