-
Notifications
You must be signed in to change notification settings - Fork 0
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Custom Recaptcha Domain #1159
Comments
This question is specifically for Invisible Recaptcha (https://developers.google.com/recaptcha/docs/invisible) where on the server side we take the submitted value from the "g-recaptcha-response" and send it to google (or in this case our own internal google repeating api) on the server side. |
We have introduced a new setting - The reCAPTCHA 3 settings with default values now look like:
This will be available from Forms 13.1.0. |
Awesome! Will this work with 'score' based recaptcha, sometimes called 'frictionless' recaptcha which is invisible to the user except for the small recaptcha logo in the bottom right corner of their browser? |
Yes, that's the one we've applied it to. |
Our webserver policy is to disallow external http traffic -- for security reasons. For recaptcha, instead of sending a request to google directly from the webserver, we send an API request to an internal server which initiates the official google recaptcha token request then echoes the response back out to our webserver.
We would be able to use umbraco forms' recaptcha if we could provide an alternate domain via an appsetting that would let us route the recaptcha requests to our internal 'fake' recaptcha server instead.
This item has been added to our backlog AB#37614
The text was updated successfully, but these errors were encountered: