Google reCAPTCHA
From AgileApps Support Wiki
Revision as of 05:18, 8 January 2024 by Wikidevuser (talk | contribs) (→Step 1: Generating Private and Public keys)
What is reCAPTCHA?
reCAPTCHA protects the webforms from fraud and abuse without creating friction. It uses an advanced risk analysis engine and adaptive challenges to keep malicious software from engaging in abusive activities on the webforms. For more information, view the Google reCAPTCHA article.
How to enable reCAPTCHA in webforms?
Note: The following workflow is applicable for OnPrem application.
Step 1: Generating Private and Public keys
- Go to the Google reCAPTCHA page.
- Click the v3 Admin Console button at the top.
- Enter a label for easy site identification (e.g., domain.com).
- Choose the desired reCAPTCHA type.
- In the Domains field, enter the desired domain (e.g., subdomain.domain.com) and click the + (Add domain) icon.
- If you have additional domains, add them in the next field.
- Read the terms and check the respective checkbox.
- Click the Submit button.
- The site key and secret key will now appear. The site key is the public key, and the secret key is the private key.
- Copy both keys. These keys need to be configured in LongJump.
Step 2: Configuring the public and private keys in LongJump
- Login to your LongJump account.
- Click Settings > Service Provider Settings > Service Configuration.
- Click the Edit button at the top.
- Under Basic Service Configuration, you can find the Recaptcha Private Key and Recaptcha Public Key fields.
- Paste the site key copied from the Google reCAPTCHA in the Recaptcha Public Key field.
- Paste the secret key copied from the Google reCAPTCHA in the Recaptcha Private Key field.
- Click the Save button.
- Under Security Headers Configuration, you can find that the CSP Whitelisted Domains and CORS Whitelisted Domains are populated automatically.