142 lines
7.1 KiB
PHP
142 lines
7.1 KiB
PHP
|
<?php
|
||
|
|
/**
|
||
|
|
* BSD 3-Clause License
|
||
|
|
* @copyright (c) 2019, Google Inc.
|
||
|
|
* @link https://www.google.com/recaptcha
|
||
|
|
* All rights reserved.
|
||
|
|
*
|
||
|
|
* Redistribution and use in source and binary forms, with or without
|
||
|
|
* modification, are permitted provided that the following conditions are met:
|
||
|
|
* 1. Redistributions of source code must retain the above copyright notice, this
|
||
|
|
* list of conditions and the following disclaimer.
|
||
|
|
*
|
||
|
|
* 2. Redistributions in binary form must reproduce the above copyright notice,
|
||
|
|
* this list of conditions and the following disclaimer in the documentation
|
||
|
|
* and/or other materials provided with the distribution.
|
||
|
|
*
|
||
|
|
* 3. Neither the name of the copyright holder nor the names of its
|
||
|
|
* contributors may be used to endorse or promote products derived from
|
||
|
|
* this software without specific prior written permission.
|
||
|
|
*
|
||
|
|
* THIS SOFTWARE IS PROVIDED BY THE COPYRIGHT HOLDERS AND CONTRIBUTORS "AS IS"
|
||
|
|
* AND ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
|
||
|
|
* IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE ARE
|
||
|
|
* DISCLAIMED. IN NO EVENT SHALL THE COPYRIGHT HOLDER OR CONTRIBUTORS BE LIABLE
|
||
|
|
* FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
|
||
|
|
* DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR
|
||
|
|
* SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER
|
||
|
|
* CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY,
|
||
|
|
* OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE
|
||
|
|
* OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.
|
||
|
|
*/
|
||
|
|
|
||
|
|
require __DIR__ . '/appengine-https.php';
|
||
|
|
|
||
|
|
// Initiate the autoloader. The file should be generated by Composer.
|
||
|
|
// You will provide your own autoloader or require the files directly if you did
|
||
|
|
// not install via Composer.
|
||
|
|
require_once __DIR__ . '/../vendor/autoload.php';
|
||
|
|
|
||
|
|
// Register API keys at https://www.google.com/recaptcha/admin
|
||
|
|
$siteKey = '';
|
||
|
|
$secret = '';
|
||
|
|
|
||
|
|
// Copy the config.php.dist file to config.php and update it with your keys to run the examples
|
||
|
|
if ($siteKey == '' && is_readable(__DIR__ . '/config.php')) {
|
||
|
|
$config = include __DIR__ . '/config.php';
|
||
|
|
$siteKey = $config['v2-invisible']['site'];
|
||
|
|
$secret = $config['v2-invisible']['secret'];
|
||
|
|
}
|
||
|
|
|
||
|
|
// reCAPTCHA supports 40+ languages listed here: https://developers.google.com/recaptcha/docs/language
|
||
|
|
$lang = 'en';
|
||
|
|
?>
|
||
|
|
<!DOCTYPE html>
|
||
|
|
<html lang="en">
|
||
|
|
<meta charset="UTF-8">
|
||
|
|
<meta name="viewport" content="width=device-width,height=device-height,minimum-scale=1">
|
||
|
|
<link rel="shortcut icon" href="https://www.gstatic.com/recaptcha/admin/favicon.ico" type="image/x-icon"/>
|
||
|
|
<link rel="canonical" href="https://recaptcha-demo.appspot.com/recaptcha-v2-invisible.php">
|
||
|
|
<script type="application/ld+json">{ "@context": "http://schema.org", "@type": "WebSite", "name": "reCAPTCHA demo - Invisible", "url": "https://recaptcha-demo.appspot.com/recaptcha-v2-invisible.php" }</script>
|
||
|
|
<meta name="description" content="reCAPTCHA demo - Invisible" />
|
||
|
|
<meta property="og:url" content="https://recaptcha-demo.appspot.com/recaptcha-v2-invisible.php" />
|
||
|
|
<meta property="og:type" content="website" />
|
||
|
|
<meta property="og:title" content="reCAPTCHA demo - Invisible" />
|
||
|
|
<meta property="og:description" content="reCAPTCHA demo - Invisible" />
|
||
|
|
<link rel="stylesheet" type="text/css" href="/examples.css">
|
||
|
|
<title>reCAPTCHA demo - Invisible</title>
|
||
|
|
|
||
|
|
<header>
|
||
|
|
<h1>reCAPTCHA demo</h1><h2>Invisible</h2>
|
||
|
|
<p><a href="/">↩️ Home</a></p>
|
||
|
|
</header>
|
||
|
|
<main>
|
||
|
|
<?php
|
||
|
|
if ($siteKey === '' || $secret === ''):
|
||
|
|
?>
|
||
|
|
<h2>Add your keys</h2>
|
||
|
|
<p>If you do not have keys already then visit <kbd> <a href = "https://www.google.com/recaptcha/admin">https://www.google.com/recaptcha/admin</a></kbd> to generate them. Edit this file and set the respective keys in <kbd>$siteKey</kbd> and <kbd>$secret</kbd>. Reload the page after this.</p>
|
||
|
|
<?php
|
||
|
|
elseif (isset($_POST['g-recaptcha-response'])):
|
||
|
|
// The POST data here is unfiltered because this is an example.
|
||
|
|
// In production, *always* sanitise and validate your input'
|
||
|
|
?>
|
||
|
|
<h2><kbd>POST</kbd> data</h2>
|
||
|
|
<kbd><pre><?php var_export($_POST);?></pre></kbd>
|
||
|
|
<?php
|
||
|
|
// If the form submission includes the "g-captcha-response" field
|
||
|
|
// Create an instance of the service using your secret
|
||
|
|
$recaptcha = new \ReCaptcha\ReCaptcha($secret);
|
||
|
|
|
||
|
|
// If file_get_contents() is locked down on your PHP installation to disallow
|
||
|
|
// its use with URLs, then you can use the alternative request method instead.
|
||
|
|
// This makes use of fsockopen() instead.
|
||
|
|
// $recaptcha = new \ReCaptcha\ReCaptcha($secret, new \ReCaptcha\RequestMethod\SocketPost());
|
||
|
|
|
||
|
|
// Make the call to verify the response and also pass the user's IP address
|
||
|
|
$resp = $recaptcha->setExpectedHostname($_SERVER['SERVER_NAME'])
|
||
|
|
->verify($_POST['g-recaptcha-response'], $_SERVER['REMOTE_ADDR']);
|
||
|
|
if ($resp->isSuccess()):
|
||
|
|
// If the response is a success, that's it!
|
||
|
|
?>
|
||
|
|
<h2>Success!</h2>
|
||
|
|
<kbd><pre><?php var_export($resp);?></pre></kbd>
|
||
|
|
<p>That's it. Everything is working. Go integrate this into your real project.</p>
|
||
|
|
<p><a href="/recaptcha-v2-invisible.php">⤴️ Try again</a></p>
|
||
|
|
<?php
|
||
|
|
else:
|
||
|
|
// If it's not successful, then one or more error codes will be returned.
|
||
|
|
?>
|
||
|
|
<h2>Something went wrong</h2>
|
||
|
|
<kbd><pre><?php var_export($resp);?></pre></kbd>
|
||
|
|
<p>Check the error code reference at <kbd><a href="https://developers.google.com/recaptcha/docs/verify#error-code-reference">https://developers.google.com/recaptcha/docs/verify#error-code-reference</a></kbd>.
|
||
|
|
<p><strong>Note:</strong> Error code <kbd>missing-input-response</kbd> may mean the user just didn't complete the reCAPTCHA.</p>
|
||
|
|
<p><a href="/recaptcha-v2-invisible.php">⤴️ Try again</a></p>
|
||
|
|
<?php
|
||
|
|
endif;
|
||
|
|
else:
|
||
|
|
// Add the g-recaptcha tag to the form you want to include the reCAPTCHA element
|
||
|
|
?>
|
||
|
|
<p>Submit the form and reCAPTCHA will run automatically.</p>
|
||
|
|
<form action="/recaptcha-v2-invisible.php" method="post" id="demo-form">
|
||
|
|
<fieldset>
|
||
|
|
<legend>An example form</legend>
|
||
|
|
<label class="form-field">Example input A: <input type="text" name="ex-a" value="foo"></label>
|
||
|
|
<label class="form-field">Example input B: <input type="text" name="ex-b" value="bar"></label>
|
||
|
|
<button class="g-recaptcha form-field" data-sitekey="<?php echo $siteKey; ?>" data-callback='onSubmit'>Submit ↦</button>
|
||
|
|
</fieldset>
|
||
|
|
</form>
|
||
|
|
<script type="text/javascript" src="https://www.google.com/recaptcha/api.js?hl=<?php echo $lang; ?>" async defer></script>
|
||
|
|
<script type="text/javascript">
|
||
|
|
function onSubmit(token) {
|
||
|
|
document.getElementById("demo-form").submit();
|
||
|
|
}
|
||
|
|
</script>
|
||
|
|
<?php
|
||
|
|
endif;?>
|
||
|
|
</main>
|
||
|
|
|
||
|
|
<!-- Google Analytics - just ignore this -->
|
||
|
|
<script async src="https://www.googletagmanager.com/gtag/js?id=UA-123057962-1"></script>
|
||
|
|
<script>window.dataLayer = window.dataLayer || []; function gtag(){dataLayer.push(arguments);} gtag('js', new Date()); gtag('config', 'UA-123057962-1');</script>
|