reCAPTCHA demo

Add your keys

If you do not have keys already then visit https://www.google.com/recaptcha/admin to generate them. Edit this file and set the respective keys in $siteKey and $secret. Reload the page after this.

This example is sending the Content-Security-Policy header. Look at the source and inspect the network tab for this request to see what's happening. The reCAPTCHA v3 API is being called here, however you can use the same approach for the v2 API calls as well.

NOTE:This is a sample implementation, the score returned here is not a reflection on your Google account or type of traffic. In production, refer to the distribution of scores shown in your admin interface and adjust your own threshold accordingly. Do not raise issues regarding the score you see here.

1. reCAPTCHA script loading
2. grecaptcha.ready() fired, calling

   grecaptcha.execute('', {action: ''})'

3. Received token from reCAPTCHA service, sending to our backend with:

   fetch('/recaptcha-v3-verify.php?token=abc123

4. Received response from our backend:

   {"json": "from-backend"}

⤴️ Try again