Security News
How Threat Actors are Abusing GitHub’s File Upload Feature to Host Malware
GitHub is susceptible to a CDN flaw that allows attackers to host malware on any public repository.
ember-g-recaptcha
Advanced tools
Readme
Easily integrate Google's reCaptcha in your app as an Ember Component.
Run the following command from inside your ember-cli project:
ember install ember-g-recaptcha
You need to generate a valid Site Key / Secret Key pair on Google's reCaptcha admin console.
Then, you need to set your Site Key in the ENV
var on your config/environment.js
file, like this:
var ENV = {
// ...
};
ENV['ember-g-recaptcha'] = {
jsUrl: 'https://www.google.com/recaptcha/api.js', // default
sitekey: 'your-recaptcha-site-key',
hl: 'tr', // Ex: Turkish
};
Add the component to your template like this:
<GRecaptcha @onSuccess={{this.onCaptchaResolved}} />
then in your component or controller 's actions:
@action
onCaptchaResolved(reCaptchaResponse) {
this.model.set('reCaptchaResponse', reCaptchaResponse);
// You should then save your model and the server would validate reCaptchaResponse
// ...
}
You know, after some time the reCaptcha response expires; g-recaptcha
's default behavior is to invoke the reset method. But, if you want to perform custom behavior instead (e.g. transitioning to another route) you can pass your custom action via the onExpired
property, like this:
<GRecaptcha
@onSuccess={{this.onCaptchaResolved}}
@onExpired={{this.onCaptchaExpired}}
/>
then in your component or controller 's actions:
@action
onCaptchaExpired() {
// your custom logic here
}
You might want to arbitrarily trigger reCaptcha reset. For example, if your form submission fails for errors on other fields, you might want to force user to solve a new reCaptcha challenge.
To do that, first you'll need to grab a reference to g-recaptcha
in your template, like this:
<GRecaptcha
@onRender={{fn (mut this.gRecaptcha)}}
@onSuccess={{this.onCaptchaResolved}}
/>
then you'll be able to invoke reset()
method on gRecaptcha
property anywhere in your component or controller 's code, like this:
this.gRecaptcha.reset();
You might want to pass a callback function that will be called after the reCaptcha renders on the page. This is great for things like loading spinners. To do so, you can do something like this:
<GRecaptcha
@onRender={{this.onCaptchaRendered}}
@onSuccess={{this.onCaptchaResolved}}
/>
then in your component or controller 's actions:
@action
onCaptchaRendered() {
// your custom onRender logic
}
@action
onCaptchaResolved() {
// ...
}
Sometimes you want to have the behavior of a reCAPTCHA but without the burden of injecting the downloaded library into your web page. This is particularly useful during tests.
<GRecaptcha
@skip={{true}}
@onSuccess={{this.onCaptchaResolved}}
/>
Using @skip
, you have the power to ignore the reCAPTCHA's real validations but still have the ability to call your success callback.
:warning: This does not work with onError
and onExpired
.
You can pass g-recaptcha
the following properties:
sitekey
theme
size
tabindex
badge
isolated
skip
*Their meaning is described on this official doc. Also have a look at the dummy app's example templates.
* The skip
option is not a official option.
invisible
type. More informationIn some cases you may want to use reCaptcha in the invisible mode. The only thing you need do is to add size
key to g-recaptcha
component with invisible
value and create a button with submit type, so you will get something like this:
<GRecaptcha @onSuccess={{this.onCaptchaResolved}} @size='invisible' />
<button {{on 'click' this.submit}} type='button'>Hello</button>
Then in your component you need to define submit
method which will execute reCaptcha
. For example:
@action
async submit() {
await window.grecaptcha.execute();
// Process rest of operations
}
In some countries, such as China, you may need to customize the source JavaScript URL. Since the google.com domain is blocked in China, you
must set the jsUrl
in the configuration to use the recaptcha.net
. This works outside China as well.
var ENV = {
// ...
};
ENV['ember-g-recaptcha'] = {
jsUrl: 'https://www.google.com/recaptcha/api.js', // default
sitekey: 'your-recaptcha-site-key',
};
This also requires the backend URL to be set to https://recaptcha.net/recaptcha/api/siteverify
. For more information on configuring the jsUrl
, see this issue.
ember-g-recaptcha is released under the MIT License.
FAQs
Easily integrate Google's reCaptcha in your app as an Ember Component
The npm package ember-g-recaptcha receives a total of 1,641 weekly downloads. As such, ember-g-recaptcha popularity was classified as popular.
We found that ember-g-recaptcha demonstrated a healthy version release cadence and project activity because the last version was released less than a year ago. It has 1 open source maintainer collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Security News
GitHub is susceptible to a CDN flaw that allows attackers to host malware on any public repository.
Security News
At Node Congress, Socket CEO Feross Aboukhadijeh uncovers the darker aspects of open source, where applications that rely heavily on third-party dependencies can be exploited in supply chain attacks.
Research
Security News
The Socket Research team found this npm package includes code for collecting sensitive developer information, including your operating system username, Git username, and Git email.