Security News
OpenJS: “XZ Utils Cyberattack Likely Not an Isolated Incident”
OpenJS is warning of social engineering takeovers targeting open source projects after receiving a credible attempt on the foundation.
By Sarah Gooding - Apr 17, 2024
recaptcha-verify
Advanced tools
- Version published
- Maintainers
- 1
- Weekly downloads
- 491
- decreased by-49.64%
- Install size
- 40.4 kB
Weekly downloads
Readme
recaptcha-verify
Implements Google's reCAPTCHA in node.js. It can be used with pure node.js or in combination with express.js. Doesn't require additional libraries, just core http module.
Installation
- sign up for an API key in the google's page.
- create a new site to get the site key and public.
- install the package with:
$ npm install --save recaptcha-verify
Frontend Usage with plain HTML
Use the site key to display the widget in the page (inside a form). For a more info on how to display the widget, see the documentation.
<!doctype html>
<html lang="en">
<head>
<meta charset="UTF-8">
<title>Document title</title>
<script src='https://www.google.com/recaptcha/api.js'></script>
</head>
<body>
<form action="/nodeform">
<input type="text"/>
<input type="text"/>
<div class="g-recaptcha" data-sitekey="SITE_KEY"></div>
<input type="submit">
</form>
</body>
</html>
Backend Usage with express.js
In node we must use the secret key.
Recaptcha([options])
Options object have 2 keys:
- secret: the secret key of the recaptcha.
- verbose: if set to true, it show relevant information on each validation.Default: false.
.checkResponse(userResponse, callback)
- userResponse: is the key provided in each validation by the reCAPTCHA widget, see more info in the documentation.
- callback: have an error and a response params.
Callback returns an error when something is wrong. The response object is described in the documentation.
var Recaptcha = require('recaptcha-verify');
var recaptcha = new Recaptcha({
secret: 'SECRET_KEY',
verbose: true
});
app.get('/check', function(req, res){
// get the user response (from reCAPTCHA)
var userResponse = req.query['g-recaptcha-response'];
recaptcha.checkResponse(userResponse, function(error, response){
if(error){
// an internal error?
res.status(400).render('400', {
message: error.toString()
});
return;
}
if(response.success){
res.status(200).send('the user is a HUMAN :)');
// save session.. create user.. save form data.. render page, return json.. etc.
}else{
res.status(200).send('the user is a ROBOT :(');
// show warning, render page, return a json, etc.
}
});
});
Contact
For more information, please check out https://github.com/AlejandroSilva or send me and email to pm5k.sk[at]gmail.com
FAQs
a generic recaptcha validator
The npm package recaptcha-verify receives a total of 345 weekly downloads. As such, recaptcha-verify popularity was classified as not popular.
We found that recaptcha-verify demonstrated a not healthy version release cadence and project activity because the last version was released a year ago. It has 1 open source maintainer collaborating on the project.
Last updated on 27 Mar 2017
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Related posts
Company News
Connect with Socket at RSA and BSidesSF 2024
Come meet the Socket team at BSidesSF and RSA! We're sponsoring several fun networking events and we would love to see you there.
By Sarah Gooding - Apr 15, 2024
Security News
OSI to Lead Discussions on Navigating the Challenges of Doing Business with Open Source
OSI is starting a conversation aimed at removing the excuse of the SaaS loophole for companies navigating licensing and the complexities of doing business with open source.
By Sarah Gooding - Apr 12, 2024