LoginRadius Identity Platform provides you the feature to add another layer of security to your registration form by configuring CAPTCHA, which ensures that the person registering is not a bot.
Note: CAPTCHA is mainly used as a security check to ensure only humans can pass through. Generally, bots are not capable of solving a captcha.
As a part of your Login and Registration flows, LoginRadius CAPTCHA settings allow you to enable Google reCaptcha, which is a service from Google that protects web applications from spam and abuse. It is easy for humans to solve, but hard for “bots” and other malicious software to figure out.
Currently, LoginRadius supports two different versions of the Google reCAPTCHA.
- reCAPTCHA v2: This is the second version of the reCAPTCHA service. With this, consumers are presented with descriptions along with a set of images to identify based on the description.
- Invisible reCAPTCHA: This version provides a better experience to the consumers by tracking mouse movements to identify if a human is interacting with the application or it is a bot. If identified as a bot, it displays the CAPTCHA option on the screen.
Note: You can select one of the reCAPTCHA options while configuring CAPTCHA settings in Google.
The following explains the configuration and deployment of the above CAPTCHA features:
This section covers the required configurations that you need to perform to implement the Google reCAPTCHA functionality.
Log in to your Google account, navigate to https://www.google.com/recaptcha/intro/v3.html, and select Admin console on the top right, as highlighted in the following screen:
You will be redirected to the reCAPTCHA’s configuration section.
Click the + (create) button, the following screen will appear:
- Enter the name/label for the reCAPTCHA configuration (you can use your application’s name) and select the version of the reCAPTCHA you would like to use.
- Under the Domain, enter your website’s domain (where this reCAPTCHA will be used). If you are implementing in your development environment, enter
localhost. The purpose is to whitelist your application domain.
Click the Submit button and you will get the Public and Private Key. Use these Public and Private keys in to configure Google reCAPTCHA for your LoginRadius app
- Log in to your LoginRadius Dashboard account, select your app, then from the left navigation panel, click the Security section and then navigate to the CAPTCHA Setting section.
Click the down arrow and the CAPTCHA Setting screen will appear:
Enter or select the following CAPTCHA details:
- reCAPTCHA Type: Choose the type of reCAPTCHA from the dropdown.
- Public Key: Enter the Public Key provided by Google reCAPTCHA.
- Private Key: Enter the Private Key provided by Google reCAPTCHA.
Note: Check the Step 1 to get the Public and Private key and to register for Google reCAPTCHA.
- Click the Save button.
In case of reCAPTCHA v2, the captcha will be available on your Auth Page
<your-app-name>.hub.loginradius.com/auth.aspx as highlighted in the below screen`.