Captcha

Below attached screenshot displays the kartify backend for the Captcha section under the Extensions tab.

Under the Captcha module, there are two available options:

(1) Basic Captcha

(2) Google reCAPTCHA


(1) Basic Captcha

A CAPTCHA (Completely Automated Public Turing test to tell Computers and Humans Apart) is a type of challenge-response test used in computing to determine whether the user is a human. It is a type of security measure known as challenge-response authentication.

CAPTCHA technology authenticates that a real person is accessing the web content to block spammers and bots that try to automatically harvest email addresses or try to automatically sign up for access to websites, blogs or forums.

(i) To enable Basic Captcha, click on the edit icon.

(ii) After clicking on the edit icon, set the status as Enabled to activate the Basic Captcha. Click on the Save icon in the top right corner to save the changes.

(iii) Next, navigate to Extensions > Modules > Captcha

Inside Captcha, fill in the required details:

(a) Status: Enabled
(b) Captcha: Select Basic Captcha from the drop-down.
(c) Captcha Page: Select the pages on which the captcha has to be enabled

Click on the save icon in the top right corner to save the changes.

(2) Google reCAPTCHA

Google reCAPTCHA protects our website from fraud and abuse without creating friction.

reCaptcha uses an advanced risk analysis engine and adaptive challenges to keep malicious software from engaging in abusive activities on our website. Meanwhile, legitimate users will be able to login, make purchases, view pages, or create accounts and fake users will be blocked.

Advantages of reCaptcha:

(a) Proven: reCaptcha has been at the forefront of bot mitigation for over a decade and actively protects data for a network of five million sites.

(b) Frictionless: A seamless fraud detection service that stops bots and other automated attacks while approving valid users.

(c) Adaptive: reCAPTCHA’s risk-based bot algorithms apply continuous machine learning that factors in every customer and bot interaction to overcome the binary heuristic logic of traditional challenge-based bot detection technologies.

(i) To start using reCAPTCHA, we need to sign up for an API key pair for our website. The key pair consists of a site key and secret key. The site key is used to invoke the reCAPTCHA service on our site or mobile application.

To use the reCAPTCHA, we need to set up an account. Once we have our account, we need to add our website domain and obtain a site key and a secret key.

In the Google Cloud console, go to the reCAPTCHA Enterprise page. https://console.cloud.google.com/projectselector2/security/recaptcha?_ga=2.226896861.1942554520.1666459365-1220026202.1663831442&pli=1&supportedpurview=project 

From the above link, create the project for the website.


Below mentioned are the steps to create a reCAPTCHA account:


Step 1. Go to the "Admin" page (click the admin button on the top right of the page).

Step 2. Click on the + (plus) symbol on the top bar to create a new site.

Step 3. Add a label, for example, add your domain name.

Step 4. Pick the reCAPTCHA type. Pick 'reCAPTCHA v3'.

Step 5. Enter your website domain name

Step 6. Provide the email address of the website owner(s)

Step 7. Read and agree to the terms of service. Tick the box.

Step 8. Receive alerts to your email if your integration is thought to be wrong or an increase of suspicious traffic is suspected

Once the above is completed and the "Submit" button has been pressed, you can continue to obtain your Site Key and Secret Key.

In order to integrate and use reCAPTCHA v3 on your website, you need to get your reCAPTCHA Keys (Site Key and Secret Key). Here's how to get your keys:

Step 1. Click on the settings icon on the top bar.

Step 2. Expand the reCAPTCHA keys block. Please take a copy of these keys and save them on your computer for later use.

(ii) Once we obtain the Site Key and Secret Key, navigate to Extensions > Modules > Captcha.
Inside Captcha, add the relevant details:
(a) Status: Enabled
(b) Captcha: Select Google reCAPTCHA from the drop-down
(c) Enter the Site Key and Secret Key
(d) Captcha Page: Select the page on which the captcha has to be enabled

Click on the save icon in the top right corner to save the changes.

(iv) Next, under Extensions > Captcha, click on the edit icon for Google reCAPTCHA. After clicking on the edit icon, set the status as Enabled and save the changes.

(v) Next. we have to update the site key in the code of the page for which we are enabling the captcha. (Take help from a developer for that code snippet).

For example, captcha has to be enabled for a static page, like the contact us page.

Navigate to Catalogue > Information > Contact Us page.

Then, paste that code snippet containing the site key in the code for that static page and save.