Google ReCaptcha for Asp Net, simplified
Nuget Url: https://www.nuget.org/packages/ReCaptcha-AspNet
PM > Install-Package ReCaptcha-AspNet
Get your secret and public keys on https://www.google.com/recaptcha/admin
Add to you App/Web.config inside
<add key="recaptcha-secret-key" value="...[secret key]" />
<add key="recaptcha-public-key" value="...[public-key]" />Optional if you want to alter the default language of the Captcha (Get the language code on ReCaptcha site: https://developers.google.com/recaptcha/docs/language) Or you can use value "Auto" and it will get the Language from System.Thread.CurrentCulture
<add key="recaptcha-language-key" value="[language-code]" />Or via C# code: It's only needed to call it once, a good place to put this is at Application_Start() function
string publicKey = "...[public-key]";
string secretKey = "...[secret-key]";
ReCaptcha.Configure(publicKey, secretKey);
// Optional, select a default language:
ReCaptchaLanguage defaultLanguage = ReCaptchaLanguage.German;
ReCaptcha.Configure(publicKey, secretKey, defaultLanguage);
//Auto-select language from System.Thread.CurrentCulture
ReCaptchaLanguage defaultLanguage = ReCaptchaLanguage.Auto;
ReCaptcha.Configure(publicKey, secretKey, defaultLanguage);Optional if you want to alter the default theme from light to dark mode.
<add key="recaptcha-language-theme" value="dark" />Or via C# code:
//Optional select a default dark theme
ReCaptchaLanguage defaultLanguage = ReCaptchaLanguage.Auto;
ReCaptcha.Configure(publicKey, secretKey, defaultLanguage, ReCaptchaTheme.dark);Inside your form
<form action="myAction">
<input type="text" name="myinput1" />
@ReCaptcha.GetCaptcha() <!-- Will show your captcha as your configured Language,
if no language is defined it will show ReCaptcha default language (English) -->
</form>Optional if you want to override your configured default language:
<form action="myAction">
<input type="text" name="myinput1" />
@ReCaptcha.GetCaptcha(ReCaptchaLanguage.PortugueseBrazil) <!-- Will show your ReCaptcha as Portuguese,
overriding any previous configuration -->
</form>Optional if you want to override your configured theme (light/dark):
<form action="myAction">
<input type="text" name="myinput1" />
@ReCaptcha.GetCaptcha(theme: ReCaptchaTheme.dark) <!-- Will show your ReCaptcha on dark theme,
overriding any previous configuration -->
</form>Inside your form
<script type="text/javascript">function submit() { $('form').submit(); }</script>
<form action="myAction">
<input type="text" name="myinput1" />
@ReCaptcha.GetInvisibleCaptcha("submit", "Save") <!-- Will show a button, with a Label Save and call function "submit();" after user click ok and pass Captcha -->
</form>Optional if you want to override your configured default language:
<script type="text/javascript">function submit() { $('form').submit(); }</script>
<form action="myAction">
<input type="text" name="myinput1" />
@ReCaptcha.GetInvisibleCaptcha("submit", "Save", ReCaptchaLanguage.PortugueseBrazil) <!-- Will show your Invisible ReCaptcha as Portuguese, overriding any previous configuration -->
</form>Inside your controller function or in a filter
string userResponse = HttpContext.Request.Params["g-recaptcha-response"];
bool validCaptcha = ReCaptcha.ValidateCaptcha(userResponse);
if (validCaptcha){
// Real User, validated !
DoStuff();
...
} else {
// Bot Attack, non validated !
return RedirectToAction("YouAreARobot", "Index");
}You may use a Proxy to send user Response to ReCaptcha Server
...
const string proxyIp = "xxx.xxx.xxx.xxx";
const int proxyPort = 1234;
WebProxy webProxy = new WebProxy(proxyIp, proxyPort);
bool validCaptcha = ReCaptcha.ValidateCaptcha(userResponse, webProxy);
...May throws the following exception, if the secret key is invalid, or you pass a invalid user response as the ValidateCaptcha parameter:
throw new ReCaptchaException();It can also be called async:
public async ActionResult MyFunction() {
string userResponse = HttpContext.Request.Params["g-recaptcha-response"];
var validCaptcha = ReCaptcha.ValidateCaptchaAsync(userResponse);
DoSomeParallelStuff();
if (await validCaptcha){
// Real User, validated !
DoStuff();
...
} else {
// Bot Attack, non validated !
return RedirectToAction("YouAreARobot", "Index");
}
}