How to validate Google reCAPTCHA v3 on server side?

by

Private key safety

While the answers here are definately working, they are using a GET request, which exposes your private key (even though https is used). On Google Developers the specified method is POST.

For a little bit more detail: https://stackoverflow.com/a/323286/1680919

Verification via POST

function isValid() 
{
    try {

        $url="https://www.google.com/recaptcha/api/siteverify";
        $data = ['secret'   => '[YOUR SECRET KEY]',
                 'response' => $_POST['g-recaptcha-response'],
                 'remoteip' => $_SERVER['REMOTE_ADDR']];
                 
        $options = [
            'http' => [
                'header'  => "Content-type: application/x-www-form-urlencoded\r\n",
                'method'  => 'POST',
                'content' => http_build_query($data) 
            ]
        ];
    
        $context  = stream_context_create($options);
        $result = file_get_contents($url, false, $context);
        return json_decode($result)->success;
    }
    catch (Exception $e) {
        return null;
    }
}

Array Syntax: I use the “new” array syntax ( [ and ] instead of array(..) ). If your php version does not support this yet, you will have to edit those 3 array definitions accordingly (see comment).

Return Values: This function returns true if the user is valid, false if not, and null if an error occured. You can use it for example simply by writing if (isValid()) { ... }

More Related Contents:

  1. show recaptcha after 5 attemp in php
  2. How do I show multiple recaptchas on a single page?
  3. How to Validate Google reCaptcha on Form Submit
  4. don´t recognize variable of php
  5. Can't echo items from array
  6. Call to a member function on a non-object [duplicate]
  7. How do I log errors and warnings into a file?
  8. How to sort files by date in PHP
  9. PHP If Statement with Multiple Conditions
  10. Is there a php function like python’s zip?
  11. PHP curly brace syntax for member variable
  12. Passing an Array as Arguments, not an Array, in PHP
  13. How can I convert many statement mysql to laravel eloquent?
  14. Merging two multidimensional arrays on specific key
  15. How to get all class names inside a particular namespace?
  16. PHP & Sessions: Is there any way to disable PHP session locking?
  17. Calculate total seconds in PHP DateInterval
  18. Why is calling a function (such as strlen, count etc) on a referenced value so slow?
  19. How to use the CSV MIME-type?
  20. Authenticating in PHP using LDAP through Active Directory
  21. Interleaving multiple arrays into a single array
  22. What is output buffering in PHP?
  23. php artisan migrate throwing [PDO Exception] Could not find driver – Using Laravel
  24. PDO and MySQL Fulltext searches
  25. php variable scope
  26. How to avoid “Using temporary” in many-to-many queries?
  27. PHP Function with Optional Parameters [duplicate]
  28. PHP – detect whitespace between strings
  29. file_get_contents() error
  30. using mod_rewrite with XAMPP and windows 7 – 64 bit?

Leave a Comment