• 10.0.0 - 10.0.24
    541 201 9965 Email Website
  • Contents
    Search:
     

    Home > Security and Tech > CAPTCHA Security

    CAPTCHA Security

    reCAPTCHA Setup (10.0.14+ versions)

    NOTE: Starting with AspDotNetStorefront version 10.0.14 Google reCAPTCHA v2 is now used for captcha.

    The old image-based captcha is no longer available. If you were using the old captcha, it will be disabled until the new reCAPTCHA AppConfigs are configured.

    You will need to get a free account with Google then change the Configuration - Settings for reCAPTCHA in your cart admin.

    You will need the Site Key and the Secret Key to enter in your site Settings ( reCAPTCHA.SiteKey and reCAPTCHA.SecretKey ), then be sure to reset your admin cache (Refresh Store button).

    Your initial setup in reCAPTCHA management will look something like this (be sure reCAPTCHA v2 is selected):

     

    Setting Name Description
    reCAPTCHA.RequiredOnCheckout

    If TRUE, the Checkout process requires shoppers to verify they are not a robot to login or to create an account at checkout.

    NOTE: DO NOT set this TRUE until you have successfully tested your setup on the Contact Form.

    reCAPTCHA.RequiredOnContactForm If TRUE, the ContactUs page requires customers to verify they are not a robot to send a message.
    reCAPTCHA.RequiredOnCreateAccount

    If TRUE, the Create Account page requires customers to verify they are not a robot to create an account.

    NOTE: DO NOT set this TRUE until you have successfully tested your setup on the Contact Form.

    reCAPTCHA.RequiredOnStoreLogin

    If TRUE, the Customer Login/Signin page requires customers to verify they are not a robot to login to their account.

    NOTE: DO NOT set this TRUE until you have successfully tested your setup on the Contact Form.

    reCAPTCHA.SecretKey The 'Secret Key' value from your Google reCAPTCHA account.
    reCAPTCHA.SiteKey The 'Site Key' value from your Google reCAPTCHA account.

     

    CAPTCHA Setup (pre-10.0.14 versions)

    CAPTCHA stands for "Completely Automated Public Turing test to tell Computers and Humans Apart". These tests are used to ensure that your site is not subjected to automated attacks/spam from bots attempting to register or log in to your site. Customers must enter the text seen in the CAPTCHA image (which computers cannot read) before they can log in:

    The CAPTCHA image can be enabled on 3 pages, using the following Settings:

     

    Setting Name Page
    ContactUs.UseCaptcha
    ContactUs.aspx
    SecurityCodeRequiredOnCreateAccount CreateAccount.aspx
    SecurityCodeRequiredOnCheckout
    ShoppingCart.aspx
    SecurityCodeRequiredOnStoreLogin signin.aspx

     

    The CAPTCHA image can be customized according to the requirements/desires of your site, using the following Settings:

     

    Setting Name Description
    Captcha.AllowedCharactersRegex This is a regular expression which determines which characters the CAPTCHA image will contain. Do not change this if you are not familiar with regular expressions!
    Captcha.CaseSensitive Setting this to true will require customers to properly match the case shown in the CAPTCHA image. Setting this to false does NOT make the CAPTCHA image not use caps in the image, it simply ignores the case for the customer entry. Disabling caps entirely would require editing the Captcha.AllowedCharactersRegex AppConfig.
    Captcha.MaxAsciiValue Do not change this unless you know what you are doing!
    Captcha.NumberOfCharacters Specifies the number of characters the CAPTCHA image will contain.


    Actions
    Print This Article
    Bookmark
    Email This Article
    Previous Article
    Next Article