Anti-Spam Options - [BetoPho] reCaptcha v3 Login Integration

There are several requests to make this around the forum, so I guess I would contribute one.

Product Information
Provide reCaptcha intergration for vBulletin 4's login process that can check for bots or unsafe traffics using Google's famous reCaptcha engine.

Main Features

• Ultilizing reCaptcha v3 advantages: invisible checks that can determine how safe a user/traffic is, from very likely human to very likely bot, using reCaptcha's 'score' system.
• Performing specific actions to unsafe users/traffics, reject the login or redirect to another URL.
• Bad traffic users captured by the product will just be displayed with an invalid login screen.
• Ability to exclude users that won't be checked by reCaptcha.
• Lightweight and easy to configure.
• Simple installation: Install - Get reCaptcha keys - Configure the action - Done.

Future Versions Planning

• Expanding integration with other forum sections, like thread/post posting, PM, album, etc.
• Expanding integration with other activities, like register, search, page viewing, etc.
• Combining suport with reCaptcha v2, adding additional layer of human verification, for example, only when reCaptcha v3 detected likely unsafe traffic, verification form from v2 will show for the user to verify.
• Admincp Dashboard to view all failed login attemps captured by reCaptcha.
• Support for vBulletin 3 & 5.
• You name it.

Details

• Files upload: none
• Plugins: 6
• Templates: 3 (2 templates, 1 CSS template)
• Phrases: 2

Instructions

1. (Preparation) Have your reCaptcha v3 keys ready first. reCaptcha homepage.
2. Import the product XML file using Product section.
3. Go to Options > [BetoPho] reCaptcha Integration.
4. Insert the keys first (this product won't work without the keys).
5. Configure and start using.

Additional Instructions

1. To check if automatic template works, after putting the keys and configuring everything, view the homepage source (with the login form) as a Guest user and search for this code:
   
   HTML Code:

   <input type="hidden" name="btp_rcaptcha_response" id="btp_rcaptcha_input">

   If found, it's good. If not found, it means you are using modified templates/style.
2. In case it's not found, modify the template with the login form (usually 'header' template, might be other one depends on your style), search for the login form:
   
   HTML Code:

   action="login.php?do=login"

   When found, insert the product code in the #1 section into anywhere inside of the form. For example, it will look like this:
   
   Code:

   <form id="navbar_loginform" action="login.php?do=login" method="post" (other codes...)>
   ...
   <input type="hidden" name="btp_rcaptcha_response" id="btp_rcaptcha_input">
   ...
   </form>

   Then it will work.

Let me know if you have any questions or suggestions.
Thank you

Changelog
1.0.0 - Jul 05 2019

• Initial Release

1.1.0 - Jul 07 2019

• Fix Admincp/Modcp locked out issue
• Cleaning up codes and preparation for additional features

[dknelson]

I have this installed. I checked the code from the registration page and it is indeed present.

My question is how do I set the "Human Verification Settings" under Options in the control panel. I I select "ReCaptcha", it shows my KEYS but when I try to register, it says "Image not Selected Properly" or so something like that. Do I just turn off all verification under Options?

[BetoPho]

Quote:

Originally Posted by dknelson

I have this installed. I checked the code from the registration page and it is indeed present.

My question is how do I set the "Human Verification Settings" under Options in the control panel. I I select "ReCaptcha", it shows my KEYS but when I try to register, it says "Image not Selected Properly" or so something like that. Do I just turn off all verification under Options?

The product currently does not integrate with vBulletin native Human Verification system, as the system doesn't support Captcha check for login.

For now, the product is intended to prevent bot logins, which could partly solve the issues you're having, since it's no use for bots to just registered but unable to post. I will add integration support to vBulletin Human Verification system on another future version.

[dknelson]

I understand. So should I turn off all the native Human Verification settings or does this not interfere with it?

[BetoPho]

You don't have to turn it off, this product will work safely together with vBulletin native verification system

[dknelson]

Thanks. I have it installed but honestly don't know if it's doing anything or not. If it is supposed to stop spam registrations, it doesn't seem to help much. Will give it a few days.

[dknelson]

One more question. Hopefully the last for now. How do I get rid of the Captcha banner? I deleted it hide it but it still shows up. It adds text to the footer but doesn't get rid of the blue graphics at the bottom right of the forum.

[BetoPho]

By default if you choose 'Yes' in the 'Hide reCaptcha badge', the badge will hide, but then the footer text will show due to Google policy on reCaptcha v3. Then you can manually remove the footer text by edit the 'btp_rcaptcha_notice' template.

The footer text is to ensure the site complies with Google policy as I've heard of them devalidating a site because of missing both the badge + footer text. You might hide both at your own risk.

[dknelson]

I understand how it's supposed to work. What I'm saying though is that the captcha badge doesn't go away regardless of being checked to hide it or not. Hiding it DOES add the text to the footer, which I have no problem with. But the badge remains. That is what I want to get rid of.

[Meister2017]

Quote:

Originally Posted by dknelson

Thanks. I have it installed but honestly don't know if it's doing anything or not. If it is supposed to stop spam registrations, it doesn't seem to help much. Will give it a few days.

This plugin does not prevent spam registration but only posting spambots.

[CvP]

Quote:

Originally Posted by BetoPho

Issues

• Being locked out from logging into Admincp/Modcp
  This issue is fixed since v1.1.0.

Just installed by downloading from here. Got locked out