{"id":104,"date":"2023-02-21T09:07:51","date_gmt":"2023-02-21T09:07:51","guid":{"rendered":"https:\/\/blessingcr.com\/?p=104"},"modified":"2023-02-21T09:07:52","modified_gmt":"2023-02-21T09:07:52","slug":"recaptcha-%e4%ba%ba%e6%9c%ba%e9%aa%8c%e8%af%81-%e6%8e%a5%e5%85%a5","status":"publish","type":"post","link":"https:\/\/blessingcr.com\/?p=104","title":{"rendered":"reCAPTCHA \u4eba\u673a\u9a8c\u8bc1 \u63a5\u5165"},"content":{"rendered":"\n

1. \u65b0\u5efagcloud \u9879\u76ee<\/p>\n\n\n\n

2. \u542f\u7528recaptcha api\uff0c https:\/\/console.cloud.google.com\/security\/recaptcha?referrer=search&orgonly=true&project=metmake-backend-373703&supportedpurview=organizationId<\/a><\/p>\n\n\n\n

3. \u6dfb\u52a0\u670d\u52a1\u8d26\u53f7\uff0c \u5e76\u4e14\u6dfb\u52a0 captcha \u6743\u9650<\/p>\n\n\n\n

<\/div>
<\/div><\/div><\/div>\"https:\/\/blessingcr.com\/wp-content\/uploads\/2023\/02\/1676970424391.png\"<\/figure><\/a><\/figure>\n\n\n\n

4. \u751f\u6210sitekey\uff0c\u53ef\u4ee5\u5728\u4e0b\u9762\u7f51\u5740\u770b\u5230https:\/\/console.cloud.google.com\/security\/recaptcha?hl=zh-cn&project=metmake-backend-373703<\/a><\/p>\n\n\n\n

\/**
<\/em> * Create reCAPTCHA Site key which binds a domain name to a unique key.
<\/em> *
<\/em> * <\/em>@param <\/em>projectID <\/em>: GCloud Project ID.
<\/em> * <\/em>@param <\/em>domainName <\/em>: Specify the domain name in which the reCAPTCHA should be activated.
<\/em> *\/
<\/em>public String createSiteKey(String projectID, String domainName) throws IOException {
   \/\/ Initialize client that will be used to send requests. This client only needs to be created
   \/\/ once, and can be reused for multiple requests. After completing all of your requests, call
   \/\/ the `client.close()` method on the client to safely
   \/\/ clean up any remaining background resources.
   try (RecaptchaEnterpriseServiceClient client = RecaptchaEnterpriseServiceClient.create<\/em>()) {

      \/\/ Set the type of reCAPTCHA to be displayed.
      \/\/ For different types, see: https:\/\/cloud.google.com\/recaptcha-enterprise\/docs\/keys
      Key scoreKey =
            Key.newBuilder<\/em>()
                  .setDisplayName(\"want.net\")
                  .setWebSettings(
                        WebKeySettings.newBuilder<\/em>()
                              .addAllowedDomains(domainName)
                              .setAllowAmpTraffic(false)
                              .setIntegrationType(IntegrationType.SCORE<\/em>)
                              .build())
                  .build();

      CreateKeyRequest createKeyRequest =
            CreateKeyRequest.newBuilder<\/em>()
                  .setParent(ProjectName.of<\/em>(projectID).toString())
                  .setKey(scoreKey)
                  .build();

      \/\/ Get the name of the created reCAPTCHA site key.
      Key response = client.createKey(createKeyRequest);
      String keyName = response.getName();
      String recaptchaSiteKey = keyName.substring(keyName.lastIndexOf(\"\/\") + 1);
      System.out<\/em>.println(\"reCAPTCHA Site key created successfully. Site Key: \" + recaptchaSiteKey);
      return recaptchaSiteKey;
   }
}<\/pre>\n\n\n\n
5. \u524d\u7aef\u4f7f\u7528\u5bf9\u5e94\u7684sitekey \u62ff\u5230token<\/p>\n\n\n\n
<!DOCTYPE html>
<html lang=\"en\">

<head>
    <script src=\"https:\/\/www.google.com\/recaptcha\/enterprise.js?render=6Le8H8kjAAAAANgPHcGsF40zXmorFg4_pm5MHYNu\"><\/script>
<\/head>
<script  src=\"https:\/\/www.google.com\/recaptcha\/enterprise.js?render=6Le8H8kjAAAAANgPHcGsF40zXmorFg4_pm5MHYNu\"><\/script>
<script>
    grecaptcha.enterprise.ready(async () => {
        const token = await grecaptcha.enterprise.execute('6LcC9ssjAAAAACN9JhZlt_8AKxdjG6mtEqxbEnka', {action: 'homepage'});
        \/\/ IMPORTANT: The 'token' that results from execute is an encrypted response sent by
        \/\/ reCAPTCHA Enterprise to the end user's browser.
        \/\/ This token must be validated by creating an assessment.
        \/\/ See https:\/\/cloud.google.com\/recaptcha-enterprise\/docs\/create-assessment
        console<\/em>.log(token);
    });
<\/script>

<body>

<\/body>

<\/html><\/pre>\n\n\n\n
6. \u540e\u7aef\u901a\u8fc7token\uff0c \u62ff\u5230\u5177\u4f53\u5206\u6570<\/p>\n\n\n\n
public Boolean allow(String token, String action, Integer type) {
   \/\/ TODO(developer): Replace these variables before running the sample.
<\/em>   <\/em>String projectId = googleCloudCaptchaConfig.getProjectId();
   String recaptchaSiteKey = null;
   if (GoogleCloudCaptchaTypeEnum.SCORE<\/em>.getType().equals(type)) {
      recaptchaSiteKey = googleCloudCaptchaConfig.getScoreKey();
   }
   if (GoogleCloudCaptchaTypeEnum.CHALLENGE<\/em>.getType().equals(type)) {
      recaptchaSiteKey = googleCloudCaptchaConfig.getChallengeKey();
   }
   return createAssessment(projectId, recaptchaSiteKey, token, action) >= googleCloudCaptchaConfig.getAllowScore();
}

\/**
<\/em> * Create an assessment to analyze the risk of an UI action. Assessment approach is the same for
<\/em> * both 'score' and 'checkbox' type recaptcha site keys.
<\/em> *
<\/em> * <\/em>@param <\/em>projectID        <\/em>: GCloud Project ID
<\/em> * <\/em>@param <\/em>recaptchaSiteKey <\/em>: Site key obtained by registering a domain\/app to use recaptcha
<\/em> *                         services. (score\/ checkbox type)
<\/em> * <\/em>@param <\/em>token            <\/em>: The token obtained from the client on passing the recaptchaSiteKey.
<\/em> * <\/em>@param <\/em>recaptchaAction  <\/em>: Action name corresponding to the token.
<\/em> *\/
<\/em>private float createAssessment(String projectID, String recaptchaSiteKey, String token, String recaptchaAction) {
   \/\/ Initialize client that will be used to send requests. This client only needs to be created
   \/\/ once, and can be reused for multiple requests. After completing all of your requests, call
   \/\/ the `client.close()` method on the client to safely
   \/\/ clean up any remaining background resources.
   try (RecaptchaEnterpriseServiceClient client = RecaptchaEnterpriseServiceClient.create<\/em>()) {
      \/\/ Set the properties of the event to be tracked.
      Event event = Event.newBuilder<\/em>().setSiteKey(recaptchaSiteKey).setToken(token).build();

      \/\/ Build the assessment request.
      CreateAssessmentRequest createAssessmentRequest =
            CreateAssessmentRequest.newBuilder<\/em>()
                  .setParent(ProjectName.of<\/em>(projectID).toString())
                  .setAssessment(Assessment.newBuilder<\/em>().setEvent(event).build())
                  .build();

      Assessment response = client.createAssessment(createAssessmentRequest);

      \/\/ Check if the token is valid.
      if (!response.getTokenProperties().getValid()) {
         log<\/em>.info(
               \"The CreateAssessment call failed because the token was: \"
                     + response.getTokenProperties().getInvalidReason().name());
         return -1f;
      }

      \/\/ Check if the expected action was executed.
      \/\/ (If the key is checkbox type and 'action' attribute wasn't set, skip this check.)
      if (!response.getTokenProperties().getAction().equals(recaptchaAction)) {
         log<\/em>.info(
               \"The action attribute in reCAPTCHA tag is: \"
                     + response.getTokenProperties().getAction());
         log<\/em>.info(
               \"The action attribute in the reCAPTCHA tag \"
                     + \"does not match the action (\"
                     + recaptchaAction
                     + \") you are expecting to score\");
         return -1f;
      }

      \/\/ Get the reason(s) and the risk score.
      \/\/ For more information on interpreting the assessment,
      \/\/ see: https:\/\/cloud.google.com\/recaptcha-enterprise\/docs\/interpret-assessment
      for (ClassificationReason reason : response.getRiskAnalysis().getReasonsList()) {
         log<\/em>.info(\"reason:{}\", reason);
      }

      float recaptchaScore = response.getRiskAnalysis().getScore();
      log<\/em>.info(\"The reCAPTCHA score is: \" + recaptchaScore);

      \/\/ Get the assessment name (id). Use this to annotate the assessment.
      String assessmentName = response.getName();
      log<\/em>.info(\"Assessment name: \" + assessmentName.substring(assessmentName.lastIndexOf(\"\/\") + 1));
      return recaptchaScore;
   } catch (IOException e) {
      log<\/em>.error(\"google cloud captcha err:{}\", e.getMessage());
      return -2;
   }
}<\/pre>\n","protected":false},"excerpt":{"rendered":"
1. \u65b0\u5efagcloud \u9879\u76ee 2. \u542f\u7528recaptcha api\uff0c https:\/\/console […]<\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[22],"tags":[53,54],"class_list":["post-104","post","type-post","status-publish","format-standard","hentry","category-google-cloud","tag-recaptcha","tag-54"],"_links":{"self":[{"href":"https:\/\/blessingcr.com\/index.php?rest_route=\/wp\/v2\/posts\/104","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/blessingcr.com\/index.php?rest_route=\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/blessingcr.com\/index.php?rest_route=\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/blessingcr.com\/index.php?rest_route=\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/blessingcr.com\/index.php?rest_route=%2Fwp%2Fv2%2Fcomments&post=104"}],"version-history":[{"count":2,"href":"https:\/\/blessingcr.com\/index.php?rest_route=\/wp\/v2\/posts\/104\/revisions"}],"predecessor-version":[{"id":155,"href":"https:\/\/blessingcr.com\/index.php?rest_route=\/wp\/v2\/posts\/104\/revisions\/155"}],"wp:attachment":[{"href":"https:\/\/blessingcr.com\/index.php?rest_route=%2Fwp%2Fv2%2Fmedia&parent=104"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/blessingcr.com\/index.php?rest_route=%2Fwp%2Fv2%2Fcategories&post=104"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/blessingcr.com\/index.php?rest_route=%2Fwp%2Fv2%2Ftags&post=104"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}