Evgenij LegotskojSept. 23, 2017, 6:55 a.m.

Django - Tutorial 027. Implementation Google reCAPTCHA

I added to the site reCAPTCHA when registering users and some other actions of anonymous users, and then too many robots are registered on the site.

The adding of reCAPTCHA was done through the decorator function, so that it was possible to reuse this method for site views.

To implement reCAPCTHA on the site, you need to register your site in the reCAPTCHA admin area.

As a domain, I chose the IP address of the local loop on my PC where I am developing the site.

Implementation

The implementation of reCAPTCHA consists of two steps:

  1. The implementation of reCAPTCHA on the client side, that is, in HTML code
  2. The implementation reCAPTCHA on the server side

When registering the site, two keys will be generated:

  1. Site key - The key that will be placed on the HTML page
  2. Secret key - The key that will be used to communicate the site and the Google reCAPTCHA service

The implementation process will be as follows. On an HTML page in a form that requires validation of user actions, place the script reCAPTCHA, and the site key.

On the server side, we embed the decoder for the view function or the view class, if you use the Class Based View in the Django site. I'm using the Class Based View.

When filling out the form and sending its data to the server, it is necessary to pull out information about the response to the validation of the captcha, and then send a request to the Google server to verify the site and get the final result of validation. The answer with the initial result of the validation of the captcha will be contained in the g-recaptcha-response field. It is this answer that is sent with a secret key to the Google server to verify the site and get the final result of user verification.

To create a query, use the requests library.

pip install requests

Decorator

Secret Key is placed in the settings of your site, the simplest option is to add it to settings.py , although not the safest.

GOOGLE_RECAPTCHA_SECRET_KEY = '6LdqzjEUAAAAAKTDYsfuwZce-oa214GC8QeChVBF'

Next, create a file decorators.py , which will contain the decorator reCAPTCHA. We put this file next to the files views.py, models.py, etc.

from django.conf import settings
from django.contrib import messages

import requests


def check_recaptcha(function):
    def wrap(request, *args, **kwargs):
        request.recaptcha_is_valid = None
        if request.method == 'POST':
            recaptcha_response = request.POST.get('g-recaptcha-response')
            data = {
                'secret': settings.GOOGLE_RECAPTCHA_SECRET_KEY,
                'response': recaptcha_response
            }
            r = requests.post('https://www.google.com/recaptcha/api/siteverify', data=data)
            result = r.json()
            if result['success']:
                request.recaptcha_is_valid = True
            else:
                request.recaptcha_is_valid = False
                messages.error(request, 'Invalid reCAPTCHA. Please try again.')
        return function(request, *args, **kwargs)

    wrap.__doc__ = function.__doc__
    wrap.__name__ = function.__name__
    return wrap

Then we wrap the decorator with the required view:

# -*- coding: utf-8 -*-

from django.conf.urls import url

from . import views
from .decorators import check_recaptcha

app_name = 'registration'
urlpatterns = [
    url(r'^register/$', check_recaptcha(views.RegisterView.as_view()), name='register'),
]

And in the view itself we do a validation for the validity of reCAPTCHA. In my case, this was a view inherited from the FormView class.

class RegisterView(FormView):
    form_class = UserCreationForm
    template_name = 'register.html'

    def form_valid(self, form):
        # проверка валидности reCAPTCHA
        if self.request.recaptcha_is_valid:
            form.save()
            return render(self.request, 'register_success.html', self.get_context_data())
        return render(self.request, 'register.html', self.get_context_data())

Client side

On the client side, you need to add the script's connection code, the location of the captcha, and output error messages.

{% extends 'base.html' %}
{% block content %}
    <form action="{% url 'register' %}" method="post">
        {% csrf_token %}
        {{ form.as_p }}
        <script src='https://www.google.com/recaptcha/api.js'></script>
        <div class="form-group g-recaptcha" data-sitekey="6LdqzjEUAAAAABRAtK1a3QhIWbn46X_gdcXvhnbG"></div>
        {% if messages %}
            {% for message in messages %}
                {{ message }}
            {% endfor %}
        {% endif %}
        <input type="submit" value="Register">
    </form>
{% endblock %}

Conclusion

As a result, we get a fairly simple introduction of reCAPTCHA on the Django site.

For Django I recommend VDS-server of Timeweb hoster .

We recommend hosting TIMEWEB
We recommend hosting TIMEWEB
Stable hosting, on which the social network EVILEG is located. For projects on Django we recommend VDS hosting.
Support the author Donate
SB

Thank you! Really an elegant and fast solution!
You saved my day, thank again :-)

Sergio

Thank you for feed back. If you will have more questions, you can ask on the forum

V

Спасибо.

Только использую декоратор не в urls.py а перед views

t
  • #
  • Feb. 15, 2021, 2:23 a.m.

Добрый день, а эти же действия не подходят для reCHAPTCHA v3?

Специально не проверял поддержку для версии 3

t
  • #
  • July 2, 2021, 7:20 a.m.

Как проверю напишу:)

Comments

Only authorized users can post comments.
Please, Log in or Sign up
Card image cap
Pulsum Via

Project for travelers from EVILEG.

Go
Fornex

Let me recommend you a great European Fornex hosting.

Fornex has proven itself to be a stable host over the years.

For Django projects I recommend VPS hosting

Following the link you will receive a 5% discount on shared hosting services, dedicated servers, VPS and VPN

View Hosting
Share on social networks
Donate

The EVILEG project has switched to a non-commercial basis and will develop solely on the enthusiasm of the site creator, the enthusiasm of users, donations and the hosting referral system

Thank you for your support

Available ways to support the project

PayPal

PatreonYandex.MoneyMore
DP

C ++ - Test 004. Pointers, Arrays and Loops

  • Result:10points,
  • Rating points-10
VS

C ++ - Test 004. Pointers, Arrays and Loops

  • Result:0points,
  • Rating points-10
VS

C ++ - Test 004. Pointers, Arrays and Loops

  • Result:50points,
  • Rating points-4
Last comments
Ds

Android and QML - Adding Splash Screen

Интересен формат иконки, если это png, то как решается проблема scalability? не растягивается ли лого на китайфонах с 1280х2500? У меня просто сплеш скрин с градиентом и логотипом, и вот несколь…
p

Qt/C++ - Lesson 023. Moving QGraphicsItem on QGraphicsScene with mouse help

FIGURE Abdominopelvic regions. Zjuaqd https://newfasttadalafil.com/ - Cialis Cialis Recommendations for preparing children and adolescents for invasive cardiac procedures a statement…
KG

How to use nested forms in Django

Спасибо за полезную статью. Подскажите пожалуйста, что делать если нужно реализовать большее количество вложенных форм? Например если на модель Address ссылается fk другой модели, на котору…

Qt/C++ - Lesson 051. QMediaPlayer – simple audio player

Не думаю, QMediaPlayer в один поток проигрывает. Если вам нужно одновременное воспроизведение нескольких аудиоисточников, то вам нужна Bass audio library , насколько знаю, её обычно и…
AG

Qt/C++ - Lesson 051. QMediaPlayer – simple audio player

есть такая вообще возможность ?
Now discuss on the forum
AB

Sorting the added QML elements in the ListModel

I am writing an alarm clock in QML, I am required to sort the alarms in ascending order (depending on the date or time (if there are several alarms on the same day). I've done the sorting …

Изменение поведения QGroupBox при клике на его чекбокс

Я вынес виджеты вынес за пределы QGroupBox в итоге.

QSqlRelatipnalTabelModel Qt 4.8.1 как получить id внешней связи?

Есть еще принципиально другой вариант решить раз и навсегда вопрос с полей id внешней связи. Это форкнуть Qt 4.8.1 QSqlTableModel, то есть создать свою ветку развития. Например создадим кл…

Добавление AndroidManifest.xml в cmake

Добрый день. Как добавить AndroidManifest.xml в cmake? Это не работвет set(ANDROID_PACKAGE_SOURCE_DIR ${PROJECT_SOURCE_DIR}/android CACHE INTERNAL "")set(ANDROID_BUID_DIR ${CMAKE_C…
s

Событие wheelEvent для виджета QLineEdit

вот что получилось: gui.py from PyQt5 import QtCore, QtGui, QtWidgets class LineEdit(QtWidgets.QLineEdit): def wheelEvent(self, event): #print("_") delta = 1 if e…
About
Services
© EVILEG 2015-2022
Recommend hosting TIMEWEB