UNPKG

recaptcha-v2

Version:

Obtain a v2 reCAPTCHA form and verify it

github.com/mrpetef10/node-recaptcha-v2

mrpetef10/node-recaptcha-v2

143 lines (124 loc) 3.92 kB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
/*! * recaptcha-v2 * Copyright(c) 2015 Pete Mardell (https://github.com/mrpetef10) * Based on Michael Hampton's node-recaptcha (https://www.npmjs.com/package/recaptcha) (https://www.npmjs.com/~mirhampt) * MIT Licensed */ /** * Module dependencies. */ var https = require('https'), querystring = require('querystring'); /** * Constants. */ var API_HOST = 'www.google.com', API_END_POINT = '/recaptcha/api/siteverify'; /** * Initialize Recaptcha with given `public_key`, `private_key` and optionally * `data`. * * The `data` argument should have the following keys and values: * * remoteip: Optional. The user's IP address. * response: Required. The user response token provided by the reCAPTCHA to the user and provided to your site on. * secret: Required. The shared key between your site and ReCAPTCHA. * * @param {String} public_key Your Recaptcha public key. * @param {String} private_key Your Recaptcha private key. * @param {Object} data The Recaptcha data to be verified. See above for * format. (optional) * @param {Boolean} secure Flag for using https connections to load client-facing things. (optional) * @api public */ var Recaptcha = exports.Recaptcha = function Recaptcha(public_key, private_key, data, secure) { this.public_key = public_key; this.private_key = private_key; if (typeof(data) == 'boolean'){ this.data = undefined; this.is_secure = data; } else { this.data = data; this.is_secure = secure; } return this; } /** * Render the Recaptcha fields as HTML. * * If there was an error during `verify` and the selected Recaptcha theme * supports it, it will be displayed. * * @api public */ Recaptcha.prototype.toHTML = function() { return '<div class="g-recaptcha" data-sitekey="' + this.public_key + '"></div>'; }; /** * Verify the Recaptcha response. * * Example usage: * * var recaptcha = new Recaptcha('PUBLIC_KEY', 'PRIVATE_KEY', data); * recaptcha.verify(function(success, error_code) { * if (success) { * // data was valid. Continue onward. * } * else { * // data was invalid, redisplay the form using * // recaptcha.toHTML(). * } * }); * * @param {Function} callback * @api public */ Recaptcha.prototype.verify = function(callback) { var self = this; // See if we can declare this invalid without even contacting Recaptcha. if(typeof(this.data) === 'undefined') { this.error_code = 'invalid-input-response'; return callback(false, this.error_code); } if(!('response' in this.data && 'secret' in this.data)) { this.error_code = 'invalid-input-response'; return callback(false, this.error_code); } if(this.data.response === '') { this.error_code = 'missing-input-response'; return callback(false, this.error_code); } if(this.data.secret === '') { this.error_code = 'missing-input-secret'; return callback(false, this.error_code); } var data_qs = querystring.stringify(this.data); var req_options = { host: API_HOST, path: API_END_POINT, port: 443, method: 'POST', headers: { 'Content-Type': 'application/x-www-form-urlencoded', 'Content-Length': data_qs.length } }; var request = https.request(req_options, function(response) { var body = ''; response.on('error', function(err) { callback(false, err); }); response.on('data', function(chunk) { body += chunk; }); response.on('end', function() { body = JSON.parse(body); return callback(body['success'], body['error-codes']); }); }); request.write(data_qs, 'utf8'); request.end(); };