enabled = $config->get('nohcaptcha', false); $this->privateKey = $config->get('hcaptchaprivate'); $this->publicKey = $config->get('hcaptchapublic'); $this->theme = $config->get('hcaptchatheme'); $this->apiUrl = $config->get('hcaptcha_server'); $this->verifyUrl = $config->get('hcaptcha_server_verify'); // Grab the IP, remember load balancers // @todo is there a framework way to do it? $this->ip = isset($_SERVER['HTTP_X_FORWARDED_FOR']) ? $_SERVER['HTTP_X_FORWARDED_FOR'] : $_SERVER['REMOTE_ADDR']; // If any of the vital vars is missing, disable the whole thing if (!$this->privateKey || !$this->publicKey || !$this->apiUrl || !$this->verifyUrl) { $this->enabled = false; } } public function html() { if (!$this->enabled) { return ''; } // start output buffer, if hcaptcha is enabled add HTML and JS to the buffer ob_start(); ?>

input->get('h-captcha-response'); if (!$token) return false; $http = new Http(); try { $response = $http->post( $this->verifyUrl, array( 'secret' => $this->privateKey, 'remoteip' => $this->ip, 'response' => $token, ) ); } catch (Exception $e) { return false; } if ($response->code !== 200) { return false; } $result = new Registry($response->body); if ($result->get('success')) { return true; } return false; } }