Login forms with recaptcha

  • Resolved omahoung

    (@omahoung)


    1 year, 5 months ago

    Hello,

    I have on a website SPAM bot fake registrations. To stop this I had to activate the Google Recaptcha feature inside Wordfence. The fake registrations have stopped now but at the same time all the login forms available on the front-end doesn’t work anymore. I use a popup login form coming from the Kadence theme, bbpress login form displayed inside the forum pages, and a login form displayed down of events pages (events manager plugin). Any login attempt from any of these redirects to the WordPress default login page with the error message “VERIFICATION REQUIRED: Additional verification is required for login…”.

    I have seen some posts about similar problems but couldn’t find any solution.

    So my question is, is there a way to deactivate the Wordfence Recaptcha feature for login and activate it only on registration?

    Kind regards.

Viewing 2 replies - 1 through 2 (of 2 total)
  • Thread Starter omahoung

    (@omahoung)

    1 year, 5 months ago

    After many tries, I arrived to that solution:

    add_filter( 'wordfence_ls_require_captcha', 'omahoung_wfcaptcha' );
function omahoung_wfcaptcha() {
	$is_register = true;
	$from = $_SERVER['REQUEST_URI'];
	if ( strpos( $from, 'register' ) === false ) {
		$is_register = false;
	}
	return $is_register;
}

    This seems to work, I can now login again from front-end without error message and the registration looks protected by reCaptcha, but I am not sure it covers all the cases, or maybe there is a better way. Is there another way?

    Ideally I would prefer to have an option in the plugin settings to select on which page reCaptcha should be activated. Is this possible?

    Of course Wordfence can’t be compatible with all the login forms of all the themes and plugins, but is it possible to have somewhere in the settings an option to activated reCaptcha only when the login/registration comes from the default WordPress login page?

    Plugin Support wfpeter

    (@wfpeter)

    1 year, 5 months ago

    Hi @omahoung, thanks for reaching out to us.

    The solution you found regarding wordfence_ls_require_captcha is also mentioned in our help docs: https://www.wordfence.com/help/login-security/#customizing-captcha-behavior-with-wordpress-filters

    This is currently the best workaround for custom modals/forms as Wordfence currently only supports the default registration/login pages for WordPress and WooCommerce. I have forwarded your suggestion to the development team as all possible improvements are put forward and discussed internally. Unfortunately I can’t provide ongoing updates or possible delivery schedules here on the forums.

    Thanks,

    Peter.

Viewing 2 replies - 1 through 2 (of 2 total)
  • The topic ‘Login forms with recaptcha’ is closed to new replies.

Tags