captcha

package
v0.1.1 Latest Latest
Warning

This package is not in the latest version of its module.

 Go to latest Published: Aug 18, 2025 License: Apache-2.0 Imports: 14 Imported by: 0

README

Captcha Package

A unified interface for various CAPTCHA services supporting Google reCAPTCHA (v2/v3), hCaptcha, and Cloudflare Turnstile.

Purpose and Features

  • Multiple Providers: Support for Google reCAPTCHA, hCaptcha, and Cloudflare Turnstile
  • Unified Interface: Single API for all captcha providers
  • Zero-Config: Works with sensible defaults
  • Environment Configuration: Configure via environment variables
  • Validation: Server-side token validation with context support
  • HTML Generation: Automatic generation of client-side HTML/JavaScript
  • Disabled Mode: Built-in support for development/testing with captcha disabled

Installation

go get github.com/gobeaver/beaver-kit/captcha

Usage Examples

Zero-Config Usage
package main

import (
    "context"
    "fmt"
    "github.com/gobeaver/beaver-kit/captcha"
)

func main() {
    // Initialize with environment configuration
    if err := captcha.Init(); err != nil {
        panic(err)
    }
    
    // Get the global instance
    service := captcha.Service()
    
    // Generate HTML for the form
    html := service.GenerateHTML()
    fmt.Println(html)
    
    // Validate a token
    token := "user-submitted-token"
    remoteIP := "192.168.1.1"
    valid, err := service.Validate(context.Background(), token, remoteIP)
    if err != nil {
        fmt.Printf("Validation error: %v\n", err)
    }
    fmt.Printf("Token valid: %v\n", valid)
}
Environment-Based Configuration

Set environment variables:

export BEAVER_CAPTCHA_ENABLED=true
export BEAVER_CAPTCHA_PROVIDER=recaptcha
export BEAVER_CAPTCHA_SITE_KEY=your-site-key
export BEAVER_CAPTCHA_SECRET_KEY=your-secret-key
export BEAVER_CAPTCHA_VERSION=2

Then use in code:

// Automatically loads from environment
if err := captcha.Init(); err != nil {
    panic(err)
}

service := captcha.Service()
Direct Configuration
// Create with specific configuration
cfg := captcha.Config{
    Provider:  "hcaptcha",
    SiteKey:   "your-hcaptcha-site-key",
    SecretKey: "your-hcaptcha-secret-key",
    Enabled:   true,
}

// Option 1: Initialize global instance with config
if err := captcha.Init(cfg); err != nil {
    panic(err)
}

// Option 2: Create a new instance
service, err := captcha.New(cfg)
if err != nil {
    panic(err)
}
Using Specific Implementations
// Create Google reCAPTCHA v2
googleV2 := captcha.NewGoogleCaptcha("site-key", "secret-key", 2)

// Create Google reCAPTCHA v3
googleV3 := captcha.NewGoogleCaptcha("site-key", "secret-key", 3)

// Create hCaptcha
hcaptcha := captcha.NewHCaptcha("site-key", "secret-key")

// Create Cloudflare Turnstile
turnstile := captcha.NewTurnstile("site-key", "secret-key")
Disabled Mode (Development/Testing)
cfg := captcha.Config{
    Enabled: false, // Captcha validation always returns true
}

service, _ := captcha.New(cfg)
valid, _ := service.Validate(context.Background(), "any-token", "any-ip")
// valid is always true when disabled
Testing with Reset
func TestCaptchaValidation(t *testing.T) {
    // Clean up after test
    defer captcha.Reset()
    
    // Initialize with test configuration
    testConfig := captcha.Config{
        Provider:  "recaptcha",
        SiteKey:   "test-site-key",
        SecretKey: "test-secret-key",
        Enabled:   true,
    }
    
    if err := captcha.Init(testConfig); err != nil {
        t.Fatal(err)
    }
    
    service := captcha.Service()
    // ... run tests
}

Configuration Options

Field Environment Variable Default Description
Provider BEAVER_CAPTCHA_PROVIDER recaptcha Captcha service provider (recaptcha, hcaptcha, turnstile)
SiteKey BEAVER_CAPTCHA_SITE_KEY - Public key for the captcha service
SecretKey BEAVER_CAPTCHA_SECRET_KEY - Private key for server-side validation
Version BEAVER_CAPTCHA_VERSION 2 Captcha version (only for recaptcha: 2 or 3)
Enabled BEAVER_CAPTCHA_ENABLED false Whether captcha validation is active

Provider-Specific Features

Google reCAPTCHA
  • v2: Traditional "I'm not a robot" checkbox
  • v3: Invisible captcha with score-based validation
// reCAPTCHA v3 with score validation
googleService := captcha.NewGoogleCaptcha(siteKey, secretKey, 3)
if v3Service, ok := googleService.(*captcha.GoogleCaptchaService); ok {
    valid, score, err := v3Service.ValidateV3WithScore(
        ctx, token, remoteIP, "login", 0.5,
    )
}
hCaptcha
  • Privacy-focused alternative to reCAPTCHA
  • Supports enterprise features (score, reasons)
Cloudflare Turnstile
  • Cloudflare's privacy-preserving captcha
  • No user interaction required in most cases

HTML Generation

Each provider generates appropriate HTML:

// reCAPTCHA v2
<script src="https://www.google.com/recaptcha/api.js" async defer></script>
<div class="g-recaptcha" data-sitekey="your-site-key"></div>

// hCaptcha
<script src="https://js.hcaptcha.com/1/api.js" async defer></script>
<div class="h-captcha" data-sitekey="your-site-key"></div>

// Turnstile
<script src="https://challenges.cloudflare.com/turnstile/v0/api.js" async defer></script>
<div class="cf-turnstile" data-sitekey="your-site-key"></div>

Error Handling

The package defines specific errors for better debugging:

var (
    ErrInvalidConfig    = errors.New("invalid configuration")
    ErrNotInitialized   = errors.New("service not initialized")
    ErrProviderRequired = errors.New("captcha provider required")
    ErrInvalidProvider  = errors.New("invalid captcha provider")
    ErrKeysRequired     = errors.New("site key and secret key required")
)

Example error handling:

service, err := captcha.New(cfg)
if err != nil {
    if errors.Is(err, captcha.ErrInvalidProvider) {
        // Handle invalid provider
    } else if errors.Is(err, captcha.ErrKeysRequired) {
        // Handle missing keys
    }
}

Complete Example

package main

import (
    "context"
    "errors"
    "fmt"
    "log"
    "net/http"
    
    "github.com/gobeaver/beaver-kit/captcha"
)

func main() {
    // Initialize captcha service
    if err := captcha.Init(); err != nil {
        log.Fatal(err)
    }
    
    http.HandleFunc("/", formHandler)
    http.HandleFunc("/submit", submitHandler)
    
    log.Println("Server starting on :8080")
    log.Fatal(http.ListenAndServe(":8080", nil))
}

func formHandler(w http.ResponseWriter, r *http.Request) {
    service := captcha.Service()
    html := fmt.Sprintf(`
        <html>
        <head><title>Captcha Example</title></head>
        <body>
            <form action="/submit" method="POST">
                <input type="text" name="username" placeholder="Username" required>
                %s
                <button type="submit">Submit</button>
            </form>
        </body>
        </html>
    `, service.GenerateHTML())
    
    w.Header().Set("Content-Type", "text/html")
    w.Write([]byte(html))
}

func submitHandler(w http.ResponseWriter, r *http.Request) {
    if r.Method != http.MethodPost {
        http.Error(w, "Method not allowed", http.StatusMethodNotAllowed)
        return
    }
    
    // Get the captcha response token
    token := r.FormValue("g-recaptcha-response") // For reCAPTCHA
    // token := r.FormValue("h-captcha-response") // For hCaptcha
    // token := r.FormValue("cf-turnstile-response") // For Turnstile
    
    // Validate the token
    service := captcha.Service()
    valid, err := service.Validate(context.Background(), token, r.RemoteAddr)
    
    if err != nil {
        log.Printf("Captcha validation error: %v", err)
        http.Error(w, "Captcha validation failed", http.StatusBadRequest)
        return
    }
    
    if !valid {
        http.Error(w, "Invalid captcha", http.StatusBadRequest)
        return
    }
    
    // Process the form...
    username := r.FormValue("username")
    fmt.Fprintf(w, "Welcome, %s! Captcha validated successfully.", username)
}

License

Part of the Beaver Kit project. See the main LICENSE file for details.

Documentation

Overview

config.go

Package captcha provides a unified interface for various CAPTCHA services

Index

Constants

This section is empty.

Variables

View Source 
var (
	ErrInvalidConfig    = errors.New("invalid configuration")
	ErrNotInitialized   = errors.New("service not initialized")
	ErrProviderRequired = errors.New("captcha provider required")
	ErrInvalidProvider  = errors.New("invalid captcha provider")
	ErrKeysRequired     = errors.New("site key and secret key required")
)

Package-specific errors

Functions

func Init added in v0.0.4 

func Init(configs ...Config) error

Init initializes the global instance with optional config

func Reset added in v0.0.4 

func Reset()

Reset clears the global instance (for testing)

Types

type Builder added in v0.1.0 

type Builder struct {
	// contains filtered or unexported fields
}

Builder provides a way to create CAPTCHA service instances with custom prefixes

func WithPrefix added in v0.1.0 

func WithPrefix(prefix string) *Builder

WithPrefix creates a new Builder with the specified prefix

func (*Builder) Init added in v0.1.0 

func (b *Builder) Init() error

Init initializes the global CAPTCHA service using the builder's prefix

func (*Builder) New added in v0.1.0 

func (b *Builder) New() (CaptchaService, error)

New creates a new CAPTCHA service using the builder's prefix

type CaptchaService 

type CaptchaService interface {
	// Validate validates a captcha token with the remote service
	Validate(ctx context.Context, token string, remoteIP string) (bool, error)

	// GenerateHTML generates the HTML needed to embed the captcha
	GenerateHTML() string
}

CaptchaService defines the interface for all captcha services

func New added in v0.0.4 

func New(cfg Config) (CaptchaService, error)

New creates a new instance with given config

func Service added in v0.0.4 

func Service() CaptchaService

Service returns the global captcha service instance

type Config added in v0.0.4 

type Config struct {
	// Provider specifies the captcha service provider (recaptcha, hcaptcha, turnstile)
	Provider string `env:"CAPTCHA_PROVIDER,default:recaptcha"`

	// SiteKey is the public key for the captcha service
	SiteKey string `env:"CAPTCHA_SITE_KEY"`

	// SecretKey is the private key for server-side validation
	SecretKey string `env:"CAPTCHA_SECRET_KEY"`

	// Version specifies the captcha version (only used for recaptcha: 2 or 3)
	Version int `env:"CAPTCHA_VERSION,default:2"`

	// Enabled determines if captcha validation is active
	Enabled bool `env:"CAPTCHA_ENABLED,default:false"`
}

Config defines captcha service configuration

func GetConfig added in v0.0.4 

func GetConfig() (*Config, error)

GetConfig returns config loaded from environment

type DisabledService added in v0.0.4 

type DisabledService struct{}

DisabledService is a no-op captcha service

func (*DisabledService) GenerateHTML added in v0.0.4 

func (d *DisabledService) GenerateHTML() string

func (*DisabledService) Validate added in v0.0.4 

func (d *DisabledService) Validate(ctx context.Context, token string, remoteIP string) (bool, error)

type GoogleCaptchaService 

type GoogleCaptchaService struct {
	// contains filtered or unexported fields
}

GoogleCaptchaService implements the CaptchaService interface for Google reCAPTCHA

func NewGoogleCaptcha 

func NewGoogleCaptcha(siteKey, secretKey string, version int) *GoogleCaptchaService

NewGoogleCaptcha creates a new Google reCAPTCHA service

func (*GoogleCaptchaService) GenerateHTML 

func (g *GoogleCaptchaService) GenerateHTML() string

GenerateHTML implements the CaptchaService interface for Google reCAPTCHA

func (*GoogleCaptchaService) Validate 

func (g *GoogleCaptchaService) Validate(ctx context.Context, token string, remoteIP string) (bool, error)

Validate implements the CaptchaService interface for Google reCAPTCHA

func (*GoogleCaptchaService) ValidateV3WithScore 

func (g *GoogleCaptchaService) ValidateV3WithScore(ctx context.Context, token, remoteIP, expectedAction string, minScore float64) (bool, float64, error)

ValidateV3WithScore validates a reCAPTCHA v3 token with specified minimum score and action

type HCaptchaResponse 

type HCaptchaResponse struct {
	Success     bool     `json:"success"`
	ChallengeTS string   `json:"challenge_ts"`
	Hostname    string   `json:"hostname"`
	Credit      bool     `json:"credit,omitempty"`
	ErrorCodes  []string `json:"error-codes,omitempty"`
	Score       *float64 `json:"score,omitempty"`        // Enterprise only
	ScoreReason []string `json:"score_reason,omitempty"` // Enterprise only
}

HCaptchaResponse represents the response from hCaptcha's verification API

type HCaptchaService 

type HCaptchaService struct {
	// contains filtered or unexported fields
}

HCaptchaService implements the CaptchaService interface for hCaptcha

func NewHCaptcha 

func NewHCaptcha(siteKey, secretKey string) *HCaptchaService

NewHCaptcha creates a new hCaptcha service

func (*HCaptchaService) GenerateHTML 

func (h *HCaptchaService) GenerateHTML() string

GenerateHTML implements the CaptchaService interface for hCaptcha

func (*HCaptchaService) Validate 

func (h *HCaptchaService) Validate(ctx context.Context, token string, remoteIP string) (bool, error)

Validate implements the CaptchaService interface for hCaptcha

type RecaptchaResponse 

type RecaptchaResponse struct {
	Success     bool     `json:"success"`
	Score       float64  `json:"score,omitempty"`  // v3 only
	Action      string   `json:"action,omitempty"` // v3 only
	ChallengeTS string   `json:"challenge_ts"`
	Hostname    string   `json:"hostname,omitempty"`
	ErrorCodes  []string `json:"error-codes,omitempty"`
}

RecaptchaResponse represents the response from Google's reCAPTCHA API

type TurnstileResponse 

type TurnstileResponse struct {
	Success     bool     `json:"success"`
	ChallengeTS string   `json:"challenge_ts"`
	Hostname    string   `json:"hostname"`
	ErrorCodes  []string `json:"error-codes,omitempty"`
	Action      string   `json:"action,omitempty"`
	CData       string   `json:"cdata,omitempty"`
}

TurnstileResponse represents the response from Cloudflare's Turnstile verification API

type TurnstileService 

type TurnstileService struct {
	// contains filtered or unexported fields
}

TurnstileService implements the CaptchaService interface for Cloudflare Turnstile

func NewTurnstile 

func NewTurnstile(siteKey, secretKey string) *TurnstileService

NewTurnstile creates a new Cloudflare Turnstile service

func (*TurnstileService) GenerateHTML 

func (t *TurnstileService) GenerateHTML() string

GenerateHTML implements the CaptchaService interface for Turnstile

func (*TurnstileService) Validate 

func (t *TurnstileService) Validate(ctx context.Context, token string, remoteIP string) (bool, error)

Validate implements the CaptchaService interface for Turnstile

Source Files

View all Source files

Jump to

Keyboard shortcuts

? : This menu
/ : Search site
f or F : Jump to
y or Y : Canonical URL
go.dev uses cookies from Google to deliver and enhance the quality of its services and to analyze traffic. Learn more.