Prevent brute force attackers from busting through your authentication defenses by incorporating reCAPTCHA into your login process using reCAPTCHA v3 integration.
reCAPTCHA prevents hackers from using automated processes to log in to someone's account without permission. The reCAPTCHA interface is free and easy to use, and it knows how to distinguish between humans and bots.
Just enable it and enter your reCAPTHCA keys. Then you should see reCAPTCHA in your login box!
Go to Settings ➜ reCAPTCHA.
On that page, you should see a switch to enable or disable this feature. To use reCAPTCHA, toggle the switch to on.
On the same page, you should see inputs for Site Key and Secret in addition to controls for score-based validation. Read below to learn more.
Obtain your Site Key and Secret Key from Google reCAPTCHA v3.
As displayed in the image above, here is what you do:
- Fill in the label.
- Select reCaptcha v3.
- Add your domain.
- Select Accept the reCAPTCHA Terms of Service.
Google then should present you with your keys.
Copy the Site and Secret keys from Google.
Paste them into your Frontegg portal.
Here you also can set the minimum passing score required to accept reCAPTCHA validation. To use this feature, toggle the switch to on and set your score.
The score is the value at which the request is considered valid. A value of 1.0 is very likely a good interaction and a value of 0.0 is very likely a bot. The greater the score, the stricter your security.
Now reCAPTCHA is up and running in your login box!
Updated about 2 months ago