KOBIL Captcha
Kobil Captcha
The main task of this execution is initiated to prevent bot spamming.
Type
| Protocol | OpenID Connect 1.0 |
|---|---|
| HTTP method | GET |
| Type | Browser Flow |
| Endpoint | Authorization Endpoint |
| Flow Supported | Authorization code flow Implicit flow Hybrid flow |
| Response | ID Token, Access Token, Refresh Token |
| Response Mode | query, form_post, fragment |
How to configure
To access the config of the execution press the Actions button and select Config. The authenticator configuration screen will appear. Then enter your config data.
Configuration
Requirements in Realm Settings
- In order to get the Google reCAPTCHA, the following configurations are required:
-
CAPTCHA_SITE_KEY, CAPTCHA_SECRET_KEY required to be updated in the Realm settings.
-
In the
Content-Security-Policyparameter field, [frame-src 'self' https://www.google.com.] must be added.(Pathway: Realm-settings -> Security-defences -> Headers -> Content-Security-Policy)
-
Parameters involved in Kobil Captcha
| Parameter | Description |
|---|---|
| Alias | Display name of configuration, which occurs in authentication flow. (Example: Kobil Captcha) |
| JSON Script | JSON to display inputs in Headless V2 theme. |
| JSON Error Script | JSON to display the error messages in Headless V2 theme. |
User Flow
Execution Flow
- GOOGLE reCAPTCHA site key is initiated along with KOBIL Username Password Form.
- Captcha response are validated with the GOOGLE reCAPTCHA API.
- User logs into the application using valid captcha and KOBIL Username Password Form.