[英]Sanitise and validate $_POST['g-recaptcha-response'] in recaptcha
如何在Recaptcha中清理和验证$_POST['g-recaptcha-response']
https://github.com/google/recaptcha/blob/master/examples/example-captcha.php#L72
看起来它提供了一个很长的字母数字字符_和-因此是否会使用strip_tags()进行清理并检查是否只有字母数字字符_和-来验证?
您可以使用strip_tags但这不能确保没有发送其他字符,例如@, #, ... 一种解决方案是使用preg_match验证收到的字符串:
if (!preg_match('/^[\w-]*$/', $_POST['g-recaptcha-response'])) {
echo 'invalid captcha';
}
reCAPTCHA:缺少“g-recaptcha-response”的 POST 响应
[英]reCAPTCHA: Missing POST response for 'g-recaptcha-response'
Google的reCaptcha响应中的g-captcha-chasing响应无效
[英]Getting Null in g-recaptcha-response Google's reCaptcha
Google ReCaptcha不在某些页面上发布“ g-recaptcha-response”
[英]Google ReCaptcha not posting 'g-recaptcha-response' on SOME pages
Google reCAPTCHA引导模式中的未定义索引g-recaptcha-response
[英]Google reCAPTCHA undefined index g-recaptcha-response in bootstrap modal
新的Google ReCaptcha未发布/接收'g-recaptcha-response'
[英]New Google ReCaptcha not posting/receiving 'g-recaptcha-response'
通过将g-recaptcha-response传递给javascript文件中的php文件来验证Google Recaptcha
[英]Validating google recaptcha by passing g-recaptcha-response to php file from a javascript file
带Recaptcha v3的phpmailer不发送电子邮件-未定义索引:g-recaptcha-response
[英]phpmailer with recaptcha v3 doesn't send email - Undefined index: g-recaptcha-response
声明:本站的技术帖子网页,遵循CC BY-SA 4.0协议,如果您需要转载,请注明本站网址或者原文地址。任何问题请咨询:yoyou2525@163.com.