Closed Nek- closed 5 years ago
Thank you for the feedback.
CF-Connecting-IP
header if you are not using Cloudflare. The IP resolver would work. What do you mean by custom request
?enabled
to false
is convenient when it comes to functional and e2e testing.The Symfony request may be extended to add some custom stuff. (btw there are standards way to forward ip that are supported by Symfony and may be a better option if also supported by cloudflare, IDK)
For enabled part, the code I linked is useless.
It should exist a way to add it to other pages than forms (considering this practice highly improve the power of the captcha)
What do you mean here? I'm using this bundle in API methods as well, but not sure what are other cases?
For the last part: https://developers.google.com/recaptcha/docs/v3#placement
Hello thanks for providing open source a bundle for Recaptcha3, this is really kind. I'm going to try to help with a list of some things that can be improved:
HTTP_CF_CONNECTING_IP
directly. I understand this is on your use case but you probably should have a custom request or an IP resolver. It should not be hardcoded inside the validator