Possibility to replace reCaptcha / Google Analytics and Google Fonts with FLOSS/Privacy friendly alternatives

[EchedelleLR]

I have been using your service by a while and suggested it to friends, but recently I took into account that the service is using reCaptcha for user validation in order to prevent abuse of service (the most dangerous think for URL shortener I think).

As adition, I also was notified about the use of Google Analytics and Google Fonts.

I wanted to know if you would check the possibility to change that.

So, as a starter point I would like to suggest the following alternatives:

• For Google reCaptcha
• For Google Analytics
• And for Google Fonts I propose self-hosting them if possible.

[gautamkrishnar]

https://www.hcaptcha.com/ is a better option, paired with https://matomo.org/ for analytics.

[ralyodio]

can we just disable captcha?

[MKRhere]

Supporting multiple/open captcha services might be a larger commitment, but having an option to disable captcha, and localising Google fonts would be a good first step.

Safari does not support third-party caching and Chrome has recently moved in this step. Firefox to follow. Using Google fonts has no particular caching advantage anymore.

[ralyodio]

i don't want google tracking my users. google fonts will do this.

[AlexHaffer]

Another alternative to Google's reCaptcha would be hCaptcha.

[ukdaaan]

Has there been any movement on this?

I'd personally like to throw Turnstile into the mix as it's been around a little while now and for Apple users it integrates Private Access Tokens which essentially means they should never see a captcha request.

---

🔗 Private Access Tokens - https://blog.cloudflare.com/eliminating-captchas-on-iphones-and-macs-using-new-standard/ 🔗 Turnstile - https://blog.cloudflare.com/turnstile-private-captcha-alternative/

[MKRhere]

We welcome any proposals on this topic followed by a PR.

Captcha alternative (and disabling captcha) PRs should also implement the corresponding config options. Google Fonts doesn't need to be loaded from CDN anymore, so a PR vendoring them into Kutt will be accepted.

If you choose to work on one of these, and you're stuck or need help with something, feel free to ask. Make a draft PR if you can, so others will know you're working on it.

[ukdaaan]

I'll have a look into it, thanks.