Deutsch Français Italiano

Recaptcha

Inhaltsverzeichnis

Introduction

reCAPTCHA is a service from Google that was developed to protect websites from automated attacks such as spam or misuse. It distinguishes between real people and bots (“Digital robots”) that try to abuse forms or other website functions.

With the free reCAPTCHA module from 21.Shop, you can integrate reCAPTCHA into your online shop. In this guide, we explain more about reCAPTCHA and how to configure the module.

Explanation: What is the difference between reCAPTCHA v2 and reCAPTCHA v3?

reCAPTCHA v2

reCAPTCHA v2 asks the user to complete a task, such as checking a box (“I’m not a robot”) or selecting images that contain certain objects to confirm that they are human.

Please note that this guide is specifically aimed at reCAPTCHA v3. If you are using reCAPTCHA v2, deviations may occur.

reCAPTCHA v3 works in the background by analyzing user behavior on the website to determine whether it is a real person or a bot, without requiring the user to complete a task. It provides a score from 0 to 1 that indicates the probability of whether the visitor is human. We recommend using reCAPTCHA v3.

Configuration of the reCAPTCHA module

Necessary for the start

Step 1: Register your domain for using reCAPTCHA

  1. Log in with your Google account in Google Chrome.
  2. Open the following link: https://www.google.com/recaptcha/admin
    1. (If you have already created a reCAPTCHA before, click on the plus sign in the administration to create another one.)
  3. Label: Give the reCAPTCHA a name so you can recognize it later. For example “great-shoes v3”.
  4. reCAPTCHA type: Select “Score-based (v3)".
  5. Domains: Enter the domain of your online shop.
  6. Google Cloud Platform: You can leave this field as it is automatically filled in.
  7. Click on “Submit”.
  8. A window with two codes that you will need soon will now appear. Keep this window open and open another window.

Step 2: Install reCAPTCHA module

If you have already installed the reCAPTCHA module, you can skip this step.

  1. Go to your 21.Commerce administration.
  2. Click on “Modules”“Module management”.
  3. Under “Modules not yet installed” you will find the reCAPTCHA module. Select it and then click on “Install”.
  4. Click on “Manage module”.

Step 3: Configure reCAPTCHA module

If you are not already in the reCAPTCHA module administration, go to your 21.Commerce administration and to “Modules”“reCAPTCHA”.

  1. Activation: Check the box to activate the module.
  2. Version: Select “reCAPTCHA v3”.
  3. Website key: Enter the upper code from the reCAPTCHA website, whose window you should still have open. (Click on “Copy website key” and paste the code into the 21.Shop admin.)
  4. Secret key: Enter the lower code from the reCAPTCHA website, whose window you should still have open. (Click on “Copy secret key” and paste the code into the 21.Shop admin.)
  5. Locations: Here you can select where reCAPTCHA should be activated on your website. We recommend leaving all locations activated.
  6. Threshold: We recommend leaving the value at 0.5 for now. You can find out more in the “Measures for further spam registrations” chapter.
  7. Timeout: We recommend leaving the value at 1800 seconds for now. You can find out more in the “Measures for further spam registrations” chapter.
  8. Save the settings.

You have successfully installed reCAPTCHA! You can also check this by going to your shop and creating a new customer account, for example. On the right side you should see the reCAPTCHA symbol.

Measures for further spam registrations

If you continue to receive many spam registrations after activating reCAPTCHA, there are various options for action.

Switch from reCAPTCHA v2 to reCAPTCHA v3

If you are still using reCAPTCHA v2, consider switching to reCAPTCHA v3. To do this, go through the “Configuration of the reCAPTCHA module” chapter.

Adjust threshold

reCAPTCHA v3 assigns each user a score (“risk score”) between 0 and 1. A score of 0 indicates that it is probably a bot, while 1 indicates a real person. With the threshold, you determine at which risk score a user is allowed to submit a form.

The default value is 0.5. You can increase this value by 0.1 for further bot registrations and wait to see if the bot registrations are reduced. We generally advise against choosing a value of 0.9 or higher, as this would also prevent more real customers from submitting forms.

Explanation: What happens if a real person cannot register?

If reCAPTCHA assesses a real person as a bot, they cannot submit the form and the following error message appears: “Your request could not be sent because our system detected unusual activity. Please try again or contact us.". If more and more customers contact you because they could not fill out a form, you should consider lowering the threshold.

Timeout

With reCAPTCHA v3, the timeout means that people who fill out a form only have a certain amount of time to do so. If the time is exceeded, an error message appears when submitting the form and it must be submitted again.

With reCAPTCHA v3, the timeout is generally not as crucial, as v3 is based on continuous evaluation of user interactions to determine a risk score. A shorter timeout could even negatively affect the evaluation process and lead to a less accurate assessment. Therefore, we generally recommend leaving the value at 1800 seconds for v3.

Further help

If you have any questions or problems, our support team will be happy to help. To do so, open a support ticket:

  1. Go to the Swiss21 portal.
  2. Click on your profile picture in the top right corner.
  3. Click on “Support”.
  4. Click on “Contact support”.
  5. Fill out the form and our support team will get back to you as soon as possible.

Support opening hours: Monday – Friday I 8:00 a.m. – 12:00 p.m. I 1:30 p.m. – 5:00 p.m.

🌶️
🔥
🌶️