Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

reCAPTCHA is returning true when testing the web app with ChromeDriver and automated testing software #558

Open
yashp2098 opened this issue Aug 22, 2024 · 0 comments
Open

reCAPTCHA is returning true when testing the web app with ChromeDriver and automated testing software #558

yashp2098 opened this issue Aug 22, 2024 · 0 comments

Comments

@yashp2098
Copy link

yashp2098 commented Aug 22, 2024
edited
Loading

I am using reCAPTCHA v3 in my React web application. During automated testing with ChromeDriver, the reCAPTCHA always returns a true response when I verify the token through the https://www.google.com/recaptcha/api/siteverify endpoint, regardless of the circumstances. This behavior occurs consistently during testing, which makes it difficult to accurately test the reCAPTCHA functionality.

        const script = document.createElement('script')
        script.src = "https://www.google.com/recaptcha/api.js?render=" + import.meta.env.VITE_GOOGLE_RECAPTCHA_SITE_Key;
        script.addEventListener('load', () => {
            (window as any).grecaptcha.ready(() => {
                (window as any).grecaptcha.execute(import.meta.env.VITE_GOOGLE_RECAPTCHA_SITE_Key).then(async (token: any) => {
                    //setToken(token);
                    const recaptcha = {} as Recaptcha;
                    recaptcha.secret = import.meta.env.VITE_GOOGLE_RECAPTCHA_SECRET_Key;
                    recaptcha.token = token;
                    console.log(token);
                    const result = await verifyRecaptcha(recaptcha);
                    console.log(result);
                    // if(result.success){
                    //     setIsVerified(true);
                    //     console.log(token);
                    // }
                    
                })
            })
        })
        document.body.appendChild(script);
    },[])

    const verifyRecaptcha = async (token: Recaptcha) : Promise<RecaptchaResponse> => {
        try {
            const result = await firstValueFrom(enmaxService.verifyRecaptcha(token));
            console.log(result);
            return result;
        } catch (error) {
            console.log(error);
            throw new Error('reCAPTCHA verification failed');
        }
    };

in backend i am calling verify api

   public async Task<IActionResult> VerifyRecaptcha([FromBody] RecaptchaViewmodel recaptchaViewmodel)
{
   try
   {
       RecaptchaResponse recaptchaResponse = new RecaptchaResponse();
       using (var client = new HttpClient())
       {
           var response = await client.PostAsync($"https://www.google.com/recaptcha/api/siteverify?secret={recaptchaViewmodel.Secret}&response={recaptchaViewmodel.Token}", null);
           var responseString = await response.Content.ReadAsStringAsync();
           if (response.IsSuccessStatusCode)
           {
               recaptchaResponse = JsonConvert.DeserializeObject<RecaptchaResponse>(responseString);
           }
       }
       return Ok(recaptchaResponse);
   }
   catch (Exception e)
   {
       return BuildError(e);
   }
}

here i got response every time true and score is 0.9 then how can we trust google recaptcha is working or not because version 3 is not identify automated driver.
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
1 participant
@yashp2098