Answer the question
In order to leave comments, you need to log in
Is recaptcha required on the login page?
Invisible recaptcha 2 installed on the registration page. Because there is only one form (a common js component with ajax sending), then the captcha works on the login page. Does it make sense to leave the captcha there? It already has: request limit per minute, hidden field, scrf token and request validation. Those. what is advised on google. Do you need another captcha or is there no point and it will only be an unnecessary annoyance for the user? The captcha is hidden, but sometimes pictures appear, select a bridge, etc.
Answer the question
In order to leave comments, you need to log in
not needed until the moment
I monitor competitors: when, sometimes, they start to brute us (we put a captcha on the Nth attempt + there is packet analysis), I see a competitor - a captcha appeared on the login - the moment has come
so - evaluate yourself which is more convenient, sometimes it makes no sense - the same confirmation of the mail is cut off
If someone falls to bypass the captcha, he will bypass, do not hesitate. Make better service good.
The question should be about how many bots visit you. If the numbers are for 30-50% of the total audience, then, of course, the basic way of protection will be installing recaptcha. But this is not a guarantee.
Didn't find what you were looking for?
Ask your questionAsk a Question
731 491 924 answers to any question