There is no license information available for the latest version (3.0.0-alpha1) of this package.

Provides a form field which allows form to validate for non-bot submissions by giving them a challenge to decrypt an image.

Installs: 338

Dependents: 0

Suggesters: 0

Security: 0

Stars: 0

Watchers: 1

Forks: 59


3.0.0-alpha1 2018-01-12 02:33 UTC


Build Status


Provides a FormField which allows form to validate for non-bot submissions using Google's reCAPTCHA v2 service.

In order to use Google's new Invisible reCAPTCHA service, please use the undefinedoffset/silverstripe-nocaptcha module. This module is not intended to be used with reCAPTCHA v3 (see rationale)


  • SilverStripe Framework 4.0 or newer
  • curl PHP module
  • Requires spamprotection module


composer require labcat/recaptcha

  • Run ?flush=1

This should go in your mysite/_config/recaptcha.yml. You can get an free API key at

  public_api_key: "your-site-key"
  private_api_key: "your-secret-key"

If using on a site requiring a proxy server for outgoing traffic then you can set these additional options in your mysite/_config/recaptcha.yml by adding.

  proxy_server: "proxy_address"
  proxy_auth: "username:password"

To use the noscript fallback method, add the key noscript_enabled: true to your yml.

To change the language, add it to an array of options to your yml

    hl: NL
    theme: dark
    type: audio
    size: compact

See for all available parameters


As a Standalone Field

If you want to use reCAPTCHA field by itself, you can simply just include it as a field in your form.

$recaptchaField = new RecaptchaField('MyCaptcha');
$recaptchaField->options = array('theme' => 'light'); // optional

See reCAPTCHA docs for more configuration options.

Integration with spamprotection module

This requires the spamprotection module to be installed, see its documentation for details. You can use this field to protect any built informs on your website, including user comments in the [[:modules:blog]] module.

Configuration example in mysite/_config/spamprotection.yml

name: spamprotection
  default_spam_protector: SilverStripe\Recaptcha\RecaptchaProtector

Then once you have setup this config you will need to include the spam protector field as per the instructions on the spamprotection page.

Known issues:

Problems with page doctype XHTML

reCAPTCHA current does not work if the page doctype is XHTML. The API returns Javascript which uses "document.write", which is not supported in XHTML. A work-around is to always use the no-script version of the module (modify the relevant lines in RecaptchaField.php), or to switch your webpage's doctype to HTML 4. See: