MyBB Community Forums

Full Version: recaptcha stops working if you set a SCP header
You're currently viewing a stripped down version of our content. View the full version with proper formatting.

Recaptcha v2 does show up fine but you can never submit the form not even if you correctly solve the challenge

Quote:script-src 'self' 'unsafe-inline' 'unsafe-eval'; frame-src 'self';

this answer is on google website but it does not work no idea what i'm missing .
Looks like slashes / at the end of paths are missing - try:
script-src 'self' 'unsafe-inline' 'unsafe-eval'; frame-src 'self'
Visiting the forum using http:// may also cause issues.

Any errors related to CSP should be reported in the browser's Console.

I'll try that the console trick i know .


No not working however i discoverd something interesting when you try to submit the form and after that look in the browser console i found these url's,700
csp blocks everything unless you put it in the correct directive but there is "no real csp related error message"  strange


The fact recaptcha is not working has nothing todo with CSP so it seems i know because i disabled CSP and it failed once again however on the top of my recaptcha account it says

Quote:We have detected that your site is not verifying reCAPTCHA solutions. This is required for correct use of reCAPTCHA on your site

Now what ? help ....