hcaptcha validation on password login (#1398)

2025-07-04 09:32:48 -05:00 · 2021-06-16 12:47:41 -04:00
parent 1796b1dd8e
commit d2e48a5c2c
8 changed files with 189 additions and 25 deletions
--- a/src/Core/Services/Implementations/HCaptchaValidationService.cs
+++ b/src/Core/Services/Implementations/HCaptchaValidationService.cs
@ -0,0 +1,72 @@
+using System;
+using System.Collections.Generic;
+using System.Net.Http;
+using System.Threading.Tasks;
+using Bit.Core.Settings;
+using Microsoft.Extensions.Logging;
+using Newtonsoft.Json;
+
+namespace Bit.Core.Services
+{
+    public class HCaptchaValidationService : ICaptchaValidationService
+    {
+        private readonly ILogger<HCaptchaValidationService> _logger;
+        private readonly IHttpClientFactory _httpClientFactory;
+        private readonly GlobalSettings _globalSettings;
+
+        public HCaptchaValidationService(
+            ILogger<HCaptchaValidationService> logger,
+            IHttpClientFactory httpClientFactory,
+            GlobalSettings globalSettings)
+        {
+            _logger = logger;
+            _httpClientFactory = httpClientFactory;
+            _globalSettings = globalSettings;
+        }
+
+        public bool ServiceEnabled => true;
+
+        public async Task<bool> ValidateCaptchaResponseAsync(string captchResponse, string clientIpAddress)
+        {
+            if (string.IsNullOrWhiteSpace(captchResponse))
+            {
+                return false;
+            }
+
+            var httpClient = _httpClientFactory.CreateClient("HCaptchaValidationService");
+
+            var requestMessage = new HttpRequestMessage
+            {
+                Method = HttpMethod.Post,
+                RequestUri = new Uri("https://hcaptcha.com/siteverify"),
+                Content = new FormUrlEncodedContent(new Dictionary<string, string>
+                {
+                    { "response", captchResponse.TrimStart("hcaptcha|".ToCharArray()) },
+                    { "secret", _globalSettings.Captcha.HCaptchaSecretKey },
+                    { "sitekey", _globalSettings.Captcha.HCaptchaSiteKey },
+                    { "remoteip", clientIpAddress }
+                })
+            };
+
+            HttpResponseMessage responseMessage;
+            try
+            {
+                responseMessage = await httpClient.SendAsync(requestMessage);
+            }
+            catch (Exception e)
+            {
+                _logger.LogError(11389, e, "Unable to verify with HCaptcha.");
+                return false;
+            }
+
+            if (!responseMessage.IsSuccessStatusCode)
+            {
+                return false;
+            }
+
+            var responseContent = await responseMessage.Content.ReadAsStringAsync();
+            dynamic jsonResponse = JsonConvert.DeserializeObject(responseContent);
+            return (bool)jsonResponse.success;
+        }
+    }
+}