Hope someone can help...
I've created a contact form to collect some personal data w/ V4 and need to implement SSL and ReCaptcha. The various previous threads have addressed only possible implementations of SSL, but when I use https:// to access the page, the ReCaptcha component doesn't load.
With all the reports of hacking, I think that any of us who use Chronoforms for receiving customer data need to protect ourselves from liability and our clients from risk of exposure. Can someone talk about how to do this with CF4 or CF5?
Thanks in advance!
I've created a contact form to collect some personal data w/ V4 and need to implement SSL and ReCaptcha. The various previous threads have addressed only possible implementations of SSL, but when I use https:// to access the page, the ReCaptcha component doesn't load.
With all the reports of hacking, I think that any of us who use Chronoforms for receiving customer data need to protect ourselves from liability and our clients from risk of exposure. Can someone talk about how to do this with CF4 or CF5?
Thanks in advance!
Hi Hammerhead,
The Load ReCaptcha action has the Google URLs in the configuration. I'd guess that these may need to be changed to work with SSL. If you check the ReCaptcha documents that may help.
Bob
The Load ReCaptcha action has the Google URLs in the configuration. I'd guess that these may need to be changed to work with SSL. If you check the ReCaptcha documents that may help.
Bob
Bob, thanks again - will do. By way of a 'marketing' recommendation, I'd encourage you to get CF working with SSL for all its various functions including ReCaptcha. You've got a great product but with the growing concerns over data security for all of us, doing so will make the product more attractive and easier to use for laymen.
Hi Hammerhead,
Thanks for the suggestion. it's not my product but, as far as I know, everything in ChronoForms works with SSL out of the box unless there are site settings that break it. I looked again and in CFv4 there is automatic selection of the SSL URL in the Load ReCaptcha action. and in CFv5 there is an SSL option in the Load ReCaptcha action. I'm not clear why either would cause you problems.
Bob
Thanks for the suggestion. it's not my product but, as far as I know, everything in ChronoForms works with SSL out of the box unless there are site settings that break it. I looked again and in CFv4 there is automatic selection of the SSL URL in the Load ReCaptcha action. and in CFv5 there is an SSL option in the Load ReCaptcha action. I'm not clear why either would cause you problems.
Bob
Bob, thanks again for the prompt reply.
Just to be sure we're on the same page, let me restate the problem.
I've created a form that requests personal information from clients which will (eventually) connect with tables in the DB. It's important that whatever the customer inputs be encrypted between their browser and our server.
What happens is when I enable SSL for Chronoforms, the ReCaptcha disappears, presumably because my domain's SSL cert recognizes the code as being off my server.
I'm not quite sure how to work around that. If you or anyone else can help, I'd be grateful. I haven't worked with CF for some time, so maybe I'm missing something obvious.
Thanks again in advance!
Just to be sure we're on the same page, let me restate the problem.
I've created a form that requests personal information from clients which will (eventually) connect with tables in the DB. It's important that whatever the customer inputs be encrypted between their browser and our server.
What happens is when I enable SSL for Chronoforms, the ReCaptcha disappears, presumably because my domain's SSL cert recognizes the code as being off my server.
I'm not quite sure how to work around that. If you or anyone else can help, I'd be grateful. I haven't worked with CF for some time, so maybe I'm missing something obvious.
Thanks again in advance!
Hi Hammerhead,
I'm no expert in SSL or ReCaptcha. if the problem is that ReCaptcha calls files from outside your domain then I guess that you could use Captcha or one of the other purely local anti-spam tools instead?
Bob
I'm no expert in SSL or ReCaptcha. if the problem is that ReCaptcha calls files from outside your domain then I guess that you could use Captcha or one of the other purely local anti-spam tools instead?
Bob
I have the same issue. opening a form on my site using http loads the recaptcha without an issue.
Opening the same form by https with valid domain cert does not load the recaptcha.
I see in the load recaptcha both http and https field of google recaptcha are defined.
No idea what is blocking the secure load of the api ...
Opening the same form by https with valid domain cert does not load the recaptcha.
I see in the load recaptcha both http and https field of google recaptcha are defined.
No idea what is blocking the secure load of the api ...
This topic is locked and no more replies can be posted.
