ReCaptcha private key is visible in source code. How to hide?

  • Resolved Devgun

    (@devgun)


    10 years, 7 months ago

    Everything is working fine. But both public key and private key is visible in source code (ctrl+ U) of my webpage. Private key is exactly same as original one.

    I am using a plugin “Theme my Login (TML)” so my visitors see frontend login form and register form instead of backend. The Recaptcha is appearing automatically below the form and is working fine. I don’t need to enter any php tag manually which we do in case of custom form. But the issue is – my Private key, which should be kept secret, is appearing in the source code.

    Note: in “Theme my Login (TML)” plugin there is built-in feature for ReCaptcha but for some reason it is appearing and working, so I am using Google Captcha plugin.

    I have also tried by creating a new custom form. In my custom form, just above the submit button, I have entered the php tag – <?php if( function_exists( 'gglcptch_display' ) ) { echo gglcptch_display(); } ; ?> and is working fine but the only problem is that the Private key is appearing in the source code.

    Please suggest the solution.

    https://www.ads-software.com/plugins/google-captcha/

Viewing 2 replies - 1 through 2 (of 2 total)
  • Thread Starter Devgun

    (@devgun)

    In my source code of my Registration page, it appears like this –

    <script type='text/javascript'>
			var RecaptchaOptions = { theme : "clean" },
			gglcptch_path = "https://www.mywebsite.com/wp-content/plugins/google-captcha/google_captcha_check.php",
			gglcptch_error_msg = "Error: You have entered an incorrect CAPTCHA value.",
			gglcptch_private_key = "6LfDauo__my_private_key______z";
		</script>
		<script type="text/javascript" src="https://www.google.com/recaptcha/api/challenge?k=6LfDauoSAAAAAG_my_public_key_jdtpKfbC"></script>

    Please suggest how to fix the issue.

    Plugin Author bestwebsoft

    (@bestwebsoft)

    Hi Devgun,

    Thank you for informing us of this problem (visibility of private key in the front-end). It will be fixed in the next update of the plugin.

    Sincerely,
    BestWebSoft Support Team

Viewing 2 replies - 1 through 2 (of 2 total)
  • The topic ‘ReCaptcha private key is visible in source code. How to hide?’ is closed to new replies.

Tags