Extremely simple, "Good Enough" captcha implemention for flask forms. No server side sessions required.
Project description
Flask Simple CAPTCHA
A simple CAPTCHA solution for Flask applications. Generate and validate CAPTCHAs to protect your forms from bots. Does not require server-side sessions packages.
Features
- Customizable CAPTCHA length and characters
- Easy to integrate into Flask applications
- Built-in image rendering
- Utilizes UUID for verification (Note: The hash was previously used for submissions, but now the UUID is used instead.)
Prerequisites
- Python 3.x
- Flask framework
- Pillow for image manipulation
Installation
You can install the package using pip:
pip3 install flask-simple-captcha
Or, if installing from source:
python3 setup.py install
Configuration
Configure CAPTCHA by passing a dictionary of configuration options to the CAPTCHA class. First, you'll want to set a variable CAPTCHA_CONFIG['SECRET_CAPTCHA_KEY'] in your app config to a random, complex string.
Example:
CAPTCHA_CONFIG = {'SECRET_CAPTCHA_KEY':'LONGSTRINGLONGSTRING...'}
Here's a table of available options:
| Option | Description | Default Value |
|---|---|---|
SECRET_CAPTCHA_KEY |
A secret key for hashing CAPTCHA | 'CHANGEME - 40 or 50 character long key' |
METHOD |
Hashing method | 'pbkdf2:sha256:100' |
CAPTCHA_LENGTH |
Length of the CAPTCHA text | 6 |
CAPTCHA_DIGITS |
Include digits in CAPTCHA text (True/False) | False |
How to Use
Initialization
Add this to the top of your code:
from flask_simple_captcha import CAPTCHA
SIMPLE_CAPTCHA = CAPTCHA(config=config.CAPTCHA_CONFIG)
app = SIMPLE_CAPTCHA.init_app(app)
Protecting a Route
For each route you want captcha protected, add the following code:
@app.route('/example', methods=['GET','POST'])
def example():
if request.method == 'GET':
captcha = SIMPLE_CAPTCHA.create()
render_template('example.html', captcha=captcha)
if request.method == 'POST':
c_hash = request.form.get('captcha-hash')
c_text = request.form.get('captcha-text')
if SIMPLE_CAPTCHA.verify(c_text, c_hash):
return 'success'
else:
return 'failed captcha'
In the HTML forms, use:
{{ captcha_html(captcha) | safe }}
This will create input fields for CAPTCHA.
API Reference
CAPTCHA.create(length=None, digits=None): Creates a CAPTCHA with the specified length and digits. Returns a CaptchaHash object.CAPTCHA.verify(c_text, c_hash): Verifies the CAPTCHA text and hash. Returns True if valid, False otherwise.CAPTCHA.captcha_html(captcha): Returns HTML for rendering the CAPTCHA image and input fields.
Running Tests
- Install the development requirements:
pip install -r requirements_dev.txt
- Run the tests:
python3 tests.py
Contributing
Just open a PR. This project was abandoned for years, but as of these most recent commits, has actual quality code but I sunk a weekend into it.
License
MIT
ccarterdev@gmail.com contact me if you think you will pay me more than i'm being paid currently
Release history Release notifications | RSS feed
Download files
Download the file for your platform. If you're not sure which to choose, learn more about installing packages.
Source Distribution
File details
Details for the file flask-simple-captcha-2.1.0.tar.gz.
File metadata
- Download URL: flask-simple-captcha-2.1.0.tar.gz
- Upload date:
- Size: 207.8 kB
- Tags: Source
- Uploaded using Trusted Publishing? No
- Uploaded via: twine/4.0.2 CPython/3.11.4
File hashes
| Algorithm | Hash digest | |
|---|---|---|
| SHA256 |
7ba67cc5c8727114640005b34113ec7606e3f95c852a2de1e2743d10bf935456
|
|
| MD5 |
6705ca9a7245b6ebf11e0aa8307d0ad1
|
|
| BLAKE2b-256 |
c8abba48f54a0734f4b6a3579ceab218506a57444da16c23e36f94a4aaecce1b
|
