PHP extreme verification code example explanation
You can find this article, which means you are no longer completely unfamiliar with Jiexian verification. I won’t go into all the nonsense and just start explaining how to use it. But before that, paste a few The URL you may use:
Official website: http://www.geetest.com/
Official document: http://www.geetest.com/install/sections/idx -basic-introduction.html
github:https://github.com/GeeTeam/gt-php-sdk.git
How to use:
First To confirm the front-end usage page, such as the login page
1. Access the imported class library on the login page:
If your website uses https, you only need to change the place where Jiqianku is introduced to the https protocol, and there is no need to change other places. For example, replace it with the following code:
2. Initialize the front end
The following code It needs to be executed after the page is loaded. If you use jQuery, you can write it in $(function(){});
$.ajax({
// 获取id,challenge,success(是否启用failback)
url: "../web/StartCaptchaServlet.php?t=" + (new Date()).getTime(), // 加随机数防止缓存
type: "get",
dataType: "json",
success: function (data) {
// 使用initGeetest接口
// 参数1:配置参数
// 参数2:回调,回调的第一个参数验证码对象,之后可以使用它做appendTo之类的事件
initGeetest({
gt: data.gt,
challenge: data.challenge,
product: "popup", // 产品形式,包括:float,embed,popup。注意只对PC版验证码有效
offline: !data.success // 表示用户后台检测极验服务器是否宕机,与SDK配合,用户一般不需要关注
}, handlerPopup);
}
});The above code means that after the page is loaded, you need to go to the URL you specified. Obtain the verification code information on the address. As for what is written in the above URL address "../web/StartCaptchaServlet.php", we will explain this in detail in the server-side code deployment.
But it should be noted that there is a callback function called "handlerPopup" in the above code. This function is the real initialization code you need to verify the code: as follows:
// 代码详细说明
var handlerPopup = function (captchaObj) {
// 注册提交按钮事件,比如在登陆页面的登陆按钮
$("#popup-submit").click(function () {
// 此处省略在登陆界面中,获取登陆数据的一些步骤
// 先校验是否点击了验证码
var validate = captchaObj.getValidate();
if (!validate) {
alert('请先完成验证!');
return;
}
// 提交验证码信息,比如登陆页面,你需要提交登陆信息,用户名和密码等登陆数据
$.ajax({
url: "../web/VerifyLoginServlet.php",
type: "post",
// dataType: "json",
data: {
// 用户名和密码等其他数据,自己获取,不做演示
username:username,
password:password,
// 验证码数据,这些数据不用自己获取
// 这是二次验证所需的三个值
// 当然,你也可以直接设置验证码单独校验,省略其他信息
geetest_challenge: validate.geetest_challenge,
geetest_validate: validate.geetest_validate,
geetest_seccode: validate.geetest_seccode
},
// 这里是正确返回处理结果的处理函数
// 假设你就返回了1,2,3
// 当然,正常情况是返回JSON数据
success: function (result) {
// 1表示验证码验证失败
if (result == "1") {
alert("验证码验证失败!");
}else if (result == "2") {
alert("用户名或密码错误!");
}else if (result == "3") {
alert("登陆成功!");
// 登陆成功了,可以在这里做其他处理
}else{
alert("登陆错误!");
}
}
});
});
// 弹出式需要绑定触发验证码弹出按钮
// 比如在登陆页面,这个触发按钮就是登陆按钮
captchaObj.bindOn("#popup-submit");
// 将验证码加到id为captcha的元素里
// 验证码将会在下面指定的元素中显示出来
captchaObj.appendTo("#popup-captcha");
// 更多接口参考:http://www.geetest.com/install/sections/idx-client-sdk.html
};
At this point, the front-end All settings have been written, official documentation: http://www.geetest.com/install/sections/idx-client-sdk.html
3. Server-side deployment (PHP)
In the first step, we set up such an address "../web/StartCaptchaServlet.php", what to write in this address:
<?php
// 引入文件
require_once dirname(dirname(__FILE__)) . '/lib/class.geetestlib.php';
require_once dirname(dirname(__FILE__)) . '/config/config.php';
// 实例化,实例化的参数在config中配置,分别是:验证ID 和 验证Key,如何获取下面会说。
$GtSdk = new GeetestLib(CAPTCHA_ID, PRIVATE_KEY);
session_start();
// 这个是用户的标识,或者说是给极验服务器区分的标识,如果你项目没有预先设置,可以像下面这样设置:
if(!isset($_SESSION['user_id'])){
$_SESSION['user_id']=uniqid();// 生成一个唯一ID
}
$user_id = $_SESSION['user_id'];
// 或者,你就直接写成:
// $user_id = "test";
// 生成验证码信息,并返回给客户端
$status = $GtSdk->pre_process($user_id);
$_SESSION['gtserver'] = $status;
$_SESSION['user_id'] = $user_id;
echo $GtSdk->get_response_str();
?>
How to get the verification ID and verification Key:
1. Register an account from the verification background
2. Add verification, you can get a set of currently verified ID/Key
3. Replace the ID and Key to captcha_id/ in the config.php file. The value of the private_key variable
4. Server-side verification (secondary verification) after clicking the submit button
For example, as mentioned above, when the user logs in, you put the user name, password and verification code information All have been submitted to the server. At this time, you can do verification:
<?php
// 引入文件
require_once dirname(dirname(__FILE__)) . '/lib/class.geetestlib.php';
require_once dirname(dirname(__FILE__)) . '/config/config.php';
session_start();
$GtSdk = new GeetestLib(CAPTCHA_ID, PRIVATE_KEY);
// 比如你设置了一个验证码是否验证通过的标识
$code_flag=false;
// 这里获取你之前设置的user_id,传送给极验服务器做校验
$user_id = $_SESSION['user_id'];
if ($_SESSION['gtserver'] == 1) {
$result = $GtSdk->success_validate($_POST['geetest_challenge'], $_POST['geetest_validate'], $_POST['geetest_seccode'], $user_id);
if ($result) {
// 验证码验证成功
$code_flag=true;
}
}else{
if ($GtSdk->fail_validate($_POST['geetest_challenge'],$_POST['geetest_validate'],$_POST['geetest_seccode'])) {
// 验证码验证成功
$code_flag=true;
}
}
// 如果验证码验证成功,再进行其他校验
if($code_flag){
// 其他验证操作
// 用户名不对时,返回2,其他错误返回3,等等。。。。
}else{
// 验证码验证失败,返回1,这里和上面相呼应,当然我的项目没有简单的返回1,而是返回了JSON数据
echo 1;
exit(-1);
}
?>
Thank you for reading, I hope it can help everyone, thank you everyone for your support of this site!
For more relevant articles on PHP’s extreme verification code examples, please pay attention to the PHP Chinese website!
Hot AI Tools
Undresser.AI Undress
AI-powered app for creating realistic nude photos
AI Clothes Remover
Online AI tool for removing clothes from photos.
Undress AI Tool
Undress images for free
Clothoff.io
AI clothes remover
Video Face Swap
Swap faces in any video effortlessly with our completely free AI face swap tool!
Hot Article
Hot Tools
Notepad++7.3.1
Easy-to-use and free code editor
SublimeText3 Chinese version
Chinese version, very easy to use
Zend Studio 13.0.1
Powerful PHP integrated development environment
Dreamweaver CS6
Visual web development tools
SublimeText3 Mac version
God-level code editing software (SublimeText3)
Hot Topics
1387
52
Alipay PHP SDK transfer error: How to solve the problem of 'Cannot declare class SignData'?
Apr 01, 2025 am 07:21 AM
Alipay PHP...
Explain the concept of late static binding in PHP.
Mar 21, 2025 pm 01:33 PM
Article discusses late static binding (LSB) in PHP, introduced in PHP 5.3, allowing runtime resolution of static method calls for more flexible inheritance.Main issue: LSB vs. traditional polymorphism; LSB's practical applications and potential perfo
Explain JSON Web Tokens (JWT) and their use case in PHP APIs.
Apr 05, 2025 am 12:04 AM
JWT is an open standard based on JSON, used to securely transmit information between parties, mainly for identity authentication and information exchange. 1. JWT consists of three parts: Header, Payload and Signature. 2. The working principle of JWT includes three steps: generating JWT, verifying JWT and parsing Payload. 3. When using JWT for authentication in PHP, JWT can be generated and verified, and user role and permission information can be included in advanced usage. 4. Common errors include signature verification failure, token expiration, and payload oversized. Debugging skills include using debugging tools and logging. 5. Performance optimization and best practices include using appropriate signature algorithms, setting validity periods reasonably,
How does session hijacking work and how can you mitigate it in PHP?
Apr 06, 2025 am 12:02 AM
Session hijacking can be achieved through the following steps: 1. Obtain the session ID, 2. Use the session ID, 3. Keep the session active. The methods to prevent session hijacking in PHP include: 1. Use the session_regenerate_id() function to regenerate the session ID, 2. Store session data through the database, 3. Ensure that all session data is transmitted through HTTPS.
Describe the SOLID principles and how they apply to PHP development.
Apr 03, 2025 am 12:04 AM
The application of SOLID principle in PHP development includes: 1. Single responsibility principle (SRP): Each class is responsible for only one function. 2. Open and close principle (OCP): Changes are achieved through extension rather than modification. 3. Lisch's Substitution Principle (LSP): Subclasses can replace base classes without affecting program accuracy. 4. Interface isolation principle (ISP): Use fine-grained interfaces to avoid dependencies and unused methods. 5. Dependency inversion principle (DIP): High and low-level modules rely on abstraction and are implemented through dependency injection.
How to automatically set permissions of unixsocket after system restart?
Mar 31, 2025 pm 11:54 PM
How to automatically set the permissions of unixsocket after the system restarts. Every time the system restarts, we need to execute the following command to modify the permissions of unixsocket: sudo...
Explain late static binding in PHP (static::).
Apr 03, 2025 am 12:04 AM
Static binding (static::) implements late static binding (LSB) in PHP, allowing calling classes to be referenced in static contexts rather than defining classes. 1) The parsing process is performed at runtime, 2) Look up the call class in the inheritance relationship, 3) It may bring performance overhead.
How to debug CLI mode in PHPStorm?
Apr 01, 2025 pm 02:57 PM
How to debug CLI mode in PHPStorm? When developing with PHPStorm, sometimes we need to debug PHP in command line interface (CLI) mode...
