The reCAPTCHA feature allows you to further protect your Stripe payment buttons from spam bots.
The reCAPTCHA feature is now built into the main plugin
It is recommended that you enable the reCAPTCHA feature if you are being targeted by spam bots.
When you enable this, the reCaptcha option will appear when customers click a Stripe payment button. They will simply need to check a box that confirms they are human. This prevents robots from abusing the payment button on your site.
Configuring reCAPTCHA on Your Website
Follow the steps below to configure reCaptcha for your Stripe payment buttons:
- Click on the Stripe Payments -> Settings menu.
- Click on the reCaptcha tab.
- Mark the checkbox to enable reCaptcha on your website.
- To use reCaptcha, you will need to enter in your Google reCAPTCHA API details. you can find your API details here.
- You need to get the reCAPTCHA v2 keys. Our plugin uses reCAPTCHA v2 keys (so we can offer both the visible and invisible options to our users). Don’t ask for v3 option since that one doesn’t give us the flexibility to offer both options to our users.
- Once you have entered in your Site Key and Secret Key, click the Save Changes button.
- Now your customers will need to complete captcha prior to checking out.
Enabling the Invisible reCAPTCHA Option
If you want to enable the “Use Invisible reCAPTCHA Badge” option then you need to enter the reCAPTCHA v2 API keys with the “” option. See the screenshot below:
Customer’s View When reCaptcha is Enabled
Once the reCaptcha feature is enabled, anyone wishing to proceed to the checkout will need to select the reCaptcha checkbox. Checking the reCaptcha box is simple and hassle free for your customers although prevents bots from spamming your payment buttons.
Below is an example of what a customer would see when proceeding to checkout on a reCaptcha protected website. ReCaptcha will appear on all products created using Stripe Payments when this feature is enabled.
The Invisible reCaptcha does not require customers to click on a checkbox, instead it is invoked directly when the customer clicks on a payment button on your site. By default, only the most suspicious traffic will be prompted to solve a captcha. You can alter this behavior by editing your site security preference under advanced settings on your Google reCAPTCHA account.