Setting up the reCAPTCHA Add-On

Introduction

The official Gravity Forms reCAPTCHA Add-On brings Google’s reCAPTCHA v3 technology as an addition to your anti-spam toolbox. This article describes how to configure the basic settings for use.

Settings Reference

For a full list of all the reCAPTCHA Add-On settings, refer to this guide.

Setting up reCAPTCHA v3 Enterprise

  1. Create a new Enterprise reCAPTCHA key at: https://console.cloud.google.com/security/recaptcha
  2. Select Enterprise as the connection type.
  3. Complete the OAuth flow when prompted.
  4. Select a Google Cloud Project from the dropdown.
Image showing Google Cloud Projects list
  1. Once the key dropdown appears, select the Enterprise key you created.
Image showing Google Cloud Projects reCaptcha keys available for the selected project.
  1. Save the settings.

Setting up reCAPTCHA v2

To use reCAPTCHA v2, you need to register a v2 key pair for your website.

  1. Go to the Google reCAPTCHA Admin Console.
  2. Log in with your Google developer account, if required.
  3. Click the ”+” button to register a new site.
  4. Select reCAPTCHA v2 as the reCAPTCHA type.
    Choose either “I’m not a robot” Checkbox or Invisible reCAPTCHA badge
    These are not interchangeable. Be sure to generate the correct type of key.
  5. Enter your domain name and complete the registration process.
  6. After registration, you’ll receive a Site Key and a Secret Key. Record both.

Adding Your reCAPTCHA v2 Keys in Gravity Forms

To connect Google reCAPTCHA v2 to Gravity Forms:

  1. In your WordPress dashboard, go to Forms → Settings → reCAPTCHA.
  2. Under the v2 settings section, paste in your Site Key and Secret Key.
  3. Choose the reCAPTCHA v2 type.
    Checkbox or Invisible
    This is a global setting and cannot be changed per form.
  4. If you selected the Checkbox type.
    – You may be prompted to manually click the “I’m not a robot” checkbox to validate the keys.
    – Checkbox keys will not work with Invisible reCAPTCHA and vice versa.

Setting up reCAPTCHA v3 Classic

To use reCAPTCHA v3 (Classic), you need to register a set of keys for your website.

  1. Go to the Google reCAPTCHA Admin Console.
  2. Log in with your Google developer account, if required.
  3. Click the ”+” button to register a new site.
  4. Select reCAPTCHA v3 as the reCAPTCHA type.
  5. Enter your domain name and complete the registration process.
  6. Once created, you’ll receive a Site Key and a Secret Key. Record both.

Adding Your reCAPTCHA v3 Classic Keys in Gravity Forms

To connect Google reCAPTCHA v3 to Gravity Forms:

  1. In your WordPress dashboard, navigate to Forms → Settings → reCAPTCHA.
  2. Under the v3 settings section, paste in the Site Key and Secret Key you recorded.
  3. Gravity Forms will automatically validate the keys.
    • If the keys are valid, you’ll see a ✅ green check mark next to each.
  4. There are no additional settings for v3; scoring is handled automatically during form submissions.

Setting a threshold

Note: This process is applicable only to reCAPTCHA v3 Enterprise and reCAPTCHA v3 Classic.

The threshold determines what Gravity Forms will do with form entries based on the reCAPTCHA v3 score they receive. Entries with a reCAPTCHA score less than or equal to this value will be classified as spam. For more information, refer to this Google article.

By default, the threshold is set to 0.5. If you wish to modify this, follow this procedure:

  1. Navigate to Forms → Settings → reCAPTCHA.
  2. Enter the threshold value you wish. The higher the score (from 0 to 1) returned from Google, the more likely it reflects a good interaction.
  3. This threshold value will affect new entries received from that point on.