We are using reCaptcha V2 with our forms. When a visitor submits our contact form with the reCaptcha field checkbox confirmed (checkmark present) and with a field inadvertenly left blank, the reCaptcha field checkbox resets itself (i.e., checkmark disappears).
Technically, the Google reCAPTCHA user response token is valid for two minutes, so the checkmark should remain in place for that amount of time as long as the user fills the empty fields and resubmits the form within that time period. If the form is not resubmitted within two minute, then the Google reCaptcha displays a “time-out” message.
Our Subscription (Mailpoet) form meets this criteria.
Hi Jonathan. The reCAPTCHA token is valid for two minutes but may only be validated once. This is from the docs you linked to:
“Each reCAPTCHA user response token is valid for two minutes, and can only be verified once to prevent replay attacks. If you need a new token, you can re-run the reCAPTCHA verification.”
I’ve discussed this with the product team, and they do not have any plans to change how this works. If you would like to suggest a change, you can submit a feature request here, which will be sent directly to the product team:
That’s my point. Once the user checks the checkbox (but inadvertenly omits one field in the form), the checkmark should not disappear as long as the form is filled out completely within two minutes.
Here’s how Gravity Forms (with Google reCaptcha) should work:
Complete all fields (including the reCaptcha field), except the email field.
Click on “Sign Up” several times and you’ll notice the checkmark in the reCaptcha field does not disappear as long as you’re within the two-minute period. If you wait two minutes or more to click the “Sign Up” button, you’ll get a reCaptcha time-out message.
In my opinion, Gravity Forms should behave the same way.