Skip to content

Google Recaptcha missing-input-secret

Was trying to make Google Recaptcha work but kept getting failed attempts and the error missing-input-secret back.

After checking 100 times that my secret key was correct, I realized they want URL parameters in the POST request to validate the captcha value.

I was sending the values in the body:

const response = await fetch('https://www.google.com/recaptcha/api/siteverify', {
  method: "POST",
  headers: {
    'Content-Type': 'application/json',
  },
  body: JSON.stringify({
    secret: CAPTCHA_SITE_SECRET,
    response: CAPTCHA_VALUE_FROM_CLIENT
  })
})

Instead, this worked:

const response = await fetch('https://www.google.com/recaptcha/api/siteverify?' 
	+ new URLSearchParams({
    secret: CAPTCHA_SITE_SECRET,
    response: CAPTCHA_VALUE_FROM_CLIENT
  }), {
  method: "POST",
})
→ Download my free JavaScript Handbook!

THE VALLEY OF CODE

THE WEB DEVELOPER's MANUAL

You might be interested in those things I do:

  • Learn to code in THE VALLEY OF CODE, your your web development manual
  • Find a ton of Web Development projects to learn modern tech stacks in practice in THE VALLEY OF CODE PRO
  • I wrote 16 books for beginner software developers, DOWNLOAD THEM NOW
  • Every year I organize a hands-on cohort course coding BOOTCAMP to teach you how to build a complex, modern Web Application in practice (next edition February-March-April-May 2024)
  • Learn how to start a solopreneur business on the Internet with SOLO LAB (next edition in 2024)
  • Find me on X

Related posts that talk about js: