Skip to content

Google Recaptcha missing-input-secret

New Course Coming Soon:

Get Really Good at Git

Was trying to make Google Recaptcha work but kept getting failed attempts and the error missing-input-secret back.

After checking 100 times that my secret key was correct, I realized they want URL parameters in the POST request to validate the captcha value.

I was sending the values in the body:

const response = await fetch('https://www.google.com/recaptcha/api/siteverify', {
  method: "POST",
  headers: {
    'Content-Type': 'application/json',
  },
  body: JSON.stringify({
    secret: CAPTCHA_SITE_SECRET,
    response: CAPTCHA_VALUE_FROM_CLIENT
  })
})

Instead, this worked:

const response = await fetch('https://www.google.com/recaptcha/api/siteverify?' 
	+ new URLSearchParams({
    secret: CAPTCHA_SITE_SECRET,
    response: CAPTCHA_VALUE_FROM_CLIENT
  }), {
  method: "POST",
})
Are you intimidated by Git? Can’t figure out merge vs rebase? Are you afraid of screwing up something any time you have to do something in Git? Do you rely on ChatGPT or random people’s answer on StackOverflow to fix your problems? Your coworkers are tired of explaining Git to you all the time? Git is something we all need to use, but few of us really master it. I created this course to improve your Git (and GitHub) knowledge at a radical level. A course that helps you feel less frustrated with Git. Launching May 21, 2024. Join the waiting list!
→ Get my JavaScript Beginner's Handbook
→ Read my JavaScript Tutorials on The Valley of Code
→ Read my TypeScript Tutorial on The Valley of Code

Here is how can I help you: