Google reCAPTCHA Enterprise. How do you obtain the required parameters and configure anti-spam protection for your website?

Compatibility:

WebSite X5 Evo and Pro

Protecting forms, registrations and interactive areas of your website from automated bots is becoming increasingly important. For this reason, many users choose to use Google reCAPTCHA Enterprise, Google's advanced solution for detecting suspicious activity and reducing spam and abuse.

To use reCAPTCHA Enterprise in WebSite X5, you first need to obtain some configuration parameters through the Google Cloud Console platform.

In this guide, you'll learn how to:

• create a Google Cloud project
• enable the reCAPTCHA Enterprise API
• generate the Site Key
• create an API Key
• configure reCAPTCHA Enterprise in WebSite X5

#tip - Before you begin, make sure you have a Google account (personal or business) and know the domain where the service will be used, as it is required to register the Site Key.

Which parameters are required?

To integrate Google reCAPTCHA Enterprise with WebSite X5, you need three parameters that can be obtained through Google Cloud Console:

• Project ID
• Site Key
• API Key

The procedure requires a few technical steps within the Google Cloud platform.

#tip - For more information about Google Cloud and reCAPTCHA Enterprise, see the official documentation: cloud.google.com/recaptcha

1. Create a Google Cloud project

Access the Google Cloud Console platform (console.cloud.google.com) using your Google account.

Once signed in:

• Click the project selector at the top of the window (next to the "Google Cloud" logo).
• Select New Project.
• Enter a descriptive name for the project (for example, "My Website reCAPTCHA").
• Click Create.

Wait for the process to complete and make sure the new project is selected as the active project.

Then note down the Project ID displayed below the project name in the selector. You will need it later when configuring WebSite X5. The Project ID is a string similar to my-website-123456.

#tip - If you already use Google Cloud for other services, you can also use an existing project instead of creating a new one.

2. Enable the reCAPTCHA Enterprise API

After creating the project, you need to enable the reCAPTCHA Enterprise service.

To do this:

• In the Google Cloud Console side menu, go to APIs & Services > Library (or go directly to: console.cloud.google.com/apis/library).
• Type reCAPTCHA Enterprise into the search bar.
• Click the reCAPTCHA Enterprise API result.
• Click the Enable button.

Enabling the API is required before your project can use the reCAPTCHA Enterprise service.

3. Create the Site Key

The Site Key identifies the website where the CAPTCHA will be used.

To create it:

• From the side menu, go to Security > Fraud Defense, or open console.cloud.google.com/security/recaptcha directly.
• Make sure the correct project is selected.
• Click Create key.
• Fill in the required fields:
  • Display name: a name that helps you identify the key (for example, "Website contact form");
  • Application type: select Web;
  • Domains: enter your website domain (for example, mywebsite.com). Do not include https:// or a trailing slash.

Once the key has been created, it will appear in the list. Click it to open its details and copy the value shown in the Key ID field: this is your Site Key.

4. Create an API Key

In addition to the Site Key, you also need to generate an API Key associated with the project.

To do this:

• From the side menu, go to APIs & Services > Credentials (or open console.cloud.google.com/apis/credentials directly).
• Make sure the correct project is selected.
• Click Create credentials.
• Select API key.
• Set the API restriction to reCAPTCHA Enterprise API.
• Click Create.
• Copy the generated key.

This will be your API Key.

#tip - Keep your API Key secure and do not share it publicly.

5. Configure Google reCAPTCHA Enterprise in WebSite X5

Now that you have obtained all three required parameters, return to WebSite X5 to configure the service:

• Go to Step 1 - Settings.
• Click Privacy & Security.
• Open the Security section.
• Select Google reCAPTCHA Enterprise as the CAPTCHA Type.
• Fill in the fields with the values you obtained:
  • Project ID → your Google Cloud project ID;
  • Site Key → the Key ID copied from the reCAPTCHA panel;
  • API Key → the API key created in the Credentials section.
• Save the settings and publish the website.

#tip - For more information about the CAPTCHA solutions integrated into WebSite X5, see CAPTCHA and reCAPTCHA. How do you protect website forms and registrations from spam?

How to verify that everything works correctly

After publishing your website, it is recommended to perform a test.

You can verify the configuration by:

• submitting a contact form;
• simulating a user registration;
• checking any areas of the website protected by CAPTCHA.

If the configuration is correct, the system will automatically start evaluating user interactions and applying the required security checks.

Practical tips

For the best results:

• use a dedicated Google Cloud project for your website whenever possible;
• make sure the domain registered in the Site Key matches the actual website domain;
• restrict the API Key to the reCAPTCHA Enterprise service;
• test the CAPTCHA after every configuration change;
• store the Project ID, Site Key and API Key in a safe place.

Summary

Google reCAPTCHA Enterprise is the most advanced solution available in WebSite X5 for protecting forms, registrations and interactive areas of your website.

To use it, you must create a Google Cloud project, enable the reCAPTCHA Enterprise API and obtain the three required parameters: Project ID, Site Key and API Key.

Once the configuration is complete, you can integrate the service into WebSite X5 and increase your website's security without affecting the user experience.