OJS 2.4.8.1 captcha does not work

Does captcha work in 2.4.8.1.?

It looks like OJS 3.0 was fixed for reCAPTCHA v.2. Will 2.4.8.1 ever be fixed for this?

I have tried both captcha and reCAPTCHA . I did register a key with Google for reCAPTCHA .

When I go to the user registration page nothing shows for captcha.

The font path is correct.

My current Captcha settings are:

;;;;;;;;;;;;;;;;;;;;
; Captcha Settings ;
;;;;;;;;;;;;;;;;;;;;

[captcha]

; Whether or not to enable Captcha features
captcha = on

; Whether or not to use Captcha on user registration
captcha_on_register = on

; Whether or not to use Captcha on user comments
captcha_on_comments = on

; Whether or not to use Captcha on notification mailing list registration
captcha_on_mailinglist = on

; Font location for font to use in Captcha images
font_location = /usr/share/fonts/truetype/freefont/FreeSerif.ttf

; Whether to use reCaptcha instead of default Captcha
recaptcha = on

; Public key for reCaptcha (see http://www.google.com/recaptcha)
recaptcha_public_key = xxxxxxxxxxxxxxxxxxxxx

; Private key for reCaptcha (see http://www.google.com/recaptcha)
recaptcha_private_key = xxxxxxxxxxxxxxxxxxxxx

Any help would be much appreciated.

Thank you, Lisa

Hi @loleary,

We haven’t had any reports that ReCaptcha isn’t working with OJS 2.x, and it’s quite a widely-used feature. Is your installation public?

Regards,
Alec Smecher
Public Knowledge Project Team

Unfortunately, it is not. However, it will be soon.

To use captcha is there anything you need to do besides changing the config file?

If I am using captcha, should I change the recaptcha settings to off?

Thanks, Lisa

Hi @loleary,

You should turn on both captcha and recaptcha settings. The captcha settings define where the test is presented, and the recaptcha settings set it up with Google’s service. If you’re still having trouble when the journal becomes publicly accessible, send me a message with the URL and I’ll have a quick look.

Regards,
Alec Smecher
Public Knowledge Project Team

I finally have our public site up. http://ojs-prod.lib.uic.edu/ojs/

Because of another problem that we were having I ended up downloading OJS version 2.4.8-1 and installing it.

I was hoping this might fix the captcha problem too, but it didn’t.

I have the config.inc.php file set up the same as above. I registered my site with google Recaptcha and put the new keys into the config.inc.php file.

If you can find anything please let me know.

Thanks, Lisa

Hi @loleary,

Check to ensure that the PHP GD library is enabled on your server; you may need to enable this in php.ini. See http://php.net/manual/en/image.installation.php
for details.

Regards,
Alec Smecher
Public Knowledge Project Team

Thank you very much! That did the trick.

Lisa

HI,

Just joined this forum because I am having trouble getting either captcha or recaptcha to work with ojs2.4

Have tried it on 2.4.2.0 (they do not want it updated) and 2.4.8.1

Are you using ReCaptcha V2?
Obviously I cannot get ReCAPTCHA V1 keys.

With either captcha or recaptcha the Characters you Type in are nevwe accepted.

Could this be something to do with a language setting?

I have /usr/share/fonts/truetype/freefont/FreeSerif.ttf

Config of 2.4.8.1

[captcha]

; Whether or not to enable Captcha features
captcha = on

; Whether or not to use Captcha on user registration
captcha_on_register = on

; Whether or not to use Captcha on user comments
captcha_on_comments = on

; Whether or not to use Captcha on notification mailing list registration
captcha_on_mailinglist = on

; Font location for font to use in Captcha images
font_location = /usr/share/fonts/truetype/freefont/FreeSerif.ttf

; Whether to use reCaptcha instead of default Captcha
recaptcha = on

; Public key for reCaptcha (see http://www.google.com/recaptcha)
recaptcha_public_key = xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx

; Private key for reCaptcha (see http://www.google.com/recaptcha)
recaptcha_private_key = xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx

Can you give me the URL of the pkp.sfu.ca DOC that explains the Config for captcha and ReCaptcha Please.

ReCAPTCHA support for OJS 2.4.x has not been upgraded to ReCAPTCHA v2 yet.

It’s on our shortlist!

I am using keys that are labeled as V2. However, you do not need to make any changes to ojs except in the config file. I’m not sure if this somehow keeps it at V1 or if I’m just lucky that it’s working.

Did you make sure that you have the PHP GD library enabled as Alex suggested? That fixed my problem.

Lisa

OJS 2.4.8’s use of ReCAPTCHA v1 is defined here:

I’m not aware of ReCAPTCHA v2 api keys working with ReCAPTCHA v1 code, but I haven’t actually tried it, either.

You can’t get a ReCAPTCHA v1 key anymore. The google site will only let you create a v2 key.

Lisa

Thanks for INFO.

I think you will not supply a patch for every minor OJS V2.x.x.x version?

There will be a patch for V2.4.8.x
There will not be one for V2.4.2.0 so 2.4.2.0 will have to go to 2.4.8.2 to get this reCAPTCHA fix.

The OJS that gave us trouble with SPAMMED Fake registrations is V2.4.2.0.
Our PUBLISHERS do not want to patch it up to 2.4.8.x

I did update it on a TEST server in October last year but could not get the Bussiness Owners to Verify and approve a PROD update,

At that point the Download Patch link in Site Administration → System Information → Check for Updates gave me ojs-2.4.2_to_2.4.8-1.patch

Can we still get this style of patch or would we have to apply patches to reach each minor version until we get to 2.4.8.2?

I strongly recommend using the “Full Package” upgrade method over using the old “patch” method for any upgrades.

Old releases, such as 2.4.2, are not actively maintained, and the latest enhancements will only be found in the most recent major releases (currently 2.4.8-x and 3.0.x). If you are comfortable with programming and with git, you can try to backport newer features into old releases, but our recommendation will be to update to the current stable release.

Thanks.

I knew this would be best.

I better learn the git update method or “FULL PACKAGE” can you send me a link to the DOCUMENTATION.
I have been using gnu patch command.

I will get our Security Staff to tell the business users they have to be patched to the latest V2 OJS Version.
They will say update or shut it down.

Anne

You’ll find the current upgrade documentation in the “docs” directory of the latest downloads:

THANKS ojs People,

Thanks for advice so far.

WE at newcastle.edu.au uni AUSTRALIA are getting a lot of spam registrations on ONE journal of one OJS instance (we have several ojs instances and 2 journals on this INSTANCE).

IT is Popular Entertainment Studies
It is V2.4.2.0 (DEC 2013)
No Patching allowed by our bussiness people until they have time to verify their TEST CASES (never?).

I configured ReCaptcha using a V2 Key (not invisible) and got the validation BOX in the register form.
WE get a V1 recapture BOX. Not the Tick the check box on “I am not a robot one”

The one that has 2 sets of characters on different angles and separated to look like they should be 2 words and expects you to enter all the characters and not insert a space … I think some Humans will give up on this crazy one.
I think you can go to Register and see,

Still they were getting SPAM Registrations. The form will not work for a human (that is one of us) unless the ReCaptcha validation is satisfied.

I used advanced settings today to slide the slider for Security Preference from default in the middle position to Most Secure “All security Features turned on”.

Since then I only see 3 Register logs. IS this a coincidence and a spam bot will come and add hundreds over the weekend?

SO Time will tell if this is an improvement.

They have removed 2000 of 7000 SPAM added users and are getting a bit carried away today removing …

I will get some time next week and refresh this instance into my RedHAT RHEL 7 TEST server and see if I can get the UPGRADE process I should use to work. Once DONE I will say "YOU have to go through your TEST cases on this upgraded (no PUB access) VERSION and Approve the UPDATES go into PROD.

Then I will see if they will get someone to work on looking into using V3.

Thanks for help and advice.

In our platform (http://resocjalizacjapolska.pl) - OJS 2.4.8.1

When i set

[captcha]

; Whether or not to enable Captcha features
captcha = on

; Whether or not to use Captcha on user registration
captcha_on_register = on

; Whether or not to use Captcha on user comments
captcha_on_comments = on

; Whether or not to use Captcha on notification mailing list registration
captcha_on_mailinglist = on

; Font location for font to use in Captcha images
font_location = /usr/share/fonts/truetype/freefont/FreeSerif.ttf

; Whether to use reCaptcha instead of default Captcha
recaptcha = on

; Public key for reCaptcha (see http://www.google.com/recaptcha)
; recaptcha_public_key = *************************************

; Private key for reCaptcha (see http://www.google.com/recaptcha)
; recaptcha_private_key = *************************************

Browser displays

To use reCAPTCHA you must get an API key from https://www.google.com/recaptcha/admin/create

I have already inserted the key??? So what’s going on?

Hi @karwas,

Lines in config.inc.php beginning with a ; will be interpreted as comments. It looks like some of the relevant configuration is commented out.

Regards,
Alec Smecher
Public Knowledge Project Team

It`s ok :slight_smile:

Thanks

W dniu 26.05.2017 o 17:02, Alec Smecher pisze: