Inline RecaptchaHandlerV2::validate() in RecaptchaHandler

[GitHub/WoltLab/WCF.git] / wcfsetup / install / files / lib / system / recaptcha / RecaptchaHandlerV2.class.php

<?php
namespace wcf\system\recaptcha;
use wcf\system\exception\UserInputException;
use wcf\system\SingletonFactory;
use wcf\system\WCF;
use wcf\util\HTTPRequest;
use wcf\util\JSON;
use wcf\util\UserUtil;

/**
 * Handles reCAPTCHA V2 support.
 * 
 * @author	Tim Duesterhus
 * @copyright	2001-2019 WoltLab GmbH
 * @license	GNU Lesser General Public License <http://opensource.org/licenses/lgpl-license.php>
 * @package	WoltLabSuite\Core\System\Recaptcha
 * @deprecated	5.4 - This was an implementation detail of wcf\system\captcha\RecaptchaHandler.
 */
class RecaptchaHandlerV2 extends SingletonFactory {
	/**
	 * Validates response.
	 * 
	 * @param	string		$response
	 * @param	string		$type
	 * @throws	UserInputException
	 */
	public function validate($response, $type = 'v2') {
		// fail if response is empty to avoid sending api requests
		if (empty($response)) {
			throw new UserInputException('recaptchaString', 'false');
		}
		
		if ($type === 'v2') {
			$key = RECAPTCHA_PRIVATEKEY;
		}
		else if ($type === 'invisible') {
			$key = RECAPTCHA_PRIVATEKEY_INVISIBLE;
		}
		else {
			throw new \InvalidArgumentException('$type must be either v2 or invisible.');
		}
		
		$request = new HTTPRequest('https://www.google.com/recaptcha/api/siteverify?secret='.rawurlencode($key).'&response='.rawurlencode($response).'&remoteip='.rawurlencode(UserUtil::getIpAddress()), ['timeout' => 10]);
		
		try {
			$request->execute();
			$reply = $request->getReply();
			$data = JSON::decode($reply['body']);
			
			if ($data['success']) {
				// yeah
			}
			else {
				throw new UserInputException('recaptchaString', 'false');
			}
		}
		catch (\Exception $e) {
			if ($e instanceof UserInputException) throw $e;
			
			// log error, but accept captcha
			\wcf\functions\exception\logThrowable($e);
		}
		
		WCF::getSession()->register('recaptchaDone', true);
	}
}