Add a Captcha to the MailPoet Subscription Forms
To prevent subscription form abuse, MailPoet 3 optionally offers two options to add Captcha to your MailPoet Subscription Forms:
- Built-in captcha: our own zero-configuration captcha;
- Google ReCAPTCHA.
We recommend activating it in case there’s evidence of fake signups via our forms only. It won't stop fake signups as WordPress users. If you want to protect your WordPress registration form, please check this article.
To enable this feature you should go to MailPoet's Settings page > Advanced tab:
MailPoet Build-in captcha
When the Build-in captcha is enabled, this page will be displayed for the second subscription attempt in order to prevent a spam attack using fake sign-ups:
It doesn't block the first attempt for most legitimate customers, but if they try to subscribe twice, they will have to confirm they're not a bot.
Enabling Google ReCAPTCHA
You'll need to sign-up for an API key pair at reCaptcha's website. Make sure to select the option reCAPTCHA V2:
After registering a new site, you'll see your Site Key and your Secret Key:
Then back to MailPoet's plugin, add your keys in the two input fields below the option toggle:
This option is global, which means, once activated, all your subscription forms will contain a reCaptcha validation field after you activate this feature.