Adding reCAPTCHA to Gravity Forms
reCAPTCHA protects your website from fraud and deters spam from being submitted via your webforms.
reCAPTCHA is a field available in WordPress Gravity Forms and is especially useful for forms that have high web traffic (e.g. your contact forms). Since reCAPTCHA is a spam deterring tool, some spam submissions may still get through, but there will be an overall decrease in the number of spam submissions received for each form.
Step 1: Enable reCAPTCHA from Google
- Go to https://www.google.com/recaptcha/admin/
- Login with the unit’s Google Account. This may be an account your unit already use for Google Analytics. (Note: It is best to use a generic account than a personal one, since staff may leave the department and take access with them).
- Click the “+” icon in the top right corner.
- Create a descriptive label for this site key.
- Select CAPTCHA v2, since v3 is not supported by Gravity Forms (source).
- Add the front-facing AND back-end domains (e.g. artf.cms.arts.ubc.ca AND arts.ubc.ca).
- Submit the request
Step 2: Add reCAPTCHA to WordPress Gravity Forms
- Go to your WordPress Dashboard
- Enter the private and public keys into Dashboard > Forms > Settings > reCAPTCHA Settings. You should see an example CAPTCHA field pop-up to confirm the keys have been properly attached.
- Edit the form and open the “Advanced Fields” box on the right-hand side. Drag the “CAPTCHA” field into the form.
- Update the form to save your changes.
Additional Options for Reducing Spam
In addition to reCAPTCHA, Gravity Forms also has Anti-spam honeypot, which is an alternative to the reCAPTCHA field. To further reduce the likelihood of receiving spam submissions, it is encouraged to make use of both of these features. Anti-spam honeypot can be enabled for each form under Form Settings > Enable Anti-spam honeypot.