recaptcha-sidecar

command module

v0.0.0-...-86c91e7 Latest Latest Go to latest Published: Jun 12, 2020 License: Apache-2.0 Imports: 9 Imported by: 0

Details

Valid go.mod file

The Go module system was introduced in Go 1.11 and is the official dependency management solution for Go.
Redistributable license

Redistributable licenses place minimal restrictions on how software can be used, modified, and redistributed.
Tagged version

Modules with tagged versions give importers more predictable builds.
Stable version

When a project reaches major version v1 it is considered stable.
Learn more about best practices

Repository

README ¶

recaptcha-sidecar

This service is meant to run as a sidecar to the Apigee hybrid API gateway (also known as Message Processor). The service takes a Google Cloud Service Account as a parameter and is used to create assessments using Enterprise reCAPTCHA.

Use Case

Apigee's API Management platform can expose APIs securely (protected via API keys, OAuth etc.). There are times when such methods of protection are not possible (ex: registration API, login API etc.). Such APIs may become tagets for BOTs. Enterprise reCAPTCHA is a BOT detection tool from Google Cloud and can be integrated with Apigee. User experiences include reCAPTCHA instrumentation. This enables the UX to obtain a reCAPTCHA token. The UX presents Apigee with the reCAPTCHA token. Apigee's API gateway invokes the reCAPTCHA assessment API and determine the risk score for the client. If the risk threshold is within the boundaries set by the enterprise, the API call can be let through.

Prerequisites

Apigee hybrid runtime installed on GKE or GKE on-premises (v1.13.x)
A GCP Project with Enterprise reCAPTCHA enabled

Prerequisites to build

kubectl 1.13 or higher
docker 19.x or higher (if not using skaffold)
skaffold 1.1.0 or higher (optional)

Installation

Installation via kubectl

Build the docker image docker build -t gcr.io/{project-id}/recaptcha-sidecar
Push to a container registry docker push gcr.io/{project-id}/recaptcha-sidecar
Modify the kubernetes manifest


kubectl apply -n {namespace} -f recaptcha-sidecar.yaml

Installation via Skaffold

This application can also be installed via skaffold. Modify the skaffold.yaml to set the appropriate project name.


skaffold run

Supported Operations

Environment Variables

The following environment variables are mandatory:

GOOGLE_APPLICATION_CREDENTIALS - Path to service account json
PROJECT_NUMBER - GCP Project number where reCAPTCHA is enabled
SITE_KEY - reCAPTCHA site key

Store data (Populate Cache)

Path: /assessment/{token} Method: GET


curl 0.0.0.0:8080/token/xxxx

Access patterns from Apigee hyrid

A typical pattern/example would be to use a Service Callout policy to access operations supported by the service.

This sample sharedflow within any API proxy. The shredflow parses the reCAPTCHA response and sets recaptchaDecision and riskScore message context variables. That API proxy can make decisions based the message context variables.

Documentation ¶

There is no documentation for this package.

Source Files ¶

View all Source files

main.go

Directories ¶

Path	Synopsis
apis
app
recaptcha

?	: This menu
/	: Search site
f or F	: Jump to
y or Y	: Canonical URL