Snaptcha

Fixed

• Fixed a bug in which an error could be thrown if craft.snaptcha.fieldValue() was used without passing iin a config array (#24).

Added

• Added compatibility with Craft 4.

Changed

• Excluded the ad-wizard/tracking/click controller action from being validated.

Changed

• Excluded the enupal-stripe/checkout/create-session controller action from being validated (#23).

Changed

• The controller action is now logged when a form submission is rejected for easier debugging (#21).

Changed

• Excluded the templates/render controller action from being validated (#20).

Changed

• Excluded GraphQL requests that do not use application/graphql as their MIME type from being validated (#17).

Fixed

• Fixed a bug in which a migration was not run when updating from v2 to v3 (#15).

Fixed

• Fixed a bug in which config changes could be made twice if the plugin was installed via project config (#15).

Changed

• Excluded requests to the GraphQL API from being validated (#17).

Fixed

• Fixed a bug in which the PHP script was allowed to continue even if a submission was flagged as spam (#16).

Changed

• The keys of posted arrays are now preserved when a submission is flagged as spam.

Fixed

• Fixed a bug in which an error could be thrown if values were passed in as an array and a submission was flagged as spam.

The “Excluded URI Patterns” setting has been removed. Use the new “Exclude Controller Actions” setting instead. Read more

The error screen has been updated. If you previously set a custom error message then you should review the plugin settings.

Added

• Added a customisable template that allows users to resubmit their data if a submission is flagged as spam.
• Added a “Validate Users” setting that lets you disable validation for logged-in users.
• Added an “Exclude Controller Actions” setting that lets you disable validation for specific controller actions.
• Added an “Allow List” of IP addresses that will not be validated.
• Added unit tests.

Changed

• Changed the minimum requirement of Craft to version 3.2.1.
• Renamed “Blacklist” to “Deny List”.
• The hidden input field now has an autocomplete attribute set to off.
• IP addresses are now stored as anonymous hashed values.

Removed

• Removed the “Excluded URI Patterns” setting. Use the new “Exclude Controller Actions” setting instead.

Changed

• Action requests to the Complete Cookie Consent plugin controller are excluded from validation (#12).

Added

• Added a beforeExcludeControllerActions event with the ability to modify controller actions to exclude from validation.

Changed

• Action requests to the Commerce plugin webhooks controller are excluded from validation (#11).
• Action requests to the Ellera Cookie Consent plugin controller are excluded from validation (#12).
• Improved the excluded URI pattern matching logic.

Fixed

• Fixed validation being applied to live preview using a token query string.

Changed

• Absolute URL is now added to rejected message in log file (#7).

Fixed

• Fixed validation being unnecessarily applied to the set password path.

Changed

• Changed actionGetField controller action to return a raw input field if the request does not accept JSON.

Fixed

• Fixed validate field value action to work with POSTed values.

Added

• Added field controller actions for better AJAX support.

Changed

• Changed script tag to avoid validation error.

Fixed

• Fixed possible error when updating plugin.

Added

• Added excluded URI patterns to settings.
• Added table field for blacklisted IP addresses in settings.
• Added check for enableSnaptchaValidation parameter in action's controller class.

Fixed

• Fixed bug that was causing issues with live preview.

Fixed

• Fixed bug that was preventing the correct error message from being displayed.

Fixed

• Fixed bug with variable using incorrect StringHelper class.

• Initial release.