Category: web app/site dev.

Posted on

Google reCAPTCHA v3 Enterprise

Google reCAPTCHA V3: Enterprise key generation, config and implementation.

Some issues with my website’s contact form,  a robot sent a series of spam emails, the regular V3 only protects the frontend submission,  not direct attack from the backend.

So I have to update to the Enterprise version. I think so far works well and I recommended to update if you haven’t yet.

The process

All Google services have moved to under Google Cloud, so you have to use Google Cloud console to add, config, set up your reCAPTCHA key to frontend and backend.

If you are familiar with Google Cloud, I guess it’s not difficult. But if not, it’s hard to find where to start and where to look for, how to generate keys and others.

Especially the process instruction in the reCAPTCHA key generation page is not all you need to deal with like before. More than you think, more to read doc. more to understand their structure etc.. .

So please follow how I did.

Create a project

Anything you do there, first create a project. If you already done something and have a project, you can use the existing project but I recommend to create a new project for “G-reCAPTCHA”.

https://console.cloud.google.com/

Where to start

Google reCAPTCHA is located in the “SECURITY” section, under “Fraud Defense”. click that from the top left hamburger menu.

In the Dashboard, if you’ve used some “old” reCAPTCHA, you can find the keys there too in the list below.

I decide to start from creating a new key for my website.

NOTE: When you create a new key, it will automatically create a  “Essential” plan. And t’s “Free up to 10,000 assessments/month”. It’s good for my kind of business since I don’t expect so many access. But if you run an eCommerce site, maybe consider to update. You can check and update the plans in the “Attacks” tab.

+ Create Key

Click to + Create key.
Fill:

  1. [Display name (like a site name)],
  2. select Application  type [Web|Android|iOS]
  3. and [Add domain](that’s the site to use the reCAPTCHA)
  4. then [Create Key]


Follow the ① Frontend and ② Backend setups in the “Integration” tab
Easy!

NO!!!! It’s not that simple.
More steps are hidden.

But for now, you created a reCAPTCHA key successfully anyway.

Frontend


Following the “integration”
instruction.
At the top of your web site such as index.html, inside < head> </head> tag,
add the line:

This is simple.
Don’t forget to replace the Site KEY, in the line after:
enterprise.js?render=

<script> 
    src="https://www.google.com/recaptcha/enterprise.js?render=your-site-key">
</script>

Then, for the form submission, add:

<script> 
    function onClick(e) {
        e.preventDefault();
        grecaptcha.enterprise.ready(async () => {
        const token = await grecaptcha.enterprise.execute('your-site-key (ID)', {action: 'LOGIN'});
});
}
</script>

My example here, vuejs composition-API

try {
    const token = await new Promise((resolve, reject) => {
      if (typeof grecaptcha === 'undefined' || !grecaptcha.enterprise) {
        reject(new Error('reCAPTCHA library not loaded. Check if script is blocked.'));
        return;
      }

      grecaptcha.enterprise.ready(function() {
        grecaptcha.enterprise.execute('your-key', { 
          action: 'contact' 
        })
        .then(resolve)
        .catch(reject);
      });
    });

    const payload = {
      email: user.value.email,
      name: user.value.name,

      recaptchaToken: token
    };

    const response = await axios.post(variables.DBP, payload);
    console.log('Success:', response.data);
    
    initForm();
    thankYou.value = true;
  } catch (err) {
    console.error('Submit error:', err);
    alert(`Submission failed: ${err.message}`);
  } finally {
    loading.value = false;
  }
};
e;
  }
};

Backend - (tricky)


To adding code the backend server.
I use Node.js Express server.

actually it took me long…
It wasn’t clear, easy to find out this

Before proceeding, you must authenticate with reCAPTCHA. API requests to reCAPTCHA will fail until authentication steps are complete.

Learn More

click [Learn More] to get how to “authenticate”, but it’s pretty complex, at least to me….
but Anyway, First you need to generate a json file for the backend.

Generate a json file for the backend

  1. go to the left top, hamburger menu [IAM & Admin > Service Accounts]
  2. on the top, click [+ Create]
  3. service account
  4. Create service account
  5. service account
    • name = recaptcha-service
    • service account ID will automatically created
    • sercice account description = google recaptcha
  7. Once created it, go to [Actions] (three vertical dots)
    [Add key] > create new key > JSON
    it will generate a key and download to your computer automatically.

  8. You can find the file something like “recpatcha26-xxxxx-xxxxx.json” in your download folder


This process ② Permission (option) is important. Don’t forget to select “reCAPTCHA Enterprise Agent”

I didn’t first time because it says (option)… and when tested my server I got 500 error.
So it’s better to config when create a service account.


Once you’ve done creating the account, you can find in the list with newly created Email.

Select Manage Keys from Actions ⠇

Then [Add key] > [Create new ley]

Select JSON

Once you are successfully get and download the json file. Then upload it to the same directory where the server.js (node server app) located. (Actually you can place anywhere in the server although it’s easier to configure the path)

Configure the server script (Node.js)


After uploading the json file, yourProjectName-xxxxxxx-xxxxx.json

You need to install @google-cloud/recaptcha-enterprise package.


In your IPS cloud server where your express server (server.js) is, (mine is Linux Ubuntu) type:

npm i @google-cloud/recaptcha-enterprise

and to configure the server.js adding lines below:

const {RecaptchaEnterpriseServiceClient} = require('@google-cloud/recaptcha-enterprise');
const recaptchaClient = new RecaptchaEnterpriseServiceClient({
  keyFilename: "/path/To/your/projectName-xxxxx-xxxx.json"
});

My sample code for app.post:

app.post('/contact', async (req, res) => {
  const token = req.body.recaptchaToken; // send this from the client
  if (!token) {
    return res.status(400).send
    ({ error: 'Missing recaptcha token' })
  };

  try {
    const request = {
      parent: `projects/${'yourProjectName'}`,
      assessment: {
        event: {
          token,
          siteKey: 'YourReCAPTCHAkey-same-as-theFrontend'
        },
      },
    };
    
    const [assessment] = 
      await recaptchaClient.createAssessment(request);

    if (!assessment.tokenProperties || !assessment.tokenProperties.valid) {
      return res.status(403).send({ error: 'Invalid reCAPTCHA token' });
    }

    const score = assessment.riskAnalysis?.score ?? 0;
    if (score < 0.5) return res.status(403).send({ error: 'Low reCAPTCHA score', score });

    const transporter = nodemailer.createTransport({ 
      host: "smtp.yourMailService.com",
      port: 587,
      auth: {
        user: "yourUserName",
        pass: "YourPassword"
      },
     });

    const mailOptions = {
      from: 'info@koo-ds.com',
      subject: `Message from ${req.body.email}`,
      html: `
        <h1>Message from ${req.body.name}</h1>

        Email:${req.body.email}
      `, 
    };

    await transporter.sendMail(mailOptions);
    return res.send({ message: 'Success' });

  } catch (err) {
    console.error('reCAPTCHA verification error:', err);
    return res.status(500).send({ error: 'reCAPTCHA verification failed' });
  }
});

Please refer https://koo-ds.com/contactHow for Node Express Server development.

TODO:  

in console.cloud.googe.com

  1. Create a new project 
  2. get reCAPTCHA key
  3. Add it to the frontend <head>
  4. configure your sending script
  5. back to google cloud to create Service Account and get .json file
  6. upload the json to the production server
  7. configure server.js adding lines for reCAPTCHA
  8. make sure the path to .json file is correct
  9. test if now error, means you get inquire email from the site form. Back to Google Cloud to check the reCAPTCHA is “Protected”. Frontend and backend integrated.

Then you will see the activities.

GOOD LUCK!!

Posted on

WordPress update

for migrating Ubuntu22, php8.1, I’ve updated my blog (wordpress) too.

  1. Simply download the latest WordPress (6.3.1) and place in a server designated area (ie. /var/www/wordpress) and chown www-data:www-data -R /var/www/wordpress
  2. in the mysql database, create a database named ‘wordpress
  3. adjust php-fpm and nginx max_upload_file_size, if you want to upload .sql file using phpmyadmin. then create a database named ‘wordpress-yourdata
  4. import the SQL file, so all the previous data is migrated.
  5. go to ‘wordpress’ folder, edit ‘wp-config.php
  6. create nginx conf file for the blog (ie. blog.koodesignstudio.com.conf)
  7. restart nginx (dont’ forget “sudo nginx -t
  8. certbot to the blog.koodesignstudio.com
  9. access with a browser
  10. initial configuration for the new wordpress
  11. start from a brand new plain wordpress,
  12. update ‘wp-config.php‘ database to ‘wordpress-yourdata‘, now all the data is coming from the previous database
  13. copy images from the previous wordpress ./wordpress/wp-content/uploads
  14. install the theme and plug-ins as same as the previous
  15. done!

!IMPORTANT even to migrate from another server, frist create a default ‘wordpress’ dabase, then change ‘wp-config.php’

Posted on

Vue 2 add gtag for GA4

This is for vue 2

First: install ‘vue-gtag’ . this should be Ver 1. And it works with GA4 too.

IMPORTANT: add @legacy

npm install vue-gtag@legacy

Second: Update main.js

NOTE: use “vue-router” to automatically log “pages”

import Vue from "vue";
import App from "./App.vue";
import router from "./router";

// vue-gtag
import VueGtag from 'vue-gtag'
Vue.use(VueGtag, {
  config: {
    id: 'G-xxxxxxxxx'
  }
}, router)

new Vue({
  router,
  render: (h) => h(App),
}).$mount("#app");

DONE!

Posted on

Certbot

Generate a certificate for nginx

$ sudo certbot --nginx
$ sudo certbot --nginx -d example.com

List all the certificates

$ sudo certbot certificates

NOTE: check each nginx conf files updated by Certbot

Delete a specific certificate

$ sudo certbot delete --cert-name example.com

EXPAND, add a new domain to existing certificate

$ sudo certbot certonly --expand --cert-name existingdomain -d existingdomain.com,www.existingdomain.com,new.existingdomain.com

ADDITIONAL info added 10/09/2024

In case, accidentally deleted a certificate, here how to fix.

sudo certbot certonly --standalone -d deletedDomainname.com

Since still nginx.conf contain information about the deleted certificate, it need reissue certificate ONLY = certonly flag to avoide nginx error such as:

nginx: [emerg] cannot load certificate "/etc/letsencrypt/live/domainname.com/fullchain.pem": BIO_new_file() failed (SSL: error:80000002:system library::No such file or directory:calling fopen(/etc/letsencrypt/live/domainname.com/fullchain.pem, r) error:10000080:BIO routines::no such file)
nginx: configuration file /etc/nginx/nginx.conf test failed
Posted on

mysql | memo

case: remove a row with FOREIGN_KEY

SET FOREIGN_KEY_CHECK = 0;
DELETE FROM `tableName` WHERE (id = `idNumber`);
SET FOREIGN_KEY_CHECK = 1;

case: reset AUTO_INCREMENT id MAX

ALTER TABLE `tableName` AUTO_INCREMENT = `value`;

The ‘value’ is where the AUTO_INCREMENT starts next time.

SELECT @max := MAX(ID) + 1 FROM `tableName`;
PREPARE stmt FROM 'ALTER TABLE `tableName` AUTO_INCREMENT = ?';
EXECUTE stmt USING @max;
DEALLOCATE PREPARE stmt;

case: unable to enter `emptyValue` ” to a NULL space. (once rebooted mySQL, run the command)

SET @@global.sql_mode = '';
Posted on

Vue3 w/pinia, bootstrap5 and axios | my memo

Finally updated my mentality to Vue 3. I’ve updated my Mac OS from Catalina to Monterey a while ago and started to thinking about software update accordingly. The big one was Node, I’ve been using the version 12 for such a long time, so decided to update to v16. Thanks to nvm, I can switch versions when I needed. And started to try Vue3.

Vue3, Vite server, it’s just amazingly FAST!!! I’m loving it. 

> npm init vue@latest
> npm run dev

So far, trying to get familiar with update and I’ve encounter an axios issue. I’ve install axios and vue-axios. According to https://stackoverflow.com/questions/68233550/what-is-the-different-between-axios-vue-axios. “vue-axios is just a wrapper, exposing axios to components as this.axiosthis.$http, or Vue.axios.”

import axios from "axios";
import VueAxios from 'vue-axios'
app.use(VueAxios, axios);

app.mount("#app");

// with in a component add this
add(payload) {
const path = "URL";
this.axios.post(path, payload)
.then(() => {

I’ll update when I noticed something converting from vue2 to VUE3

Posted on

SVG (scalable vector graphic) animation

<svg viewBox="0 0 100 100" xmlns="http://www.w3.org/2000/svg">
  <rect x=0 y=0 width=100 height=100 fill="black" />
  <circle cx="20" cy="20" r="20" fill="red" />
</svg>

SVG animation with SMIL

<svg viewBox="0 0 100 100" xmlns="http://www.w3.org/2000/svg">
<rect x="0" y="0" width="100" height="100" fill="black"></rect>
  <circle cx="20" cy="30" r="20" fill="red">
    <animate attributeName="cx" from="0" to="100" dur="2s" repeatCount="indefinite"></animate>
    <animate attributeName="cy" from="30" to="100" dur="2s" repeatCount="indefinite"></animate>
</circle>
</svg>

You can use Javascript to manipulate element

var svg = document.getElementById('IDNAME');

and/or CSS

@keyframes

<style>
.wrapper{
height:400px;
width: 400px;
background:#111;
text-align: center;
overflow: hidden;
}
.svg-wrapper {
  height: 60px;
  margin: 0 auto;
  position: relative;
  top: 50%;
  transform: translateY(-50%);
  width: 320px;
}

.shape {
  fill: transparent;
  stroke-dasharray: 140 540;
  stroke-dashoffset: -474;
  stroke-width: 8px;
  stroke: #19f6e8;
}

.text {
  color: #fff;
  font-family: Arial, Helvetica, sans-serif;
  font-size: 22px;
  letter-spacing: 8px;
  line-height: 32px;
  position: relative;
  top: -48px;
}

@keyframes draw {
  0% {
    stroke-dasharray: 140 540;
    stroke-dashoffset: -474;
    stroke-width: 8px;
  }
  100% {
    stroke-dasharray: 760;
    stroke-dashoffset: 0;
    stroke-width: 8px;
  }
}

.svg-wrapper:hover .shape {
  -webkit-animation: 0.5s draw linear forwards;
  animation: 0.5s draw linear forwards;
}
</style>
<div class="wrapper">
<div class="svg-wrapper">
  <svg height="50" width="320" xmlns="http://www.w3.org/2000/svg">
    <rect class="shape" height="60" width="320" />
  </svg>
   <div class="text">HOVER</div>
</div>
</div>
HOVER

Posted on

git cli update

My previous post was to introduce git, this one is for CLI update/note:

REMOTE

$ git init ProjectName.git --bare (create remote empty git repo as origin master to push)

$ git push --set-upstream origin BranchName. (To push the current branch and set the remote as upstream)

$ git push -u origin myBranchName

$ git remote -v (List remote repo)

$ git remote add <name> <url> (add remote repo <name> = “origin”, url = server.com:/where/the/project.git)

FILE

$ git checkout --filename.ext (remove the file filename.ext from git)

$ git status (show current status of git, I execute it before git add .)

$ git restore filename.ext (before commit, restore the file to previous status, even file is saved, the content is back to the before)

CLEAN UP GIT

$ git clean -df projectName (clean up git)

$ git log --oneline --graph (show list of commit.)

$ git reset --hard HEAD (go to current HEAD.)

$ git reset --hard HEAD^ (go back to the 1 commit from current HEAD.)

$ git reset --hard HEAD~2 (go back to the 2 commits from current HEAD.)

$ git reset --hard index (go back to the commit where the index is)

UPDATED 09/16/2021

Just encounter an accident, so I’m updating the post.

Accidentally overwritten a file!! OMG. A awesome thing about git is you can retrieve a file or files later. Usually right after you save a file and notice a mistake and Ooops, I shouldn’t save the file, in stead save as different file name. Anyway if you saved and noticed, means you have not git commit the change. So simply:

$ git status (show status what has been modified)

$ git restore fileName (restore the file)

IMPORTANT: Once you notice, you need to change the file name before do git restore, so you can have both.

If you’ve already git add . + committed, you should use

git reset --hard HEAD^ (go back to the 1 commit from current HEAD.)

IMPORTANT: before git reset, always nice to have a current backup somewhere else in local or remote.

UPDATED 06/09/2022

find remote branch names

$ git remote -v show origin

pull the remote branch

$ git pull branch-name

Posted on

git? A powerful tool for manage your project.

Do you know or have you heard “git” or maybe “github”?

Wiki definition

Git (/ɡɪt/)[7] is software for tracking changes in any set of files, usually used for coordinating work among programmers collaboratively developing source code during software development. Its goals include speed, data integrity, and support for distributed, non-linear workflows (thousands of parallel branches running on different systems).

Even you are not a programmer or computer software/web developer, I think this tool is a super useful. If you only use Word, Excel etc.., anything that you need to save some data as a file, it’s very helpful to manage your project.

EXAMPLE: You are working on a project to input some data to an Excel spreadsheet. You boss come and ask to add a new column [Gender] and input (F) or (M), so you follow the order. A few days later, your boss came again and ask to add other 2 columns [F] and [M], divide data [Gender] to [F] and [M], if it’s (F), input “1” to [F} column, if it’s (m), [M] to 1. So you worked on the devision. Next day, your boss come again and said bring back to [F] and [M] to [Gender] and a few days later… Things like this happen all the time, isn’t it.

If it’s simple(but stressful 😫) as the example, probably when you’ve asked to add the 2 columns, you save the current file as different file name as a backup before adding these, and you continue working on the same file. So list,exl and list-backup1.exl. But I’m pretty sure that your boss come again and ask more changes… and so on, You’ll make so many backups and alternative files, the project folder getting messy easily. Imagine if you are saving files at the Desktop… nightmare!! Also if are working with some other collaborators to share the folder or even a file together, it’s so hard to manage and track what’s going on in the project folder, what have been changed and by who.

git can help manage the project.

The GUI (Graphic User Interface) is available for free, I recommend Sourcetree, available both Mac and Windows.

  1. download from Sourcetree’s website
  2. install
    • (if you have some problem with Mac Mojave or later, simply move the downloaded app to Applications folder and launch, The OS prompt you to allow access to the app, type your OS user password to authorize.)
    • It’s good to se Author name and Author Email address especially if you work with others but it’s up to you. You can change this setting later too
  3. New (cmd⌘+ N || CTL+N), select [local]. Add a folder Drag/Drop | [Scan a directory] to select a folder where you want to start using git.
  1. Once you select a folder, click on the folder name,
  1. then the project window appear, it’s look like this. (I’ve add a folder called “GIT”)
  1. Start a new excel file and just save it, it ‘s automatically appear to the git screen, at the “File status” on the left menu bar under WORKSPACE but it’s not yet in the tracking system, so you have to commit the file.
NOTE: if your file still open ~filename appear, when you close the file, it will be disappeared.
  1. To commit the file, select the file (check the box), it will automatically move to Stage files section and at the bottom “Commit” section, type “my first git commit” or something you can refer later and press [Commit].
  1. Switch view to “History” at the left menu bar. You see the fie added to the git system. Congratulations! You get started to using git.
  1. git watches all the files contained in the folder, so if you create another file, Word, it also tracked by git. You can work on it and save it and commit to add to the History. Every time you commit, you commit to Master branch.
  2. When boss come and divide a column to 2, you can make a branch to keep the original and start new branch to record the new history.
  3. To make a branch, click on “Branch” on the top menu and type name of branch as you like, let’s call it “gender”.
  1. You work on the excel and save it, now you are committing to the new branch “gender”. So the master is untouched as before you committed to the new branch.
  1. Switching (checkout) over 2 branches “Master” and “gender” by clicking BRANCHES at the left bar to see how the files in the folder changes.
  1. Merge, when you are done with a specific changes such as [gender] column, you can merge the branch together, merge “gender” to “Master” branch

GIT REMOTE

Working with collaborators using git is just amazing, you can work a same file with them at the same time and sync changes when you need to. or share your experiment with them etc..

GitHub is built for a remote git storage, storage called a “repository” in git, share a git repo to the world. You can download (git clone) to your computer (local) whatever uploaded to GitHub as public. And it can be shared ONLY for private too. GitHub has became so popular, maybe that’s why it sounds familiar to you too.

To work with remote git repository using Sourcetree,

  1. First, you have to have a remote git repository, in your own cloud server, GitHub.com etc..
  2. The name of repo has to be the same, so If you started GIT.git in your local, create an empty remote repo as the same name.
  3. Once you have the remote git repo, click “Setting” from the top right, select to “Remote” tab, [Add] to add a new remote git to store the git.

Type remote git name as “origin‘. Then URL/path “https://koo-ds.com:/data/git/GIT_TEST.git“, where you put the remote repository. If you push to GitHub, the option, select Host Type such as GitHub, Host Root URL will automatically filled as https://github.com, then type your GitHub Username. (when sourcetree try to connect to the remote server, it will ask you to type your username and password.)

Now you can push your project to remote server, select REMOTES at the left and select your server where you want to access to, Then “Push” at the top bar. You can select what branch you want to upload. Then It will connect and send git data to the remote server. When you are working the project from different computer, start new and “clone” the data from the remote repo, then add all files to your new local git repo and commit, push back to the remote repo, then go back to you original computer and “Pull the changes to it. You can work with collaborator remotely do the same.

work => save file => git add all => commit => push THEN pull => work => save => git add all => commit => push =>…

GITHUB Desktop

If you use GitHub, there is GitHub desktop software available. https://desktop.github.com

CLI (Command Line Interface)

If you are familiar with a command line shell, you can use CLI, here is some command note:

$ cd toProjectFolder

$ git init (make a git in a project folder)

$ git add . (add all the changes to git)

$ git commit -am "My first git" (commit)

$ ssh username@remote_server.com

@ remoteServer $ cd /where/your/gitRepo/willbe/

@ remoteServer $ git init projectName.git --bare

$ git remote add origin usrname@remote_server.com:/where/gitRepo/willbe.git (set a remote git repo, you should create “willbe.git” repo first, it can be just empty git)

$ git push --set-upstream origin master (push to the remote)

$ git branch gender (create a new branch)

$ git checkout gender (switch to the branch)

$ git add . (add saved files to the new git branch)

$ git checkout master (switch back to master)

$ git checkout gender (switch to gender again)

$ git push (you can push a branch to the remote repo too)

$ git checkout master (before you merge, go back to master)

$ git merge gender (merge all the changes you made and committed to gender branch to master)

$ git branch -d gender (delete gender branch)

$ git clone username@remote_server.com:/where/gitRepo/willbe.git (when you use different computer or your collaborator start to work remotely, download all the git project)