This article addresses whether Okta sends the remoteip field in the hCaptcha siteverify API call.
For more information on this feature, refer to the hCaptcha Enterprise: Handling siteverify Responses documentation.
NOTE: Enterprise login to hCaptcha is required to view the documentation.
- hCaptcha
Okta supports integration with hCaptcha for Completely Automated Public Turing test to tell Computers and Humans Apart (CAPTCHA) protection; however, the available documentation does not explicitly state that the remoteip field is sent in the siteverify API call. The documented configuration for the hCaptcha integration only covers the site key and secret key. Okta’s implementation uses the invisible version of the CAPTCHA, and no details are provided about including additional parameters, such as remoteip, in the verification request.
An idea for this feature request has been submitted to Okta Ideas for consideration in the Okta Product Roadmap.
