Mashiro
Chevereto Member
For the political reason, https://www.google.com is not accessible in Mainland China. Now, as you can imagine, the Recaptcha API (https://www.google.com/recaptcha) is not accessible for Chinese visitors.
But it was not all Google's services been blocked in China, eg. https://www.google.cn and https://developers.google.cn is accessible here, and Google has been keeping two data centers in Mainland China, so, fortunately, Recaptcha API is accessible in China through another domain: www.recaptcha.net. That means https://www.recaptcha.net/recaptcha is equal to https://www.google.com/recaptcha.
You may check www.recaptcha.net 's SSL certification, it was signed with Google's Root CA (it means www.recaptcha.net was officially hosted by Google, although it is not mentioned in Recaptcha's documentation):
I tried to replace the domain in app/lib/functions.php , app/lib/chevereto.js, and app/lib/chevereto.min.js the Recaptcha's front-end service works well.
I think the Recaptcha certificate is important for a Chevereto host to keep away from attack/abuse, every Chevereto host in every corner of the world should be accessible to it.
My hope is Chevereto could add an option to select from which host (www.google.com or www.recaptcha.net) to import Recaptcha services. Currently, my modification could be erased by the next updating, and I don't want to modify it manually every time.
But it was not all Google's services been blocked in China, eg. https://www.google.cn and https://developers.google.cn is accessible here, and Google has been keeping two data centers in Mainland China, so, fortunately, Recaptcha API is accessible in China through another domain: www.recaptcha.net. That means https://www.recaptcha.net/recaptcha is equal to https://www.google.com/recaptcha.
You may check www.recaptcha.net 's SSL certification, it was signed with Google's Root CA (it means www.recaptcha.net was officially hosted by Google, although it is not mentioned in Recaptcha's documentation):
I tried to replace the domain in app/lib/functions.php , app/lib/chevereto.js, and app/lib/chevereto.min.js the Recaptcha's front-end service works well.
I think the Recaptcha certificate is important for a Chevereto host to keep away from attack/abuse, every Chevereto host in every corner of the world should be accessible to it.
My hope is Chevereto could add an option to select from which host (www.google.com or www.recaptcha.net) to import Recaptcha services. Currently, my modification could be erased by the next updating, and I don't want to modify it manually every time.