Captcha Management

Learn everything you need to know about managing your CAPTCHAs, from creating, modifying, and customizing settings to transferring CAPTCHAs to other users or deleting them.

Overview and Statistics

Here you can see screenshots that illustrate how the management interface looks and the options and information it offers.

Usage and Costs

You are transparently shown how much your CAPTCHA is used and what costs are incurred under your currently selected cost plan.

Overview stats light

Credentials

You can view your website key, secret key, and, if applicable, your license key. These provide access to all services, features, and CAPTCHA results.

Overview keys light

Settings

Get a quick overview of all settings and make changes with just a few clicks.

Overview settings light

Statistics

In addition to comprehensive CAPTCHA usage statistics, the statistics also provide information about your users' devices, internet connections, and more.

Statistics light

Settings

The settings shown here form the basic configuration of each CAPTCHA.

Settings light

Name

The CAPTCHA name can be freely and individually assigned by you. Choose a name that helps you and your colleagues easily identify the CAPTCHA.

Requirements: The CAPTCHA name must be between 3 and 50 characters long and cannot be empty (only spaces).

Minimal Data Mode

In this mode, our servers store and process only the minimal necessary data. For technical reasons, no Bot Score can be calculated, so it will always return 0 (human). The functionality of Proof-of-Work remains unaffected. Please activate this mode in the respective Trustcaptcha components in your frontend to ensure no data is transmitted to us.

Note: We do not recommend this mode, as the omission of the Bot Score significantly reduces the security of our CAPTCHA.

Security / Duration

The duration of the CAPTCHA largely depends on the difficulty of the Proof-of-Work tasks. The more frequently a user solves the CAPTCHA within a short period, the harder the tasks become and the longer the CAPTCHA lasts. This aims to slow down potential attackers and make bot attacks resource-intensive and unattractive.

You can use the slider to adjust the difficulty level and the suggested duration. Move the slider to the left to reduce difficulty and duration by up to 50% (faster). Alternatively, move the slider to the right to increase duration and security by up to 50% (safer).

Authorized Domains

The CAPTCHA can only be used on websites whose domain or IP address you have explicitly authorized. This prevents unauthorized third parties from using your CAPTCHA on other websites, which could result in unwanted costs for you.

You can specify any valid domain (e.g., example.com) or subdomain (e.g., www.example.com) as an authorized domain. IPv4 addresses (e.g., 1.2.3.4), IPv6 addresses (e.g., 2001:aaa::1), or localhost are also supported.

Access Rules

Access rules allow you to define that clients with specific characteristics (e.g., a particular IP address) are either always accepted or rejected without solving the CAPTCHA.

Allow-List / Block-List

The Allow-List and Block-List provide the ability to either always allow clients with specific IP addresses (Allow-List) or consistently reject them (Block-List).

Allow-List: Clients whose IP addresses match those listed in the Allow-List will automatically pass the CAPTCHA. They do not need to solve Proof-of-Work tasks and always receive a Bot Score of 0 (human). This allows them to bypass the CAPTCHA quickly and without restrictions.

Block-List: Clients whose IP addresses match those listed in the Block-List are consistently rejected. They receive a particularly difficult Proof-of-Work task and subsequently a Bot Score of 1 (bot), resulting in their rejection.

Notation: All IP addresses, whether IPv4 or IPv6, can be specified as individual addresses or entire ranges using CIDR notation. Examples for IPv4 include 1.2.3.4/32 (single address) or 100.200.0.0/16 (range). Examples for IPv6 include 2001:aaa::1/128 (single address) or 2001:bbb::/64 (range). If no subnet mask is provided, /32 is automatically added for IPv4 and /128 for IPv6.

Allow-List Before Block-List: Note that entries in the Allow-List take precedence over entries in the Block-List. If the same IP address or range appears in both lists, the Allow-List will apply. Additionally, you can block entire IP ranges in the Block-List and define exceptions for specific IP addresses in the Allow-List that would otherwise be blocked.

Allow block list light

Geoblocking

Geoblocking allows you to allow or block clients based on the geographic location of their IP addresses.

Modes: Geoblocking offers two modes. In Block-List mode, only requests from specific countries selected by you are blocked. In Allow-List mode, all requests are rejected by default except those from countries you explicitly allow.

Note: Occasionally, entire IP ranges may be reassigned to different geographic regions, which can take some time for our systems to update. Additionally, clients may use technical methods like VPNs or proxies to simulate a different geographic location, attempting to bypass geoblocking.

Geoblocking light

Bypass Keys

Bypass Keys allow clients to skip CAPTCHA verification.

Functionality and Use: Bypass Keys can be specified in the frontend. Clients providing a valid Bypass Key when solving a CAPTCHA will automatically pass. They do not need to solve Proof-of-Work tasks and always receive a Bot Score of 0 (human). This feature is ideal for automated software and system testing or automated tasks. It is especially useful for clients that lack fixed IP addresses or ranges, making the IP Allow-List unsuitable.

Bypass keys light

Members

Each user can access multiple CAPTCHAs, while each CAPTCHA can be managed by multiple users.

Members light

Members and Roles

Each CAPTCHA can generally be managed by multiple users. Trustcaptcha users can be invited to an existing CAPTCHA at any time, the roles of existing members can be adjusted, or members can be removed.

The Bill Recipient: An exception is the member designated as the bill recipient for a CAPTCHA and responsible for its associated costs. This member cannot lose their administrator role or be removed as a member of the CAPTCHA. However, another CAPTCHA administrator can be assigned as the new billing contact, taking over the current bill recipient's role.

Roles: Currently, there are three different member roles:

  1. Viewer: A viewer can view all settings and statistics of a CAPTCHA but is not allowed to make changes.
  2. Member: A member can view all content and modify most settings. However, they cannot change the following: members and invitations, cost plans and billing settings, or delete the CAPTCHA.
  3. Administrator: An administrator has unrestricted access to all features.

Add Users

Any Trustcaptcha user can be invited to a CAPTCHA. To do so, provide an email address linked to the user and select the appropriate role. The invited user can then accept or decline the invitation via their dashboard under My CAPTCHAs. Additionally, the user will be notified of the invitation via email.

Invitations are valid for 7 days. Invitations that are neither accepted nor declined within this period will be automatically deleted. However, new invitations can be created at any time.

Cost Plan and Billing

Learn everything you need to know about cost plans and billing.

Cost Plan

You can create new CAPTCHAs with any cost plan and upgrade them at any time. If you create a CAPTCHA or upgrade the cost plan during a month, any applicable base costs will only be prorated for the remainder of the month. Please note that contractually booked services will always be fully charged for the remainder of the month.

Free Trial: You can try Trustcaptcha for free with our trial version, test it extensively, and integrate it into your software. If you need a higher request volume or additional features, please contact our support team.

Custom Cost Plans: If you require a custom cost plan tailored to your specific needs, including a Pay-per-Use model or a fixed price, feel free to contact our support team.

Bill Recipient and Separate Invoice

Any administrator can be designated as the billing contact, provided they have a valid billing address on file. If a user has multiple billing addresses, the most appropriate one can be selected for the CAPTCHA. Users can add additional billing addresses to their profile at any time.

Separate Invoice: By default, all costs for CAPTCHAs and products linked to the same billing address are grouped into a single invoice. Enable this feature if you require a separate invoice for the respective CAPTCHA and its associated billing address for accounting purposes.

Billing light