Google reCAPTCHA to an HTML Form

How to Add Google reCAPTCHA to an HTML Form (Step-by-Step Guide)

by

Bots and spam submissions can be a real headache for any contact form. Luckily, Google offers a free and easy-to-use tool called reCAPTCHA that helps protect your forms from automated abuse.

In this tutorial, you’ll learn how to add Google reCAPTCHA v2 (“I’m not a robot”) to a basic HTML form, using simple steps perfect for beginner developers.

šŸ§± Step 1: Create a Google reCAPTCHA Key

  1. Go to https://www.google.com/recaptcha/admin
  2. Click + Create
  3. Set the label (e.g., ā€œMy Contact Formā€)
  4. Choose reCAPTCHA v2
    • Select ā€œIā€™m not a robotā€ Checkbox
  5. Add your domain (e.g., example.com)
  6. Accept the terms and click Submit

After submitting, Google will give you:

  • A Site Key (for the frontend)
  • A Secret Key (for server-side validation)

šŸ§± Step 2: Add the reCAPTCHA to Your HTML Form

Hereā€™s a basic contact form with reCAPTCHA added:

<!DOCTYPE html>
<html lang="en">
<head>
  <meta charset="UTF-8">
  <meta name="viewport" content="width=device-width, initial-scale=1.0">
  <title>reCAPTCHA Form</title>
  <script src="https://www.google.com/recaptcha/api.js" async defer></script>
</head>
<body>

  <h2>Contact Us</h2>
  <form action="process.php" method="POST">
    <label>Name:</label><br />
    <input type="text" name="name" required><br /><br />

    <label>Email:</label><br />
    <input type="email" name="email" required><br /><br />

    <label>Message:</label><br />
    <textarea name="message" required></textarea><br /><br />

    <!-- Google reCAPTCHA widget -->
    <div class="g-recaptcha" data-sitekey="YOUR_SITE_KEY_HERE"></div><br />

    <button type="submit">Send</button>
  </form>

</body>
</html>

šŸ” Replace "YOUR_SITE_KEY_HERE" with your actual site key from Google.

šŸ“¤ Step 3: Verify reCAPTCHA in Your Backend (PHP Example)

On your server, youā€™ll need to verify the reCAPTCHA response using the secret key.

Hereā€™s a basic process.php example:

<?php
if ($_SERVER['REQUEST_METHOD'] === 'POST') {
  $recaptchaSecret = 'YOUR_SECRET_KEY_HERE';
  $recaptchaResponse = $_POST['g-recaptcha-response'];

  // Verify using Google API
  $response = file_get_contents(
    "https://www.google.com/recaptcha/api/siteverify?secret=$recaptchaSecret&response=$recaptchaResponse"
  );
  $responseKeys = json_decode($response, true);

  if ($responseKeys["success"]) {
    echo "Message sent successfully!";
    // Proceed with email sending or database saving
  } else {
    echo "reCAPTCHA validation failed. Please try again.";
  }
}
?>

šŸ” Replace "YOUR_SECRET_KEY_HERE" with the secret key you got from Google.

āœ… Final Result

You now have a secure HTML form that:

  • Includes a reCAPTCHA checkbox
  • Validates user interaction with Google’s servers
  • Prevents spam and bots from submitting your form

šŸ§  Why Use Google reCAPTCHA?

  • Free and reliable
  • Easy to implement
  • Works well with any HTML form
  • Boosts form security without hurting user experience

šŸ§© Extra Tips

  • Use reCAPTCHA v3 for invisible validation (advanced)
  • Combine with PHP mail() or PHPMailer for complete contact form solutions
  • Always validate the CAPTCHA on the server

1 thought on “How to Add Google reCAPTCHA to an HTML Form (Step-by-Step Guide)”

  1. Pingback: How to Apply a Honeypot to an HTML Form Using PHP - Dev Junior School

Leave a Comment