Features Workflow Plans Docs Help
Start free Log in

Documentation

Getting started

Create a site key, install the widget, and verify the response before accepting a form submission.

Integration flow

A complete integration has three pieces: a public site key in the widget endpoint, a widget mounted in the protected form, and server-side verification before your business logic continues.

1. Create a site key

Create a project, add the production domain, and copy the public site key from the project integration panel.

2. Install the widget

Load widget.js and place human-proof inside the form. Choose the variant and trigger that match your UX.

3. Verify the response

Read humanproof-token on the server and validate it with your backend secret.

Go live checklist

  • Production domain is configured and synced.
  • Testing domains are separated from the production domain.
  • Backend secret is stored only in server environment variables.
  • Failed verification prevents the protected action.
  • The form handles expired, failed, and reset widget states.