Project

rails_cloudflare_turnstile

0.02
There's a lot of open issues
rails_cloudflare_turnstileinstrumentl/rails-cloudflare-turnstileHomepageDocumentationSource CodeBug Tracker
Rails extension for Cloudflare's Turnstile CAPTCHA alternative. This gem should work with Rails 6.x and 7.x, and with Faraday 1.x and 2.x.
2005
2006
2007
2008
2009
2010
2011
2012
2013
2014
2015
2016
2017
2018
2019
2020
2021
2022
2023
2024
 Popularity
Downloads
43,218
Stars
23
Forks
13
Watchers
4
 Releases
Current version
0.2.1
Total releases
9
First release
2023-01-09
Latest release
2024-04-29
 Issues
Open Issues
7
Closed Issues
5
Total Issues
12
Issue Closure Rate
41%
 Pull Requests
Open Pull Requests
4
Closed Pull Requests
44
Merged Pull Requests
132
Pull Request Acceptance Rate
73%
 Development
Primary Language
Ruby
Licenses
ISC
Average date of last 50 commits
2024-07-17
Reverse Dependencies
0

 Dependencies

Runtime

faraday
>= 1.0, < 3.0
rails
>= 6.0, < 8
 Project Readme

RailsCloudflareTurnstile

This is a Rails plugin adding support for Cloudflare Turnstile. It works with Rails 6+, and Ruby 3.x.

CI Gem Version

Usage

Installation

Add this line to your application's Gemfile:

gem 'rails_cloudflare_turnstile'

And then execute:

$ bundle

Or install it yourself as:

$ gem install rails_cloudflare_turnstile

Next, configure it by creating a config/initializers/cloudflare_turnstile.rb with contents like the following:

RailsCloudflareTurnstile.configure do |c|
  c.site_key = "XXXXXX"
  c.secret_key = "XXXXXXXX"
  c.fail_open = true
end

To totally disable Turnstile, you can set c.enabled = false and all other config values are ignored.

To use Turnstile for a view:

  1. Call cloudflare_turnstile_script_tag in your layout
  2. Call cloudflare_turnstile in your form View. Keyword arguments are passed to the tag helper (for example, to set the tabindex option, you could use cloudflare_turnstile(data: {tabindex: 0}))
  3. Call validate_cloudflare_turnstile as a before_action in your controller.

If the challenge fails, the exception RailsCloudflareTurnstile::Forbidden will be raised; you should handle this with a rescue_from block.

By default, in development and test mode, a special mock view will be inserted if real credentials are not present. To disable this, set the mock_enable property of the configuration to false.

License

The gem is available as open source under the terms of the ISC License.