EU CAPTCHA for .NET Core

Frequently Asked Questions

• How do I verify a CAPTCHA token in .NET Core?

  Register a typed HttpClient in your DI container for the EU CAPTCHA API. In your controller action, minimal API endpoint, or middleware, inject the client and POST the eu-captcha-response token with your secret key to the EU CAPTCHA verification endpoint. Process the form data only if the response confirms a valid human interaction.

• Does EU CAPTCHA work with ASP.NET Core Minimal APIs?

  Yes. In a Minimal API, inject the typed HttpClient as a parameter in your endpoint delegate or via dependency injection. Read the eu-captcha-response from the form or JSON body, call the EU CAPTCHA verification endpoint, and return a Results.BadRequest() or Results.UnprocessableEntity() if verification fails before executing the endpoint's business logic.

• How do I use IHttpClientFactory to call the EU CAPTCHA API in .NET?

  Register a typed or named HttpClient in Program.cs using builder.Services.AddHttpClient. Configure the base address to the EU CAPTCHA verification endpoint. Inject the IHttpClientFactory or the typed client into your service or controller, call PostAsync with your secret key and the token in the request body, and parse the JSON response to determine the verification result.

• Can EU CAPTCHA be used with Blazor forms?

  Yes. For Blazor Server and Blazor WebAssembly, include the EU CAPTCHA widget div in your Razor component markup by rendering it inside a standard HTML form or using JavaScript interoperability. Read the token via JS interop and pass it to your Blazor service or HttpClient call for server-side verification against the EU CAPTCHA API.

• How do I store the EU CAPTCHA secret key securely in .NET Core?

  Use the .NET secrets management system. For development, store the key in user secrets via dotnet user-secrets set. For production, use environment variables, Azure Key Vault bound through the Microsoft.Extensions.Configuration.AzureKeyVault package, or AWS Systems Manager Parameter Store. Read it in code using IConfiguration['EuCaptcha:SecretKey'] and inject it via the options pattern.

• Is EU CAPTCHA compatible with .NET 8 and .NET 9?

  Yes. EU CAPTCHA verification requires only a standard HTTPS POST request to the API endpoint, which is fully supported by HttpClient in all .NET versions. The integration works with .NET 6, 7, 8, and 9, including the latest minimal hosting model and trimming-compatible deployments.

• Is EU CAPTCHA GDPR compliant for .NET Core applications?

  Yes. EU CAPTCHA is operated by an EU-based company, is hosted entirely in Germany, and does not rely on US cloud providers or infrastructure subject to US surveillance laws. The service processes only the data necessary to provide and verify the CAPTCHA (such as IP address and technical device or browser information) in line with the GDPR. Your organization remains responsible for providing transparent privacy information, selecting an appropriate legal basis, and obtaining any required consent for your specific .NET implementation. This information does not constitute legal advice; please consult your legal counsel for an assessment of your individual case.