* Ironclad CAPTCHA by Security Stronghold *

Version: 1.0
Information page: http://www.securitystronghold.com/products/ironclad-captcha/
Security Stronghold web site: http://www.securitystronghold.com/
-------------------------------------------------------------------------------
Description

Ironclad CAPTCHA is an unpenetrable CAPTCHA (Completely Automated Public Turing Test to make Computer and Human Apart) for your site. It is absolutely free. You can easy embed it into your site, forum, blog etc.
-------------------------------------------------------------------------------
Ironclad CAPTCHA's advantages:

- It is free
- It can be installed on any site in 10 minutes or less
- You can tune up its look and feel to match your site easily
- It is very easy to pass it for human
- It is unpenetrable by all modern web robots
- It consists of 3D objects rendered in real time
- Each object is positioned, scaled, rotated and colored in random way
- There are additional objects that should not be counted, besides three types that should
- Some objects intersect and overlap so computer can't divide them (but human easily can)
- It is reliable and fast
- It can be completed both by mouse and keyboard
- It comes with our free 24/7 support
-------------------------------------------------------------------------------
Installation

You can find some examples of embedding Ironclad CAPTCHA here:

http://captcha.securitystronghold.com/examples/

You can find installation instruction here:
http://www.securitystronghold.com/products/ironclad-captcha/control.php

1. Register your site in our system and get your unique API key.
2. Add the following code to the script where your form is situated

<?php
define('IRONCLAD_CAPTCHA_APIKEY','IRONCLAD-CAPTCHA-ABCDE-1234567890'); /* <- Paste your actual API key here */
require('ironclad_captcha_lib.php'); /* <- Write the right path to ironclad_captcha_lib.php file here */
?>

3. Edit default CSS for Ironclad CAPTCHA in the control panel to make it look seamless with your page. You can preview captcha in real-time here:

http://www.securitystronghold.com/products/ironclad-captcha/control.php

Copy CSS into your page and paste the following PHP code to the place you want to insert Ironclad CAPTCHA into:

<?php print ironclad_captcha_get_form(IRONCLAD_CAPTCHA_APIKEY); ?>

4. Place ironclad_captcha_lib.php file into the one of your site's directories (it's a good idea to place it into the directory where the page where you wish to install it to is situated).

5. To make your form check if the user is human when it is submitted, use the following code. The first part with "define" and "require" should be included only if this script is situated in the file other than the one you inserted captcha into.

<?php
define('IRONCLAD_CAPTCHA_APIKEY','IRONCLAD-CAPTCHA-ABCDE-1234567890'); /* <- Paste your API key here */
require('ironclad_captcha_lib.php'); /* <- Write the right path to ironclad_captcha_lib.php file here */
?>
<?php
$captcha_result = ironclad_captcha_check(
  IRONCLAD_CAPTCHA_APIKEY,
  $_POST['ironclad_captcha_vx'],
  $_POST['ironclad_captcha_input1'],
  $_POST['ironclad_captcha_input2'],
  $_POST['ironclad_captcha_input3']
);
/* Change all occurrences of "POST" to "GET" in this script if your form passes parameters via GET, not via POST method */
?>

The $captcha_result variable will contain true value if the user passed human test succesfully, and false in other case. Use this value as you wish. For example, you can show "You didn't pass human test" warning instead of accepting form if the value is false. Besides you can obtain results of human test in the following way:

<?php
$ironclad_captcha_response->result /* <- Result of human test (true / false) */
$ironclad_captcha_response->code /* <- Error code */
$ironclad_captcha_response->text /* <- Default error text corresponding to error code */
?>

Here are the message codes and their descriptions:

100 (Test successfully passed) - user entered right verification code.

Error codes and their descriptions:

101 (VX is not specified) - VX parameter (ironclad_captcha_vx field of CAPTCHA form) was not passed to server for verification, so verification is impossible.

102 (API key is not specified) - API key was not passed to server for verification, so verification is impossible.

103 (Incorrect API key) - API key passed to server is incorrect or doesn't correspond to any site.

104 (API key for this host is not valid) - This API can't be used on the host given (you need to register your site first).

105 (Session error) - An information about this verification picture variant is not found (possibly VX parameter is incorrect).

106 (Incorrect answers) - User didn't pass human test - answers are incorrect.

107 (Too many attempts for test) - Too many attempts from user to recognize one picture (reload page to make scipt generate new captcha)

108 (Test wasn't passed) - Test is not passed due to some other (unknown) reason

You can use this codes to debug your scripts working with Ironclad CAPTCHA.

6. Upload all new and modified files to your site and heck if everything works fine.

-------------------------------------------------------------------------------
Support

If you have any questions, difficulties with script installation or you want to propose something - feel free to contact us via Help Desk:

http://www.securitystronghold.com/helpdesk/

Copyright  2003-2008 Security Stronghold.