mCaptcha/README.md

<div align="center">
<img width="100px" alt="mcaptcha logo" src="./docs/res/icon-trans.png" />
  <h1>mCaptcha</h1>
  <p>
    <strong>
Proof of work based, privacy respecting CAPTCHA system with a kickass UX. 
</strong>
  </p>

[![Documentation](https://img.shields.io/badge/docs-master-blue?style=flat-square)](https://mcaptcha.github.io/mCaptcha/mCaptcha/)
[![Build](https://github.com/mCaptcha/mCaptcha/actions/workflows/linux.yml/badge.svg)](https://github.com/mCaptcha/mCaptcha/actions/workflows/linux.yml)
[![Docker](https://img.shields.io/docker/pulls/mcaptcha/mcaptcha)](https://hub.docker.com/r/mcaptcha/mcaptcha)
[![dependency status](https://deps.rs/repo/github/mCaptcha/mCaptcha/status.svg?style=flat-square)](https://deps.rs/repo/github/mCaptcha/mCaptcha)
[![codecov](https://codecov.io/gh/mCaptcha/mCaptcha/branch/master/graph/badge.svg?style=flat-square)](https://codecov.io/gh/mCaptcha/mCaptcha)
<br />
[![AGPL License](https://img.shields.io/badge/license-AGPL-blue.svg?style=flat-square)](http://www.gnu.org/licenses/agpl-3.0)
[![Chat](https://img.shields.io/badge/matrix-+mcaptcha:matrix.batsense.net-purple?style=flat-square)](https://matrix.to/#/+mcaptcha:matrix.batsense.net)

**STATUS: ACTIVE DEVELOPMENT**

</div>

</div>

**Skip to [demo](#demo)**

[mCaptcha](https://mcaptcha.org) is a privacy respecting, _free_ CAPTCHA
system with a kickass UX. Your users no longer have to interact with
ridiculous image-based CAPTCHA system, wasting precious mental
bandwidth. Instead, your computer will do the work for you, [see for
yourself!](https://demo.mcaptcha.org/widget/?sitekey=pHy0AktWyOKuxZDzFfoaewncWecCHo23)

## How does it work?

mCaptcha uses SHA256 based proof-of-work(PoW) to rate limit users.

When a user wants to do something on an mCaptcha-protected website,

1. they will have to generate proof-of-work(a bunch of math that will takes
   time to compute) and submit it to mCaptcha.

2. We'll validate the proof:

   - **if validation is unsuccessful**, they will be prevented from
     accessing their target website
   - **if validation is successful**, read on,

3. They will be issued a token that they should submit along
   with their request/form submission to the target website.

4. The target website should validate the user-submitted token with mCaptcha
   before processing the user's request.

The whole process is automated from the user's POV. All they have to do
is click on a button to initiate the process.

mCaptcha makes interacting with websites (computationally)expensive for
the user. A well-behaving user will experience a slight delay(no delay
when under moderate load to 2s when under attack; PoW difficulty is
variable) but if someone wants to hammer your site, they will have to do
more work to send requests than your server will have to do to respond
to their request.

## Why use mCaptcha?

- [x] **Free software, privacy focused**
- [x] **Seamless UX** - No more annoying CAPTCHAs!
- [x] **No tracking:** Our CAPTCHA routes are cookie free!
- [x] **IP address independent:** your users are behind a NAT? We got you covered!
- [x] **Resistant to replay attacks:** proof-of-work configurations have
      short lifetimes(30s) and can be used only once. If a user submits a
      PoW to an already used configuration or an expired one, their proof
      will be rejected.

## Demo

## Client-side widget:

mCaptcha's UX is super silent, solving CAPTCHAs have never been more
easier. One click and you are on your way.
To observe mCaptcha in action, open dev tools and
monitor console and network activity.

1. [Link to widget](https://demo.mcaptcha.org/widget/?sitekey=pHy0AktWyOKuxZDzFfoaewncWecCHo23)

2. [Video](https://github.com/mCaptcha/mCaptcha/blob/master/docs/res/widget-in-action.mp4?raw=true):

### Demo servers are available at:

- https://demo.mcaptcha.org/
- https://demo2.mcaptcha.org/ (runs on a Raspberry Pi!)

> Core functionality is working but it's still very much
> work-in-progress. Since we don't have a stable release yet, hosted
> demo servers might be a few versions behind `master`. Please check footer for
> build commit.

Feel free to provide bogus information while signing up(project under
development, database frequently wiped).

### Self-hosted:

Clone the repo and run the following from the root of the repo:

```bash
git clone https://github.com/mCaptcha/mCaptcha.git
docker-compose -d up
```

After the containers are up, visit [http://localhost:7000](http://localhost:7000) and login with the default credentials:

- username: aaronsw 
- password: password


It takes a while to build the image so please be patient :)

See [DEPLOYMENT.md](./docs/DEPLOYMET.md) detailed alternate deployment
methods.

## Development:

See [HACKING.md](./docs/HACKING.md)

## Deployment:

See [DEPLOYMENT.md](./docs/DEPLOYMET.md)

## Configuration:

See [CONFIGURATION.md](./docs/CONFIGURATION.md)
moved from mono repo 2021-03-09 10:28:54 +00:00			`<div align="center">`
rename guard -> mcaptcha 2021-06-01 12:03:47 +00:00			`<img width="100px" alt="mcaptcha logo" src="./docs/res/icon-trans.png" />`
			`<h1>mCaptcha</h1>`
moved from mono repo 2021-03-09 10:28:54 +00:00			`<p>`
rename guard -> mcaptcha 2021-06-01 12:03:47 +00:00			`<strong>`
			`Proof of work based, privacy respecting CAPTCHA system with a kickass UX.`
			`</strong>`
moved from mono repo 2021-03-09 10:28:54 +00:00			`</p>`

rename guard -> mcaptcha 2021-06-01 12:03:47 +00:00			`[![Documentation](https://img.shields.io/badge/docs-master-blue?style=flat-square)](https://mcaptcha.github.io/mCaptcha/mCaptcha/)`
			`[![Build](https://github.com/mCaptcha/mCaptcha/actions/workflows/linux.yml/badge.svg)](https://github.com/mCaptcha/mCaptcha/actions/workflows/linux.yml)`
Docker: update image and optimize for layer caching 2021-11-30 15:27:32 +00:00			`[![Docker](https://img.shields.io/docker/pulls/mcaptcha/mcaptcha)](https://hub.docker.com/r/mcaptcha/mcaptcha)`
rename guard -> mcaptcha 2021-06-01 12:03:47 +00:00			`[![dependency status](https://deps.rs/repo/github/mCaptcha/mCaptcha/status.svg?style=flat-square)](https://deps.rs/repo/github/mCaptcha/mCaptcha)`
			`[![codecov](https://codecov.io/gh/mCaptcha/mCaptcha/branch/master/graph/badge.svg?style=flat-square)](https://codecov.io/gh/mCaptcha/mCaptcha)`
moved from mono repo 2021-03-09 10:28:54 +00:00			`<br />`
readme: added basic info on the project 2021-05-10 11:09:48 +00:00			`[![AGPL License](https://img.shields.io/badge/license-AGPL-blue.svg?style=flat-square)](http://www.gnu.org/licenses/agpl-3.0)`
			`[![Chat](https://img.shields.io/badge/matrix-+mcaptcha:matrix.batsense.net-purple?style=flat-square)](https://matrix.to/#/+mcaptcha:matrix.batsense.net)`

			`STATUS: ACTIVE DEVELOPMENT`
readme and env var prefix 2021-03-10 16:25:39 +00:00
moved from mono repo 2021-03-09 10:28:54 +00:00			`</div>`

			`</div>`

link to demo vid and widget 2021-05-30 15:13:23 +00:00			`Skip to [demo](#demo)`

correct errors in readme 2021-07-07 16:02:20 +00:00			`[mCaptcha](https://mcaptcha.org) is a privacy respecting, _free_ CAPTCHA`
			`system with a kickass UX. Your users no longer have to interact with`
			`ridiculous image-based CAPTCHA system, wasting precious mental`
			`bandwidth. Instead, your computer will do the work for you, [see for`
update demo widget link in readme 2021-11-30 15:59:59 +00:00			`yourself!](https://demo.mcaptcha.org/widget/?sitekey=pHy0AktWyOKuxZDzFfoaewncWecCHo23)`
readme and env var prefix 2021-03-10 16:25:39 +00:00
rename guard -> mcaptcha 2021-06-01 12:03:47 +00:00			`## How does it work?`
readme: added basic info on the project 2021-05-10 11:09:48 +00:00
			`mCaptcha uses SHA256 based proof-of-work(PoW) to rate limit users.`

			`When a user wants to do something on an mCaptcha-protected website,`

			`1. they will have to generate proof-of-work(a bunch of math that will takes`
			`time to compute) and submit it to mCaptcha.`

			`2. We'll validate the proof:`

			`- if validation is unsuccessful, they will be prevented from`
			`accessing their target website`
			`- if validation is successful, read on,`

			`3. They will be issued a token that they should submit along`
			`with their request/form submission to the target website.`

			`4. The target website should validate the user-submitted token with mCaptcha`
			`before processing the user's request.`

			`The whole process is automated from the user's POV. All they have to do`
			`is click on a button to initiate the process.`

			`mCaptcha makes interacting with websites (computationally)expensive for`
			`the user. A well-behaving user will experience a slight delay(no delay`
			`when under moderate load to 2s when under attack; PoW difficulty is`
			`variable) but if someone wants to hammer your site, they will have to do`
			`more work to send requests than your server will have to do to respond`
			`to their request.`

			`## Why use mCaptcha?`

readme 2021-05-30 15:22:54 +00:00			`- [x] Free software, privacy focused`
			`- [x] Seamless UX - No more annoying CAPTCHAs!`
			`- [x] No tracking: Our CAPTCHA routes are cookie free!`
			`- [x] IP address independent: your users are behind a NAT? We got you covered!`
			`- [x] Resistant to replay attacks: proof-of-work configurations have`
			`short lifetimes(30s) and can be used only once. If a user submits a`
			`PoW to an already used configuration or an expired one, their proof`
			`will be rejected.`
readme: added basic info on the project 2021-05-10 11:09:48 +00:00
			`## Demo`

link to demo vid and widget 2021-05-30 15:13:23 +00:00			`## Client-side widget:`

readme 2021-05-30 15:22:54 +00:00			`mCaptcha's UX is super silent, solving CAPTCHAs have never been more`
			`easier. One click and you are on your way.`
			`To observe mCaptcha in action, open dev tools and`
			`monitor console and network activity.`
link to demo vid and widget 2021-05-30 15:13:23 +00:00
update demo widget link in readme 2021-11-30 15:59:59 +00:00			`1. [Link to widget](https://demo.mcaptcha.org/widget/?sitekey=pHy0AktWyOKuxZDzFfoaewncWecCHo23)`
readme 2021-05-30 15:22:54 +00:00
rename guard -> mcaptcha 2021-06-01 12:03:47 +00:00			`2. [Video](https://github.com/mCaptcha/mCaptcha/blob/master/docs/res/widget-in-action.mp4?raw=true):`
link to demo vid and widget 2021-05-30 15:13:23 +00:00
added demo servers 2021-05-26 09:17:56 +00:00			`### Demo servers are available at:`

			`- https://demo.mcaptcha.org/`
			`- https://demo2.mcaptcha.org/ (runs on a Raspberry Pi!)`

			`> Core functionality is working but it's still very much`
			`> work-in-progress. Since we don't have a stable release yet, hosted`
			> demo servers might be a few versions behind `master`. Please check footer for
			`> build commit.`

			`Feel free to provide bogus information while signing up(project under`
			`development, database frequently wiped).`

			`### Self-hosted:`

docker compose 2021-05-12 13:43:09 +00:00			`Clone the repo and run the following from the root of the repo:`

			```bash
Update README.md add default credentials 2022-05-10 23:35:09 +00:00			`git clone https://github.com/mCaptcha/mCaptcha.git`
			`docker-compose -d up`
docker compose 2021-05-12 13:43:09 +00:00			```

Update README.md Formatting default credentials 2022-05-11 06:28:06 +00:00			`After the containers are up, visit [http://localhost:7000](http://localhost:7000) and login with the default credentials:`

			`- username: aaronsw`
			`- password: password`
Update README.md add default credentials 2022-05-10 23:35:09 +00:00

docker compose 2021-05-12 13:43:09 +00:00			`It takes a while to build the image so please be patient :)`

readme 2021-05-30 15:22:54 +00:00			`See [DEPLOYMENT.md](./docs/DEPLOYMET.md) detailed alternate deployment`
			`methods.`

readme: added basic info on the project 2021-05-10 11:09:48 +00:00			`## Development:`
docs: dev environment instructions 2021-04-11 08:38:14 +00:00
configuration instructions 2021-05-30 14:36:13 +00:00			`See [HACKING.md](./docs/HACKING.md)`
moved from mono repo 2021-03-09 10:28:54 +00:00
deployment instructions 2021-05-30 14:23:53 +00:00			`## Deployment:`
moved from mono repo 2021-03-09 10:28:54 +00:00
deployment instructions 2021-05-30 14:23:53 +00:00			`See [DEPLOYMENT.md](./docs/DEPLOYMET.md)`
moved from mono repo 2021-03-09 10:28:54 +00:00
readme: added basic info on the project 2021-05-10 11:09:48 +00:00			`## Configuration:`
moved from mono repo 2021-03-09 10:28:54 +00:00
configuration instructions 2021-05-30 14:36:13 +00:00			`See [CONFIGURATION.md](./docs/CONFIGURATION.md)`