Implementing proposed Psr\Captcha

phpfui · phpfui · commit 0e4bd91c926a · 2025-06-20T11:49:08.000-04:00
diff --git a/composer.json b/composer.json
@@ -19,7 +19,7 @@
         "phpstan/phpstan": "^2.1"
     },
     "autoload": {
-        "psr-4": {"ReCaptcha\\": "src/ReCaptcha"}
+        "psr-4": {"ReCaptcha\\": "src/ReCaptcha", "Psr\\Captcha\\": "src/Captcha"}
     },
     "autoload-dev": {
          "psr-4": {"ReCaptcha\\": "tests/ReCaptcha/"}
diff --git a/src/Captcha/CaptchaException.php b/src/Captcha/CaptchaException.php
@@ -0,0 +1,11 @@
+<?php
+
+namespace Psr\Captcha;
+
+/**
+ * MUST be thrown from CaptchaVerifierInterface methods if Captcha test itself cannot be passed due to any reason that is not user-related - network problems, incorrect secret token, unable to parse request-response, etc.
+ * MUST NOT be thrown if CAPTCHA was actually performed validation - even if it failed - instead CaptchaVerifierInterface MUST return CaptchaResponseInterface which ::isSuccess() method MUST return false
+ */
+class CaptchaException extends \RuntimeException
+{
+}
diff --git a/src/Captcha/CaptchaResponseInterface.php b/src/Captcha/CaptchaResponseInterface.php
@@ -0,0 +1,19 @@
+<?php
+
+namespace Psr\Captcha;
+
+/**
+ * Interface of the object that CaptchaVerifierInterface MUST return on ::verify() method.
+ * MUST contain enough information to consistently say whether user successfully passed Captcha or not.
+ * SHOULD contain actual user's SCORING
+ * MAY contain additional information (e.g., gathered from it's captcha-vendor service's verification endpoint) (i.e. message, errors, etc.)
+ */
+interface CaptchaResponseInterface
+{
+  /**
+   * MUST return true/false depends on whether verification was successful or not (is user a bot or not).
+   *
+   * @return bool
+   */
+  public function isSuccess(): bool;
+}
diff --git a/src/Captcha/CaptchaVerifierInterface.php b/src/Captcha/CaptchaVerifierInterface.php
@@ -0,0 +1,22 @@
+<?php
+
+namespace Psr\Captcha;
+
+/**
+ * Interface of Captcha verification service itself.
+ * MUST decide whether user passed the Captcha or not and return corresponding response.
+ * SHOULD contain method to configure SCORING threshold (if applicable by PROVIDER)
+ * SHOULD throw a CaptchaException as soon as possible if appears any non-user related error that prevents correct Captcha solving (e.g. network problems, incorrect secret token, e.g.)
+ */
+interface CaptchaVerifierInterface
+{
+  /**
+   * Verifies client token and decides whether verification was successful or not (is user a bot or not).
+   *
+   * @param string $token
+   *
+   * @throws CaptchaException if Captcha cannot be validated because of non-user problems (e.g. due to network problems, incorrect secret token, etc.)
+   * @return CaptchaResponseInterface
+   */
+  public function verify(string $token): CaptchaResponseInterface;
+}
diff --git a/src/ReCaptcha/ReCaptcha.php b/src/ReCaptcha/ReCaptcha.php
@@ -38,7 +38,7 @@
 /**
  * reCAPTCHA client.
  */
-class ReCaptcha
+class ReCaptcha implements \Psr\Captcha\CaptchaVerifierInterface
 {
     /**
      * Version of this client library.
@@ -123,12 +123,12 @@ class ReCaptcha
      *
      * @param string $secret The shared key between your site and reCAPTCHA.
      * @param ?RequestMethod $requestMethod method used to send the request. Defaults to POST.
-     * @throws \RuntimeException if $secret is invalid
+     * @throws \Psr\Captcha\CaptchaException if $secret is invalid
      */
     public function __construct(private string $secret, private ?RequestMethod $requestMethod = null)
     {
         if (empty($secret)) {
-            throw new \RuntimeException('No secret provided');
+            throw new \Psr\Captcha\CaptchaException('No secret provided');
         }
 
         if (is_null($requestMethod)) {
@@ -141,7 +141,7 @@ public function __construct(private string $secret, private ?RequestMethod $requ
      * CAPTCHA test and additionally runs any specified additional checks
      *
      * @param string $response The user response token provided by reCAPTCHA, verifying the user on your site.
-     * @param string $remoteIp The end user's IP address.
+     * @param ?string $remoteIp The end user's IP address.
      *
      * @return Response Response from the service.
      */
diff --git a/src/ReCaptcha/Response.php b/src/ReCaptcha/Response.php
@@ -38,7 +38,7 @@
 /**
  * The response returned from the service.
  */
-class Response
+class Response implements \Psr\Captcha\CaptchaResponseInterface
 {
     /**
      * Build the response from the expected JSON returned by the service.
diff --git a/tests/ReCaptcha/ReCaptchaTest.php b/tests/ReCaptcha/ReCaptchaTest.php
@@ -43,7 +43,7 @@ class ReCaptchaTest extends TestCase
     #[DataProvider('invalidSecretProvider')]
     public function testExceptionThrownOnInvalidSecret($invalid)
     {
-        $this->expectException(\RuntimeException::class);
+        $this->expectException(\Psr\Captcha\CaptchaException::class);
         $rc = new ReCaptcha($invalid);
     }
 

Original file line number	Diff line number	Diff line change
`@@ -38,7 +38,7 @@`
`38`	`38`	`/**`
`39`	`39`	`* reCAPTCHA client.`
`40`	`40`	`*/`
`41`		`-class ReCaptcha`
	`41`	`+class ReCaptcha implements \Psr\Captcha\CaptchaVerifierInterface`
`42`	`42`	`{`
`43`	`43`	`/**`
`44`	`44`	`* Version of this client library.`
`@@ -123,12 +123,12 @@ class ReCaptcha`
`123`	`123`	`*`
`124`	`124`	`* @param string $secret The shared key between your site and reCAPTCHA.`
`125`	`125`	`* @param ?RequestMethod $requestMethod method used to send the request. Defaults to POST.`
`126`		`- * @throws \RuntimeException if $secret is invalid`
	`126`	`+ * @throws \Psr\Captcha\CaptchaException if $secret is invalid`
`127`	`127`	`*/`
`128`	`128`	`public function __construct(private string $secret, private ?RequestMethod $requestMethod = null)`
`129`	`129`	`{`
`130`	`130`	`if (empty($secret)) {`
`131`		`- throw new \RuntimeException('No secret provided');`
	`131`	`+ throw new \Psr\Captcha\CaptchaException('No secret provided');`
`132`	`132`	`}`
`133`	`133`
`134`	`134`	`if (is_null($requestMethod)) {`
`@@ -141,7 +141,7 @@ public function __construct(private string $secret, private ?RequestMethod $requ`
`141`	`141`	`* CAPTCHA test and additionally runs any specified additional checks`
`142`	`142`	`*`
`143`	`143`	`* @param string $response The user response token provided by reCAPTCHA, verifying the user on your site.`
`144`		`- * @param string $remoteIp The end user's IP address.`
	`144`	`+ * @param ?string $remoteIp The end user's IP address.`
`145`	`145`	`*`
`146`	`146`	`* @return Response Response from the service.`
`147`	`147`	`*/`
Original file line number	Diff line number	Diff line change
`@@ -43,7 +43,7 @@ class ReCaptchaTest extends TestCase`
`43`	`43`	`#[DataProvider('invalidSecretProvider')]`
`44`	`44`	`public function testExceptionThrownOnInvalidSecret($invalid)`
`45`	`45`	`{`
`46`		`- $this->expectException(\RuntimeException::class);`
	`46`	`+ $this->expectException(\Psr\Captcha\CaptchaException::class);`
`47`	`47`	`$rc = new ReCaptcha($invalid);`
`48`	`48`	`}`
`49`	`49`