Configuration file: self-service-password/conf/


reCAPTCHA is a CAPTCHA service provided by Google.

reCAPTCHA require an internet connection bewteen the server hosting Self Service Password and Google.

Google provide a PHP library and an API that will validate the CAPTCHA, see reCAPTCHA website to know more.

The reCAPTCHA is used on every form in Self Service Password (password change, token, questions, etc.)



Set this to activate reCAPTCHA feature:

$use_recaptcha = true;

API keys

You need to get your own API keys from reCAPTCHA website. Then configure them in SSP:

$recaptcha_publickey = "xxxx";
$recaptcha_privatekey = "xxxx";


You can customize the widget (see

$recaptcha_theme = "light"; # dark / light
$recaptcha_type = "image"; # audio / image
$recaptcha_size = "normal"; # compact / normal

Request method

When allow_url_fopen is disallowed for security reason, you can force the request method:

$recaptcha_request_method = '\ReCaptcha\RequestMethod\CurlPost';