-
Notifications
You must be signed in to change notification settings - Fork 4.4k
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Cloudflare Turnstile fails (true domain leaked?) ("Verifying you are human" page) #121
Comments
known bug, will keep this issue open for discussion and possible fixes |
I think this is an issue if you are deploying via a known big server provider (e.g. if the provider uses Hetzner), Cloudflare probably just blocks the IPs. |
i see this in console when a captcha is attempted: maybe turnstile is getting the actual domain of the proxy, and using that to check Message events follow the corrent origin as part of a check? (or just because it uses postMessage to do the challenge) this might be solvable, if we can find how turnstile is getting the true domain of the proxy |
yeah i just checked this, seems to be reproducible fixing this might also solve #128 |
overriding the origin might need to be changed Ultraviolet/src/client/message.js Line 105 in 1d38959
|
will always get stuck on this page:
the captcha doesnt load, if anyone has any other results, please share.
The text was updated successfully, but these errors were encountered: