"generatedcookie", captchahtml => "captchahtml", expires_in => 120 case "get": if (!isset ($_GET['extra'])) { die(); } $extra = $_GET['extra']; $nojs = isset($_GET['nojs']); $captcha = generate_captcha($extra); $cookie = $captcha['cookie']; $html = $captcha['html']; if ($nojs) { header("Content-type: text/html"); echo "You do not have JavaScript enabled. To fill out the CAPTCHA, please copy the ID to the post form in the ID field, and write the answer in the answer field.

CAPTCHA ID: $cookie
CAPTCHA image: $html"; } else { header("Content-type: application/json"); echo json_encode(["cookie" => $cookie, "captchahtml" => $html, "expires_in" => $expires_in]); } break; // Request: GET entrypoint.php?mode=check&cookie=generatedcookie&extra=1234567890&text=captcha // Response: 0 OR 1 case "check": if (!isset ($_GET['mode']) || !isset ($_GET['cookie']) || !isset ($_GET['extra']) || !isset ($_GET['text'])) { die(); } cleanup($pdo, $expires_in); $query = $pdo->prepare("SELECT * FROM `captchas` WHERE `cookie` = ? AND `extra` = ?"); $query->execute([$_GET['cookie'], $_GET['extra']]); $ary = $query->fetchAll(); if (!$ary) { echo "0"; } else { $query = $pdo->prepare("DELETE FROM `captchas` WHERE `cookie` = ? AND `extra` = ?"); $query->execute([$_GET['cookie'], $_GET['extra']]); if ($ary[0]['text'] !== $_GET['text']) { echo "0"; } else { echo "1"; } } break; }