- Resource: Assessment
- Event
- TransactionData
- Address
- User
- Item
- GatewayInfo
- UserInfo
- UserId
- FraudPrevention
- RiskAnalysis
- ClassificationReason
- Challenge
- TokenProperties
- InvalidReason
- AccountVerificationInfo
- EndpointVerificationInfo
- Result
- AccountDefenderAssessment
- AccountDefenderLabel
- PrivatePasswordLeakVerification
- FirewallPolicyAssessment
- Status
- FraudPreventionAssessment
- StolenInstrumentVerdict
- CardTestingVerdict
- BehavioralTrustVerdict
- FraudSignals
- UserSignals
- CardSignals
- CardLabel
- PhoneFraudAssessment
- SmsTollFraudVerdict
- SmsTollFraudReason
- AssessmentEnvironment
- Methods
Resource: Assessment
A reCAPTCHA Enterprise assessment resource.
JSON representation |
---|
{ "name": string, "event": { object ( |
Fields | |
---|---|
name |
Output only. Identifier. The resource name for the Assessment in the format |
event |
Optional. The event being assessed. |
risk |
Output only. The risk analysis result for the event being assessed. |
token |
Output only. Properties of the provided event token. |
account |
Optional. Account verification information for identity verification. The assessment event must include a token and site key to use this feature. |
account |
Output only. Assessment returned by account defender when an account identifier is provided. |
private |
Optional. The private password leak verification field contains the parameters that are used to to check for leaks privately without sharing user credentials. |
firewall |
Output only. Assessment returned when firewall policies belonging to the project are evaluated using the field firewallPolicyEvaluation. |
fraud |
Output only. Assessment returned by Fraud Prevention when TransactionData is provided. |
fraud |
Output only. Fraud Signals specific to the users involved in a payment transaction. |
phone |
Output only. Assessment returned when a site key, a token, and a phone number as |
assessment |
Optional. The environment creating the assessment. This describes your environment (the system invoking assessments.create), NOT the environment of your user. |
Event
The event being assessed.
JSON representation |
---|
{ "token": string, "siteKey": string, "userAgent": string, "userIpAddress": string, "expectedAction": string, "hashedAccountId": string, "express": boolean, "requestedUri": string, "wafTokenAssessment": boolean, "ja3": string, "headers": [ string ], "firewallPolicyEvaluation": boolean, "transactionData": { object ( |
Fields | |
---|---|
token |
Optional. The user response token provided by the reCAPTCHA Enterprise client-side integration on your site. |
site |
Optional. The site key that was used to invoke reCAPTCHA Enterprise on your site and generate the token. |
user |
Optional. The user agent present in the request from the user's device related to this event. |
user |
Optional. The IP address in the request from the user's device related to this event. |
expected |
Optional. The expected action for this type of event. This should be the same action provided at token generation time on client-side platforms already integrated with recaptcha enterprise. |
hashedAccountId |
Optional. Deprecated: use A base64-encoded string. |
express |
Optional. Flag for a reCAPTCHA express request for an assessment without a token. If enabled, |
requested |
Optional. The URI resource the user requested that triggered an assessment. |
waf |
Optional. Flag for running WAF token assessment. If enabled, the token must be specified, and have been created by a WAF-enabled key. |
ja3 |
Optional. JA3 fingerprint for SSL clients. |
headers[] |
Optional. HTTP header information about the request. |
firewall |
Optional. Flag for enabling firewall policy config assessment. If this flag is enabled, the firewall policy is evaluated and a suggested firewall action is returned in the response. |
transaction |
Optional. Data describing a payment transaction to be assessed. Sending this data enables reCAPTCHA Enterprise Fraud Prevention and the FraudPreventionAssessment component in the response. |
user |
Optional. Information about the user that generates this event, when they can be identified. They are often identified through the use of an account for logged-in requests or login/registration requests, or by providing user identifiers for guest actions like checkout. |
fraud |
Optional. The Fraud Prevention setting for this assessment. |
TransactionData
Transaction data associated with a payment protected by reCAPTCHA Enterprise.
JSON representation |
---|
{ "paymentMethod": string, "cardBin": string, "cardLastFour": string, "currencyCode": string, "value": number, "shippingValue": number, "shippingAddress": { object ( |
Fields | |
---|---|
payment |
Optional. The payment method for the transaction. The allowed values are:
|
card |
Optional. The Bank Identification Number - generally the first 6 or 8 digits of the card. |
card |
Optional. The last four digits of the card. |
currency |
Optional. The currency code in ISO-4217 format. |
value |
Optional. The decimal value of the transaction in the specified currency. |
shipping |
Optional. The value of shipping in the specified currency. 0 for free or no shipping. |
shipping |
Optional. Destination address if this transaction involves shipping a physical item. |
billing |
Optional. Address associated with the payment method when applicable. |
user |
Optional. Information about the user paying/initiating the transaction. |
merchants[] |
Optional. Information about the user or users fulfilling the transaction. |
items[] |
Optional. Items purchased in this transaction. |
gateway |
Optional. Information about the payment gateway's response to the transaction. |
transaction |
Unique identifier for the transaction. This custom identifier can be used to reference this transaction in the future, for example, labeling a refund or chargeback event. Two attempts at the same transaction should use the same transaction id. |
Address
Structured address format for billing and shipping addresses.
JSON representation |
---|
{ "recipient": string, "address": [ string ], "locality": string, "administrativeArea": string, "regionCode": string, "postalCode": string } |
Fields | |
---|---|
recipient |
Optional. The recipient name, potentially including information such as "care of". |
address[] |
Optional. The first lines of the address. The first line generally contains the street name and number, and further lines may include information such as an apartment number. |
locality |
Optional. The town/city of the address. |
administrative |
Optional. The state, province, or otherwise administrative area of the address. |
region |
Optional. The CLDR country/region of the address. |
postal |
Optional. The postal or ZIP code of the address. |
User
Details about a user's account involved in the transaction.
JSON representation |
---|
{ "accountId": string, "creationMs": string, "email": string, "emailVerified": boolean, "phoneNumber": string, "phoneVerified": boolean } |
Fields | |
---|---|
account |
Optional. Unique account identifier for this user. If using account defender, this should match the hashedAccountId field. Otherwise, a unique and persistent identifier for this account. |
creation |
Optional. The epoch milliseconds of the user's account creation. |
email |
Optional. The email address of the user. |
email |
Optional. Whether the email has been verified to be accessible by the user (OTP or similar). |
phone |
Optional. The phone number of the user, with country code. |
phone |
Optional. Whether the phone number has been verified to be accessible by the user (OTP or similar). |
Item
Line items being purchased in this transaction.
JSON representation |
---|
{ "name": string, "value": number, "quantity": string, "merchantAccountId": string } |
Fields | |
---|---|
name |
Optional. The full name of the item. |
value |
Optional. The value per item that the user is paying, in the transaction currency, after discounts. |
quantity |
Optional. The quantity of this item that is being purchased. |
merchant |
Optional. When a merchant is specified, its corresponding accountId. Necessary to populate marketplace-style transactions. |
GatewayInfo
Details about the transaction from the gateway.
JSON representation |
---|
{ "name": string, "gatewayResponseCode": string, "avsResponseCode": string, "cvvResponseCode": string } |
Fields | |
---|---|
name |
Optional. Name of the gateway service (for example, stripe, square, paypal). |
gateway |
Optional. Gateway response code describing the state of the transaction. |
avs |
Optional. AVS response code from the gateway (available only when reCAPTCHA Enterprise is called after authorization). |
cvv |
Optional. CVV response code from the gateway (available only when reCAPTCHA Enterprise is called after authorization). |
UserInfo
User information associated with a request protected by reCAPTCHA Enterprise.
JSON representation |
---|
{
"createAccountTime": string,
"accountId": string,
"userIds": [
{
object ( |
Fields | |
---|---|
create |
Optional. Creation time for this account associated with this user. Leave blank for non logged-in actions, guest checkout, or when there is no account associated with the current user. A timestamp in RFC3339 UTC "Zulu" format, with nanosecond resolution and up to nine fractional digits. Examples: |
account |
Optional. For logged-in requests or login/registration requests, the unique account identifier associated with this user. You can use the username if it is stable (meaning it is the same for every request associated with the same user), or any stable user ID of your choice. Leave blank for non logged-in actions or guest checkout. |
user |
Optional. Identifiers associated with this user or request. |
UserId
An identifier associated with a user.
JSON representation |
---|
{ // Union field |
Fields | |
---|---|
Union field
|
|
email |
Optional. An email address. |
phone |
Optional. A phone number. Should use the E.164 format. |
username |
Optional. A unique username, if different from all the other identifiers and |
FraudPrevention
Setting that controls Fraud Prevention assessments.
Enums | |
---|---|
FRAUD_PREVENTION_UNSPECIFIED |
Default, unspecified setting. fraudPreventionAssessment is returned if transactionData is present in Event and Fraud Prevention is enabled in the Google Cloud console. |
ENABLED |
Enable Fraud Prevention for this assessment, if Fraud Prevention is enabled in the Google Cloud console. |
DISABLED |
Disable Fraud Prevention for this assessment, regardless of Google Cloud console settings. |
RiskAnalysis
Risk analysis result for an event.
JSON representation |
---|
{ "score": number, "reasons": [ enum ( |
Fields | |
---|---|
score |
Output only. Legitimate event score from 0.0 to 1.0. (1.0 means very likely legitimate traffic while 0.0 means very likely non-legitimate traffic). |
reasons[] |
Output only. Reasons contributing to the risk analysis verdict. |
extended |
Output only. Extended verdict reasons to be used for experimentation only. The set of possible reasons is subject to change. |
challenge |
Output only. Challenge information for SCORE_AND_CHALLENGE and INVISIBLE keys |
ClassificationReason
Reasons contributing to the risk analysis verdict.
Enums | |
---|---|
CLASSIFICATION_REASON_UNSPECIFIED |
Default unspecified type. |
AUTOMATION |
Interactions matched the behavior of an automated agent. |
UNEXPECTED_ENVIRONMENT |
The event originated from an illegitimate environment. |
TOO_MUCH_TRAFFIC |
Traffic volume from the event source is higher than normal. |
UNEXPECTED_USAGE_PATTERNS |
Interactions with the site were significantly different than expected patterns. |
LOW_CONFIDENCE_SCORE |
Too little traffic has been received from this site thus far to generate quality risk analysis. |
SUSPECTED_CARDING |
The request matches behavioral characteristics of a carding attack. |
SUSPECTED_CHARGEBACK |
The request matches behavioral characteristics of chargebacks for fraud. |
Challenge
Challenge information for SCORE_AND_CHALLENGE and INVISIBLE keys
Enums | |
---|---|
CHALLENGE_UNSPECIFIED |
Default unspecified type. |
NOCAPTCHA |
No challenge was presented for solving. |
PASSED |
A solution was submitted that was correct. |
FAILED |
A solution was submitted that was incorrect or otherwise deemed suspicious. |
TokenProperties
Properties of the provided event token.
JSON representation |
---|
{
"valid": boolean,
"invalidReason": enum ( |
Fields | |
---|---|
valid |
Output only. Whether the provided user response token is valid. When valid = false, the reason could be specified in invalidReason or it could also be due to a user failing to solve a challenge or a sitekey mismatch (i.e the sitekey used to generate the token was different than the one specified in the assessment). |
invalid |
Output only. Reason associated with the response when valid = false. |
create |
Output only. The timestamp corresponding to the generation of the token. A timestamp in RFC3339 UTC "Zulu" format, with nanosecond resolution and up to nine fractional digits. Examples: |
hostname |
Output only. The hostname of the page on which the token was generated (Web keys only). |
android |
Output only. The name of the Android package with which the token was generated (Android keys only). |
ios |
Output only. The ID of the iOS bundle with which the token was generated (iOS keys only). |
action |
Output only. Action name provided at token generation. |
InvalidReason
Enum that represents the types of invalid token reasons.
Enums | |
---|---|
INVALID_REASON_UNSPECIFIED |
Default unspecified type. |
UNKNOWN_INVALID_REASON |
If the failure reason was not accounted for. |
MALFORMED |
The provided user verification token was malformed. |
EXPIRED |
The user verification token had expired. |
DUPE |
The user verification had already been seen. |
MISSING |
The user verification token was not present. |
BROWSER_ERROR |
A retriable error (such as network failure) occurred on the browser. Could easily be simulated by an attacker. |
AccountVerificationInfo
Information about account verification, used for identity verification.
JSON representation |
---|
{ "endpoints": [ { object ( |
Fields | |
---|---|
endpoints[] |
Optional. Endpoints that can be used for identity verification. |
language |
Optional. Language code preference for the verification message, set as a IETF BCP 47 language code. |
latest |
Output only. Result of the latest account verification challenge. |
username |
Username of the account that is being verified. Deprecated. Customers should now provide the |
EndpointVerificationInfo
Information about a verification endpoint that can be used for 2FA.
JSON representation |
---|
{ "requestToken": string, "lastVerificationTime": string, // Union field |
Fields | |
---|---|
request |
Output only. Token to provide to the client to trigger endpoint verification. It must be used within 15 minutes. |
last |
Output only. Timestamp of the last successful verification for the endpoint, if any. A timestamp in RFC3339 UTC "Zulu" format, with nanosecond resolution and up to nine fractional digits. Examples: |
Union field
|
|
email |
Email address for which to trigger a verification request. |
phone |
Phone number for which to trigger a verification request. Should be given in E.164 format. |
Result
Result of the account verification as contained in the verdict token issued at the end of the verification flow.
Enums | |
---|---|
RESULT_UNSPECIFIED |
No information about the latest account verification. |
SUCCESS_USER_VERIFIED |
The user was successfully verified. This means the account verification challenge was successfully completed. |
ERROR_USER_NOT_VERIFIED |
The user failed the verification challenge. |
ERROR_SITE_ONBOARDING_INCOMPLETE |
The site is not properly onboarded to use the account verification feature. |
ERROR_RECIPIENT_NOT_ALLOWED |
The recipient is not allowed for account verification. This can occur during integration but should not occur in production. |
ERROR_RECIPIENT_ABUSE_LIMIT_EXHAUSTED |
The recipient has already been sent too many verification codes in a short amount of time. |
ERROR_CRITICAL_INTERNAL |
The verification flow could not be completed due to a critical internal error. |
ERROR_CUSTOMER_QUOTA_EXHAUSTED |
The client has exceeded their two factor request quota for this period of time. |
ERROR_VERIFICATION_BYPASSED |
The request cannot be processed at the time because of an incident. This bypass can be restricted to a problematic destination email domain, a customer, or could affect the entire service. |
ERROR_VERDICT_MISMATCH |
The request parameters do not match with the token provided and cannot be processed. |
AccountDefenderAssessment
Account defender risk assessment.
JSON representation |
---|
{
"labels": [
enum ( |
Fields | |
---|---|
labels[] |
Output only. Labels for this request. |
AccountDefenderLabel
Labels returned by account defender for this request.
Enums | |
---|---|
ACCOUNT_DEFENDER_LABEL_UNSPECIFIED |
Default unspecified type. |
PROFILE_MATCH |
The request matches a known good profile for the user. |
SUSPICIOUS_LOGIN_ACTIVITY |
The request is potentially a suspicious login event and must be further verified either through multi-factor authentication or another system. |
SUSPICIOUS_ACCOUNT_CREATION |
The request matched a profile that previously had suspicious account creation behavior. This can mean that this is a fake account. |
RELATED_ACCOUNTS_NUMBER_HIGH |
The account in the request has a high number of related accounts. It does not necessarily imply that the account is bad but can require further investigation. |
PrivatePasswordLeakVerification
Private password leak verification info.
JSON representation |
---|
{ "lookupHashPrefix": string, "encryptedUserCredentialsHash": string, "encryptedLeakMatchPrefixes": [ string ], "reencryptedUserCredentialsHash": string } |
Fields | |
---|---|
lookup |
Required. Exactly 26-bit prefix of the SHA-256 hash of the canonicalized username. It is used to look up password leaks associated with that hash prefix. A base64-encoded string. |
encrypted |
Optional. Encrypted Scrypt hash of the canonicalized username+password. It is re-encrypted by the server and returned through A base64-encoded string. |
encrypted |
Output only. List of prefixes of the encrypted potential password leaks that matched the given parameters. They must be compared with the client-side decryption prefix of A base64-encoded string. |
reencrypted |
Output only. Corresponds to the re-encryption of the A base64-encoded string. |
FirewallPolicyAssessment
Policy config assessment.
JSON representation |
---|
{ "error": { object ( |
Fields | |
---|---|
error |
Output only. If the processing of a policy config fails, an error is populated and the firewallPolicy is left empty. |
firewall |
Output only. The policy that matched the request. If more than one policy may match, this is the first match. If no policy matches the incoming request, the policy field is left empty. |
Status
The Status
type defines a logical error model that is suitable for different programming environments, including REST APIs and RPC APIs. It is used by gRPC. Each Status
message contains three pieces of data: error code, error message, and error details.
You can find out more about this error model and how to work with it in the API Design Guide.
JSON representation |
---|
{ "code": integer, "message": string, "details": [ { "@type": string, field1: ..., ... } ] } |
Fields | |
---|---|
code |
The status code, which should be an enum value of |
message |
A developer-facing error message, which should be in English. Any user-facing error message should be localized and sent in the |
details[] |
A list of messages that carry the error details. There is a common set of message types for APIs to use. An object containing fields of an arbitrary type. An additional field |
FraudPreventionAssessment
Assessment for Fraud Prevention.
JSON representation |
---|
{ "transactionRisk": number, "stolenInstrumentVerdict": { object ( |
Fields | |
---|---|
transaction |
Output only. Probability of this transaction being fraudulent. Summarizes the combined risk of attack vectors below. Values are from 0.0 (lowest) to 1.0 (highest). |
stolen |
Output only. Assessment of this transaction for risk of a stolen instrument. |
card |
Output only. Assessment of this transaction for risk of being part of a card testing attack. |
behavioral |
Output only. Assessment of this transaction for behavioral trust. |
StolenInstrumentVerdict
Information about stolen instrument fraud, where the user is not the legitimate owner of the instrument being used for the purchase.
JSON representation |
---|
{ "risk": number } |
Fields | |
---|---|
risk |
Output only. Probability of this transaction being executed with a stolen instrument. Values are from 0.0 (lowest) to 1.0 (highest). |
CardTestingVerdict
Information about card testing fraud, where an adversary is testing fraudulently obtained cards or brute forcing their details.
JSON representation |
---|
{ "risk": number } |
Fields | |
---|---|
risk |
Output only. Probability of this transaction attempt being part of a card testing attack. Values are from 0.0 (lowest) to 1.0 (highest). |
BehavioralTrustVerdict
Information about behavioral trust of the transaction.
JSON representation |
---|
{ "trust": number } |
Fields | |
---|---|
trust |
Output only. Probability of this transaction attempt being executed in a behaviorally trustworthy way. Values are from 0.0 (lowest) to 1.0 (highest). |
FraudSignals
Fraud signals describing users and cards involved in the transaction.
JSON representation |
---|
{ "userSignals": { object ( |
Fields | |
---|---|
user |
Output only. Signals describing the end user in this transaction. |
card |
Output only. Signals describing the payment card or cards used in this transaction. |
UserSignals
Signals describing the user involved in this transaction.
JSON representation |
---|
{ "activeDaysLowerBound": integer, "syntheticRisk": number } |
Fields | |
---|---|
active |
Output only. This user (based on email, phone, and other identifiers) has been seen on the internet for at least this number of days. |
synthetic |
Output only. Likelihood (from 0.0 to 1.0) this user includes synthetic components in their identity, such as a randomly generated email address, temporary phone number, or fake shipping address. |
CardSignals
Signals describing the payment card used in this transaction.
JSON representation |
---|
{
"cardLabels": [
enum ( |
Fields | |
---|---|
card |
Output only. The labels for the payment card in this transaction. |
CardLabel
Risk labels describing the card being assessed, such as its funding mechanism.
Enums | |
---|---|
CARD_LABEL_UNSPECIFIED |
No label specified. |
PREPAID |
This card has been detected as prepaid. |
VIRTUAL |
This card has been detected as virtual, such as a card number generated for a single transaction or merchant. |
UNEXPECTED_LOCATION |
This card has been detected as being used in an unexpected geographic location. |
PhoneFraudAssessment
Assessment for Phone Fraud
JSON representation |
---|
{
"smsTollFraudVerdict": {
object ( |
Fields | |
---|---|
sms |
Output only. Assessment of this phone event for risk of SMS toll fraud. |
SmsTollFraudVerdict
Information about SMS toll fraud.
JSON representation |
---|
{
"risk": number,
"reasons": [
enum ( |
Fields | |
---|---|
risk |
Output only. Probability of an SMS event being fraudulent. Values are from 0.0 (lowest) to 1.0 (highest). |
reasons[] |
Output only. Reasons contributing to the SMS toll fraud verdict. |
SmsTollFraudReason
Reasons contributing to the SMS toll fraud verdict.
Enums | |
---|---|
SMS_TOLL_FRAUD_REASON_UNSPECIFIED |
Default unspecified reason |
INVALID_PHONE_NUMBER |
The provided phone number was invalid |
AssessmentEnvironment
The environment creating the assessment. This describes your environment (the system invoking assessments.create), NOT the environment of your user.
JSON representation |
---|
{ "client": string, "version": string } |
Fields | |
---|---|
client |
Optional. Identifies the client module initiating the assessments.create request. This can be the link to the client module's project. Examples include: - "github.com/GoogleCloudPlatform/recaptcha-enterprise-google-tag-manager" - "cloud.google.com/recaptcha/docs/implement-waf-akamai" - "cloud.google.com/recaptcha/docs/implement-waf-cloudflare" - "wordpress.org/plugins/recaptcha-something" |
version |
Optional. The version of the client module. For example, "1.0.0". |
Methods |
|
---|---|
|
Annotates a previously created Assessment to provide additional information on whether the event turned out to be authentic or fraudulent. |
|
Creates an Assessment of the likelihood an event is legitimate. |