go top

Captcha image verification

A good way to avoid automatic form submissions when creating a web form is to add some kind of verification. One of the best ways is to use an image verification, called also captcha. What it does is to dynamically create an image with a random string displayed on it. Then visitor is asked to type that string in a text field and once the form is submitted it checks if the string on the image matches the one inputted by the user. Because there is no easy way to read a text from an image (image recognition) this is a good way to protect your web forms from spammers.
For doing this CAPTCHA I would suggest using a session variable where you store the string generated and displayed on that dynamically generated image.

$text = rand(10000,99999);
$_SESSION["vercode"] = $text;
$height = 25;
$width = 65;

$image_p = imagecreate($width, $height);
$black = imagecolorallocate($image_p, 0, 0, 0);
$white = imagecolorallocate($image_p, 255, 255, 255);
$font_size = 14;

imagestring($image_p, $font_size, 5, 5, $text, $white);
imagejpeg($image_p, null, 80);

Save this code in a file called captcha.php. What this script does is to generate a random number from 10000 to 99999 and then assign it to $_SESSION['vercode']. Then it generates a 25x65 pixels image with black background and white text using size 14. So if you upload that captcha.php file on your web site and open http://www.site.com/captcha.php you will see an image displaying random integer. You will receive a new random integer every time you refresh that page.

Next we need to create our web form.

<form action="submit.php" method="post"> 
Comment: <textarea name="coment"></textarea><br>
Enter Code <img src="captcha.php"><input type="text" name="vercode" /><br>
<input type="submit" name="Submit" value="Submit" />

Above code will create a form with a single textarea box, randomly generated image using the captcha.php script and a text field where you will have to enter the verification code.

All we have to do now is to make the submit.php script which will check if the verification code you enter matches the one that has been randomly generated.

if ($_POST["vercode"] != $_SESSION["vercode"] OR $_SESSION["vercode"]=='') {
echo '<strong>Incorrect verification code.</strong><br>';
} else {
// add form data processing code here
echo '<strong>Verification successful.</strong><br>';
  • Free Scripts

    Add great new functionalities to your website with our Free Scripts collection.

    Free scripts
  • PHP Scripts

    Check our extensive collection of top-notch PHP Scripts that will enhance your website!

    Commercial PHP scripts

241 Comments to "Captcha image verification"

  • Landon


    February 27, 2009 at 19:11 pm

    A truly great script. I have used a variety of PhP Captcha scripts and this one works well and is easy to implement.

    Also, the colors are in RGB values and can be modified to match your websites color scheme.

    Thanks again for the great script!

  • deepshikha


    February 27, 2009 at 12:58 pm

    the program works bt the image is not getting displayed.the random image is not getting generated how do we include the randomimage generation code for the script to display the image

  • Marcelo


    February 6, 2009 at 12:05 pm

    I love it. Very simple to use and change. Works great well done.

  • samil


    February 1, 2009 at 13:39 pm

    thk you very much, its so simple

  • haripal singh

    haripal singh

    January 14, 2009 at 08:13 am

    thx it is good code i have applied on my web pages contact pages

  • ganesh


    January 12, 2009 at 08:06 am

    please send me the captcha script code in php

  • dallas de zilva

    dallas de zilva

    January 6, 2009 at 11:45 am

    this really work perfect.

  • Jaggu


    January 4, 2009 at 17:54 pm

    hey.. Just superb script.. Thanks..

  • santhosh


    January 3, 2009 at 15:56 pm

    awesome script! simple and powerful, really wonderful.. thanks

  • Jon


    December 19, 2008 at 11:06 am

    Awesome!! I had to rewrite the verification code to work with my existing submission script, but after that it was smooth sailing. Who would have thunk? Great job. :)

Add your comment