=== reCAPTCHA on Login & Comments ===
Contributors: snehalpancholi
Tags: recaptcha, login security, spam protection, comment spam, bot protection
Requires at least: 6.0
Tested up to: 6.7
Requires PHP: 8.1
Stable tag: 1.0.0
License: GPL-2.0+
License URI: https://www.gnu.org/licenses/gpl-2.0.html

Adds Google reCAPTCHA v2 or v3 to the login, registration, lost password, and comment forms.

== Description ==

Protect your WordPress site from bots and brute-force attacks with Google reCAPTCHA. Supports both v2 (visible checkbox) and v3 (invisible score-based). Apply independently to any combination of: login form, registration form, lost password form, and comment form.

**Features:**

* reCAPTCHA v2 (checkbox widget) or v3 (invisible)
* Configurable v3 minimum score threshold
* Apply to login, registration, lost password, and/or comment forms independently
* Admins and editors bypass comment form verification
* Custom error message
* No jQuery dependency for v3 handling

== Installation ==

1. Upload the `recaptcha-login` folder to `/wp-content/plugins/`.
2. Activate through **Plugins**.
3. Go to **Settings → reCAPTCHA** and enter your Site Key and Secret Key.
4. Get API keys from https://www.google.com/recaptcha/admin/create

== Frequently Asked Questions ==

= Do I need different keys for v2 and v3? =
Yes. Create a separate site key and secret key pair for each version in the Google reCAPTCHA Admin Console.

= What score should I use for v3? =
0.5 is Google's recommended starting point. Increase it (e.g., 0.7) to block more bots at the risk of more false positives.

= Does this work with AJAX login plugins? =
It works with standard WordPress login form submissions. AJAX-based login plugins may need additional integration.

== Changelog ==

= 1.0.0 =
* Initial release.
