Add by-action captcha score config

Enable setting different captcha score thresholds for different captcha actions via configuration
2026-04-21 06:08:05 +01:00 · 2023-02-28 10:21:59 -06:00
parent 437bc1358b
commit 59bc2c5535
4 changed files with 22 additions and 2 deletions
--- a/service/src/main/java/org/whispersystems/textsecuregcm/captcha/HCaptchaClient.java
+++ b/service/src/main/java/org/whispersystems/textsecuregcm/captcha/HCaptchaClient.java
@@ -9,6 +9,7 @@ import static org.whispersystems.textsecuregcm.metrics.MetricsUtil.name;

 import io.micrometer.core.instrument.Metrics;
 import java.io.IOException;
+import java.math.BigDecimal;
 import java.net.URI;
 import java.net.URLEncoder;
 import java.net.http.HttpClient;
@@ -109,6 +110,8 @@ public class HCaptchaClient implements CaptchaClient {
          "reason", reason,
          "score", scoreString).increment();
    }
-    return new AssessmentResult(score >= config.getScoreFloor().floatValue(), scoreString);
+
+    final BigDecimal threshold = config.getScoreFloorByAction().getOrDefault(action, config.getScoreFloor());
+    return new AssessmentResult(score >= threshold.floatValue(), scoreString);
  }
 }
--- a/service/src/main/java/org/whispersystems/textsecuregcm/captcha/RecaptchaClient.java
+++ b/service/src/main/java/org/whispersystems/textsecuregcm/captcha/RecaptchaClient.java
@@ -18,6 +18,7 @@ import com.google.recaptchaenterprise.v1.RiskAnalysis;
 import io.micrometer.core.instrument.Metrics;
 import java.io.ByteArrayInputStream;
 import java.io.IOException;
+import java.math.BigDecimal;
 import java.nio.charset.StandardCharsets;
 import java.util.Objects;
 import javax.annotation.Nonnull;
@@ -99,8 +100,9 @@ public class RecaptchaClient implements CaptchaClient {
                "reason", reason.name())
            .increment();
      }
+      final BigDecimal threshold = config.getScoreFloorByAction().getOrDefault(expectedAction, config.getScoreFloor());
      return new AssessmentResult(
-          score >= config.getScoreFloor().floatValue(),
+          score >= threshold.floatValue(),
          AssessmentResult.scoreString(score));
    } else {
      Metrics.counter(INVALID_REASON_COUNTER_NAME,
--- a/service/src/main/java/org/whispersystems/textsecuregcm/configuration/dynamic/DynamicCaptchaConfiguration.java
+++ b/service/src/main/java/org/whispersystems/textsecuregcm/configuration/dynamic/DynamicCaptchaConfiguration.java
@@ -9,6 +9,7 @@ import com.fasterxml.jackson.annotation.JsonProperty;
 import com.google.common.annotations.VisibleForTesting;
 import java.math.BigDecimal;
 import java.util.Collections;
+import java.util.Map;
 import java.util.Set;
 import javax.validation.constraints.DecimalMax;
 import javax.validation.constraints.DecimalMin;
@@ -28,6 +29,11 @@ public class DynamicCaptchaConfiguration {
  @JsonProperty
  private boolean allowRecaptcha = true;

+
+  @JsonProperty
+  @NotNull
+  private Map<String, BigDecimal> scoreFloorByAction = Collections.emptyMap();
+
  @JsonProperty
  @NotNull
  private Set<String> signupCountryCodes = Collections.emptySet();
@@ -66,6 +72,10 @@ public class DynamicCaptchaConfiguration {
    return allowRecaptcha;
  }

+  public Map<String, BigDecimal> getScoreFloorByAction() {
+    return scoreFloorByAction;
+  }
+
  @VisibleForTesting
  public void setAllowHCaptcha(final boolean allowHCaptcha) {
    this.allowHCaptcha = allowHCaptcha;