All Products
Search

This Product

    Captcha:Scenario management

    Document Center

    Captcha:Scenario management

    Last Updated:Sep 16, 2025

    After you activate Captcha 2.0, you must create a verification scenario to integrate the service. This topic describes how to create a verification scenario.

    Prerequisites

    You have activated the Alibaba Cloud Captcha 2.0 service.

    Create a verification scenario

    After you create a verification scenario, you must obtain the Scenario ID to integrate Captcha 2.0.

    Important

    When you create a verification scenario, you can set the Rule Status to Test Mode. This setting bypasses the Captcha threat policy check and only verifies that the connection is successful. This prevents Captcha from incorrectly identifying your actions as machine behavior during integration tests.

    After you complete the integration and confirm that the connection is successful, change the Rule Status of the scenario to Official Release. This setting allows Captcha to perform threat policy checks and defend against attacks.

    1. In the navigation pane on the left, click Scenarios. On the Scenarios page, click Create Scenario.

    2. In the Create Scenario panel, specify the following parameters and click OK.

      Configuration Item

      Description

      Scenario Name

      Enter a name for the new Captcha scenario.

      The name must be 1 to 32 characters long and can contain Chinese characters, letters, digits, and underscores (_).

      Integration Method

      Select a connection type for Captcha. The following options are available:

      • Web/H5: Select this option to integrate Captcha on the client and server. For more information, see Web and H5 integration.

      • Webview+H5 (for App/miniapp Integration): Select this option to integrate Captcha on the client, server, and app. For more information, see App client integration and Mini Program integration.

      • WeChat Mini Program Native Plugin: Select this option to integrate Captcha on the client. For more information, see WeChat Mini Program V2 architecture integration.

      Note

      • Custom policies are not supported for WeChat Mini Program integration.

      • A Scene ID can be shared by multiple services that use the same connection type. Services with different connection types require separate scenario configurations.

      • The connection type is closely linked to the default security policy. If the configured connection type does not match the actual integration, authentication fails. Carefully confirm your configuration.

      • The connection type cannot be changed after it is selected. If you select the wrong type, delete the scenario and create a new one.

      Verification Type

      Select a Captcha type. The following options are available:

      • Invisible CAPTCHA: Provides imperceptible authentication.

        If you select this option, a secondary challenge is required. The Additional Challenge supports One-click CAPTCHA, Slider CAPTCHA, Puzzle Verification, and Image Restoration.

        Important

        Frictionless verification does not support embedded (embed) authentication. Use pop-up (popup) authentication.

      • One-click CAPTCHA: Click the button to complete the authentication.

      • Slider CAPTCHA: Drag the slider to complete the authentication.

      • Puzzle Verification: Drag the slider to complete the puzzle.

      • Image Restoration: Drag the slider to restore the image.

      Rule Status

      Set the status for the new verification scenario. The following options are available:

      • Official Release (default): In this state, Captcha performs a threat assessment for server requests and returns an authentication result to defend against attacks.

      • Test Mode: In this state, Captcha only checks if the connection is normal and does not perform a threat check. It returns only the configured authentication result. After testing, switch back to the Official Release state. The change takes about 5 minutes to take effect.

        In the Test state, the following authentication results can be configured for each Verification Type:

        • Invisible CAPTCHA + One-click CAPTCHA or Slider CAPTCHA (secondary authentication): Pass Invisible CAPTCHA, Fail Invisible CAPTCHA and Pass Additional Challenge, Fail Invisible CAPTCHA and Additional Challenge.

        • Invisible CAPTCHA + Puzzle Verification or Image Restoration (secondary authentication): Pass Invisible CAPTCHA, Fail Invisible CAPTCHA.

        • One-click CAPTCHA: Pass Verification, Fail Verification.

        • Slider CAPTCHA: Pass Verification, Fail Verification.

        • Puzzle Verification: Pass Verification, Fail Verification.

        • Image Restoration: Pass Verification, Fail Verification.

      Important

      You are charged for each Captcha call, regardless of whether the Rule Status is Official Release or Test Mode.

    3. After the verification scenario is created, obtain the Scenario ID from the scenario list for client integration.image.png

    Other operations

    • Integration Guide

      Click Integration Guide in the Actions column for the target scenario to view integration steps and code examples.

    • Edit

      Click Modify in the Actions column for the target scenario to modify its name, Captcha type, and policy status.

    • Custom Policy

      Click Custom Policy in the Actions column for the target scenario to configure a custom policy. For more information, see Custom policies.

    • Delete

      Click Delete in the Actions column for the target scenario. In the Confirm Delete dialog box, enter the Scenario ID, select the risk reminder checkbox, and click OK.

      Warning

      When you delete a verification scenario, all its historical data is permanently deleted. Captcha calls that use this scenario's configuration will also fail. Delete a scenario only if you are sure you no longer need it.

      image