BotDetect ASP CAPTCHA Migration Guide
Upgrading BotDetect ASP CAPTCHA from v2.0.7 to v2.0.8
Version 2.0.8 of the BotDetect ASP CAPTCHA introduces several changes that require your attention when upgrading from older versions, besides simply updating the LanapBotDetect.dll on all your development machines and servers. For a detailed list of changes included in this release, please consult the v2.0.8 release notes.
LanapBotDetectHandler.asp
There have been several improvements in the BotDetect CAPTCHA ASP module, and you should upgrade it to the latest version in all your ASP projects. You can also view the updated source code online.
Reload Button
To improve the CAPTCHA usability, we have added a Reload CAPTCHA button to all sample ASP projects coming with the installation. This allows users to request a new CAPTCHA code if they are having problems with the current one, without reloading the whole page.
To add this functionality to your CAPTCHA-protected forms, you need to make some minor changes to your form HTML markup and include a JavaScript function, both of which you can find in the BotDetect ASP CAPTCHA samples.
CAPTCHA Validation
The CAPTCHA validation code has been changed to directly compare the user input to the code stored in Session state, instead of comparing hashed values as in the older versions. While the older code will continue to work (the new version is backward-compatible), it is considered deprecated and should be replaced.
You can find the new version of the CAPTCHA validation code in the updated sample ASP projects coming with the BotDetect installation, or in the ASP CAPTCHA validation documentation.
CAPTCHA Randomization
In older versions of the CAPTCHA Randomization ASP sample, the CAPTCHA randomization was performed in the ASP form code, which meant it was skipped when directly accessing the CAPTCHA image (e.g. the user clicking the Reload button or a bot ignoring the page and trying to analyze the CAPTCHA image).
This bug was fixed in the BotDetect 2.0.8 release by moving the randomization code to the LanapBotDetectHandler.asp file. You should consult the updated CAPTCHA randomization sample and make similar changes to your ASP code.
More than one CAPTCHA per site
Since BotDetect CAPTCHA codes are stored in ASP Session state on the server, different CAPTCHA challenges on different pages within the same ASP application need to use different Session state keys to store their CAPTCHA codes. This release includes serveral modifications making this easier, as described in the multiple CAPTCHAs FAQ item.
PHP Users
The LanapBotDetectHandler.php file and the CAPTCHA PHP validation code have been updated, so you should download the PHP CAPTCHA sample again and upgrade your projects to use the new code.
