Create handleRecaptchaFlow helper method

[renkelvin]

All flows manually verified in the demo app. Gonna add the unit tests in a separate PR.

[changeset-bot]

🦋 Changeset detected

Latest commit: edc0f50

The changes in this PR will be included in the next version bump.

This PR includes changesets to release 3 packages

Name	Type
@firebase/auth	Patch
@firebase/auth-compat	Patch
firebase	Patch

Not sure what this means? Click here to learn what changesets are.

Click here if you're a maintainer who wants to add another changeset to this PR

[google-oss-bot]

Size Report ¹

Affected Products

• @firebase/auth

  Type	Base (02e2518)	Merge (3d27821)	Diff
  browser	177 kB	175 kB	-2.08 kB (-1.2%)
  cordova	206 kB	203 kB	-3.04 kB (-1.5%)
  esm5	231 kB	228 kB	-3.04 kB (-1.3%)
  main	175 kB	172 kB	-3.07 kB (-1.7%)
  module	177 kB	175 kB	-2.08 kB (-1.2%)
  react-native	190 kB	187 kB	-3.08 kB (-1.6%)

• @firebase/auth/cordova

  Type	Base (02e2518)	Merge (3d27821)	Diff
  browser	206 kB	203 kB	-3.04 kB (-1.5%)
  module	206 kB	203 kB	-3.04 kB (-1.5%)

• @firebase/auth/internal

  Type	Base (02e2518)	Merge (3d27821)	Diff
  browser	188 kB	186 kB	-2.08 kB (-1.1%)
  esm5	244 kB	241 kB	-3.04 kB (-1.2%)
  main	211 kB	208 kB	-3.08 kB (-1.5%)
  module	188 kB	186 kB	-2.08 kB (-1.1%)

• bundle

  Type	Base (02e2518)	Merge (3d27821)	Diff
  auth (EmailAndPassword)	80.0 kB	80.0 kB	+28 B (+0.0%)

• firebase

  Type	Base (02e2518)	Merge (3d27821)	Diff
  firebase-auth-compat.js	136 kB	135 kB	-1.22 kB (-0.9%)
  firebase-auth-cordova.js	174 kB	172 kB	-2.31 kB (-1.3%)
  firebase-auth.js	147 kB	145 kB	-1.56 kB (-1.1%)
  firebase-compat.js	778 kB	777 kB	-1.22 kB (-0.2%)

Test Logs

• Base (02e2518): https://github.com/firebase/firebase-js-sdk/actions/runs/6473187273
• Merge (3d27821): https://github.com/firebase/firebase-js-sdk/actions/runs/6486917295

1. https://storage.googleapis.com/firebase-sdk-metric-reports/C6lDJaFSvq.html

[google-oss-bot]

Size Analysis Report ¹

Affected Products

• @firebase/auth

  • EmailAuthCredential

    Size

    Type	Base (02e2518)	Merge (3d27821)	Diff
    size	41.7 kB	41.7 kB	+28 B (+0.1%)
    size-with-ext-deps	62.5 kB	62.5 kB	+28 B (+0.0%)

    Dependency

    Type	Base (02e2518)	Merge (3d27821)	Diff
    functions	61 dependencies _addTidIfNecessary _assert _castAuth _createError _emulatorUrl _errorWithCustomMessage _fail _getBrowserName _getClientVersion _getCurrentScheme _getFinalTarget _getInstance _getPasswordPolicy _getUserLanguage _initializeAuthInstance _isAndroid _isBlackBerry _isChromeIOS _isFirefox _isHttpOrHttps _isIEMobile _isOnline _isSafari _isWebOS _loadJS _logError _logWarn _logoutIfInvalidated _makeTaggedError _parseToken _performApiRequest _performFetchWithErrorHandling _performSignInRequest _persistenceKeyName _prodErrorMap _reloadWithoutSaving _tokenExpiresIn assertStringOrUndefined createErrorInternal debugAssert debugFail deleteAccount extractProviderData getAccountInfo getIdTokenResult getRecaptchaConfig getScriptParentElement getVersionForPlatform injectRecaptchaFields isEnterprise isUserInvalidated mergeProviderData registerAuth reload requestStsToken secondsStringToMilliseconds signInWithEmailLink$1 signInWithEmailLinkForLinking signInWithPassword updateEmailPassword utcTimestampToDateString	62 dependencies _addTidIfNecessary _assert _castAuth _createError _emulatorUrl _errorWithCustomMessage _fail _getBrowserName _getClientVersion _getCurrentScheme _getFinalTarget _getInstance _getPasswordPolicy _getUserLanguage _initializeAuthInstance _isAndroid _isBlackBerry _isChromeIOS _isFirefox _isHttpOrHttps _isIEMobile _isOnline _isSafari _isWebOS _loadJS _logError _logWarn _logoutIfInvalidated _makeTaggedError _parseToken _performApiRequest _performFetchWithErrorHandling _performSignInRequest _persistenceKeyName _prodErrorMap _reloadWithoutSaving _tokenExpiresIn assertStringOrUndefined createErrorInternal debugAssert debugFail deleteAccount extractProviderData getAccountInfo getIdTokenResult getRecaptchaConfig getScriptParentElement getVersionForPlatform handleRecaptchaFlow injectRecaptchaFields isEnterprise isUserInvalidated mergeProviderData registerAuth reload requestStsToken secondsStringToMilliseconds signInWithEmailLink$1 signInWithEmailLinkForLinking signInWithPassword updateEmailPassword utcTimestampToDateString	+ handleRecaptchaFlow

  • EmailAuthProvider

    Size

    Type	Base (02e2518)	Merge (3d27821)	Diff
    size	43.1 kB	43.2 kB	+28 B (+0.1%)
    size-with-ext-deps	64.2 kB	64.2 kB	+28 B (+0.0%)

    Dependency

    Type	Base (02e2518)	Merge (3d27821)	Diff
    functions	63 dependencies _addTidIfNecessary _assert _castAuth _createError _emulatorUrl _errorWithCustomMessage _fail _getBrowserName _getClientVersion _getCurrentScheme _getFinalTarget _getInstance _getPasswordPolicy _getUserLanguage _initializeAuthInstance _isAndroid _isBlackBerry _isChromeIOS _isFirefox _isHttpOrHttps _isIEMobile _isOnline _isSafari _isWebOS _loadJS _logError _logWarn _logoutIfInvalidated _makeTaggedError _parseToken _performApiRequest _performFetchWithErrorHandling _performSignInRequest _persistenceKeyName _prodErrorMap _reloadWithoutSaving _tokenExpiresIn assertStringOrUndefined createErrorInternal debugAssert debugFail deleteAccount extractProviderData getAccountInfo getIdTokenResult getRecaptchaConfig getScriptParentElement getVersionForPlatform injectRecaptchaFields isEnterprise isUserInvalidated mergeProviderData parseDeepLink parseMode registerAuth reload requestStsToken secondsStringToMilliseconds signInWithEmailLink$1 signInWithEmailLinkForLinking signInWithPassword updateEmailPassword utcTimestampToDateString	64 dependencies _addTidIfNecessary _assert _castAuth _createError _emulatorUrl _errorWithCustomMessage _fail _getBrowserName _getClientVersion _getCurrentScheme _getFinalTarget _getInstance _getPasswordPolicy _getUserLanguage _initializeAuthInstance _isAndroid _isBlackBerry _isChromeIOS _isFirefox _isHttpOrHttps _isIEMobile _isOnline _isSafari _isWebOS _loadJS _logError _logWarn _logoutIfInvalidated _makeTaggedError _parseToken _performApiRequest _performFetchWithErrorHandling _performSignInRequest _persistenceKeyName _prodErrorMap _reloadWithoutSaving _tokenExpiresIn assertStringOrUndefined createErrorInternal debugAssert debugFail deleteAccount extractProviderData getAccountInfo getIdTokenResult getRecaptchaConfig getScriptParentElement getVersionForPlatform handleRecaptchaFlow injectRecaptchaFields isEnterprise isUserInvalidated mergeProviderData parseDeepLink parseMode registerAuth reload requestStsToken secondsStringToMilliseconds signInWithEmailLink$1 signInWithEmailLinkForLinking signInWithPassword updateEmailPassword utcTimestampToDateString	+ handleRecaptchaFlow

  • createUserWithEmailAndPassword

    Size

    Type	Base (02e2518)	Merge (3d27821)	Diff
    size	40.8 kB	40.9 kB	+92 B (+0.2%)
    size-with-ext-deps	61.6 kB	61.7 kB	+92 B (+0.1%)

    Dependency

    Type	Base (02e2518)	Merge (3d27821)	Diff
    functions	61 dependencies _addTidIfNecessary _assert _castAuth _createError _emulatorUrl _errorWithCustomMessage _fail _getBrowserName _getClientVersion _getCurrentScheme _getFinalTarget _getInstance _getPasswordPolicy _getUserLanguage _initializeAuthInstance _isAndroid _isBlackBerry _isChromeIOS _isFirefox _isHttpOrHttps _isIEMobile _isOnline _isSafari _isWebOS _loadJS _logError _logWarn _logoutIfInvalidated _makeTaggedError _parseToken _performApiRequest _performFetchWithErrorHandling _performSignInRequest _persistenceKeyName _prodErrorMap _reloadWithoutSaving _tokenExpiresIn assertStringOrUndefined createErrorInternal createUserWithEmailAndPassword debugAssert debugFail deleteAccount extractProviderData getAccountInfo getIdTokenResult getRecaptchaConfig getScriptParentElement getVersionForPlatform injectRecaptchaFields isEnterprise isUserInvalidated mergeProviderData providerIdForResponse recachePasswordPolicy registerAuth reload requestStsToken secondsStringToMilliseconds signUp utcTimestampToDateString	62 dependencies _addTidIfNecessary _assert _castAuth _createError _emulatorUrl _errorWithCustomMessage _fail _getBrowserName _getClientVersion _getCurrentScheme _getFinalTarget _getInstance _getPasswordPolicy _getUserLanguage _initializeAuthInstance _isAndroid _isBlackBerry _isChromeIOS _isFirefox _isHttpOrHttps _isIEMobile _isOnline _isSafari _isWebOS _loadJS _logError _logWarn _logoutIfInvalidated _makeTaggedError _parseToken _performApiRequest _performFetchWithErrorHandling _performSignInRequest _persistenceKeyName _prodErrorMap _reloadWithoutSaving _tokenExpiresIn assertStringOrUndefined createErrorInternal createUserWithEmailAndPassword debugAssert debugFail deleteAccount extractProviderData getAccountInfo getIdTokenResult getRecaptchaConfig getScriptParentElement getVersionForPlatform handleRecaptchaFlow injectRecaptchaFields isEnterprise isUserInvalidated mergeProviderData providerIdForResponse recachePasswordPolicy registerAuth reload requestStsToken secondsStringToMilliseconds signUp utcTimestampToDateString	+ handleRecaptchaFlow

  • sendPasswordResetEmail

    Size

    Type	Base (02e2518)	Merge (3d27821)	Diff
    size	40.5 kB	40.5 kB	+11 B (+0.0%)
    size-with-ext-deps	61.3 kB	61.3 kB	+11 B (+0.0%)

    Dependency

    Type	Base (02e2518)	Merge (3d27821)	Diff
    functions	60 dependencies _addTidIfNecessary _assert _castAuth _createError _emulatorUrl _errorWithCustomMessage _fail _getBrowserName _getClientVersion _getCurrentScheme _getFinalTarget _getInstance _getPasswordPolicy _getUserLanguage _initializeAuthInstance _isAndroid _isBlackBerry _isChromeIOS _isFirefox _isHttpOrHttps _isIEMobile _isOnline _isSafari _isWebOS _loadJS _logError _logWarn _logoutIfInvalidated _makeTaggedError _parseToken _performApiRequest _performFetchWithErrorHandling _persistenceKeyName _prodErrorMap _reloadWithoutSaving _setActionCodeSettingsOnRequest _tokenExpiresIn assertStringOrUndefined createErrorInternal debugAssert debugFail deleteAccount extractProviderData getAccountInfo getIdTokenResult getRecaptchaConfig getScriptParentElement getVersionForPlatform injectRecaptchaFields isEnterprise isUserInvalidated mergeProviderData registerAuth reload requestStsToken secondsStringToMilliseconds sendOobCode sendPasswordResetEmail sendPasswordResetEmail$1 utcTimestampToDateString	61 dependencies _addTidIfNecessary _assert _castAuth _createError _emulatorUrl _errorWithCustomMessage _fail _getBrowserName _getClientVersion _getCurrentScheme _getFinalTarget _getInstance _getPasswordPolicy _getUserLanguage _initializeAuthInstance _isAndroid _isBlackBerry _isChromeIOS _isFirefox _isHttpOrHttps _isIEMobile _isOnline _isSafari _isWebOS _loadJS _logError _logWarn _logoutIfInvalidated _makeTaggedError _parseToken _performApiRequest _performFetchWithErrorHandling _persistenceKeyName _prodErrorMap _reloadWithoutSaving _setActionCodeSettingsOnRequest _tokenExpiresIn assertStringOrUndefined createErrorInternal debugAssert debugFail deleteAccount extractProviderData getAccountInfo getIdTokenResult getRecaptchaConfig getScriptParentElement getVersionForPlatform handleRecaptchaFlow injectRecaptchaFields isEnterprise isUserInvalidated mergeProviderData registerAuth reload requestStsToken secondsStringToMilliseconds sendOobCode sendPasswordResetEmail sendPasswordResetEmail$1 utcTimestampToDateString	+ handleRecaptchaFlow

  • sendSignInLinkToEmail

    Size

    Type	Base (02e2518)	Merge (3d27821)	Diff
    size	40.5 kB	40.6 kB	+34 B (+0.1%)
    size-with-ext-deps	61.3 kB	61.3 kB	+34 B (+0.1%)

    Dependency

    Type	Base (02e2518)	Merge (3d27821)	Diff
    functions	60 dependencies _addTidIfNecessary _assert _castAuth _createError _emulatorUrl _errorWithCustomMessage _fail _getBrowserName _getClientVersion _getCurrentScheme _getFinalTarget _getInstance _getPasswordPolicy _getUserLanguage _initializeAuthInstance _isAndroid _isBlackBerry _isChromeIOS _isFirefox _isHttpOrHttps _isIEMobile _isOnline _isSafari _isWebOS _loadJS _logError _logWarn _logoutIfInvalidated _makeTaggedError _parseToken _performApiRequest _performFetchWithErrorHandling _persistenceKeyName _prodErrorMap _reloadWithoutSaving _setActionCodeSettingsOnRequest _tokenExpiresIn assertStringOrUndefined createErrorInternal debugAssert debugFail deleteAccount extractProviderData getAccountInfo getIdTokenResult getRecaptchaConfig getScriptParentElement getVersionForPlatform injectRecaptchaFields isEnterprise isUserInvalidated mergeProviderData registerAuth reload requestStsToken secondsStringToMilliseconds sendOobCode sendSignInLinkToEmail sendSignInLinkToEmail$1 utcTimestampToDateString	61 dependencies _addTidIfNecessary _assert _castAuth _createError _emulatorUrl _errorWithCustomMessage _fail _getBrowserName _getClientVersion _getCurrentScheme _getFinalTarget _getInstance _getPasswordPolicy _getUserLanguage _initializeAuthInstance _isAndroid _isBlackBerry _isChromeIOS _isFirefox _isHttpOrHttps _isIEMobile _isOnline _isSafari _isWebOS _loadJS _logError _logWarn _logoutIfInvalidated _makeTaggedError _parseToken _performApiRequest _performFetchWithErrorHandling _persistenceKeyName _prodErrorMap _reloadWithoutSaving _setActionCodeSettingsOnRequest _tokenExpiresIn assertStringOrUndefined createErrorInternal debugAssert debugFail deleteAccount extractProviderData getAccountInfo getIdTokenResult getRecaptchaConfig getScriptParentElement getVersionForPlatform handleRecaptchaFlow injectRecaptchaFields isEnterprise isUserInvalidated mergeProviderData registerAuth reload requestStsToken secondsStringToMilliseconds sendOobCode sendSignInLinkToEmail sendSignInLinkToEmail$1 utcTimestampToDateString	+ handleRecaptchaFlow

  • signInWithEmailAndPassword

    Size

    Type	Base (02e2518)	Merge (3d27821)	Diff
    size	44.8 kB	44.8 kB	+28 B (+0.1%)
    size-with-ext-deps	65.8 kB	65.8 kB	+28 B (+0.0%)

    Dependency

    Type	Base (02e2518)	Merge (3d27821)	Diff
    functions	69 dependencies _addTidIfNecessary _assert _castAuth _createError _emulatorUrl _errorWithCustomMessage _fail _getBrowserName _getClientVersion _getCurrentScheme _getFinalTarget _getInstance _getPasswordPolicy _getUserLanguage _initializeAuthInstance _isAndroid _isBlackBerry _isChromeIOS _isFirefox _isHttpOrHttps _isIEMobile _isOnline _isSafari _isWebOS _loadJS _logError _logWarn _logoutIfInvalidated _makeTaggedError _parseToken _performApiRequest _performFetchWithErrorHandling _performSignInRequest _persistenceKeyName _processCredentialSavingMfaContextIfNecessary _prodErrorMap _reloadWithoutSaving _signInWithCredential _tokenExpiresIn assertStringOrUndefined createErrorInternal debugAssert debugFail deleteAccount extractProviderData getAccountInfo getIdTokenResult getRecaptchaConfig getScriptParentElement getVersionForPlatform injectRecaptchaFields isEnterprise isUserInvalidated mergeProviderData parseDeepLink parseMode providerIdForResponse recachePasswordPolicy registerAuth reload requestStsToken secondsStringToMilliseconds signInWithCredential signInWithEmailAndPassword signInWithEmailLink$1 signInWithEmailLinkForLinking signInWithPassword updateEmailPassword utcTimestampToDateString	70 dependencies _addTidIfNecessary _assert _castAuth _createError _emulatorUrl _errorWithCustomMessage _fail _getBrowserName _getClientVersion _getCurrentScheme _getFinalTarget _getInstance _getPasswordPolicy _getUserLanguage _initializeAuthInstance _isAndroid _isBlackBerry _isChromeIOS _isFirefox _isHttpOrHttps _isIEMobile _isOnline _isSafari _isWebOS _loadJS _logError _logWarn _logoutIfInvalidated _makeTaggedError _parseToken _performApiRequest _performFetchWithErrorHandling _performSignInRequest _persistenceKeyName _processCredentialSavingMfaContextIfNecessary _prodErrorMap _reloadWithoutSaving _signInWithCredential _tokenExpiresIn assertStringOrUndefined createErrorInternal debugAssert debugFail deleteAccount extractProviderData getAccountInfo getIdTokenResult getRecaptchaConfig getScriptParentElement getVersionForPlatform handleRecaptchaFlow injectRecaptchaFields isEnterprise isUserInvalidated mergeProviderData parseDeepLink parseMode providerIdForResponse recachePasswordPolicy registerAuth reload requestStsToken secondsStringToMilliseconds signInWithCredential signInWithEmailAndPassword signInWithEmailLink$1 signInWithEmailLinkForLinking signInWithPassword updateEmailPassword utcTimestampToDateString	+ handleRecaptchaFlow

  • signInWithEmailLink

    Size

    Type	Base (02e2518)	Merge (3d27821)	Diff
    size	44.8 kB	44.8 kB	+28 B (+0.1%)
    size-with-ext-deps	65.8 kB	65.8 kB	+28 B (+0.0%)

    Dependency

    Type	Base (02e2518)	Merge (3d27821)	Diff
    functions	69 dependencies _addTidIfNecessary _assert _castAuth _createError _emulatorUrl _errorWithCustomMessage _fail _getBrowserName _getClientVersion _getCurrentScheme _getCurrentUrl _getFinalTarget _getInstance _getPasswordPolicy _getUserLanguage _initializeAuthInstance _isAndroid _isBlackBerry _isChromeIOS _isFirefox _isHttpOrHttps _isIEMobile _isOnline _isSafari _isWebOS _loadJS _logError _logWarn _logoutIfInvalidated _makeTaggedError _parseToken _performApiRequest _performFetchWithErrorHandling _performSignInRequest _persistenceKeyName _processCredentialSavingMfaContextIfNecessary _prodErrorMap _reloadWithoutSaving _signInWithCredential _tokenExpiresIn assertStringOrUndefined createErrorInternal debugAssert debugFail deleteAccount extractProviderData getAccountInfo getIdTokenResult getRecaptchaConfig getScriptParentElement getVersionForPlatform injectRecaptchaFields isEnterprise isUserInvalidated mergeProviderData parseDeepLink parseMode providerIdForResponse registerAuth reload requestStsToken secondsStringToMilliseconds signInWithCredential signInWithEmailLink signInWithEmailLink$1 signInWithEmailLinkForLinking signInWithPassword updateEmailPassword utcTimestampToDateString	70 dependencies _addTidIfNecessary _assert _castAuth _createError _emulatorUrl _errorWithCustomMessage _fail _getBrowserName _getClientVersion _getCurrentScheme _getCurrentUrl _getFinalTarget _getInstance _getPasswordPolicy _getUserLanguage _initializeAuthInstance _isAndroid _isBlackBerry _isChromeIOS _isFirefox _isHttpOrHttps _isIEMobile _isOnline _isSafari _isWebOS _loadJS _logError _logWarn _logoutIfInvalidated _makeTaggedError _parseToken _performApiRequest _performFetchWithErrorHandling _performSignInRequest _persistenceKeyName _processCredentialSavingMfaContextIfNecessary _prodErrorMap _reloadWithoutSaving _signInWithCredential _tokenExpiresIn assertStringOrUndefined createErrorInternal debugAssert debugFail deleteAccount extractProviderData getAccountInfo getIdTokenResult getRecaptchaConfig getScriptParentElement getVersionForPlatform handleRecaptchaFlow injectRecaptchaFields isEnterprise isUserInvalidated mergeProviderData parseDeepLink parseMode providerIdForResponse registerAuth reload requestStsToken secondsStringToMilliseconds signInWithCredential signInWithEmailLink signInWithEmailLink$1 signInWithEmailLinkForLinking signInWithPassword updateEmailPassword utcTimestampToDateString	+ handleRecaptchaFlow

Test Logs

• Base (02e2518): https://github.com/firebase/firebase-js-sdk/actions/runs/6473187273
• Merge (3d27821): https://github.com/firebase/firebase-js-sdk/actions/runs/6486917295

1. https://storage.googleapis.com/firebase-sdk-metric-reports/bjFcU047eb.html

[prameshj]

Can we also include "provider" name or enum as a parameter? Based on that, we will know whether to check emailPasswordEnabled or a different provider.

Ok to handle this the next time we add a provider too. Please add a TODO in that case.

[renkelvin]

Yeah, as an internal method, I prefer add the parameter only when needed so the context is more clear.

[prameshj]

can we add some tests for this method? I understand that usages of this methods in the various flows are being tested.. would be good to test this too.

[prameshj]

@renkelvin can you update the description that all rCE protected flows were manually verified with the demo app?

I am ok with moving the new unit tests to a different PR to debug them.

[renkelvin]

Yeah, done.

[prameshj]

Does this mean that for oobCodeFlows, we do not call the request field name as "captchaResp: token"?

[renkelvin]

Correct, this is due to backend legacy issues.

[prameshj]

Instead of calling signInWithCredential in packages/auth/src/core/strategies/email_and_password.ts, can we instead duplicate a bit of code and do something like:

export function signInWithEmailAndPassword(
  auth: Auth,
  email: string,
  password: string
): Promise<UserCredential> {

        const request: SignInWithPasswordRequest = {
          returnSecureToken: true,
          email: this._email,
          password: this._password,
          clientType: RecaptchaClientType.WEB
        };
 const response = handleRecaptchaFlow(auth, request, action, signInWithPassword)
 .catch(error => {
    if (error.code === `auth/${AuthErrorCode.MFA_REQUIRED}`) {
      throw MultiFactorError._fromErrorAndOperation(
        auth,
        error,
        operationType,
        user
      );
    } else if (
      error.code === `auth/${AuthErrorCode.PASSWORD_DOES_NOT_MEET_REQUIREMENTS}`
    ) {
      void recachePasswordPolicy(auth);
    } else {
      throw error;
    }
  })
;

  const userCredential = await UserCredentialImpl._fromIdTokenResponse(
    auth,
    OperationType.SIGN_IN,
    response
  );

    await auth._updateCurrentUser(userCredential.user);

This will make the email login flow more consistent with the other flows in strategies/email_and_password.ts and we don't have to import any recaptcha enterprise methods here (enabling tree shaking out the JS script)

[prameshj]

Adding the comment here, but it is for the implementation in packages/auth/src/core/strategies/email_and_password.ts

[prameshj]

But doing this will not perform recaptcha enterprise wrapping if the developer is calling reauthenticateWithCredential or signInWithCredential directly... hmm.

[renkelvin]

Yeah, I actually tried similar things when implementing the recapthca flow originally. I agree this part needs some refactors.