To improve security during checkout, we added a new layer of protection in the store reCAPTCHA validation. Now, store hosts are validated through License Manager, which is the systems that checks user permissions for completing actions in the platform.

The Checkout system now checks if the host where the reCAPTCHA validation challenge is solved, such as www.mystore.com, exists in the License Manager module of that account. This helps prevent malicious access and fraud attempts.

To see the account hosts, use the Get stores endpoint. If you want to add a new host to your store, check Configuring the store domain.

After adding hosts to the account, configure reCAPTCHA in your store. If your store uses custom integrations at checkout, you need to make sure that reCAPTCHA is integrated correctly with them.

Stores already using their own reCaptcha keys in integrations as a validation method don't need to do anything.