Cloudflare Turnstile CAPTCHA

Cloudflare Turnstile adds protection to your white-label sign-in page by blocking automated login attempts and malicious bots, without using traditional CAPTCHAs.

When enabled, Turnstile helps:

• Prevent brute-force login attacks

• Reduce bot traffic

• Keep the login experience fast and user-friendly for real users

Enable Cloudflare Turnstile

1. Create or log in to Cloudflare

1. Go to cloudflare.com

2. Sign up for an account or log in if you already have one

You do not need to move your domain to Cloudflare to use Turnstile

2. Open Cloudflare Turnstile

In the Cloudflare dashboard, open the left-hand menu. Click Turnstile

Click Add Widget.

3. Create a Turnstile application

Enter a Widget name.

Click Add Hostname.

Enter the domain used for your white-label app login and click Add.

Under selected hostnames, select your domain and click Add at the bottom of the screen.

Under Widget Mode, select Invisible

Click Create once completed.

4. Copy your keys

After creation, Cloudflare will generate two values:

• Site key

• Secret key

5. Add keys to Swft Connect

1. Go to your White Label Settings

2. Open Security

3. Paste the keys into the corresponding fields:

   • Site key → Cloudflare Site key

   • Secret key → Cloudflare Secret key

4. Click Save changes

Turnstile is now enabled on your white-label sign-in page.

Notes and best practices

• Changes apply immediately after saving

• If the keys are invalid or removed, login protection will be disabled

• You can rotate keys at any time in Cloudflare if needed

• Turnstile runs silently for most users and does not interrupt normal login flows

For advanced configuration options, refer to Cloudflare’s official Turnstile documentation.

Once enabled, your login pages are protected against automated abuse while remaining seamless for legitimate users.