CMS Integration Guides

1. Install the NeuroGuard plugin (or add code to functions.php)
2. Go to Settings → NeuroGuard, enter your siteKey and secretKey
3. Add the shield.js script to your theme header
4. Add honeypot field to your forms
5. Add the protect() check to your form handler

// functions.php
function ng_protect_form() {
    if (!empty($_POST['website_url'])) wp_die('Bot detected');
    $token = $_POST['neuroguard_token'] ?? '';
    $result = ng_verify($token);
    if (!$result['valid'] || $result['decision'] !== 'allow' || $result['label'] !== 'HUMAN') wp_die('Access denied');
}
add_action('wp_ajax_submit_form', 'ng_protect_form', 1);
add_action('wp_ajax_nopriv_submit_form', 'ng_protect_form', 1);

1. Install the NeuroGuard system plugin
2. Configure siteKey and secretKey in plugin settings
3. Enable auto-protect for all forms
4. Add honeypot field to custom components
5. Test with a real form submission

class PlgSystemNeuroguard extends JPlugin {
    public function onAfterRoute() {
        $app = JFactory::getApplication();
        if ($app->isClient('site') && $_SERVER['REQUEST_METHOD'] === 'POST') {
            if (!empty($_POST['website_url'])) { $app->redirect(JURI::base()); }
            $token = $_POST['neuroguard_token'] ?? '';
            $result = $this->verifyToken($token);
            if (!$result['valid']) $app->redirect(JURI::base());
        }
    }
}

1. Enable the NeuroGuard module
2. Configure credentials at admin/config/system/neuroguard
3. Add shield.js to theme html.html.twig
4. Add honeypot via hook_form_alter()
5. Validate token in form submit handler

function neuroguard_form_alter(&$form, $form_state, $form_id) {
    $form['website_url'] = ['#type' => 'textfield', '#attributes' => ['style' => 'position:absolute;left:-9999px'], '#access' => false];
    $form['neuroguard_token'] = ['#type' => 'hidden'];
    $form['#validate'][] = 'neuroguard_validate';
}

1. Go to Themes → Edit Code
2. Add shield.js to theme.liquid
3. Add honeypot to form liquid template
4. Use Shopify Functions to verify tokens
5. Test checkout flow

<!-- theme.liquid -->
<script src="https://api.neuroguard.pro/api/v1/shield-js"
        data-site-key="ng_pk_YOUR_KEY" data-auto="true" defer></script>
<!-- In form -->
<input type="text" name="website_url" style="position:absolute;left:-9999px"
       tabindex="-1" autocomplete="off" aria-hidden="true">

1. Add shield.js script tag
2. Add honeypot field
3. Add noscript fallback
4. Verify token on backend
5. Done!

<script src="https://api.neuroguard.pro/api/v1/shield-js"
        data-site-key="ng_pk_YOUR_KEY" data-auto="true" defer></script>
<form action="/api/contact" method="POST">
  <input type="text" name="website_url"
         style="position:absolute;left:-9999px;width:1px;height:1px;opacity:0"
         tabindex="-1" autocomplete="off" aria-hidden="true">
  <input name="email" type="email" required>
  <button type="submit">Send</button>
</form>

1. Load shield.js in layout
2. Use NeuroGuard.protect(form) for auto protection
3. Or use NeuroGuard.getToken() for SPA forms
4. Send token to API route for verification
5. Verify server-side

useEffect(() => {
  const s = document.createElement('script');
  s.src = '/api/v1/shield-js';
  s.dataset.siteKey = process.env.NEXT_PUBLIC_NG_SITE_KEY;
  s.dataset.auto = 'true'; s.async = true;
  document.body.appendChild(s);
}, []);
// Imperative: const result = await window.NeuroGuard.getToken('ng_pk_...');

💡 Universal Integration Pattern

Regardless of CMS: (1) shield.js on frontend, (2) honeypot + noscript fallback, (3) server-side verification with default-deny. See Developer Docs for SDK examples.

NeuroGuard v1.0 · Home · Developer Docs · Swagger