Forward the form submission
When a visitor submits a contact form, forward the fields to InputGate's API. One POST. Works with any backend — Node.js, PHP, Python, Next.js, Laravel, WordPress, or any stack that speaks HTTP.
Tired of junk leads and fake inquiries clogging your inbox? InputGate is a contact form spam protection API that scores every submission in real time — before it reaches your CRM, email, or helpdesk. No CAPTCHA. One API call from your backend.
One API call. One JSON response. Forward any contact form submission and get back a spam score with plain-English reason — in under 50 ms.
When a visitor submits a contact form, forward the fields to InputGate's API. One POST. Works with any backend — Node.js, PHP, Python, Next.js, Laravel, WordPress, or any stack that speaks HTTP.
Our engine combines spam language patterns, bot behavioral signals, IP reputation, and geo data into a single calibrated spam score — tuned for real-world form abuse.
Clean JSON response — score, verdict, plain-English reason. Block fake submissions, flag borderline ones, let real leads through. Your inbox stays clean.
Junk leads clogging your CRM. Spam tickets burying real support requests. Fake inquiries wasting your sales team's time. InputGate is a form spam protection API that stops fake submissions at the source — and scales to protect any inbound data.
Every form submission gets a calibrated 0–100 spam score across multiple signal axes. Each axis — spam language, bot patterns, IP reputation, content quality — contributes a weighted sub-score. Use our built-in threshold or set your own. The math is fully exposed, not a black box.
InputGate filters spam at the server, not the browser. Your visitors never see a puzzle, a checkbox, or a slowdown. Invisible form protection — entirely by design.
Default retention is flagged_only - clean submissions are scored and discarded. GDPR Art. 25 compliant out of the box.
Block or allow by country with one parameter.
Require certain languages, block others. Detected via Unicode script analysis - zero added latency.
Fulfil GDPR Art. 17 programmatically. One call deletes every log row tied to an IP - with an audit trail.
InputGate sits between your contact form and your inbox. Every submission is scored for spam in real time — fake inquiries are blocked, real leads flow through to your email, CRM, Slack, or helpdesk. No junk. No wasted sales time.
One endpoint. One JSON response. No SDK, no webhook plumbing. A developer-first spam filtering API that integrates in minutes — from any language, any framework, any backend.
// Score an inbound form submission const res = await fetch( "https://api.inputgate.cloud/v1/check", { method: "POST", headers: { "Authorization": `Bearer ${API_KEY}`, "Content-Type": "application/json", }, body: JSON.stringify({ fields: { email: req.body.email, message: req.body.message, }, client_ip: req.ip, domain: "myapp.com", context: "Lead capture form on a real estate website", retention: "flagged_only", // GDPR-safe }), } ); const { spam_score, is_spam, reason } = await res.json(); if (spam_score > 75) return reject(reason);
fields object → spam score, verdict, plain-English reason. No webhooks. No callbacks. One round trip per submission.Stop fake inquiries and spam bots before they reach your inbox. Works with HTML forms, React, Next.js, Contact Form 7, Gravity Forms, and Elementor.
Junk leads cost your sales team hours every week. Filter out bot signups and fake submissions so only real prospects enter your pipeline.
Fake quote requests waste your team's time and inflate your email costs. Score every submission before it triggers a notification or enters your CRM.
Real customer issues get buried under spam tickets. Block automated submissions before they enter your queue and slow down your team's response time.
Bot signups inflate your user counts and pollute your analytics. Score every registration before it creates an account or triggers a welcome email.
Throwaway addresses and bot comments hurt deliverability and inflate costs. Keep your list clean and your engagement metrics real — automatically.
"InputGate grew out of years of protecting WordPress websites from spam and abusive submissions."
That hard-won experience - hundreds of millions of real attacks analyzed, patterns learned, edge cases handled - is now available as a single API call for any stack.
Start free. Scale as you grow. No per-seat pricing, no hidden fees, no minimum contracts.
Practical guides on spam protection, bot detection, and safer web apps.
Add contact form spam protection to any website in minutes. Works with React, Next.js, Vue, WordPress, Laravel, or any custom backend. No CAPTCHA. No friction. Just clean leads in your inbox.