WPForms

Drag-and-drop WordPress forms.

How this integration works

Same three steps as every other platform — only the paste location and server hook change.

Where to put the widget

WPForms → HTML field (replace 123 with your form ID).

Server-side hook (WordPress)

Verify the token in wpforms_process_before_filter before the form plugin saves the submission.

Recommended settings

Copy-paste snippet

Paste into your WPForms form or template. Load squeaker.js once per page.

<!-- WPForms → form ID e.g. 123. Add HTML field with: -->
<squeaker-widget
  data-sitekey="sq_live_your_key"
  data-api="https://api.squeaker.cc/v1"
  data-mode="auto"
  data-theme="light"
  data-form="#wpforms-form-123"
></squeaker-widget>

<!-- Site-wide script in footer -->
<script src="https://cdn.squeaker.cc/squeaker.js" async defer></script>

<!-- functions.php -->
add_action('wpforms_process_before_filter', function ($fields, $entry, $form_data) {
    $token = $_POST['squeaker-token'] ?? '';
    // verifyLocal + verify — wp_die() if invalid
}, 10, 3);

Server verification

Read squeaker-token from the request and POST to /v1/verify with your secret key. Full reference: Server verify docs.

$token = $_POST['squeaker-token'] ?? '';
if ($token === '') {
    http_response_code(400);
    exit('Missing token');
}

$apiUrl = getenv('SQUEAKER_API_URL') ?: 'https://api.squeaker.cc/v1';
$payload = json_encode([
    'secret' => getenv('SQUEAKER_SECRET'),
    'token' => $token,
    'remoteip' => $_SERVER['REMOTE_ADDR'] ?? null,
]);
$ctx = stream_context_create([
    'http' => [
        'method' => 'POST',
        'header' => "Content-Type: application/json\r\n",
        'content' => $payload,
    ],
]);
$response = file_get_contents("{$apiUrl}/verify", false, $ctx);
$result = json_decode($response, true);
if (!$result['success']) {
    http_response_code(403);
    exit($result['error'] ?? 'Invalid token');
}

// Token valid — process the form

Open setup generator with WPForms pre-selected · Browse all platforms