General Questions
What is Fortt and how does it work?
What is Fortt and how does it work?
Fortt is a security platform that protects your web applications from bots, abuse, and fraud. It uses advanced device fingerprinting, behavioral analysis, and risk scoring to evaluate user interactions in real-time. The SDK collects device and session information, sends it to Fortt’s API, and receives risk-based decisions (ALLOW, MONITOR, CHALLENGE, or BLOCK).
Will Fortt impact my users' experience?
Will Fortt impact my users' experience?
No. Fortt operates completely in the background with zero visual impact. There are no popups, no challenges, and no interruptions to your users’ browsing experience. All data collection happens silently without any degradation of user experience.
What happens during the trial period?
What happens during the trial period?
During the trial period, Fortt operates in data collection mode. The SDK collects device fingerprinting data and sends verification requests, but it will not show challenges to users or block any requests. All requests are allowed while Fortt builds risk profiles and improves its detection capabilities.
What happens after the trial period?
What happens after the trial period?
After the trial period, you’ll receive a comprehensive traffic analysis report showing insights about your traffic patterns, risk levels, and potential threats. Based on this analysis, you can then choose whether to enable challenge/blocking features based on your specific needs and risk tolerance.
Integration Questions
How do I get a projectId?
How do I get a projectId?
To start your trial and receive your
projectId, contact rafael@fortt.sh. You’ll receive your unique project identifier after starting your trial, which you’ll use to configure ForttProvider in your application.How do I integrate Fortt into my React application?
How do I integrate Fortt into my React application?
Integration is simple and takes just two steps:
- Install the React SDK:
npm install fortt/react - Wrap your app with
ForttProviderand provide your project ID
Do I need to modify my existing code?
Do I need to modify my existing code?
No major code changes are required. You simply wrap your application (or the portion that needs protection) with
ForttProvider. The SDK handles all the complexity automatically, including device fingerprinting, session management, and API communication.Can I use Fortt with Next.js?
Can I use Fortt with Next.js?
Yes! Fortt works seamlessly with Next.js App Router. Simply wrap your root layout with
ForttProvider. See our Quickstart Guide for a complete Next.js example.What data does Fortt collect?
What data does Fortt collect?
Fortt collects device fingerprinting data including browser characteristics, screen resolution, timezone, and other non-personally identifiable information. It also tracks visitor and session identifiers to build risk profiles over time. All data collection happens in the background without user interaction.
Can I exclude certain pages from automatic verification?
Can I exclude certain pages from automatic verification?
Yes! You can use the The
ignorePaths prop on ForttProvider to exclude specific pages or routes from automatic verification. This is useful for internal pages, admin dashboards, or other pages where you don’t want verification to occur.ignorePaths prop supports exact matches (e.g., '/dashboard') and wildcard patterns (e.g., '/admin/*' to match all admin subpaths). See the API Reference for more details.Technical Questions
How does device fingerprinting work?
How does device fingerprinting work?
Fortt’s SDK automatically collects various browser and device characteristics (screen resolution, timezone, plugins, etc.) to create a unique device fingerprint. This fingerprint helps identify suspicious devices and patterns without requiring any user interaction or cookies.
What are the different decision types?
What are the different decision types?
Fortt returns four types of decisions:
- ALLOW: Low risk, proceed with the action
- MONITOR: Moderate risk, allow but track for analysis
- CHALLENGE: Higher risk, require user to complete a challenge (currently disabled during trial)
- BLOCK: High risk, deny the request (currently disabled during trial)
How is performance affected?
How is performance affected?
Fortt is designed to be lightweight and non-blocking. Verification requests are sent asynchronously in the background and do not delay page loads or user interactions. The SDK has minimal impact on your application’s performance.
Do I need to handle errors or edge cases?
Do I need to handle errors or edge cases?
The SDK handles all error cases automatically. Network issues, API errors, and edge cases are managed internally, so your application continues to function normally even if verification requests fail.
Privacy and Security
Is user data stored or shared?
Is user data stored or shared?
Does Fortt use cookies?
Does Fortt use cookies?
Is Fortt GDPR compliant?
Is Fortt GDPR compliant?
Fortt is designed with privacy in mind and collects minimal data necessary for security purposes. For specific compliance questions, please contact Fortt support or refer to our privacy policy.