diff --git a/backend/internal/handler/auth_handler.go b/backend/internal/handler/auth_handler.go
index b277ff65..1ffa9d71 100644
--- a/backend/internal/handler/auth_handler.go
+++ b/backend/internal/handler/auth_handler.go
@@ -113,8 +113,8 @@ func (h *AuthHandler) Register(c *gin.Context) {
return
}
- // Turnstile 验证 — 始终执行,防止机器人自动化注册
- if err := h.authService.VerifyTurnstile(c.Request.Context(), req.TurnstileToken, ip.GetClientIP(c)); err != nil {
+ // Turnstile 验证(邮箱验证码注册场景避免重复校验一次性 token)
+ if err := h.authService.VerifyTurnstileForRegister(c.Request.Context(), req.TurnstileToken, ip.GetClientIP(c), req.VerifyCode); err != nil {
response.ErrorFrom(c, err)
return
}
diff --git a/backend/internal/service/auth_service.go b/backend/internal/service/auth_service.go
index 73f59dd0..eae7bd53 100644
--- a/backend/internal/service/auth_service.go
+++ b/backend/internal/service/auth_service.go
@@ -308,6 +308,17 @@ func (s *AuthService) SendVerifyCodeAsync(ctx context.Context, email string) (*S
}, nil
}
+// VerifyTurnstileForRegister 在注册场景下验证 Turnstile。
+// 当邮箱验证开启且已提交验证码时,说明验证码发送阶段已完成 Turnstile 校验,
+// 此处跳过二次校验,避免一次性 token 在注册提交时重复使用导致误报失败。
+func (s *AuthService) VerifyTurnstileForRegister(ctx context.Context, token, remoteIP, verifyCode string) error {
+ if s.IsEmailVerifyEnabled(ctx) && strings.TrimSpace(verifyCode) != "" {
+ logger.LegacyPrintf("service.auth", "%s", "[Auth] Email verify flow detected, skip duplicate Turnstile check on register")
+ return nil
+ }
+ return s.VerifyTurnstile(ctx, token, remoteIP)
+}
+
// VerifyTurnstile 验证Turnstile token
func (s *AuthService) VerifyTurnstile(ctx context.Context, token string, remoteIP string) error {
required := s.cfg != nil && s.cfg.Server.Mode == "release" && s.cfg.Turnstile.Required
diff --git a/frontend/src/views/auth/EmailVerifyView.vue b/frontend/src/views/auth/EmailVerifyView.vue
index 63974867..7f797eb4 100644
--- a/frontend/src/views/auth/EmailVerifyView.vue
+++ b/frontend/src/views/auth/EmailVerifyView.vue
@@ -69,20 +69,6 @@
-
-
-
-
- {{ errors.submitTurnstile }}
-
-
-