The init session view
If the user has MFA enabled, in the Shield validated view
The captcha implementation affects the following flows in the Login:
The init session view
If the user has MFA enabled, in the Shield validated view
In the update password view
In the reset password view
In the UM database, the white label information contains a flag that tells us whether we need to trigger the captcha validation or not.
As for now, every white-label client has the captcha validation enabled, and new white-label clients will have the captcha validation flag set to true by default.
White-label clients can decide whether the enable or disable the captcha validation. The request should be passed to the UM owner to trigger the respective adjustments.