I have a web application which uses Google ReCaptcha to protect the public forms which post to API endpoints which allow anonymous access such as login, register, change password etc.
Is Cloudflare a replacement for this? Is there a Cloudflare service which means that I do not need the ReCaptcha on the web forms or do I need to keep the Recaptcha on forms?
You could add a page rule to set the Security Level to “High” or “I’m under attack” for a specific route, that would force some sort of browser check for that page when it initially loads, but I don’t think you should replace your Recaptcha with that.