Download the PHP package wnx/laravel-tfa-confirmation without Composer
On this page you can find all versions of the php package wnx/laravel-tfa-confirmation. It is possible to download/install these versions without Composer. Possible dependencies are resolved automatically.
Download wnx/laravel-tfa-confirmation
More information about wnx/laravel-tfa-confirmation
Files in wnx/laravel-tfa-confirmation
Package laravel-tfa-confirmation
Short Description Protect sensitive routes or actions with a confirmation-screen and ask for the two-factor authentication code of a user
License MIT
Homepage https://github.com/stefanzweifel/laravel-tfa-confirmation
FAQ
Example:
In general, it is recommended to use always a project to download your libraries. In an application normally there is more than one library needed.
- Some hosting areas are not accessible by a terminal or SSH. Then it is not possible to use Composer.
- To use Composer is sometimes complicated. Especially for beginners.
- Composer needs much resources. Sometimes they are not available on a simple webspace.
- If you are using private repositories you don't need to share your credentials. You can set up everything on our site and then you provide a simple download link to your team member.
- Simplify your Composer build process. Use our own command line tool to download the vendor folder as binary. This makes your build process faster and you don't need to expose your credentials for private repositories.
Informations about the package laravel-tfa-confirmation
Ask for the two-factor authentication code of a user before accessing sensitive routes or actions.
Protect sensitive routes or actions with a confirmation-screen and ask for the two-factor authentication code of a user. Users are not asked for a confirmation again for a given time period. (Similar to the Password Confirmation feature of Laravel.)
The package uses Laravel Fortify under the hood to confirm the two-factor authentication code.
Installation
You can install the package via composer:
You can publish the config file with:
This is the contents of the published config file:
The defaul challenge-view is not styled. We highly recommend you publish the views and customize them to your design.
Usage
To protect routes with a two-factor confirmation challenge add the \Wnx\TfaConfirmation\Http\Middleware\RequireTwoFactorAuthenticationConfirmation-middleware to your routes.
[!NOTE] If a given user does not have two-factor authentication enabled, the middleware is bypassed and the user will not be asked to confirm their two-factor authentication code. If you want certain routes only to be available to users with two-factor authentication enabled, you have to write a custom middleware that checks this condition.
[!NOTE] The package listens to the
Laravel\Fortify\Events\ValidTwoFactorAuthenticationCodeProvidedevent to store the timestamp of the last time the user confirmed their two-factor authentication code. This ensures that the user is not asked to confirm their two-factor authentication code right after logging in.
Testing
Changelog
Please see CHANGELOG for more information on what has changed recently.
Contributing
Please see CONTRIBUTING for details.
Security Vulnerabilities
Please review our security policy on how to report security vulnerabilities.
Credits
- Stefan Zweifel
- All Contributors
License
The MIT License (MIT). Please see License File for more information.
All versions of laravel-tfa-confirmation with dependencies
illuminate/contracts Version ^11.2 | ^12
laravel/fortify Version ^1.25
spatie/laravel-package-tools Version ^1.16