Implemented a custom login / registration am I missing any obvious security issues?
So I needed a very custom registration/ login for a project
Basically a password less + social login and a multistep registration work flow
After tying a bunch of stuff my solution was to do a custom login / registration form in blade / livewire. Then use admin panel middleware to make sure the user has completed the required registration steps before accessing the panel.
Then I changed the filament logout action to redirect to that instead of the regular login
And I also changed the login() method in the app service provider redirect to that custom route
It all “works” but just thought I would run it by you guys to see if I perhaps missed something obvious from a security perspective.
0 Replies