Be part of JetBrains PHPverse 2026 on June 9 – a free online event bringing PHP devs worldwide together.
This is a Fortify and Fortify wasn't an option so I selected Livewire
I want to confirm email address and no password, easy enough to edit the form but Fortify wants a password and enter user into the database on registration and in my mind that is a huge security risk and allows bots to sign up with out verification. What I want to do is confirm email to ensure the user hasn't made a mistake No password in registration form send the user to a confirm details with an edit and commit buttons the user is put in to a temporary state until the confirmation link is clicked in the email the user will be redirected t the email confirm and enter password I know this is not the Laravel way of doing things and I'll have to make major edits to get it to work but I see this as the best option to reduce bot signup and after 32 years of web development I've had to remove thousands of bot signups. Thanks
There are plenty of tutorials out there implementing passwordless login.
You can take one of these and register the user during the login process (if not known). Once they have logged in, get them to complete other registration steps such as confirming preferences etc.
@ghabe no it's not about resetting password, it's about making a more secure signup process I don't need a tutorial for this I can write it in my sleep, I'm having a challenge with the way Fortify/Larevel and the way it expects registration and in my mind the registration is backward and illogical more people make a mistake with there email address which is why confirming email is better than confirming password
@440music I'm not sure to understand ... do you want to confirm the user's email ?
Why not simply use the email verification from Fortify ?
Also you can customize any of this by not using things like fortify.
I tried them all, but in the end did it manually by following Manually Authenticating Users:
Found here https://laravel.com/docs/12.x/authentication#authenticating-users
This way you are in full control.
The other I did use in some apps was Breeze, but I finally dropped it as well.
Also all of those starter kits are optional.
@jlrdw Effectively it's a good idea if you need to customize the authentication. I have such a case now and I will probably remove Fortify.
Hmmm ... question : I never handled authentication manually ... is there a built-in rate limiter when doing it manually or do I have to add some code to have it ?
@vincent15000 In routing chapter see https://laravel.com/docs/12.x/routing#rate-limiting
I really don't understand what you mean here ?
This is a Fortify and Fortify wasn't an option so I selected Livewire
This is a Fortify ... so I selected Livewire.
Fortify and Livewire are two different packages that can be combined together if needed, but no way you can replace Fortify by Livewire.
If you didn't have Fortify, what would you have selected instead of Livewire ? This has no sense.
@vincent15000 They're talking about the forum channel. There's no dedicated channel for Fortify.
Please or to participate in this conversation.