Laravel 8 with user authentication, registration with email confirmation, social media authentication, password recovery, and captcha protection. Uses offical [Bootstrap 4](http://getbootstrap.com). This also makes full use of Controllers for the routes, templates for the views, and makes use of middleware for routing. The project can be stood up in minutes.
laravel
localization
authentication
google-maps
laravel-framework
laravel-documentation
homestead
users
roles
user-management
socialite
registration
user-profile
dropzonejs
social-authentication
two-step-authentication
socialite-logins
gravatar-api
-
Updated
Sep 29, 2020 - PHP
Describe the bug
Currently, login requests will fail faster if the user does not exist as the hash does not have to be computed. This can leave to timing attacks where an attacker can guess if a user exists or not, which defeats account enumeration defenses.
Expected behavior
Every login request should take a similar amount of time regardless of whether the user exists or not. The