EnsureRecoveryCodeIsValid
class EnsureRecoveryCodeIsValid (View source)
Middleware that ensures the password recovery code has been validated before allowing access to sensitive routes, such as password reset pages.
This middleware performs two main checks:
- Verifies whether the recovery code was validated in the session.
- Ensures that the recovery time window has not expired.
If either condition fails, the user is redirected back to the appropriate recovery step with an error message.
Methods
Details
Response
handle(Request $request, Closure $next)
Handle an incoming request.