Authentication
Peakβs authentication system is built on Laravel Jetstream, leveraging Laravel Fortify for secure, flexible backend authentication logic. It is fully integrated with Peak's intuitive admin panel, allowing fine-grained control over authentication features without touching configuration files.
Loginβ
By default, users can log in using their email and password.
Customizing the Login Pageβ
If you're using the Breeze theme, the login form is located at:
resources/js/Themes/Breeze/Auth/Login.vue
You can freely customize the layout, text, branding, and form logic in this file to suit your app's design and user experience.
Disabling Loginβ
To temporarily disable login for all users:
Admin Panel β Settings β Security β Disable Login
When disabled, users attempting to access the login page will be shown a locked-out message. This is useful for maintenance or invite-only periods.
Login with Usernameβ
Peak supports logging in via username in addition to email. To enable this option:
Admin Panel β Settings β Security β Enable Login with Username
Once enabled, users can authenticate using either their email address or registered username on the login screen.
Password Resetβ
Password reset functionality is powered by Laravel Fortify and can be toggled from the admin panel.
Enabling/Disabling Password Resetβ
To control whether users can request a password reset:
Admin Panel β Settings β Security β Enable Reset Password
If disabled, the βForgot Password?β link will no longer appear, and reset requests will be blocked.
Customizing Password Reset Viewsβ
You can customize the password reset flow via the following Vue files:
-
Forgot Password Form
resources/js/Themes/Breeze/Auth/ForgotPassword.vue -
Reset Password Form (token entry)
resources/js/Themes/Breeze/Auth/ResetPassword.vue
These files control the UI/UX of the reset process and can be styled or extended as needed.
Magic Loginβ
Peak supports passwordless login via a secure magic link emailed to the user.
Enabling Magic Loginβ
This feature is available by default. On the login page, users can click "Email me a link" to initiate the magic login process. A secure, one-time-use link will be sent to their registered email address, which allows them to log in without entering a password.
To enable or disable this feature:
Admin Panel β Settings β Security β Enable Magic Login
This provides a modern, user-friendly alternative to traditional password login.
Social Loginβ
Peak includes Social Login support with seamless UI-based configuration via the admin panel. No code or .env updates are required.
Enabling Social Login Providersβ
To enable or disable social login for specific platforms:
Admin Panel β Settings β Social Login
Supported providers:
- Twitter (X)
- GitHub
- GitLab
- Bitbucket
- Slack
Once enabled, users will see the corresponding social login buttons on the login page. Provider credentials (Client ID, Secret, Redirect URL) can also be managed from the same admin interface.
Admin-Controlled Authentication Settings Overviewβ
| Feature | Admin Path | Description |
|---|---|---|
| Disable Login | Settings β Security | Temporarily blocks all login attempts |
| Login with Username | Settings β Security | Enables login via username or email |
| Password Reset | Settings β Security | Enables/disables password reset option |
| Magic Login | Settings β Security | Enables passwordless login via email link |
| Social Login Providers | Settings β Social Login | Toggle support for OAuth providers |
| Edit Login/Reset UI | resources/js/Themes/Breeze/Auth/*.vue | Customize the look and feel of auth views |