So right now, there is no user functionality beyond the scaffolding provided by Laravel (create_users_table and create_password_resets_table respectively), and that hasn't yet been implemented into the site. We should leverage these to make + authenticate users.
How it should go:
If there is no administrator/staff user, the creation of a new user should mark them with administrator privileges.
The e-mail should be set (not null) as a username
Passwords should be confirmed and matched
Passwords should be hashed using safe security practices
Feel free to discuss how these requirements could be achieved, or if they need changing.
So right now, there is no user functionality beyond the scaffolding provided by Laravel (
create_users_table
andcreate_password_resets_table
respectively), and that hasn't yet been implemented into the site. We should leverage these to make + authenticate users.How it should go:
Feel free to discuss how these requirements could be achieved, or if they need changing.