pragmarx/google2fa-laravel
Laravel bridge for pragmarx/google2fa: generate QR codes and verify HOTP/TOTP (RFC 4226/6238) two-factor authentication codes compatible with Google Authenticator and similar apps. Includes config, middleware-friendly integration, and optional recovery codes via separate package.
Architecture fit is strong for legacy Laravel versions (5.x-8.x) but critically misaligned with modern stacks. The package uses standard Laravel service provider/facade patterns and middleware integration, but its last release was in 2020 with no updates since. Compatibility with Laravel 9+/10 is unverified despite the README claiming support up to 10.x. Key technical risks include: PHP 8.1+ incompatibility (package restricts to PHP 7.0-8.0 while Laravel 10 requires 8.1+), zero dependents indicating real-world adoption issues, and potential unpatched security vulnerabilities in the TOTP implementation (RFC 6238 compliance is theoretical without active maintenance). Critical questions: 1) Has this been tested with Laravel 10 and PHP 8.1+? 2) Are there known security flaws in the 2020 codebase? 3) Is there an actively maintained fork or replacement (e.g., laravel/two-factor-authentication)?
Stack fit is limited to outdated environments. For Laravel 5.2-8.x on PHP 7.0-8.0, integration is feasible via Composer and standard Laravel mechanics (middleware, config publishing). However, modern stacks (Laravel 9+/10, PHP 8.1+) are incompatible due to PHP version constraints and framework changes. Migration path requires either downgrading Laravel (not recommended) or replacing with a maintained alternative like laravel/two-factor-authentication. Sequencing should prioritize: 1) Verify current Laravel/PHP versions, 2) If incompatible, immediately evaluate alternatives, 3) Only proceed with legacy stacks if no other options exist and
How can I help you explore Laravel packages today?