Authentication demo

Choose a login method

Compare password, Passkey, and TOTP Passcode as three independent authentication methods.

Shared secret

Password

Enter an email and a reusable password known by you and Laravel.

Laravel verifies a one-way password hash stored in the database.

Public-key signature

Passkey

Use Touch ID, Face ID, a device PIN, or a password manager. No identifier is required.

What happens

  1. Laravel sends a challenge.
  2. Your device signs it with the private key.
  3. Laravel verifies it with the public key.

The private key stays on your device and the credential is bound to this site's domain.

Time-based shared secret

TOTP Passcode

Enter your email and the current 6-digit code from an Authenticator. No password is required.

Laravel decrypts the shared secret and calculates the expected code for the current 30-second window.

No account? Create one