Prueba Soporte uses Laravel Breeze for session-based authentication. All task routes — and the dashboard — are protected by theDocumentation Index
Fetch the complete documentation index at: https://mintlify.com/estebansalas94/Prueba-Soporte/llms.txt
Use this file to discover all available pages before exploring further.
auth middleware, meaning users must be logged in before they can view or manage tasks.
Route protection
The task and profile routes are wrapped in anauth middleware group in routes/web.php:
verified middleware:
Unauthenticated requests to any of the above routes are automatically redirected to
/login by Laravel’s authentication middleware.Session-based auth flow
Authentication is entirely session-based. On a successful login, Laravel creates a server-side session and issues a session cookie to the browser. Every subsequent request carries that cookie, and Laravel resolves the authenticated user from the session store without requiring tokens or additional headers.Login workflow
Visit the login page
The root URL
/ renders the Auth:Login Inertia view. The guest middleware group in routes/auth.php also exposes the login form directly at /login:Submit credentials
The form POSTs to
/login, handled by AuthenticatedSessionController@store. Laravel validates the credentials against the users table (email + hashed password).Session is created
On success, a new session is started, the user is marked as authenticated, and the browser receives a session cookie. The user is redirected to their intended destination (or
/tasks/index by default — the task.index named route as configured in AuthenticatedSessionController).Registration workflow
New accounts are created through/register, which is also behind the guest middleware so already-authenticated users cannot access it:
Password reset
Full password reset is available via the following routes, all behind theguest middleware:
Email verification
For authenticated users who have not yet verified their email, the following routes are available:Password confirmation
Sensitive operations can require the user to re-enter their current password before proceeding:Profile management
Authenticated users can manage their account through three profile endpoints:| Method | Route | Action |
|---|---|---|
GET | /profile | Show the profile edit form |
PATCH | /profile | Update name, email, or password |
DELETE | /profile | Permanently delete the account |
Logout
Logging out destroys the current session and invalidates the session cookie:Logout uses a
POST request (not GET) to protect against cross-site request forgery. Breeze includes the required CSRF token automatically in all forms.