Skip to main content
Nova utilizes Laravel Fortify and offers two-factor authentication, email address verification, and password confirmation. By default, these features are not enabled but can be enabled with just a few changes to your application’s app/Providers/NovaServiceProvider.php file.

Using Nova as Your Application’s Default Login

Sometimes you might want to use Nova as the default authentication UI for your application. To accomplish this, you should enable Nova’s authentication and password reset routes within the routes method of your application’s App\Providers\NovaServiceProvider class:

Using Custom Authentication Routes

Alternatively, you can disable Nova’s authentication and password reset routes and instead provide Nova with your application’s own authentication route paths. This will instruct Nova where to redirect unauthenticated users:

Enabling Passkey Authentication

To allow your users to authenticate with passkey authentication, you will need to update your application’s User model and App\Providers\NovaServiceProvider service provider. First, add the Laravel\Fortify\PasskeyAuthenticatable trait and Laravel\Fortify\Contracts\PasskeyUser interface to your application’s User model:
Next, update the features method in your application’s App\Providers\NovaServiceProvider class to enable passkey authentication:
Finally, run the nova:publish Artisan command to publish the required Fortify migrations. Then, run the migrate command:
Once completed, Nova users will be able to access a new User Security page from the User Menu. Please refer to Fortify’s passkey authentication documentation for more information.

Enabling Two Factor Authentication

To allow your users to authenticate with two-factor authentication, you will need to update your application’s User model and App\Providers\NovaServiceProvider service provider. First, add the Laravel\Fortify\TwoFactorAuthenticatable trait to your application’s User model:
Next, update the features method in your application’s App\Providers\NovaServiceProvider class to enable two-factor authentication:
Finally, run the nova:publish Artisan command to publish the required Fortify migrations. Then, run the migrate command:
Once completed, Nova users will be able to access a new User Security page from the User Menu. Please refer to Fortify’s two-factor authentication documentation for more information.

Enabling Email Verification

Nova also includes support for requiring email verification for newly registered users. To enable this feature, you should uncomment the relevant entry in the features configuration item in the fortify method of your application’s App\Provider\NovaServiceProvider class:
Next, you should ensure that your User model implements the Illuminate\Contracts\Auth\MustVerifyEmail interface:
Finally, to secure the Nova page from being used by unverified users, you can add the Laravel\Nova\Http\Middleware\EnsureEmailIsVerified middleware to the api_middleware configuration key in your application’s config/nova.php configuration file: