## Summary - Enables `MustVerifyEmail` on the `User` model so new users must verify their email before accessing protected routes - Unverified users are redirected to `/email/verify` when attempting to access routes behind the `verified` middleware (subscribe, onboarding, dashboard) - A verification email is automatically sent on registration via Fortify ## Screenshot  ## Video https://github.com/whisper-money/whisper-money/raw/mail-verification/storage/videos/ac0945c527f014b9cd657f18c911f496.webm ## Test plan - [x] New test: registration sends a `VerifyEmail` notification - [x] New test: newly registered users have `email_verified_at` as null - [x] New test: unverified users are redirected to `verification.notice` from protected routes (subscribe, onboarding, dashboard) - [x] New test: verified users are not redirected to verification notice - [x] Existing email verification and notification tests still pass (31 auth tests, 52 settings tests) - [x] Browser walkthrough: registration → redirected to `/email/verify` page with "Resend verification email" button |
||
|---|---|---|
| .. | ||
| app | ||
| framework | ||
| local | ||
| logs | ||
| videos | ||