BitHarbor/backend/app/Providers/FortifyServiceProvider.php

<?php

namespace App\Providers;

use App\Actions\Fortify\CreateNewUser;
use App\Actions\Fortify\ResetUserPassword;
use App\Actions\Fortify\UpdateUserPassword;
use App\Actions\Fortify\UpdateUserProfileInformation;
use App\Http\Responses\ForgotPasswordFailedResponse;
use App\Http\Responses\ForgotPasswordResponse;
use App\Http\Responses\RegisterResponse;
use App\Http\Responses\ResetPasswordFailedResponse;
use App\Http\Responses\ResetPasswordResponse;
use Illuminate\Cache\RateLimiting\Limit;
use Illuminate\Http\Request;
use Illuminate\Support\Facades\RateLimiter;
use Illuminate\Support\ServiceProvider;
use Illuminate\Support\Str;
use Laravel\Fortify\Actions\RedirectIfTwoFactorAuthenticatable;
use Laravel\Fortify\Fortify;

class FortifyServiceProvider extends ServiceProvider
{
    /**
     * Register any application services.
     */
    public function register(): void
    {
        $this->app->instance(
            \Laravel\Fortify\Contracts\RegisterResponse::class,
            new RegisterResponse,
        );

        $this->app->instance(
            \Laravel\Fortify\Contracts\SuccessfulPasswordResetLinkRequestResponse::class,
            new ForgotPasswordResponse,
        );

        $this->app->instance(
            \Laravel\Fortify\Contracts\FailedPasswordResetLinkRequestResponse::class,
            new ForgotPasswordFailedResponse,
        );

        $this->app->instance(
            \Laravel\Fortify\Contracts\PasswordResetResponse::class,
            new ResetPasswordResponse,
        );

        $this->app->instance(
            \Laravel\Fortify\Contracts\FailedPasswordResetResponse::class,
            new ResetPasswordFailedResponse,
        );
    }

    /**
     * Bootstrap any application services.
     */
    public function boot(): void
    {
        Fortify::createUsersUsing(CreateNewUser::class);
        Fortify::updateUserProfileInformationUsing(UpdateUserProfileInformation::class);
        Fortify::updateUserPasswordsUsing(UpdateUserPassword::class);
        Fortify::resetUserPasswordsUsing(ResetUserPassword::class);
        Fortify::redirectUserForTwoFactorAuthenticationUsing(RedirectIfTwoFactorAuthenticatable::class);

        RateLimiter::for('login', function (Request $request) {
            $throttleKey = Str::transliterate(Str::lower($request->input(Fortify::username())).'|'.$request->ip());

            // return Limit::perMinute(5)->by($throttleKey);
            return Limit::none();
        });

        RateLimiter::for('two-factor', function (Request $request) {
            return Limit::perMinute(5)->by($request->session()->get('login.id'));
        });
    }
}