laravel
diff --git a/‎.github/workflows/databases.yml
Lines changed: 47 additions & 47 deletions b/‎.github/workflows/databases.yml
Lines changed: 47 additions & 47 deletions
diff --git a/‎CHANGELOG.md
Lines changed: 25 additions & 1 deletion b/‎CHANGELOG.md
Lines changed: 25 additions & 1 deletion
diff --git a/‎src/Illuminate/Auth/AuthManager.php
Lines changed: 1 addition & 0 deletions b/‎src/Illuminate/Auth/AuthManager.php
Lines changed: 1 addition & 0 deletions
diff --git a/‎src/Illuminate/Auth/Passwords/PasswordBroker.php
Lines changed: 76 additions & 36 deletions b/‎src/Illuminate/Auth/Passwords/PasswordBroker.php
Lines changed: 76 additions & 36 deletions
diff --git a/‎src/Illuminate/Auth/Passwords/PasswordBrokerManager.php
Lines changed: 1 addition & 0 deletions b/‎src/Illuminate/Auth/Passwords/PasswordBrokerManager.php
Lines changed: 1 addition & 0 deletions
@@ -293,53 +293,53 @@ jobs:
           DB_USERNAME: SA
           DB_PASSWORD: Forge123
 
-  # mssql_2017:
-  #   runs-on: ubuntu-20.04
-  #   timeout-minutes: 5
-
-  #   services:
-  #     sqlsrv:
-  #       image: mcr.microsoft.com/mssql/server:2017-latest
-  #       env:
-  #         ACCEPT_EULA: Y
-  #         SA_PASSWORD: Forge123
-  #       ports:
-  #         - 1433:1433
-
-  #   strategy:
-  #     fail-fast: true
-
-  #   name: SQL Server 2017
-
-  #   steps:
-  #     - name: Checkout code
-  #       uses: actions/checkout@v4
-
-  #     - name: Setup PHP
-  #       uses: shivammathur/setup-php@v2
-  #       with:
-  #         php-version: 8.3
-  #         extensions: dom, curl, libxml, mbstring, zip, pcntl, sqlsrv, pdo, pdo_sqlsrv, odbc, pdo_odbc, :php-psr
-  #         tools: composer:v2
-  #         coverage: none
-
-  #     - name: Set Framework version
-  #       run: composer config version "13.x-dev"
-
-  #     - name: Install dependencies
-  #       uses: nick-fields/retry@v3
-  #       with:
-  #         timeout_minutes: 5
-  #         max_attempts: 5
-  #         command: composer update --prefer-stable --prefer-dist --no-interaction --no-progress
-
-  #     - name: Execute tests
-  #       run: vendor/bin/phpunit tests/Integration/Database
-  #       env:
-  #         DB_CONNECTION: sqlsrv
-  #         DB_DATABASE: master
-  #         DB_USERNAME: SA
-  #         DB_PASSWORD: Forge123
+  mssql_2017:
+    runs-on: ubuntu-22.04
+    timeout-minutes: 5
+
+    services:
+      sqlsrv:
+        image: mcr.microsoft.com/mssql/server:2017-latest
+        env:
+          ACCEPT_EULA: Y
+          SA_PASSWORD: Forge123
+        ports:
+          - 1433:1433
+
+    strategy:
+      fail-fast: true
+
+    name: SQL Server 2017
+
+    steps:
+      - name: Checkout code
+        uses: actions/checkout@v4
+
+      - name: Setup PHP
+        uses: shivammathur/setup-php@v2
+        with:
+          php-version: 8.3
+          extensions: dom, curl, libxml, mbstring, zip, pcntl, sqlsrv, pdo, pdo_sqlsrv, odbc, pdo_odbc, :php-psr
+          tools: composer:v2
+          coverage: none
+
+      - name: Set Framework version
+        run: composer config version "13.x-dev"
+
+      - name: Install dependencies
+        uses: nick-fields/retry@v3
+        with:
+          timeout_minutes: 5
+          max_attempts: 5
+          command: composer update --prefer-stable --prefer-dist --no-interaction --no-progress
+
+      - name: Execute tests
+        run: vendor/bin/phpunit tests/Integration/Database
+        env:
+          DB_CONNECTION: sqlsrv
+          DB_DATABASE: master
+          DB_USERNAME: SA
+          DB_PASSWORD: Forge123
 
   sqlite:
     runs-on: ubuntu-24.04
 
@@ -1,6 +1,30 @@
 # Release Notes for 12.x
 
-## [Unreleased](https://github.com/laravel/framework/compare/v12.13.0...12.x)
+## [Unreleased](https://github.com/laravel/framework/compare/v12.14.0...12.x)
+
+## [v12.14.0](https://github.com/laravel/framework/compare/v12.13.0...v12.14.0) - 2025-05-13
+
+* [12.x] Support `useCurrent` on date and year column types by [@nicholasbrantley](https://github.com/nicholasbrantley) in https://github.com/laravel/framework/pull/55619
+* [12.x] Update "Number::fileSize" to use correct prefix and add prefix param by [@Boy132](https://github.com/Boy132) in https://github.com/laravel/framework/pull/55678
+* [12.x] Update PHPDoc for whereRaw to allow Expression as $sql by [@mitoop](https://github.com/mitoop) in https://github.com/laravel/framework/pull/55674
+* Revert "[12.x] Make Blueprint Resolver Statically" by [@taylorotwell](https://github.com/taylorotwell) in https://github.com/laravel/framework/pull/55690
+* [12.x] Support Virtual Properties When Serializing Models by [@beschoenen](https://github.com/beschoenen) in https://github.com/laravel/framework/pull/55691
+* [12.X] Fix `Http::preventStrayRequests` error propagation when using `Http::pool` by [@LeTamanoir](https://github.com/LeTamanoir) in https://github.com/laravel/framework/pull/55689
+* [12.x] incorrect use of generics in Schema\Builder by [@taka-oyama](https://github.com/taka-oyama) in https://github.com/laravel/framework/pull/55687
+* [12.x] Add option to disable MySQL ssl when restoring or squashing migrations by [@andersonls](https://github.com/andersonls) in https://github.com/laravel/framework/pull/55683
+* [12.x] Add `except` and `exceptHidden` methods to `Context` class by [@xurshudyan](https://github.com/xurshudyan) in https://github.com/laravel/framework/pull/55692
+* [12.x] Container `currentlyResolving` utility by [@jrseliga](https://github.com/jrseliga) in https://github.com/laravel/framework/pull/55684
+* [12.x] Container `currentlyResolving` test by [@jrseliga](https://github.com/jrseliga) in https://github.com/laravel/framework/pull/55694
+* [12.x] Fix handling of default values for route parameters with a binding field by [@stancl](https://github.com/stancl) in https://github.com/laravel/framework/pull/55697
+* Move Timebox for Authentication and add to password resets by [@valorin](https://github.com/valorin) in https://github.com/laravel/framework/pull/55701
+* [12.x] perf: Optimize BladeCompiler by [@rzv-me](https://github.com/rzv-me) in https://github.com/laravel/framework/pull/55703
+* [12.x] perf: support iterables for event discovery paths by [@calebdw](https://github.com/calebdw) in https://github.com/laravel/framework/pull/55699
+* [12.x] Types: AuthorizesRequests::resourceAbilityMap by [@liamduckett](https://github.com/liamduckett) in https://github.com/laravel/framework/pull/55706
+* [12.x] Add flexible support to memoized cache store by [@timacdonald](https://github.com/timacdonald) in https://github.com/laravel/framework/pull/55709
+* [12.x] Introduce Arr::from() by [@daniser](https://github.com/daniser) in https://github.com/laravel/framework/pull/55715
+* [12.x] Fix the `getCurrentlyAttachedPivots` wrong `morphClass` for morph to many relationships by [@amir9480](https://github.com/amir9480) in https://github.com/laravel/framework/pull/55721
+* [12.x] Improve typehints for Http classes by [@cosmastech](https://github.com/cosmastech) in https://github.com/laravel/framework/pull/54783
+* Add deleteWhen for throttle exceptions job middleware by [@moshe-autoleadstar](https://github.com/moshe-autoleadstar) in https://github.com/laravel/framework/pull/55718
 
 ## [v12.13.0](https://github.com/laravel/framework/compare/v12.12.0...v12.13.0) - 2025-05-07
 
 
@@ -126,6 +126,7 @@ public function createSessionDriver($name, $config)
             $this->createUserProvider($config['provider'] ?? null),
             $this->app['session.store'],
             rehashOnLogin: $this->app['config']->get('hashing.rehash_on_login', true),
+            timeboxDuration: $this->app['config']->get('auth.timebox_duration', 200000),
         );
 
         // When using the remember me functionality of the authentication services we
 
@@ -9,6 +9,7 @@
 use Illuminate\Contracts\Auth\UserProvider;
 use Illuminate\Contracts\Events\Dispatcher;
 use Illuminate\Support\Arr;
+use Illuminate\Support\Timebox;
 use UnexpectedValueException;
 
 class PasswordBroker implements PasswordBrokerContract
@@ -34,18 +35,41 @@ class PasswordBroker implements PasswordBrokerContract
      */
     protected $events;
 
+    /**
+     * The timebox instance.
+     *
+     * @var \Illuminate\Support\Timebox
+     */
+    protected $timebox;
+
+    /**
+     * The number of microseconds that the timebox should wait for.
+     *
+     * @var int
+     */
+    protected $timeboxDuration;
+
     /**
      * Create a new password broker instance.
      *
      * @param  \Illuminate\Auth\Passwords\TokenRepositoryInterface  $tokens
      * @param  \Illuminate\Contracts\Auth\UserProvider  $users
      * @param  \Illuminate\Contracts\Events\Dispatcher|null  $dispatcher
+     * @param  \Illuminate\Support\Timebox|null  $timebox
+     * @param  int  $timeboxDuration
      */
-    public function __construct(#[\SensitiveParameter] TokenRepositoryInterface $tokens, UserProvider $users, ?Dispatcher $dispatcher = null)
-    {
+    public function __construct(
+        #[\SensitiveParameter] TokenRepositoryInterface $tokens,
+        UserProvider $users,
+        ?Dispatcher $dispatcher = null,
+        ?Timebox $timebox = null,
+        int $timeboxDuration = 200000,
+    ) {
         $this->users = $users;
         $this->tokens = $tokens;
         $this->events = $dispatcher;
+        $this->timebox = $timebox ?: new Timebox;
+        $this->timeboxDuration = $timeboxDuration;
     }
 
     /**
@@ -57,33 +81,35 @@ public function __construct(#[\SensitiveParameter] TokenRepositoryInterface $tok
      */
     public function sendResetLink(#[\SensitiveParameter] array $credentials, ?Closure $callback = null)
     {
-        // First we will check to see if we found a user at the given credentials and
-        // if we did not we will redirect back to this current URI with a piece of
-        // "flash" data in the session to indicate to the developers the errors.
-        $user = $this->getUser($credentials);
+        return $this->timebox->call(function () use ($credentials, $callback) {
+            // First we will check to see if we found a user at the given credentials and
+            // if we did not we will redirect back to this current URI with a piece of
+            // "flash" data in the session to indicate to the developers the errors.
+            $user = $this->getUser($credentials);
 
-        if (is_null($user)) {
-            return static::INVALID_USER;
-        }
+            if (is_null($user)) {
+                return static::INVALID_USER;
+            }
 
-        if ($this->tokens->recentlyCreatedToken($user)) {
-            return static::RESET_THROTTLED;
-        }
+            if ($this->tokens->recentlyCreatedToken($user)) {
+                return static::RESET_THROTTLED;
+            }
 
-        $token = $this->tokens->create($user);
+            $token = $this->tokens->create($user);
 
-        if ($callback) {
-            return $callback($user, $token) ?? static::RESET_LINK_SENT;
-        }
+            if ($callback) {
+                return $callback($user, $token) ?? static::RESET_LINK_SENT;
+            }
 
-        // Once we have the reset token, we are ready to send the message out to this
-        // user with a link to reset their password. We will then redirect back to
-        // the current URI having nothing set in the session to indicate errors.
-        $user->sendPasswordResetNotification($token);
+            // Once we have the reset token, we are ready to send the message out to this
+            // user with a link to reset their password. We will then redirect back to
+            // the current URI having nothing set in the session to indicate errors.
+            $user->sendPasswordResetNotification($token);
 
-        $this->events?->dispatch(new PasswordResetLinkSent($user));
+            $this->events?->dispatch(new PasswordResetLinkSent($user));
 
-        return static::RESET_LINK_SENT;
+            return static::RESET_LINK_SENT;
+        }, $this->timeboxDuration);
     }
 
     /**
@@ -95,25 +121,29 @@ public function sendResetLink(#[\SensitiveParameter] array $credentials, ?Closur
      */
     public function reset(#[\SensitiveParameter] array $credentials, Closure $callback)
     {
-        $user = $this->validateReset($credentials);
+        return $this->timebox->call(function ($timebox) use ($credentials, $callback) {
+            $user = $this->validateReset($credentials);
 
-        // If the responses from the validate method is not a user instance, we will
-        // assume that it is a redirect and simply return it from this method and
-        // the user is properly redirected having an error message on the post.
-        if (! $user instanceof CanResetPasswordContract) {
-            return $user;
-        }
+            // If the responses from the validate method is not a user instance, we will
+            // assume that it is a redirect and simply return it from this method and
+            // the user is properly redirected having an error message on the post.
+            if (! $user instanceof CanResetPasswordContract) {
+                return $user;
+            }
 
-        $password = $credentials['password'];
+            $password = $credentials['password'];
 
-        // Once the reset has been validated, we'll call the given callback with the
-        // new password. This gives the user an opportunity to store the password
-        // in their persistent storage. Then we'll delete the token and return.
-        $callback($user, $password);
+            // Once the reset has been validated, we'll call the given callback with the
+            // new password. This gives the user an opportunity to store the password
+            // in their persistent storage. Then we'll delete the token and return.
+            $callback($user, $password);
 
-        $this->tokens->delete($user);
+            $this->tokens->delete($user);
+
+            $timebox->returnEarly();
 
-        return static::PASSWORD_RESET;
+            return static::PASSWORD_RESET;
+        }, $this->timeboxDuration);
     }
 
     /**
@@ -199,4 +229,14 @@ public function getRepository()
     {
         return $this->tokens;
     }
+
+    /**
+     * Get the timebox instance used by the guard.
+     *
+     * @return \Illuminate\Support\Timebox
+     */
+    public function getTimebox()
+    {
+        return $this->timebox;
+    }
 }
@@ -70,6 +70,7 @@ protected function resolve($name)
             $this->createTokenRepository($config),
             $this->app['auth']->createUserProvider($config['provider'] ?? null),
             $this->app['events'] ?? null,
+            timeboxDuration: $this->app['config']->get('auth.timebox_duration', 200000),
         );
     }
Original file line number	Diff line number	Diff line change
`@@ -70,6 +70,7 @@ protected function resolve($name)`
`70`	`70`	`$this->createTokenRepository($config),`
`71`	`71`	`$this->app['auth']->createUserProvider($config['provider'] ?? null),`
`72`	`72`	`$this->app['events'] ?? null,`
	`73`	`+ timeboxDuration: $this->app['config']->get('auth.timebox_duration', 200000),`
`73`	`74`	`);`
`74`	`75`	`}`
`75`	`76`