v4.0.0

# Laravel Authentication Log v4.0.0 Release Notes

## 🎉 Major Release - Laravel 11 & 12 Support

This is a major release that modernizes the package for Laravel 11.x and 12.x, adds numerous new features, and fixes several long-standing issues.

## ⚠️ Breaking Changes

- **Laravel 10.x support dropped**: This package now only supports Laravel 11.x and 12.x
- **PHP 8.1+ required**: Minimum PHP version is now 8.1
- **Database migration required**: Existing installations must run the upgrade migration to add new columns

## 🚀 New Features

### 1. Suspicious Activity Detection
Automatically detect and flag suspicious login patterns including:
- Multiple failed login attempts
- Rapid location changes
- Unusual login times (configurable)

**Configuration:**
```php
'suspicious' => [
    'failed_login_threshold' => 5,
    'check_unusual_times' => false,
    'usual_hours' => [9, 10, 11, 12, 13, 14, 15, 16, 17],
],
```

### 2. Session Management
Comprehensive session management capabilities:
- View active sessions
- Revoke specific sessions
- Revoke all other sessions (keep current device)
- Revoke all sessions
- Track last activity timestamp

**Usage:**
```php
$user->getActiveSessions();
$user->revokeSession($sessionId);
$user->revokeAllOtherSessions($currentDeviceId);
$user->revokeAllSessions();
```

### 3. Device Fingerprinting & Management
- Unique device identification (normalized user agent to prevent false positives)
- Device trust management
- Device naming
- Browser version normalization (prevents false "new device" notifications)

**Usage:**
```php
$user->getDevices();
$user->trustDevice($deviceId);
$user->untrustDevice($deviceId);
$user->isDeviceTrusted($deviceId);
```

### 4. Query Scopes
Powerful query scopes for filtering authentication logs:
- `successful()` - Only successful logins
- `failed()` - Only failed attempts
- `fromIp($ip)` - Filter by IP address
- `recent($hours)` - Recent logs
- `suspicious()` - Suspicious activities
- `trusted()` - Trusted devices only
- `fromDevice($deviceId)` - Specific device
- `forUser($user)` - Specific user
- `active()` - Active sessions

**Usage:**
```php
AuthenticationLog::suspicious()->recent(24)->get();
$user->authentications()->failed()->recent(1)->count();
```

### 5. Statistics & Insights
Get authentication statistics for users:
- Total logins count
- Failed attempts count
- Unique devices count
- Suspicious activities count
- Comprehensive login stats array

**Usage:**
```php
$stats = $user->getLoginStats();
$totalLogins = $user->getTotalLogins();
$failedAttempts = $user->getFailedAttempts();
$uniqueDevices = $user->getUniqueDevicesCount();
```

### 6. Rate Limiting for Notifications
Prevent notification spam with configurable rate limiting:
- Configurable max attempts per time period
- Separate limits for new device and failed login notifications
- Automatic rate limit decay

**Configuration:**
```php
'new-device' => [
    'rate_limit' => 3,
    'rate_limit_decay' => 60, // minutes
],
```

### 7. Middleware for Device Trust
Restrict access to trusted devices only:

**Usage:**
```php
Route::middleware(['auth', \Rappasoft\LaravelAuthenticationLog\Middleware\RequireTrustedDevice::class])
    ->group(function () {
        // Protected routes
    });
```

### 8. Export Functionality
Export authentication logs to CSV or JSON:

**Usage:**
```bash
php artisan authentication-log:export --format=csv --path=storage/app/logs.csv
php artisan authentication-log:export --format=json
```

### 9. Webhook Support
Send webhooks for authentication events:
- Login events
- Failed login events
- New device events
- Suspicious activity events

**Configuration:**
```php
'webhooks' => [
    [
        'url' => 'https://example.com/webhook',
        'events' => ['login', 'failed', 'new_device', 'suspicious'],
        'headers' => [
            'Authorization' => 'Bearer your-token',
        ],
    ],
],
```

### 10. Enhanced Notifications
- Support for Vonage (formerly Nexmo) SMS notifications
- Custom notification templates
- Improved email templates with better error handling

### 11. Configurable New User Threshold
Prevent false positives for new users connecting from multiple devices/locations:

**Configuration:**
```php
'new-device' => [
    'new_user_threshold_minutes' => 1, // Default: 1 minute
],
```

### 12. Session Restoration Prevention
**Fixes [#13](#13

Automatically prevents session restorations (page refreshes, remember me cookies) from creating duplicate log entries. Updates `last_activity_at` instead of creating new entries.

**Configuration:**
```php
'prevent_session_restoration_logging' => true,
'session_restoration_window_minutes' => 5,
```

## 🐛 Bug Fixes

### Fixed Issue #40 - Browser Version Updates Triggering False Notifications
**Fixes [#40](#40

Browser version updates (e.g., Safari 14.1.2 → 15.1) no longer trigger false "new device" notifications. Device fingerprinting now normalizes user agent strings by removing version numbers.

### Fixed Issue #13 - Session Restoration Logging
**Fixes [#13](#13

Session restorations (page refreshes, remember me cookies) no longer create duplicate log entries. The package now detects and handles session restorations automatically.

## ✅ Pull Requests Implemented

### PR #15 - Notification After Failed Login on New Device
**Closes [#15](#15

The package now sends new device notifications when a successful login occurs after a failed login attempt on an unknown device.

### PR #52 - Optimize Other Devices Logout Listener
**Closes [#52](#52

Already implemented. The listener filters to only active sessions using `whereNull('logout_at')`.

### PR #57 - Use Null Safe/Chaining Operator
**Closes [#57](#57

Already implemented. The codebase uses null-safe operators (`?->`) instead of `optional()`.

### PR #80 - Added PHPDocs for IDE Autocompletion
**Closes [#80](#80

Already implemented. The `AuthenticationLog` model includes PHPDoc comments for all properties including new fields.

### PR #85 - Configurable New User Threshold
**Closes [#85](#85

Added `new_user_threshold_minutes` configuration option to reduce false positives for users connecting from multiple devices/locations shortly after registration.

### PR #92 - Configurable Listeners
**Closes [#92](#92

Already implemented. The config file includes configurable listeners for all authentication events.

### PR #94 - Check Trait Implementation
**Closes [#94](#94

Already implemented. All listeners check if the user model implements the `AuthenticationLoggable` trait before processing.

### PR #100 - Laravel 11 Support
**Closes [#100](#100

Package now supports Laravel 11.x and 12.x.

### PR #115 - Check if GeoIP is Installed
**Closes [#115](#115

Config defaults now check if geoip function exists before enabling location tracking, preventing errors when the geoip package is not installed.

### PR #120 - Laravel 12 Support & Arabic Translation
**Closes [#120](#120

Laravel 12 support added and Arabic translation (`ar.json`) included.

### PR #125 - Test Configuration Updates
**Closes [#125](#125

Test configuration updated for Laravel 11+ support.

### PR #127 - Spanish Translation & Blade Fixes
**Closes [#127](#127

Spanish translation (`es_ES.json`) exists and blade templates use the null coalescing operator (`??`) for state/country fields.

## 📝 Pull Requests No Longer Applicable

### PR #70 - Laravel 10 Support
**Closes [#70](#70

No longer applicable. Package v4.0.0 dropped Laravel 10 support and now only supports Laravel 11.x and 12.x.

## 📚 Documentation

- Comprehensive upgrade guide added
- All new features documented
- Configuration examples updated
- Usage examples for all new features

## 🧪 Testing

- **76 tests passing** (146 assertions)
- Comprehensive test coverage for all new features
- Tests for session restoration prevention
- Tests for device fingerprinting normalization
- Tests for suspicious activity detection
- Tests for all query scopes and statistics

## 📦 Installation & Upgrade

### New Installation
```bash
composer require rappasoft/laravel-authentication-log
php artisan vendor:publish --provider="Rappasoft\LaravelAuthenticationLog\LaravelAuthenticationLogServiceProvider"
php artisan migrate
```

### Upgrading from v3.x
```bash
composer update rappasoft/laravel-authentication-log
php artisan vendor:publish --provider="Rappasoft\LaravelAuthenticationLog\LaravelAuthenticationLogServiceProvider" --tag="authentication-log-migrations"
php artisan migrate
```

The upgrade migration will safely add new columns to your existing `authentication_log` table without data loss.

## 🙏 Credits

Thank you to all contributors who submitted issues, pull requests, and feedback that made this release possible!

## 📖 Full Documentation

See the [documentation](https://rappasoft.com/docs/laravel-authentication-log) for complete usage instructions and examples.

---

**Note:** This release includes breaking changes. Please review the upgrade guide before upgrading from v3.x.

Author: rappasoft

README.md

@@ -3,28 +3,253 @@
 [![Latest Version on Packagist](https://img.shields.io/packagist/v/rappasoft/laravel-authentication-log.svg?style=flat-square)](https://packagist.org/packages/rappasoft/laravel-authentication-log)
 [![Total Downloads](https://img.shields.io/packagist/dt/rappasoft/laravel-authentication-log.svg?style=flat-square)](https://packagist.org/packages/rappasoft/laravel-authentication-log)
 
-Laravel Authentication Log is a package which tracks your user's authentication information such as login/logout time, IP, Browser, Location, etc. as well as sends out notifications via mail, slack, or sms for new devices and failed logins.
+Laravel Authentication Log is a comprehensive package which tracks your user's authentication information such as login/logout time, IP, Browser, Location, Device Fingerprint, etc. It sends out notifications via mail, slack, or SMS for new devices and failed logins, detects suspicious activity, provides session management, and much more.
+
+## Features
+
+### Core Features
+- ✅ **Authentication Logging** - Tracks all login/logout attempts with IP, user agent, location, and timestamps
+- ✅ **Device Fingerprinting** - Reliable device identification using SHA-256 hashing
+- ✅ **New Device Detection** - Automatically detects and notifies users of new device logins
+- ✅ **Failed Login Tracking** - Logs and optionally notifies users of failed login attempts
+- ✅ **Location Tracking** - Optional GeoIP integration for location data
+
+### Advanced Features
+- 🔒 **Suspicious Activity Detection** - Automatically detects multiple failed logins, rapid location changes, and unusual login times
+- 📊 **Statistics & Insights** - Get comprehensive login statistics including total logins, failed attempts, unique devices, and more
+- 🔐 **Session Management** - View active sessions, revoke specific sessions, or logout all other devices
+- 🛡️ **Device Trust Management** - Mark devices as trusted, manage device names, and require trusted devices for sensitive actions
+- ⚡ **Rate Limiting** - Prevents notification spam with configurable rate limits
+- 🔔 **Webhook Support** - Send webhooks to external services for authentication events
+- 📤 **Export Functionality** - Export authentication logs to CSV or JSON format
+- 🎯 **Query Scopes** - Powerful query scopes for filtering logs (successful, failed, suspicious, recent, by IP, by device, etc.)
+- 🚦 **Middleware** - Protect routes with trusted device middleware
 
 ## Documentation, Installation, and Usage Instructions
 
 See the [documentation](https://rappasoft.com/docs/laravel-authentication-log) for detailed installation and usage instructions.
 
 ## Version Compatibility
 
- Laravel  | Authentication Log
-:---------|:------------------
- 8.x      | 1.x
- 9.x      | 2.x
- 10.x     | 3.x
- 11.x     | 4.x
- 12.x     | 5.x
+ Laravel  | Authentication Log | Features
+:---------|:------------------|:--------
+ 8.x      | 1.x               | Basic logging only
+ 9.x      | 2.x               | Basic logging only
+ 10.x     | 3.x               | Basic logging only
+ 11.x     | 4.x               | All features (device fingerprinting, suspicious activity, webhooks, etc.)
+ 12.x     | 4.x               | All features (device fingerprinting, suspicious activity, webhooks, etc.)
+
+**Note:** Version 4.x requires Laravel 11.x or 12.x. For Laravel 10.x support, please use version 3.x.
 
 ## Installation
 
 ```bash
 composer require rappasoft/laravel-authentication-log
 ```
 
+## Quick Start
+
+### 1. Add the Trait to Your User Model
+
+```php
+use Rappasoft\LaravelAuthenticationLog\Traits\AuthenticationLoggable;
+
+class User extends Authenticatable
+{
+    use AuthenticationLoggable;
+}
+```
+
+### 2. Publish and Run Migrations
+
+**For new installations:**
+```bash
+php artisan vendor:publish --provider="Rappasoft\LaravelAuthenticationLog\LaravelAuthenticationLogServiceProvider" --tag="authentication-log-migrations"
+php artisan migrate
+```
+
+**For existing installations (upgrading from v3.x or earlier):**
+```bash
+# Update the package
+composer update rappasoft/laravel-authentication-log
+
+# Publish the upgrade migration
+php artisan vendor:publish --provider="Rappasoft\LaravelAuthenticationLog\LaravelAuthenticationLogServiceProvider" --tag="authentication-log-migrations"
+
+# Run the migrations (the upgrade migration will only add columns if they don't exist)
+php artisan migrate
+```
+
+The upgrade migration will safely add the new columns (`device_id`, `device_name`, `is_trusted`, `last_activity_at`, `is_suspicious`, `suspicious_reason`) to your existing `authentication_log` table without affecting existing data.
+
+### 3. Configure (Optional)
+
+```bash
+php artisan vendor:publish --provider="Rappasoft\LaravelAuthenticationLog\LaravelAuthenticationLogServiceProvider" --tag="authentication-log-config"
+```
+
+## Usage Examples
+
+### Get User Statistics
+
+```php
+$user = User::find(1);
+
+// Get comprehensive statistics
+$stats = $user->getLoginStats();
+// Returns: total_logins, failed_attempts, unique_devices, unique_ips, last_30_days, etc.
+
+// Or get individual stats
+$totalLogins = $user->getTotalLogins();
+$failedAttempts = $user->getFailedAttempts();
+$uniqueDevices = $user->getUniqueDevicesCount();
+```
+
+### Session Management
+
+```php
+// Get all active sessions
+$activeSessions = $user->getActiveSessions();
+$sessionCount = $user->getActiveSessionsCount();
+
+// Revoke a specific session
+$user->revokeSession($sessionId);
+
+// Revoke all other sessions (keep current device)
+$user->revokeAllOtherSessions($currentDeviceId);
+
+// Revoke all sessions
+$user->revokeAllSessions();
+```
+
+### Device Management
+
+```php
+// Get all user devices
+$devices = $user->getDevices();
+
+// Trust a device
+$user->trustDevice($deviceId);
+
+// Untrust a device
+$user->untrustDevice($deviceId);
+
+// Update device name
+$user->updateDeviceName($deviceId, 'My iPhone');
+
+// Check if device is trusted
+if ($user->isDeviceTrusted($deviceId)) {
+    // Device is trusted
+}
+```
+
+### Query Scopes
+
+```php
+use Rappasoft\LaravelAuthenticationLog\Models\AuthenticationLog;
+
+// Filter successful logins
+$successfulLogins = AuthenticationLog::successful()->get();
+
+// Filter failed logins
+$failedLogins = AuthenticationLog::failed()->get();
+
+// Filter by IP address
+$ipLogs = AuthenticationLog::fromIp('192.168.1.1')->get();
+
+// Filter recent logs (last 7 days)
+$recentLogs = AuthenticationLog::recent(7)->get();
+
+// Filter suspicious activities
+$suspicious = AuthenticationLog::suspicious()->get();
+
+// Filter active sessions
+$activeSessions = AuthenticationLog::active()->get();
+
+// Filter trusted devices
+$trustedDevices = AuthenticationLog::trusted()->get();
+
+// Filter by device ID
+$deviceLogs = AuthenticationLog::fromDevice($deviceId)->get();
+
+// Filter for specific user
+$userLogs = AuthenticationLog::forUser($user)->get();
+```
+
+### Suspicious Activity Detection
+
+```php
+// Detect suspicious activity
+$suspiciousActivities = $user->detectSuspiciousActivity();
+
+// Returns array of suspicious activities:
+// [
+//     [
+//         'type' => 'multiple_failed_logins',
+//         'count' => 5,
+//         'message' => '5 failed login attempts in the last hour'
+//     ],
+//     [
+//         'type' => 'rapid_location_change',
+//         'countries' => ['US', 'UK'],
+//         'message' => 'Login from multiple countries within an hour'
+//     ]
+// ]
+```
+
+### Middleware for Trusted Devices
+
+```php
+// In your routes file
+Route::middleware(['auth', 'device.trusted'])->group(function () {
+    // These routes require a trusted device
+    Route::get('/sensitive-action', [Controller::class, 'sensitiveAction']);
+});
+```
+
+### Export Logs
+
+```bash
+# Export all logs to CSV
+php artisan authentication-log:export --format=csv
+
+# Export logs from last 30 days
+php artisan authentication-log:export --format=csv --days=30
+
+# Export logs for specific user
+php artisan authentication-log:export --format=json --user=1
+
+# Specify output file
+php artisan authentication-log:export --format=csv --output=logs.csv
+```
+
+### Webhook Configuration
+
+Add webhooks to your `config/authentication-log.php`:
+
+```php
+'webhooks' => [
+    [
+        'url' => 'https://example.com/webhook',
+        'events' => ['login', 'failed', 'new_device', 'suspicious'],
+        'headers' => [
+            'Authorization' => 'Bearer your-token',
+        ],
+    ],
+],
+```
+
+## Configuration
+
+The package includes comprehensive configuration options:
+
+- **Notifications** - Configure new device and failed login notifications with rate limiting
+- **Suspicious Activity** - Configure thresholds and detection rules
+- **Webhooks** - Set up webhook endpoints for external integrations
+- **Database** - Customize table name and database connection
+
+See the [configuration documentation](https://rappasoft.com/docs/laravel-authentication-log/start/configuration) for all available options.
+
 ## Testing
 
 ```bash