I am using Laravel 6.x to create an http only cookie (so that it cannot be tampered client side via javascript for instance).
I am using some logic with two-factor in
