# Auth Fields Checklist

## Identifier Fields
- Email mode:
  - `auth_type = email`
  - `auth` must be valid email
- Phone mode:
  - `auth_type = phone`
  - `auth` must be numeric phone value
  - `phone_code` required and exists in countries
  - phone length must respect country `phone_limit`

## Auth Method Fields
- Password mode:
  - `password` required on login/register as needed
  - password reset endpoints remain available
- OTP mode:
  - send OTP endpoint required
  - verify OTP endpoint required
  - OTP code validation required (`digits_between:4,6` pattern or project standard)

## Config/Enum Checks
- `config/user_types.php` entry exists for new type
- `UserTypeEnum` includes case for new type
- auth type in config matches identifier selected

## Route Checks
- Route file generated in correct scope path
- Auth and profile routes registered in bootstrap routing
- Middleware alias entry exists for new type

## Final Verification
- `php -l` on changed files
- Smoke test login/register/send/verify/reset based on selected mode
