using #laravel #socialstream to authenticate users. as they use a social login, they have no password, which seems to break "remember me" since AuthenticateSession validates that the passwordHash is not empty. setting a default password fixes this but feels like a security fail