diff --git a/tests/Integration/Auth/Middleware/RequirePasswordTest.php b/tests/Integration/Auth/Middleware/RequirePasswordTest.php
new file mode 100644
index 000000000000..0f13ce277f2e
--- /dev/null
+++ b/tests/Integration/Auth/Middleware/RequirePasswordTest.php
@@ -0,0 +1,101 @@
+<?php
+
+namespace Illuminate\Tests\Integration\Auth\Middleware;
+
+use Illuminate\Auth\Middleware\RequirePassword;
+use Illuminate\Contracts\Config\Repository;
+use Illuminate\Contracts\Routing\Registrar;
+use Illuminate\Contracts\Routing\UrlGenerator;
+use Illuminate\Http\Response;
+use Illuminate\Session\Middleware\StartSession;
+use Orchestra\Testbench\TestCase;
+
+class RequirePasswordTest extends TestCase
+{
+    public function testUserSeesTheWantedPageIfThePasswordWasRecentlyConfirmed()
+    {
+        $this->withoutExceptionHandling();
+
+        /** @var Registrar $router */
+        $router = $this->app->make(Registrar::class);
+
+        $router->get('test-route', function (): Response {
+            return new Response('foobar');
+        })->middleware([StartSession::class, RequirePassword::class]);
+
+        $response = $this->withSession(['auth.password_confirmed_at' => time()])->get('test-route');
+
+        $response->assertOk();
+        $response->assertSeeText('foobar');
+    }
+
+    public function testUserIsRedirectedToThePasswordConfirmRouteIfThePasswordWasNotRecentlyConfirmed()
+    {
+        $this->withoutExceptionHandling();
+
+        /** @var Registrar $router */
+        $router = $this->app->make(Registrar::class);
+
+        $router->get('password-confirm', function (): Response {
+            return new Response('foo');
+        })->name('password.confirm');
+
+        $router->get('test-route', function (): Response {
+            return new Response('foobar');
+        })->middleware([StartSession::class, RequirePassword::class]);
+
+        $response = $this->withSession(['auth.password_confirmed_at' => time() - 10801])->get('test-route');
+
+        $response->assertStatus(302);
+        $response->assertRedirect($this->app->make(UrlGenerator::class)->route('password.confirm'));
+    }
+
+    public function testUserIsRedirectedToACustomRouteIfThePasswordWasNotRecentlyConfirmedAndTheCustomRouteIsSpecified()
+    {
+        $this->withoutExceptionHandling();
+
+        /** @var Registrar $router */
+        $router = $this->app->make(Registrar::class);
+
+        $router->get('confirm', function (): Response {
+            return new Response('foo');
+        })->name('my-password.confirm');
+
+        $router->get('test-route', function (): Response {
+            return new Response('foobar');
+        })->middleware([StartSession::class, RequirePassword::class.':my-password.confirm']);
+
+        $response = $this->withSession(['auth.password_confirmed_at' => time() - 10801])->get('test-route');
+
+        $response->assertStatus(302);
+        $response->assertRedirect($this->app->make(UrlGenerator::class)->route('my-password.confirm'));
+    }
+
+    public function testAuthPasswordTimeoutIsConfigurable()
+    {
+        $this->withoutExceptionHandling();
+
+        /** @var Registrar $router */
+        $router = $this->app->make(Registrar::class);
+
+        $router->get('password-confirm', function (): Response {
+            return new Response('foo');
+        })->name('password.confirm');
+
+        $router->get('test-route', function (): Response {
+            return new Response('foobar');
+        })->middleware([StartSession::class, RequirePassword::class]);
+
+        $this->app->make(Repository::class)->set('auth.password_timeout', 500);
+
+        $response = $this->withSession(['auth.password_confirmed_at' => time() - 495])->get('test-route');
+
+        $response->assertOk();
+        $response->assertSeeText('foobar');
+
+        $response = $this->withSession(['auth.password_confirmed_at' => time() - 501])->get('test-route');
+
+        $response->assertStatus(302);
+        $response->assertRedirect($this->app->make(UrlGenerator::class)->route('password.confirm'));
+    }
+}