Add the active check to the credentials used by login.
For Breeze/Fortify, edit LoginRequest::authenticate() (or Fortify’s authenticateUsing) to:

Auth::attempt(['email'=>$this->email, 'password'=>$this->password, 'active'=>1], $this->boolean('remember'));