Skip to content

quadramqs/quadram-laravel-passport

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

36 Commits
src
src
 
 
tests
tests
 
 
.gitignore
.gitignore
 
 
Readme.md
Readme.md
 
 
composer.json
composer.json
 
 
composer.lock
composer.lock
 
 
phpunit.xml
phpunit.xml
 
 

Repository files navigation

visit our website

Laravel Passport

This library install Laravel Passport library and allow to issue access tokens for authenticated users. There's no need to redirect your users to the oauth routes, just use the current user instance to get a fresh access token or refresh it.

Install the project

# require the library into your project
composer require quadram/laravel-passport

# install and configure library
php artisan quadram:laravel-passport-install

How to use

Add the LaravelPassportTrait to your user model:

use Quadram\LaravelPassport\Traits\LaravelPassportTrait;

class User extends Model
{
    use LaravelPassportTrait, Authenticatable;
    ...

And use your user instance to issue a new access token for the user:

# access token
$this->createAccessToken();

# personal access token
$this->createPersonalToken();

These calls add a new authorization field to the user instance with this structure:

    accessToken = [
        'accessToken' => '....',
        'refreshToken' => '....',
        'expires' => 123456...
    ];

Testing

When you are testing your routes to issue tokens using phpunit the Trait will respond with a test token without calling the actual oauth route provided by Passport.

If you want to test any passport related feature you should pass an Authorization header to your route.

Also the trait will use the auth user for updating and deleting tokens so remember to use "Passport::actingAs" to avoid errors.

    $user = factory(User::class)->create();
    $user->createAccessToken();

    Passport::actingAs($user);

    $headers = [
        'Authorization' => 'Bearer ' . $user->authorization['accessToken']
    ];

    $this->withHeaders($headers)
        ->json('put', '/api/sessions', ['refreshToken' => $user->authorization['refreshToken']])
        ->assertStatus(200)
        ->assertsee('authorization')
        ->assertsee('accessToken')
        ->assertsee('refreshToken');

Environment values

The default expiration times for each token can be configured using the .env file.

# Default expiration time for access tokens in minutes, default = 60 * 24 -> 1 day
# TOKEN_EXPIRES_IN_MINUTES

# Default expiration time for refresh tokens in minutes, default = 60 * 24 * 30 -> 30 days
# REFRESH_TOKEN_EXPIRES_IN_MINUTES

# Default expiration time for personal tokens in minutes, default = 60 * 24 * 30 * 12 * 100 -> 1 year
# PERSONAL_TOKEN_EXPIRES_IN_MINUTES

# Curl should verify SSL certificate when calling the server (default = false)
# PASSPORT_CURL_VERIFY_SSL

Todo Tasks

  • Basic trait to issue tokens.
  • Customize passport client to authorize the user.
  • Add function to the trait to create a user.
  • Make default routes for sessions management.

About

No description, website, or topics provided.

Resources

Readme
Activity
Custom properties

Stars

0 stars

Watchers

3 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

No packages published

Contributors 2

  •  
  •  

Languages