protect laravel using oauth code example
Example: laravel token authentication
Schema::table('users', function ($table) {
$table->string('api_token', 80)->after('password')
->unique()
->nullable()
->default(null);
});
$token = Str::random(60);
$user = User::find(1);
$user->api_token = hash('sha256', $token);
$user->save();
'guards' => [
'web' => [
'driver' => 'session',
'provider' => 'users',
],
'api' => [
'driver' => 'token',
'provider' => 'users',
'hash' => false,
],
],
Route::middleware('auth:api')->get('/user', function (Request $request) {
return $request->user();
});
axios.get('http://example.com/api/user',
{
headers: {
'Accept': 'application/json',
'Authorization': 'Bearer '+ 'user-api-token'
}
}
)
.then(function (response) {
console.log(response);
})
.catch(function (error) {
console.log(error);
})