Streamline API Authentication with Laravel API Auth! This simple and configurable package provides an easy solution for managing API authentication in Laravel applications using Laravel Sanctum. It includes features for user registration, login, logout, and retrieving current user data, all with standardized JSON responses.
- Features
- Requirements
- Installation
- Configuration
- API Endpoints
- Usage Examples
- Documentation
- Contributing
- License
- Contact
- Seamless User Authentication: Easily manage user authentication using Laravel Sanctum.
- Standardized JSON Responses: Consistent response structure for all API interactions, simplifying error handling and data management.
- Flexible Configuration: Customize response formats and API settings according to your application's needs.
Ensure your project meets the following requirements before using this package:
- Laravel Framework: Version 9.0 or higher.
- PHP: Version 8.0 or higher.
- Composer: PHP dependency manager.
To integrate the Laravel API Auth into your Laravel project, follow these steps:
- Install via Composer:
Run the following command in your terminal:
composer require danilowa/laravel-api-auth
- Publish the Configuration (Optional):
After installation, publish the configuration file:
php artisan vendor:publish --provider="Danilowa\LaravelApiAuth\Providers\ApiAuthServiceProvider"
This will create a configuration file at config/apiauth.php
, where you can customize the package settings.
The package configuration can be found in the config/apiauth.php
file. This file allows you to customize various aspects of the API authentication system according to your project's needs.
-
Route Prefix:
route_prefix
: Allows you to define a custom prefix for all authentication routes. By default, it's set toauth
. You can customize this via theAPI_AUTH_ROUTE_PREFIX
environment variable, making it easy to change tov1/auth
, for example.
-
User Model Configuration:
user_model
: Specify the class name of the user model that will be used for authentication. The default isApp\Models\User::class
. If you have a custom user model, change this value accordingly.
-
Token Settings:
default_token_name
: Defines the default name for the access tokens generated during registration or login. You can use a different name for each token if desired.
-
Token Revocation Strategy:
revoke_all_tokens
: A boolean value that determines whether all tokens for a user should be revoked upon logout. If set totrue
, all tokens will be revoked; iffalse
, only the current token will be revoked.
-
Customizable Messages:
messages
: Allows you to customize the messages returned during the authentication process. For example, you can modify messages like "User created successfully!" to fit your communication style.
-
Validation Rules:
validation
: Defines the validation rules for login and registration requests. You can adjust these rules to meet your application's policies, including format requirements for email or password strength.
return [
'route_prefix' => env('API_AUTH_ROUTE_PREFIX', 'auth'),
'user_model' => 'App\Models\User::class',
'default_token_name' => 'default_token',
'revoke_all_tokens' => true,
'messages' => [
'user_created' => 'User created successfully!',
'user_logged_in' => 'User logged in!',
'credentials_incorrect' => 'The provided credentials are incorrect.',
'tokens_revoked' => 'Tokens revoked successfully!',
'default_error' => 'An error occurred.',
],
'validation' => [
'login' => [
'rules' => [
'email' => 'required|email',
'password' => 'required|string',
],
],
'registration' => [
'rules' => [
'name' => 'required|string|max:255',
'email' => 'required|email|unique:users',
'password' => 'required|string|min:8',
'token_name' => 'nullable|string',
],
],
],
];
This package provides the following API endpoints for user authentication:
- POST /auth/register: Register a new user.
- POST /auth/login: Log in an existing user.
- POST /auth/logout: Log out the authenticated user.
- GET /auth/user: Retrieve the current authenticated user's information.
To register a new user, send a POST request to /auth/register
with the following JSON body:
{
"name": "John Doe",
"email": "john.doe@example.com",
"password": "password123"
}
To log in, send a POST request to /auth/login
:
{
"email": "john.doe@example.com",
"password": "password123"
}
To log out the authenticated user, send a POST request to /auth/logout
.
To retrieve the current user's data, send a GET request to /auth/user
with the appropriate authentication token.
- Description: This endpoint allows a new user to register for the application by providing their name, email, and password.
- Example Request:
POST /auth/register
Content-Type: application/json
{
"name": "John Doe",
"email": "john.doe@example.com",
"password": "password123"
}
- Example Response:
{
"status": "success",
"message": "User registered successfully.",
"data": {
"user": {
"id": 1,
"name": "John Doe",
"email": "john.doe@example.com"
}
}
}
- Description: This endpoint allows an existing user to log in by providing their email and password.
- Example Request:
POST /auth/login
Content-Type: application/json
{
"email": "john.doe@example.com",
"password": "password123"
}
- Example Response:
{
"status": "success",
"message": "User logged in successfully.",
"data": {
"token": "your_jwt_token_here"
}
}
- Description: This endpoint allows the authenticated user to log out of the application.
- Example Request:
POST /auth/logout
Authorization: Bearer your_jwt_token_here
- Example Response:
{
"status": "success",
"message": "User logged out successfully."
}
- Description: This endpoint retrieves the current authenticated user's information.
- Example Request:
GET /auth/user
Authorization: Bearer your_jwt_token_here
- Example Response:
{
"status": "success",
"message": "User data retrieved successfully.",
"data": {
"id": 1,
"name": "John Doe",
"email": "john.doe@example.com"
}
}
You can contribute by forking the repository and submitting a pull request.
This package is licensed under the MIT License.
For any questions or feedback, please reach out to:
- Danilo Oliveira: daniloworkdev@gmail.com
- Website: daniloo.dev