# Cookie
# Configuration
Use the tokenable guard in the guards configuration of your application's auth.php configuration file:
'guards' => [
'api' => [
'driver' => 'tokenable',
'provider' => 'users',
],
],
1
2
3
4
5
6
2
3
4
5
6
# Model
To start issuing tokens for users, your User model should use the Jundayw\Tokenable\HasTokenable trait and implement the Jundayw\Tokenable\Contracts\Tokenable interface.
namespace App\Models;
use Jundayw\Tokenable\Contracts\Tokenable;
use Jundayw\Tokenable\HasTokenable;
class User extends Authenticatable implements Tokenable
{
use HasTokenable, HasFactory, Notifiable;
}
1
2
3
4
5
6
7
8
9
2
3
4
5
6
7
8
9
# Route
use Jundayw\Tokenable\Middleware\RefreshTokenWithCookie;
Route::get('/login', [App\Http\Controllers\AccountController::class, 'login']);
Route::middleware(RefreshTokenWithCookie::using('web'))->group(function () {
Route::get('/freeze', [App\Http\Controllers\AccountController::class, 'freeze']);
Route::get('/revoke', [App\Http\Controllers\AccountController::class, 'revoke']);
});
Route::get('/token', [App\Http\Controllers\AccountController::class, 'token']);
1
2
3
4
5
6
7
8
2
3
4
5
6
7
8
TIP
The middleware RefreshTokenWithCookie::using('web') has the function of automatically refreshing the token and setting a cookie.
# Controller
namespace App\Http\Controllers;
use Illuminate\Support\Facades\Hash;
use Jundayw\Tokenable\Contracts\Token\Token;
use Jundayw\Tokenable\Support\GuardHelper;
class AccountController
{
use GuardHelper;
public function login(Request $request): ?Token
{
$user = User::query()->where([
'email' => $request->get('email'),
'password' => Hash::make($request->get('password')),
])->first();
if(is_null($user)){
return null;
}
return $this->guard('web')
->login($user)
->createToken(name: 'PC Token', platform: 'pc')
->withCookies();
}
public function freeze(Request $request): bool
{
return $request->user()?->suspendToken();
}
public function revoke(Request $request): bool
{
return $this->guard()->revokeToken();
}
public function token(Request $request): ?Token
{
return $this->guard('web')
->fromAuthCode()
?->createToken(name: 'auth_code', platform: 'pc')
->withCookies();
}
}
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
← APIs